[PATCH] resolver: Add path to resolv.conf to config options

[PATCH] resolver: Add path to resolv.conf to config options

[Jakub Jirutka]

Before (current state):
If the <STATEDIR> (/var/run/connman) directory exists, ConnMan writes
resolvfile into <STATEDIR>/resolv.conf. If it doesn't exist, it writes
into /etc/resolv.conf. If it fails, it does nothing.

Problem:
This is unclear and error prone. The user (or package maintainer) may
create the /var/run/connman directory for a pidfile or whatever and
surely doesn't expect ConnMan to suddenly stop updating
/etc/resolv.conf. Or the user doesn't want ConnMan to touch
/etc/resolv.conf (e.g. openresolv or similar tool is used),
ever. Configuring this use case by creating directory /run/connman (as
suggested e.g. on
https://wiki.archlinux.org/title/ConnMan#/etc/resolv.conf) is really
weird... and error prone.

After:
The user can explicitly set path for the resolvfile in connman.conf via
"ResolvConf" option. If this option is set, ConnMan writes
resolvfile to the specified file (and creates it if doesn't exist). If
it fails (e.g. directory doesn't exist or file is not writable) or the
path is /dev/null or an empty string, it does nothing.
If this option is not set, it behaves as before.
---
 doc/connman.conf.5.in |  8 ++++++++
 src/main.c            | 14 ++++++++++++++
 src/resolver.c        | 33 ++++++++++++++++++++++++++-------
 3 files changed, 48 insertions(+), 7 deletions(-)

diff --git a/doc/connman.conf.5.in b/doc/connman.conf.5.in
index d8084118..1f9b2908 100644
--- a/doc/connman.conf.5.in
+++ b/doc/connman.conf.5.in
@@ -215,6 +215,14 @@ Enable regdomain to be changed along timezone changes. With this option set to
 true each time the timezone changes the first present ISO3166 country code is
 being read from /usr/share/zoneinfo/zone1970.tab and set as regdom value.
 Default value is false.
+.TP
+.BI ResolvConf= string
+Path to resolv.conf file. If the file does not exist, but intermediate
+directories exist, it will be created.
+If this option is not set, it tries to write into
+@runstatedir@/connman/resolv.conf and fallbacks to @sysconfdir@/resolv.conf if
+it fails (@runstatedir@/connman does not exist or is not writeable).
+If you do not want to update resolv.conf, you can set /dev/null.
 .SH "EXAMPLE"
 The following example configuration disables hostname updates and enables
 ethernet tethering.
diff --git a/src/main.c b/src/main.c
index 5c632fd1..70277f66 100644
--- a/src/main.c
+++ b/src/main.c
@@ -110,6 +110,7 @@ static struct {
 	bool use_gateways_as_timeservers;
 	char *localtime;
 	bool regdom_follows_timezone;
+	char *resolv_conf;
 } connman_settings  = {
 	.bg_scan = true,
 	.pref_timeservers = NULL,
@@ -138,6 +139,7 @@ static struct {
 	.acd = false,
 	.use_gateways_as_timeservers = false,
 	.localtime = NULL,
+	.resolv_conf = NULL,
 };
 
 #define CONF_BG_SCAN                    "BackgroundScanning"
@@ -168,6 +170,7 @@ static struct {
 #define CONF_USE_GATEWAYS_AS_TIMESERVERS "UseGatewaysAsTimeservers"
 #define CONF_LOCALTIME                  "Localtime"
 #define CONF_REGDOM_FOLLOWS_TIMEZONE    "RegdomFollowsTimezone"
+#define CONF_RESOLV_CONF                "ResolvConf"
 
 static const char *supported_options[] = {
 	CONF_BG_SCAN,
@@ -198,6 +201,7 @@ static const char *supported_options[] = {
 	CONF_USE_GATEWAYS_AS_TIMESERVERS,
 	CONF_LOCALTIME,
 	CONF_REGDOM_FOLLOWS_TIMEZONE,
+	CONF_RESOLV_CONF,
 	NULL
 };
 
@@ -594,6 +598,13 @@ static void parse_config(GKeyFile *config)
 	if (!error)
 		connman_settings.regdom_follows_timezone = boolean;
 
+	string = __connman_config_get_string(config, "General",
+				CONF_RESOLV_CONF, &error);
+	if (!error)
+		connman_settings.resolv_conf = string;
+	else
+		g_free(string);
+
 	g_clear_error(&error);
 }
 
@@ -830,6 +841,9 @@ bool connman_setting_get_bool(const char *key)
 	if (g_str_equal(key, CONF_REGDOM_FOLLOWS_TIMEZONE))
 		return connman_settings.regdom_follows_timezone;
 
+	if (g_str_equal(key, CONF_RESOLV_CONF))
+		return connman_settings.resolv_conf;
+
 	return false;
 }
 
diff --git a/src/resolver.c b/src/resolver.c
index 618353fd..4ab51d6b 100644
--- a/src/resolver.c
+++ b/src/resolver.c
@@ -103,6 +103,7 @@ static int resolvfile_export(void)
 	int fd, err;
 	unsigned int count;
 	mode_t old_umask;
+	const char *resolv_conf;
 
 	content = g_string_new("# Generated by Connection Manager\n");
 
@@ -161,15 +162,33 @@ static int resolvfile_export(void)
 
 	old_umask = umask(022);
 
-	fd = open(RESOLV_CONF_STATEDIR, O_RDWR | O_CREAT | O_CLOEXEC,
-					S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
-	if (fd < 0) {
-		connman_warn_once("Cannot create "RESOLV_CONF_STATEDIR" "
-			"falling back to "RESOLV_CONF_ETC);
+	resolv_conf = connman_setting_get_string("ResolvConf");
+	/*
+	 * TODO: This is mainly for backward compatibility. In some future version,
+	 * "ResolvConf" setting should default to RESOLV_CONF_STATEDIR or
+	 * RESOLV_CONF_ETC and this branch can be removed.
+	 */
+	if (resolv_conf == NULL) {
+		fd = open(RESOLV_CONF_STATEDIR, O_RDWR | O_CREAT | O_CLOEXEC,
+						S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
+		if (fd < 0) {
+			connman_warn_once("Cannot create "RESOLV_CONF_STATEDIR" "
+				"falling back to "RESOLV_CONF_ETC);
 
-		fd = open(RESOLV_CONF_ETC, O_RDWR | O_CREAT | O_CLOEXEC,
-					S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
+			fd = open(RESOLV_CONF_ETC, O_RDWR | O_CREAT | O_CLOEXEC,
+						S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
 
+			if (fd < 0) {
+				err = -errno;
+				goto done;
+			}
+		}
+	} else if (resolv_conf[0] == '\0' || strcmp(resolv_conf, "/dev/null") == 0) {
+		err = 0;
+		goto done;
+	} else {
+		fd = open(resolv_conf, O_RDWR | O_CREAT | O_CLOEXEC,
+						S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
 		if (fd < 0) {
 			err = -errno;
 			goto done;
-- 
2.16.4

Re: [PATCH] resolver: Add path to resolv.conf to config options

[Daniel Wagner]

On Wed, Jun 15, 2022 at 06:53:50PM +0200, Jakub Jirutka wrote:
> Before (current state):
> If the <STATEDIR> (/var/run/connman) directory exists, ConnMan writes
> resolvfile into <STATEDIR>/resolv.conf. If it doesn't exist, it writes
> into /etc/resolv.conf. If it fails, it does nothing.
> 
> Problem:
> This is unclear and error prone. The user (or package maintainer) may
> create the /var/run/connman directory for a pidfile or whatever and
> surely doesn't expect ConnMan to suddenly stop updating
> /etc/resolv.conf. Or the user doesn't want ConnMan to touch
> /etc/resolv.conf (e.g. openresolv or similar tool is used),
> ever. Configuring this use case by creating directory /run/connman (as
> suggested e.g. on
> https://wiki.archlinux.org/title/ConnMan#/etc/resolv.conf) is really
> weird... and error prone.
> 
> After:
> The user can explicitly set path for the resolvfile in connman.conf via
> "ResolvConf" option. If this option is set, ConnMan writes
> resolvfile to the specified file (and creates it if doesn't exist). If
> it fails (e.g. directory doesn't exist or file is not writable) or the
> path is /dev/null or an empty string, it does nothing.
> If this option is not set, it behaves as before.

Patch applied. Thanks!

Re: [PATCH] resolver: Add path to resolv.conf to config options

[Daniel Wagner]

Hi Jakub,

seems there is something wrong with this patch:

(connmand:3947): GLib-WARNING **: 13:14:06.270: GError set over the top 
of a previous GError or uninitialized memory.
This indicates a bug in someone's code. You must ensure an error is NULL 
before it's set.
The overwriting error message was: Key file does not have key 
?ResolvConf? in group ?General?

Re: [PATCH] resolver: Add path to resolv.conf to config options

[Jussi Laakkonen]

Hi Daniel and Jakub,

Just spotted this mail and might this need one more g_error_free() call 
before the patch code:

> @@ -594,6 +598,13 @@ static void parse_config(GKeyFile *config)
>  	if (!error)
>  		connman_settings.regdom_follows_timezone = boolean;
>  
> +	string = __connman_config_get_string(config, "General",
> +				CONF_RESOLV_CONF, &error);
> +	if (!error)
> +		connman_settings.resolv_conf = string;
> +	else
> +		g_free(string);
> +
>  	g_clear_error(&error);
>  }

Cheers,
  Jussi



On 8/30/22 17:36, Daniel Wagner wrote:
> Hi Jakub,
> 
> seems there is something wrong with this patch:
> 
> (connmand:3947): GLib-WARNING **: 13:14:06.270: GError set over the top 
> of a previous GError or uninitialized memory.
> This indicates a bug in someone's code. You must ensure an error is NULL 
> before it's set.
> The overwriting error message was: Key file does not have key 
> ?ResolvConf? in group ?General?
> 

Re: [PATCH] resolver: Add path to resolv.conf to config options

[Jussi Laakkonen]

Erm, g_clear_error() I meant.

  - Jussi

On 8/30/22 18:06, Jussi Laakkonen wrote:
> Hi Daniel and Jakub,
> 
> Just spotted this mail and might this need one more g_error_free() call 
> before the patch code:
> 
>> @@ -594,6 +598,13 @@ static void parse_config(GKeyFile *config)
>>      if (!error)
>>          connman_settings.regdom_follows_timezone = boolean;
>>
>> +    string = __connman_config_get_string(config, "General",
>> +                CONF_RESOLV_CONF, &error);
>> +    if (!error)
>> +        connman_settings.resolv_conf = string;
>> +    else
>> +        g_free(string);
>> +
>>      g_clear_error(&error);
>>  }
> 
> Cheers,
>   Jussi
> 
> 
> 
> On 8/30/22 17:36, Daniel Wagner wrote:
>> Hi Jakub,
>>
>> seems there is something wrong with this patch:
>>
>> (connmand:3947): GLib-WARNING **: 13:14:06.270: GError set over the 
>> top of a previous GError or uninitialized memory.
>> This indicates a bug in someone's code. You must ensure an error is 
>> NULL before it's set.
>> The overwriting error message was: Key file does not have key 
>> ?ResolvConf? in group ?General?
>>
>