Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation

From:	Eric Blake
Subject:	Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation
Date:	Tue, 20 Mar 2018 09:50:19 -0500
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0

On 03/20/2018 04:31 AM, Florian Larysch wrote:

qemu_create_pidfile does not truncate the pidfile when it creates it,
but rather overwrites its contents with the new pid. This works fine as
long as the length of the pid doesn't decrease, but this might happen in
case of wraparounds, causing pidfiles to contain trailing garbage which
breaks operations such as 'kill $(cat pidfile)'.


Ouch.  Good analysis.

However, I have to wonder if we have the opposite problem - when thefile exists (truncated) but has not yet been written, how often do wehave a race where someone can see the empty file?

Should we be going even further and writing the pid into a temporaryfile and then rename(2)ing that file onto the real destination, so thatif the pid file exists at all, it has stable contents that can't causeconfusion?


Instead, always truncate the file before writing it.

Signed-off-by: Florian Larysch <address@hidden>
---
  os-posix.c | 2 +-
  os-win32.c | 2 +-
  2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/os-posix.c b/os-posix.c
index b9c2343b1e..9a6b874180 100644
--- a/os-posix.c
+++ b/os-posix.c
@@ -301,7 +301,7 @@ int qemu_create_pidfile(const char *filename)
      int len;
      int fd;

- fd = qemu_open(filename, O_RDWR | O_CREAT, 0600);

+    fd = qemu_open(filename, O_RDWR | O_CREAT | O_TRUNC, 0600);

This part is right, if we don't care about the race with someone readingan empty file.

      if (fd == -1) {
          return -1;
      }
diff --git a/os-win32.c b/os-win32.c
index 586a7c7d49..85dbad7af8 100644
--- a/os-win32.c
+++ b/os-win32.c
@@ -108,7 +108,7 @@ int qemu_create_pidfile(const char *filename)
      memset(&overlap, 0, sizeof(overlap));

file = CreateFile(filename, GENERIC_WRITE, FILE_SHARE_READ, NULL,

-                      OPEN_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL);
+                      CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL);

I assume this is right (at least for looking comparable to the POSIXcase), although I'm trusting you here.


Reviewed-by: Eric Blake <address@hidden>

Worth including in 2.12, unless we want to also avoid the race of anempty pidfile.


--
Eric Blake, Principal Software Engineer
Red Hat, Inc.           +1-919-301-3266
Virtualization:  qemu.org | libvirt.org

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH] os: truncate pidfile on creation, Florian Larysch, 2018/03/20
- Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation, Eric Blake <=
  - Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation, Florian Larysch, 2018/03/20
  - Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation, Daniel P . Berrangé, 2018/03/20
    - Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation, Eric Blake, 2018/03/20
    - Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation, Florian Larysch, 2018/03/20
    - Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation, Daniel P . Berrangé, 2018/03/20

Prev by Date: Re: [Qemu-devel] [PATCH] nvdimm: ensure that dsm memory is read in nvdimm_dsm_write
Next by Date: Re: [Qemu-devel] [PATCH] tpm: Set tpmRegValidSts flag to '1' in device reset
Previous by thread: [Qemu-devel] [PATCH] os: truncate pidfile on creation
Next by thread: Re: [Qemu-devel] [PATCH for-2.12] os: truncate pidfile on creation
Index(es):
- Date
- Thread