attempt to add stat64 filename filters; failed due to getaddrinfo..

author: Cristian Toader <cristian.matei.toader@gmail.com> 2013-08-12 21:14:43 +0300
committer: Cristian Toader <cristian.matei.toader@gmail.com> 2013-08-12 21:14:43 +0300
commit: 8a85a48b9d0ed2b298bcc26dfeb96fa7e31c05c4 (patch)
tree: 369ea3730d5b4a00ec81cf60486caebc7e59f2fe /src/or/main.c
parent: 44a4464cf6d4dac88c46b8ffdb6ad002d03ade62 (diff)
download: tor-8a85a48b9d0ed2b298bcc26dfeb96fa7e31c05c4.tar.gz
tor-8a85a48b9d0ed2b298bcc26dfeb96fa7e31c05c4.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/src/or/main.c b/src/or/main.c
index c236e8399d..a2fbe5f636 100644
--- a/src/or/main.c
+++ b/src/or/main.c
@@ -2672,6 +2672,14 @@ sandbox_init_filter()
       "/dev/urandom", 0
   );
 
+  sandbox_cfg_allow_stat64_filename_array(&cfg, 5,
+      get_datadir_fname(NULL), 1,
+      get_datadir_fname("lock"), 1,
+      get_datadir_fname("state"), 1,
+      get_datadir_fname("router-stability"), 1,
+      get_datadir_fname("cached-extrainfo.new"), 1
+  );
+
   // orport
   if (server_mode(get_options())) {
     sandbox_cfg_allow_open_filename_array(&cfg, 13,
@@ -2689,6 +2697,11 @@ sandbox_init_filter()
         "/etc/resolv.conf", 0,
         "/dev/random", 0
     );
+
+    sandbox_cfg_allow_stat64_filename_array(&cfg, 2,
+        get_datadir_fname("keys"), 1,
+        get_datadir_fname("stats/dirreq-stats"), 1
+    );
   }
 
   sandbox_cfg_allow_execve(&cfg, "/usr/local/bin/tor");
author	Cristian Toader <cristian.matei.toader@gmail.com>	2013-08-12 21:14:43 +0300
committer	Cristian Toader <cristian.matei.toader@gmail.com>	2013-08-12 21:14:43 +0300
commit	8a85a48b9d0ed2b298bcc26dfeb96fa7e31c05c4 (patch)
tree	369ea3730d5b4a00ec81cf60486caebc7e59f2fe /src/or/main.c
parent	44a4464cf6d4dac88c46b8ffdb6ad002d03ade62 (diff)
download	tor-8a85a48b9d0ed2b298bcc26dfeb96fa7e31c05c4.tar.gz tor-8a85a48b9d0ed2b298bcc26dfeb96fa7e31c05c4.zip