Add support for fwmark on linux

src/config.go

@@ -145,10 +145,10 @@ func ipcSetOperation(device *Device, socket *bufio.ReadWriter) *IPCError {
 					return &IPCError{Code: ipcErrorInvalid}
 				}
 
-				netc := &device.net
+				device.net.mutex.Lock()
-				netc.mutex.Lock()
+				device.net.addr = addr
-				netc.addr = addr
+				device.net.mutex.Unlock()
-				netc.mutex.Unlock()
+
 				err = updateUDPConn(device)
 				if err != nil {
 					logError.Println("Failed to set listen_port:", err)
@@ -158,7 +158,24 @@ func ipcSetOperation(device *Device, socket *bufio.ReadWriter) *IPCError {
 				// TODO: Clear source address of all peers
 
 			case "fwmark":
-				logError.Println("FWMark not handled yet")
+				fwmark, err := strconv.ParseInt(value, 10, 32)
+				if err != nil {
+					logError.Println("Invalid fwmark", err)
+					return &IPCError{Code: ipcErrorInvalid}
+				}
+
+				device.net.mutex.Lock()
+				device.net.fwmark = int(fwmark)
+				err = setMark(
+					device.net.conn,
+					device.net.fwmark,
+				)
+				device.net.mutex.Unlock()
+				if err != nil {
+					logError.Println("Failed to set fwmark:", err)
+					return &IPCError{Code: ipcErrorIO}
+				}
+
 				// TODO: Clear source address of all peers
 
 			case "public_key":

src/conn.go

@@ -13,6 +13,7 @@ func updateUDPConn(device *Device) error {
 
 	if netc.conn != nil {
 		netc.conn.Close()
+		netc.conn = nil
 	}
 
 	// open new connection
@@ -26,11 +27,24 @@ func updateUDPConn(device *Device) error {
 			return err
 		}
 
+		// set fwmark
+
+		err = setMark(netc.conn, netc.fwmark)
+		if err != nil {
+			return err
+		}
+
 		// retrieve port (may have been chosen by kernel)
 
 		addr := conn.LocalAddr()
 		netc.conn = conn
-		netc.addr, _ = net.ResolveUDPAddr(addr.Network(), addr.String())
+		netc.addr, _ = net.ResolveUDPAddr(
+			addr.Network(),
+			addr.String(),
+		)
+
+		// notify goroutines
+
 		signalSend(device.signal.newUDPConn)
 	}
 

src/device.go

@@ -21,9 +21,10 @@ type Device struct {
 		messageBuffers sync.Pool
 	}
 	net struct {
-		mutex sync.RWMutex
+		mutex  sync.RWMutex
-		addr  *net.UDPAddr // UDP source address
+		addr   *net.UDPAddr // UDP source address
-		conn  *net.UDPConn // UDP "connection"
+		conn   *net.UDPConn // UDP "connection"
+		fwmark int
 	}
 	mutex        sync.RWMutex
 	privateKey   NoisePrivateKey

src/tun.go

@@ -34,28 +34,28 @@ func (device *Device) RoutineTUNEventReader() {
 			if err != nil {
 				logError.Println("Failed to load updated MTU of device:", err)
 			} else if int(old) != mtu {
-				atomic.StoreInt32(&device.tun.mtu, int32(mtu))
 				if mtu+MessageTransportSize > MaxMessageSize {
 					logInfo.Println("MTU updated:", mtu, "(too large)")
 				} else {
 					logInfo.Println("MTU updated:", mtu)
 				}
+				atomic.StoreInt32(&device.tun.mtu, int32(mtu))
 			}
 		}
 
 		if event&TUNEventUp != 0 {
 			if !device.tun.isUp.Get() {
+				logInfo.Println("Interface set up")
 				device.tun.isUp.Set(true)
 				updateUDPConn(device)
-				logInfo.Println("Interface set up")
 			}
 		}
 
 		if event&TUNEventDown != 0 {
 			if device.tun.isUp.Get() {
+				logInfo.Println("Interface set down")
 				device.tun.isUp.Set(false)
 				closeUDPConn(device)
-				logInfo.Println("Interface set down")
 			}
 		}
 	}