[tor-bugs] #22605 [Core Tor/Tor]: sandbox_intern_string(): Bug: No interned sandbox parameter found for /etc/tor/torrc.d/
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Aug 4 19:09:59 UTC 2017
#22605: sandbox_intern_string(): Bug: No interned sandbox parameter found for
/etc/tor/torrc.d/
---------------------------------+------------------------------------
Reporter: toralf | Owner: dgoulet
Type: defect | Status: accepted
Priority: High | Milestone: Tor: 0.3.1.x-final
Component: Core Tor/Tor | Version: Tor: 0.3.1.3-alpha
Severity: Normal | Resolution:
Keywords: sandbox, regression | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
---------------------------------+------------------------------------
Comment (by yawning):
Replying to [comment:10 Jigsaw52]:
> This means that the best thing that can be done in this case is to check
for all includes in the config files before setting up the sandbox and
include rules for those.
In the long term, there's certainly ways to make this work, but it will
involve using IPC and a separate process, or a separate sandboxing
mechanism for filesystem access. Either of those changes would be
objectively superior to what's done currently, but would be rather
involved.
> Reloading the configuration after adding more %includes or even more
files to already included folders will not be possible if the sandbox is
enabled.
Indeed. There's already certain preferences that are incompatible with
the sandbox all together, or with reloads, so supporting it to the limits
of the existing code and documenting the caveats may be sufficient.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22605#comment:11>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list