Add 'rename' to the sandboxed syscalls

(If we don't restrict rename, there's not much point in restricting open, since an attacker could always use rename to make us open whatever they want.)
author: Nick Mathewson <nickm@torproject.org> 2014-03-28 03:51:50 -0400
committer: Nick Mathewson <nickm@torproject.org> 2014-04-16 22:03:08 -0400
commit: cbfb8e703ed9c7e31848ebf959ac7a4cf27b4a64 (patch)
tree: 63c352b5287e9f57ed91b2950d4fec9d5cf1c864 /src/or/config.c
parent: 3802e32c7d94c599546069d8246636b0d3a4ad10 (diff)
download: tor-cbfb8e703ed9c7e31848ebf959ac7a4cf27b4a64.tar.gz
tor-cbfb8e703ed9c7e31848ebf959ac7a4cf27b4a64.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/or/config.c b/src/or/config.c
index ca99d014fc..89aedccb4c 100644
--- a/src/or/config.c
+++ b/src/or/config.c
@@ -6276,7 +6276,7 @@ write_configuration_file(const char *fname, const or_options_t *options)
       ++i;
     }
     log_notice(LD_CONFIG, "Renaming old configuration file to \"%s\"", fn_tmp);
-    if (rename(fname, fn_tmp) < 0) {
+    if (tor_rename(fname, fn_tmp) < 0) {//XXXX sandbox doesn't allow
       log_warn(LD_FS,
                "Couldn't rename configuration file \"%s\" to \"%s\": %s",
                fname, fn_tmp, strerror(errno));
author	Nick Mathewson <nickm@torproject.org>	2014-03-28 03:51:50 -0400
committer	Nick Mathewson <nickm@torproject.org>	2014-04-16 22:03:08 -0400
commit	cbfb8e703ed9c7e31848ebf959ac7a4cf27b4a64 (patch)
tree	63c352b5287e9f57ed91b2950d4fec9d5cf1c864 /src/or/config.c
parent	3802e32c7d94c599546069d8246636b0d3a4ad10 (diff)
download	tor-cbfb8e703ed9c7e31848ebf959ac7a4cf27b4a64.tar.gz tor-cbfb8e703ed9c7e31848ebf959ac7a4cf27b4a64.zip