[102/113] qcow2: Do not mark inactive images corrupt

Message ID	20180619014319.28272-103-mdroth@linux.vnet.ibm.com
State	New
Headers	show Return-Path: <qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org> From: Michael Roth <mdroth@linux.vnet.ibm.com> To: qemu-devel@nongnu.org Date: Mon, 18 Jun 2018 20:43:08 -0500 Message-Id: <20180619014319.28272-103-mdroth@linux.vnet.ibm.com> In-Reply-To: <20180619014319.28272-1-mdroth@linux.vnet.ibm.com> References: <20180619014319.28272-1-mdroth@linux.vnet.ibm.com> Subject: [Qemu-devel] [PATCH 102/113] qcow2: Do not mark inactive images corrupt Precedence: list Cc: qemu-stable@nongnu.org, Max Reitz <mreitz@redhat.com> Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org Sender: "Qemu-devel" <qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org>
Series	[001/113] block/ssh: fix possible segmentation fault when .desc is not null-terminated \| expand [001/113] block/ssh: fix possible segmentation fault when .desc is not null-terminated [002/113] pci-bridge/i82801b11: clear bridge registers on platform reset [003/113] virtio-balloon: unref the memory region before continuing [004/113] memfd: fix configure test [005/113] sdl: workaround bug in sdl 2.0.8 headers [006/113] spapr: Allow some cases where we can't set VSMT mode in the kernel [007/113] spapr: Adjust default VSMT value for better migration compatibility [008/113] spapr: set vsmt to MAX(8, smp_threads) [009/113] spapr: use spapr->vsmt to compute VCPU ids [010/113] spapr: move VCPU calculation to core machine code [011/113] target/ppc: Clarify compat mode max_threads value [012/113] spapr: rename spapr_vcpu_id() to spapr_get_vcpu_id() [013/113] spapr: consolidate the VCPU id numbering logic in a single place [014/113] spapr: fix missing CPU core nodes in DT when running with TCG [015/113] spapr: register dummy ICPs later [016/113] spapr: make pseries-2.11 the default machine type [017/113] nbd: Honor server's advertised minimum block size [018/113] specs/qcow2: Fix documentation of the compressed cluster descriptor [019/113] rbd: Fix use after free in qemu_rbd_set_keypairs() error path [020/113] tpm: Set the flags of the CMD_INIT command to 0 [021/113] loader: don't perform overlapping address check for memory region ROM images [022/113] target/xtensa: dump correct physical registers [023/113] linux-user: fix mmap/munmap/mprotect/mremap/shmat [024/113] linux-user: fix assertion in shmdt [025/113] linux-user: fix target_mprotect/target_munmap error return values [026/113] sparc: fix leon3 casa instruction when MMU is disabled [027/113] openpic_kvm: drop address_space_to_flatview call [028/113] memory: inline some performance-sensitive accessors [029/113] address_space_write: address_space_to_flatview needs RCU lock [030/113] address_space_read: address_space_to_flatview needs RCU lock [031/113] address_space_access_valid: address_space_to_flatview needs RCU lock [032/113] address_space_map: address_space_to_flatview needs RCU lock [033/113] address_space_rw: address_space_to_flatview needs RCU lock [034/113] memory: fix flatview_access_valid RCU read lock/unlock imbalance [035/113] migration/block: reset dirty bitmap before read in bulk phase [036/113] multiboot: bss_end_addr can be zero [037/113] multiboot: Remove unused variables from multiboot.c [038/113] multiboot: Use header names when displaying fields [039/113] multiboot: fprintf(stderr...) -> error_report() [040/113] multiboot: Reject kernels exceeding the address space [041/113] multiboot: Check validity of mh_header_addr [042/113] tests/multiboot: Test exit code for every qemu run [043/113] tests/multiboot: Add tests for the a.out kludge [044/113] tests/multiboot: Add .gitignore [045/113] arm/translate-a64: treat DISAS_UPDATE as variant of DISAS_EXIT [046/113] virtio_net: flush uncompleted TX on reset [047/113] qemu-pr-helper: Actually allow users to specify pidfile [048/113] block/file-posix: Fix fully preallocated truncate [049/113] iotests: Test preallocated truncate of 2G image [050/113] tcg: Mark muluh_i64 and mulsh_i64 as 64-bit ops [051/113] target/i386: Fix andn instruction [052/113] exec: fix memory leak in find_max_supported_pagesize() [053/113] gluster: Fix blockdev-add with server.N.type=unix [054/113] cpus.c: ensure running CPU recalculates icount deadlines on timer expiry [055/113] vfio-ccw: fix memory leaks in vfio_ccw_realize() [056/113] hw/block/pflash_cfi: fix off-by-one error [057/113] tcg: Introduce tcg_set_insn_start_param [058/113] hw/char/cmsdk-apb-uart.c: Correctly clear INTSTATUS bits on writes [059/113] device_tree: Increase FDT_MAX_SIZE to 1 MiB [060/113] ccid: Fix dwProtocols advertisement of T=0 [061/113] nbd/client: Fix error messages during NBD_INFO_BLOCK_SIZE [062/113] s390: Do not pass inofficial IPL type to the guest [063/113] s390-ccw: force diag 308 subcode to unsigned long [064/113] tcg/arm: Fix memory barrier encoding [065/113] target/arm: Implement v8M VLLDM and VLSTM [066/113] target/ppc: always set PPC_MEM_TLBIE in pre 2.8 migration hack [067/113] spapr: don't advertise radix GTSE if max-compat-cpu < power9 [068/113] qxl: fix local renderer crash [069/113] configure: recognize more rpmbuild macros [070/113] qemu-img: Resolve relative backing paths in rebase [071/113] iotests: Add test for rebasing with relative paths [072/113] qemu-io: Use purely string blockdev options [073/113] qemu-img: Use only string options in img_open_opts [074/113] iotests: Add test for -U/force-share conflicts [075/113] lm32: take BQL before writing IP/IM register [076/113] raw: Check byte range uniformly [077/113] s390x/css: disabled subchannels cannot be status pending [078/113] pc-bios/s390-ccw: struct tpi_info must be declared as aligned(4) [079/113] qdev: rename typedef qdev_resetfn() -> DeviceReset() [080/113] qdev: add helpers to be more explicit when using abstract QOM parent functions [081/113] s390x/virtio: Convert virtio-ccw from _exit to _unrealize [082/113] virtio-ccw: common reset handler [083/113] s390x/ccw: make sure all ccw devices are properly reset [084/113] console: Avoid segfault in screendump [085/113] hw/intc/arm_gicv3: Fix APxR<n> register dispatching [086/113] intel-iommu: Redefine macros to enable supporting 48 bit address width [087/113] intel-iommu: Extend address width to 48 bits [088/113] intel-iommu: send PSI always even if across PDEs [089/113] intel-iommu: remove IntelIOMMUNotifierNode [090/113] intel-iommu: add iommu lock [091/113] intel-iommu: only do page walk for MAP notifiers [092/113] intel-iommu: introduce vtd_page_walk_info [093/113] intel-iommu: pass in address space when page walk [094/113] intel-iommu: trace domain id during page walk [095/113] util: implement simple iova tree [096/113] intel-iommu: rework the page walk logic [097/113] arm_gicv3_kvm: increase clroffset accordingly [098/113] Fix libusb-1.0.22 deprecated libusb_set_debug with libusb_set_option [099/113] ahci: fix PxCI register race [100/113] arm_gicv3_kvm: kvm_dist_get/put: skip the registers banked by GICR [101/113] block: Make bdrv_is_writable() public [102/113] qcow2: Do not mark inactive images corrupt [103/113] iotests: Add case for a corrupted inactive image [104/113] throttle: Fix crash on reopen [105/113] vga: fix region calculation [106/113] i386: define the 'ssbd' CPUID feature bit (CVE-2018-3639) [107/113] i386: Define the Virt SSBD MSR and handling of it (CVE-2018-3639) [108/113] i386: define the AMD 'virt-ssbd' CPUID feature bit (CVE-2018-3639) [109/113] tap: set vhostfd passed from qemu cli to non-blocking [110/113] vhost-user: delete net client if necessary [111/113] qemu-img: Fix assert when mapping unaligned raw file [112/113] iotests: Add test 221 to catch qemu-img map regression [113/113] arm_gicv3_kvm: kvm_dist_get/put_priority: skip the registers banked by GICR_IPRIORITYR

Message ID

20180619014319.28272-103-mdroth@linux.vnet.ibm.com

State

New

Headers

From: Michael Roth <mdroth@linux.vnet.ibm.com>
To: qemu-devel@nongnu.org
Date: Mon, 18 Jun 2018 20:43:08 -0500
Message-Id: <20180619014319.28272-103-mdroth@linux.vnet.ibm.com>
In-Reply-To: <20180619014319.28272-1-mdroth@linux.vnet.ibm.com>
References: <20180619014319.28272-1-mdroth@linux.vnet.ibm.com>
Subject: [Qemu-devel] [PATCH 102/113] qcow2: Do not mark inactive images
	corrupt
Precedence: list
Cc: qemu-stable@nongnu.org, Max Reitz <mreitz@redhat.com>
Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org
Sender: "Qemu-devel"
	<qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org>

Series

[001/113] block/ssh: fix possible segmentation fault when .desc is not null-terminated | expand

Commit Message

Michael Roth June 19, 2018, 1:43 a.m. UTC

From: Max Reitz <mreitz@redhat.com>

When signaling a corruption on a read-only image, qcow2 already makes
fatal events non-fatal (i.e., they will not result in the image being
closed, and the image header's corrupt flag will not be set).  This is
necessary because we cannot set the corrupt flag on read-only images,
and it is possible because further corruption of read-only images is
impossible.

Inactive images are effectively read-only, too, so we should do the same
for them.  bdrv_is_writable() can tell us whether an image can actually
be written to, so use its result instead of !bs->read_only.

(Otherwise, the assert(!(bs->open_flags & BDRV_O_INACTIVE)) in
bdrv_co_pwritev() will fail, crashing qemu.)

Cc: qemu-stable@nongnu.org
Signed-off-by: Max Reitz <mreitz@redhat.com>
Message-id: 20180606193702.7113-3-mreitz@redhat.com
Reviewed-by: John Snow <jsnow@redhat.com>
Reviewed-by: Jeff Cody <jcody@redhat.com>
Signed-off-by: Max Reitz <mreitz@redhat.com>
(cherry picked from commit ddf3b47ef4b5ed0bf6558d4c2c8ae130b8d8a580)
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
---
 block/qcow2.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/block/qcow2.c b/block/qcow2.c
index 1914a940e5..28f2d91797 100644
--- a/block/qcow2.c
+++ b/block/qcow2.c
@@ -4235,7 +4235,7 @@  void qcow2_signal_corruption(BlockDriverState *bs, bool fatal, int64_t offset,
     char *message;
     va_list ap;
 
-    fatal = fatal && !bs->read_only;
+    fatal = fatal && bdrv_is_writable(bs);
 
     if (s->signaled_corruption &&
         (!fatal || (s->incompatible_features & QCOW2_INCOMPAT_CORRUPT)))

[102/113] qcow2: Do not mark inactive images corrupt

Commit Message

Patch