runqemu: Remove potential lock races around tap device handling

The qemu tap device handling is potentially race ridden. We pass the fd to the main qemu subprocess which is good as it means the lock is held as long as the qemu process exists. This means we shouldn't unlock it ourselves though, only close the file. We also can't delete the file as we have no idea if qemu is still using it. We could try and obtain an exclusive new lock, then the file would be safe to unlink but it doesn't seem worth it. Also fix the same issue in the port lock code. (From OE-Core rev: 2a87bddabf816d09ec801e33972879e6983627eb) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-07-07 11:08:41 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-07-08 14:58:28 +0100
commit: a16d7d2ec63f911657330dd1df9c8cb069bbd5ee (patch)
tree: 0837a328f487521c4abe218903ced20f7f58de5e /scripts
parent: bdc5f4e892f36d90737e87192ab3f2c30d8dbdd9 (diff)
download: poky-a16d7d2ec63f911657330dd1df9c8cb069bbd5ee.tar.gz
1 files changed, 18 insertions, 9 deletions
diff --git a/scripts/runqemu b/scripts/runqemu
index 1f332ef525..2914f15d06 100755
--- a/scripts/runqemu
+++ b/scripts/runqemu
@@ -233,9 +233,12 @@ class BaseConfig(object):
    def release_taplock(self):
        if self.taplock_descriptor:
            logger.debug("Releasing lockfile for tap device '%s'" % self.tap)
-            fcntl.flock(self.taplock_descriptor, fcntl.LOCK_UN)
+            # We pass the fd to the qemu process and if we unlock here, it would unlock for
+            # that too. Therefore don't unlock, just close
+            # fcntl.flock(self.taplock_descriptor, fcntl.LOCK_UN)
            self.taplock_descriptor.close()
-            os.remove(self.taplock)
+            # Removing the file is a potential race, don't do that either
+            # os.remove(self.taplock)
            self.taplock_descriptor = None
    def check_free_port(self, host, port, lockdir):
@@ -273,17 +276,23 @@ class BaseConfig(object):
    def release_portlock(self, lockfile=None):
        if lockfile != None:
-           logger.debug("Releasing lockfile '%s'" % lockfile)
+            logger.debug("Releasing lockfile '%s'" % lockfile)
-           fcntl.flock(self.portlocks[lockfile], fcntl.LOCK_UN)
+            # We pass the fd to the qemu process and if we unlock here, it would unlock for
-           self.portlocks[lockfile].close()
+            # that too. Therefore don't unlock, just close
-           os.remove(lockfile)
+            # fcntl.flock(self.portlocks[lockfile], fcntl.LOCK_UN)
-           del self.portlocks[lockfile]
+            self.portlocks[lockfile].close()
+            # Removing the file is a potential race, don't do that either
+            # os.remove(lockfile)
+            del self.portlocks[lockfile]
        elif len(self.portlocks):
            for lockfile, descriptor in self.portlocks.items():
                logger.debug("Releasing lockfile '%s'" % lockfile)
-                fcntl.flock(descriptor, fcntl.LOCK_UN)
+                # We pass the fd to the qemu process and if we unlock here, it would unlock for
+                # that too. Therefore don't unlock, just close
+                # fcntl.flock(descriptor, fcntl.LOCK_UN)
                descriptor.close()
-                os.remove(lockfile)
+                # Removing the file is a potential race, don't do that either
+                # os.remove(lockfile)
            self.portlocks = {}
    def get(self, key):
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-07-07 11:08:41 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-07-08 14:58:28 +0100
commit	a16d7d2ec63f911657330dd1df9c8cb069bbd5ee (patch)
tree	0837a328f487521c4abe218903ced20f7f58de5e /scripts
parent	bdc5f4e892f36d90737e87192ab3f2c30d8dbdd9 (diff)
download	poky-a16d7d2ec63f911657330dd1df9c8cb069bbd5ee.tar.gz