diff options
| author | David Lönnhager <david.l@mullvad.net> | 2025-08-27 17:43:38 +0200 |
|---|---|---|
| committer | David Lönnhager <david.l@mullvad.net> | 2025-09-03 14:59:46 +0200 |
| commit | fe8c6feb946fc997b18bdc80e838ee34ab0045ff (patch) | |
| tree | d7a6943c3e4da9711a40573a1defe57225d17e48 /talpid-core/src | |
| parent | 9d4c2e92ec06ffaa6ca6a1cc17d10d8e79a3da93 (diff) | |
| download | mullvadvpn-fe8c6feb946fc997b18bdc80e838ee34ab0045ff.tar.xz mullvadvpn-fe8c6feb946fc997b18bdc80e838ee34ab0045ff.zip | |
Add pnputil and devicequery log output for split tunneling and tun dev
Diffstat (limited to 'talpid-core/src')
10 files changed, 437 insertions, 8 deletions
diff --git a/talpid-core/src/logging/diag.rs b/talpid-core/src/logging/diag.rs new file mode 100644 index 0000000000..419c0b7619 --- /dev/null +++ b/talpid-core/src/logging/diag.rs @@ -0,0 +1,337 @@ +//! Additional logging that may be useful + +/// Additional logging for Windows +#[cfg(target_os = "windows")] +pub mod windows { + use anyhow::Context; + use anyhow::bail; + use std::ffi::CStr; + use std::ffi::OsString; + use std::fmt::Write; + use std::os::windows::ffi::OsStringExt; + use std::path::Path; + use talpid_windows::env::get_system_dir; + use talpid_windows::string::multibyte_to_wide; + use tokio::io::AsyncWriteExt; + use tokio::process::Command; + use windows_sys::Win32::Globalization::CP_ACP; + + /// Keywords used to filter output + const KEYWORDS: &[&str] = &[ + "wireguard", + "wintun", + "tunnel", + "mullvad", + "split-tunnel", + "split tunnel", + ]; + + /// Dump logs about tunnel devices and relevant drivers + /// + /// Currently, this will log the output of `pnputil` and `driverquery`, with filtering. + pub async fn log_device_info(log_dir: &Path) -> anyhow::Result<()> { + use crate::logging::rotate_log; + use tokio::{fs::File, io::BufWriter}; + + const TIMESTAMP_FMT: &str = "%Y-%m-%d %H:%M:%S"; + + let log_path = log_dir.join("device.log"); + + tokio::task::block_in_place(|| rotate_log(&log_path)).context("Failed to rotate log")?; + + let logger = File::options() + .write(true) + .create(true) + .truncate(true) + .open(log_path) + .await + .context("Failed to open device log")?; + + let mut logger = BufWriter::new(logger); + + // Log the current time + logger + .write_all( + format!( + "Log time: {}\n\n", + chrono::Local::now().format(TIMESTAMP_FMT) + ) + .as_bytes(), + ) + .await?; + + async fn run_cmd_and_write_logs( + logger: &mut BufWriter<File>, + cmd: &mut Command, + parse_output: impl FnOnce(String) -> anyhow::Result<String>, + ) -> anyhow::Result<()> { + let logs = run_cmd(cmd).await.and_then(parse_output); + logger.write_all(format_logs(cmd, logs)?.as_bytes()).await?; + Ok(()) + } + + run_cmd_and_write_logs(&mut logger, &mut driverquery_cmd()?, parse_driverquery).await?; + run_cmd_and_write_logs(&mut logger, &mut pnputil_cmd()?, parse_pnputil).await?; + run_cmd_and_write_logs( + &mut logger, + &mut pnputil_problem_cmd()?, + parse_pnputil_problem, + ) + .await?; + + let _ = logger.flush().await; + + Ok(()) + } + + /// Run `cmd` and collect its output + async fn run_cmd(cmd: &mut Command) -> anyhow::Result<String> { + let out = cmd.output().await.context("Failed to run driverquery")?; + + if !out.status.success() { + bail!("driverquery failed: {:?}", out.status.code()); + } + + parse_raw_cmd_output(&out.stdout) + } + + fn format_logs(cmd: &Command, output: anyhow::Result<String>) -> anyhow::Result<String> { + let mut buf = String::new(); + + writeln!(&mut buf, "{} (filtered)", format_command(cmd)?)?; + writeln!(&mut buf, "--------")?; + + match output { + Ok(out) => { + writeln!(&mut buf, "{out}")?; + } + Err(err) => { + writeln!(&mut buf, "The command failed due to an error: {err}")?; + } + } + writeln!(&mut buf, "--------")?; + + Ok(buf) + } + + /// Partial CSV records for `driverquery /FO csv ...` + #[derive(serde::Deserialize, serde::Serialize)] + struct DriverQueryRecords { + #[serde(rename = "Module Name")] + module_name: String, + #[serde(rename = "Display Name")] + display_name: String, + #[serde(rename = "Description")] + description: String, + #[serde(rename = "Driver Type")] + driver_type: String, + #[serde(rename = "Start Mode")] + start_mode: String, + #[serde(rename = "State")] + state: String, + #[serde(rename = "Status")] + status: String, + #[serde(rename = "Path")] + path: String, + } + + fn parse_driverquery(out_s: String) -> anyhow::Result<String> { + parse_csv::<DriverQueryRecords>(out_s.as_bytes(), driverquery_filter) + } + + fn driverquery_filter(records: &DriverQueryRecords) -> bool { + string_contains_keyword(&records.module_name) + || string_contains_keyword(&records.display_name) + || string_contains_keyword(&records.description) + || string_contains_keyword(&records.path) + } + + /// Partial CSV records for `pnputil /format csv ...` + #[derive(serde::Deserialize, serde::Serialize)] + #[serde(rename_all = "PascalCase")] + struct PnputilRecords { + instance_id: String, + device_description: String, + status: String, + problem_code: String, + problem_status: String, + driver_name: String, + } + + fn parse_pnputil(out_s: String) -> anyhow::Result<String> { + parse_csv::<PnputilRecords>(out_s.as_bytes(), pnputil_filter) + } + + fn parse_pnputil_problem(out_s: String) -> anyhow::Result<String> { + // In this case, we keep all entries + parse_csv::<PnputilRecords>(out_s.as_bytes(), |_| true) + } + + fn pnputil_filter(records: &PnputilRecords) -> bool { + string_contains_keyword(&records.instance_id) + || string_contains_keyword(&records.device_description) + || string_contains_keyword(&records.driver_name) + } + + /// Return whether `s` contains one of the keywords in [KEYWORDS]. + /// This is case-insensitive. + fn string_contains_keyword(s: &str) -> bool { + KEYWORDS + .iter() + .any(|word| s.to_ascii_lowercase().contains(&word.to_ascii_lowercase())) + } + + fn parse_raw_cmd_output(bytes: &[u8]) -> anyhow::Result<String> { + // Convert from current codepage to UTF8 + // Seems not entirely correct, but probably good enough + let mut bytes = bytes.to_vec(); + bytes.push(0); + let bytes_cstr = CStr::from_bytes_until_nul(&bytes).unwrap(); + + let str = multibyte_to_wide(bytes_cstr, CP_ACP).context("Invalid pnputil output")?; + let out_s = OsString::from_wide(&str); + Ok(out_s.to_string_lossy().into_owned()) + } + + fn parse_csv<RecordType: serde::de::DeserializeOwned + serde::Serialize>( + data: &[u8], + filter_fn: impl Fn(&RecordType) -> bool, + ) -> anyhow::Result<String> { + let mut csv = csv::Reader::from_reader(data); + + let mut buf = vec![]; + let mut out = csv::Writer::from_writer(&mut buf); + + csv.deserialize() + .filter_map(|record_result| record_result.ok()) + .try_for_each(|record: RecordType| { + if !filter_fn(&record) { + return Ok(()); + } + out.serialize(record) + .context("Failed to serialize csv record") + })?; + + drop(out); + + Ok(String::from_utf8_lossy(&buf).into_owned()) + } + + fn driverquery_cmd() -> anyhow::Result<Command> { + let path = get_system_dir()?.join("driverquery.exe"); + let mut driver_query = Command::new(path); + driver_query.args(["/FO", "csv", "/V"]); + Ok(driver_query) + } + + fn pnputil_cmd() -> anyhow::Result<Command> { + let path = get_system_dir()?.join("pnputil.exe"); + let mut pnputil = Command::new(path); + // Enumerate network devices + pnputil.args([ + "/enum-devices", + "/class", + "{4d36e972-e325-11ce-bfc1-08002be10318}", + ]); + pnputil.args(["/format", "csv"]); + Ok(pnputil) + } + + fn pnputil_problem_cmd() -> anyhow::Result<Command> { + let path = get_system_dir()?.join("pnputil.exe"); + let mut pnputil = Command::new(path); + // Enumerate devices with issues + pnputil.args(["/enum-devices", "/problem"]); + pnputil.args(["/format", "csv"]); + Ok(pnputil) + } + + fn format_command(cmd: &Command) -> anyhow::Result<String> { + let mut s = String::new(); + + let prog = Path::new(cmd.as_std().get_program()) + .file_name() + .context("Missing command filename")? + .display(); + write!(&mut s, r#"{prog}"#)?; + + for arg in cmd.as_std().get_args() { + write!(&mut s, r#" "{}""#, arg.display())?; + } + + Ok(s) + } + + #[cfg(test)] + mod test { + use super::*; + + /// Test whether driverquery output is filtered correctly + #[tokio::test] + async fn test_driverquery_output() { + let test_output_path = Path::new(&std::env::var("CARGO_MANIFEST_DIR").unwrap()) + .join("src/logging/driverquery-out.testdata"); + + // Uncomment to generate new output + //tokio::fs::write( + // &test_output_path, + // driverquery_cmd().unwrap().output().await.unwrap().stdout, + //) + //.await + //.unwrap(); + + let my_output = std::fs::read(test_output_path).unwrap(); + let my_output = parse_raw_cmd_output(&my_output).unwrap(); + let parsed_driverquery_output = parse_driverquery(my_output).unwrap(); + let formatted_driverquery_log = + format_logs(&driverquery_cmd().unwrap(), Ok(parsed_driverquery_output)).unwrap(); + + insta::assert_snapshot!(formatted_driverquery_log); + } + + /// Test whether pnputil output is filtered correctly + #[tokio::test] + async fn test_pnputil_output() { + let test_output_path = Path::new(&std::env::var("CARGO_MANIFEST_DIR").unwrap()) + .join("src/logging/pnputil-out.testdata"); + + // Uncomment to generate new output + //tokio::fs::write( + // &test_output_path, + // pnputil_cmd().unwrap().output().await.unwrap().stdout, + //) + //.await + //.unwrap(); + + let my_output = std::fs::read(test_output_path).unwrap(); + let my_output = parse_raw_cmd_output(&my_output).unwrap(); + let parsed_output = parse_pnputil(my_output).unwrap(); + let formatted_logs = format_logs(&pnputil_cmd().unwrap(), Ok(parsed_output)).unwrap(); + + insta::assert_snapshot!(formatted_logs); + } + + /// Test whether pnputil output is filtered correctly + #[tokio::test] + async fn test_pnputil_problem_output() { + let test_output_path = Path::new(&std::env::var("CARGO_MANIFEST_DIR").unwrap()) + .join("src/logging/pnputil-problem-out.testdata"); + + // Uncomment to generate new output + //tokio::fs::write( + // &test_output_path, + // pnputil_problem_cmd().unwrap().output().await.unwrap().stdout, + //) + //.await + //.unwrap(); + + let my_output = std::fs::read(test_output_path).unwrap(); + let my_output = parse_raw_cmd_output(&my_output).unwrap(); + let parsed_output = parse_pnputil_problem(my_output).unwrap(); + let formatted_logs = + format_logs(&pnputil_problem_cmd().unwrap(), Ok(parsed_output)).unwrap(); + + insta::assert_snapshot!(formatted_logs); + } + } +} diff --git a/talpid-core/src/logging/driverquery-out.testdata b/talpid-core/src/logging/driverquery-out.testdata new file mode 100644 index 0000000000..7c2add3411 --- /dev/null +++ b/talpid-core/src/logging/driverquery-out.testdata @@ -0,0 +1,5 @@ +"Module Name","Display Name","Description","Driver Type","Start Mode","State","Status","Accept Stop","Accept Pause","Paged Pool(bytes)","Code(bytes)","BSS(bytes)","Link Date","Path","Init(bytes)" +"ACPI","Microsoft ACPI Driver","Microsoft ACPI Driver","Kernel ","Boot","Running","OK","TRUE","FALSE","184 320","466 944","0","","C:\WINDOWS\system32\drivers\ACPI.sys","24 576" +"mullvad-split-tunnel","Mullvad Split Tunnel Service","Mullvad Split Tunnel Service","Kernel ","Manual","Stopped","OK","FALSE","FALSE","4 096","53 248","0","2022-09-22 11:41:33","\??\C:\Program Files\Mullvad VPN\resources\mullvad-split-tunnel.sys","8 192" +"MullvadWireGuard","MullvadWireGuard","MullvadWireGuard","Kernel ","Manual","Stopped","OK","FALSE","FALSE","0","131 072","0","2024-06-04 14:21:55","C:\WINDOWS\system32\drivers\mullvad-wireguard.sys","12 288" +"NDIS","NDIS System Driver","NDIS System Driver","Kernel ","Boot","Running","OK","TRUE","FALSE","331 776","1 028 096","0","","C:\WINDOWS\system32\drivers\ndis.sys","16 384" diff --git a/talpid-core/src/logging/mod.rs b/talpid-core/src/logging/mod.rs index bd09c9dc03..016f3b2cc3 100644 --- a/talpid-core/src/logging/mod.rs +++ b/talpid-core/src/logging/mod.rs @@ -1,5 +1,7 @@ use std::{fs, io, path::Path}; +pub mod diag; + /// Unable to create new log file #[derive(thiserror::Error, Debug)] #[error("Unable to create new log file")] diff --git a/talpid-core/src/logging/pnputil-out.testdata b/talpid-core/src/logging/pnputil-out.testdata new file mode 100644 index 0000000000..995767fea1 --- /dev/null +++ b/talpid-core/src/logging/pnputil-out.testdata @@ -0,0 +1,12 @@ +InstanceId,DeviceDescription,ClassName,ClassGuid,ManufacturerName,Status,ProblemCode,ProblemStatus,DriverName,ExtensionDriverNames +"SWD\MSRRAS\MS_PPPOEMINIPORT","WAN Miniport (PPPOE)","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","netrasa.inf","" +"SWD\MSRRAS\MS_PPTPMINIPORT","WAN Miniport (PPTP)","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","netrasa.inf","" +"SWD\MSRRAS\MS_AGILEVPNMINIPORT","WAN Miniport (IKEv2)","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","netavpna.inf","" +"ROOT\KDNIC\0000","Microsoft Kernel Debug Network Adapter","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","kdnic.inf","" +"USB\VID_0BDA&PID_8153\001000001","Realtek USB GbE Family Controller","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Realtek","Disconnected","","","oem1.inf","" +"BTH\MS_BTHPAN\8&19b34d4&0&2","Bluetooth Device (Personal Area Network)","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","bthpan.inf","" +"ROOT\VMS_MP\0000","Hyper-V Virtual Ethernet Adapter #3","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","wvms_mp_windows.inf","" +"ROOT\WINTUN\0000","Wintun Userspace Tunnel","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","WireGuard LLC","Started","","","oem2.inf","" +"SWD\MSRRAS\MS_NDISWANIPV6","WAN Miniport (IPv6)","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","netrasa.inf","" +"SWD\MSRRAS\MS_L2TPMINIPORT","WAN Miniport (L2TP)","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","netrasa.inf","" +"ROOT\VMS_VSMP\0000","Hyper-V Virtual Switch Extension Adapter","Net","{4d36e972-e325-11ce-bfc1-08002be10318}","Microsoft","Started","","","wvms_mp_windows.inf","" diff --git a/talpid-core/src/logging/pnputil-problem-out.testdata b/talpid-core/src/logging/pnputil-problem-out.testdata new file mode 100644 index 0000000000..bf909c0c1d --- /dev/null +++ b/talpid-core/src/logging/pnputil-problem-out.testdata @@ -0,0 +1,2 @@ +InstanceId,DeviceDescription,ClassName,ClassGuid,ManufacturerName,Status,ProblemCode,ProblemStatus,DriverName,ExtensionDriverNames +"UEFI\RES_{redacted}\0","Camera Firmware","Firmware","{f2e7dd72-6468-4e36-b6f1-6488f42c1b52}","Realtek Semiconductor Corp.","Problem","10","0xC0210000","oem84.inf","" diff --git a/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__driverquery_output.snap b/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__driverquery_output.snap new file mode 100644 index 0000000000..578441f5af --- /dev/null +++ b/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__driverquery_output.snap @@ -0,0 +1,12 @@ +--- +source: talpid-core/src/logging/diag.rs +expression: formatted_driverquery_log +snapshot_kind: text +--- +driverquery.exe "/FO" "csv" "/V" (filtered) +-------- +Module Name,Display Name,Description,Driver Type,Start Mode,State,Status,Path +mullvad-split-tunnel,Mullvad Split Tunnel Service,Mullvad Split Tunnel Service,Kernel ,Manual,Stopped,OK,\??\C:\Program Files\Mullvad VPN\resources\mullvad-split-tunnel.sys +MullvadWireGuard,MullvadWireGuard,MullvadWireGuard,Kernel ,Manual,Stopped,OK,C:\WINDOWS\system32\drivers\mullvad-wireguard.sys + +-------- diff --git a/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__pnputil_output.snap b/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__pnputil_output.snap new file mode 100644 index 0000000000..176a1f74fe --- /dev/null +++ b/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__pnputil_output.snap @@ -0,0 +1,11 @@ +--- +source: talpid-core/src/logging/diag.rs +expression: formatted_logs +snapshot_kind: text +--- +pnputil.exe "/enum-devices" "/class" "{4d36e972-e325-11ce-bfc1-08002be10318}" "/format" "csv" (filtered) +-------- +InstanceId,DeviceDescription,Status,ProblemCode,ProblemStatus,DriverName +ROOT\WINTUN\0000,Wintun Userspace Tunnel,Started,,,oem2.inf + +-------- diff --git a/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__pnputil_problem_output.snap b/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__pnputil_problem_output.snap new file mode 100644 index 0000000000..3660589ebe --- /dev/null +++ b/talpid-core/src/logging/snapshots/talpid_core__logging__diag__windows__test__pnputil_problem_output.snap @@ -0,0 +1,11 @@ +--- +source: talpid-core/src/logging/diag.rs +expression: formatted_logs +snapshot_kind: text +--- +pnputil.exe "/enum-devices" "/problem" "/format" "csv" (filtered) +-------- +InstanceId,DeviceDescription,Status,ProblemCode,ProblemStatus,DriverName +UEFI\RES_{redacted}\0,Camera Firmware,Problem,10,0xC0210000,oem84.inf + +-------- diff --git a/talpid-core/src/tunnel_state_machine/connecting_state.rs b/talpid-core/src/tunnel_state_machine/connecting_state.rs index 9c89b3fc3d..7ba803478c 100644 --- a/talpid-core/src/tunnel_state_machine/connecting_state.rs +++ b/talpid-core/src/tunnel_state_machine/connecting_state.rs @@ -249,6 +249,9 @@ impl ConnectingState { tokio::task::spawn_blocking(move || { let start = Instant::now(); + #[cfg(target_os = "windows")] + let runtime2 = runtime.clone(); + let args = TunnelArgs { runtime, resource_dir: &resource_dir, @@ -259,6 +262,19 @@ impl ConnectingState { route_manager, }; + #[cfg(target_os = "windows")] + async fn maybe_dump_device_logs(log_dir: Option<&Path>, error: &tunnel::Error) { + if error.get_tunnel_device_error().is_some() + && let Some(log_dir) = log_dir + { + log::debug!("Logging device info"); + if let Err(err) = crate::logging::diag::windows::log_device_info(log_dir).await + { + log::error!("Failed to dump device logs: {err}"); + } + } + } + let block_reason = match TunnelMonitor::start(&tunnel_parameters, &log_dir, args) { Ok(monitor) => { let reason = Self::wait_for_tunnel_monitor(monitor, retry_attempt); @@ -272,10 +288,18 @@ impl ConnectingState { "Retrying to connect after failing to start tunnel" ) ); + #[cfg(target_os = "windows")] + runtime2.block_on(async { + maybe_dump_device_logs(log_dir.as_deref(), &error).await; + }); None } Err(error) => { log::error!("{}", error.display_chain_with_msg("Failed to start tunnel")); + #[cfg(target_os = "windows")] + runtime2.block_on(async { + maybe_dump_device_logs(log_dir.as_deref(), &error).await; + }); Some(error.into()) } }; diff --git a/talpid-core/src/tunnel_state_machine/mod.rs b/talpid-core/src/tunnel_state_machine/mod.rs index 99237506ee..0dd029cf86 100644 --- a/talpid-core/src/tunnel_state_machine/mod.rs +++ b/talpid-core/src/tunnel_state_machine/mod.rs @@ -357,14 +357,27 @@ impl TunnelStateMachine { let filtering_resolver = crate::resolver::start_resolver(Default::default()).await?; #[cfg(windows)] - let split_tunnel = split_tunnel::SplitTunnel::new( - runtime.clone(), - args.resource_dir.clone(), - args.command_tx.clone(), - volume_update_rx, - args.route_manager.clone(), - ) - .map_err(Error::InitSplitTunneling)?; + let split_tunnel = { + let result = split_tunnel::SplitTunnel::new( + runtime.clone(), + args.resource_dir.clone(), + args.command_tx.clone(), + volume_update_rx, + args.route_manager.clone(), + ) + .map_err(Error::InitSplitTunneling); + + if result.is_err() + && let Some(log_dir) = &args.log_dir + { + log::debug!("Logging device info"); + if let Err(err) = crate::logging::diag::windows::log_device_info(log_dir).await { + log::error!("Failed to dump device logs: {err}"); + } + } + + result? + }; #[cfg(target_os = "macos")] let split_tunnel = |