LINUX.ORG.RU

tor obfs4proxy

 , ,


0

1

Собственно, опять сломался тор. Да, через obfs4proxy. Да, не работает, не знаю почему. Да, гуглил, поменять настройки apparmor не помогло

tail -f /var/log/tor/notice.log

Jan 30 18:15:30.000 [notice] Delaying directory fetches: Pluggable transport proxies still configuring
Jan 30 18:15:30.000 [notice] Signaled readiness to systemd

journalctl -fx

-- Journal begins at Mon 2021-09-20 16:44:50 MSK. --
янв 30 18:29:54 aspire tor[2488]: Jan 30 18:29:54.919 [notice] Read configuration file "/etc/tor/torrc".
янв 30 18:29:54 aspire tor[2488]: Jan 30 18:29:54.937 [notice] I think we have 2 CPUS, but only 1 of them are available. Telling Tor to only use 1. You can override this with the NumCPUs option
янв 30 18:29:54 aspire tor[2488]: Jan 30 18:29:54.938 [notice] Opening Socks listener on 127.0.0.1:9050
янв 30 18:29:54 aspire tor[2488]: Jan 30 18:29:54.939 [notice] Opened Socks listener connection (ready) on 127.0.0.1:9050
янв 30 18:29:55 aspire audit[2489]: AVC apparmor="DENIED" operation="open" profile="system_tor" name="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" pid=2489 comm="obfs4proxy" requested_mask="r" denied_mask="r" fsuid=124 ouid=0
янв 30 18:29:55 aspire kernel: audit: type=1400 audit(1643556595.247:41): apparmor="DENIED" operation="open" profile="system_tor" name="/sys/kernel/mm/transparent_hugepage/hpage_pmd_size" pid=2489 comm="obfs4proxy" requested_mask="r" denied_mask="r" fsuid=124 ouid=0
янв 30 18:29:59 aspire systemd[1]: Started Anonymizing overlay network for TCP.
░░ Subject: A start job for unit tor@default.service has finished successfully
░░ Defined-By: systemd
░░ Support: http://www.ubuntu.com/support
░░ 
░░ A start job for unit tor@default.service has finished successfully.
░░ 
░░ The job identifier is 1965.

cat /etc/apparmor.d/abstractions/tor

# vim:syntax=apparmor

  #include <abstractions/base>
  #include <abstractions/nameservice>
  #include <abstractions/openssl>

  network tcp,
  network udp,

  capability chown,
  capability dac_read_search,
  capability fowner,
  capability fsetid,
  capability setgid,
  capability setuid,

  /usr/bin/tor r,
  /usr/sbin/tor r,

  # Needed by obfs4proxy
  /proc/sys/net/core/somaxconn r,
#add
/sys/kernel/mm/transparent_hugepage/hpage_pmd_size r,

  /proc/sys/kernel/random/uuid r,
  /sys/devices/system/cpu/ r,
  /sys/devices/system/cpu/** r,

  /etc/tor/* r,
  /usr/share/tor/** r,

  /usr/bin/obfsproxy PUx,
#  /usr/bin/obfs4proxy Pix,
  /usr/bin/obfs4proxy ix,

upd: нашел что то похожее на мою проблему https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1839505.html добавил в конфиг /sys/kernel/mm/transparent_hugepage/hpage_pmd_size r,

теперь не ругается apparmor, но тор все равно не работает, в логе тора то же самое



Последнее исправление: SANyaSmol (всего исправлений: 1)
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.