Merge tag 'v5.9-rc2' into regulator-5.9

Linux 5.9-rc2
author: Mark Brown <broonie@kernel.org> 2020-08-25 11:01:46 +0100
committer: Mark Brown <broonie@kernel.org> 2020-08-25 11:01:46 +0100
commit: 3bec5b6aae830355e786e204b20a7cea38c3a8ed (patch)
tree: fd597b87faf55ceb2a207ee94f4feca6276696db /drivers/net/wireguard/netlink.c
parent: a577f3456c0a2fac3dee037c483753e6e68f3e49 (diff)
parent: d012a7190fc1fd72ed48911e77ca97ba4521bccd (diff)
1 files changed, 9 insertions, 5 deletions
diff --git a/drivers/net/wireguard/netlink.c b/drivers/net/wireguard/netlink.c
index 802099c8828a..20a4f3c0a0a1 100644
--- a/drivers/net/wireguard/netlink.c
+++ b/drivers/net/wireguard/netlink.c
@@ -511,11 +511,15 @@ static int wg_set_device(struct sk_buff *skb, struct genl_info *info)
 	if (flags & ~__WGDEVICE_F_ALL)
 		goto out;
 
-	ret = -EPERM;
-	if ((info->attrs[WGDEVICE_A_LISTEN_PORT] ||
-	     info->attrs[WGDEVICE_A_FWMARK]) &&
-	    !ns_capable(wg->creating_net->user_ns, CAP_NET_ADMIN))
-		goto out;
+	if (info->attrs[WGDEVICE_A_LISTEN_PORT] || info->attrs[WGDEVICE_A_FWMARK]) {
+		struct net *net;
+		rcu_read_lock();
+		net = rcu_dereference(wg->creating_net);
+		ret = !net || !ns_capable(net->user_ns, CAP_NET_ADMIN) ? -EPERM : 0;
+		rcu_read_unlock();
+		if (ret)
+			goto out;
+	}
 
 	++wg->device_update_gen;
author	Mark Brown <broonie@kernel.org>	2020-08-25 11:01:46 +0100
committer	Mark Brown <broonie@kernel.org>	2020-08-25 11:01:46 +0100
commit	3bec5b6aae830355e786e204b20a7cea38c3a8ed (patch)
tree	fd597b87faf55ceb2a207ee94f4feca6276696db /drivers/net/wireguard/netlink.c
parent	a577f3456c0a2fac3dee037c483753e6e68f3e49 (diff)
parent	d012a7190fc1fd72ed48911e77ca97ba4521bccd (diff)