Series comparison

-[PULL 0/1] Block patches
+[PULL v2 0/2] Block patches
-The following changes since commit 871af84dd599fab68c8ed414d9ecbdb2bcfc5801:
+The following changes since commit d88d5a3806d78dcfca648c62dae9d88d3e803bd2:
-  Merge tag 'for-upstream' of https://gitlab.com/bonzini/qemu into staging (2025-01-29 09:51:03 -0500)
+  Merge remote-tracking branch 'remotes/philmd-gitlab/tags/renesas-hw-20200622' into staging (2020-06-23 13:55:52 +0100)
 are available in the Git repository at:
-  https://gitlab.com/stefanha/qemu.git tags/block-pull-request
+  https://github.com/XanClic/qemu.git tags/pull-block-2020-06-24
-for you to fetch changes up to 58607752d173438994d28dea7e2c2587726663e6:
+for you to fetch changes up to 24b861c0386a17ea31eb824310c21118fb7be883:
-  parallels: fix ext_off assertion failure due to overflow (2025-01-30 15:22:28 -0500)
+  iotests: don't test qcow2.py inside 291 (2020-06-24 10:00:04 +0200)
 ----------------------------------------------------------------
-Pull request
+Block patches:
 - Two iotest fixes
 ----------------------------------------------------------------
+This is v2, where I dropped Maxim’s LUKS keyslot amendment series and my
+iotest patches, because both caused iotest failures on some test
+machines.
+----------------------------------------------------------------
+Philippe Mathieu-Daudé (1):
+  iotests: Fix 051 output after qdev_init_nofail() removal
-Denis Rastyogin (1):
+Vladimir Sementsov-Ogievskiy (1):
-  parallels: fix ext_off assertion failure due to overflow
+  iotests: don't test qcow2.py inside 291
- block/parallels.c | 4 ++++
+ tests/qemu-iotests/051.pc.out |  4 ++--
-file changed, 4 insertions(+)
+ tests/qemu-iotests/291        |  4 ----
  tests/qemu-iotests/291.out    | 33 ---------------------------------
 files changed, 2 insertions(+), 39 deletions(-)
 --
-.48.1
+.26.2

-New patch
+[PULL v2 1/2] iotests: Fix 051 output after qdev_init_nofail() removal
+From: Philippe Mathieu-Daudé <philmd@redhat.com>
+Commit 96927c744 replaced qdev_init_nofail() call by
+isa_realize_and_unref() which has a different error
+message. Update the test output accordingly.
+Gitlab CI error after merging b77b5b3dc7:
+https://gitlab.com/qemu-project/qemu/-/jobs/597414772#L4375
+Reported-by: Thomas Huth <thuth@redhat.com>
+Signed-off-by: Philippe Mathieu-Daudé <philmd@redhat.com>
+Message-Id: <20200616154949.6586-1-philmd@redhat.com>
+Reviewed-by: Thomas Huth <thuth@redhat.com>
+Signed-off-by: Max Reitz <mreitz@redhat.com>
+---
+ tests/qemu-iotests/051.pc.out | 4 ++--
+file changed, 2 insertions(+), 2 deletions(-)
+diff --git a/tests/qemu-iotests/051.pc.out b/tests/qemu-iotests/051.pc.out
+index XXXXXXX..XXXXXXX 100644
+--- a/tests/qemu-iotests/051.pc.out
++++ b/tests/qemu-iotests/051.pc.out
+@@ -XXX,XX +XXX,XX @@ QEMU X.Y.Z monitor - type 'help' for more information
+ Testing: -drive if=ide
+ QEMU X.Y.Z monitor - type 'help' for more information
+-(qemu) QEMU_PROG: Initialization of device ide-hd failed: Device needs media, but drive is empty
++(qemu) QEMU_PROG: Device needs media, but drive is empty
+ Testing: -drive if=virtio
+ QEMU X.Y.Z monitor - type 'help' for more information
+@@ -XXX,XX +XXX,XX @@ QEMU X.Y.Z monitor - type 'help' for more information
+ Testing: -drive file=TEST_DIR/t.qcow2,if=ide,readonly=on
+ QEMU X.Y.Z monitor - type 'help' for more information
+-(qemu) QEMU_PROG: Initialization of device ide-hd failed: Block node is read-only
++(qemu) QEMU_PROG: Block node is read-only
+ Testing: -drive file=TEST_DIR/t.qcow2,if=virtio,readonly=on
+ QEMU X.Y.Z monitor - type 'help' for more information
+--
+.26.2

-[PULL 1/1] parallels: fix ext_off assertion failure due to overflow
+[PULL v2 2/2] iotests: don't test qcow2.py inside 291
-From: Denis Rastyogin <gerben@altlinux.org>
+From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
-This error was discovered by fuzzing qemu-img.
+c6bee534ec3b added testing of qcow2.py into 291, and it breaks 291
 with external data file. Actually, 291 is bad place for qcow2.py
 testing, better add a separate test.
-When ph.ext_off has a sufficiently large value, the operation
+For now, drop qcow2.py testing from 291 to fix the regression.
 le64_to_cpu(ph.ext_off) << BDRV_SECTOR_BITS in
 parallels_read_format_extension() can cause an overflow in int64_t.
 This overflow triggers the assert(ext_off > 0)
 check in block/parallels-ext.c: parallels_read_format_extension(),
 leading to a crash.
-This commit adds a check to prevent overflow when shifting ph.ext_off
+Fixes: 820c6bee534ec3b
-by BDRV_SECTOR_BITS, ensuring that the value remains within a valid range.
+Reported-by: Max Reitz <mreitz@redhat.com>
 Signed-off-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
 Message-Id: <20200618154052.8629-1-vsementsov@virtuozzo.com>
 Reviewed-by: Eric Blake <eblake@redhat.com>
 Signed-off-by: Max Reitz <mreitz@redhat.com>
 ---
  tests/qemu-iotests/291     |  4 ----
  tests/qemu-iotests/291.out | 33 ---------------------------------
 files changed, 37 deletions(-)
-Reported-by: Leonid Reviakin <L.reviakin@fobos-nt.ru>
+diff --git a/tests/qemu-iotests/291 b/tests/qemu-iotests/291
-Signed-off-by: Denis Rastyogin <gerben@altlinux.org>
+index XXXXXXX..XXXXXXX 100755
-Reviewed-by: Denis V. Lunev <den@openvz.org>
+--- a/tests/qemu-iotests/291
-Message-ID: <20241212104212.513947-2-gerben@altlinux.org>
++++ b/tests/qemu-iotests/291
-Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
+@@ -XXX,XX +XXX,XX @@ $QEMU_IO -c 'w 1M 1M' -f $IMGFMT "$TEST_IMG" | _filter_qemu_io
----
+ $QEMU_IMG bitmap --disable -f $IMGFMT "$TEST_IMG" b1
- block/parallels.c | 4 ++++
+ $QEMU_IMG bitmap --enable -f $IMGFMT "$TEST_IMG" b2
-file changed, 4 insertions(+)
+ $QEMU_IO -c 'w 2M 1M' -f $IMGFMT "$TEST_IMG" | _filter_qemu_io
 -echo "Check resulting qcow2 header extensions:"
 -$PYTHON qcow2.py "$TEST_IMG" dump-header-exts
  echo
  echo "=== Bitmap preservation not possible to non-qcow2 ==="
@@ -XXX,XX +XXX,XX @@ $QEMU_IMG bitmap --merge tmp -f $IMGFMT "$TEST_IMG" b0
  $QEMU_IMG bitmap --remove --image-opts \
      driver=$IMGFMT,file.driver=file,file.filename="$TEST_IMG" tmp
  _img_info --format-specific
 -echo "Check resulting qcow2 header extensions:"
 -$PYTHON qcow2.py "$TEST_IMG" dump-header-exts
  echo
  echo "=== Check bitmap contents ==="
 diff --git a/tests/qemu-iotests/291.out b/tests/qemu-iotests/291.out
 index XXXXXXX..XXXXXXX 100644
 --- a/tests/qemu-iotests/291.out
 +++ b/tests/qemu-iotests/291.out
@@ -XXX,XX +XXX,XX @@ wrote 1048576/1048576 bytes at offset 1048576
 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
  wrote 1048576/1048576 bytes at offset 2097152
 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
 -Check resulting qcow2 header extensions:
 -Header extension:
 -magic                     0xe2792aca (Backing format)
 -length                    5
 -data                      'qcow2'
 -
 -Header extension:
 -magic                     0x6803f857 (Feature table)
 -length                    336
 -data                      <binary>
 -
 -Header extension:
 -magic                     0x23852875 (Bitmaps)
 -length                    24
 -nb_bitmaps                2
 -reserved32                0
 -bitmap_directory_size     0x40
 -bitmap_directory_offset   0x510000
 -
  === Bitmap preservation not possible to non-qcow2 ===
@@ -XXX,XX +XXX,XX @@ Format specific information:
              granularity: 65536
      refcount bits: 16
      corrupt: false
 -Check resulting qcow2 header extensions:
 -Header extension:
 -magic                     0x6803f857 (Feature table)
 -length                    336
 -data                      <binary>
 -
 -Header extension:
 -magic                     0x23852875 (Bitmaps)
 -length                    24
 -nb_bitmaps                3
 -reserved32                0
 -bitmap_directory_size     0x60
 -bitmap_directory_offset   0x520000
 -
  === Check bitmap contents ===
 --
 .26.2
-diff --git a/block/parallels.c b/block/parallels.c
 index XXXXXXX..XXXXXXX 100644
 --- a/block/parallels.c
 +++ b/block/parallels.c
@@ -XXX,XX +XXX,XX @@ static int parallels_open(BlockDriverState *bs, QDict *options, int flags,
          error_setg(errp, "Catalog too large");
          return -EFBIG;
      }
 +    if (le64_to_cpu(ph.ext_off) >= (INT64_MAX >> BDRV_SECTOR_BITS)) {
 +        error_setg(errp, "Invalid image: Too big offset");
 +        return -EFBIG;
 +    }
      size = bat_entry_off(s->bat_size);
      s->header_size = ROUND_UP(size, bdrv_opt_mem_align(bs->file->bs));
 --
 .48.1

From: Denis Rastyogin <gerben@altlinux.org>

This error was discovered by fuzzing qemu-img.

When ph.ext_off has a sufficiently large value, the operation
le64_to_cpu(ph.ext_off) << BDRV_SECTOR_BITS in
parallels_read_format_extension() can cause an overflow in int64_t.
This overflow triggers the assert(ext_off > 0)
check in block/parallels-ext.c: parallels_read_format_extension(),
leading to a crash.

This commit adds a check to prevent overflow when shifting ph.ext_off
by BDRV_SECTOR_BITS, ensuring that the value remains within a valid range.

Reported-by: Leonid Reviakin <L.reviakin@fobos-nt.ru>
Signed-off-by: Denis Rastyogin <gerben@altlinux.org>
Reviewed-by: Denis V. Lunev <den@openvz.org>
Message-ID: <20241212104212.513947-2-gerben@altlinux.org>
Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
---
 block/parallels.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/block/parallels.c b/block/parallels.c
index XXXXXXX..XXXXXXX 100644
--- a/block/parallels.c
+++ b/block/parallels.c
@@ -XXX,XX +XXX,XX @@ static int parallels_open(BlockDriverState *bs, QDict *options, int flags,
         error_setg(errp, "Catalog too large");
         return -EFBIG;
     }
+    if (le64_to_cpu(ph.ext_off) >= (INT64_MAX >> BDRV_SECTOR_BITS)) {
+        error_setg(errp, "Invalid image: Too big offset");
+        return -EFBIG;
+    }
 
     size = bat_entry_off(s->bat_size);
     s->header_size = ROUND_UP(size, bdrv_opt_mem_align(bs->file->bs));
-- 
2.48.1

The following changes since commit d88d5a3806d78dcfca648c62dae9d88d3e803bd2:

Merge remote-tracking branch 'remotes/philmd-gitlab/tags/renesas-hw-20200622' into staging (2020-06-23 13:55:52 +0100)

are available in the Git repository at:

https://github.com/XanClic/qemu.git tags/pull-block-2020-06-24

for you to fetch changes up to 24b861c0386a17ea31eb824310c21118fb7be883:

iotests: don't test qcow2.py inside 291 (2020-06-24 10:00:04 +0200)

----------------------------------------------------------------
Block patches:
- Two iotest fixes

----------------------------------------------------------------
This is v2, where I dropped Maxim’s LUKS keyslot amendment series and my
iotest patches, because both caused iotest failures on some test
machines.
----------------------------------------------------------------
Philippe Mathieu-Daudé (1):
  iotests: Fix 051 output after qdev_init_nofail() removal

Vladimir Sementsov-Ogievskiy (1):
  iotests: don't test qcow2.py inside 291

tests/qemu-iotests/051.pc.out |  4 ++--
 tests/qemu-iotests/291        |  4 ----
 tests/qemu-iotests/291.out    | 33 ---------------------------------
 3 files changed, 2 insertions(+), 39 deletions(-)

-- 
2.26.2

From: Philippe Mathieu-Daudé <philmd@redhat.com>

Commit 96927c744 replaced qdev_init_nofail() call by
isa_realize_and_unref() which has a different error
message. Update the test output accordingly.

Gitlab CI error after merging b77b5b3dc7:
https://gitlab.com/qemu-project/qemu/-/jobs/597414772#L4375

Reported-by: Thomas Huth <thuth@redhat.com>
Signed-off-by: Philippe Mathieu-Daudé <philmd@redhat.com>
Message-Id: <20200616154949.6586-1-philmd@redhat.com>
Reviewed-by: Thomas Huth <thuth@redhat.com>
Signed-off-by: Max Reitz <mreitz@redhat.com>
---
 tests/qemu-iotests/051.pc.out | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/tests/qemu-iotests/051.pc.out b/tests/qemu-iotests/051.pc.out
index XXXXXXX..XXXXXXX 100644
--- a/tests/qemu-iotests/051.pc.out
+++ b/tests/qemu-iotests/051.pc.out
@@ -XXX,XX +XXX,XX @@ QEMU X.Y.Z monitor - type 'help' for more information
 
 Testing: -drive if=ide
 QEMU X.Y.Z monitor - type 'help' for more information
-(qemu) QEMU_PROG: Initialization of device ide-hd failed: Device needs media, but drive is empty
+(qemu) QEMU_PROG: Device needs media, but drive is empty
 
 Testing: -drive if=virtio
 QEMU X.Y.Z monitor - type 'help' for more information
@@ -XXX,XX +XXX,XX @@ QEMU X.Y.Z monitor - type 'help' for more information
 
 Testing: -drive file=TEST_DIR/t.qcow2,if=ide,readonly=on
 QEMU X.Y.Z monitor - type 'help' for more information
-(qemu) QEMU_PROG: Initialization of device ide-hd failed: Block node is read-only
+(qemu) QEMU_PROG: Block node is read-only
 
 Testing: -drive file=TEST_DIR/t.qcow2,if=virtio,readonly=on
 QEMU X.Y.Z monitor - type 'help' for more information
-- 
2.26.2

From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>

820c6bee534ec3b added testing of qcow2.py into 291, and it breaks 291
with external data file. Actually, 291 is bad place for qcow2.py
testing, better add a separate test.

For now, drop qcow2.py testing from 291 to fix the regression.

Fixes: 820c6bee534ec3b
Reported-by: Max Reitz <mreitz@redhat.com>
Signed-off-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
Message-Id: <20200618154052.8629-1-vsementsov@virtuozzo.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
Signed-off-by: Max Reitz <mreitz@redhat.com>
---
 tests/qemu-iotests/291     |  4 ----
 tests/qemu-iotests/291.out | 33 ---------------------------------
 2 files changed, 37 deletions(-)

diff --git a/tests/qemu-iotests/291 b/tests/qemu-iotests/291
index XXXXXXX..XXXXXXX 100755
--- a/tests/qemu-iotests/291
+++ b/tests/qemu-iotests/291
@@ -XXX,XX +XXX,XX @@ $QEMU_IO -c 'w 1M 1M' -f $IMGFMT "$TEST_IMG" | _filter_qemu_io
 $QEMU_IMG bitmap --disable -f $IMGFMT "$TEST_IMG" b1
 $QEMU_IMG bitmap --enable -f $IMGFMT "$TEST_IMG" b2
 $QEMU_IO -c 'w 2M 1M' -f $IMGFMT "$TEST_IMG" | _filter_qemu_io
-echo "Check resulting qcow2 header extensions:"
-$PYTHON qcow2.py "$TEST_IMG" dump-header-exts
 
 echo
 echo "=== Bitmap preservation not possible to non-qcow2 ==="
@@ -XXX,XX +XXX,XX @@ $QEMU_IMG bitmap --merge tmp -f $IMGFMT "$TEST_IMG" b0
 $QEMU_IMG bitmap --remove --image-opts \
     driver=$IMGFMT,file.driver=file,file.filename="$TEST_IMG" tmp
 _img_info --format-specific
-echo "Check resulting qcow2 header extensions:"
-$PYTHON qcow2.py "$TEST_IMG" dump-header-exts
 
 echo
 echo "=== Check bitmap contents ==="
diff --git a/tests/qemu-iotests/291.out b/tests/qemu-iotests/291.out
index XXXXXXX..XXXXXXX 100644
--- a/tests/qemu-iotests/291.out
+++ b/tests/qemu-iotests/291.out
@@ -XXX,XX +XXX,XX @@ wrote 1048576/1048576 bytes at offset 1048576
 1 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
 wrote 1048576/1048576 bytes at offset 2097152
 1 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
-Check resulting qcow2 header extensions:
-Header extension:
-magic                     0xe2792aca (Backing format)
-length                    5
-data                      'qcow2'
-
-Header extension:
-magic                     0x6803f857 (Feature table)
-length                    336
-data                      <binary>
-
-Header extension:
-magic                     0x23852875 (Bitmaps)
-length                    24
-nb_bitmaps                2
-reserved32                0
-bitmap_directory_size     0x40
-bitmap_directory_offset   0x510000
-
 
 === Bitmap preservation not possible to non-qcow2 ===
 
@@ -XXX,XX +XXX,XX @@ Format specific information:
             granularity: 65536
     refcount bits: 16
     corrupt: false
-Check resulting qcow2 header extensions:
-Header extension:
-magic                     0x6803f857 (Feature table)
-length                    336
-data                      <binary>
-
-Header extension:
-magic                     0x23852875 (Bitmaps)
-length                    24
-nb_bitmaps                3
-reserved32                0
-bitmap_directory_size     0x60
-bitmap_directory_offset   0x520000
-
 
 === Check bitmap contents ===
 
-- 
2.26.2