From: Anthony Liguori <anthony@codemonkey.ws>
To: Kevin Wolf <kwolf@redhat.com>
Cc: stefanha@gmail.com, hahn@univention.de, qemu-devel@nongnu.org,
freddy77@gmail.com
Subject: Re: [Qemu-devel] [PATCH v3] qcow2: Fix L1 table size after bdrv_snapshot_goto
Date: Fri, 05 Aug 2011 07:35:08 -0500 [thread overview]
Message-ID: <4E3BE37C.8070403@codemonkey.ws> (raw)
In-Reply-To: <1312538771-11472-1-git-send-email-kwolf@redhat.com>
On 08/05/2011 05:06 AM, Kevin Wolf wrote:
> When loading an internal snapshot whose L1 table is smaller than the current L1
> table, the size of the current L1 would be shrunk to the snapshot's L1 size in
> memory, but not on disk. This lead to incorrect refcount updates and eventuelly
> to image corruption.
>
> Instead of writing the new L1 size to disk, this simply retains the bigger L1
> size that is currently in use and makes sure that the unused part is zeroed.
>
> Signed-off-by: Kevin Wolf<kwolf@redhat.com>
> Tested-by: Philipp Hahn<hahn@univention.de>
Applied to master and stable-0.15. Thanks.
Regards,
Anthony Liguori
> ---
> block/qcow2-snapshot.c | 16 +++++++++++-----
> 1 files changed, 11 insertions(+), 5 deletions(-)
>
> diff --git a/block/qcow2-snapshot.c b/block/qcow2-snapshot.c
> index 74823a5..e32bcf0 100644
> --- a/block/qcow2-snapshot.c
> +++ b/block/qcow2-snapshot.c
> @@ -317,7 +317,8 @@ int qcow2_snapshot_goto(BlockDriverState *bs, const char *snapshot_id)
> {
> BDRVQcowState *s = bs->opaque;
> QCowSnapshot *sn;
> - int i, snapshot_index, l1_size2;
> + int i, snapshot_index;
> + int cur_l1_bytes, sn_l1_bytes;
>
> snapshot_index = find_snapshot_by_id_or_name(bs, snapshot_id);
> if (snapshot_index< 0)
> @@ -330,14 +331,19 @@ int qcow2_snapshot_goto(BlockDriverState *bs, const char *snapshot_id)
> if (qcow2_grow_l1_table(bs, sn->l1_size, true)< 0)
> goto fail;
>
> - s->l1_size = sn->l1_size;
> - l1_size2 = s->l1_size * sizeof(uint64_t);
> + cur_l1_bytes = s->l1_size * sizeof(uint64_t);
> + sn_l1_bytes = sn->l1_size * sizeof(uint64_t);
> +
> + if (cur_l1_bytes> sn_l1_bytes) {
> + memset(s->l1_table + sn->l1_size, 0, cur_l1_bytes - sn_l1_bytes);
> + }
> +
> /* copy the snapshot l1 table to the current l1 table */
> if (bdrv_pread(bs->file, sn->l1_table_offset,
> - s->l1_table, l1_size2) != l1_size2)
> + s->l1_table, sn_l1_bytes)< 0)
> goto fail;
> if (bdrv_pwrite_sync(bs->file, s->l1_table_offset,
> - s->l1_table, l1_size2)< 0)
> + s->l1_table, cur_l1_bytes)< 0)
> goto fail;
> for(i = 0;i< s->l1_size; i++) {
> be64_to_cpus(&s->l1_table[i]);
prev parent reply other threads:[~2011-08-05 12:35 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-08-05 10:06 [Qemu-devel] [PATCH v3] qcow2: Fix L1 table size after bdrv_snapshot_goto Kevin Wolf
2011-08-05 12:35 ` Anthony Liguori [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4E3BE37C.8070403@codemonkey.ws \
--to=anthony@codemonkey.ws \
--cc=freddy77@gmail.com \
--cc=hahn@univention.de \
--cc=kwolf@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=stefanha@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.