Infoleak ifnames and be more permissive

Listing interfaces is already permitted by the OS, so we allow this info leak too.
2025-08-23 15:31:32 +02:00 · 2018-05-23 15:38:24 +02:00
parent 588b9f01ae
commit 0b647d1ca7
2 changed files with 6 additions and 2 deletions
--- a/uapi_bsd.go
+++ b/uapi_bsd.go
@@ -150,7 +150,7 @@ func UAPIOpen(name string) (*os.File, error) {
 	// check if path exist
-	err := os.MkdirAll(socketDirectory, 0700)
+	err := os.MkdirAll(socketDirectory, 0755)
 	if err != nil && !os.IsExist(err) {
 		return nil, err
 	}
@@ -167,6 +167,7 @@ func UAPIOpen(name string) (*os.File, error) {
 		return nil, err
 	}
 	oldUmask := unix.Umask(0077)
 	listener, err := func() (*net.UnixListener, error) {
 		// initial connection attempt
@@ -191,6 +192,7 @@ func UAPIOpen(name string) (*os.File, error) {
 		}
 		return net.ListenUnix("unix", addr)
 	}()
 	unix.Umask(oldUmask)
 	if err != nil {
 		return nil, err
--- a/uapi_linux.go
+++ b/uapi_linux.go
@@ -147,7 +147,7 @@ func UAPIOpen(name string) (*os.File, error) {
 	// check if path exist
-	err := os.MkdirAll(socketDirectory, 0700)
+	err := os.MkdirAll(socketDirectory, 0755)
 	if err != nil && !os.IsExist(err) {
 		return nil, err
 	}
@@ -164,6 +164,7 @@ func UAPIOpen(name string) (*os.File, error) {
 		return nil, err
 	}
 	oldUmask := unix.Umask(0077)
 	listener, err := func() (*net.UnixListener, error) {
 		// initial connection attempt
@@ -188,6 +189,7 @@ func UAPIOpen(name string) (*os.File, error) {
 		}
 		return net.ListenUnix("unix", addr)
 	}()
 	unix.Umask(oldUmask)
 	if err != nil {
 		return nil, err