From 86dd5587a9b3eef4d953253b34908f98a8734999 Mon Sep 17 00:00:00 2001 From: "Jason A. Donenfeld" Date: Wed, 23 May 2018 15:31:47 +0200 Subject: [PATCH] wg-quick: allow enumeration of socket files These OSes have an unpriv'd ifconfig, so this isn't an even larger info leak. Signed-off-by: Jason A. Donenfeld --- src/wg-quick/darwin.bash | 2 +- src/wg-quick/openbsd.bash | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/src/wg-quick/darwin.bash b/src/wg-quick/darwin.bash index d1c83c0..8e0a71f 100755 --- a/src/wg-quick/darwin.bash +++ b/src/wg-quick/darwin.bash @@ -107,7 +107,7 @@ get_real_interface() { add_if() { export WG_TUN_NAME_FILE="/var/run/wireguard/$INTERFACE.name" - mkdir -m 0700 -p "/var/run/wireguard/" + mkdir -p "/var/run/wireguard/" cmd "${WG_QUICK_USERSPACE_IMPLEMENTATION:-wireguard-go}" utun get_real_interface } diff --git a/src/wg-quick/openbsd.bash b/src/wg-quick/openbsd.bash index b8934d4..d37e250 100755 --- a/src/wg-quick/openbsd.bash +++ b/src/wg-quick/openbsd.bash @@ -98,7 +98,7 @@ get_real_interface() { add_if() { export WG_TUN_NAME_FILE="/var/run/wireguard/$INTERFACE.name" - mkdir -m 0700 -p "/var/run/wireguard/" + mkdir -p "/var/run/wireguard/" cmd "${WG_QUICK_USERSPACE_IMPLEMENTATION:-wireguard-go}" tun get_real_interface }