diff options
| author | Emīls <emils@mullvad.net> | 2020-10-28 12:10:32 +0000 |
|---|---|---|
| committer | Emīls <emils@mullvad.net> | 2020-10-28 12:10:32 +0000 |
| commit | 673eea790b9807d55ee3f2dac6c563a20932cbeb (patch) | |
| tree | e4e6ad2de5a07c3d01a883995ea2093eb815271b | |
| parent | e15be1e020a6091ab31408b60bb069a8a120aa8a (diff) | |
| parent | a025e240d31cbfe2c20b6174c0e9c246a5f829a8 (diff) | |
| download | mullvadvpn-673eea790b9807d55ee3f2dac6c563a20932cbeb.tar.xz mullvadvpn-673eea790b9807d55ee3f2dac6c563a20932cbeb.zip | |
Merge branch 'linux-nm-dns-allow-more-device-states' into master
| -rw-r--r-- | CHANGELOG.md | 3 | ||||
| -rw-r--r-- | talpid-core/src/dns/linux/network_manager.rs | 62 |
2 files changed, 43 insertions, 22 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 459e46fbc9..ad90e6abcd 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -51,6 +51,7 @@ Line wrap the file at 100 chars. Th #### Linux - Make route monitor ignore loopback routes. +- Increase NetworkManager device readiness timeout to 15 seconds. ### Fixed - Fix missing map animation after selecting a new location in the desktop app. @@ -73,6 +74,8 @@ Line wrap the file at 100 chars. Th #### Linux - Handle statically added routes. - Stop reconnecting when using WireGuard and NetworkManager. +- Apply DNS config quicker when managing DNS via NetworkManager. + ### Security - Restore the last target state if the daemon crashes. Previously, if auto-connect and diff --git a/talpid-core/src/dns/linux/network_manager.rs b/talpid-core/src/dns/linux/network_manager.rs index f2b2f6d7fb..ed5944cd41 100644 --- a/talpid-core/src/dns/linux/network_manager.rs +++ b/talpid-core/src/dns/linux/network_manager.rs @@ -11,6 +11,7 @@ use std::{ io::{BufRead, BufReader}, net::IpAddr, path::Path, + time::{Duration, Instant}, }; pub type Result<T> = std::result::Result<T, Error>; @@ -61,11 +62,14 @@ const NM_DEVICE: &str = "org.freedesktop.NetworkManager.Device"; const NM_IP4_CONFIG: &str = "org.freedesktop.NetworkManager.IP4Config"; const NM_IP6_CONFIG: &str = "org.freedesktop.NetworkManager.IP6Config"; const RPC_TIMEOUT_MS: i32 = 3000; +const DEVICE_READY_TIMEOUT: Duration = Duration::from_secs(15); const GLOBAL_DNS_CONF_KEY: &str = "GlobalDnsConfiguration"; const RC_MANAGEMENT_MODE_KEY: &str = "RcManager"; const DNS_MODE_KEY: &str = "Mode"; const DNS_FIRST_PRIORITY: i32 = -2147483647; +const NM_DEVICE_STATE_IP_CHECK: u32 = 80; +const NM_DEVICE_STATE_SECONDARY: u32 = 90; const NM_DEVICE_STATE_ACTIVATED: u32 = 100; lazy_static! { @@ -347,15 +351,14 @@ impl NetworkManager { continue; } - let state: u32 = self + let mut device_state: u32 = self .dbus_connection .with_path(NM_BUS, device, RPC_TIMEOUT_MS) .get(NM_DEVICE, "State") .map_err(Error::Dbus)?; - if state != NM_DEVICE_STATE_ACTIVATED { - let mut current_state = state; - + if device_is_ready(device_state) { + let deadline = Instant::now() + DEVICE_READY_TIMEOUT; let match_rule = &format!( "destination='{}',path='{}',interface='{}',member='{}'", NM_BUS, @@ -367,31 +370,35 @@ impl NetworkManager { .add_match(match_rule) .map_err(Error::Dbus)?; - for message in self.dbus_connection.incoming(RPC_TIMEOUT_MS as u32) { - if message.member().as_ref() != Some(&NM_DEVICE_STATE_CHANGED) { - continue; - } - let (new_state, _old_state, _reason): (u32, u32, u32) = message - .read3() - .map_err(Error::MatchDBusTypeError) - .map_err(|error| { - let _ = self.dbus_connection.remove_match(match_rule); - error - })?; + // a separate loopis used here because `connection.incoming(TIMEOUT)` will sleep + // for TIMEOUT after the last message was received - if the device is thrashing + // between states, we should probably give up rather than block indefinitely. + while Instant::now() < deadline && !device_is_ready(device_state) { + for message in self.dbus_connection.incoming(RPC_TIMEOUT_MS as u32) { + if message.member().as_ref() != Some(&NM_DEVICE_STATE_CHANGED) { + continue; + } + let (new_state, _old_state, _reason): (u32, u32, u32) = message + .read3() + .map_err(Error::MatchDBusTypeError) + .map_err(|error| { + let _ = self.dbus_connection.remove_match(match_rule); + error + })?; - current_state = new_state; - log::trace!("New tunnel device state: {}", current_state); - if current_state == NM_DEVICE_STATE_ACTIVATED { - break; + device_state = new_state; + log::trace!("New tunnel device state: {}", device_state); + if device_is_ready(device_state) { + break; + } } } if let Err(error) = self.dbus_connection.remove_match(match_rule) { log::warn!("Failed to remove signal listener: {}", error); } - - if current_state != NM_DEVICE_STATE_ACTIVATED { - return Err(Error::DeviceNotReady(state)); + if !device_is_ready(device_state) { + return Err(Error::DeviceNotReady(device_state)); } } @@ -401,6 +408,17 @@ impl NetworkManager { } } +fn device_is_ready(device_state: u32) -> bool { + /// Any state above `NM_DEVICE_STATE_IP_CONFIG` is considered to be an OK state to change the + /// DNS config. For the enums, see https://developer.gnome.org/NetworkManager/stable/nm-dbus-types.html#NMDeviceState + const READY_STATES: [u32; 3] = [ + NM_DEVICE_STATE_IP_CHECK, + NM_DEVICE_STATE_SECONDARY, + NM_DEVICE_STATE_ACTIVATED, + ]; + READY_STATES.contains(&device_state) +} + fn eq_file_content<P: AsRef<Path>>(a: &P, b: &P) -> bool { let file_a = match File::open(a).map(BufReader::new) { Ok(file) => file, |