From 9730a2be13075150a8bbe25f398ba3371d6775d4 Mon Sep 17 00:00:00 2001
From: Franziska Kunsmann <hi@kunsmann.eu>
Date: Mon, 16 May 2022 10:48:26 +0200
Subject: [PATCH] bundles/wireguard: fix permissions for wireguard netdev files

---
 bundles/wireguard/items.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/bundles/wireguard/items.py b/bundles/wireguard/items.py
index c920151..37d018b 100644
--- a/bundles/wireguard/items.py
+++ b/bundles/wireguard/items.py
@@ -18,6 +18,8 @@ for number, (peer, config) in enumerate(sorted(node.metadata.get('wireguard/peer
     files[f'/etc/systemd/network/wg{number}.netdev'] = {
         'content_type': 'mako',
         'source': 'wg.netdev',
+        'owner': 'systemd-network',
+        'mode': '0600',
         'context': {
             'endpoint': config.get('endpoint'),
             'number': number,