Page MenuHomePhabricator

Whonix-HostProject
ActivePublic

Members (1)

Watchers

  • This project does not have any watchers.

Details

Description

Whonix Host Additions / Whonix Host Operating System

Recent Activity

Mar 1 2018

HulaHoop added a comment to T550: Clock Drift Detection.

NB for the record: with qemu-ga a guest can still shut itself off via crafted input to the agent. So besides removing timer access to the guest, there was no other advantage to removing ACPI.

Mar 1 2018, 6:13 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

Actually we don't have to suspend the guest. Execution of any command on the host after resume is enough to create a uniqu event in the qemu-ga's log file.

Mar 1 2018, 4:34 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

The proper and direct way to use virsh to communicate with guest agent:

Mar 1 2018, 12:53 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

The YAJL parser used in libvirt is tiny, modern (written in2007) and has no CVEs. It is an SAX type event-driven parser unlike the vulnerable, top-down recursive descent type that was used in QEMU.

Mar 1 2018, 12:03 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Feb 28 2018

HulaHoop added a comment to T550: Clock Drift Detection.

https://wiki.libvirt.org/page/Qemu_guest_agent

Feb 28 2018, 11:39 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

It turns out the QEMU guest agent warning was not relevant to those who use libvirt. With libvirt a safe parser is used. Breakouts can only happen if a process on the host is designed to parse guest input because there is no way to control that otherwise it should be safe for our uses. This potentially simplifies the design in many respects but a host package will still be needed. I will update the task list.

Feb 28 2018, 8:40 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

https://www.redhat.com/archives/libvirt-users/2018-February/msg00083.html
[libvirt-users] QEMU guest-agent safety in hostile VM?

Feb 28 2018, 7:40 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Feb 14 2018

HulaHoop added a comment to T550: Clock Drift Detection.

Yes there are less moving parts especially when multiple WSs share a GW. Some way to exempt timesync traffic from the WS would be needed though.

Feb 14 2018, 1:12 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Feb 12 2018

Patrick added a comment to T550: Clock Drift Detection.

HulaHoop (HulaHoop):

HulaHoop added a comment.

With qemu-ga code the whole clock drift detection code becomes redundant. If a
suspend event is triggered the GW should assume clocks are out of sync and
trigger lockdown.

Feb 12 2018, 11:01 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

With qemu-ga code the hwclock drift detection code becomes redundant. If a suspend event is triggered the GW should assume clocks are out of sync and trigger lockdown.

Feb 12 2018, 5:23 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

Oops didn't realize ntpdate requires query of remote servers. ntpdate is obsolete anyhow but the newer clockdiff still talks to online servers instead of comparing local values. hwclock can give us that:

Feb 12 2018, 4:52 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
Patrick added a comment to T550: Clock Drift Detection.

It's a very good rehash!

Feb 12 2018, 10:43 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Feb 11 2018

HulaHoop added a comment to T550: Clock Drift Detection.

@Patrick I wrote a rehash. If you think is too complicated, let me know. It was the simplest and most reliable way I could think of:

Feb 11 2018, 6:09 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Feb 4 2018

Patrick added a comment to T550: Clock Drift Detection.

Didn't rehash. What's next here? Looks like we learned a lot, but then things stalled. Could you please rehash, and then create a follow-up ticket with the way forward? @HulaHoop

Feb 4 2018, 4:17 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Sep 23 2016

marmarek added a comment to T553: Emergency Crash Script to Protect Host FDE.

On Qubes it results in kernel message: sysrq: SysRq : This sysrq operation is disabled.
Default value of /proc/sys/kernel/sysrq on Qubes dom0 is 16. Changing to 1 does not work either:

[1363616.422789] sysrq: SysRq : Power Off
[1363616.423456] xenbus: xenbus_dev_shutdown: backend/console/1069/0: Initialising != Connected, skipping
[1363621.427069] xenbus: xenbus_dev_shutdown: backend/vbd/1069/51760 timeout closing device
[1363626.430065] xenbus: xenbus_dev_shutdown: backend/vbd/1069/51744 timeout closing device
[1363631.434062] xenbus: xenbus_dev_shutdown: backend/vbd/1069/51728 timeout closing device
[1363636.437593] xenbus: xenbus_dev_shutdown: backend/vbd/1069/51712 timeout closing device
[1363636.437595] xenbus: xenbus_dev_shutdown: backend/console/1068/0: Initialising != Connected, skipping
[1363641.441056] xenbus: xenbus_dev_shutdown: backend/vbd/1068/51760 timeout closing device
[1363646.443064] xenbus: xenbus_dev_shutdown: backend/vbd/1068/51744 timeout closing device
[1363651.446038] xenbus: xenbus_dev_shutdown: backend/vbd/1068/51728 timeout closing device
[1363656.447016] xenbus: xenbus_dev_shutdown: backend/vbd/1068/51712 timeout closing device
[1363656.447016] xenbus: xenbus_dev_shutdown: backend/console/1067/0: Initialising != Connected, skipping
[1363661.448050] xenbus: xenbus_dev_shutdown: backend/vbd/1067/51760 timeout closing device
[1363666.451077] xenbus: xenbus_dev_shutdown: backend/vbd/1067/51744 timeout closing device
[1363671.454069] xenbus: xenbus_dev_shutdown: backend/vbd/1067/51728 timeout closing device
[1363676.457060] xenbus: xenbus_dev_shutdown: backend/vbd/1067/51712 timeout closing device
[1363676.457118] xenbus: xenbus_dev_shutdown: backend/console/711/0: Initialising != Connected, skipping
[1363681.460065] xenbus: xenbus_dev_shutdown: backend/vbd/711/51760 timeout closing device

And finally shutdown after timing out for every VM - 20s per VM. Not good, at least.
Sysrq-c makes dom0 frozen for some time (5s?) and then reboots. Also after changing sysctl setting.

Sep 23 2016, 9:43 PM · user documentation, Whonix 14, Whonix, Whonix-Host
HulaHoop closed T553: Emergency Crash Script to Protect Host FDE as Resolved.
Sep 23 2016, 8:43 PM · user documentation, Whonix 14, Whonix, Whonix-Host
HulaHoop added a comment to T553: Emergency Crash Script to Protect Host FDE.

Tested working without sysctl changes on Linux baremetal. Not supported on Xen.

Sep 23 2016, 8:43 PM · user documentation, Whonix 14, Whonix, Whonix-Host

Sep 21 2016

Patrick added projects to T553: Emergency Crash Script to Protect Host FDE: Whonix 14, user documentation.
Sep 21 2016, 1:58 AM · user documentation, Whonix 14, Whonix, Whonix-Host

Sep 20 2016

HulaHoop reopened T553: Emergency Crash Script to Protect Host FDE as "Review".

Apparently this feature is enabled on Debian hosts by default (so no package needed). Please test the key combination to confirm so I can document it.

Sep 20 2016, 4:29 AM · user documentation, Whonix 14, Whonix, Whonix-Host

Sep 2 2016

HulaHoop added a comment to T550: Clock Drift Detection.

These KDE menus are disabled by Whonix. In plain Debian VMs these should

be visible.

Sep 2 2016, 4:13 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
Patrick added a comment to T553: Emergency Crash Script to Protect Host FDE.

Host panic key instructions (or some day a package) would still be
desirable.

Sep 2 2016, 2:03 AM · user documentation, Whonix 14, Whonix, Whonix-Host
Patrick added a comment to T550: Clock Drift Detection.

HulaHoop (HulaHoop):

Tested enabling pm settings in KVM and I don't see suspend/hibernate in the VM power options in the menu.

Sep 2 2016, 2:02 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop closed T553: Emergency Crash Script to Protect Host FDE as Invalid.
Sep 2 2016, 1:53 AM · user documentation, Whonix 14, Whonix, Whonix-Host
HulaHoop added a comment to T553: Emergency Crash Script to Protect Host FDE.

Tested this and I found it causes the VM to freeze and hang. Far from the emergency solution I was looking for.

Sep 2 2016, 1:52 AM · user documentation, Whonix 14, Whonix, Whonix-Host
HulaHoop added a comment to T550: Clock Drift Detection.

Tested enabling pm settings in KVM and I don't see suspend/hibernate in the VM power options in the menu. VBox threads on SE agree that guest suspend isn't available.

Sep 2 2016, 1:50 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop created T553: Emergency Crash Script to Protect Host FDE.
Sep 2 2016, 1:37 AM · user documentation, Whonix 14, Whonix, Whonix-Host
HulaHoop added a comment to T550: Clock Drift Detection.

You're right. My idea is needlessly complicated and I admit I learned a lot from your plan.

Sep 2 2016, 1:04 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Sep 1 2016

Patrick added projects to T552: Packaging USBKill: security, Whonix-Host.
Sep 1 2016, 11:16 PM · Whonix-Host, security, Whonix
Patrick added a project to T550: Clock Drift Detection: Whonix-Host.
Sep 1 2016, 11:15 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Apr 29 2016

Patrick closed T286: Only source configuration files that end with the `.conf` extension? as Resolved.
Apr 29 2016, 5:55 AM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix
Patrick added a comment to T286: Only source configuration files that end with the `.conf` extension?.

https://github.com/Whonix/sdwdate/commit/0a0436b2de152ca13445c368fbd7cb95d339c75a

Apr 29 2016, 5:55 AM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix
Patrick added a comment to T286: Only source configuration files that end with the `.conf` extension?.
In T286#8987, @Patrick wrote:
Apr 29 2016, 2:50 AM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix

Apr 28 2016

Patrick changed the status of T286: Only source configuration files that end with the `.conf` extension? from Open to Review.

https://github.com/Whonix/uwt/commit/651d2af8417fb0b7f77a88493a37935972ed444b

Apr 28 2016, 5:07 AM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix
Patrick changed the status of T286: Only source configuration files that end with the `.conf` extension? from Review to Open.

Since T503 is not yet implemented, Whonix 12 -> Whonix 13 are currently broken because of uwt. whonix-repository and tb-updater fails closed because the moment it uses gpg, /etc/uwt.d/30_uwt_default.conf does not exist, which results in "gpg" (actually uwt) failing. The solution I will be attempting is to make uwt also work with built-in defaults (part of T503).

Apr 28 2016, 4:49 AM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix

Apr 27 2016

Patrick triaged T485: whonix-host-qemu-kvm package has an unmet dependency. Depends: whonix-host-shared but is not installable as Wishlist priority.
Apr 27 2016, 7:25 PM · anon-meta-packages, Whonix-Host, Whonix

Mar 29 2016

Patrick added a comment to T21: Whonix Host Additions.

HulaHoop (HulaHoop):

Can sdwdate/timesync and tbb-downloader work with system Tor on the Host without any changes?
Mar 29 2016, 5:02 PM · Whonix, Whonix-Host
HulaHoop added a comment to T21: Whonix Host Additions.

Can sdwdate/timesync and tbb-downloader work with system Tor on the Host without any changes?

Mar 29 2016, 4:40 PM · Whonix, Whonix-Host

Mar 23 2016

Patrick added a comment to T485: whonix-host-qemu-kvm package has an unmet dependency. Depends: whonix-host-shared but is not installable.

That package and that usage of the Whonix repository is not ready and it is unclear it will ever be.

Mar 23 2016, 2:18 PM · anon-meta-packages, Whonix-Host, Whonix
Patrick added a project to T485: whonix-host-qemu-kvm package has an unmet dependency. Depends: whonix-host-shared but is not installable: anon-meta-packages.
Mar 23 2016, 2:18 PM · anon-meta-packages, Whonix-Host, Whonix
Patrick updated subscribers of T485: whonix-host-qemu-kvm package has an unmet dependency. Depends: whonix-host-shared but is not installable.
Mar 23 2016, 2:17 PM · anon-meta-packages, Whonix-Host, Whonix
Lobster created T485: whonix-host-qemu-kvm package has an unmet dependency. Depends: whonix-host-shared but is not installable.
Mar 23 2016, 10:17 AM · anon-meta-packages, Whonix-Host, Whonix

Nov 30 2015

Patrick changed the status of T286: Only source configuration files that end with the `.conf` extension? from Open to Review.

https://github.com/Whonix/Whonix/commit/1340726a83e5e02fe5e355cd20620d04335024c4

Nov 30 2015, 10:55 PM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix
Patrick added a comment to T286: Only source configuration files that end with the `.conf` extension?.
Only source configuration files that end with the '.conf' extension.
Nov 30 2015, 8:56 PM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix
Patrick added projects to T286: Only source configuration files that end with the `.conf` extension?: tb-starter, tb-updater.
Nov 30 2015, 8:38 PM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix
Patrick added projects to T286: Only source configuration files that end with the `.conf` extension?: Whonix-Host, open-link-confirmation.
Nov 30 2015, 8:33 PM · tb-updater, tb-starter, open-link-confirmation, Whonix-Host, rads, Whonix 13, onion-grater (Control Port Filter Proxy), uwt, build, sdwdate, whonixcheck, whonix-ws-firewall, whonix-gw-firewall, Whonix

Jun 22 2015

HulaHoop added a comment to T352: Make Onion Key backup more accessible.

Done.

Jun 22 2015, 8:10 PM · usability, enhancement, whonix-gw-desktop-shortcuts, anon-gw-anonymizer-config, Whonix 12, Whonix
Patrick added a comment to T352: Make Onion Key backup more accessible.

For a shortcut, modification of https://github.com/Whonix/whonix-gw-desktop-shortcuts/blob/master/debian/whonix-gw-desktop-shortcuts.postinst#L24 is required.

Jun 22 2015, 6:17 PM · usability, enhancement, whonix-gw-desktop-shortcuts, anon-gw-anonymizer-config, Whonix 12, Whonix

Jun 21 2015

HulaHoop added a comment to T352: Make Onion Key backup more accessible.

Please review pulls and feel free to close ticket when merged:

Jun 21 2015, 7:26 PM · usability, enhancement, whonix-gw-desktop-shortcuts, anon-gw-anonymizer-config, Whonix 12, Whonix

Jun 20 2015

Patrick added a comment to T352: Make Onion Key backup more accessible.

Yes, the .desktop file.
Folder: https://github.com/Whonix/anon-gw-anonymizer-config/tree/master/usr/share/applications

Jun 20 2015, 9:17 PM · usability, enhancement, whonix-gw-desktop-shortcuts, anon-gw-anonymizer-config, Whonix 12, Whonix

Jun 18 2015

HulaHoop added a comment to T352: Make Onion Key backup more accessible.

Is anything else besides https://phabricator.whonix.org/T352#5550 needed to create the shortcut?

Jun 18 2015, 3:00 AM · usability, enhancement, whonix-gw-desktop-shortcuts, anon-gw-anonymizer-config, Whonix 12, Whonix