admin changed the title to Rare user profile bug causing broken VPN and data leak .

kirillan10 Content in your post violating our community rules has been removed. Making unsubstantiated claims as part of trying to push a certain agenda is not permitted. You're wrongly jumping to the conclusion that there's a widespread issue without any evidence of that. We've only ever had one similar report before using the same VPN app and it was a long time ago so this isn't a recent regression and it's also clearly not a crash that's occurring for lots of people. You also clearly have an agenda and are trying to push that with this post. You draw into question whether you're a reliable source of information based on doing that and the fact that you're now using / promoting a highly insecure OS with highly insecure modifications further compromising the security model. It's quite possible you triggered the issue by tinkering around with ADB or modifying the OS. You have not confirmed that you used unmodified GrapheneOS or that you didn't disable system components with ADB, etc. It's quite strange for 2 people who know each other to have an issue which no one else seems to have. The previous person with a similar issue never experienced it again after redoing their setup after a factory reset.

      other8026 The problem first appeared 3-4 months ago, but then did not recur until March. During March it occurred 3 times, which led to a traffic leak, which should not have happened.

        de0u I have the latest version from F-Droid, but as far as I know, Wireguard has been updated since then.
        I don't know if the version is compatible or not.

        The problem occurred 3 times in March and 1 time 3-4 months ago. It is enough to reboot the phone for the problem to be solved, but the traffic has already leaked outside the VPN.

        It is unlikely that in the event of a problem, the “always on vpn” and especially “block traffic outside the VPN” functions should break down. Otherwise, in this case, any application or update error can easily lead to traffic leakage and privacy violation.......Which obviously shouldn't happen.

          admin

          It's quite possible you triggered the issue by tinkering around with ADB or modifying the OS.

          No, the system was not modified, root was not obtained, ADB was not used. There are 19 profiles in the phone. When the problem occurs, loading a another profile freezes for 30 seconds (possibly a coincidence).

          You draw into question whether you're a reliable source of information based on doing that and the fact that you're now using / promoting a highly insecure OS with highly insecure modifications further compromising the security model.

          I just described that the “other” OS has Firewall capabilities that allow to protect the user from such problems through allowed IPs. Because the “block traffic outside the VPN” option did not help at all in my case; and this has led to serious privacy issues.

          It's quite strange for 2 people who know each other to have an issue which no one else seems to have.

          I set up both of our phones. Both phones have many profiles (19 for me and 17 for my colleague). Approximately the same applications were installed (although it is unlikely that installed applications should affect and break system functions). Approximately the same settings were used.

            UndercoverBozo I understand, and thanks for the alternative client.
            But the problem is different: the “block traffic outside the VPN” option also breaks, which leads to traffic leakage.
            My message is mainly for this reason            . The blocking and anti-leak function should not break if the VPN service is not running or for some other reason...

              UndercoverBozo I'm not sure if the problem is with the client. Because in all cases when an error occurred, the loading of the profile froze for 30 seconds even before any applications started (at the stage before entering the user password), so most likely the system was unable to launch some modules (possibly due to a lack of RAM, although this is just my guess), and therefore there was a traffic leak due to a broken VPN service and the automatic disabling of the “block traffic outside of VPN” option.

              Moreover, the problem rarely occurs. Accordingly, if the problem were in the client, then the problem would always arise.

                kirillan10 You've sent a Settings app log. Need to see a full system log right after reproducing this issue, i.e. after switching to user profile and confirming that VPN is broken there. To capture a full system log, go to Settings -> System -> View logs.

                    2 months later

                    muhomorr Hello!
                    I just sent you a new log.
                    I no longer use GrapheneOS for serious things, but only for games and chatting, so leaks are no longer a big problem for me. But such traffic leaks outside the VPN when protection is enabled may well endanger other users who have faith in the reliability of the system.
                    I ask you to look into and fix the problem.
                    And as a wish: adding a Firewall option for applications, as is implemented in several other OSes (I can’t name them, since admins block people here for praising the functions of other OSes)...

                        UndercoverBozo When I name third-party operating systems on this forum, my messages are edited or deleted by administrators. In any case, the current problem described above puts users' privacy at risk because it leads to traffic leakage, which the "block traffic outside VPN" feature does not help with.