[tbb-bugs] #19055 [Applications/Tor Browser]: TBB Upstreaming of Yawning's Firejail Script

Tor Bug Tracker & Wiki blackhole at torproject.org
Mon May 16 14:44:27 UTC 2016 

#19055: TBB Upstreaming of Yawning's Firejail Script
--------------------------------------+--------------------------
 Reporter:  cypherpunks               |          Owner:  tbb-team
     Type:  enhancement               |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:                            |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------

Comment (by adrelanos):

 Current:
 https://gitweb.torproject.org/builders/tor-browser-
 bundle.git/tree/RelativeLink/start-tor-browser

 Proposed:
 https://git.schwanenlied.me/yawning/tor-firejail/src/master/start-tor-
 browser

 The diff looks reasonable. Should be safe for with non-firejail users.

 {{{
 > #
 > # Automagic sandboxing based on firejail if it's available.
 > #
 > BROWSER_CMD=./firefox
 > if [ -x /usr/bin/firejail ]; then
 >   BROWSER_CMD="/usr/bin/firejail --profile=${HOME}/tor-browser.profile \
 >     --env=LD_LIBRARY_PATH=${LD_LIBRARY_PATH} \
 >     --env=FONTCONFIG_PATH=${FONTCONFIG_PATH} \
 >     --env=FONTCONFIG_FILE=${FONTCONFIG_FILE} \
 >     --env=ASAN_OPTIONS=${ASAN_OPTIONS} \
 >     --whitelist=${HOME} \
 >     ./firefox"
 > fi
 >
 359c373
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 363c377
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 367c381
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 371c385
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 374c388
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 }}}

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19055#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tbb-bugs mailing list