From 80bb4d95c97c2581c4d5e154acc1df4ca5db774d Mon Sep 17 00:00:00 2001
From: Greg Alexander <gitgreg@galexander.org>
Date: Sun, 16 Jun 2019 20:12:17 -0400
Subject: [PATCH] use rename() if the underlying filesystem doesn't support
 link()

---
 dropbear/gensignkey.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/dropbear/gensignkey.c b/dropbear/gensignkey.c
index 8317fea..79c5a9f 100644
--- a/dropbear/gensignkey.c
+++ b/dropbear/gensignkey.c
@@ -143,10 +143,11 @@ int signkey_generate(enum signkey_type keytype, int bits, const char* filename,
 	if (link(fn_temp, filename) < 0) {
 		/* If generating keys on connection (skipexist) it's OK to get EEXIST 
 		- we probably just lost a race with another connection to generate the key */
-		if (!(skip_exist && errno == EEXIST)) {
+		/* fallback to rename() if the fs doesn't support link() */
+		if ((!(skip_exist && errno == EEXIST)) &&
+		    (rename(fn_temp, filename) < 0)) {
 			dropbear_log(LOG_ERR, "Failed moving key file to %s: %s", filename,
 				strerror(errno));
-			/* XXX fallback to non-atomic copy for some filesystems? */
 			ret = DROPBEAR_FAILURE;
 			goto out;
 		}