R3.0: TorVM: Set up private data directory correctly

[andrewdavidwong]

Following the documentation to set up a TorVM in R3.0 does not work, because the private data directory is missing. The user also has to do this (or something with an equivalent effect):

[user@torvm] $ sudo mkdir /rw/usrlocal/lib/qubes-tor
[user@torvm] $ sudo chown user:user /rw/usrlocal/lib/qubes-tor

I've already added this to the documentation, but ISTM that this should be done automatically by the scripts, if possible. (I recall seeing some error messages suggesting that there were permissions issues.)

[marmarek]

I can't reproduce it. Just installed qubes-tor package in fresh R3.0 install, in default fedora-21 template and it simply works.
And indeed the directory is created.
What version of qubes-tor package do you have? Have you called start_tor_proxy.sh script manually instead of qubes-tor service? Some other template? (but I can't think of any case where mkdir doesn't work on some template...)

[marmarek]

I can't reproduce it. Just installed qubes-tor package in fresh R3.0 install, in default fedora-21 template and it simply works.
And indeed the directory is created.
What version of qubes-tor package do you have? Have you called start_tor_proxy.sh script manually instead of qubes-tor service? Some other template? (but I can't think of any case where mkdir doesn't work on some template...)

[unman]

Also confirmed working in debian templates without need for manual intervention.
As side note, should permissions not be that of TOR_USER rather than user?

[unman]

Also confirmed working in debian templates without need for manual intervention.
As side note, should permissions not be that of TOR_USER rather than user?

[andrewdavidwong]

I can't reproduce it. Just installed qubes-tor package in fresh R3.0 install, in default fedora-21 template and it simply works. And indeed the directory is created.

This was in a clone of fedora-21-minimal. Maybe that's why.

What version of qubes-tor package do you have?

bash-4.3# yum info qubes-tor
Loaded plugins: post-transaction-actions, yum-qubes-hooks
Installed Packages
Name        : qubes-tor
Arch        : x86_64
Version     : 0.1.11
Release     : 1.fc21
Size        : 16 k
Repo        : installed
From repo   : qubes-vm-r3.0-current
Summary     : The Qubes package for running a TorVM
URL         : http://www.qubes-os.org
License     : GPL
Description : A tor distribution for Qubes OS

Is this the version I should have?

Have you called start_tor_proxy.sh script manually instead of qubes-tor service?

Nope. Just followed the instructions in /doc/TorVM/.

Some other template? (but I can't think of any case where mkdir doesn't work on some template...)

Yes. As mentioned above, fedora-21-minimal instead of fedora-21.

[andrewdavidwong]

I can't reproduce it. Just installed qubes-tor package in fresh R3.0 install, in default fedora-21 template and it simply works. And indeed the directory is created.

This was in a clone of fedora-21-minimal. Maybe that's why.

What version of qubes-tor package do you have?

bash-4.3# yum info qubes-tor
Loaded plugins: post-transaction-actions, yum-qubes-hooks
Installed Packages
Name        : qubes-tor
Arch        : x86_64
Version     : 0.1.11
Release     : 1.fc21
Size        : 16 k
Repo        : installed
From repo   : qubes-vm-r3.0-current
Summary     : The Qubes package for running a TorVM
URL         : http://www.qubes-os.org
License     : GPL
Description : A tor distribution for Qubes OS

Is this the version I should have?

Have you called start_tor_proxy.sh script manually instead of qubes-tor service?

Nope. Just followed the instructions in /doc/TorVM/.

Some other template? (but I can't think of any case where mkdir doesn't work on some template...)

Yes. As mentioned above, fedora-21-minimal instead of fedora-21.

[andrewdavidwong]

As side note, should permissions not be that of TOR_USER rather than user?

I noticed that if I chown user:user, then the directory automatically gets chowned to toranon:toranon the next time the VM is restarted. That's why I added the parenthetical note "(or something with an equivalent effect)."

[andrewdavidwong]

As side note, should permissions not be that of TOR_USER rather than user?

I noticed that if I chown user:user, then the directory automatically gets chowned to toranon:toranon the next time the VM is restarted. That's why I added the parenthetical note "(or something with an equivalent effect)."

[marmarek]

I can confirm the issue on fedora-21-minimal template. Trying to find
out why...

Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[marmarek]

I can confirm the issue on fedora-21-minimal template. Trying to find
out why...

Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[marmarek]

Ok, on fedora-21-minimal template qubes-tor service is started before
/rw is mounted.

Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[marmarek]

Ok, on fedora-21-minimal template qubes-tor service is started before
/rw is mounted.

Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[marmarek]

Fix uploaded to current-testing repository

[marmarek]

Fix uploaded to current-testing repository