mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-12-24 06:35:24 +00:00
qemu: Don't unconditionally delete file in qemuOpenFileAs
https://bugzilla.redhat.com/show_bug.cgi?id=1158034 If we're expecting to create a file somewhere and that fails for some reason during qemuOpenFileAs, then we unlink the path we're attempting to create leaving no way to determine what the "existing" privileges, protections, or labels are that caused the failure (open, change owner and group, change mode, etc.). Furthermore, if we fall into the path where we'll be opening / creating the file using VIR_FILE_OPEN_FORK, we need to first unlink/delete the file we created in the first path; otherwise, the attempt by the child process to open as some specific user:group may fail because the file was already created using nfsnobody:nfsnobody. Again, if we didn't create the file we don't want to blindly delete what already exists. Thus, a second reason for the original check to set need_unlink to false when we find the file with CREAT set, but already existing. Signed-off-by: John Ferlan <jferlan@redhat.com>
This commit is contained in:
parent
29946e3e53
commit
7879d03197
@ -2899,6 +2899,9 @@ qemuOpenFileAs(uid_t fallback_uid, gid_t fallback_gid,
|
|||||||
vfoflags |= VIR_FILE_OPEN_FORCE_OWNER;
|
vfoflags |= VIR_FILE_OPEN_FORCE_OWNER;
|
||||||
|
|
||||||
if (stat(path, &sb) == 0) {
|
if (stat(path, &sb) == 0) {
|
||||||
|
/* It already exists, we don't want to delete it on error */
|
||||||
|
need_unlink = false;
|
||||||
|
|
||||||
is_reg = !!S_ISREG(sb.st_mode);
|
is_reg = !!S_ISREG(sb.st_mode);
|
||||||
/* If the path is regular file which exists
|
/* If the path is regular file which exists
|
||||||
* already and dynamic_ownership is off, we don't
|
* already and dynamic_ownership is off, we don't
|
||||||
@ -2951,6 +2954,15 @@ qemuOpenFileAs(uid_t fallback_uid, gid_t fallback_gid,
|
|||||||
goto error;
|
goto error;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/* If we created the file above, then we need to remove it;
|
||||||
|
* otherwise, the next attempt to create will fail. If the
|
||||||
|
* file had already existed before we got here, then we also
|
||||||
|
* don't want to delete it and allow the following to succeed
|
||||||
|
* or fail based on existing protections
|
||||||
|
*/
|
||||||
|
if (need_unlink)
|
||||||
|
unlink(path);
|
||||||
|
|
||||||
/* Retry creating the file as qemu user */
|
/* Retry creating the file as qemu user */
|
||||||
|
|
||||||
if ((fd = virFileOpenAs(path, oflags,
|
if ((fd = virFileOpenAs(path, oflags,
|
||||||
|
Loading…
Reference in New Issue
Block a user