|
|
|
|
|
|
by mdaverde
1314 days ago
|
|
|
In 2020, CAP_BPF was added to allow the use of eBPF. For most programs, you'll use a combination of CAP_BPF, CAP_PERFMON and/or CAP_NET_ADMIN. For some edge cases (such as hardware offload), you'll need the entire CAP_SYS_ADMIN (basically root). I wrote more about this here: https://mdaverde.com/posts/cap-bpf/ |
|
|