[tor-bugs] #12192 [Tor]: TOR does not function on hardened linux kernel with PaX

Tue Jun 3 21:20:01 UTC 2014

#12192: TOR does not function on hardened linux kernel with PaX
---------------------------+-----------------------------------------------
     Reporter:             |      Owner:
  cypherpunks              |     Status:  needs_information
         Type:  defect     |  Milestone:  Tor: 0.2.???
     Priority:  normal     |    Version:  Tor: 0.2.4.22
    Component:  Tor        |   Keywords:  grsec,pax,hardened,linux,mprotect
   Resolution:             |  Parent ID:
Actual Points:             |
       Points:             |
---------------------------+-----------------------------------------------
Changes (by nickm):

 * status:  new => needs_information
 * milestone:   => Tor: 0.2.???

Comment:

 So, Tor 0.2.4.21 worked for this, but 0.2.4.22 does not?

 If so, can you confirm that this Tor was built with all the same libraries
 and options as the last version of Tor?

 If neither version of Tor works, can you try configuring Tor with
 --disable-gcc-hardening to see whether one of those options is
 responsible?

 According to the FAQ [1], this error message means that Tor -- or one of
 the libraries it's using -- is using text relocation for linking.  It says
 that you can maybe find out which program or library it is using the
 "scanelf" utility from app-misc/pax-utils (which may have a different
 names if you aren't on gentoo).

 [1]
 http://wiki.gentoo.org/wiki/Hardened/FAQ#I_keep_getting_the_message:_.22error_while_loading_shared_libraries:_cannot_make_segment_writable_for_relocation:_Permission_denied..22_What_does_this_mean.3F

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12192#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online