Skip to content

[test] Clear mutex poision if previous host function panicked #819

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 1 commit into from
Closed

[test] Clear mutex poision if previous host function panicked #819

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
22 changes: 19 additions & 3 deletions src/hyperlight_host/src/func/host_functions.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -179,9 +179,25 @@ macro_rules! impl_host_function {
let func = Mutex::new(func);
HostFunction {
func: Arc::new(move |args: ($($P,)*)| {
func.try_lock()
.map_err(|e| new_error!("Error locking at {}:{}: {}", file!(), line!(), e))?
(args)
match func.try_lock() {
Ok(mut guard) => {
let result = guard(args);
drop(guard);
result
},
Err(poison_err) => {
match poison_err {
// The previous call to this host function panicked, poisoning the lock.
// We can clear the poison safely.
std::sync::TryLockError::Poisoned(guard) => {
guard.into_inner()(args)
}
std::sync::TryLockError::WouldBlock => {
Err(new_error!("Error locking at {}:{}: mutex would block", file!(), line!()))
}
}
}
}
})
}
}
Expand Down
40 changes: 22 additions & 18 deletions src/hyperlight_host/src/sandbox/initialized_multi_use.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -612,21 +612,23 @@ mod tests {

let mut sbox: MultiUseSandbox = usbox.evolve()?;

let res: Result<u64> = sbox.call("ViolateSeccompFilters", ());

#[cfg(feature = "seccomp")]
match res {
Ok(_) => panic!("Expected to fail due to seccomp violation"),
Err(e) => match e {
HyperlightError::DisallowedSyscall => {}
_ => panic!("Expected DisallowedSyscall error: {}", e),
},
}
for _ in 0..10 {
let res: Result<u64> = sbox.call("ViolateSeccompFilters", ());

#[cfg(feature = "seccomp")]
match res {
Ok(_) => panic!("Expected to fail due to seccomp violation"),
Err(e) => match e {
HyperlightError::DisallowedSyscall => {}
_ => panic!("Expected DisallowedSyscall error: {}", e),
},
}

#[cfg(not(feature = "seccomp"))]
match res {
Ok(_) => (),
Err(e) => panic!("Expected to succeed without seccomp: {}", e),
#[cfg(not(feature = "seccomp"))]
match res {
Ok(_) => (),
Err(e) => panic!("Expected to succeed without seccomp: {}", e),
}
}
}

Expand All @@ -648,11 +650,13 @@ mod tests {

let mut sbox: MultiUseSandbox = usbox.evolve()?;

let res: Result<u64> = sbox.call("ViolateSeccompFilters", ());
for _ in 0..10 {
let res: Result<u64> = sbox.call("ViolateSeccompFilters", ());

match res {
Ok(_) => {}
Err(e) => panic!("Expected to succeed due to seccomp violation: {}", e),
match res {
Ok(_) => {}
Err(e) => panic!("Expected to succeed due to seccomp violation: {}", e),
}
}
}

Expand Down
Loading