From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:32945) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XrVC6-0003S3-MZ for qemu-devel@nongnu.org; Thu, 20 Nov 2014 12:07:04 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XrVC0-0000iu-Gi for qemu-devel@nongnu.org; Thu, 20 Nov 2014 12:06:58 -0500 Received: from mx1.redhat.com ([209.132.183.28]:56248) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XrVC0-0000iq-9k for qemu-devel@nongnu.org; Thu, 20 Nov 2014 12:06:52 -0500 Received: from int-mx09.intmail.prod.int.phx2.redhat.com (int-mx09.intmail.prod.int.phx2.redhat.com [10.5.11.22]) by mx1.redhat.com (8.14.4/8.14.4) with ESMTP id sAKH6pbD003474 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL) for ; Thu, 20 Nov 2014 12:06:51 -0500 From: Max Reitz Date: Thu, 20 Nov 2014 18:06:21 +0100 Message-Id: <1416503198-17031-6-git-send-email-mreitz@redhat.com> In-Reply-To: <1416503198-17031-1-git-send-email-mreitz@redhat.com> References: <1416503198-17031-1-git-send-email-mreitz@redhat.com> Subject: [Qemu-devel] [PATCH v3 05/22] qcow2: Refcount overflow and qcow2_alloc_bytes() List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: qemu-devel@nongnu.org Cc: Kevin Wolf , Stefan Hajnoczi , Max Reitz qcow2_alloc_bytes() may reuse a cluster multiple times, in which case the refcount is increased accordingly. However, if this would lead to an overflow the function should instead just not reuse this cluster and allocate a new one. Signed-off-by: Max Reitz Reviewed-by: Eric Blake --- block/qcow2-refcount.c | 32 ++++++++++++++++++++++++++++++-- 1 file changed, 30 insertions(+), 2 deletions(-) diff --git a/block/qcow2-refcount.c b/block/qcow2-refcount.c index be4e5fe..66c78c0 100644 --- a/block/qcow2-refcount.c +++ b/block/qcow2-refcount.c @@ -761,12 +761,13 @@ int qcow2_alloc_clusters_at(BlockDriverState *bs, uint64_t offset, int64_t qcow2_alloc_bytes(BlockDriverState *bs, int size) { BDRVQcowState *s = bs->opaque; - int64_t offset, cluster_offset, new_cluster; + int64_t offset, cluster_offset, new_cluster, refcount; int64_t ret; int free_in_cluster; BLKDBG_EVENT(bs->file, BLKDBG_CLUSTER_ALLOC_BYTES); assert(size > 0 && size <= s->cluster_size); + redo: if (s->free_byte_offset == 0) { offset = qcow2_alloc_clusters(bs, s->cluster_size); if (offset < 0) { @@ -774,12 +775,25 @@ int64_t qcow2_alloc_bytes(BlockDriverState *bs, int size) } s->free_byte_offset = offset; } - redo: + free_in_cluster = s->cluster_size - offset_into_cluster(s, s->free_byte_offset); if (size <= free_in_cluster) { /* enough space in current cluster */ offset = s->free_byte_offset; + + if (offset_into_cluster(s, offset) != 0) { + /* We will have to increase the refcount of this cluster; if the + * maximum has been reached already, this cluster cannot be used */ + refcount = qcow2_get_refcount(bs, offset >> s->cluster_bits); + if (refcount < 0) { + return refcount; + } else if (refcount == s->refcount_max) { + s->free_byte_offset = 0; + goto redo; + } + } + s->free_byte_offset += size; free_in_cluster -= size; if (free_in_cluster == 0) @@ -800,6 +814,20 @@ int64_t qcow2_alloc_bytes(BlockDriverState *bs, int size) if ((cluster_offset + s->cluster_size) == new_cluster) { /* we are lucky: contiguous data */ offset = s->free_byte_offset; + + /* Same as above: In order to reuse the cluster, the refcount has to + * be increased; if that will not work, we are not so lucky after + * all */ + refcount = qcow2_get_refcount(bs, offset >> s->cluster_bits); + if (refcount < 0) { + qcow2_free_clusters(bs, new_cluster, s->cluster_size, + QCOW2_DISCARD_NEVER); + return refcount; + } else if (refcount == s->refcount_max) { + s->free_byte_offset = offset; + goto redo; + } + ret = qcow2_update_cluster_refcount(bs, offset >> s->cluster_bits, 1, QCOW2_DISCARD_NEVER); if (ret < 0) { -- 1.9.3