[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #22605 [Core Tor/Tor]: sandbox_intern_string(): Bug: No interned sandbox parameter found for /etc/tor/torrc.d/

Subject: Re: [tor-bugs] #22605 [Core Tor/Tor]: sandbox_intern_string(): Bug: No interned sandbox parameter found for /etc/tor/torrc.d/
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 02 Aug 2017 00:20:17 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 01 Aug 2017 20:20:31 -0400
In-reply-to: <046.96128c6d9ce49b9a7943c2e323428ede@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.96128c6d9ce49b9a7943c2e323428ede@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#22605: sandbox_intern_string(): Bug: No interned sandbox parameter found for
/etc/tor/torrc.d/
---------------------------------+------------------------------------
 Reporter:  toralf               |          Owner:  dgoulet
     Type:  defect               |         Status:  accepted
 Priority:  High                 |      Milestone:  Tor: 0.3.1.x-final
Component:  Core Tor/Tor         |        Version:  Tor: 0.3.1.3-alpha
 Severity:  Normal               |     Resolution:
 Keywords:  sandbox, regression  |  Actual Points:
Parent ID:                       |         Points:
 Reviewer:                       |        Sponsor:
---------------------------------+------------------------------------

Comment (by Jigsaw52):

 I'm having some problems fixing this one. I tried to change the sandbox
 code to allow adding more filters at runtime but it seems that the rules
 added after the initial seccomp initialization are being ignored.

 More specifically, the problem I am having is the following (I am using
 the example in the above comments):
 1. When the config is reloaded, the filter that allows opening
 /etc/tor/torrc.d/ appears to be installed correctly (sb_open adds the
 filter to the context and seccomp_load returns 0 when loading the context)
 2. However, when open is called with /etc/tor/torrc.d/, the process is
 still killed
 3. I've checked the value of the pointer to the "/etc/tor/torrc.d/" string
 and it is the same on sb_open when the rule is added and on the
 tor_listdir function, where opendir is called, which then calls the open
 syscall.

 I believe the problem is related to adding filters after the initial
 seccomp initialization.
 It would be great if someone who has some understanding of the sandbox
 code and libseccomp could take a look at this too.

 My code is in this branch: https://github.com/Jigsaw52/tor/tree/fix-
 torrcd-sandbox-22605

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22605#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #22836 [Metrics/Metrics website]: Parse CollecTor's index.json and provide our own directory listing
Next by Author: Re: [tor-bugs] #23270 [Core Tor/Tor]: Allow Tor relays to be configured to block selected hidden services, including racist hate sites
Previous by thread: Re: [tor-bugs] #23061 [Core Tor/Tor]: crypto_rand_double() should produce all possible outputs on platforms with 32-bit int
Next by thread: Re: [tor-bugs] #22605 [Core Tor/Tor]: sandbox_intern_string(): Bug: No interned sandbox parameter found for /etc/tor/torrc.d/
Index(es):
- Author
- Thread