wgengine, magicsock: fix SetPrivateKey data race

Updates #112 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2025-12-28 08:13:11 +00:00 · 2020-02-28 11:13:28 -08:00
parent 4cd3e82bbd
commit 67ede8d6d2
2 changed files with 54 additions and 15 deletions
--- a/wgengine/userspace.go
+++ b/wgengine/userspace.go
@@ -325,15 +325,19 @@ func (e *userspaceEngine) Reconfig(cfg *wgcfg.Config, dnsDomains []string) error
 	e.lastReconfig = rc
 	e.lastCfg = cfg.Copy()

+	// Tell magicsock about the new (or initial) private key
+	// (which is needed by DERP) before wgdev gets it, as wgdev
+	// will start trying to handshake, which we want to be able to
+	// go over DERP.
+	if err := e.magicConn.SetPrivateKey(cfg.PrivateKey); err != nil {
+		e.logf("magicsock: %v\n", err)
+	}
+
 	if err := e.wgdev.Reconfig(cfg); err != nil {
 		e.logf("wgdev.Reconfig: %v\n", err)
 		return err
 	}

-	if err := e.magicConn.SetPrivateKey(cfg.PrivateKey); err != nil {
-		e.logf("magicsock: %v\n", err)
-	}
-
 	// TODO(apenwarr): only handling the first local address.
 	//   Currently we never use more than one anyway.
 	var cidr wgcfg.CIDR