Remove SO_BINDTODEVICE from VPN protect SO_BINDTODEVICE is not needed with policy routing. SO_BINDTODEVICE was also used on the default iface which causes problems when the default iface is IPv6 only and the socket tries to connect to a IPv4 address. Bug: 12940882 Change-Id: I5b2bde0ac5459433fc5749f509072a548532f730

commit: bcf12b302cd2715de54493808b2503de05c53757 [log] [tgz]
author: Chad Brubaker <cbrubaker@google.com> Tue Feb 11 14:18:56 2014 -0800
committer: Chad Brubaker <cbrubaker@google.com> Thu Feb 13 18:19:43 2014 -0800
tree: 9f69006d2774630480961038608b2496e1ab2d60
parent: 94088e0c6fd7f5c18c85f25c8216b9c1a23015e3 [diff] [blame]
diff --git a/core/java/android/net/VpnService.java b/core/java/android/net/VpnService.java
index d7dc7f5..7385dff 100644
--- a/core/java/android/net/VpnService.java
+++ b/core/java/android/net/VpnService.java

@@ -151,9 +151,10 @@
     }
 
     /**
-     * Protect a socket from VPN connections. The socket will be bound to the
-     * current default network interface, so its traffic will not be forwarded
-     * through VPN. This method is useful if some connections need to be kept
+     * Protect a socket from VPN connections. After protecting, data sent
+     * through this socket will go directly to the underlying network,
+     * so its traffic will not be forwarded through the VPN.
+     * This method is useful if some connections need to be kept
      * outside of VPN. For example, a VPN tunnel should protect itself if its
      * destination is covered by VPN routes. Otherwise its outgoing packets
      * will be sent back to the VPN interface and cause an infinite loop. This
commit	bcf12b302cd2715de54493808b2503de05c53757	[log] [tgz]
author	Chad Brubaker <cbrubaker@google.com>	Tue Feb 11 14:18:56 2014 -0800
committer	Chad Brubaker <cbrubaker@google.com>	Thu Feb 13 18:19:43 2014 -0800
tree	9f69006d2774630480961038608b2496e1ab2d60
parent	94088e0c6fd7f5c18c85f25c8216b9c1a23015e3 [diff] [blame]