netlink: don't remove allowed ips for new peers

This causes needless traversal of the trie. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
author: Jason A. Donenfeld <Jason@zx2c4.com> 2019-02-25 22:35:28 +0100
committer: Jason A. Donenfeld <Jason@zx2c4.com> 2019-02-25 22:35:28 +0100
commit: 0e4996e2c4fd414ef1554911a6401f353312829a (patch)
tree: b5f2fc4ead2c73ffc74974ec208b8105b276f692 /src
parent: Makefile: make the depmod path configurable (diff)
download: wireguard-linux-compat-0e4996e2c4fd414ef1554911a6401f353312829a.tar.xz
wireguard-linux-compat-0e4996e2c4fd414ef1554911a6401f353312829a.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/src/netlink.c b/src/netlink.c
index 9a33192..f44f211 100644
--- a/src/netlink.c
+++ b/src/netlink.c
@@ -375,6 +375,9 @@ static int set_peer(struct wg_device *wg, struct nlattr **attrs)
 		if (flags & WGPEER_F_REMOVE_ME)
 			goto out; /* Tried to remove a non-existing peer. */
 
+		/* The peer is new, so there aren't allowed IPs to remove. */
+		flags &= ~WGPEER_F_REPLACE_ALLOWEDIPS;
+
 		down_read(&wg->static_identity.lock);
 		if (wg->static_identity.has_identity &&
 		    !memcmp(nla_data(attrs[WGPEER_A_PUBLIC_KEY]),
author	Jason A. Donenfeld <Jason@zx2c4.com>	2019-02-25 22:35:28 +0100
committer	Jason A. Donenfeld <Jason@zx2c4.com>	2019-02-25 22:35:28 +0100
commit	0e4996e2c4fd414ef1554911a6401f353312829a (patch)
tree	b5f2fc4ead2c73ffc74974ec208b8105b276f692 /src
parent	Makefile: make the depmod path configurable (diff)
download	wireguard-linux-compat-0e4996e2c4fd414ef1554911a6401f353312829a.tar.xz wireguard-linux-compat-0e4996e2c4fd414ef1554911a6401f353312829a.zip