mullvadvpn-app icon indicating copy to clipboard operation
mullvadvpn-app copied to clipboard

Published 20 hours ago verified publisher icon mullvad

Linux App probably incompatible with hardened_malloc

Open boredsquirrel opened this issue 1 year ago • 4 comments

Issue report

Operating system: Fedora 39 with kernel-hardened and hardened_malloc, specifically secureblue

App version: latest RPM from repo

Issue description

https://github.com/secureblue/secureblue/issues/80

The Mullvad VPN app works normally on regular Fedora, but when using the hardened_malloc it fails to launch. Meanwhile on GrapheneOS also with the hardened_malloc it works normally.

secureblue@PC:/var/home/secureblue$ mullvad status
Error: Management RPC server or client error

Caused by:
    0: transport error
    1: error trying to connect: No such file or directory (os error 2)
    2: No such file or directory (os error 2)
secureblue@PC:/var/home/secureblue$ mullvad-daemon
Error: Unable to get log directory
Caused by: Failed to set directory permissions on /var/log/mullvad-vpn
Caused by: Operation not permitted (os error 1)
secureblue@PC:/var/home/secureblue$ sudo mullvad-daemon
[sudo] Passwort für secureblue: 
[2023-11-30 03:10:30.168][mullvad_daemon::version][INFO] Starting mullvad-daemon - 2023.5 2023-10-10
[2023-11-30 03:10:30.168][mullvad_daemon][INFO] Logging to /var/log/mullvad-vpn
[2023-11-30 03:10:30.170][mullvad_daemon][INFO] Management interface listening on /var/run/mullvad-vpn
[2023-11-30 03:10:30.171][mullvad_daemon::settings][INFO] Loading settings from /etc/mullvad-vpn/settings.json
[2023-11-30 03:10:30.172][mullvad_daemon::version_check][WARN] Error: Unable to load cached version info
Caused by: Failed to open app version cache file for reading
Caused by: No such file or directory (os error 2)
[2023-11-30 03:10:30.172][mullvad_relay_selector][ERROR] Failed to load bundled relays: Failed to open relay cache file
[2023-11-30 03:10:30.172][mullvad_relay_selector][ERROR] Error: Unable to load cached relays
Caused by: Failed to open relay cache file
Caused by: No such file or directory (os error 2)
[2023-11-30 03:10:30.172][mullvad_relay_selector][INFO] Initialized with 0 cached relays from 1970-01-01 01:00:00.000
[2023-11-30 03:10:30.182][mullvad_daemon::account_history][INFO] Opening account history file in /etc/mullvad-vpn/account-history.json
[2023-11-30 03:10:30.192][talpid_core::firewall][INFO] Resetting firewall policy

boredsquirrel avatar Nov 30 '23 03:11 boredsquirrel

Looks like it can't read the bundled relay list. This smells like the immutable Fedora ostree/silverblue issues with not having permissions to read/write important file locations. Probably related to #5292

What happens if you run ls -l '/opt/Mullvad VPN/resources/relays.json'? Does that file exist?

secureblue@PC:/var/home/secureblue$ mullvad-daemon

The mullvad-daemon must run as root. So this not working is expected

faern avatar Nov 30 '23 08:11 faern

Doesn't seem like a Mullvad problem. Hardened_malloc + Mullvad app work for me on 5 different linux distros. I don't have Fedora

cloanyvpn avatar Dec 10 '23 22:12 cloanyvpn

I can reproduce this.

Mullvad worked fine on the same version of immutable Fedora, without hardened malloc. So no, not a Fedora problem.

secretmango avatar Dec 25 '23 20:12 secretmango

I will try to reproduce this

boredsquirrel avatar Jan 15 '24 18:01 boredsquirrel