Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Connectivity / ac2e8f354dd2cd155098a4609aba0a4fbd9e9c8e
commitac2e8f354dd2cd155098a4609aba0a4fbd9e9c8e[log] [tgz]
authorChiachang Wang <chiachangwang@google.com>Thu Jan 18 12:55:11 2024 +0000
committerChiachang Wang <chiachangwang@google.com>Fri Jan 19 02:50:35 2024 +0000
tree734b883511026afb38502c340ab2701263e249d6
parent9a6f8ccf287c27e63309ffc35e9996c92ad9c782 [diff]
Remove the UID range check for TCP sockets

The original patch (aosp/2891011) incorrectly counted TCP
sockets with keepalive enabled for VPNs. This issue was
caused by the UID range verification. On bypassable VPNs,
the socket mark is always correct. It's possible for an
app that is not in the UID ranges to establish a socket
on the VPN. But that socket should be counted for the
purposes of keepalive. The old code would correctly count
it and the new code will incorrectly not count it. Also,
the UID range verification does not help on non-bypassable
VPNs since the socket mark is always the mark of default
network, not the socket mark of the VPN.

Instead of reverting the entire patch, this commit
removes the UID range mechanism. The code refactoring from
the original commit (which used structured classes to read
socket information) has been kept as it is a valuable
improvement.

Bug: 320842519
Test: atest FrameworksNetTests
Change-Id: I00731796144c982b9fd4d9771f3d0db1f1529a89
3 files changed
tree: 734b883511026afb38502c340ab2701263e249d6
  1. bpf_progs/
  2. clatd/
  3. common/
  4. Cronet/
  5. DnsResolver/
  6. framework/
  7. framework-t/
  8. nearby/
  9. netbpfload/
  10. netd/
  11. remoteauth/
  12. service/
  13. service-t/
  14. staticlibs/
  15. tests/
  16. Tethering/
  17. thread/
  18. tools/
  19. .gitignore
  20. OWNERS
  21. OWNERS_core_networking
  22. OWNERS_core_networking_xts
  23. PREUPLOAD.cfg
  24. TEST_MAPPING