core: fix firewall update code

Do not load qubes.xml again, it can cause race conditions between two instances of the same VM objects. Especially when VM is starting ProxyVM to which it is connected, firewall rules could not be loaded.
2015-01-15 03:27:21 +01:00 · 2015-01-15 03:27:21 +01:00 · 52334bc414
commit 52334bc414
parent c489a81dfa
1 changed files with 5 additions and 8 deletions
--- a/core-modules/000QubesVm.py
+++ b/core-modules/000QubesVm.py
@ -1638,16 +1638,13 @@ class QubesVm(object):
            print >> sys.stderr, "--> Setting Qubes DB info for the VM..."
        self.create_xenstore_entries(xid)

-        qvm_collection = QubesVmCollection()
-        qvm_collection.lock_db_for_reading()
-        qvm_collection.load()
-        qvm_collection.unlock_db()
-
        if verbose:
            print >> sys.stderr, "--> Updating firewall rules..."
-        for vm in qvm_collection.values():
-            if vm.is_proxyvm() and vm.is_running():
-                vm.write_iptables_xenstore_entry()
+        netvm = self.netvm
+        while netvm is not None:
+            if netvm.is_proxyvm() and netvm.is_running():
+                netvm.write_iptables_xenstore_entry()
+            netvm = netvm.netvm

        # fire hooks
        for hook in self.hooks_start: