From a750f89630f5e1ae47f2fb24f0b7b26adf78d4f1 Mon Sep 17 00:00:00 2001
From: arlakshm <55814491+arlakshm@users.noreply.github.com>
Date: Thu, 28 Jan 2021 23:12:01 -0800
Subject: [PATCH] [multi asic] add ip netns identify command to sudoer (#6591)

Signed-off-by: Arvindsrinivasan Lakshmi Narasimhan <arlakshm@microsoft.com>

- Why I did it
The command sudo ip netns identify <pid> is used in function get_current_namespace
to check in the cli command is running in host context or within a namespace.

This function is used for every CLI command and command sudo ip netns identify <pid> needs to be added in sudoer files to allow users with RO access to run show cli commands

This problem is not there on single asic platforms.

- How I did it
Add ip netns identify [0-9]* to sudoers file.
---
 files/image_config/sudoers/sudoers | 1 +
 1 file changed, 1 insertion(+)

diff --git a/files/image_config/sudoers/sudoers b/files/image_config/sudoers/sudoers
index 85ef2abcf6..46737f47d4 100644
--- a/files/image_config/sudoers/sudoers
+++ b/files/image_config/sudoers/sudoers
@@ -36,6 +36,7 @@ Cmnd_Alias      READ_ONLY_CMDS = /sbin/brctl show, \
                                  /usr/bin/teamshow, \
                                  /usr/bin/vtysh -c show *, \
                                  /usr/bin/vtysh -n [0-9] -c show *, \
+                                 /bin/ip netns identify [0-9]*, \
                                  /bin/cat /var/log/syslog*, \
                                  /usr/bin/tail -F /var/log/syslog