From e903a1bcf8a846f106729b1a6d4645d7fdfec374 Mon Sep 17 00:00:00 2001
From: Gabe Alford <redhatrises@gmail.com>
Date: Fri, 8 Dec 2023 13:44:56 -0700
Subject: [PATCH] feat: Add network permissions for GKE Autopilot

---
 internal/controller/assets/daemonset.go      | 1 +
 internal/controller/assets/daemonset_test.go | 1 +
 2 files changed, 2 insertions(+)

diff --git a/internal/controller/assets/daemonset.go b/internal/controller/assets/daemonset.go
index 9c761299..294e0c1a 100644
--- a/internal/controller/assets/daemonset.go
+++ b/internal/controller/assets/daemonset.go
@@ -88,6 +88,7 @@ func sensorCapabilities(node *falconv1alpha1.FalconNodeSensor, initContainer boo
 				"SYS_RESOURCE",
 				"NET_RAW",
 				"CHOWN",
+				"NET_ADMIN",
 			},
 		}
 	}
diff --git a/internal/controller/assets/daemonset_test.go b/internal/controller/assets/daemonset_test.go
index fcb20ac1..c3c62bf4 100644
--- a/internal/controller/assets/daemonset_test.go
+++ b/internal/controller/assets/daemonset_test.go
@@ -158,6 +158,7 @@ func TestSensorCapabilities(t *testing.T) {
 			"SYS_RESOURCE",
 			"NET_RAW",
 			"CHOWN",
+			"NET_ADMIN",
 		},
 	}