Opened 3 weeks ago

Last modified 2 weeks ago

#32577 new defect

torsocks is not fully capable of performing required downloads

Reported by: estellnb Owned by:
Priority: Medium Milestone:
Component: Core Tor/Torsocks Version: sbws: unspecified
Severity: Major Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

ii torsocks 2.3.0-2 amd64 use SOCKS-friendly applications with Tor
using Debian 10.1.0 live

When I try to shield the necessary downloads of my coreboot firmware source compilation I get the following three types of errors:

1574449473 WARNING torsocks[13517]: [syscall] Unsupported syscall number 332. Denying the call (in tsocks_syscall() at syscall.c:605)
1574449473 WARNING torsocks[13517]: [syscall] Unsupported syscall number 293. Denying the call (in tsocks_syscall() at syscall.c:605)
1574449410 WARNING torsocks[13244]: [syscall] Unsupported syscall number 326. Denying the call (in tsocks_syscall() at syscall.c:605)

The download always hangs in some other position and I have given up to do a secure download for the darp5 firmware. This means that I will have no coreboot firmware since the main installation on my darp5 (downloads and compilation work well there) is bugged with a rootkit as detectable by https://www.elstel.org/debcheckroot/. I can not use the compilation results of a bugged machine.

model: System76 Darter Pro 5
git repository: https://github.com/system76/firmware-open

commands to execute:

torsocks git clone https://github.com/system76/firmware-open
cd firmware-open
git checkout whl-u
torsocks git submodule update --init --recursive --checkout
vim scripts/build.sh # remove +nightly from installer
torsocks scripts/deps.sh
source ?.rustup/env? - look for this command in build.sh
torsocks scripts/build.sh darp5

Child Tickets

Attachments (1)

download-trial.png (147.6 KB) - added by estellnb 3 weeks ago.
screenshot

Download all attachments as: .zip

Change History (3)

Changed 3 weeks ago by estellnb

Attachment: download-trial.png added

screenshot

comment:1 Changed 3 weeks ago by estellnb

It hangs for an infinite amount of time while the files can quickly be downloaded without tor.

comment:2 Changed 2 weeks ago by estellnb

I have now retried it with tor+torsocks on the tampered system and rustup works there without any problems. Obviously the NSA is selectively blocking this download for anonymous users. You will also need to try it from a clean boot medium. If it works well on your base system then it is likely compromised as well. I had a strange occurence with 'https://static.rust-lang.org/dist/2019-11-22/rustc-nightly-x86_64-unknown-linux-gnu.tar.xz' as well. At first rustup blocked on different clean tor systems on download of this file. As I discovered it to be easily downloadable without tor I have invoked torsocks wget on it. wget failed three times downloading the file and the fourth time it succeeded. From this time on rustc.xz could be easily downloaded via tor also by rustup. However since then rustup blocks on another download where you can not identify the file in question that easily.

Note: See TracTickets for help on using tickets.