Avoid TOCTOU error in volume creation

Checking if a volume exists before attempting to create it results in a "time of check to time of use" race. When the check is done the volume doesn't exist but then, because it is shared storage, it is then created by another node before the local attempt to create it. This results in an unexpected failure. It is better to simply attempt to create the volume and ignore EEXIST in cases where this is permissible. Implementing this properly is complicated by the fact that the exception appears to contain only an error message and does not appear to contain a useful error code. Digging through the layers in, for example, fog-libvirt provides no evidence why this is so. However, the error message seems fairly unique and matching it is easy, so just do that. A small hack to vastly improve stability. Signed-off-by: Martin Schwenke <martin@meltin.net>
2025-02-25 18:55:27 -06:00 · 2019-03-13 20:49:11 +11:00
parent 191dc8656e
commit 222b50925d
1 changed files with 19 additions and 17 deletions
--- a/lib/vagrant-libvirt/action/create_domain.rb
+++ b/lib/vagrant-libvirt/action/create_domain.rb
@@ -162,26 +162,28 @@ module VagrantPlugins

            disk[:absolute_path] = storage_prefix + disk[:path]

-            if env[:machine].provider.driver.connection.volumes.select do |x|
-              x.name == disk[:name] && x.pool_name == @storage_pool_name
-            end.empty?
-              # make the disk. equivalent to:
-              # qemu-img create -f qcow2 <path> 5g
-              begin
-                env[:machine].provider.driver.connection.volumes.create(
-                  name: disk[:name],
-                  format_type: disk[:type],
-                  path: disk[:absolute_path],
-                  capacity: disk[:size],
-                  #:allocation => ?,
-                  pool_name: @storage_pool_name
-                )
-              rescue Fog::Errors::Error => e
+            # make the disk. equivalent to:
+            # qemu-img create -f qcow2 <path> 5g
+            begin
+              env[:machine].provider.driver.connection.volumes.create(
+                name: disk[:name],
+                format_type: disk[:type],
+                path: disk[:absolute_path],
+                capacity: disk[:size],
+                #:allocation => ?,
+                pool_name: @storage_pool_name
+              )
+            rescue Libvirt::Error => e
+              # It is hard to believe that e contains just a string
+              # and no useful error code!
+              msg = "Call to virStorageVolCreateXML failed: " +
+                    "storage volume '#{disk[:path]}' exists already"
+              if e.message == msg and disk[:allow_existing]
+                disk[:preexisting] = true
+              else
                raise Errors::FogDomainVolumeCreateError,
                      error_message: e.message
              end
-            else
-              disk[:preexisting] = true
            end
          end