[HOME] [DOWNLOAD] [DOCS] [BLOG] [SUPPORT] [TIPS] [ISSUES] [Priority Support]

Torbrowser and AppArmor + Firejail conflict?


#1

Using Qubes OS + Whonix

Tested Torbrowser in a whonix template with AppArmor and seccomp, everything is fine.

Tested Torbrowser in a whonix template with AppArmor, seccomp and Firejail and i get a problem:
No matter if i run “torbrowser” or “firejail torbrowser”, after a while it stop working, the browser just stop responding and have to kill it.

AppArmor Message:

Profile: /home/**/tor-browser/Browser/Firefox
Operation: open
Name: /proc/1919/status
Denied: r
Logfile: /var/log/kern.log
For more information, please see: https://wiki.ubuntu.com/DebuggingApparmor

From kern.log

Feb 14 23:58:56 host kernel: [ 363.035999] audit_printk_skb: 18 callbacks suppressed
Feb 14 23:58:56 host kernel: [ 363.036041] audit: type=1400 audit(1487116736.411:17): apparmor=“DENIED” operation=“open” profile="/home//tor-browser*/Browser/firefox" name="/proc/1919/status" pid=1919 comm=“firefox” requested_mask=“r” denied_mask=“r” fsuid=1000 ouid=1000
Feb 14 23:58:56 host kernel: [ 363.036108] audit: type=1400 audit(1487116736.412:18): apparmor=“DENIED” operation=“open” profile="/home/
/tor-browser*/Browser/firefox" name="/proc/1919/status" pid=1919 comm=“firefox” requested_mask=“r” denied_mask=“r” fsuid=1000 ouid=1000

P.S. i have done everything just by following whonix documentation.


#2

Can someone fix this here?

https://github.com/Whonix/apparmor-profile-torbrowser/blob/master/etc/apparmor.d/home.tor-browser.firefox