From c8c722d07720ebcb7fb5bf8da217d07d0f2debc3 Mon Sep 17 00:00:00 2001
From: M66B <M66B@users.noreply.github.com>
Date: Thu, 18 Apr 2019 20:03:54 +0200
Subject: [PATCH] Revert "Explicitly block DNS over TCP"

This reverts commit 97ed4ee1ecdcf086ee03cbfae550844cd35fc947.
---
 app/src/main/java/eu/faircode/netguard/ServiceSinkhole.java | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/app/src/main/java/eu/faircode/netguard/ServiceSinkhole.java b/app/src/main/java/eu/faircode/netguard/ServiceSinkhole.java
index 96c30f47..25832ef3 100644
--- a/app/src/main/java/eu/faircode/netguard/ServiceSinkhole.java
+++ b/app/src/main/java/eu/faircode/netguard/ServiceSinkhole.java
@@ -1841,11 +1841,7 @@ public class ServiceSinkhole extends VpnService implements SharedPreferences.OnS
         packet.allowed = false;
         if (prefs.getBoolean("filter", false)) {
             // https://android.googlesource.com/platform/system/core/+/master/include/private/android_filesystem_config.h
-            if (packet.uid == 0 && packet.protocol == 6 /* TCP */ && packet.dport == 53) {
-                // Block DNS over TCP
-                packet.allowed = false;
-                Log.w(TAG, "Blocking DNS/TCP " + packet);
-            } else if (packet.uid < 2000 &&
+            if (packet.uid < 2000 &&
                     !last_connected && isSupported(packet.protocol)) {
                 // Allow system applications in disconnected state
                 packet.allowed = true;