[tor-bugs] #33902 [Applications/Tor Browser]: avc: denied { ioctl } for comm="libTor.so"
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Apr 14 09:48:13 UTC 2020
#33902: avc: denied { ioctl } for comm="libTor.so"
--------------------------------------+--------------------------
Reporter: traumschule | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: tbb-mobile | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Comment (by traumschule):
Replying to [ticket:33902 traumschule]:
> This shows up in the log a lot:
> {{{
> 659 E audit : type=1400 audit(1586853418.578:86987): avc: denied {
ioctl } for pid=31144 comm="libTor.so" path="socket:[4954704]"
dev="sockfs" ino=4954704 ioctlcmd=894b
scontext=u:r:untrusted_app:s0:c78,c257,c512,c768
tcontext=u:r:untrusted_app:s0:c78,c257,c512,c768 tclass=tcp_socket
permissive=0 audit_filtered
> }}}
>
> top:
> {{{
> 31144 u0_a334 20 0 41M 13M 5.9M S 1.0 1846 21:15.61
libTor.so -f
/data/user/0/org.torproject.torbrowser_alpha/app_torservice/torrc
__OwningControllerProcess 30950`
> 30950 u0_a334 20 0 2.2G 252M 87M S 9.3 36721 66:23.37
org.torproject.torbrowser_alpha
> }}}
>
> Possibly related:
>
[https://android.googlesource.com/platform/external/sepolicy/+/556bb0f55324e8839d7b735a0de9bc31028e839e
Further restrict socket ioctls available to apps]
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/33902#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list