Re: [PATCH net] net: sit: require CAP_NET_ADMIN in the device netns for changelink

Next message: Dinh Nguyen: "Re: [PATCH] EDAC/altera: Use parent device for devres in altr_portb_setup()"
Previous message: Konrad Dybcio: "Re: [PATCH v3 8/8] arm64: dts: qcom: x1e80100: Add deepest idle state"
In reply to: Maoyi Xie: "[PATCH net] net: sit: require CAP_NET_ADMIN in the device netns for changelink"
Next in thread: Kuniyuki Iwashima: "Re: [PATCH net] net: sit: require CAP_NET_ADMIN in the device netns for changelink"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Nicolas Dichtel

Date: Thu Jun 18 2026 - 04:26:49 EST

Le 18/06/2026 à 09:08, Maoyi Xie a écrit :
> ipip6_changelink() operates on at most two netns, dev_net(dev) and the
> tunnel link netns t->net. They differ once the device is created in or
> moved to a netns other than the one the request runs in. The rtnl
> changelink path checks CAP_NET_ADMIN only against dev_net(dev), so a
> caller privileged there but not in t->net can rewrite a tunnel that
> lives in t->net.
>
> Gate ipip6_changelink() on rtnl_dev_link_net_capable() at its top,
> before any attribute is parsed. sit was the one tunnel type not covered
> by the recent series that added this check to the other changelink()
> handlers.
>
> Fixes: 5e6700b3bf98 ("sit: add support of x-netns")
> Link: https://lore.kernel.org/netdev/20260612085941.3158249-1-maoyixie.tju@xxxxxxxxx/
> Cc: stable@xxxxxxxxxxxxxxx
> Signed-off-by: Maoyi Xie <maoyixie.tju@xxxxxxxxx>

Reviewed-by: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>