Series comparison

-[PULL 0/7] Block layer patches
+[PULL 0/3] Block layer patches
-The following changes since commit 7bc8f9734213b76e76631a483be13d6737c2adbc:
+The following changes since commit ee59483267de29056b5b2ee2421ef3844e5c9932:
-  Merge remote-tracking branch 'remotes/pmaydell/tags/pull-target-arm-20191025' into staging (2019-10-25 13:12:16 +0100)
+  Merge tag 'qemu-openbios-20230307' of https://github.com/mcayland/qemu into staging (2023-03-09 16:55:03 +0000)
 are available in the Git repository at:
-  git://repo.or.cz/qemu/kevin.git tags/for-upstream
+  https://repo.or.cz/qemu/kevin.git tags/for-upstream
-for you to fetch changes up to 5e9785505210e2477e590e61b1ab100d0ec22b01:
+for you to fetch changes up to ecf8191314798391b1df80bcb829c0ead4f8acc9:
-  qcow2: Fix corruption bug in qcow2_detect_metadata_preallocation() (2019-10-25 15:18:55 +0200)
+  qed: remove spurious BDRV_POLL_WHILE() (2023-03-10 15:14:46 +0100)
 ----------------------------------------------------------------
-Block layer patches:
+Block layer patches
-- qcow2: Fix data corruption bug that is triggered in partial cluster
+- fuse: Fix fallocate(PUNCH_HOLE) to zero out the range
-  allocation with default options
+- qed: remove spurious BDRV_POLL_WHILE()
 - qapi: add support for blkreplay driver
 - doc: Describe missing generic -blockdev options
 - iotests: Fix 118 when run as root
 - Minor code cleanups
 ----------------------------------------------------------------
-Kevin Wolf (5):
+Hanna Czenczek (2):
-      iotests: Skip read-only cases in 118 when run as root
+      block/fuse: Let PUNCH_HOLE write zeroes
-      blockdev: Use error_report() in hmp_commit()
+      iotests/308: Add test for 'write -zu'
       doc: Describe missing generic -blockdev options
       coroutine: Add qemu_co_mutex_assert_locked()
       qcow2: Fix corruption bug in qcow2_detect_metadata_preallocation()
-Pavel Dovgaluk (1):
+Stefan Hajnoczi (1):
-      qapi: add support for blkreplay driver
+      qed: remove spurious BDRV_POLL_WHILE()
-Vladimir Sementsov-Ogievskiy (1):
+ block/export/fuse.c        | 11 ++++++++++-
-      block/backup: drop dead code from backup_job_create
+ block/qed.c                |  1 -
+ tests/qemu-iotests/308     | 43 +++++++++++++++++++++++++++++++++++++++++++
- qapi/block-core.json          | 18 ++++++++++++++++--
+ tests/qemu-iotests/308.out | 35 +++++++++++++++++++++++++++++++++++
- include/qemu/coroutine.h      | 15 +++++++++++++++
+files changed, 88 insertions(+), 2 deletions(-)
  block/backup.c                |  5 +----
  block/qcow2-refcount.c        |  2 ++
  block/qcow2.c                 |  3 ++-
  blockdev.c                    |  7 +++----
  qemu-options.hx               | 22 +++++++++++++++++++++-
  tests/qemu-iotests/118        |  3 +++
  tests/qemu-iotests/iotests.py | 10 ++++++++++
 files changed, 73 insertions(+), 12 deletions(-)

-[PULL 4/7] block/backup: drop dead code from backup_job_create
+[PULL 1/3] block/fuse: Let PUNCH_HOLE write zeroes
-From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
+From: Hanna Czenczek <hreitz@redhat.com>
-After commit 00e30f05de1d195, there is no more "goto error" points
+fallocate(2) says about PUNCH_HOLE: "After a successful call, subsequent
-after job creation, so after "error:" @job is always NULL and we don't
+reads from this range will return zeros."  As it is, PUNCH_HOLE is
-need roll-back job creation.
+implemented as a call to blk_pdiscard(), which does not guarantee this.
-Reported-by: Coverity (CID 1406402)
+We must call blk_pwrite_zeroes() instead.  The difference to ZERO_RANGE
-Signed-off-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
+is that we pass the `BDRV_REQ_MAY_UNMAP | BDRV_REQ_NO_FALLBACK` flags to
-Acked-by: Stefano Garzarella <sgarzare@redhat.com>
+the call -- the storage is supposed to be unmapped, and a slow fallback
 by actually writing zeroes as data is not allowed.
 Closes: https://gitlab.com/qemu-project/qemu/-/issues/1507
 Signed-off-by: Hanna Czenczek <hreitz@redhat.com>
 Message-Id: <20230227104725.33511-2-hreitz@redhat.com>
 Reviewed-by: Kevin Wolf <kwolf@redhat.com>
 Signed-off-by: Kevin Wolf <kwolf@redhat.com>
 ---
- block/backup.c | 5 +----
+ block/export/fuse.c | 11 ++++++++++-
-file changed, 1 insertion(+), 4 deletions(-)
+file changed, 10 insertions(+), 1 deletion(-)
-diff --git a/block/backup.c b/block/backup.c
+diff --git a/block/export/fuse.c b/block/export/fuse.c
 index XXXXXXX..XXXXXXX 100644
---- a/block/backup.c
+--- a/block/export/fuse.c
-+++ b/block/backup.c
++++ b/block/export/fuse.c
-@@ -XXX,XX +XXX,XX @@ BlockJob *backup_job_create(const char *job_id, BlockDriverState *bs,
+@@ -XXX,XX +XXX,XX @@ static void fuse_fallocate(fuse_req_t req, fuse_ino_t inode, int mode,
-     if (sync_bitmap) {
+         do {
-         bdrv_reclaim_dirty_bitmap(sync_bitmap, NULL);
+             int size = MIN(length, BDRV_REQUEST_MAX_BYTES);
-     }
--    if (job) {
+-            ret = blk_pdiscard(exp->common.blk, offset, size);
--        backup_clean(&job->common.job);
++            ret = blk_pwrite_zeroes(exp->common.blk, offset, size,
--        job_early_fail(&job->common.job);
++                                    BDRV_REQ_MAY_UNMAP | BDRV_REQ_NO_FALLBACK);
--    } else if (backup_top) {
++            if (ret == -ENOTSUP) {
-+    if (backup_top) {
++                /*
-         bdrv_backup_top_drop(backup_top);
++                 * fallocate() specifies to return EOPNOTSUPP for unsupported
-     }
++                 * operations
++                 */
 +                ret = -EOPNOTSUPP;
 +            }
 +
              offset += size;
              length -= size;
          } while (ret == 0 && length > 0);
 --
-.20.1
+.39.2

-[PULL 1/7] qapi: add support for blkreplay driver
+[PULL 2/3] iotests/308: Add test for 'write -zu'
-From: Pavel Dovgalyuk <pavel.dovgaluk@gmail.com>
+From: Hanna Czenczek <hreitz@redhat.com>
-This patch adds support for blkreplay driver to the blockdev options.
+Try writing zeroes to a FUSE export while allowing the area to be
-Now blkreplay can be used with -blockdev command line option
+unmapped; block/file-posix.c generally implements writing zeroes with
-in the following format:
+BDRV_REQ_MAY_UNMAP ('write -zu') by calling fallocate(PUNCH_HOLE).  This
--blockdev driver=blkreplay,image=file-node-name,node-name=replay-node-name
+used to lead to a blk_pdiscard() in the FUSE export, which may or may
 not lead to the area being zeroed.  HEAD^ fixed this to use
 blk_pwrite_zeroes() instead (again with BDRV_REQ_MAY_UNMAP), so verify
 that running `qemu-io 'write -zu'` on a FUSE exports always results in
 zeroes being written.
-This option makes possible implementation of the better command
+Signed-off-by: Hanna Czenczek <hreitz@redhat.com>
-line support for record/replay invocations.
+Message-Id: <20230227104725.33511-3-hreitz@redhat.com>
+Reviewed-by: Kevin Wolf <kwolf@redhat.com>
 Signed-off-by: Pavel Dovgalyuk <Pavel.Dovgaluk@ispras.ru>
 Signed-off-by: Kevin Wolf <kwolf@redhat.com>
 ---
- qapi/block-core.json | 18 ++++++++++++++++--
+ tests/qemu-iotests/308     | 43 ++++++++++++++++++++++++++++++++++++++
-file changed, 16 insertions(+), 2 deletions(-)
+ tests/qemu-iotests/308.out | 35 +++++++++++++++++++++++++++++++
 files changed, 78 insertions(+)
-diff --git a/qapi/block-core.json b/qapi/block-core.json
+diff --git a/tests/qemu-iotests/308 b/tests/qemu-iotests/308
 index XXXXXXX..XXXXXXX 100755
 --- a/tests/qemu-iotests/308
 +++ b/tests/qemu-iotests/308
@@ -XXX,XX +XXX,XX @@ echo
  echo '=== Compare copy with original ==='
  $QEMU_IMG compare -f raw -F $IMGFMT "$COPIED_IMG" "$TEST_IMG"
 +_cleanup_test_img
 +
 +echo
 +echo '=== Writing zeroes while unmapping ==='
 +# Regression test for https://gitlab.com/qemu-project/qemu/-/issues/1507
 +_make_test_img 64M
 +$QEMU_IO -c 'write -s /dev/urandom 0 64M' "$TEST_IMG" | _filter_qemu_io
 +
 +_launch_qemu
 +_send_qemu_cmd $QEMU_HANDLE \
 +    "{'execute': 'qmp_capabilities'}" \
 +    'return'
 +
 +_send_qemu_cmd $QEMU_HANDLE \
 +    "{'execute': 'blockdev-add',
 +      'arguments': {
 +          'driver': '$IMGFMT',
 +          'node-name': 'node-format',
 +          'file': {
 +              'driver': 'file',
 +              'filename': '$TEST_IMG'
 +          }
 +      } }" \
 +    'return'
 +
 +fuse_export_add 'export' "'mountpoint': '$EXT_MP', 'writable': true"
 +
 +# Try writing zeroes by unmapping
 +$QEMU_IO -f raw -c 'write -zu 0 64M' "$EXT_MP" | _filter_qemu_io
 +
 +# Check the result
 +$QEMU_IO -f raw -c 'read -P 0 0 64M' "$EXT_MP" | _filter_qemu_io
 +
 +_send_qemu_cmd $QEMU_HANDLE \
 +    "{'execute': 'quit'}" \
 +    'return'
 +
 +wait=yes _cleanup_qemu
 +
 +# Check the original image
 +$QEMU_IO -c 'read -P 0 0 64M' "$TEST_IMG" | _filter_qemu_io
 +
 +_cleanup_test_img
  # success, all done
  echo "*** done"
 diff --git a/tests/qemu-iotests/308.out b/tests/qemu-iotests/308.out
 index XXXXXXX..XXXXXXX 100644
---- a/qapi/block-core.json
+--- a/tests/qemu-iotests/308.out
-+++ b/qapi/block-core.json
++++ b/tests/qemu-iotests/308.out
-@@ -XXX,XX +XXX,XX @@
+@@ -XXX,XX +XXX,XX @@ OK: Post-truncate image size is as expected
- # @nvme: Since 2.12
- # @copy-on-read: Since 3.0
+ === Compare copy with original ===
- # @blklogwrites: Since 3.0
+ Images are identical.
 +# @blkreplay: Since 4.2
  #
  # Since: 2.9
  ##
  { 'enum': 'BlockdevDriver',
 -  'data': [ 'blkdebug', 'blklogwrites', 'blkverify', 'bochs', 'cloop',
 -            'copy-on-read', 'dmg', 'file', 'ftp', 'ftps', 'gluster',
 +  'data': [ 'blkdebug', 'blklogwrites', 'blkreplay', 'blkverify', 'bochs',
 +            'cloop', 'copy-on-read', 'dmg', 'file', 'ftp', 'ftps', 'gluster',
              'host_cdrom', 'host_device', 'http', 'https', 'iscsi', 'luks',
              'nbd', 'nfs', 'null-aio', 'null-co', 'nvme', 'parallels', 'qcow',
              'qcow2', 'qed', 'quorum', 'raw', 'rbd',
@@ -XXX,XX +XXX,XX @@
    'data': { 'test': 'BlockdevRef',
              'raw': 'BlockdevRef' } }
 +##
 +# @BlockdevOptionsBlkreplay:
 +#
 +# Driver specific block device options for blkreplay.
 +#
 +# @image:     disk image which should be controlled with blkreplay
 +#
 +# Since: 4.2
 +##
 +{ 'struct': 'BlockdevOptionsBlkreplay',
 +  'data': { 'image': 'BlockdevRef' } }
 +
- ##
++=== Writing zeroes while unmapping ===
- # @QuorumReadPattern:
++Formatting 'TEST_DIR/t.IMGFMT', fmt=IMGFMT size=67108864
- #
++wrote 67108864/67108864 bytes at offset 0
-@@ -XXX,XX +XXX,XX @@
++64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
-       'blkdebug':   'BlockdevOptionsBlkdebug',
++{'execute': 'qmp_capabilities'}
-       'blklogwrites':'BlockdevOptionsBlklogwrites',
++{"return": {}}
-       'blkverify':  'BlockdevOptionsBlkverify',
++{'execute': 'blockdev-add',
-+      'blkreplay':  'BlockdevOptionsBlkreplay',
++      'arguments': {
-       'bochs':      'BlockdevOptionsGenericFormat',
++          'driver': 'IMGFMT',
-       'cloop':      'BlockdevOptionsGenericFormat',
++          'node-name': 'node-format',
-       'copy-on-read':'BlockdevOptionsGenericFormat',
++          'file': {
 +              'driver': 'file',
 +              'filename': 'TEST_DIR/t.IMGFMT'
 +          }
 +      } }
 +{"return": {}}
 +{'execute': 'block-export-add',
 +          'arguments': {
 +              'type': 'fuse',
 +              'id': 'export',
 +              'node-name': 'node-format',
 +              'mountpoint': 'TEST_DIR/t.IMGFMT.fuse', 'writable': true
 +          } }
 +{"return": {}}
 +wrote 67108864/67108864 bytes at offset 0
 +64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
 +read 67108864/67108864 bytes at offset 0
 +64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
 +{'execute': 'quit'}
 +{"return": {}}
 +{"timestamp": {"seconds":  TIMESTAMP, "microseconds":  TIMESTAMP}, "event": "SHUTDOWN", "data": {"guest": false, "reason": "host-qmp-quit"}}
 +{"timestamp": {"seconds":  TIMESTAMP, "microseconds":  TIMESTAMP}, "event": "BLOCK_EXPORT_DELETED", "data": {"id": "export"}}
 +read 67108864/67108864 bytes at offset 0
 +64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
  *** done
 --
-.20.1
+.39.2

-[PULL 2/7] iotests: Skip read-only cases in 118 when run as root
+Deleted patch
-Some tests in 118 use chmod to remove write permissions from the file
-and assume that the image can indeed not be opened read-write
-afterwards. This doesn't work when the test is run as root, because root
-can still open the file as writable even when the permission bit isn't
-set.
-Introduce a @skip_if_root decorator and use it in 118 to skip the tests
-in question when the script is run as root.
-Signed-off-by: Kevin Wolf <kwolf@redhat.com>
-Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>
----
- tests/qemu-iotests/118        |  3 +++
- tests/qemu-iotests/iotests.py | 10 ++++++++++
-files changed, 13 insertions(+)
-diff --git a/tests/qemu-iotests/118 b/tests/qemu-iotests/118
-index XXXXXXX..XXXXXXX 100755
---- a/tests/qemu-iotests/118
-+++ b/tests/qemu-iotests/118
-@@ -XXX,XX +XXX,XX @@ class TestChangeReadOnly(ChangeBaseClass):
-         self.assert_qmp(result, 'return[0]/inserted/ro', True)
-         self.assert_qmp(result, 'return[0]/inserted/image/filename', new_img)
-+    @iotests.skip_if_user_is_root
-     def test_rw_ro_retain(self):
-         os.chmod(new_img, 0o444)
-         self.vm.add_drive(old_img, 'media=disk', 'none')
-@@ -XXX,XX +XXX,XX @@ class TestChangeReadOnly(ChangeBaseClass):
-         self.assert_qmp(result, 'return[0]/inserted/ro', True)
-         self.assert_qmp(result, 'return[0]/inserted/image/filename', new_img)
-+    @iotests.skip_if_user_is_root
-     def test_make_ro_rw(self):
-         os.chmod(new_img, 0o444)
-         self.vm.add_drive(old_img, 'media=disk', 'none')
-@@ -XXX,XX +XXX,XX @@ class TestChangeReadOnly(ChangeBaseClass):
-         self.assert_qmp(result, 'return[0]/inserted/ro', True)
-         self.assert_qmp(result, 'return[0]/inserted/image/filename', new_img)
-+    @iotests.skip_if_user_is_root
-     def test_make_ro_rw_by_retain(self):
-         os.chmod(new_img, 0o444)
-         self.vm.add_drive(old_img, 'media=disk', 'none')
-diff --git a/tests/qemu-iotests/iotests.py b/tests/qemu-iotests/iotests.py
-index XXXXXXX..XXXXXXX 100644
---- a/tests/qemu-iotests/iotests.py
-+++ b/tests/qemu-iotests/iotests.py
-@@ -XXX,XX +XXX,XX @@ def skip_if_unsupported(required_formats=[], read_only=False):
-         return func_wrapper
-     return skip_test_decorator
-+def skip_if_user_is_root(func):
-+    '''Skip Test Decorator
-+       Runs the test only without root permissions'''
-+    def func_wrapper(*args, **kwargs):
-+        if os.getuid() == 0:
-+            case_notrun('{}: cannot be run as root'.format(args[0]))
-+        else:
-+            return func(*args, **kwargs)
-+    return func_wrapper
-+
- def execute_unittest(output, verbosity, debug):
-     runner = unittest.TextTestRunner(stream=output, descriptions=True,
-                                      verbosity=verbosity)
---
-.20.1

-[PULL 3/7] blockdev: Use error_report() in hmp_commit()
+[PULL 3/3] qed: remove spurious BDRV_POLL_WHILE()
-Instead of using monitor_printf() to report errors, hmp_commit() should
+From: Stefan Hajnoczi <stefanha@redhat.com>
 use error_report() like other places do.
+This looks like a copy-paste or merge error. BDRV_POLL_WHILE() is
+already called above. It's not needed in the qemu_in_coroutine() case.
+Fixes: 9fb4dfc570ce ("qed: make bdrv_qed_do_open a coroutine_fn")
+Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
+Message-Id: <20230309163134.398707-1-stefanha@redhat.com>
+Reviewed-by: Kevin Wolf <kwolf@redhat.com>
 Signed-off-by: Kevin Wolf <kwolf@redhat.com>
-Reviewed-by: Eric Blake <eblake@redhat.com>
-Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>
 ---
- blockdev.c | 7 +++----
+ block/qed.c | 1 -
-file changed, 3 insertions(+), 4 deletions(-)
+file changed, 1 deletion(-)
-diff --git a/blockdev.c b/blockdev.c
+diff --git a/block/qed.c b/block/qed.c
 index XXXXXXX..XXXXXXX 100644
---- a/blockdev.c
+--- a/block/qed.c
-+++ b/blockdev.c
++++ b/block/qed.c
-@@ -XXX,XX +XXX,XX @@ void hmp_commit(Monitor *mon, const QDict *qdict)
+@@ -XXX,XX +XXX,XX @@ static int bdrv_qed_open(BlockDriverState *bs, QDict *options, int flags,
+         qemu_coroutine_enter(qemu_coroutine_create(bdrv_qed_open_entry, &qoc));
-         blk = blk_by_name(device);
+         BDRV_POLL_WHILE(bs, qoc.ret == -EINPROGRESS);
          if (!blk) {
 -            monitor_printf(mon, "Device '%s' not found\n", device);
 +            error_report("Device '%s' not found", device);
              return;
          }
          if (!blk_is_available(blk)) {
 -            monitor_printf(mon, "Device '%s' has no medium\n", device);
 +            error_report("Device '%s' has no medium", device);
              return;
          }
@@ -XXX,XX +XXX,XX @@ void hmp_commit(Monitor *mon, const QDict *qdict)
          aio_context_release(aio_context);
      }
-     if (ret < 0) {
+-    BDRV_POLL_WHILE(bs, qoc.ret == -EINPROGRESS);
--        monitor_printf(mon, "'commit' error for '%s': %s\n", device,
+     return qoc.ret;
 -                       strerror(-ret));
 +        error_report("'commit' error for '%s': %s", device, strerror(-ret));
      }
  }
 --
-.20.1
+.39.2

-[PULL 5/7] doc: Describe missing generic -blockdev options
+Deleted patch
-We added more generic options after introducing -blockdev and forgot to
-update the documentation (man page and --help output) accordingly. Do
-that now.
-Signed-off-by: Kevin Wolf <kwolf@redhat.com>
-Reviewed-by: Peter Maydell <peter.maydell@linaro.org>
----
- qemu-options.hx | 22 +++++++++++++++++++++-
-file changed, 21 insertions(+), 1 deletion(-)
-diff --git a/qemu-options.hx b/qemu-options.hx
-index XXXXXXX..XXXXXXX 100644
---- a/qemu-options.hx
-+++ b/qemu-options.hx
-@@ -XXX,XX +XXX,XX @@ ETEXI
- DEF("blockdev", HAS_ARG, QEMU_OPTION_blockdev,
-     "-blockdev [driver=]driver[,node-name=N][,discard=ignore|unmap]\n"
-     "          [,cache.direct=on|off][,cache.no-flush=on|off]\n"
--    "          [,read-only=on|off][,detect-zeroes=on|off|unmap]\n"
-+    "          [,read-only=on|off][,auto-read-only=on|off]\n"
-+    "          [,force-share=on|off][,detect-zeroes=on|off|unmap]\n"
-     "          [,driver specific parameters...]\n"
-     "                configure a block backend\n", QEMU_ARCH_ALL)
- STEXI
-@@ -XXX,XX +XXX,XX @@ name is not intended to be predictable and changes between QEMU invocations.
- For the top level, an explicit node name must be specified.
- @item read-only
- Open the node read-only. Guest write attempts will fail.
-+
-+Note that some block drivers support only read-only access, either generally or
-+in certain configurations. In this case, the default value
-+@option{read-only=off} does not work and the option must be specified
-+explicitly.
-+@item auto-read-only
-+If @option{auto-read-only=on} is set, QEMU may fall back to read-only usage
-+even when @option{read-only=off} is requested, or even switch between modes as
-+needed, e.g. depending on whether the image file is writable or whether a
-+writing user is attached to the node.
-+@item force-share
-+Override the image locking system of QEMU by forcing the node to utilize
-+weaker shared access for permissions where it would normally request exclusive
-+access.  When there is the potential for multiple instances to have the same
-+file open (whether this invocation of QEMU is the first or the second
-+instance), both instances must permit shared access for the second instance to
-+succeed at opening the file.
-+
-+Enabling @option{force-share=on} requires @option{read-only=on}.
- @item cache.direct
- The host page cache can be avoided with @option{cache.direct=on}. This will
- attempt to do disk IO directly to the guest's memory. QEMU may still perform an
---
-.20.1

-[PULL 6/7] coroutine: Add qemu_co_mutex_assert_locked()
+Deleted patch
-Some functions require that the caller holds a certain CoMutex for them
-to operate correctly. Add a function so that they can assert the lock is
-really held.
-Cc: qemu-stable@nongnu.org
-Signed-off-by: Kevin Wolf <kwolf@redhat.com>
-Tested-by: Michael Weiser <michael.weiser@gmx.de>
-Reviewed-by: Michael Weiser <michael.weiser@gmx.de>
-Reviewed-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
-Reviewed-by: Denis V. Lunev <den@openvz.org>
-Reviewed-by: Max Reitz <mreitz@redhat.com>
----
- include/qemu/coroutine.h | 15 +++++++++++++++
-file changed, 15 insertions(+)
-diff --git a/include/qemu/coroutine.h b/include/qemu/coroutine.h
-index XXXXXXX..XXXXXXX 100644
---- a/include/qemu/coroutine.h
-+++ b/include/qemu/coroutine.h
-@@ -XXX,XX +XXX,XX @@ void coroutine_fn qemu_co_mutex_lock(CoMutex *mutex);
-  */
- void coroutine_fn qemu_co_mutex_unlock(CoMutex *mutex);
-+/**
-+ * Assert that the current coroutine holds @mutex.
-+ */
-+static inline coroutine_fn void qemu_co_mutex_assert_locked(CoMutex *mutex)
-+{
-+    /*
-+     * mutex->holder doesn't need any synchronisation if the assertion holds
-+     * true because the mutex protects it. If it doesn't hold true, we still
-+     * don't mind if another thread takes or releases mutex behind our back,
-+     * because the condition will be false no matter whether we read NULL or
-+     * the pointer for any other coroutine.
-+     */
-+    assert(atomic_read(&mutex->locked) &&
-+           mutex->holder == qemu_coroutine_self());
-+}
- /**
-  * CoQueues are a mechanism to queue coroutines in order to continue executing
---
-.20.1

-[PULL 7/7] qcow2: Fix corruption bug in qcow2_detect_metadata_preallocation()
+Deleted patch
-qcow2_detect_metadata_preallocation() calls qcow2_get_refcount() which
-requires s->lock to be taken to protect its accesses to the refcount
-table and refcount blocks. However, nothing in this code path actually
-took the lock. This could cause the same cache entry to be used by two
-requests at the same time, for different tables at different offsets,
-resulting in image corruption.
-As it would be preferable to base the detection on consistent data (even
-though it's just heuristics), let's take the lock not only around the
-qcow2_get_refcount() calls, but around the whole function.
-This patch takes the lock in qcow2_co_block_status() earlier and asserts
-in qcow2_detect_metadata_preallocation() that we hold the lock.
-Fixes: 69f47505ee66afaa513305de0c1895a224e52c45
-Cc: qemu-stable@nongnu.org
-Reported-by: Michael Weiser <michael.weiser@gmx.de>
-Signed-off-by: Kevin Wolf <kwolf@redhat.com>
-Tested-by: Michael Weiser <michael.weiser@gmx.de>
-Reviewed-by: Michael Weiser <michael.weiser@gmx.de>
-Reviewed-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
-Reviewed-by: Max Reitz <mreitz@redhat.com>
----
- block/qcow2-refcount.c | 2 ++
- block/qcow2.c          | 3 ++-
-files changed, 4 insertions(+), 1 deletion(-)
-diff --git a/block/qcow2-refcount.c b/block/qcow2-refcount.c
-index XXXXXXX..XXXXXXX 100644
---- a/block/qcow2-refcount.c
-+++ b/block/qcow2-refcount.c
-@@ -XXX,XX +XXX,XX @@ int qcow2_detect_metadata_preallocation(BlockDriverState *bs)
-     int64_t i, end_cluster, cluster_count = 0, threshold;
-     int64_t file_length, real_allocation, real_clusters;
-+    qemu_co_mutex_assert_locked(&s->lock);
-+
-     file_length = bdrv_getlength(bs->file->bs);
-     if (file_length < 0) {
-         return file_length;
-diff --git a/block/qcow2.c b/block/qcow2.c
-index XXXXXXX..XXXXXXX 100644
---- a/block/qcow2.c
-+++ b/block/qcow2.c
-@@ -XXX,XX +XXX,XX @@ static int coroutine_fn qcow2_co_block_status(BlockDriverState *bs,
-     unsigned int bytes;
-     int status = 0;
-+    qemu_co_mutex_lock(&s->lock);
-+
-     if (!s->metadata_preallocation_checked) {
-         ret = qcow2_detect_metadata_preallocation(bs);
-         s->metadata_preallocation = (ret == 1);
-@@ -XXX,XX +XXX,XX @@ static int coroutine_fn qcow2_co_block_status(BlockDriverState *bs,
-     }
-     bytes = MIN(INT_MAX, count);
--    qemu_co_mutex_lock(&s->lock);
-     ret = qcow2_get_cluster_offset(bs, offset, &bytes, &cluster_offset);
-     qemu_co_mutex_unlock(&s->lock);
-     if (ret < 0) {
---
-.20.1

The following changes since commit 7bc8f9734213b76e76631a483be13d6737c2adbc:

Merge remote-tracking branch 'remotes/pmaydell/tags/pull-target-arm-20191025' into staging (2019-10-25 13:12:16 +0100)

are available in the Git repository at:

git://repo.or.cz/qemu/kevin.git tags/for-upstream

for you to fetch changes up to 5e9785505210e2477e590e61b1ab100d0ec22b01:

qcow2: Fix corruption bug in qcow2_detect_metadata_preallocation() (2019-10-25 15:18:55 +0200)

----------------------------------------------------------------
Block layer patches:

- qcow2: Fix data corruption bug that is triggered in partial cluster
  allocation with default options
- qapi: add support for blkreplay driver
- doc: Describe missing generic -blockdev options
- iotests: Fix 118 when run as root
- Minor code cleanups

----------------------------------------------------------------
Kevin Wolf (5):
      iotests: Skip read-only cases in 118 when run as root
      blockdev: Use error_report() in hmp_commit()
      doc: Describe missing generic -blockdev options
      coroutine: Add qemu_co_mutex_assert_locked()
      qcow2: Fix corruption bug in qcow2_detect_metadata_preallocation()

Pavel Dovgaluk (1):
      qapi: add support for blkreplay driver

Vladimir Sementsov-Ogievskiy (1):
      block/backup: drop dead code from backup_job_create

From: Pavel Dovgalyuk <pavel.dovgaluk@gmail.com>

This patch adds support for blkreplay driver to the blockdev options.
Now blkreplay can be used with -blockdev command line option
in the following format:
-blockdev driver=blkreplay,image=file-node-name,node-name=replay-node-name

This option makes possible implementation of the better command
line support for record/replay invocations.

Signed-off-by: Pavel Dovgalyuk <Pavel.Dovgaluk@ispras.ru>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
---
 qapi/block-core.json | 18 ++++++++++++++++--
 1 file changed, 16 insertions(+), 2 deletions(-)

diff --git a/qapi/block-core.json b/qapi/block-core.json
index XXXXXXX..XXXXXXX 100644
--- a/qapi/block-core.json
+++ b/qapi/block-core.json
@@ -XXX,XX +XXX,XX @@
 # @nvme: Since 2.12
 # @copy-on-read: Since 3.0
 # @blklogwrites: Since 3.0
+# @blkreplay: Since 4.2
 #
 # Since: 2.9
 ##
 { 'enum': 'BlockdevDriver',
-  'data': [ 'blkdebug', 'blklogwrites', 'blkverify', 'bochs', 'cloop',
-            'copy-on-read', 'dmg', 'file', 'ftp', 'ftps', 'gluster',
+  'data': [ 'blkdebug', 'blklogwrites', 'blkreplay', 'blkverify', 'bochs',
+            'cloop', 'copy-on-read', 'dmg', 'file', 'ftp', 'ftps', 'gluster',
             'host_cdrom', 'host_device', 'http', 'https', 'iscsi', 'luks',
             'nbd', 'nfs', 'null-aio', 'null-co', 'nvme', 'parallels', 'qcow',
             'qcow2', 'qed', 'quorum', 'raw', 'rbd',
@@ -XXX,XX +XXX,XX @@
   'data': { 'test': 'BlockdevRef',
             'raw': 'BlockdevRef' } }
 
+##
+# @BlockdevOptionsBlkreplay:
+#
+# Driver specific block device options for blkreplay.
+#
+# @image:     disk image which should be controlled with blkreplay
+#
+# Since: 4.2
+##
+{ 'struct': 'BlockdevOptionsBlkreplay',
+  'data': { 'image': 'BlockdevRef' } }
+
 ##
 # @QuorumReadPattern:
 #
@@ -XXX,XX +XXX,XX @@
       'blkdebug':   'BlockdevOptionsBlkdebug',
       'blklogwrites':'BlockdevOptionsBlklogwrites',
       'blkverify':  'BlockdevOptionsBlkverify',
+      'blkreplay':  'BlockdevOptionsBlkreplay',
       'bochs':      'BlockdevOptionsGenericFormat',
       'cloop':      'BlockdevOptionsGenericFormat',
       'copy-on-read':'BlockdevOptionsGenericFormat',
-- 
2.20.1

Some tests in 118 use chmod to remove write permissions from the file
and assume that the image can indeed not be opened read-write
afterwards. This doesn't work when the test is run as root, because root
can still open the file as writable even when the permission bit isn't
set.

Introduce a @skip_if_root decorator and use it in 118 to skip the tests
in question when the script is run as root.

Signed-off-by: Kevin Wolf <kwolf@redhat.com>
Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>
---
 tests/qemu-iotests/118        |  3 +++
 tests/qemu-iotests/iotests.py | 10 ++++++++++
 2 files changed, 13 insertions(+)

diff --git a/tests/qemu-iotests/118 b/tests/qemu-iotests/118
index XXXXXXX..XXXXXXX 100755
--- a/tests/qemu-iotests/118
+++ b/tests/qemu-iotests/118
@@ -XXX,XX +XXX,XX @@ class TestChangeReadOnly(ChangeBaseClass):
         self.assert_qmp(result, 'return[0]/inserted/ro', True)
         self.assert_qmp(result, 'return[0]/inserted/image/filename', new_img)
 
+    @iotests.skip_if_user_is_root
     def test_rw_ro_retain(self):
         os.chmod(new_img, 0o444)
         self.vm.add_drive(old_img, 'media=disk', 'none')
@@ -XXX,XX +XXX,XX @@ class TestChangeReadOnly(ChangeBaseClass):
         self.assert_qmp(result, 'return[0]/inserted/ro', True)
         self.assert_qmp(result, 'return[0]/inserted/image/filename', new_img)
 
+    @iotests.skip_if_user_is_root
     def test_make_ro_rw(self):
         os.chmod(new_img, 0o444)
         self.vm.add_drive(old_img, 'media=disk', 'none')
@@ -XXX,XX +XXX,XX @@ class TestChangeReadOnly(ChangeBaseClass):
         self.assert_qmp(result, 'return[0]/inserted/ro', True)
         self.assert_qmp(result, 'return[0]/inserted/image/filename', new_img)
 
+    @iotests.skip_if_user_is_root
     def test_make_ro_rw_by_retain(self):
         os.chmod(new_img, 0o444)
         self.vm.add_drive(old_img, 'media=disk', 'none')
diff --git a/tests/qemu-iotests/iotests.py b/tests/qemu-iotests/iotests.py
index XXXXXXX..XXXXXXX 100644
--- a/tests/qemu-iotests/iotests.py
+++ b/tests/qemu-iotests/iotests.py
@@ -XXX,XX +XXX,XX @@ def skip_if_unsupported(required_formats=[], read_only=False):
         return func_wrapper
     return skip_test_decorator
 
+def skip_if_user_is_root(func):
+    '''Skip Test Decorator
+       Runs the test only without root permissions'''
+    def func_wrapper(*args, **kwargs):
+        if os.getuid() == 0:
+            case_notrun('{}: cannot be run as root'.format(args[0]))
+        else:
+            return func(*args, **kwargs)
+    return func_wrapper
+
 def execute_unittest(output, verbosity, debug):
     runner = unittest.TextTestRunner(stream=output, descriptions=True,
                                      verbosity=verbosity)
-- 
2.20.1

Instead of using monitor_printf() to report errors, hmp_commit() should
use error_report() like other places do.

Signed-off-by: Kevin Wolf <kwolf@redhat.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>
---
 blockdev.c | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/blockdev.c b/blockdev.c
index XXXXXXX..XXXXXXX 100644
--- a/blockdev.c
+++ b/blockdev.c
@@ -XXX,XX +XXX,XX @@ void hmp_commit(Monitor *mon, const QDict *qdict)
 
         blk = blk_by_name(device);
         if (!blk) {
-            monitor_printf(mon, "Device '%s' not found\n", device);
+            error_report("Device '%s' not found", device);
             return;
         }
         if (!blk_is_available(blk)) {
-            monitor_printf(mon, "Device '%s' has no medium\n", device);
+            error_report("Device '%s' has no medium", device);
             return;
         }
 
@@ -XXX,XX +XXX,XX @@ void hmp_commit(Monitor *mon, const QDict *qdict)
         aio_context_release(aio_context);
     }
     if (ret < 0) {
-        monitor_printf(mon, "'commit' error for '%s': %s\n", device,
-                       strerror(-ret));
+        error_report("'commit' error for '%s': %s", device, strerror(-ret));
     }
 }
 
-- 
2.20.1

From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>

After commit 00e30f05de1d195, there is no more "goto error" points
after job creation, so after "error:" @job is always NULL and we don't
need roll-back job creation.

Reported-by: Coverity (CID 1406402)
Signed-off-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
Acked-by: Stefano Garzarella <sgarzare@redhat.com>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
---
 block/backup.c | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/block/backup.c b/block/backup.c
index XXXXXXX..XXXXXXX 100644
--- a/block/backup.c
+++ b/block/backup.c
@@ -XXX,XX +XXX,XX @@ BlockJob *backup_job_create(const char *job_id, BlockDriverState *bs,
     if (sync_bitmap) {
         bdrv_reclaim_dirty_bitmap(sync_bitmap, NULL);
     }
-    if (job) {
-        backup_clean(&job->common.job);
-        job_early_fail(&job->common.job);
-    } else if (backup_top) {
+    if (backup_top) {
         bdrv_backup_top_drop(backup_top);
     }
 
-- 
2.20.1

We added more generic options after introducing -blockdev and forgot to
update the documentation (man page and --help output) accordingly. Do
that now.

Signed-off-by: Kevin Wolf <kwolf@redhat.com>
Reviewed-by: Peter Maydell <peter.maydell@linaro.org>
---
 qemu-options.hx | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/qemu-options.hx b/qemu-options.hx
index XXXXXXX..XXXXXXX 100644
--- a/qemu-options.hx
+++ b/qemu-options.hx
@@ -XXX,XX +XXX,XX @@ ETEXI
 DEF("blockdev", HAS_ARG, QEMU_OPTION_blockdev,
     "-blockdev [driver=]driver[,node-name=N][,discard=ignore|unmap]\n"
     "          [,cache.direct=on|off][,cache.no-flush=on|off]\n"
-    "          [,read-only=on|off][,detect-zeroes=on|off|unmap]\n"
+    "          [,read-only=on|off][,auto-read-only=on|off]\n"
+    "          [,force-share=on|off][,detect-zeroes=on|off|unmap]\n"
     "          [,driver specific parameters...]\n"
     "                configure a block backend\n", QEMU_ARCH_ALL)
 STEXI
@@ -XXX,XX +XXX,XX @@ name is not intended to be predictable and changes between QEMU invocations.
 For the top level, an explicit node name must be specified.
 @item read-only
 Open the node read-only. Guest write attempts will fail.
+
+Note that some block drivers support only read-only access, either generally or
+in certain configurations. In this case, the default value
+@option{read-only=off} does not work and the option must be specified
+explicitly.
+@item auto-read-only
+If @option{auto-read-only=on} is set, QEMU may fall back to read-only usage
+even when @option{read-only=off} is requested, or even switch between modes as
+needed, e.g. depending on whether the image file is writable or whether a
+writing user is attached to the node.
+@item force-share
+Override the image locking system of QEMU by forcing the node to utilize
+weaker shared access for permissions where it would normally request exclusive
+access.  When there is the potential for multiple instances to have the same
+file open (whether this invocation of QEMU is the first or the second
+instance), both instances must permit shared access for the second instance to
+succeed at opening the file.
+
+Enabling @option{force-share=on} requires @option{read-only=on}.
 @item cache.direct
 The host page cache can be avoided with @option{cache.direct=on}. This will
 attempt to do disk IO directly to the guest's memory. QEMU may still perform an
-- 
2.20.1

Some functions require that the caller holds a certain CoMutex for them
to operate correctly. Add a function so that they can assert the lock is
really held.

Cc: qemu-stable@nongnu.org
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
Tested-by: Michael Weiser <michael.weiser@gmx.de>
Reviewed-by: Michael Weiser <michael.weiser@gmx.de>
Reviewed-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
Reviewed-by: Denis V. Lunev <den@openvz.org>
Reviewed-by: Max Reitz <mreitz@redhat.com>
---
 include/qemu/coroutine.h | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/include/qemu/coroutine.h b/include/qemu/coroutine.h
index XXXXXXX..XXXXXXX 100644
--- a/include/qemu/coroutine.h
+++ b/include/qemu/coroutine.h
@@ -XXX,XX +XXX,XX @@ void coroutine_fn qemu_co_mutex_lock(CoMutex *mutex);
  */
 void coroutine_fn qemu_co_mutex_unlock(CoMutex *mutex);
 
+/**
+ * Assert that the current coroutine holds @mutex.
+ */
+static inline coroutine_fn void qemu_co_mutex_assert_locked(CoMutex *mutex)
+{
+    /*
+     * mutex->holder doesn't need any synchronisation if the assertion holds
+     * true because the mutex protects it. If it doesn't hold true, we still
+     * don't mind if another thread takes or releases mutex behind our back,
+     * because the condition will be false no matter whether we read NULL or
+     * the pointer for any other coroutine.
+     */
+    assert(atomic_read(&mutex->locked) &&
+           mutex->holder == qemu_coroutine_self());
+}
 
 /**
  * CoQueues are a mechanism to queue coroutines in order to continue executing
-- 
2.20.1

qcow2_detect_metadata_preallocation() calls qcow2_get_refcount() which
requires s->lock to be taken to protect its accesses to the refcount
table and refcount blocks. However, nothing in this code path actually
took the lock. This could cause the same cache entry to be used by two
requests at the same time, for different tables at different offsets,
resulting in image corruption.

As it would be preferable to base the detection on consistent data (even
though it's just heuristics), let's take the lock not only around the
qcow2_get_refcount() calls, but around the whole function.

This patch takes the lock in qcow2_co_block_status() earlier and asserts
in qcow2_detect_metadata_preallocation() that we hold the lock.

Fixes: 69f47505ee66afaa513305de0c1895a224e52c45
Cc: qemu-stable@nongnu.org
Reported-by: Michael Weiser <michael.weiser@gmx.de>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
Tested-by: Michael Weiser <michael.weiser@gmx.de>
Reviewed-by: Michael Weiser <michael.weiser@gmx.de>
Reviewed-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
Reviewed-by: Max Reitz <mreitz@redhat.com>
---
 block/qcow2-refcount.c | 2 ++
 block/qcow2.c          | 3 ++-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/block/qcow2-refcount.c b/block/qcow2-refcount.c
index XXXXXXX..XXXXXXX 100644
--- a/block/qcow2-refcount.c
+++ b/block/qcow2-refcount.c
@@ -XXX,XX +XXX,XX @@ int qcow2_detect_metadata_preallocation(BlockDriverState *bs)
     int64_t i, end_cluster, cluster_count = 0, threshold;
     int64_t file_length, real_allocation, real_clusters;
 
+    qemu_co_mutex_assert_locked(&s->lock);
+
     file_length = bdrv_getlength(bs->file->bs);
     if (file_length < 0) {
         return file_length;
diff --git a/block/qcow2.c b/block/qcow2.c
index XXXXXXX..XXXXXXX 100644
--- a/block/qcow2.c
+++ b/block/qcow2.c
@@ -XXX,XX +XXX,XX @@ static int coroutine_fn qcow2_co_block_status(BlockDriverState *bs,
     unsigned int bytes;
     int status = 0;
 
+    qemu_co_mutex_lock(&s->lock);
+
     if (!s->metadata_preallocation_checked) {
         ret = qcow2_detect_metadata_preallocation(bs);
         s->metadata_preallocation = (ret == 1);
@@ -XXX,XX +XXX,XX @@ static int coroutine_fn qcow2_co_block_status(BlockDriverState *bs,
     }
 
     bytes = MIN(INT_MAX, count);
-    qemu_co_mutex_lock(&s->lock);
     ret = qcow2_get_cluster_offset(bs, offset, &bytes, &cluster_offset);
     qemu_co_mutex_unlock(&s->lock);
     if (ret < 0) {
-- 
2.20.1

The following changes since commit ee59483267de29056b5b2ee2421ef3844e5c9932:

Merge tag 'qemu-openbios-20230307' of https://github.com/mcayland/qemu into staging (2023-03-09 16:55:03 +0000)

are available in the Git repository at:

https://repo.or.cz/qemu/kevin.git tags/for-upstream

for you to fetch changes up to ecf8191314798391b1df80bcb829c0ead4f8acc9:

qed: remove spurious BDRV_POLL_WHILE() (2023-03-10 15:14:46 +0100)

----------------------------------------------------------------
Block layer patches

- fuse: Fix fallocate(PUNCH_HOLE) to zero out the range
- qed: remove spurious BDRV_POLL_WHILE()

----------------------------------------------------------------
Hanna Czenczek (2):
      block/fuse: Let PUNCH_HOLE write zeroes
      iotests/308: Add test for 'write -zu'

Stefan Hajnoczi (1):
      qed: remove spurious BDRV_POLL_WHILE()

block/export/fuse.c        | 11 ++++++++++-
 block/qed.c                |  1 -
 tests/qemu-iotests/308     | 43 +++++++++++++++++++++++++++++++++++++++++++
 tests/qemu-iotests/308.out | 35 +++++++++++++++++++++++++++++++++++
 4 files changed, 88 insertions(+), 2 deletions(-)

From: Hanna Czenczek <hreitz@redhat.com>

fallocate(2) says about PUNCH_HOLE: "After a successful call, subsequent
reads from this range will return zeros."  As it is, PUNCH_HOLE is
implemented as a call to blk_pdiscard(), which does not guarantee this.

We must call blk_pwrite_zeroes() instead.  The difference to ZERO_RANGE
is that we pass the `BDRV_REQ_MAY_UNMAP | BDRV_REQ_NO_FALLBACK` flags to
the call -- the storage is supposed to be unmapped, and a slow fallback
by actually writing zeroes as data is not allowed.

Closes: https://gitlab.com/qemu-project/qemu/-/issues/1507
Signed-off-by: Hanna Czenczek <hreitz@redhat.com>
Message-Id: <20230227104725.33511-2-hreitz@redhat.com>
Reviewed-by: Kevin Wolf <kwolf@redhat.com>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
---
 block/export/fuse.c | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/block/export/fuse.c b/block/export/fuse.c
index XXXXXXX..XXXXXXX 100644
--- a/block/export/fuse.c
+++ b/block/export/fuse.c
@@ -XXX,XX +XXX,XX @@ static void fuse_fallocate(fuse_req_t req, fuse_ino_t inode, int mode,
         do {
             int size = MIN(length, BDRV_REQUEST_MAX_BYTES);
 
-            ret = blk_pdiscard(exp->common.blk, offset, size);
+            ret = blk_pwrite_zeroes(exp->common.blk, offset, size,
+                                    BDRV_REQ_MAY_UNMAP | BDRV_REQ_NO_FALLBACK);
+            if (ret == -ENOTSUP) {
+                /*
+                 * fallocate() specifies to return EOPNOTSUPP for unsupported
+                 * operations
+                 */
+                ret = -EOPNOTSUPP;
+            }
+
             offset += size;
             length -= size;
         } while (ret == 0 && length > 0);
-- 
2.39.2

From: Hanna Czenczek <hreitz@redhat.com>

Try writing zeroes to a FUSE export while allowing the area to be
unmapped; block/file-posix.c generally implements writing zeroes with
BDRV_REQ_MAY_UNMAP ('write -zu') by calling fallocate(PUNCH_HOLE).  This
used to lead to a blk_pdiscard() in the FUSE export, which may or may
not lead to the area being zeroed.  HEAD^ fixed this to use
blk_pwrite_zeroes() instead (again with BDRV_REQ_MAY_UNMAP), so verify
that running `qemu-io 'write -zu'` on a FUSE exports always results in
zeroes being written.

Signed-off-by: Hanna Czenczek <hreitz@redhat.com>
Message-Id: <20230227104725.33511-3-hreitz@redhat.com>
Reviewed-by: Kevin Wolf <kwolf@redhat.com>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
---
 tests/qemu-iotests/308     | 43 ++++++++++++++++++++++++++++++++++++++
 tests/qemu-iotests/308.out | 35 +++++++++++++++++++++++++++++++
 2 files changed, 78 insertions(+)

diff --git a/tests/qemu-iotests/308 b/tests/qemu-iotests/308
index XXXXXXX..XXXXXXX 100755
--- a/tests/qemu-iotests/308
+++ b/tests/qemu-iotests/308
@@ -XXX,XX +XXX,XX @@ echo
 echo '=== Compare copy with original ==='
 
 $QEMU_IMG compare -f raw -F $IMGFMT "$COPIED_IMG" "$TEST_IMG"
+_cleanup_test_img
+
+echo
+echo '=== Writing zeroes while unmapping ==='
+# Regression test for https://gitlab.com/qemu-project/qemu/-/issues/1507
+_make_test_img 64M
+$QEMU_IO -c 'write -s /dev/urandom 0 64M' "$TEST_IMG" | _filter_qemu_io
+
+_launch_qemu
+_send_qemu_cmd $QEMU_HANDLE \
+    "{'execute': 'qmp_capabilities'}" \
+    'return'
+
+_send_qemu_cmd $QEMU_HANDLE \
+    "{'execute': 'blockdev-add',
+      'arguments': {
+          'driver': '$IMGFMT',
+          'node-name': 'node-format',
+          'file': {
+              'driver': 'file',
+              'filename': '$TEST_IMG'
+          }
+      } }" \
+    'return'
+
+fuse_export_add 'export' "'mountpoint': '$EXT_MP', 'writable': true"
+
+# Try writing zeroes by unmapping
+$QEMU_IO -f raw -c 'write -zu 0 64M' "$EXT_MP" | _filter_qemu_io
+
+# Check the result
+$QEMU_IO -f raw -c 'read -P 0 0 64M' "$EXT_MP" | _filter_qemu_io
+
+_send_qemu_cmd $QEMU_HANDLE \
+    "{'execute': 'quit'}" \
+    'return'
+
+wait=yes _cleanup_qemu
+
+# Check the original image
+$QEMU_IO -c 'read -P 0 0 64M' "$TEST_IMG" | _filter_qemu_io
+
+_cleanup_test_img
 
 # success, all done
 echo "*** done"
diff --git a/tests/qemu-iotests/308.out b/tests/qemu-iotests/308.out
index XXXXXXX..XXXXXXX 100644
--- a/tests/qemu-iotests/308.out
+++ b/tests/qemu-iotests/308.out
@@ -XXX,XX +XXX,XX @@ OK: Post-truncate image size is as expected
 
 === Compare copy with original ===
 Images are identical.
+
+=== Writing zeroes while unmapping ===
+Formatting 'TEST_DIR/t.IMGFMT', fmt=IMGFMT size=67108864
+wrote 67108864/67108864 bytes at offset 0
+64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
+{'execute': 'qmp_capabilities'}
+{"return": {}}
+{'execute': 'blockdev-add',
+      'arguments': {
+          'driver': 'IMGFMT',
+          'node-name': 'node-format',
+          'file': {
+              'driver': 'file',
+              'filename': 'TEST_DIR/t.IMGFMT'
+          }
+      } }
+{"return": {}}
+{'execute': 'block-export-add',
+          'arguments': {
+              'type': 'fuse',
+              'id': 'export',
+              'node-name': 'node-format',
+              'mountpoint': 'TEST_DIR/t.IMGFMT.fuse', 'writable': true
+          } }
+{"return": {}}
+wrote 67108864/67108864 bytes at offset 0
+64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
+read 67108864/67108864 bytes at offset 0
+64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
+{'execute': 'quit'}
+{"return": {}}
+{"timestamp": {"seconds":  TIMESTAMP, "microseconds":  TIMESTAMP}, "event": "SHUTDOWN", "data": {"guest": false, "reason": "host-qmp-quit"}}
+{"timestamp": {"seconds":  TIMESTAMP, "microseconds":  TIMESTAMP}, "event": "BLOCK_EXPORT_DELETED", "data": {"id": "export"}}
+read 67108864/67108864 bytes at offset 0
+64 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
 *** done
-- 
2.39.2