validate: do not check NET_ADMIN with ip link add

Signed-off-by: Antonio Murdaca <[email protected]>

Author: runcom

pkg/validate/security_context.go

@@ -825,7 +825,8 @@ func createPrivilegedContainer(rc internalapi.RuntimeService, ic internalapi.Ima
 
 // checkNetworkManagement checks the container's network management works fine.
 func checkNetworkManagement(rc internalapi.RuntimeService, containerID string, manageable bool) {
-	cmd := []string{"ip", "link", "add", "dummy0", "type", "dummy"}
+	//cmd := []string{"sh", "-c", "echo 1000 > /sys/class/net/lo/tx_queue_len"}
+	cmd := []string{"brctl", "addbr", "foobar"}
 
 	stdout, stderr, err := rc.ExecSync(containerID, cmd, time.Duration(defaultExecSyncTimeout)*time.Second)
 	msg := fmt.Sprintf("cmd %v, stdout %q, stderr %q", cmd, stdout, stderr)