Skip to content

fixup! fix DNS leak in VPN lockdown mode when VPN is down#15

Open
liamsmith827 wants to merge 1 commit intoGrapheneOS:16-qpr2from
liamsmith827:16-qpr2_03-03_vpn-app-leaks
Open

fixup! fix DNS leak in VPN lockdown mode when VPN is down#15
liamsmith827 wants to merge 1 commit intoGrapheneOS:16-qpr2from
liamsmith827:16-qpr2_03-03_vpn-app-leaks

Conversation

@liamsmith827
Copy link
Contributor

@liamsmith827 liamsmith827 commented Mar 4, 2026

When a VPN app is doing DNS with its own tunnel servers, protecting that traffic can result in the tunnel and tunnel DNS server IP addresses leaking. Any VPN app that is setting tunnel DNS servers that aren't reachable through the tunnel is already broken, as apps would be unable to do DNS when leak blocking is enabled.

GrapheneOS/os-issue-tracker#5273

@liamsmith827
fixup! fix DNS leak in VPN lockdown mode when VPN is down
82ed01b 
When a VPN app is doing DNS with its own tunnel servers, protecting that traffic
can result in the tunnel and tunnel DNS server IP addresses leaking. Any VPN app
that is setting tunnel DNS servers that aren't reachable through the tunnel is
already broken, as apps would be unable to do DNS when leak blocking is enabled.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@liamsmith827