[tor-bugs] #20773 [Applications/Tor Browser Sandbox]: Stop mounting `/proc` in the various containers once this is feasable.
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sat Nov 26 08:22:58 UTC 2016
#20773: Stop mounting `/proc` in the various containers once this is feasable.
----------------------------------------------+-------------------------
Reporter: yawning | Owner: yawning
Type: enhancement | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser Sandbox | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
----------------------------------------------+-------------------------
Comment (by yawning):
As far as I can tell, the tor process container can do without `/proc`.
It's clear cut for the no PT case since tor appears to only use
`/proc/meminfo` to derive `MaxMemInQueues` which is irrelevant for this
use case.
obfs4proxy appears to read from `/proc` as well upon cursory examination
via `strings`, but it doesn't appear to crash and I can browse the web in
a container sans procfs. However before I disable mounting it in the
container, I'd like to see what exactly it's doing.
I need to strace tor + obfs4proxy anyway when I decide to tackle #20782...
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20773#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list