Gitiles
Code Review Sign In
review.blissroms.org / platform_system_netd / ebb34e9e423dcb637caed06a593709dd5c671990
commitebb34e9e423dcb637caed06a593709dd5c671990[log] [tgz]
authorTommy Webb <tommy@calyxinstitute.org>Thu Apr 27 18:01:41 2023 -0400
committerJackeagle <jackeagle102@gmail.com>Wed Aug 30 00:58:26 2023 -0400
tree9077819bd3024a0f13831e8f73d655f20b88c5b3
parent736206f4866eae577748c1c2da4b83a89437d023 [diff]
Stop setting netId for bypassable VPNs

Code comments claim that a socket's netId needs to be specified for
bypassable VPNs in order for them to have any traffic at all, but this
does not appear to reflect reality today -- at least with our firewall
changes -- as a simple test will show that such VPNs are still usable
even when we don't set the netId to that of the bypassable VPN.
(The comments and code were added in 2014 and may be out-of-date.)

This change resolves an issue resulting from recent firewall changes
that prevents UIDs of bypassable VPNs from accessing other networks,
even when they are allowed to do so.

Issue: calyxos#1650
Change-Id: I18edc8659750044534c9bea5ed49eddbcea89378
Signed-off-by: Mohammad Hasan Keramat J <ikeramat@protonmail.com>
1 file changed
tree: 9077819bd3024a0f13831e8f73d655f20b88c5b3
  1. client/
  2. include/
  3. netutils_wrappers/
  4. server/
  5. tests/
  6. .clang-format ⇨ ../../build/soong/scripts/system-clang-format
  7. .editorconfig
  8. Android.bp
  9. NOTICE
  10. OWNERS
  11. PREUPLOAD.cfg
  12. TEST_MAPPING