Only allow resolved traffic for root

author: Emīls <emils@mullvad.net> 2021-12-07 16:55:52 +0000
committer: Emīls <emils@mullvad.net> 2021-12-10 09:58:51 +0000
commit: f97665f6adf740f3988642e69678f2be7cb65cef (patch)
tree: 1fc87e5c9c4b006b4424ef7610a6725c4f513110
parent: 2967b7f29522e413994acd538e34d4637b8cf6b5 (diff)
download: mullvadvpn-f97665f6adf740f3988642e69678f2be7cb65cef.tar.xz
mullvadvpn-f97665f6adf740f3988642e69678f2be7cb65cef.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/talpid-core/src/firewall/macos.rs b/talpid-core/src/firewall/macos.rs
index 31fefc7806..d0b7092e68 100644
--- a/talpid-core/src/firewall/macos.rs
+++ b/talpid-core/src/firewall/macos.rs
@@ -355,6 +355,7 @@ impl Firewall {
                     .direction(pfctl::Direction::Out)
                     .to(*ip)
                     .quick(true)
+                    .user(Uid::from(ROOT_UID))
                     .keep_state(pfctl::StatePolicy::Keep)
                     .build()?,
             );
author	Emīls <emils@mullvad.net>	2021-12-07 16:55:52 +0000
committer	Emīls <emils@mullvad.net>	2021-12-10 09:58:51 +0000
commit	f97665f6adf740f3988642e69678f2be7cb65cef (patch)
tree	1fc87e5c9c4b006b4424ef7610a6725c4f513110
parent	2967b7f29522e413994acd538e34d4637b8cf6b5 (diff)
download	mullvadvpn-f97665f6adf740f3988642e69678f2be7cb65cef.tar.xz mullvadvpn-f97665f6adf740f3988642e69678f2be7cb65cef.zip