Uwt issues in whonix 11

Support
#1

for stream isolation i used uwt Wrapper in whonix 10 , now on clean image of whonix 11 the command give no out put , and application didnt open at all :-
any idea

user@host:~$ uwt -t 5 -i 10.152.152.10 -p 9156 iceweasel user@host:~$
user@host:~$ uwt -t 5 -i 10.152.152.10 -p 9156 /usr/bin/iceweasel user@host:~$

Thanks

#2

user@host:~$ uwt -v -t 5 -i 10.152.152.10 -p 9190 iceweasel

  • UWT_VERBOSE=1
  • shift
  • ‘[’ -n -t ‘]’
  • case “$1” in
  • server_type=5
  • shift
  • shift
  • ‘[’ -n -i ‘]’
  • case “$1” in
  • ip=10.152.152.10
  • shift
  • shift
  • ‘[’ -n -p ‘]’
  • case “$1” in
  • port=9190
  • shift
  • shift
  • ‘[’ -n iceweasel ‘]’
  • case “$1” in
    ++ command -v iceweasel
  • command=/usr/bin/iceweasel
  • break
  • ‘[’ -z 10.152.152.10 ‘]’
  • ‘[’ -z 9190 ‘]’
  • ‘[’ -z /usr/bin/iceweasel ‘]’
  • true ‘uwt command: “iceweasel”’
  • ‘[’ ‘!’ -x /usr/bin/iceweasel ‘]’
  • ‘[’ -u /usr/bin/iceweasel ‘]’
  • ‘[’ -g /usr/bin/iceweasel ‘]’
  • dpkg_query_exit_code=0
    ++ dpkg-query --show ‘–showformat=${Version}’ torsocks
  • torsocks_installed_version=2.0.0-3
  • dpkg_compare_versions_equals_exit_code=0
  • dpkg --compare-versions 2.0.0-3 ge 2
    ++ whoami
  • sub_folder=/tmp/uwt_user
  • ‘[’ ‘!’ -d /tmp/uwt_user ‘]’
    ++ mktemp --tmpdir=/tmp/uwt_user
  • TORSOCKS_CONF_FILE=/tmp/uwt_user/tmp.IjCIoUTjvW
  • export TORSOCKS_CONF_FILE
  • chmod go+r /tmp/uwt_user/tmp.IjCIoUTjvW
  • ‘[’ ‘!’ 0 = 0 ‘]’
  • echo ’

Temporary torsocks configuration file created by uwt.

Safe to delete.

TorAddress 10.152.152.10
TorPort 9190
OnionAddrRange 10.192.0.0/10

  • ‘[’ ‘!’ -r /tmp/uwt_user/tmp.IjCIoUTjvW ‘]’
  • ‘[’ 1 = ‘’ ‘]’
  • UWT_LOCALHOST=0
  • case “$*” in
  • true
  • ‘[’ 0 = 1 ‘]’
  • ‘[’ 0 = 1 ‘]’
  • true ‘uwt: localhost not detected. Using torsocks.’
  • use_torsocks_maybe=torsocks
  • trap - ERR
  • exec torsocks iceweasel
    user@host:~$ reset
    user@host:~$ uwt -v -v -t 5 -i 10.152.152.10 -p 9190 iceweasel
  • UWT_VERBOSE=1
  • shift
  • ‘[’ -n -v ‘]’
  • case “$1” in
  • set -x
  • UWT_VERBOSE=1
  • shift
  • ‘[’ -n -t ‘]’
  • case “$1” in
  • server_type=5
  • shift
  • shift
  • ‘[’ -n -i ‘]’
  • case “$1” in
  • ip=10.152.152.10
  • shift
  • shift
  • ‘[’ -n -p ‘]’
  • case “$1” in
  • port=9190
  • shift
  • shift
  • ‘[’ -n iceweasel ‘]’
  • case “$1” in
    ++ command -v iceweasel
  • command=/usr/bin/iceweasel
  • break
  • ‘[’ -z 10.152.152.10 ‘]’
  • ‘[’ -z 9190 ‘]’
  • ‘[’ -z /usr/bin/iceweasel ‘]’
  • true ‘uwt command: “iceweasel”’
  • ‘[’ ‘!’ -x /usr/bin/iceweasel ‘]’
  • ‘[’ -u /usr/bin/iceweasel ‘]’
  • ‘[’ -g /usr/bin/iceweasel ‘]’
  • dpkg_query_exit_code=0
    ++ dpkg-query --show ‘–showformat=${Version}’ torsocks
  • torsocks_installed_version=2.0.0-3
  • dpkg_compare_versions_equals_exit_code=0
  • dpkg --compare-versions 2.0.0-3 ge 2
    ++ whoami
  • sub_folder=/tmp/uwt_user
  • ‘[’ ‘!’ -d /tmp/uwt_user ‘]’
    ++ mktemp --tmpdir=/tmp/uwt_user
  • TORSOCKS_CONF_FILE=/tmp/uwt_user/tmp.khhVoVqe5l
  • export TORSOCKS_CONF_FILE
  • chmod go+r /tmp/uwt_user/tmp.khhVoVqe5l
  • ‘[’ ‘!’ 0 = 0 ‘]’
  • echo ’

Temporary torsocks configuration file created by uwt.

Safe to delete.

TorAddress 10.152.152.10
TorPort 9190
OnionAddrRange 10.192.0.0/10

  • ‘[’ ‘!’ -r /tmp/uwt_user/tmp.khhVoVqe5l ‘]’
  • ‘[’ 1 = ‘’ ‘]’
  • UWT_LOCALHOST=0
  • case “$*” in
  • true
  • ‘[’ 0 = 1 ‘]’
  • ‘[’ 0 = 1 ‘]’
  • true ‘uwt: localhost not detected. Using torsocks.’
  • use_torsocks_maybe=torsocks
  • trap - ERR
  • exec torsocks iceweasel
    user@host:~$
#3

@Patrick sir please help

#4

uwt wraper is not executing chronium , firefox , iceweasel ,TB, the only reason i am again downgrading whonix back to 10.0 :((((
patrick brother any solution ?

#5

No. This is likely caused by by either the upgraded iceweasel and/or torsocks package in Debian wheezy. If I was into betting, I guess it would also happen on plain Debian. For example torsocks + iceweasel. So this is likely not an uwt issue. You can test that. And if that’s a problem, you can report his issue upstream against torsocks.

It’s unknown to me if torsocks is leak proof solution to torify iceweasel anyhow. [In case of Whonix, it wouldn’t leak through clearnet, but through Tor’s TransPort. But still. This is what you wanted to avoid, no.]

You’re better off not using stream isolation rather than downgrading. Staying with wheezy which gets much less attention nowadays is a much bigger security issue than non-perfect stream isolation. Iceweasel is discouraged anyhow, but you probably know this already.

#6

Thanks for your kind reply , you are best :slight_smile:
you recomened to use proxychain for stream isolation as alternative method ,
i can understand iceweasel can leak but Tor borowser also not working with uwt (want to use simple socks with foxyproxy to avoid tor blocks ) in jessie , anyway i will try proxychains