Merge branch 'master' into for-next

Sync with Linus' tree to be able to apply fixes on top of newer things in tree (efi-stub). Signed-off-by: Jiri Kosina <jkosina@suse.cz>
author: Jiri Kosina <jkosina@suse.cz> 2013-12-19 15:08:03 +0100
committer: Jiri Kosina <jkosina@suse.cz> 2013-12-19 15:08:32 +0100
commit: e23c34bb41da65f354fb7eee04300c56ee48f60c (patch)
tree: 549fbe449d55273b81ef104a9755109bf4ae7817 /kernel/pid_namespace.c
parent: b481c2cb3534c85dca625973b33eba15f9af3e4c (diff)
parent: 319e2e3f63c348a9b66db4667efa73178e18b17d (diff)
1 files changed, 8 insertions, 2 deletions
diff --git a/kernel/pid_namespace.c b/kernel/pid_namespace.c
index 601bb361c235..06c62de9c711 100644
--- a/kernel/pid_namespace.c
+++ b/kernel/pid_namespace.c
@@ -132,6 +132,12 @@ out:
 	return ERR_PTR(err);
 }
 
+static void delayed_free_pidns(struct rcu_head *p)
+{
+	kmem_cache_free(pid_ns_cachep,
+			container_of(p, struct pid_namespace, rcu));
+}
+
 static void destroy_pid_namespace(struct pid_namespace *ns)
 {
 	int i;
@@ -140,7 +146,7 @@ static void destroy_pid_namespace(struct pid_namespace *ns)
 	for (i = 0; i < PIDMAP_ENTRIES; i++)
 		kfree(ns->pidmap[i].page);
 	put_user_ns(ns->user_ns);
-	kmem_cache_free(pid_ns_cachep, ns);
+	call_rcu(&ns->rcu, delayed_free_pidns);
 }
 
 struct pid_namespace *copy_pid_ns(unsigned long flags,
@@ -329,7 +335,7 @@ static int pidns_install(struct nsproxy *nsproxy, void *ns)
 	struct pid_namespace *ancestor, *new = ns;
 
 	if (!ns_capable(new->user_ns, CAP_SYS_ADMIN) ||
-	    !nsown_capable(CAP_SYS_ADMIN))
+	    !ns_capable(current_user_ns(), CAP_SYS_ADMIN))
 		return -EPERM;
 
 	/*
author	Jiri Kosina <jkosina@suse.cz>	2013-12-19 15:08:03 +0100
committer	Jiri Kosina <jkosina@suse.cz>	2013-12-19 15:08:32 +0100
commit	e23c34bb41da65f354fb7eee04300c56ee48f60c (patch)
tree	549fbe449d55273b81ef104a9755109bf4ae7817 /kernel/pid_namespace.c
parent	b481c2cb3534c85dca625973b33eba15f9af3e4c (diff)
parent	319e2e3f63c348a9b66db4667efa73178e18b17d (diff)