Detect Whonix to simplify launch #713

New Issue

Closed

opened 2023-09-04 00:41:02 +00:00 by nyxnor · 3 comments

nyxnor commented 2023-09-04 00:41:02 +00:00

Contributor

Copy Link

Current Whonix dcumentation.

There are many variables that must be set. They are not optional, see PR.

This is how long the Cwtch lauch line is:

env LD_LIBRARY_PATH=~/.local/lib/cwtch/:~/.local/lib/cwtch/Tor CWTCH_TAILS=true CWTCH_RESTRICT_PORTS=true CWTCH_BIND_EXTERNAL_WHONIX=true ~/.local/lib/cwtch/cwtch

Can Cwtch either:

• (preferred) detect Whonix and set it all (as they are necessary anyway)
• implement CWTCH_WHONIX=true, which would set CWTCH_BIND_EXTERNAL_WHONIX=true, CWTCH_RESTRICT_PORTS=true, CWTCH_TAILS=true

The validation of CWTCH_BIND_EXTERNAL_WHONIX already checks if it is Whonix or not by the marker file, but for security reasons to block it instead of allowing it.

Current [Whonix dcumentation](https://git.openprivacy.ca/cwtch.im/docs.cwtch.im/src/branch/staging/docs/platforms/whonix.md). There are many variables that must be set. They are not optional, see [PR](https://git.openprivacy.ca/cwtch.im/docs.cwtch.im/pulls/10). This is how long the Cwtch lauch line is: ```shell env LD_LIBRARY_PATH=~/.local/lib/cwtch/:~/.local/lib/cwtch/Tor CWTCH_TAILS=true CWTCH_RESTRICT_PORTS=true CWTCH_BIND_EXTERNAL_WHONIX=true ~/.local/lib/cwtch/cwtch ``` Can Cwtch either: - (preferred) detect Whonix and set it all (as they are necessary anyway) - implement `CWTCH_WHONIX=true`, which would set `CWTCH_BIND_EXTERNAL_WHONIX=true`, `CWTCH_RESTRICT_PORTS=true`, `CWTCH_TAILS=true` The validation of CWTCH_BIND_EXTERNAL_WHONIX already checks if it is Whonix or not by the marker file, but for security reasons to block it instead of allowing it.

sarah added this to the Stable Blockers project 2023-09-05 17:02:19 +00:00

sarah added the

enhancement

whonix

labels 2023-09-05 17:02:40 +00:00

sarah self-assigned this 2023-09-05 17:08:22 +00:00

sarah commented 2023-09-25 20:00:39 +00:00

Owner

Copy Link

I looked into this and there is no nice way of doing this from Flutter. Given the new install scripts, and the separate nature of these flags, I'm considering this a wontfix without additional motivation.

I looked into this and there is no nice way of doing this from Flutter. Given the new install scripts, and the separate nature of these flags, I'm considering this a wontfix without additional motivation.

sarah added the

wontfix

label 2023-09-25 20:00:45 +00:00

sarah removed this from the Stable Blockers project 2023-09-25 20:00:50 +00:00

sarah closed this issue 2023-09-25 20:01:06 +00:00

adrelanos commented 2024-01-10 12:37:48 +00:00

Copy Link

This doesn't need to be done at the Flutter level (which I haven't developed with).

It seems there is already install-whonix.sh which takes care of this.

This doesn't need to be done at the Flutter level (which I haven't developed with). It seems there is already `install-whonix.sh` which takes care of this.

adrelanos commented 2024-01-10 12:47:39 +00:00

Copy Link

If a .deb is created, then this still doesn't need to be done at the Flutter level. A simple shell wrapper would suffice that handles Tails, Whonix, whatnot.

If a `.deb` is created, then this still doesn't need to be done at the Flutter level. A simple shell wrapper would suffice that handles Tails, Whonix, whatnot.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

trunk

arm64pt1

flutter-3.19.3-fixes

themeFixes2

lastFixes

drone-3.19.3

flutter-3.19.3

sonoma

splashFix

deb

android_foreground_fix

android_notif_fix

fixThemes

theme-loading-fix

themeFixes

themeName

0.0.12

dart-analyzer

fix-images

streams

hideblud

fixchat

themeBits

fixGoMobile

themeImport

theme

fixdate

themeImage

post-stable-fixes

settingsPanesFiles

assetsPath

i10nupdate

settingsPanes

themeImgDir

pubspecVer

updateTor

undoFetchTor

tor-expert

mactest

fixmacdrone

yamlthemes

1.13.1

winemoji

fixSyncTime

stable-blockers

addAutoloadDef

andro33

scalingLabel

search

repbuilds-additional

repbuilds

1.12-rc

f10lin

deploy-fixes

dep-upgrades-3.10.0

ui-many-fixes

win-fixes

macos-3.10

ui-many

sw-and-sv

font-scaling

detectNetwork

ui-updates

tails-fix

performance

fixinstsys

pkg

status

tails

blodeuwedd

android_export_fix

savequotes

autobindings

testtest

profile_mgmt

unicode

integtest2

slovak

flutter3.7.1

fix-release

release-builds

uitests

fixurls

scrollbars

failonfetch

fixmacbuilds

fixDeactivate

noDisable

glic231

newjson

saveAutostart

serverOfflineIcon

notiFocus

formatfixes

lcgBump

69nicefixes

fixes

fix_linux_install

lcg1.10

android_export

replying_to

juniper_theme

smodepriv

unlockflow

pt_BR

cwtchicons

fix-mac

update-cwtch

update-translations

fixAntispam

torBump

qrcode

antispam

savedrafts

load_messages_sync

noAddContactDup

debug_access

locale_tr

fixquote

pinned

winInstructions

viewreplies

filesharing-persist

invite-fix

android-modal

ru-update

androidExported

1.8.0

newwincert

fuzzbot-fixes

default_message_formatting

macarm

intl_fix

fixFirstSync

fix_308

flutter3_notify

snackbars

formatting_toolbar_tooltip

formatting_toolbar

intl

marcia_fixes

show_down

reply_links

pl_intl

fix457

pubspecBump

cache3.0

fix-settings

replyFix

file-fixes

perf

winUninstall

cachefixes

kotlinResult

linuxNotif

debuginfo

androidFlags

power

theme-updates

add_contact_hook

message-formatting

mainActivityPort

unreadSync

androMessage

ns

small_edits

import_export

splashExit

file_bubble_pop_fix

state

message_row_fixes

da

es

cy

messagedate

i18n

no

de

lb

ro

macNotifications

fix297

cwtch1.6.1-fixes

ps160

lcg160

droneGherkin

cwtch_prefix

maclcg

notificationSettings

custom_profile_fixes

custom_profile_images

profile_images

gherkin

profileNotify

wintoasts

fastercwtch

serverProgress

winFocus

winNotify

androTor

sender_size

cache

torcache

models

getinfo

android-fix

fix_debug_error_add_contact

custom_tor_config

fix_295

v152

fixSaveHist

fixLeave

fixAndroidAttrInv

fixAcceptBlock

appbarColor

1.5-upgrades

messageCache

1.4.0-release

l10nup

ios_build_port

quote

v1.14.7

v1.14.6-nightly

v1.14.5-nightly

v1.14.4-nightly

v1.14.3-nightly

v1.14.2-nightly

v1.14.1-nightly

1.14.1-nightly

v1.14.0

v0.1.14-rc

v1.13.2

v1.13.1

v1.13.0

v1.12.0

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.1

v.1.7.0

v1.6.2

v1.6.1

v1.6.0

v1.5.2

v1.5.1

v1.5.0

v1.4.2

v1.4.1

v1.4.0

v1.3.0

v1.2.1

v1.2.0

v1.1.1

v1.1.0

v1.0.0

Labels

Clear labels   

android

  

arch

  

backlog

  

blocked-on-external

This issue requires effort from an external organization to move forward

  

bug

Something is not working

  

bugbash

  

component/bindings

  

component/bine

  

component/connectivity

  

component/cwtch

  

component/tapir

  

component/ui

  

cwtch-1.14

  

cwtch-1.15

  

cwtch-beta-1.1

  

cwtch-beta-1.10

Changes Planned for Cwtch Beta 1.10

  

cwtch-beta-1.11

  

cwtch-beta-1.12

  

cwtch-beta-1.13

  

cwtch-beta-1.2

  

cwtch-beta-1.3

  

cwtch-beta-1.4

  

cwtch-beta-1.5

  

cwtch-beta-1.5.x

point release vug fixes for 1.5

  

cwtch-beta-1.6

  

cwtch-beta-1.7

  

cwtch-beta-1.8

  

cwtch-beta-1.9

  

design

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

flutter

  

funding-needed

  

help wanted

Need some help

  

hybrid-groups

  

in-nightly

  

in-progress

  

invalid

Something is wrong

  

ios

  

linux

  

mac

  

need-replication-or-investigation

  

ops

  

packaging

  

post-stable

These issues won't be considered until after Cwtch Stable ships.

  

question

More information is needed

  

questionable

there is an open question as to whether this is an issue at all / if we can even fix this

  

requires-more-effort-than-we-can-spare

The amount of work involved to solve this issue would occupy our entire development team for a significant period of time and/or provide little benefit to the rest of the project

  

rust

  

scheduled

  

stable-blocker

  

tails

  

testing-needed

  

tests

  

tor

  

waiting-on-fix-confirmation

  

waiting-on-new-flutter-feature

The cause of this issue is a bug in the underlying flutter framework.

  

whonix

  

windows

  

wontfix

This won't be fixed

No Label

android

arch

backlog

blocked-on-external

bug

bugbash

component/bindings

component/bine

component/connectivity

component/cwtch

component/tapir

component/ui

cwtch-1.14

cwtch-1.15

cwtch-beta-1.1

cwtch-beta-1.10

cwtch-beta-1.11

cwtch-beta-1.12

cwtch-beta-1.13

cwtch-beta-1.2

cwtch-beta-1.3

cwtch-beta-1.4

cwtch-beta-1.5

cwtch-beta-1.5.x

cwtch-beta-1.6

cwtch-beta-1.7

cwtch-beta-1.8

cwtch-beta-1.9

design

duplicate

enhancement

flutter

funding-needed

help wanted

hybrid-groups

in-nightly

in-progress

invalid

ios

linux

mac

need-replication-or-investigation

ops

packaging

post-stable

question

questionable

requires-more-effort-than-we-can-spare

rust

scheduled

stable-blocker

tails

testing-needed

tests

tor

waiting-on-fix-confirmation

waiting-on-new-flutter-feature

whonix

windows

wontfix

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

sarah

3 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: cwtch.im/cwtch-ui#713

No description provided.