core: do not call resize2fs on private.img in dom0

Do not parse VM data (filesystem metadata in this case) in dom0, as this expose dom0 for potential attack.
2013-11-21 03:38:12 +01:00 · 2013-11-21 03:38:12 +01:00 · efeb284ab1
--- a/core-modules/000QubesVm.py
+++ b/core-modules/000QubesVm.py
@ -721,8 +721,6 @@ class QubesVm(object):

            retcode = self.run("while [ \"`blockdev --getsize64 /dev/xvdb`\" -lt {0} ]; do ".format(size) +
                "head /dev/xvdb > /dev/null; sleep 0.2; done; resize2fs /dev/xvdb", user="root", wait=True)
-        else:
-            retcode = subprocess.check_call(["sudo", "resize2fs", "-f", self.private_img])
        if retcode != 0:
            raise QubesException("resize2fs failed")