From: Jason A. Donenfeld <Jason@zx2c4.com>
Date: Wed, 23 May 2018 13:31:47 +0000 (+0200)
Subject: wg-quick: allow enumeration of socket files
X-Git-Tag: v1.0.20191226~106
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=86dd5587a9b3eef4d953253b34908f98a8734999;p=thirdparty%2Fwireguard-tools.git

wg-quick: allow enumeration of socket files

These OSes have an unpriv'd ifconfig, so this isn't an even larger info
leak.

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
---

diff --git a/src/wg-quick/darwin.bash b/src/wg-quick/darwin.bash
index d1c83c0..8e0a71f 100755
--- a/src/wg-quick/darwin.bash
+++ b/src/wg-quick/darwin.bash
@@ -107,7 +107,7 @@ get_real_interface() {
 
 add_if() {
 	export WG_TUN_NAME_FILE="/var/run/wireguard/$INTERFACE.name"
-	mkdir -m 0700 -p "/var/run/wireguard/"
+	mkdir -p "/var/run/wireguard/"
 	cmd "${WG_QUICK_USERSPACE_IMPLEMENTATION:-wireguard-go}" utun
 	get_real_interface
 }
diff --git a/src/wg-quick/openbsd.bash b/src/wg-quick/openbsd.bash
index b8934d4..d37e250 100755
--- a/src/wg-quick/openbsd.bash
+++ b/src/wg-quick/openbsd.bash
@@ -98,7 +98,7 @@ get_real_interface() {
 
 add_if() {
 	export WG_TUN_NAME_FILE="/var/run/wireguard/$INTERFACE.name"
-	mkdir -m 0700 -p "/var/run/wireguard/"
+	mkdir -p "/var/run/wireguard/"
 	cmd "${WG_QUICK_USERSPACE_IMPLEMENTATION:-wireguard-go}" tun
 	get_real_interface
 }