Avoid TOCTOU error in volume creation

Checking if a volume exists before attempting to create it results in a "time of check to time of use" race. When the check is done the volume doesn't exist but then, because it is shared storage, it is then created by another node before the local attempt to create it. This results in an unexpected failure. It is better to simply attempt to create the volume and ignore EEXIST in cases where this is permissible. Implementing this properly is complicated by the fact that the exception appears to contain only an error message and does not appear to contain a useful error code. Digging through the layers in, for example, fog-libvirt provides no evidence why this is so. However, the error message seems fairly unique and matching it is easy, so just do that. A small hack to vastly improve stability. Signed-off-by: Martin Schwenke <martin@meltin.net>
2025-02-25 18:55:27 -06:00 · 2019-03-13 20:49:11 +11:00
parent 191dc8656e
commit 222b50925d
1 changed files with 19 additions and 17 deletions
--- a/lib/vagrant-libvirt/action/create_domain.rb
+++ b/lib/vagrant-libvirt/action/create_domain.rb
@@ -162,26 +162,28 @@ module VagrantPlugins
            disk[:absolute_path] = storage_prefix + disk[:path]
-            if env[:machine].provider.driver.connection.volumes.select do |x|
+            # make the disk. equivalent to:
-              x.name == disk[:name] && x.pool_name == @storage_pool_name
+            # qemu-img create -f qcow2 <path> 5g
-            end.empty?
+            begin
-              # make the disk. equivalent to:
+              env[:machine].provider.driver.connection.volumes.create(
-              # qemu-img create -f qcow2 <path> 5g
+                name: disk[:name],
-              begin
+                format_type: disk[:type],
-                env[:machine].provider.driver.connection.volumes.create(
+                path: disk[:absolute_path],
-                  name: disk[:name],
+                capacity: disk[:size],
-                  format_type: disk[:type],
+                #:allocation => ?,
-                  path: disk[:absolute_path],
+                pool_name: @storage_pool_name
-                  capacity: disk[:size],
+              )
-                  #:allocation => ?,
+            rescue Libvirt::Error => e
-                  pool_name: @storage_pool_name
+              # It is hard to believe that e contains just a string
-                )
+              # and no useful error code!
-              rescue Fog::Errors::Error => e
+              msg = "Call to virStorageVolCreateXML failed: " +
                    "storage volume '#{disk[:path]}' exists already"
              if e.message == msg and disk[:allow_existing]
                disk[:preexisting] = true
              else
                raise Errors::FogDomainVolumeCreateError,
                      error_message: e.message
              end
            else
              disk[:preexisting] = true
            end
          end