Exclude WeChat from HTTPS filtering by default

[DeepChirp]

Please answer the following questions for yourself before submitting an issue

• Filters were updated before reproducing an issue
• I checked the knowledge base and found no answer
• I checked to make sure that this issue has not already been filed

AdGuard version

4.9.50

Environment

• OS version: no need
• Device: no need

HTTPS filtering

• yes, I do

Root access

• yes, I have it

Integration with AdGuard VPN

• yes, I do

Routing mode

Automatic proxy

Ad Blocking

No response

Privacy

No response

Social

No response

Annoyances

No response

Security

No response

Language-specific

No response

Other

No response

Which DNS server do you use?

DNS protection disabled

DNS protocol

None

Custom DNS

No response

What Stealth Mode options do you have enabled?

No response

Issue Details

Steps to reproduce:

1. enable HTTPS filtering for WeChat
2. Open WeChat Mini Program

Expected Behavior

WeChat Mini Program can be loaded normally.

Actual Behavior

WeChat Mini Program can't be loaded.

Screenshots

Screenshot 1

Additional Information

WeChat Mini Program uses SSL pinning(1、2). Unless hook it, HTTPS filtering won't work for its app. Even if the certificates are moved to the system store, WeChat will not trust them by default. I think it should be excluded from the HTTPS filtering list by default and give a warning when the user enables it.

[maxikuzmin]

@DeepChirp we have checked this, but it doesn't repeat on our devices. Could you please record a video of the screen with the problem repeating and attach it here, or send it to qa@adguard.com:
- include [android] keyword and 5689 in the subject of your email

[maxikuzmin]

@DeepChirp by the way, HTTPS filtering is disabled by default for WeChat

[DeepChirp]

@DeepChirp by the way, HTTPS filtering is disabled by default for WeChat

I don't know why, it's turned on by default on my device. The purpose of this issue is to exclude WeChat by default, not to explore why HTTPS filtering doesn't work for it. If you want to investigate the latter issue, I'll send you the video.

In addition, when I enable filtering for WeChat but don't turn on HTTPS filtering, the software also has problems loading. Should I continue discussing this issue or open a separate issue?

[maxikuzmin]

@DeepChirp we disable HTTPS filtering by default for WeChat to avoid problems for the WeChat app.
However, "Route traffic through AdGuard" is enabled by default for WeChat.

If you're having issues with WeChat app with HTTPS filtering turned off, let's discuss it here. We have tested this on our devices but the problem is not recurring, please send screen video as well as logs.

Here's what we need you to do:

1. Enable debug logging:
   Settings -> General -> Advanced -> Logging level -> Debug.
2. Reproduce the problem, then remember the exact time when it happened.
3. Collect logs:
   Settings -> General -> Advanced -> Export logs and system info.
4. Send this file to qa@adguard.com:
   • include [android] keyword and 5689 in the subject of your email
   • specify the exact time when the issue occurred

[DeepChirp]

@DeepChirp we disable HTTPS filtering by default for WeChat to avoid problems for the WeChat app.
However, "Route traffic through AdGuard" is enabled by default for WeChat.

If you're having issues with WeChat app with HTTPS filtering turned off, let's discuss it here. We have tested this on our devices but the problem is not recurring, please send screen video as well as logs.

Here's what we need you to do:

1. Enable debug logging:
   Settings -> General -> Advanced -> Logging level -> Debug.
2. Reproduce the problem, then remember the exact time when it happened.
3. Collect logs:
   Settings -> General -> Advanced -> Export logs and system info.
4. Send this file to qa@adguard.com:
   • include [android] keyword and 5689 in the subject of your email
   • specify the exact time when the issue occurred

I have sent the debug logs and screen recording to qa@adguard.com as requested, with [android] and 5689 in the subject.

The issue occurred at around 10:47 (local device time) when opening an image in a WeChat chat.

Please let me know if further information is needed.

[maxikuzmin]

@DeepChirp thank you, I see your email, but it seems you forgot to attach the log files and videos you wrote about

[DeepChirp]

@DeepChirp thank you, I see your email, but it seems you forgot to attach the log files and videos you wrote about

It seems that the attachment was too large and was not delivered successfully. I compressed the video and sent it again. Hopefully it will work this time.

[maxikuzmin]

@DeepChirp thank you, I got your files. Could you please clarify, are you disabling "Route traffic through AdGuard"?
Here in the task you mentioned "HTTPS filtering", and I thought you were talking about "Route traffic through AdGuard" in the email you sent with the files

[DeepChirp]

@DeepChirp thank you, I got your files. Could you please clarify, are you disabling "Route traffic through AdGuard"? Here in the task you mentioned "HTTPS filtering", and I thought you were talking about "Route traffic through AdGuard" in the email you sent with the files

Yes. Now the issue has nothing to do with https. It's just that the images don't load when the traffic goes through AdGuard.

[maxikuzmin]

@DeepChirp it looks like this problem has already been discussed in issue #5497

please also try adding the We Chat app package to QUIC bypass packages in low level settings, this may help.