pihole - add missing caps (#2170)

library/ix-dev/charts/pihole/Chart.yaml

@@ -3,7 +3,7 @@ description: DNS and Ad-filtering for your network.
 annotations:
   title: Pi-hole
 type: application
-version: 2.0.0
+version: 2.0.1
 apiVersion: v2
 appVersion: 2023.11.0
 kubeVersion: '>=1.16.0-0'

library/ix-dev/charts/pihole/metadata.yaml

@@ -17,6 +17,8 @@ capabilities:
     description: Pi-hole is able to set user ID for it's sub-processes.
   - name: SETFCAP
     description: Pi-hole is able to set file capabilities.
+  - name: SETPCAP
+    description: Pi-hole is able to set process capabilities.
   - name: NET_ADMIN
     description: Pi-hole is able to perform various network-related operations.
   - name: KILL

library/ix-dev/charts/pihole/templates/_pihole.tpl

@@ -16,6 +16,7 @@ workload:
             runAsGroup: 0
             runAsNonRoot: false
             readOnlyRootFilesystem: false
+            allowPrivilegeEscalation: true
             capabilities:
               add:
                 - NET_ADMIN
@@ -25,6 +26,7 @@ workload:
                 - SETGID
                 - SETUID
                 - SETFCAP
+                - SETPCAP
                 - KILL
           env:
             WEB_PORT: {{ .Values.piholeNetwork.webPort }}