From 4f72eefbabfed15a28766cfd7c758626fd0f7a84 Mon Sep 17 00:00:00 2001
From: luke-lombardi <33990301+luke-lombardi@users.noreply.github.com>
Date: Thu, 2 Jan 2025 16:39:57 -0500
Subject: [PATCH] add mknod priv

---
 pkg/worker/base_runc_config.json | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/pkg/worker/base_runc_config.json b/pkg/worker/base_runc_config.json
index 40e42414a..ec2540914 100644
--- a/pkg/worker/base_runc_config.json
+++ b/pkg/worker/base_runc_config.json
@@ -31,7 +31,8 @@
 				"CAP_SETGID",
 				"CAP_SETUID",
 				"CAP_SETFCAP",
-				"CAP_SYS_CHROOT"
+				"CAP_SYS_CHROOT",
+				"CAP_MKNOD"
 			],
 			"effective": [
 				"CAP_AUDIT_WRITE",
@@ -44,7 +45,8 @@
 				"CAP_SETGID",
 				"CAP_SETUID",
 				"CAP_SETFCAP",
-				"CAP_SYS_CHROOT"
+				"CAP_SYS_CHROOT",
+				"CAP_MKNOD"
 			],
 			"permitted": [
 				"CAP_AUDIT_WRITE",
@@ -57,7 +59,8 @@
 				"CAP_SETGID",
 				"CAP_SETUID",
 				"CAP_SETFCAP",
-				"CAP_SYS_CHROOT"
+				"CAP_SYS_CHROOT",
+				"CAP_MKNOD"
 			],
 			"ambient": [
 				"CAP_AUDIT_WRITE",
@@ -70,7 +73,8 @@
 				"CAP_SETGID",
 				"CAP_SETUID",
 				"CAP_SETFCAP",
-				"CAP_SYS_CHROOT"
+				"CAP_SYS_CHROOT",
+				"CAP_MKNOD"
 			]
 		},
 		"rlimits": [],