xref: /openbmc/qemu/block.c (revision 469b046e)
1 /*
2  * QEMU System Emulator block driver
3  *
4  * Copyright (c) 2003 Fabrice Bellard
5  *
6  * Permission is hereby granted, free of charge, to any person obtaining a copy
7  * of this software and associated documentation files (the "Software"), to deal
8  * in the Software without restriction, including without limitation the rights
9  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10  * copies of the Software, and to permit persons to whom the Software is
11  * furnished to do so, subject to the following conditions:
12  *
13  * The above copyright notice and this permission notice shall be included in
14  * all copies or substantial portions of the Software.
15  *
16  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19  * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
22  * THE SOFTWARE.
23  */
24 #include "config-host.h"
25 #include "qemu-common.h"
26 #include "trace.h"
27 #include "block/block_int.h"
28 #include "block/blockjob.h"
29 #include "qemu/module.h"
30 #include "qapi/qmp/qjson.h"
31 #include "sysemu/sysemu.h"
32 #include "qemu/notify.h"
33 #include "block/coroutine.h"
34 #include "block/qapi.h"
35 #include "qmp-commands.h"
36 #include "qemu/timer.h"
37 #include "qapi-event.h"
38 
39 #ifdef CONFIG_BSD
40 #include <sys/types.h>
41 #include <sys/stat.h>
42 #include <sys/ioctl.h>
43 #include <sys/queue.h>
44 #ifndef __DragonFly__
45 #include <sys/disk.h>
46 #endif
47 #endif
48 
49 #ifdef _WIN32
50 #include <windows.h>
51 #endif
52 
53 struct BdrvDirtyBitmap {
54     HBitmap *bitmap;
55     QLIST_ENTRY(BdrvDirtyBitmap) list;
56 };
57 
58 #define NOT_DONE 0x7fffffff /* used while emulated sync operation in progress */
59 
60 static void bdrv_dev_change_media_cb(BlockDriverState *bs, bool load);
61 static BlockDriverAIOCB *bdrv_aio_readv_em(BlockDriverState *bs,
62         int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
63         BlockDriverCompletionFunc *cb, void *opaque);
64 static BlockDriverAIOCB *bdrv_aio_writev_em(BlockDriverState *bs,
65         int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
66         BlockDriverCompletionFunc *cb, void *opaque);
67 static int coroutine_fn bdrv_co_readv_em(BlockDriverState *bs,
68                                          int64_t sector_num, int nb_sectors,
69                                          QEMUIOVector *iov);
70 static int coroutine_fn bdrv_co_writev_em(BlockDriverState *bs,
71                                          int64_t sector_num, int nb_sectors,
72                                          QEMUIOVector *iov);
73 static int coroutine_fn bdrv_co_do_preadv(BlockDriverState *bs,
74     int64_t offset, unsigned int bytes, QEMUIOVector *qiov,
75     BdrvRequestFlags flags);
76 static int coroutine_fn bdrv_co_do_pwritev(BlockDriverState *bs,
77     int64_t offset, unsigned int bytes, QEMUIOVector *qiov,
78     BdrvRequestFlags flags);
79 static BlockDriverAIOCB *bdrv_co_aio_rw_vector(BlockDriverState *bs,
80                                                int64_t sector_num,
81                                                QEMUIOVector *qiov,
82                                                int nb_sectors,
83                                                BdrvRequestFlags flags,
84                                                BlockDriverCompletionFunc *cb,
85                                                void *opaque,
86                                                bool is_write);
87 static void coroutine_fn bdrv_co_do_rw(void *opaque);
88 static int coroutine_fn bdrv_co_do_write_zeroes(BlockDriverState *bs,
89     int64_t sector_num, int nb_sectors, BdrvRequestFlags flags);
90 
91 static QTAILQ_HEAD(, BlockDriverState) bdrv_states =
92     QTAILQ_HEAD_INITIALIZER(bdrv_states);
93 
94 static QTAILQ_HEAD(, BlockDriverState) graph_bdrv_states =
95     QTAILQ_HEAD_INITIALIZER(graph_bdrv_states);
96 
97 static QLIST_HEAD(, BlockDriver) bdrv_drivers =
98     QLIST_HEAD_INITIALIZER(bdrv_drivers);
99 
100 /* If non-zero, use only whitelisted block drivers */
101 static int use_bdrv_whitelist;
102 
103 #ifdef _WIN32
104 static int is_windows_drive_prefix(const char *filename)
105 {
106     return (((filename[0] >= 'a' && filename[0] <= 'z') ||
107              (filename[0] >= 'A' && filename[0] <= 'Z')) &&
108             filename[1] == ':');
109 }
110 
111 int is_windows_drive(const char *filename)
112 {
113     if (is_windows_drive_prefix(filename) &&
114         filename[2] == '\0')
115         return 1;
116     if (strstart(filename, "\\\\.\\", NULL) ||
117         strstart(filename, "//./", NULL))
118         return 1;
119     return 0;
120 }
121 #endif
122 
123 /* throttling disk I/O limits */
124 void bdrv_set_io_limits(BlockDriverState *bs,
125                         ThrottleConfig *cfg)
126 {
127     int i;
128 
129     throttle_config(&bs->throttle_state, cfg);
130 
131     for (i = 0; i < 2; i++) {
132         qemu_co_enter_next(&bs->throttled_reqs[i]);
133     }
134 }
135 
136 /* this function drain all the throttled IOs */
137 static bool bdrv_start_throttled_reqs(BlockDriverState *bs)
138 {
139     bool drained = false;
140     bool enabled = bs->io_limits_enabled;
141     int i;
142 
143     bs->io_limits_enabled = false;
144 
145     for (i = 0; i < 2; i++) {
146         while (qemu_co_enter_next(&bs->throttled_reqs[i])) {
147             drained = true;
148         }
149     }
150 
151     bs->io_limits_enabled = enabled;
152 
153     return drained;
154 }
155 
156 void bdrv_io_limits_disable(BlockDriverState *bs)
157 {
158     bs->io_limits_enabled = false;
159 
160     bdrv_start_throttled_reqs(bs);
161 
162     throttle_destroy(&bs->throttle_state);
163 }
164 
165 static void bdrv_throttle_read_timer_cb(void *opaque)
166 {
167     BlockDriverState *bs = opaque;
168     qemu_co_enter_next(&bs->throttled_reqs[0]);
169 }
170 
171 static void bdrv_throttle_write_timer_cb(void *opaque)
172 {
173     BlockDriverState *bs = opaque;
174     qemu_co_enter_next(&bs->throttled_reqs[1]);
175 }
176 
177 /* should be called before bdrv_set_io_limits if a limit is set */
178 void bdrv_io_limits_enable(BlockDriverState *bs)
179 {
180     assert(!bs->io_limits_enabled);
181     throttle_init(&bs->throttle_state,
182                   bdrv_get_aio_context(bs),
183                   QEMU_CLOCK_VIRTUAL,
184                   bdrv_throttle_read_timer_cb,
185                   bdrv_throttle_write_timer_cb,
186                   bs);
187     bs->io_limits_enabled = true;
188 }
189 
190 /* This function makes an IO wait if needed
191  *
192  * @nb_sectors: the number of sectors of the IO
193  * @is_write:   is the IO a write
194  */
195 static void bdrv_io_limits_intercept(BlockDriverState *bs,
196                                      unsigned int bytes,
197                                      bool is_write)
198 {
199     /* does this io must wait */
200     bool must_wait = throttle_schedule_timer(&bs->throttle_state, is_write);
201 
202     /* if must wait or any request of this type throttled queue the IO */
203     if (must_wait ||
204         !qemu_co_queue_empty(&bs->throttled_reqs[is_write])) {
205         qemu_co_queue_wait(&bs->throttled_reqs[is_write]);
206     }
207 
208     /* the IO will be executed, do the accounting */
209     throttle_account(&bs->throttle_state, is_write, bytes);
210 
211 
212     /* if the next request must wait -> do nothing */
213     if (throttle_schedule_timer(&bs->throttle_state, is_write)) {
214         return;
215     }
216 
217     /* else queue next request for execution */
218     qemu_co_queue_next(&bs->throttled_reqs[is_write]);
219 }
220 
221 size_t bdrv_opt_mem_align(BlockDriverState *bs)
222 {
223     if (!bs || !bs->drv) {
224         /* 4k should be on the safe side */
225         return 4096;
226     }
227 
228     return bs->bl.opt_mem_alignment;
229 }
230 
231 /* check if the path starts with "<protocol>:" */
232 static int path_has_protocol(const char *path)
233 {
234     const char *p;
235 
236 #ifdef _WIN32
237     if (is_windows_drive(path) ||
238         is_windows_drive_prefix(path)) {
239         return 0;
240     }
241     p = path + strcspn(path, ":/\\");
242 #else
243     p = path + strcspn(path, ":/");
244 #endif
245 
246     return *p == ':';
247 }
248 
249 int path_is_absolute(const char *path)
250 {
251 #ifdef _WIN32
252     /* specific case for names like: "\\.\d:" */
253     if (is_windows_drive(path) || is_windows_drive_prefix(path)) {
254         return 1;
255     }
256     return (*path == '/' || *path == '\\');
257 #else
258     return (*path == '/');
259 #endif
260 }
261 
262 /* if filename is absolute, just copy it to dest. Otherwise, build a
263    path to it by considering it is relative to base_path. URL are
264    supported. */
265 void path_combine(char *dest, int dest_size,
266                   const char *base_path,
267                   const char *filename)
268 {
269     const char *p, *p1;
270     int len;
271 
272     if (dest_size <= 0)
273         return;
274     if (path_is_absolute(filename)) {
275         pstrcpy(dest, dest_size, filename);
276     } else {
277         p = strchr(base_path, ':');
278         if (p)
279             p++;
280         else
281             p = base_path;
282         p1 = strrchr(base_path, '/');
283 #ifdef _WIN32
284         {
285             const char *p2;
286             p2 = strrchr(base_path, '\\');
287             if (!p1 || p2 > p1)
288                 p1 = p2;
289         }
290 #endif
291         if (p1)
292             p1++;
293         else
294             p1 = base_path;
295         if (p1 > p)
296             p = p1;
297         len = p - base_path;
298         if (len > dest_size - 1)
299             len = dest_size - 1;
300         memcpy(dest, base_path, len);
301         dest[len] = '\0';
302         pstrcat(dest, dest_size, filename);
303     }
304 }
305 
306 void bdrv_get_full_backing_filename(BlockDriverState *bs, char *dest, size_t sz)
307 {
308     if (bs->backing_file[0] == '\0' || path_has_protocol(bs->backing_file)) {
309         pstrcpy(dest, sz, bs->backing_file);
310     } else {
311         path_combine(dest, sz, bs->filename, bs->backing_file);
312     }
313 }
314 
315 void bdrv_register(BlockDriver *bdrv)
316 {
317     /* Block drivers without coroutine functions need emulation */
318     if (!bdrv->bdrv_co_readv) {
319         bdrv->bdrv_co_readv = bdrv_co_readv_em;
320         bdrv->bdrv_co_writev = bdrv_co_writev_em;
321 
322         /* bdrv_co_readv_em()/brdv_co_writev_em() work in terms of aio, so if
323          * the block driver lacks aio we need to emulate that too.
324          */
325         if (!bdrv->bdrv_aio_readv) {
326             /* add AIO emulation layer */
327             bdrv->bdrv_aio_readv = bdrv_aio_readv_em;
328             bdrv->bdrv_aio_writev = bdrv_aio_writev_em;
329         }
330     }
331 
332     QLIST_INSERT_HEAD(&bdrv_drivers, bdrv, list);
333 }
334 
335 /* create a new block device (by default it is empty) */
336 BlockDriverState *bdrv_new(const char *device_name, Error **errp)
337 {
338     BlockDriverState *bs;
339     int i;
340 
341     if (bdrv_find(device_name)) {
342         error_setg(errp, "Device with id '%s' already exists",
343                    device_name);
344         return NULL;
345     }
346     if (bdrv_find_node(device_name)) {
347         error_setg(errp, "Device with node-name '%s' already exists",
348                    device_name);
349         return NULL;
350     }
351 
352     bs = g_malloc0(sizeof(BlockDriverState));
353     QLIST_INIT(&bs->dirty_bitmaps);
354     pstrcpy(bs->device_name, sizeof(bs->device_name), device_name);
355     if (device_name[0] != '\0') {
356         QTAILQ_INSERT_TAIL(&bdrv_states, bs, device_list);
357     }
358     for (i = 0; i < BLOCK_OP_TYPE_MAX; i++) {
359         QLIST_INIT(&bs->op_blockers[i]);
360     }
361     bdrv_iostatus_disable(bs);
362     notifier_list_init(&bs->close_notifiers);
363     notifier_with_return_list_init(&bs->before_write_notifiers);
364     qemu_co_queue_init(&bs->throttled_reqs[0]);
365     qemu_co_queue_init(&bs->throttled_reqs[1]);
366     bs->refcnt = 1;
367     bs->aio_context = qemu_get_aio_context();
368 
369     return bs;
370 }
371 
372 void bdrv_add_close_notifier(BlockDriverState *bs, Notifier *notify)
373 {
374     notifier_list_add(&bs->close_notifiers, notify);
375 }
376 
377 BlockDriver *bdrv_find_format(const char *format_name)
378 {
379     BlockDriver *drv1;
380     QLIST_FOREACH(drv1, &bdrv_drivers, list) {
381         if (!strcmp(drv1->format_name, format_name)) {
382             return drv1;
383         }
384     }
385     return NULL;
386 }
387 
388 static int bdrv_is_whitelisted(BlockDriver *drv, bool read_only)
389 {
390     static const char *whitelist_rw[] = {
391         CONFIG_BDRV_RW_WHITELIST
392     };
393     static const char *whitelist_ro[] = {
394         CONFIG_BDRV_RO_WHITELIST
395     };
396     const char **p;
397 
398     if (!whitelist_rw[0] && !whitelist_ro[0]) {
399         return 1;               /* no whitelist, anything goes */
400     }
401 
402     for (p = whitelist_rw; *p; p++) {
403         if (!strcmp(drv->format_name, *p)) {
404             return 1;
405         }
406     }
407     if (read_only) {
408         for (p = whitelist_ro; *p; p++) {
409             if (!strcmp(drv->format_name, *p)) {
410                 return 1;
411             }
412         }
413     }
414     return 0;
415 }
416 
417 BlockDriver *bdrv_find_whitelisted_format(const char *format_name,
418                                           bool read_only)
419 {
420     BlockDriver *drv = bdrv_find_format(format_name);
421     return drv && bdrv_is_whitelisted(drv, read_only) ? drv : NULL;
422 }
423 
424 typedef struct CreateCo {
425     BlockDriver *drv;
426     char *filename;
427     QemuOpts *opts;
428     int ret;
429     Error *err;
430 } CreateCo;
431 
432 static void coroutine_fn bdrv_create_co_entry(void *opaque)
433 {
434     Error *local_err = NULL;
435     int ret;
436 
437     CreateCo *cco = opaque;
438     assert(cco->drv);
439 
440     ret = cco->drv->bdrv_create(cco->filename, cco->opts, &local_err);
441     if (local_err) {
442         error_propagate(&cco->err, local_err);
443     }
444     cco->ret = ret;
445 }
446 
447 int bdrv_create(BlockDriver *drv, const char* filename,
448                 QemuOpts *opts, Error **errp)
449 {
450     int ret;
451 
452     Coroutine *co;
453     CreateCo cco = {
454         .drv = drv,
455         .filename = g_strdup(filename),
456         .opts = opts,
457         .ret = NOT_DONE,
458         .err = NULL,
459     };
460 
461     if (!drv->bdrv_create) {
462         error_setg(errp, "Driver '%s' does not support image creation", drv->format_name);
463         ret = -ENOTSUP;
464         goto out;
465     }
466 
467     if (qemu_in_coroutine()) {
468         /* Fast-path if already in coroutine context */
469         bdrv_create_co_entry(&cco);
470     } else {
471         co = qemu_coroutine_create(bdrv_create_co_entry);
472         qemu_coroutine_enter(co, &cco);
473         while (cco.ret == NOT_DONE) {
474             aio_poll(qemu_get_aio_context(), true);
475         }
476     }
477 
478     ret = cco.ret;
479     if (ret < 0) {
480         if (cco.err) {
481             error_propagate(errp, cco.err);
482         } else {
483             error_setg_errno(errp, -ret, "Could not create image");
484         }
485     }
486 
487 out:
488     g_free(cco.filename);
489     return ret;
490 }
491 
492 int bdrv_create_file(const char *filename, QemuOpts *opts, Error **errp)
493 {
494     BlockDriver *drv;
495     Error *local_err = NULL;
496     int ret;
497 
498     drv = bdrv_find_protocol(filename, true);
499     if (drv == NULL) {
500         error_setg(errp, "Could not find protocol for file '%s'", filename);
501         return -ENOENT;
502     }
503 
504     ret = bdrv_create(drv, filename, opts, &local_err);
505     if (local_err) {
506         error_propagate(errp, local_err);
507     }
508     return ret;
509 }
510 
511 int bdrv_refresh_limits(BlockDriverState *bs)
512 {
513     BlockDriver *drv = bs->drv;
514 
515     memset(&bs->bl, 0, sizeof(bs->bl));
516 
517     if (!drv) {
518         return 0;
519     }
520 
521     /* Take some limits from the children as a default */
522     if (bs->file) {
523         bdrv_refresh_limits(bs->file);
524         bs->bl.opt_transfer_length = bs->file->bl.opt_transfer_length;
525         bs->bl.opt_mem_alignment = bs->file->bl.opt_mem_alignment;
526     } else {
527         bs->bl.opt_mem_alignment = 512;
528     }
529 
530     if (bs->backing_hd) {
531         bdrv_refresh_limits(bs->backing_hd);
532         bs->bl.opt_transfer_length =
533             MAX(bs->bl.opt_transfer_length,
534                 bs->backing_hd->bl.opt_transfer_length);
535         bs->bl.opt_mem_alignment =
536             MAX(bs->bl.opt_mem_alignment,
537                 bs->backing_hd->bl.opt_mem_alignment);
538     }
539 
540     /* Then let the driver override it */
541     if (drv->bdrv_refresh_limits) {
542         return drv->bdrv_refresh_limits(bs);
543     }
544 
545     return 0;
546 }
547 
548 /*
549  * Create a uniquely-named empty temporary file.
550  * Return 0 upon success, otherwise a negative errno value.
551  */
552 int get_tmp_filename(char *filename, int size)
553 {
554 #ifdef _WIN32
555     char temp_dir[MAX_PATH];
556     /* GetTempFileName requires that its output buffer (4th param)
557        have length MAX_PATH or greater.  */
558     assert(size >= MAX_PATH);
559     return (GetTempPath(MAX_PATH, temp_dir)
560             && GetTempFileName(temp_dir, "qem", 0, filename)
561             ? 0 : -GetLastError());
562 #else
563     int fd;
564     const char *tmpdir;
565     tmpdir = getenv("TMPDIR");
566     if (!tmpdir) {
567         tmpdir = "/var/tmp";
568     }
569     if (snprintf(filename, size, "%s/vl.XXXXXX", tmpdir) >= size) {
570         return -EOVERFLOW;
571     }
572     fd = mkstemp(filename);
573     if (fd < 0) {
574         return -errno;
575     }
576     if (close(fd) != 0) {
577         unlink(filename);
578         return -errno;
579     }
580     return 0;
581 #endif
582 }
583 
584 /*
585  * Detect host devices. By convention, /dev/cdrom[N] is always
586  * recognized as a host CDROM.
587  */
588 static BlockDriver *find_hdev_driver(const char *filename)
589 {
590     int score_max = 0, score;
591     BlockDriver *drv = NULL, *d;
592 
593     QLIST_FOREACH(d, &bdrv_drivers, list) {
594         if (d->bdrv_probe_device) {
595             score = d->bdrv_probe_device(filename);
596             if (score > score_max) {
597                 score_max = score;
598                 drv = d;
599             }
600         }
601     }
602 
603     return drv;
604 }
605 
606 BlockDriver *bdrv_find_protocol(const char *filename,
607                                 bool allow_protocol_prefix)
608 {
609     BlockDriver *drv1;
610     char protocol[128];
611     int len;
612     const char *p;
613 
614     /* TODO Drivers without bdrv_file_open must be specified explicitly */
615 
616     /*
617      * XXX(hch): we really should not let host device detection
618      * override an explicit protocol specification, but moving this
619      * later breaks access to device names with colons in them.
620      * Thanks to the brain-dead persistent naming schemes on udev-
621      * based Linux systems those actually are quite common.
622      */
623     drv1 = find_hdev_driver(filename);
624     if (drv1) {
625         return drv1;
626     }
627 
628     if (!path_has_protocol(filename) || !allow_protocol_prefix) {
629         return bdrv_find_format("file");
630     }
631 
632     p = strchr(filename, ':');
633     assert(p != NULL);
634     len = p - filename;
635     if (len > sizeof(protocol) - 1)
636         len = sizeof(protocol) - 1;
637     memcpy(protocol, filename, len);
638     protocol[len] = '\0';
639     QLIST_FOREACH(drv1, &bdrv_drivers, list) {
640         if (drv1->protocol_name &&
641             !strcmp(drv1->protocol_name, protocol)) {
642             return drv1;
643         }
644     }
645     return NULL;
646 }
647 
648 static int find_image_format(BlockDriverState *bs, const char *filename,
649                              BlockDriver **pdrv, Error **errp)
650 {
651     int score, score_max;
652     BlockDriver *drv1, *drv;
653     uint8_t buf[2048];
654     int ret = 0;
655 
656     /* Return the raw BlockDriver * to scsi-generic devices or empty drives */
657     if (bs->sg || !bdrv_is_inserted(bs) || bdrv_getlength(bs) == 0) {
658         drv = bdrv_find_format("raw");
659         if (!drv) {
660             error_setg(errp, "Could not find raw image format");
661             ret = -ENOENT;
662         }
663         *pdrv = drv;
664         return ret;
665     }
666 
667     ret = bdrv_pread(bs, 0, buf, sizeof(buf));
668     if (ret < 0) {
669         error_setg_errno(errp, -ret, "Could not read image for determining its "
670                          "format");
671         *pdrv = NULL;
672         return ret;
673     }
674 
675     score_max = 0;
676     drv = NULL;
677     QLIST_FOREACH(drv1, &bdrv_drivers, list) {
678         if (drv1->bdrv_probe) {
679             score = drv1->bdrv_probe(buf, ret, filename);
680             if (score > score_max) {
681                 score_max = score;
682                 drv = drv1;
683             }
684         }
685     }
686     if (!drv) {
687         error_setg(errp, "Could not determine image format: No compatible "
688                    "driver found");
689         ret = -ENOENT;
690     }
691     *pdrv = drv;
692     return ret;
693 }
694 
695 /**
696  * Set the current 'total_sectors' value
697  */
698 static int refresh_total_sectors(BlockDriverState *bs, int64_t hint)
699 {
700     BlockDriver *drv = bs->drv;
701 
702     /* Do not attempt drv->bdrv_getlength() on scsi-generic devices */
703     if (bs->sg)
704         return 0;
705 
706     /* query actual device if possible, otherwise just trust the hint */
707     if (drv->bdrv_getlength) {
708         int64_t length = drv->bdrv_getlength(bs);
709         if (length < 0) {
710             return length;
711         }
712         hint = DIV_ROUND_UP(length, BDRV_SECTOR_SIZE);
713     }
714 
715     bs->total_sectors = hint;
716     return 0;
717 }
718 
719 /**
720  * Set open flags for a given discard mode
721  *
722  * Return 0 on success, -1 if the discard mode was invalid.
723  */
724 int bdrv_parse_discard_flags(const char *mode, int *flags)
725 {
726     *flags &= ~BDRV_O_UNMAP;
727 
728     if (!strcmp(mode, "off") || !strcmp(mode, "ignore")) {
729         /* do nothing */
730     } else if (!strcmp(mode, "on") || !strcmp(mode, "unmap")) {
731         *flags |= BDRV_O_UNMAP;
732     } else {
733         return -1;
734     }
735 
736     return 0;
737 }
738 
739 /**
740  * Set open flags for a given cache mode
741  *
742  * Return 0 on success, -1 if the cache mode was invalid.
743  */
744 int bdrv_parse_cache_flags(const char *mode, int *flags)
745 {
746     *flags &= ~BDRV_O_CACHE_MASK;
747 
748     if (!strcmp(mode, "off") || !strcmp(mode, "none")) {
749         *flags |= BDRV_O_NOCACHE | BDRV_O_CACHE_WB;
750     } else if (!strcmp(mode, "directsync")) {
751         *flags |= BDRV_O_NOCACHE;
752     } else if (!strcmp(mode, "writeback")) {
753         *flags |= BDRV_O_CACHE_WB;
754     } else if (!strcmp(mode, "unsafe")) {
755         *flags |= BDRV_O_CACHE_WB;
756         *flags |= BDRV_O_NO_FLUSH;
757     } else if (!strcmp(mode, "writethrough")) {
758         /* this is the default */
759     } else {
760         return -1;
761     }
762 
763     return 0;
764 }
765 
766 /**
767  * The copy-on-read flag is actually a reference count so multiple users may
768  * use the feature without worrying about clobbering its previous state.
769  * Copy-on-read stays enabled until all users have called to disable it.
770  */
771 void bdrv_enable_copy_on_read(BlockDriverState *bs)
772 {
773     bs->copy_on_read++;
774 }
775 
776 void bdrv_disable_copy_on_read(BlockDriverState *bs)
777 {
778     assert(bs->copy_on_read > 0);
779     bs->copy_on_read--;
780 }
781 
782 /*
783  * Returns the flags that a temporary snapshot should get, based on the
784  * originally requested flags (the originally requested image will have flags
785  * like a backing file)
786  */
787 static int bdrv_temp_snapshot_flags(int flags)
788 {
789     return (flags & ~BDRV_O_SNAPSHOT) | BDRV_O_TEMPORARY;
790 }
791 
792 /*
793  * Returns the flags that bs->file should get, based on the given flags for
794  * the parent BDS
795  */
796 static int bdrv_inherited_flags(int flags)
797 {
798     /* Enable protocol handling, disable format probing for bs->file */
799     flags |= BDRV_O_PROTOCOL;
800 
801     /* Our block drivers take care to send flushes and respect unmap policy,
802      * so we can enable both unconditionally on lower layers. */
803     flags |= BDRV_O_CACHE_WB | BDRV_O_UNMAP;
804 
805     /* Clear flags that only apply to the top layer */
806     flags &= ~(BDRV_O_SNAPSHOT | BDRV_O_NO_BACKING | BDRV_O_COPY_ON_READ);
807 
808     return flags;
809 }
810 
811 /*
812  * Returns the flags that bs->backing_hd should get, based on the given flags
813  * for the parent BDS
814  */
815 static int bdrv_backing_flags(int flags)
816 {
817     /* backing files always opened read-only */
818     flags &= ~(BDRV_O_RDWR | BDRV_O_COPY_ON_READ);
819 
820     /* snapshot=on is handled on the top layer */
821     flags &= ~(BDRV_O_SNAPSHOT | BDRV_O_TEMPORARY);
822 
823     return flags;
824 }
825 
826 static int bdrv_open_flags(BlockDriverState *bs, int flags)
827 {
828     int open_flags = flags | BDRV_O_CACHE_WB;
829 
830     /*
831      * Clear flags that are internal to the block layer before opening the
832      * image.
833      */
834     open_flags &= ~(BDRV_O_SNAPSHOT | BDRV_O_NO_BACKING | BDRV_O_PROTOCOL);
835 
836     /*
837      * Snapshots should be writable.
838      */
839     if (flags & BDRV_O_TEMPORARY) {
840         open_flags |= BDRV_O_RDWR;
841     }
842 
843     return open_flags;
844 }
845 
846 static void bdrv_assign_node_name(BlockDriverState *bs,
847                                   const char *node_name,
848                                   Error **errp)
849 {
850     if (!node_name) {
851         return;
852     }
853 
854     /* empty string node name is invalid */
855     if (node_name[0] == '\0') {
856         error_setg(errp, "Empty node name");
857         return;
858     }
859 
860     /* takes care of avoiding namespaces collisions */
861     if (bdrv_find(node_name)) {
862         error_setg(errp, "node-name=%s is conflicting with a device id",
863                    node_name);
864         return;
865     }
866 
867     /* takes care of avoiding duplicates node names */
868     if (bdrv_find_node(node_name)) {
869         error_setg(errp, "Duplicate node name");
870         return;
871     }
872 
873     /* copy node name into the bs and insert it into the graph list */
874     pstrcpy(bs->node_name, sizeof(bs->node_name), node_name);
875     QTAILQ_INSERT_TAIL(&graph_bdrv_states, bs, node_list);
876 }
877 
878 /*
879  * Common part for opening disk images and files
880  *
881  * Removes all processed options from *options.
882  */
883 static int bdrv_open_common(BlockDriverState *bs, BlockDriverState *file,
884     QDict *options, int flags, BlockDriver *drv, Error **errp)
885 {
886     int ret, open_flags;
887     const char *filename;
888     const char *node_name = NULL;
889     Error *local_err = NULL;
890 
891     assert(drv != NULL);
892     assert(bs->file == NULL);
893     assert(options != NULL && bs->options != options);
894 
895     if (file != NULL) {
896         filename = file->filename;
897     } else {
898         filename = qdict_get_try_str(options, "filename");
899     }
900 
901     if (drv->bdrv_needs_filename && !filename) {
902         error_setg(errp, "The '%s' block driver requires a file name",
903                    drv->format_name);
904         return -EINVAL;
905     }
906 
907     trace_bdrv_open_common(bs, filename ?: "", flags, drv->format_name);
908 
909     node_name = qdict_get_try_str(options, "node-name");
910     bdrv_assign_node_name(bs, node_name, &local_err);
911     if (local_err) {
912         error_propagate(errp, local_err);
913         return -EINVAL;
914     }
915     qdict_del(options, "node-name");
916 
917     /* bdrv_open() with directly using a protocol as drv. This layer is already
918      * opened, so assign it to bs (while file becomes a closed BlockDriverState)
919      * and return immediately. */
920     if (file != NULL && drv->bdrv_file_open) {
921         bdrv_swap(file, bs);
922         return 0;
923     }
924 
925     bs->open_flags = flags;
926     bs->guest_block_size = 512;
927     bs->request_alignment = 512;
928     bs->zero_beyond_eof = true;
929     open_flags = bdrv_open_flags(bs, flags);
930     bs->read_only = !(open_flags & BDRV_O_RDWR);
931     bs->growable = !!(flags & BDRV_O_PROTOCOL);
932 
933     if (use_bdrv_whitelist && !bdrv_is_whitelisted(drv, bs->read_only)) {
934         error_setg(errp,
935                    !bs->read_only && bdrv_is_whitelisted(drv, true)
936                         ? "Driver '%s' can only be used for read-only devices"
937                         : "Driver '%s' is not whitelisted",
938                    drv->format_name);
939         return -ENOTSUP;
940     }
941 
942     assert(bs->copy_on_read == 0); /* bdrv_new() and bdrv_close() make it so */
943     if (flags & BDRV_O_COPY_ON_READ) {
944         if (!bs->read_only) {
945             bdrv_enable_copy_on_read(bs);
946         } else {
947             error_setg(errp, "Can't use copy-on-read on read-only device");
948             return -EINVAL;
949         }
950     }
951 
952     if (filename != NULL) {
953         pstrcpy(bs->filename, sizeof(bs->filename), filename);
954     } else {
955         bs->filename[0] = '\0';
956     }
957 
958     bs->drv = drv;
959     bs->opaque = g_malloc0(drv->instance_size);
960 
961     bs->enable_write_cache = !!(flags & BDRV_O_CACHE_WB);
962 
963     /* Open the image, either directly or using a protocol */
964     if (drv->bdrv_file_open) {
965         assert(file == NULL);
966         assert(!drv->bdrv_needs_filename || filename != NULL);
967         ret = drv->bdrv_file_open(bs, options, open_flags, &local_err);
968     } else {
969         if (file == NULL) {
970             error_setg(errp, "Can't use '%s' as a block driver for the "
971                        "protocol level", drv->format_name);
972             ret = -EINVAL;
973             goto free_and_fail;
974         }
975         bs->file = file;
976         ret = drv->bdrv_open(bs, options, open_flags, &local_err);
977     }
978 
979     if (ret < 0) {
980         if (local_err) {
981             error_propagate(errp, local_err);
982         } else if (bs->filename[0]) {
983             error_setg_errno(errp, -ret, "Could not open '%s'", bs->filename);
984         } else {
985             error_setg_errno(errp, -ret, "Could not open image");
986         }
987         goto free_and_fail;
988     }
989 
990     ret = refresh_total_sectors(bs, bs->total_sectors);
991     if (ret < 0) {
992         error_setg_errno(errp, -ret, "Could not refresh total sector count");
993         goto free_and_fail;
994     }
995 
996     bdrv_refresh_limits(bs);
997     assert(bdrv_opt_mem_align(bs) != 0);
998     assert((bs->request_alignment != 0) || bs->sg);
999     return 0;
1000 
1001 free_and_fail:
1002     bs->file = NULL;
1003     g_free(bs->opaque);
1004     bs->opaque = NULL;
1005     bs->drv = NULL;
1006     return ret;
1007 }
1008 
1009 static QDict *parse_json_filename(const char *filename, Error **errp)
1010 {
1011     QObject *options_obj;
1012     QDict *options;
1013     int ret;
1014 
1015     ret = strstart(filename, "json:", &filename);
1016     assert(ret);
1017 
1018     options_obj = qobject_from_json(filename);
1019     if (!options_obj) {
1020         error_setg(errp, "Could not parse the JSON options");
1021         return NULL;
1022     }
1023 
1024     if (qobject_type(options_obj) != QTYPE_QDICT) {
1025         qobject_decref(options_obj);
1026         error_setg(errp, "Invalid JSON object given");
1027         return NULL;
1028     }
1029 
1030     options = qobject_to_qdict(options_obj);
1031     qdict_flatten(options);
1032 
1033     return options;
1034 }
1035 
1036 /*
1037  * Fills in default options for opening images and converts the legacy
1038  * filename/flags pair to option QDict entries.
1039  */
1040 static int bdrv_fill_options(QDict **options, const char **pfilename, int flags,
1041                              BlockDriver *drv, Error **errp)
1042 {
1043     const char *filename = *pfilename;
1044     const char *drvname;
1045     bool protocol = flags & BDRV_O_PROTOCOL;
1046     bool parse_filename = false;
1047     Error *local_err = NULL;
1048 
1049     /* Parse json: pseudo-protocol */
1050     if (filename && g_str_has_prefix(filename, "json:")) {
1051         QDict *json_options = parse_json_filename(filename, &local_err);
1052         if (local_err) {
1053             error_propagate(errp, local_err);
1054             return -EINVAL;
1055         }
1056 
1057         /* Options given in the filename have lower priority than options
1058          * specified directly */
1059         qdict_join(*options, json_options, false);
1060         QDECREF(json_options);
1061         *pfilename = filename = NULL;
1062     }
1063 
1064     /* Fetch the file name from the options QDict if necessary */
1065     if (protocol && filename) {
1066         if (!qdict_haskey(*options, "filename")) {
1067             qdict_put(*options, "filename", qstring_from_str(filename));
1068             parse_filename = true;
1069         } else {
1070             error_setg(errp, "Can't specify 'file' and 'filename' options at "
1071                              "the same time");
1072             return -EINVAL;
1073         }
1074     }
1075 
1076     /* Find the right block driver */
1077     filename = qdict_get_try_str(*options, "filename");
1078     drvname = qdict_get_try_str(*options, "driver");
1079 
1080     if (drv) {
1081         if (drvname) {
1082             error_setg(errp, "Driver specified twice");
1083             return -EINVAL;
1084         }
1085         drvname = drv->format_name;
1086         qdict_put(*options, "driver", qstring_from_str(drvname));
1087     } else {
1088         if (!drvname && protocol) {
1089             if (filename) {
1090                 drv = bdrv_find_protocol(filename, parse_filename);
1091                 if (!drv) {
1092                     error_setg(errp, "Unknown protocol");
1093                     return -EINVAL;
1094                 }
1095 
1096                 drvname = drv->format_name;
1097                 qdict_put(*options, "driver", qstring_from_str(drvname));
1098             } else {
1099                 error_setg(errp, "Must specify either driver or file");
1100                 return -EINVAL;
1101             }
1102         } else if (drvname) {
1103             drv = bdrv_find_format(drvname);
1104             if (!drv) {
1105                 error_setg(errp, "Unknown driver '%s'", drvname);
1106                 return -ENOENT;
1107             }
1108         }
1109     }
1110 
1111     assert(drv || !protocol);
1112 
1113     /* Driver-specific filename parsing */
1114     if (drv && drv->bdrv_parse_filename && parse_filename) {
1115         drv->bdrv_parse_filename(filename, *options, &local_err);
1116         if (local_err) {
1117             error_propagate(errp, local_err);
1118             return -EINVAL;
1119         }
1120 
1121         if (!drv->bdrv_needs_filename) {
1122             qdict_del(*options, "filename");
1123         }
1124     }
1125 
1126     return 0;
1127 }
1128 
1129 void bdrv_set_backing_hd(BlockDriverState *bs, BlockDriverState *backing_hd)
1130 {
1131 
1132     if (bs->backing_hd) {
1133         assert(bs->backing_blocker);
1134         bdrv_op_unblock_all(bs->backing_hd, bs->backing_blocker);
1135     } else if (backing_hd) {
1136         error_setg(&bs->backing_blocker,
1137                    "device is used as backing hd of '%s'",
1138                    bs->device_name);
1139     }
1140 
1141     bs->backing_hd = backing_hd;
1142     if (!backing_hd) {
1143         error_free(bs->backing_blocker);
1144         bs->backing_blocker = NULL;
1145         goto out;
1146     }
1147     bs->open_flags &= ~BDRV_O_NO_BACKING;
1148     pstrcpy(bs->backing_file, sizeof(bs->backing_file), backing_hd->filename);
1149     pstrcpy(bs->backing_format, sizeof(bs->backing_format),
1150             backing_hd->drv ? backing_hd->drv->format_name : "");
1151 
1152     bdrv_op_block_all(bs->backing_hd, bs->backing_blocker);
1153     /* Otherwise we won't be able to commit due to check in bdrv_commit */
1154     bdrv_op_unblock(bs->backing_hd, BLOCK_OP_TYPE_COMMIT,
1155                     bs->backing_blocker);
1156 out:
1157     bdrv_refresh_limits(bs);
1158 }
1159 
1160 /*
1161  * Opens the backing file for a BlockDriverState if not yet open
1162  *
1163  * options is a QDict of options to pass to the block drivers, or NULL for an
1164  * empty set of options. The reference to the QDict is transferred to this
1165  * function (even on failure), so if the caller intends to reuse the dictionary,
1166  * it needs to use QINCREF() before calling bdrv_file_open.
1167  */
1168 int bdrv_open_backing_file(BlockDriverState *bs, QDict *options, Error **errp)
1169 {
1170     char *backing_filename = g_malloc0(PATH_MAX);
1171     int ret = 0;
1172     BlockDriver *back_drv = NULL;
1173     BlockDriverState *backing_hd;
1174     Error *local_err = NULL;
1175 
1176     if (bs->backing_hd != NULL) {
1177         QDECREF(options);
1178         goto free_exit;
1179     }
1180 
1181     /* NULL means an empty set of options */
1182     if (options == NULL) {
1183         options = qdict_new();
1184     }
1185 
1186     bs->open_flags &= ~BDRV_O_NO_BACKING;
1187     if (qdict_haskey(options, "file.filename")) {
1188         backing_filename[0] = '\0';
1189     } else if (bs->backing_file[0] == '\0' && qdict_size(options) == 0) {
1190         QDECREF(options);
1191         goto free_exit;
1192     } else {
1193         bdrv_get_full_backing_filename(bs, backing_filename, PATH_MAX);
1194     }
1195 
1196     if (!bs->drv || !bs->drv->supports_backing) {
1197         ret = -EINVAL;
1198         error_setg(errp, "Driver doesn't support backing files");
1199         QDECREF(options);
1200         goto free_exit;
1201     }
1202 
1203     backing_hd = bdrv_new("", errp);
1204 
1205     if (bs->backing_format[0] != '\0') {
1206         back_drv = bdrv_find_format(bs->backing_format);
1207     }
1208 
1209     assert(bs->backing_hd == NULL);
1210     ret = bdrv_open(&backing_hd,
1211                     *backing_filename ? backing_filename : NULL, NULL, options,
1212                     bdrv_backing_flags(bs->open_flags), back_drv, &local_err);
1213     if (ret < 0) {
1214         bdrv_unref(backing_hd);
1215         backing_hd = NULL;
1216         bs->open_flags |= BDRV_O_NO_BACKING;
1217         error_setg(errp, "Could not open backing file: %s",
1218                    error_get_pretty(local_err));
1219         error_free(local_err);
1220         goto free_exit;
1221     }
1222     bdrv_set_backing_hd(bs, backing_hd);
1223 
1224 free_exit:
1225     g_free(backing_filename);
1226     return ret;
1227 }
1228 
1229 /*
1230  * Opens a disk image whose options are given as BlockdevRef in another block
1231  * device's options.
1232  *
1233  * If allow_none is true, no image will be opened if filename is false and no
1234  * BlockdevRef is given. *pbs will remain unchanged and 0 will be returned.
1235  *
1236  * bdrev_key specifies the key for the image's BlockdevRef in the options QDict.
1237  * That QDict has to be flattened; therefore, if the BlockdevRef is a QDict
1238  * itself, all options starting with "${bdref_key}." are considered part of the
1239  * BlockdevRef.
1240  *
1241  * The BlockdevRef will be removed from the options QDict.
1242  *
1243  * To conform with the behavior of bdrv_open(), *pbs has to be NULL.
1244  */
1245 int bdrv_open_image(BlockDriverState **pbs, const char *filename,
1246                     QDict *options, const char *bdref_key, int flags,
1247                     bool allow_none, Error **errp)
1248 {
1249     QDict *image_options;
1250     int ret;
1251     char *bdref_key_dot;
1252     const char *reference;
1253 
1254     assert(pbs);
1255     assert(*pbs == NULL);
1256 
1257     bdref_key_dot = g_strdup_printf("%s.", bdref_key);
1258     qdict_extract_subqdict(options, &image_options, bdref_key_dot);
1259     g_free(bdref_key_dot);
1260 
1261     reference = qdict_get_try_str(options, bdref_key);
1262     if (!filename && !reference && !qdict_size(image_options)) {
1263         if (allow_none) {
1264             ret = 0;
1265         } else {
1266             error_setg(errp, "A block device must be specified for \"%s\"",
1267                        bdref_key);
1268             ret = -EINVAL;
1269         }
1270         QDECREF(image_options);
1271         goto done;
1272     }
1273 
1274     ret = bdrv_open(pbs, filename, reference, image_options, flags, NULL, errp);
1275 
1276 done:
1277     qdict_del(options, bdref_key);
1278     return ret;
1279 }
1280 
1281 int bdrv_append_temp_snapshot(BlockDriverState *bs, int flags, Error **errp)
1282 {
1283     /* TODO: extra byte is a hack to ensure MAX_PATH space on Windows. */
1284     char *tmp_filename = g_malloc0(PATH_MAX + 1);
1285     int64_t total_size;
1286     BlockDriver *bdrv_qcow2;
1287     QemuOpts *opts = NULL;
1288     QDict *snapshot_options;
1289     BlockDriverState *bs_snapshot;
1290     Error *local_err;
1291     int ret;
1292 
1293     /* if snapshot, we create a temporary backing file and open it
1294        instead of opening 'filename' directly */
1295 
1296     /* Get the required size from the image */
1297     total_size = bdrv_getlength(bs);
1298     if (total_size < 0) {
1299         ret = total_size;
1300         error_setg_errno(errp, -total_size, "Could not get image size");
1301         goto out;
1302     }
1303     total_size &= BDRV_SECTOR_MASK;
1304 
1305     /* Create the temporary image */
1306     ret = get_tmp_filename(tmp_filename, PATH_MAX + 1);
1307     if (ret < 0) {
1308         error_setg_errno(errp, -ret, "Could not get temporary filename");
1309         goto out;
1310     }
1311 
1312     bdrv_qcow2 = bdrv_find_format("qcow2");
1313     opts = qemu_opts_create(bdrv_qcow2->create_opts, NULL, 0,
1314                             &error_abort);
1315     qemu_opt_set_number(opts, BLOCK_OPT_SIZE, total_size);
1316     ret = bdrv_create(bdrv_qcow2, tmp_filename, opts, &local_err);
1317     qemu_opts_del(opts);
1318     if (ret < 0) {
1319         error_setg_errno(errp, -ret, "Could not create temporary overlay "
1320                          "'%s': %s", tmp_filename,
1321                          error_get_pretty(local_err));
1322         error_free(local_err);
1323         goto out;
1324     }
1325 
1326     /* Prepare a new options QDict for the temporary file */
1327     snapshot_options = qdict_new();
1328     qdict_put(snapshot_options, "file.driver",
1329               qstring_from_str("file"));
1330     qdict_put(snapshot_options, "file.filename",
1331               qstring_from_str(tmp_filename));
1332 
1333     bs_snapshot = bdrv_new("", &error_abort);
1334 
1335     ret = bdrv_open(&bs_snapshot, NULL, NULL, snapshot_options,
1336                     flags, bdrv_qcow2, &local_err);
1337     if (ret < 0) {
1338         error_propagate(errp, local_err);
1339         goto out;
1340     }
1341 
1342     bdrv_append(bs_snapshot, bs);
1343 
1344 out:
1345     g_free(tmp_filename);
1346     return ret;
1347 }
1348 
1349 /*
1350  * Opens a disk image (raw, qcow2, vmdk, ...)
1351  *
1352  * options is a QDict of options to pass to the block drivers, or NULL for an
1353  * empty set of options. The reference to the QDict belongs to the block layer
1354  * after the call (even on failure), so if the caller intends to reuse the
1355  * dictionary, it needs to use QINCREF() before calling bdrv_open.
1356  *
1357  * If *pbs is NULL, a new BDS will be created with a pointer to it stored there.
1358  * If it is not NULL, the referenced BDS will be reused.
1359  *
1360  * The reference parameter may be used to specify an existing block device which
1361  * should be opened. If specified, neither options nor a filename may be given,
1362  * nor can an existing BDS be reused (that is, *pbs has to be NULL).
1363  */
1364 int bdrv_open(BlockDriverState **pbs, const char *filename,
1365               const char *reference, QDict *options, int flags,
1366               BlockDriver *drv, Error **errp)
1367 {
1368     int ret;
1369     BlockDriverState *file = NULL, *bs;
1370     const char *drvname;
1371     Error *local_err = NULL;
1372     int snapshot_flags = 0;
1373 
1374     assert(pbs);
1375 
1376     if (reference) {
1377         bool options_non_empty = options ? qdict_size(options) : false;
1378         QDECREF(options);
1379 
1380         if (*pbs) {
1381             error_setg(errp, "Cannot reuse an existing BDS when referencing "
1382                        "another block device");
1383             return -EINVAL;
1384         }
1385 
1386         if (filename || options_non_empty) {
1387             error_setg(errp, "Cannot reference an existing block device with "
1388                        "additional options or a new filename");
1389             return -EINVAL;
1390         }
1391 
1392         bs = bdrv_lookup_bs(reference, reference, errp);
1393         if (!bs) {
1394             return -ENODEV;
1395         }
1396         bdrv_ref(bs);
1397         *pbs = bs;
1398         return 0;
1399     }
1400 
1401     if (*pbs) {
1402         bs = *pbs;
1403     } else {
1404         bs = bdrv_new("", &error_abort);
1405     }
1406 
1407     /* NULL means an empty set of options */
1408     if (options == NULL) {
1409         options = qdict_new();
1410     }
1411 
1412     ret = bdrv_fill_options(&options, &filename, flags, drv, &local_err);
1413     if (local_err) {
1414         goto fail;
1415     }
1416 
1417     /* Find the right image format driver */
1418     drv = NULL;
1419     drvname = qdict_get_try_str(options, "driver");
1420     if (drvname) {
1421         drv = bdrv_find_format(drvname);
1422         qdict_del(options, "driver");
1423         if (!drv) {
1424             error_setg(errp, "Unknown driver: '%s'", drvname);
1425             ret = -EINVAL;
1426             goto fail;
1427         }
1428     }
1429 
1430     assert(drvname || !(flags & BDRV_O_PROTOCOL));
1431     if (drv && !drv->bdrv_file_open) {
1432         /* If the user explicitly wants a format driver here, we'll need to add
1433          * another layer for the protocol in bs->file */
1434         flags &= ~BDRV_O_PROTOCOL;
1435     }
1436 
1437     bs->options = options;
1438     options = qdict_clone_shallow(options);
1439 
1440     /* Open image file without format layer */
1441     if ((flags & BDRV_O_PROTOCOL) == 0) {
1442         if (flags & BDRV_O_RDWR) {
1443             flags |= BDRV_O_ALLOW_RDWR;
1444         }
1445         if (flags & BDRV_O_SNAPSHOT) {
1446             snapshot_flags = bdrv_temp_snapshot_flags(flags);
1447             flags = bdrv_backing_flags(flags);
1448         }
1449 
1450         assert(file == NULL);
1451         ret = bdrv_open_image(&file, filename, options, "file",
1452                               bdrv_inherited_flags(flags),
1453                               true, &local_err);
1454         if (ret < 0) {
1455             goto fail;
1456         }
1457     }
1458 
1459     /* Image format probing */
1460     if (!drv && file) {
1461         ret = find_image_format(file, filename, &drv, &local_err);
1462         if (ret < 0) {
1463             goto fail;
1464         }
1465     } else if (!drv) {
1466         error_setg(errp, "Must specify either driver or file");
1467         ret = -EINVAL;
1468         goto fail;
1469     }
1470 
1471     /* Open the image */
1472     ret = bdrv_open_common(bs, file, options, flags, drv, &local_err);
1473     if (ret < 0) {
1474         goto fail;
1475     }
1476 
1477     if (file && (bs->file != file)) {
1478         bdrv_unref(file);
1479         file = NULL;
1480     }
1481 
1482     /* If there is a backing file, use it */
1483     if ((flags & BDRV_O_NO_BACKING) == 0) {
1484         QDict *backing_options;
1485 
1486         qdict_extract_subqdict(options, &backing_options, "backing.");
1487         ret = bdrv_open_backing_file(bs, backing_options, &local_err);
1488         if (ret < 0) {
1489             goto close_and_fail;
1490         }
1491     }
1492 
1493     /* For snapshot=on, create a temporary qcow2 overlay. bs points to the
1494      * temporary snapshot afterwards. */
1495     if (snapshot_flags) {
1496         ret = bdrv_append_temp_snapshot(bs, snapshot_flags, &local_err);
1497         if (local_err) {
1498             goto close_and_fail;
1499         }
1500     }
1501 
1502     /* Check if any unknown options were used */
1503     if (options && (qdict_size(options) != 0)) {
1504         const QDictEntry *entry = qdict_first(options);
1505         if (flags & BDRV_O_PROTOCOL) {
1506             error_setg(errp, "Block protocol '%s' doesn't support the option "
1507                        "'%s'", drv->format_name, entry->key);
1508         } else {
1509             error_setg(errp, "Block format '%s' used by device '%s' doesn't "
1510                        "support the option '%s'", drv->format_name,
1511                        bs->device_name, entry->key);
1512         }
1513 
1514         ret = -EINVAL;
1515         goto close_and_fail;
1516     }
1517 
1518     if (!bdrv_key_required(bs)) {
1519         bdrv_dev_change_media_cb(bs, true);
1520     } else if (!runstate_check(RUN_STATE_PRELAUNCH)
1521                && !runstate_check(RUN_STATE_INMIGRATE)
1522                && !runstate_check(RUN_STATE_PAUSED)) { /* HACK */
1523         error_setg(errp,
1524                    "Guest must be stopped for opening of encrypted image");
1525         ret = -EBUSY;
1526         goto close_and_fail;
1527     }
1528 
1529     QDECREF(options);
1530     *pbs = bs;
1531     return 0;
1532 
1533 fail:
1534     if (file != NULL) {
1535         bdrv_unref(file);
1536     }
1537     QDECREF(bs->options);
1538     QDECREF(options);
1539     bs->options = NULL;
1540     if (!*pbs) {
1541         /* If *pbs is NULL, a new BDS has been created in this function and
1542            needs to be freed now. Otherwise, it does not need to be closed,
1543            since it has not really been opened yet. */
1544         bdrv_unref(bs);
1545     }
1546     if (local_err) {
1547         error_propagate(errp, local_err);
1548     }
1549     return ret;
1550 
1551 close_and_fail:
1552     /* See fail path, but now the BDS has to be always closed */
1553     if (*pbs) {
1554         bdrv_close(bs);
1555     } else {
1556         bdrv_unref(bs);
1557     }
1558     QDECREF(options);
1559     if (local_err) {
1560         error_propagate(errp, local_err);
1561     }
1562     return ret;
1563 }
1564 
1565 typedef struct BlockReopenQueueEntry {
1566      bool prepared;
1567      BDRVReopenState state;
1568      QSIMPLEQ_ENTRY(BlockReopenQueueEntry) entry;
1569 } BlockReopenQueueEntry;
1570 
1571 /*
1572  * Adds a BlockDriverState to a simple queue for an atomic, transactional
1573  * reopen of multiple devices.
1574  *
1575  * bs_queue can either be an existing BlockReopenQueue that has had QSIMPLE_INIT
1576  * already performed, or alternatively may be NULL a new BlockReopenQueue will
1577  * be created and initialized. This newly created BlockReopenQueue should be
1578  * passed back in for subsequent calls that are intended to be of the same
1579  * atomic 'set'.
1580  *
1581  * bs is the BlockDriverState to add to the reopen queue.
1582  *
1583  * flags contains the open flags for the associated bs
1584  *
1585  * returns a pointer to bs_queue, which is either the newly allocated
1586  * bs_queue, or the existing bs_queue being used.
1587  *
1588  */
1589 BlockReopenQueue *bdrv_reopen_queue(BlockReopenQueue *bs_queue,
1590                                     BlockDriverState *bs, int flags)
1591 {
1592     assert(bs != NULL);
1593 
1594     BlockReopenQueueEntry *bs_entry;
1595     if (bs_queue == NULL) {
1596         bs_queue = g_new0(BlockReopenQueue, 1);
1597         QSIMPLEQ_INIT(bs_queue);
1598     }
1599 
1600     /* bdrv_open() masks this flag out */
1601     flags &= ~BDRV_O_PROTOCOL;
1602 
1603     if (bs->file) {
1604         bdrv_reopen_queue(bs_queue, bs->file, bdrv_inherited_flags(flags));
1605     }
1606 
1607     bs_entry = g_new0(BlockReopenQueueEntry, 1);
1608     QSIMPLEQ_INSERT_TAIL(bs_queue, bs_entry, entry);
1609 
1610     bs_entry->state.bs = bs;
1611     bs_entry->state.flags = flags;
1612 
1613     return bs_queue;
1614 }
1615 
1616 /*
1617  * Reopen multiple BlockDriverStates atomically & transactionally.
1618  *
1619  * The queue passed in (bs_queue) must have been built up previous
1620  * via bdrv_reopen_queue().
1621  *
1622  * Reopens all BDS specified in the queue, with the appropriate
1623  * flags.  All devices are prepared for reopen, and failure of any
1624  * device will cause all device changes to be abandonded, and intermediate
1625  * data cleaned up.
1626  *
1627  * If all devices prepare successfully, then the changes are committed
1628  * to all devices.
1629  *
1630  */
1631 int bdrv_reopen_multiple(BlockReopenQueue *bs_queue, Error **errp)
1632 {
1633     int ret = -1;
1634     BlockReopenQueueEntry *bs_entry, *next;
1635     Error *local_err = NULL;
1636 
1637     assert(bs_queue != NULL);
1638 
1639     bdrv_drain_all();
1640 
1641     QSIMPLEQ_FOREACH(bs_entry, bs_queue, entry) {
1642         if (bdrv_reopen_prepare(&bs_entry->state, bs_queue, &local_err)) {
1643             error_propagate(errp, local_err);
1644             goto cleanup;
1645         }
1646         bs_entry->prepared = true;
1647     }
1648 
1649     /* If we reach this point, we have success and just need to apply the
1650      * changes
1651      */
1652     QSIMPLEQ_FOREACH(bs_entry, bs_queue, entry) {
1653         bdrv_reopen_commit(&bs_entry->state);
1654     }
1655 
1656     ret = 0;
1657 
1658 cleanup:
1659     QSIMPLEQ_FOREACH_SAFE(bs_entry, bs_queue, entry, next) {
1660         if (ret && bs_entry->prepared) {
1661             bdrv_reopen_abort(&bs_entry->state);
1662         }
1663         g_free(bs_entry);
1664     }
1665     g_free(bs_queue);
1666     return ret;
1667 }
1668 
1669 
1670 /* Reopen a single BlockDriverState with the specified flags. */
1671 int bdrv_reopen(BlockDriverState *bs, int bdrv_flags, Error **errp)
1672 {
1673     int ret = -1;
1674     Error *local_err = NULL;
1675     BlockReopenQueue *queue = bdrv_reopen_queue(NULL, bs, bdrv_flags);
1676 
1677     ret = bdrv_reopen_multiple(queue, &local_err);
1678     if (local_err != NULL) {
1679         error_propagate(errp, local_err);
1680     }
1681     return ret;
1682 }
1683 
1684 
1685 /*
1686  * Prepares a BlockDriverState for reopen. All changes are staged in the
1687  * 'opaque' field of the BDRVReopenState, which is used and allocated by
1688  * the block driver layer .bdrv_reopen_prepare()
1689  *
1690  * bs is the BlockDriverState to reopen
1691  * flags are the new open flags
1692  * queue is the reopen queue
1693  *
1694  * Returns 0 on success, non-zero on error.  On error errp will be set
1695  * as well.
1696  *
1697  * On failure, bdrv_reopen_abort() will be called to clean up any data.
1698  * It is the responsibility of the caller to then call the abort() or
1699  * commit() for any other BDS that have been left in a prepare() state
1700  *
1701  */
1702 int bdrv_reopen_prepare(BDRVReopenState *reopen_state, BlockReopenQueue *queue,
1703                         Error **errp)
1704 {
1705     int ret = -1;
1706     Error *local_err = NULL;
1707     BlockDriver *drv;
1708 
1709     assert(reopen_state != NULL);
1710     assert(reopen_state->bs->drv != NULL);
1711     drv = reopen_state->bs->drv;
1712 
1713     /* if we are to stay read-only, do not allow permission change
1714      * to r/w */
1715     if (!(reopen_state->bs->open_flags & BDRV_O_ALLOW_RDWR) &&
1716         reopen_state->flags & BDRV_O_RDWR) {
1717         error_set(errp, QERR_DEVICE_IS_READ_ONLY,
1718                   reopen_state->bs->device_name);
1719         goto error;
1720     }
1721 
1722 
1723     ret = bdrv_flush(reopen_state->bs);
1724     if (ret) {
1725         error_set(errp, ERROR_CLASS_GENERIC_ERROR, "Error (%s) flushing drive",
1726                   strerror(-ret));
1727         goto error;
1728     }
1729 
1730     if (drv->bdrv_reopen_prepare) {
1731         ret = drv->bdrv_reopen_prepare(reopen_state, queue, &local_err);
1732         if (ret) {
1733             if (local_err != NULL) {
1734                 error_propagate(errp, local_err);
1735             } else {
1736                 error_setg(errp, "failed while preparing to reopen image '%s'",
1737                            reopen_state->bs->filename);
1738             }
1739             goto error;
1740         }
1741     } else {
1742         /* It is currently mandatory to have a bdrv_reopen_prepare()
1743          * handler for each supported drv. */
1744         error_set(errp, QERR_BLOCK_FORMAT_FEATURE_NOT_SUPPORTED,
1745                   drv->format_name, reopen_state->bs->device_name,
1746                  "reopening of file");
1747         ret = -1;
1748         goto error;
1749     }
1750 
1751     ret = 0;
1752 
1753 error:
1754     return ret;
1755 }
1756 
1757 /*
1758  * Takes the staged changes for the reopen from bdrv_reopen_prepare(), and
1759  * makes them final by swapping the staging BlockDriverState contents into
1760  * the active BlockDriverState contents.
1761  */
1762 void bdrv_reopen_commit(BDRVReopenState *reopen_state)
1763 {
1764     BlockDriver *drv;
1765 
1766     assert(reopen_state != NULL);
1767     drv = reopen_state->bs->drv;
1768     assert(drv != NULL);
1769 
1770     /* If there are any driver level actions to take */
1771     if (drv->bdrv_reopen_commit) {
1772         drv->bdrv_reopen_commit(reopen_state);
1773     }
1774 
1775     /* set BDS specific flags now */
1776     reopen_state->bs->open_flags         = reopen_state->flags;
1777     reopen_state->bs->enable_write_cache = !!(reopen_state->flags &
1778                                               BDRV_O_CACHE_WB);
1779     reopen_state->bs->read_only = !(reopen_state->flags & BDRV_O_RDWR);
1780 
1781     bdrv_refresh_limits(reopen_state->bs);
1782 }
1783 
1784 /*
1785  * Abort the reopen, and delete and free the staged changes in
1786  * reopen_state
1787  */
1788 void bdrv_reopen_abort(BDRVReopenState *reopen_state)
1789 {
1790     BlockDriver *drv;
1791 
1792     assert(reopen_state != NULL);
1793     drv = reopen_state->bs->drv;
1794     assert(drv != NULL);
1795 
1796     if (drv->bdrv_reopen_abort) {
1797         drv->bdrv_reopen_abort(reopen_state);
1798     }
1799 }
1800 
1801 
1802 void bdrv_close(BlockDriverState *bs)
1803 {
1804     if (bs->job) {
1805         block_job_cancel_sync(bs->job);
1806     }
1807     bdrv_drain_all(); /* complete I/O */
1808     bdrv_flush(bs);
1809     bdrv_drain_all(); /* in case flush left pending I/O */
1810     notifier_list_notify(&bs->close_notifiers, bs);
1811 
1812     if (bs->drv) {
1813         if (bs->backing_hd) {
1814             BlockDriverState *backing_hd = bs->backing_hd;
1815             bdrv_set_backing_hd(bs, NULL);
1816             bdrv_unref(backing_hd);
1817         }
1818         bs->drv->bdrv_close(bs);
1819         g_free(bs->opaque);
1820         bs->opaque = NULL;
1821         bs->drv = NULL;
1822         bs->copy_on_read = 0;
1823         bs->backing_file[0] = '\0';
1824         bs->backing_format[0] = '\0';
1825         bs->total_sectors = 0;
1826         bs->encrypted = 0;
1827         bs->valid_key = 0;
1828         bs->sg = 0;
1829         bs->growable = 0;
1830         bs->zero_beyond_eof = false;
1831         QDECREF(bs->options);
1832         bs->options = NULL;
1833 
1834         if (bs->file != NULL) {
1835             bdrv_unref(bs->file);
1836             bs->file = NULL;
1837         }
1838     }
1839 
1840     bdrv_dev_change_media_cb(bs, false);
1841 
1842     /*throttling disk I/O limits*/
1843     if (bs->io_limits_enabled) {
1844         bdrv_io_limits_disable(bs);
1845     }
1846 }
1847 
1848 void bdrv_close_all(void)
1849 {
1850     BlockDriverState *bs;
1851 
1852     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
1853         AioContext *aio_context = bdrv_get_aio_context(bs);
1854 
1855         aio_context_acquire(aio_context);
1856         bdrv_close(bs);
1857         aio_context_release(aio_context);
1858     }
1859 }
1860 
1861 /* Check if any requests are in-flight (including throttled requests) */
1862 static bool bdrv_requests_pending(BlockDriverState *bs)
1863 {
1864     if (!QLIST_EMPTY(&bs->tracked_requests)) {
1865         return true;
1866     }
1867     if (!qemu_co_queue_empty(&bs->throttled_reqs[0])) {
1868         return true;
1869     }
1870     if (!qemu_co_queue_empty(&bs->throttled_reqs[1])) {
1871         return true;
1872     }
1873     if (bs->file && bdrv_requests_pending(bs->file)) {
1874         return true;
1875     }
1876     if (bs->backing_hd && bdrv_requests_pending(bs->backing_hd)) {
1877         return true;
1878     }
1879     return false;
1880 }
1881 
1882 /*
1883  * Wait for pending requests to complete across all BlockDriverStates
1884  *
1885  * This function does not flush data to disk, use bdrv_flush_all() for that
1886  * after calling this function.
1887  *
1888  * Note that completion of an asynchronous I/O operation can trigger any
1889  * number of other I/O operations on other devices---for example a coroutine
1890  * can be arbitrarily complex and a constant flow of I/O can come until the
1891  * coroutine is complete.  Because of this, it is not possible to have a
1892  * function to drain a single device's I/O queue.
1893  */
1894 void bdrv_drain_all(void)
1895 {
1896     /* Always run first iteration so any pending completion BHs run */
1897     bool busy = true;
1898     BlockDriverState *bs;
1899 
1900     while (busy) {
1901         busy = false;
1902 
1903         QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
1904             AioContext *aio_context = bdrv_get_aio_context(bs);
1905             bool bs_busy;
1906 
1907             aio_context_acquire(aio_context);
1908             bdrv_flush_io_queue(bs);
1909             bdrv_start_throttled_reqs(bs);
1910             bs_busy = bdrv_requests_pending(bs);
1911             bs_busy |= aio_poll(aio_context, bs_busy);
1912             aio_context_release(aio_context);
1913 
1914             busy |= bs_busy;
1915         }
1916     }
1917 }
1918 
1919 /* make a BlockDriverState anonymous by removing from bdrv_state and
1920  * graph_bdrv_state list.
1921    Also, NULL terminate the device_name to prevent double remove */
1922 void bdrv_make_anon(BlockDriverState *bs)
1923 {
1924     if (bs->device_name[0] != '\0') {
1925         QTAILQ_REMOVE(&bdrv_states, bs, device_list);
1926     }
1927     bs->device_name[0] = '\0';
1928     if (bs->node_name[0] != '\0') {
1929         QTAILQ_REMOVE(&graph_bdrv_states, bs, node_list);
1930     }
1931     bs->node_name[0] = '\0';
1932 }
1933 
1934 static void bdrv_rebind(BlockDriverState *bs)
1935 {
1936     if (bs->drv && bs->drv->bdrv_rebind) {
1937         bs->drv->bdrv_rebind(bs);
1938     }
1939 }
1940 
1941 static void bdrv_move_feature_fields(BlockDriverState *bs_dest,
1942                                      BlockDriverState *bs_src)
1943 {
1944     /* move some fields that need to stay attached to the device */
1945 
1946     /* dev info */
1947     bs_dest->dev_ops            = bs_src->dev_ops;
1948     bs_dest->dev_opaque         = bs_src->dev_opaque;
1949     bs_dest->dev                = bs_src->dev;
1950     bs_dest->guest_block_size   = bs_src->guest_block_size;
1951     bs_dest->copy_on_read       = bs_src->copy_on_read;
1952 
1953     bs_dest->enable_write_cache = bs_src->enable_write_cache;
1954 
1955     /* i/o throttled req */
1956     memcpy(&bs_dest->throttle_state,
1957            &bs_src->throttle_state,
1958            sizeof(ThrottleState));
1959     bs_dest->throttled_reqs[0]  = bs_src->throttled_reqs[0];
1960     bs_dest->throttled_reqs[1]  = bs_src->throttled_reqs[1];
1961     bs_dest->io_limits_enabled  = bs_src->io_limits_enabled;
1962 
1963     /* r/w error */
1964     bs_dest->on_read_error      = bs_src->on_read_error;
1965     bs_dest->on_write_error     = bs_src->on_write_error;
1966 
1967     /* i/o status */
1968     bs_dest->iostatus_enabled   = bs_src->iostatus_enabled;
1969     bs_dest->iostatus           = bs_src->iostatus;
1970 
1971     /* dirty bitmap */
1972     bs_dest->dirty_bitmaps      = bs_src->dirty_bitmaps;
1973 
1974     /* reference count */
1975     bs_dest->refcnt             = bs_src->refcnt;
1976 
1977     /* job */
1978     bs_dest->job                = bs_src->job;
1979 
1980     /* keep the same entry in bdrv_states */
1981     pstrcpy(bs_dest->device_name, sizeof(bs_dest->device_name),
1982             bs_src->device_name);
1983     bs_dest->device_list = bs_src->device_list;
1984     memcpy(bs_dest->op_blockers, bs_src->op_blockers,
1985            sizeof(bs_dest->op_blockers));
1986 }
1987 
1988 /*
1989  * Swap bs contents for two image chains while they are live,
1990  * while keeping required fields on the BlockDriverState that is
1991  * actually attached to a device.
1992  *
1993  * This will modify the BlockDriverState fields, and swap contents
1994  * between bs_new and bs_old. Both bs_new and bs_old are modified.
1995  *
1996  * bs_new is required to be anonymous.
1997  *
1998  * This function does not create any image files.
1999  */
2000 void bdrv_swap(BlockDriverState *bs_new, BlockDriverState *bs_old)
2001 {
2002     BlockDriverState tmp;
2003 
2004     /* The code needs to swap the node_name but simply swapping node_list won't
2005      * work so first remove the nodes from the graph list, do the swap then
2006      * insert them back if needed.
2007      */
2008     if (bs_new->node_name[0] != '\0') {
2009         QTAILQ_REMOVE(&graph_bdrv_states, bs_new, node_list);
2010     }
2011     if (bs_old->node_name[0] != '\0') {
2012         QTAILQ_REMOVE(&graph_bdrv_states, bs_old, node_list);
2013     }
2014 
2015     /* bs_new must be anonymous and shouldn't have anything fancy enabled */
2016     assert(bs_new->device_name[0] == '\0');
2017     assert(QLIST_EMPTY(&bs_new->dirty_bitmaps));
2018     assert(bs_new->job == NULL);
2019     assert(bs_new->dev == NULL);
2020     assert(bs_new->io_limits_enabled == false);
2021     assert(!throttle_have_timer(&bs_new->throttle_state));
2022 
2023     tmp = *bs_new;
2024     *bs_new = *bs_old;
2025     *bs_old = tmp;
2026 
2027     /* there are some fields that should not be swapped, move them back */
2028     bdrv_move_feature_fields(&tmp, bs_old);
2029     bdrv_move_feature_fields(bs_old, bs_new);
2030     bdrv_move_feature_fields(bs_new, &tmp);
2031 
2032     /* bs_new shouldn't be in bdrv_states even after the swap!  */
2033     assert(bs_new->device_name[0] == '\0');
2034 
2035     /* Check a few fields that should remain attached to the device */
2036     assert(bs_new->dev == NULL);
2037     assert(bs_new->job == NULL);
2038     assert(bs_new->io_limits_enabled == false);
2039     assert(!throttle_have_timer(&bs_new->throttle_state));
2040 
2041     /* insert the nodes back into the graph node list if needed */
2042     if (bs_new->node_name[0] != '\0') {
2043         QTAILQ_INSERT_TAIL(&graph_bdrv_states, bs_new, node_list);
2044     }
2045     if (bs_old->node_name[0] != '\0') {
2046         QTAILQ_INSERT_TAIL(&graph_bdrv_states, bs_old, node_list);
2047     }
2048 
2049     bdrv_rebind(bs_new);
2050     bdrv_rebind(bs_old);
2051 }
2052 
2053 /*
2054  * Add new bs contents at the top of an image chain while the chain is
2055  * live, while keeping required fields on the top layer.
2056  *
2057  * This will modify the BlockDriverState fields, and swap contents
2058  * between bs_new and bs_top. Both bs_new and bs_top are modified.
2059  *
2060  * bs_new is required to be anonymous.
2061  *
2062  * This function does not create any image files.
2063  */
2064 void bdrv_append(BlockDriverState *bs_new, BlockDriverState *bs_top)
2065 {
2066     bdrv_swap(bs_new, bs_top);
2067 
2068     /* The contents of 'tmp' will become bs_top, as we are
2069      * swapping bs_new and bs_top contents. */
2070     bdrv_set_backing_hd(bs_top, bs_new);
2071 }
2072 
2073 static void bdrv_delete(BlockDriverState *bs)
2074 {
2075     assert(!bs->dev);
2076     assert(!bs->job);
2077     assert(bdrv_op_blocker_is_empty(bs));
2078     assert(!bs->refcnt);
2079     assert(QLIST_EMPTY(&bs->dirty_bitmaps));
2080 
2081     bdrv_close(bs);
2082 
2083     /* remove from list, if necessary */
2084     bdrv_make_anon(bs);
2085 
2086     g_free(bs);
2087 }
2088 
2089 int bdrv_attach_dev(BlockDriverState *bs, void *dev)
2090 /* TODO change to DeviceState *dev when all users are qdevified */
2091 {
2092     if (bs->dev) {
2093         return -EBUSY;
2094     }
2095     bs->dev = dev;
2096     bdrv_iostatus_reset(bs);
2097     return 0;
2098 }
2099 
2100 /* TODO qdevified devices don't use this, remove when devices are qdevified */
2101 void bdrv_attach_dev_nofail(BlockDriverState *bs, void *dev)
2102 {
2103     if (bdrv_attach_dev(bs, dev) < 0) {
2104         abort();
2105     }
2106 }
2107 
2108 void bdrv_detach_dev(BlockDriverState *bs, void *dev)
2109 /* TODO change to DeviceState *dev when all users are qdevified */
2110 {
2111     assert(bs->dev == dev);
2112     bs->dev = NULL;
2113     bs->dev_ops = NULL;
2114     bs->dev_opaque = NULL;
2115     bs->guest_block_size = 512;
2116 }
2117 
2118 /* TODO change to return DeviceState * when all users are qdevified */
2119 void *bdrv_get_attached_dev(BlockDriverState *bs)
2120 {
2121     return bs->dev;
2122 }
2123 
2124 void bdrv_set_dev_ops(BlockDriverState *bs, const BlockDevOps *ops,
2125                       void *opaque)
2126 {
2127     bs->dev_ops = ops;
2128     bs->dev_opaque = opaque;
2129 }
2130 
2131 static void bdrv_dev_change_media_cb(BlockDriverState *bs, bool load)
2132 {
2133     if (bs->dev_ops && bs->dev_ops->change_media_cb) {
2134         bool tray_was_closed = !bdrv_dev_is_tray_open(bs);
2135         bs->dev_ops->change_media_cb(bs->dev_opaque, load);
2136         if (tray_was_closed) {
2137             /* tray open */
2138             qapi_event_send_device_tray_moved(bdrv_get_device_name(bs),
2139                                               true, &error_abort);
2140         }
2141         if (load) {
2142             /* tray close */
2143             qapi_event_send_device_tray_moved(bdrv_get_device_name(bs),
2144                                               false, &error_abort);
2145         }
2146     }
2147 }
2148 
2149 bool bdrv_dev_has_removable_media(BlockDriverState *bs)
2150 {
2151     return !bs->dev || (bs->dev_ops && bs->dev_ops->change_media_cb);
2152 }
2153 
2154 void bdrv_dev_eject_request(BlockDriverState *bs, bool force)
2155 {
2156     if (bs->dev_ops && bs->dev_ops->eject_request_cb) {
2157         bs->dev_ops->eject_request_cb(bs->dev_opaque, force);
2158     }
2159 }
2160 
2161 bool bdrv_dev_is_tray_open(BlockDriverState *bs)
2162 {
2163     if (bs->dev_ops && bs->dev_ops->is_tray_open) {
2164         return bs->dev_ops->is_tray_open(bs->dev_opaque);
2165     }
2166     return false;
2167 }
2168 
2169 static void bdrv_dev_resize_cb(BlockDriverState *bs)
2170 {
2171     if (bs->dev_ops && bs->dev_ops->resize_cb) {
2172         bs->dev_ops->resize_cb(bs->dev_opaque);
2173     }
2174 }
2175 
2176 bool bdrv_dev_is_medium_locked(BlockDriverState *bs)
2177 {
2178     if (bs->dev_ops && bs->dev_ops->is_medium_locked) {
2179         return bs->dev_ops->is_medium_locked(bs->dev_opaque);
2180     }
2181     return false;
2182 }
2183 
2184 /*
2185  * Run consistency checks on an image
2186  *
2187  * Returns 0 if the check could be completed (it doesn't mean that the image is
2188  * free of errors) or -errno when an internal error occurred. The results of the
2189  * check are stored in res.
2190  */
2191 int bdrv_check(BlockDriverState *bs, BdrvCheckResult *res, BdrvCheckMode fix)
2192 {
2193     if (bs->drv->bdrv_check == NULL) {
2194         return -ENOTSUP;
2195     }
2196 
2197     memset(res, 0, sizeof(*res));
2198     return bs->drv->bdrv_check(bs, res, fix);
2199 }
2200 
2201 #define COMMIT_BUF_SECTORS 2048
2202 
2203 /* commit COW file into the raw image */
2204 int bdrv_commit(BlockDriverState *bs)
2205 {
2206     BlockDriver *drv = bs->drv;
2207     int64_t sector, total_sectors, length, backing_length;
2208     int n, ro, open_flags;
2209     int ret = 0;
2210     uint8_t *buf = NULL;
2211     char filename[PATH_MAX];
2212 
2213     if (!drv)
2214         return -ENOMEDIUM;
2215 
2216     if (!bs->backing_hd) {
2217         return -ENOTSUP;
2218     }
2219 
2220     if (bdrv_op_is_blocked(bs, BLOCK_OP_TYPE_COMMIT, NULL) ||
2221         bdrv_op_is_blocked(bs->backing_hd, BLOCK_OP_TYPE_COMMIT, NULL)) {
2222         return -EBUSY;
2223     }
2224 
2225     ro = bs->backing_hd->read_only;
2226     /* Use pstrcpy (not strncpy): filename must be NUL-terminated. */
2227     pstrcpy(filename, sizeof(filename), bs->backing_hd->filename);
2228     open_flags =  bs->backing_hd->open_flags;
2229 
2230     if (ro) {
2231         if (bdrv_reopen(bs->backing_hd, open_flags | BDRV_O_RDWR, NULL)) {
2232             return -EACCES;
2233         }
2234     }
2235 
2236     length = bdrv_getlength(bs);
2237     if (length < 0) {
2238         ret = length;
2239         goto ro_cleanup;
2240     }
2241 
2242     backing_length = bdrv_getlength(bs->backing_hd);
2243     if (backing_length < 0) {
2244         ret = backing_length;
2245         goto ro_cleanup;
2246     }
2247 
2248     /* If our top snapshot is larger than the backing file image,
2249      * grow the backing file image if possible.  If not possible,
2250      * we must return an error */
2251     if (length > backing_length) {
2252         ret = bdrv_truncate(bs->backing_hd, length);
2253         if (ret < 0) {
2254             goto ro_cleanup;
2255         }
2256     }
2257 
2258     total_sectors = length >> BDRV_SECTOR_BITS;
2259     buf = g_malloc(COMMIT_BUF_SECTORS * BDRV_SECTOR_SIZE);
2260 
2261     for (sector = 0; sector < total_sectors; sector += n) {
2262         ret = bdrv_is_allocated(bs, sector, COMMIT_BUF_SECTORS, &n);
2263         if (ret < 0) {
2264             goto ro_cleanup;
2265         }
2266         if (ret) {
2267             ret = bdrv_read(bs, sector, buf, n);
2268             if (ret < 0) {
2269                 goto ro_cleanup;
2270             }
2271 
2272             ret = bdrv_write(bs->backing_hd, sector, buf, n);
2273             if (ret < 0) {
2274                 goto ro_cleanup;
2275             }
2276         }
2277     }
2278 
2279     if (drv->bdrv_make_empty) {
2280         ret = drv->bdrv_make_empty(bs);
2281         if (ret < 0) {
2282             goto ro_cleanup;
2283         }
2284         bdrv_flush(bs);
2285     }
2286 
2287     /*
2288      * Make sure all data we wrote to the backing device is actually
2289      * stable on disk.
2290      */
2291     if (bs->backing_hd) {
2292         bdrv_flush(bs->backing_hd);
2293     }
2294 
2295     ret = 0;
2296 ro_cleanup:
2297     g_free(buf);
2298 
2299     if (ro) {
2300         /* ignoring error return here */
2301         bdrv_reopen(bs->backing_hd, open_flags & ~BDRV_O_RDWR, NULL);
2302     }
2303 
2304     return ret;
2305 }
2306 
2307 int bdrv_commit_all(void)
2308 {
2309     BlockDriverState *bs;
2310 
2311     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
2312         AioContext *aio_context = bdrv_get_aio_context(bs);
2313 
2314         aio_context_acquire(aio_context);
2315         if (bs->drv && bs->backing_hd) {
2316             int ret = bdrv_commit(bs);
2317             if (ret < 0) {
2318                 aio_context_release(aio_context);
2319                 return ret;
2320             }
2321         }
2322         aio_context_release(aio_context);
2323     }
2324     return 0;
2325 }
2326 
2327 /**
2328  * Remove an active request from the tracked requests list
2329  *
2330  * This function should be called when a tracked request is completing.
2331  */
2332 static void tracked_request_end(BdrvTrackedRequest *req)
2333 {
2334     if (req->serialising) {
2335         req->bs->serialising_in_flight--;
2336     }
2337 
2338     QLIST_REMOVE(req, list);
2339     qemu_co_queue_restart_all(&req->wait_queue);
2340 }
2341 
2342 /**
2343  * Add an active request to the tracked requests list
2344  */
2345 static void tracked_request_begin(BdrvTrackedRequest *req,
2346                                   BlockDriverState *bs,
2347                                   int64_t offset,
2348                                   unsigned int bytes, bool is_write)
2349 {
2350     *req = (BdrvTrackedRequest){
2351         .bs = bs,
2352         .offset         = offset,
2353         .bytes          = bytes,
2354         .is_write       = is_write,
2355         .co             = qemu_coroutine_self(),
2356         .serialising    = false,
2357         .overlap_offset = offset,
2358         .overlap_bytes  = bytes,
2359     };
2360 
2361     qemu_co_queue_init(&req->wait_queue);
2362 
2363     QLIST_INSERT_HEAD(&bs->tracked_requests, req, list);
2364 }
2365 
2366 static void mark_request_serialising(BdrvTrackedRequest *req, uint64_t align)
2367 {
2368     int64_t overlap_offset = req->offset & ~(align - 1);
2369     unsigned int overlap_bytes = ROUND_UP(req->offset + req->bytes, align)
2370                                - overlap_offset;
2371 
2372     if (!req->serialising) {
2373         req->bs->serialising_in_flight++;
2374         req->serialising = true;
2375     }
2376 
2377     req->overlap_offset = MIN(req->overlap_offset, overlap_offset);
2378     req->overlap_bytes = MAX(req->overlap_bytes, overlap_bytes);
2379 }
2380 
2381 /**
2382  * Round a region to cluster boundaries
2383  */
2384 void bdrv_round_to_clusters(BlockDriverState *bs,
2385                             int64_t sector_num, int nb_sectors,
2386                             int64_t *cluster_sector_num,
2387                             int *cluster_nb_sectors)
2388 {
2389     BlockDriverInfo bdi;
2390 
2391     if (bdrv_get_info(bs, &bdi) < 0 || bdi.cluster_size == 0) {
2392         *cluster_sector_num = sector_num;
2393         *cluster_nb_sectors = nb_sectors;
2394     } else {
2395         int64_t c = bdi.cluster_size / BDRV_SECTOR_SIZE;
2396         *cluster_sector_num = QEMU_ALIGN_DOWN(sector_num, c);
2397         *cluster_nb_sectors = QEMU_ALIGN_UP(sector_num - *cluster_sector_num +
2398                                             nb_sectors, c);
2399     }
2400 }
2401 
2402 static int bdrv_get_cluster_size(BlockDriverState *bs)
2403 {
2404     BlockDriverInfo bdi;
2405     int ret;
2406 
2407     ret = bdrv_get_info(bs, &bdi);
2408     if (ret < 0 || bdi.cluster_size == 0) {
2409         return bs->request_alignment;
2410     } else {
2411         return bdi.cluster_size;
2412     }
2413 }
2414 
2415 static bool tracked_request_overlaps(BdrvTrackedRequest *req,
2416                                      int64_t offset, unsigned int bytes)
2417 {
2418     /*        aaaa   bbbb */
2419     if (offset >= req->overlap_offset + req->overlap_bytes) {
2420         return false;
2421     }
2422     /* bbbb   aaaa        */
2423     if (req->overlap_offset >= offset + bytes) {
2424         return false;
2425     }
2426     return true;
2427 }
2428 
2429 static bool coroutine_fn wait_serialising_requests(BdrvTrackedRequest *self)
2430 {
2431     BlockDriverState *bs = self->bs;
2432     BdrvTrackedRequest *req;
2433     bool retry;
2434     bool waited = false;
2435 
2436     if (!bs->serialising_in_flight) {
2437         return false;
2438     }
2439 
2440     do {
2441         retry = false;
2442         QLIST_FOREACH(req, &bs->tracked_requests, list) {
2443             if (req == self || (!req->serialising && !self->serialising)) {
2444                 continue;
2445             }
2446             if (tracked_request_overlaps(req, self->overlap_offset,
2447                                          self->overlap_bytes))
2448             {
2449                 /* Hitting this means there was a reentrant request, for
2450                  * example, a block driver issuing nested requests.  This must
2451                  * never happen since it means deadlock.
2452                  */
2453                 assert(qemu_coroutine_self() != req->co);
2454 
2455                 /* If the request is already (indirectly) waiting for us, or
2456                  * will wait for us as soon as it wakes up, then just go on
2457                  * (instead of producing a deadlock in the former case). */
2458                 if (!req->waiting_for) {
2459                     self->waiting_for = req;
2460                     qemu_co_queue_wait(&req->wait_queue);
2461                     self->waiting_for = NULL;
2462                     retry = true;
2463                     waited = true;
2464                     break;
2465                 }
2466             }
2467         }
2468     } while (retry);
2469 
2470     return waited;
2471 }
2472 
2473 /*
2474  * Return values:
2475  * 0        - success
2476  * -EINVAL  - backing format specified, but no file
2477  * -ENOSPC  - can't update the backing file because no space is left in the
2478  *            image file header
2479  * -ENOTSUP - format driver doesn't support changing the backing file
2480  */
2481 int bdrv_change_backing_file(BlockDriverState *bs,
2482     const char *backing_file, const char *backing_fmt)
2483 {
2484     BlockDriver *drv = bs->drv;
2485     int ret;
2486 
2487     /* Backing file format doesn't make sense without a backing file */
2488     if (backing_fmt && !backing_file) {
2489         return -EINVAL;
2490     }
2491 
2492     if (drv->bdrv_change_backing_file != NULL) {
2493         ret = drv->bdrv_change_backing_file(bs, backing_file, backing_fmt);
2494     } else {
2495         ret = -ENOTSUP;
2496     }
2497 
2498     if (ret == 0) {
2499         pstrcpy(bs->backing_file, sizeof(bs->backing_file), backing_file ?: "");
2500         pstrcpy(bs->backing_format, sizeof(bs->backing_format), backing_fmt ?: "");
2501     }
2502     return ret;
2503 }
2504 
2505 /*
2506  * Finds the image layer in the chain that has 'bs' as its backing file.
2507  *
2508  * active is the current topmost image.
2509  *
2510  * Returns NULL if bs is not found in active's image chain,
2511  * or if active == bs.
2512  *
2513  * Returns the bottommost base image if bs == NULL.
2514  */
2515 BlockDriverState *bdrv_find_overlay(BlockDriverState *active,
2516                                     BlockDriverState *bs)
2517 {
2518     while (active && bs != active->backing_hd) {
2519         active = active->backing_hd;
2520     }
2521 
2522     return active;
2523 }
2524 
2525 /* Given a BDS, searches for the base layer. */
2526 BlockDriverState *bdrv_find_base(BlockDriverState *bs)
2527 {
2528     return bdrv_find_overlay(bs, NULL);
2529 }
2530 
2531 typedef struct BlkIntermediateStates {
2532     BlockDriverState *bs;
2533     QSIMPLEQ_ENTRY(BlkIntermediateStates) entry;
2534 } BlkIntermediateStates;
2535 
2536 
2537 /*
2538  * Drops images above 'base' up to and including 'top', and sets the image
2539  * above 'top' to have base as its backing file.
2540  *
2541  * Requires that the overlay to 'top' is opened r/w, so that the backing file
2542  * information in 'bs' can be properly updated.
2543  *
2544  * E.g., this will convert the following chain:
2545  * bottom <- base <- intermediate <- top <- active
2546  *
2547  * to
2548  *
2549  * bottom <- base <- active
2550  *
2551  * It is allowed for bottom==base, in which case it converts:
2552  *
2553  * base <- intermediate <- top <- active
2554  *
2555  * to
2556  *
2557  * base <- active
2558  *
2559  * If backing_file_str is non-NULL, it will be used when modifying top's
2560  * overlay image metadata.
2561  *
2562  * Error conditions:
2563  *  if active == top, that is considered an error
2564  *
2565  */
2566 int bdrv_drop_intermediate(BlockDriverState *active, BlockDriverState *top,
2567                            BlockDriverState *base, const char *backing_file_str)
2568 {
2569     BlockDriverState *intermediate;
2570     BlockDriverState *base_bs = NULL;
2571     BlockDriverState *new_top_bs = NULL;
2572     BlkIntermediateStates *intermediate_state, *next;
2573     int ret = -EIO;
2574 
2575     QSIMPLEQ_HEAD(states_to_delete, BlkIntermediateStates) states_to_delete;
2576     QSIMPLEQ_INIT(&states_to_delete);
2577 
2578     if (!top->drv || !base->drv) {
2579         goto exit;
2580     }
2581 
2582     new_top_bs = bdrv_find_overlay(active, top);
2583 
2584     if (new_top_bs == NULL) {
2585         /* we could not find the image above 'top', this is an error */
2586         goto exit;
2587     }
2588 
2589     /* special case of new_top_bs->backing_hd already pointing to base - nothing
2590      * to do, no intermediate images */
2591     if (new_top_bs->backing_hd == base) {
2592         ret = 0;
2593         goto exit;
2594     }
2595 
2596     intermediate = top;
2597 
2598     /* now we will go down through the list, and add each BDS we find
2599      * into our deletion queue, until we hit the 'base'
2600      */
2601     while (intermediate) {
2602         intermediate_state = g_malloc0(sizeof(BlkIntermediateStates));
2603         intermediate_state->bs = intermediate;
2604         QSIMPLEQ_INSERT_TAIL(&states_to_delete, intermediate_state, entry);
2605 
2606         if (intermediate->backing_hd == base) {
2607             base_bs = intermediate->backing_hd;
2608             break;
2609         }
2610         intermediate = intermediate->backing_hd;
2611     }
2612     if (base_bs == NULL) {
2613         /* something went wrong, we did not end at the base. safely
2614          * unravel everything, and exit with error */
2615         goto exit;
2616     }
2617 
2618     /* success - we can delete the intermediate states, and link top->base */
2619     backing_file_str = backing_file_str ? backing_file_str : base_bs->filename;
2620     ret = bdrv_change_backing_file(new_top_bs, backing_file_str,
2621                                    base_bs->drv ? base_bs->drv->format_name : "");
2622     if (ret) {
2623         goto exit;
2624     }
2625     bdrv_set_backing_hd(new_top_bs, base_bs);
2626 
2627     QSIMPLEQ_FOREACH_SAFE(intermediate_state, &states_to_delete, entry, next) {
2628         /* so that bdrv_close() does not recursively close the chain */
2629         bdrv_set_backing_hd(intermediate_state->bs, NULL);
2630         bdrv_unref(intermediate_state->bs);
2631     }
2632     ret = 0;
2633 
2634 exit:
2635     QSIMPLEQ_FOREACH_SAFE(intermediate_state, &states_to_delete, entry, next) {
2636         g_free(intermediate_state);
2637     }
2638     return ret;
2639 }
2640 
2641 
2642 static int bdrv_check_byte_request(BlockDriverState *bs, int64_t offset,
2643                                    size_t size)
2644 {
2645     int64_t len;
2646 
2647     if (size > INT_MAX) {
2648         return -EIO;
2649     }
2650 
2651     if (!bdrv_is_inserted(bs))
2652         return -ENOMEDIUM;
2653 
2654     if (bs->growable)
2655         return 0;
2656 
2657     len = bdrv_getlength(bs);
2658 
2659     if (offset < 0)
2660         return -EIO;
2661 
2662     if ((offset > len) || (len - offset < size))
2663         return -EIO;
2664 
2665     return 0;
2666 }
2667 
2668 static int bdrv_check_request(BlockDriverState *bs, int64_t sector_num,
2669                               int nb_sectors)
2670 {
2671     if (nb_sectors < 0 || nb_sectors > INT_MAX / BDRV_SECTOR_SIZE) {
2672         return -EIO;
2673     }
2674 
2675     return bdrv_check_byte_request(bs, sector_num * BDRV_SECTOR_SIZE,
2676                                    nb_sectors * BDRV_SECTOR_SIZE);
2677 }
2678 
2679 typedef struct RwCo {
2680     BlockDriverState *bs;
2681     int64_t offset;
2682     QEMUIOVector *qiov;
2683     bool is_write;
2684     int ret;
2685     BdrvRequestFlags flags;
2686 } RwCo;
2687 
2688 static void coroutine_fn bdrv_rw_co_entry(void *opaque)
2689 {
2690     RwCo *rwco = opaque;
2691 
2692     if (!rwco->is_write) {
2693         rwco->ret = bdrv_co_do_preadv(rwco->bs, rwco->offset,
2694                                       rwco->qiov->size, rwco->qiov,
2695                                       rwco->flags);
2696     } else {
2697         rwco->ret = bdrv_co_do_pwritev(rwco->bs, rwco->offset,
2698                                        rwco->qiov->size, rwco->qiov,
2699                                        rwco->flags);
2700     }
2701 }
2702 
2703 /*
2704  * Process a vectored synchronous request using coroutines
2705  */
2706 static int bdrv_prwv_co(BlockDriverState *bs, int64_t offset,
2707                         QEMUIOVector *qiov, bool is_write,
2708                         BdrvRequestFlags flags)
2709 {
2710     Coroutine *co;
2711     RwCo rwco = {
2712         .bs = bs,
2713         .offset = offset,
2714         .qiov = qiov,
2715         .is_write = is_write,
2716         .ret = NOT_DONE,
2717         .flags = flags,
2718     };
2719 
2720     /**
2721      * In sync call context, when the vcpu is blocked, this throttling timer
2722      * will not fire; so the I/O throttling function has to be disabled here
2723      * if it has been enabled.
2724      */
2725     if (bs->io_limits_enabled) {
2726         fprintf(stderr, "Disabling I/O throttling on '%s' due "
2727                         "to synchronous I/O.\n", bdrv_get_device_name(bs));
2728         bdrv_io_limits_disable(bs);
2729     }
2730 
2731     if (qemu_in_coroutine()) {
2732         /* Fast-path if already in coroutine context */
2733         bdrv_rw_co_entry(&rwco);
2734     } else {
2735         AioContext *aio_context = bdrv_get_aio_context(bs);
2736 
2737         co = qemu_coroutine_create(bdrv_rw_co_entry);
2738         qemu_coroutine_enter(co, &rwco);
2739         while (rwco.ret == NOT_DONE) {
2740             aio_poll(aio_context, true);
2741         }
2742     }
2743     return rwco.ret;
2744 }
2745 
2746 /*
2747  * Process a synchronous request using coroutines
2748  */
2749 static int bdrv_rw_co(BlockDriverState *bs, int64_t sector_num, uint8_t *buf,
2750                       int nb_sectors, bool is_write, BdrvRequestFlags flags)
2751 {
2752     QEMUIOVector qiov;
2753     struct iovec iov = {
2754         .iov_base = (void *)buf,
2755         .iov_len = nb_sectors * BDRV_SECTOR_SIZE,
2756     };
2757 
2758     if (nb_sectors < 0 || nb_sectors > INT_MAX / BDRV_SECTOR_SIZE) {
2759         return -EINVAL;
2760     }
2761 
2762     qemu_iovec_init_external(&qiov, &iov, 1);
2763     return bdrv_prwv_co(bs, sector_num << BDRV_SECTOR_BITS,
2764                         &qiov, is_write, flags);
2765 }
2766 
2767 /* return < 0 if error. See bdrv_write() for the return codes */
2768 int bdrv_read(BlockDriverState *bs, int64_t sector_num,
2769               uint8_t *buf, int nb_sectors)
2770 {
2771     return bdrv_rw_co(bs, sector_num, buf, nb_sectors, false, 0);
2772 }
2773 
2774 /* Just like bdrv_read(), but with I/O throttling temporarily disabled */
2775 int bdrv_read_unthrottled(BlockDriverState *bs, int64_t sector_num,
2776                           uint8_t *buf, int nb_sectors)
2777 {
2778     bool enabled;
2779     int ret;
2780 
2781     enabled = bs->io_limits_enabled;
2782     bs->io_limits_enabled = false;
2783     ret = bdrv_read(bs, sector_num, buf, nb_sectors);
2784     bs->io_limits_enabled = enabled;
2785     return ret;
2786 }
2787 
2788 /* Return < 0 if error. Important errors are:
2789   -EIO         generic I/O error (may happen for all errors)
2790   -ENOMEDIUM   No media inserted.
2791   -EINVAL      Invalid sector number or nb_sectors
2792   -EACCES      Trying to write a read-only device
2793 */
2794 int bdrv_write(BlockDriverState *bs, int64_t sector_num,
2795                const uint8_t *buf, int nb_sectors)
2796 {
2797     return bdrv_rw_co(bs, sector_num, (uint8_t *)buf, nb_sectors, true, 0);
2798 }
2799 
2800 int bdrv_write_zeroes(BlockDriverState *bs, int64_t sector_num,
2801                       int nb_sectors, BdrvRequestFlags flags)
2802 {
2803     return bdrv_rw_co(bs, sector_num, NULL, nb_sectors, true,
2804                       BDRV_REQ_ZERO_WRITE | flags);
2805 }
2806 
2807 /*
2808  * Completely zero out a block device with the help of bdrv_write_zeroes.
2809  * The operation is sped up by checking the block status and only writing
2810  * zeroes to the device if they currently do not return zeroes. Optional
2811  * flags are passed through to bdrv_write_zeroes (e.g. BDRV_REQ_MAY_UNMAP).
2812  *
2813  * Returns < 0 on error, 0 on success. For error codes see bdrv_write().
2814  */
2815 int bdrv_make_zero(BlockDriverState *bs, BdrvRequestFlags flags)
2816 {
2817     int64_t target_size;
2818     int64_t ret, nb_sectors, sector_num = 0;
2819     int n;
2820 
2821     target_size = bdrv_getlength(bs);
2822     if (target_size < 0) {
2823         return target_size;
2824     }
2825     target_size /= BDRV_SECTOR_SIZE;
2826 
2827     for (;;) {
2828         nb_sectors = target_size - sector_num;
2829         if (nb_sectors <= 0) {
2830             return 0;
2831         }
2832         if (nb_sectors > INT_MAX) {
2833             nb_sectors = INT_MAX;
2834         }
2835         ret = bdrv_get_block_status(bs, sector_num, nb_sectors, &n);
2836         if (ret < 0) {
2837             error_report("error getting block status at sector %" PRId64 ": %s",
2838                          sector_num, strerror(-ret));
2839             return ret;
2840         }
2841         if (ret & BDRV_BLOCK_ZERO) {
2842             sector_num += n;
2843             continue;
2844         }
2845         ret = bdrv_write_zeroes(bs, sector_num, n, flags);
2846         if (ret < 0) {
2847             error_report("error writing zeroes at sector %" PRId64 ": %s",
2848                          sector_num, strerror(-ret));
2849             return ret;
2850         }
2851         sector_num += n;
2852     }
2853 }
2854 
2855 int bdrv_pread(BlockDriverState *bs, int64_t offset, void *buf, int bytes)
2856 {
2857     QEMUIOVector qiov;
2858     struct iovec iov = {
2859         .iov_base = (void *)buf,
2860         .iov_len = bytes,
2861     };
2862     int ret;
2863 
2864     if (bytes < 0) {
2865         return -EINVAL;
2866     }
2867 
2868     qemu_iovec_init_external(&qiov, &iov, 1);
2869     ret = bdrv_prwv_co(bs, offset, &qiov, false, 0);
2870     if (ret < 0) {
2871         return ret;
2872     }
2873 
2874     return bytes;
2875 }
2876 
2877 int bdrv_pwritev(BlockDriverState *bs, int64_t offset, QEMUIOVector *qiov)
2878 {
2879     int ret;
2880 
2881     ret = bdrv_prwv_co(bs, offset, qiov, true, 0);
2882     if (ret < 0) {
2883         return ret;
2884     }
2885 
2886     return qiov->size;
2887 }
2888 
2889 int bdrv_pwrite(BlockDriverState *bs, int64_t offset,
2890                 const void *buf, int bytes)
2891 {
2892     QEMUIOVector qiov;
2893     struct iovec iov = {
2894         .iov_base   = (void *) buf,
2895         .iov_len    = bytes,
2896     };
2897 
2898     if (bytes < 0) {
2899         return -EINVAL;
2900     }
2901 
2902     qemu_iovec_init_external(&qiov, &iov, 1);
2903     return bdrv_pwritev(bs, offset, &qiov);
2904 }
2905 
2906 /*
2907  * Writes to the file and ensures that no writes are reordered across this
2908  * request (acts as a barrier)
2909  *
2910  * Returns 0 on success, -errno in error cases.
2911  */
2912 int bdrv_pwrite_sync(BlockDriverState *bs, int64_t offset,
2913     const void *buf, int count)
2914 {
2915     int ret;
2916 
2917     ret = bdrv_pwrite(bs, offset, buf, count);
2918     if (ret < 0) {
2919         return ret;
2920     }
2921 
2922     /* No flush needed for cache modes that already do it */
2923     if (bs->enable_write_cache) {
2924         bdrv_flush(bs);
2925     }
2926 
2927     return 0;
2928 }
2929 
2930 static int coroutine_fn bdrv_co_do_copy_on_readv(BlockDriverState *bs,
2931         int64_t sector_num, int nb_sectors, QEMUIOVector *qiov)
2932 {
2933     /* Perform I/O through a temporary buffer so that users who scribble over
2934      * their read buffer while the operation is in progress do not end up
2935      * modifying the image file.  This is critical for zero-copy guest I/O
2936      * where anything might happen inside guest memory.
2937      */
2938     void *bounce_buffer;
2939 
2940     BlockDriver *drv = bs->drv;
2941     struct iovec iov;
2942     QEMUIOVector bounce_qiov;
2943     int64_t cluster_sector_num;
2944     int cluster_nb_sectors;
2945     size_t skip_bytes;
2946     int ret;
2947 
2948     /* Cover entire cluster so no additional backing file I/O is required when
2949      * allocating cluster in the image file.
2950      */
2951     bdrv_round_to_clusters(bs, sector_num, nb_sectors,
2952                            &cluster_sector_num, &cluster_nb_sectors);
2953 
2954     trace_bdrv_co_do_copy_on_readv(bs, sector_num, nb_sectors,
2955                                    cluster_sector_num, cluster_nb_sectors);
2956 
2957     iov.iov_len = cluster_nb_sectors * BDRV_SECTOR_SIZE;
2958     iov.iov_base = bounce_buffer = qemu_blockalign(bs, iov.iov_len);
2959     qemu_iovec_init_external(&bounce_qiov, &iov, 1);
2960 
2961     ret = drv->bdrv_co_readv(bs, cluster_sector_num, cluster_nb_sectors,
2962                              &bounce_qiov);
2963     if (ret < 0) {
2964         goto err;
2965     }
2966 
2967     if (drv->bdrv_co_write_zeroes &&
2968         buffer_is_zero(bounce_buffer, iov.iov_len)) {
2969         ret = bdrv_co_do_write_zeroes(bs, cluster_sector_num,
2970                                       cluster_nb_sectors, 0);
2971     } else {
2972         /* This does not change the data on the disk, it is not necessary
2973          * to flush even in cache=writethrough mode.
2974          */
2975         ret = drv->bdrv_co_writev(bs, cluster_sector_num, cluster_nb_sectors,
2976                                   &bounce_qiov);
2977     }
2978 
2979     if (ret < 0) {
2980         /* It might be okay to ignore write errors for guest requests.  If this
2981          * is a deliberate copy-on-read then we don't want to ignore the error.
2982          * Simply report it in all cases.
2983          */
2984         goto err;
2985     }
2986 
2987     skip_bytes = (sector_num - cluster_sector_num) * BDRV_SECTOR_SIZE;
2988     qemu_iovec_from_buf(qiov, 0, bounce_buffer + skip_bytes,
2989                         nb_sectors * BDRV_SECTOR_SIZE);
2990 
2991 err:
2992     qemu_vfree(bounce_buffer);
2993     return ret;
2994 }
2995 
2996 /*
2997  * Forwards an already correctly aligned request to the BlockDriver. This
2998  * handles copy on read and zeroing after EOF; any other features must be
2999  * implemented by the caller.
3000  */
3001 static int coroutine_fn bdrv_aligned_preadv(BlockDriverState *bs,
3002     BdrvTrackedRequest *req, int64_t offset, unsigned int bytes,
3003     int64_t align, QEMUIOVector *qiov, int flags)
3004 {
3005     BlockDriver *drv = bs->drv;
3006     int ret;
3007 
3008     int64_t sector_num = offset >> BDRV_SECTOR_BITS;
3009     unsigned int nb_sectors = bytes >> BDRV_SECTOR_BITS;
3010 
3011     assert((offset & (BDRV_SECTOR_SIZE - 1)) == 0);
3012     assert((bytes & (BDRV_SECTOR_SIZE - 1)) == 0);
3013     assert(!qiov || bytes == qiov->size);
3014 
3015     /* Handle Copy on Read and associated serialisation */
3016     if (flags & BDRV_REQ_COPY_ON_READ) {
3017         /* If we touch the same cluster it counts as an overlap.  This
3018          * guarantees that allocating writes will be serialized and not race
3019          * with each other for the same cluster.  For example, in copy-on-read
3020          * it ensures that the CoR read and write operations are atomic and
3021          * guest writes cannot interleave between them. */
3022         mark_request_serialising(req, bdrv_get_cluster_size(bs));
3023     }
3024 
3025     wait_serialising_requests(req);
3026 
3027     if (flags & BDRV_REQ_COPY_ON_READ) {
3028         int pnum;
3029 
3030         ret = bdrv_is_allocated(bs, sector_num, nb_sectors, &pnum);
3031         if (ret < 0) {
3032             goto out;
3033         }
3034 
3035         if (!ret || pnum != nb_sectors) {
3036             ret = bdrv_co_do_copy_on_readv(bs, sector_num, nb_sectors, qiov);
3037             goto out;
3038         }
3039     }
3040 
3041     /* Forward the request to the BlockDriver */
3042     if (!(bs->zero_beyond_eof && bs->growable)) {
3043         ret = drv->bdrv_co_readv(bs, sector_num, nb_sectors, qiov);
3044     } else {
3045         /* Read zeros after EOF of growable BDSes */
3046         int64_t len, total_sectors, max_nb_sectors;
3047 
3048         len = bdrv_getlength(bs);
3049         if (len < 0) {
3050             ret = len;
3051             goto out;
3052         }
3053 
3054         total_sectors = DIV_ROUND_UP(len, BDRV_SECTOR_SIZE);
3055         max_nb_sectors = ROUND_UP(MAX(0, total_sectors - sector_num),
3056                                   align >> BDRV_SECTOR_BITS);
3057         if (max_nb_sectors > 0) {
3058             QEMUIOVector local_qiov;
3059             size_t local_sectors;
3060 
3061             max_nb_sectors = MIN(max_nb_sectors, SIZE_MAX / BDRV_SECTOR_BITS);
3062             local_sectors = MIN(max_nb_sectors, nb_sectors);
3063 
3064             qemu_iovec_init(&local_qiov, qiov->niov);
3065             qemu_iovec_concat(&local_qiov, qiov, 0,
3066                               local_sectors * BDRV_SECTOR_SIZE);
3067 
3068             ret = drv->bdrv_co_readv(bs, sector_num, local_sectors,
3069                                      &local_qiov);
3070 
3071             qemu_iovec_destroy(&local_qiov);
3072         } else {
3073             ret = 0;
3074         }
3075 
3076         /* Reading beyond end of file is supposed to produce zeroes */
3077         if (ret == 0 && total_sectors < sector_num + nb_sectors) {
3078             uint64_t offset = MAX(0, total_sectors - sector_num);
3079             uint64_t bytes = (sector_num + nb_sectors - offset) *
3080                               BDRV_SECTOR_SIZE;
3081             qemu_iovec_memset(qiov, offset * BDRV_SECTOR_SIZE, 0, bytes);
3082         }
3083     }
3084 
3085 out:
3086     return ret;
3087 }
3088 
3089 /*
3090  * Handle a read request in coroutine context
3091  */
3092 static int coroutine_fn bdrv_co_do_preadv(BlockDriverState *bs,
3093     int64_t offset, unsigned int bytes, QEMUIOVector *qiov,
3094     BdrvRequestFlags flags)
3095 {
3096     BlockDriver *drv = bs->drv;
3097     BdrvTrackedRequest req;
3098 
3099     /* TODO Lift BDRV_SECTOR_SIZE restriction in BlockDriver interface */
3100     uint64_t align = MAX(BDRV_SECTOR_SIZE, bs->request_alignment);
3101     uint8_t *head_buf = NULL;
3102     uint8_t *tail_buf = NULL;
3103     QEMUIOVector local_qiov;
3104     bool use_local_qiov = false;
3105     int ret;
3106 
3107     if (!drv) {
3108         return -ENOMEDIUM;
3109     }
3110     if (bdrv_check_byte_request(bs, offset, bytes)) {
3111         return -EIO;
3112     }
3113 
3114     if (bs->copy_on_read) {
3115         flags |= BDRV_REQ_COPY_ON_READ;
3116     }
3117 
3118     /* throttling disk I/O */
3119     if (bs->io_limits_enabled) {
3120         bdrv_io_limits_intercept(bs, bytes, false);
3121     }
3122 
3123     /* Align read if necessary by padding qiov */
3124     if (offset & (align - 1)) {
3125         head_buf = qemu_blockalign(bs, align);
3126         qemu_iovec_init(&local_qiov, qiov->niov + 2);
3127         qemu_iovec_add(&local_qiov, head_buf, offset & (align - 1));
3128         qemu_iovec_concat(&local_qiov, qiov, 0, qiov->size);
3129         use_local_qiov = true;
3130 
3131         bytes += offset & (align - 1);
3132         offset = offset & ~(align - 1);
3133     }
3134 
3135     if ((offset + bytes) & (align - 1)) {
3136         if (!use_local_qiov) {
3137             qemu_iovec_init(&local_qiov, qiov->niov + 1);
3138             qemu_iovec_concat(&local_qiov, qiov, 0, qiov->size);
3139             use_local_qiov = true;
3140         }
3141         tail_buf = qemu_blockalign(bs, align);
3142         qemu_iovec_add(&local_qiov, tail_buf,
3143                        align - ((offset + bytes) & (align - 1)));
3144 
3145         bytes = ROUND_UP(bytes, align);
3146     }
3147 
3148     tracked_request_begin(&req, bs, offset, bytes, false);
3149     ret = bdrv_aligned_preadv(bs, &req, offset, bytes, align,
3150                               use_local_qiov ? &local_qiov : qiov,
3151                               flags);
3152     tracked_request_end(&req);
3153 
3154     if (use_local_qiov) {
3155         qemu_iovec_destroy(&local_qiov);
3156         qemu_vfree(head_buf);
3157         qemu_vfree(tail_buf);
3158     }
3159 
3160     return ret;
3161 }
3162 
3163 static int coroutine_fn bdrv_co_do_readv(BlockDriverState *bs,
3164     int64_t sector_num, int nb_sectors, QEMUIOVector *qiov,
3165     BdrvRequestFlags flags)
3166 {
3167     if (nb_sectors < 0 || nb_sectors > (UINT_MAX >> BDRV_SECTOR_BITS)) {
3168         return -EINVAL;
3169     }
3170 
3171     return bdrv_co_do_preadv(bs, sector_num << BDRV_SECTOR_BITS,
3172                              nb_sectors << BDRV_SECTOR_BITS, qiov, flags);
3173 }
3174 
3175 int coroutine_fn bdrv_co_readv(BlockDriverState *bs, int64_t sector_num,
3176     int nb_sectors, QEMUIOVector *qiov)
3177 {
3178     trace_bdrv_co_readv(bs, sector_num, nb_sectors);
3179 
3180     return bdrv_co_do_readv(bs, sector_num, nb_sectors, qiov, 0);
3181 }
3182 
3183 int coroutine_fn bdrv_co_copy_on_readv(BlockDriverState *bs,
3184     int64_t sector_num, int nb_sectors, QEMUIOVector *qiov)
3185 {
3186     trace_bdrv_co_copy_on_readv(bs, sector_num, nb_sectors);
3187 
3188     return bdrv_co_do_readv(bs, sector_num, nb_sectors, qiov,
3189                             BDRV_REQ_COPY_ON_READ);
3190 }
3191 
3192 /* if no limit is specified in the BlockLimits use a default
3193  * of 32768 512-byte sectors (16 MiB) per request.
3194  */
3195 #define MAX_WRITE_ZEROES_DEFAULT 32768
3196 
3197 static int coroutine_fn bdrv_co_do_write_zeroes(BlockDriverState *bs,
3198     int64_t sector_num, int nb_sectors, BdrvRequestFlags flags)
3199 {
3200     BlockDriver *drv = bs->drv;
3201     QEMUIOVector qiov;
3202     struct iovec iov = {0};
3203     int ret = 0;
3204 
3205     int max_write_zeroes = bs->bl.max_write_zeroes ?
3206                            bs->bl.max_write_zeroes : MAX_WRITE_ZEROES_DEFAULT;
3207 
3208     while (nb_sectors > 0 && !ret) {
3209         int num = nb_sectors;
3210 
3211         /* Align request.  Block drivers can expect the "bulk" of the request
3212          * to be aligned.
3213          */
3214         if (bs->bl.write_zeroes_alignment
3215             && num > bs->bl.write_zeroes_alignment) {
3216             if (sector_num % bs->bl.write_zeroes_alignment != 0) {
3217                 /* Make a small request up to the first aligned sector.  */
3218                 num = bs->bl.write_zeroes_alignment;
3219                 num -= sector_num % bs->bl.write_zeroes_alignment;
3220             } else if ((sector_num + num) % bs->bl.write_zeroes_alignment != 0) {
3221                 /* Shorten the request to the last aligned sector.  num cannot
3222                  * underflow because num > bs->bl.write_zeroes_alignment.
3223                  */
3224                 num -= (sector_num + num) % bs->bl.write_zeroes_alignment;
3225             }
3226         }
3227 
3228         /* limit request size */
3229         if (num > max_write_zeroes) {
3230             num = max_write_zeroes;
3231         }
3232 
3233         ret = -ENOTSUP;
3234         /* First try the efficient write zeroes operation */
3235         if (drv->bdrv_co_write_zeroes) {
3236             ret = drv->bdrv_co_write_zeroes(bs, sector_num, num, flags);
3237         }
3238 
3239         if (ret == -ENOTSUP) {
3240             /* Fall back to bounce buffer if write zeroes is unsupported */
3241             iov.iov_len = num * BDRV_SECTOR_SIZE;
3242             if (iov.iov_base == NULL) {
3243                 iov.iov_base = qemu_blockalign(bs, num * BDRV_SECTOR_SIZE);
3244                 memset(iov.iov_base, 0, num * BDRV_SECTOR_SIZE);
3245             }
3246             qemu_iovec_init_external(&qiov, &iov, 1);
3247 
3248             ret = drv->bdrv_co_writev(bs, sector_num, num, &qiov);
3249 
3250             /* Keep bounce buffer around if it is big enough for all
3251              * all future requests.
3252              */
3253             if (num < max_write_zeroes) {
3254                 qemu_vfree(iov.iov_base);
3255                 iov.iov_base = NULL;
3256             }
3257         }
3258 
3259         sector_num += num;
3260         nb_sectors -= num;
3261     }
3262 
3263     qemu_vfree(iov.iov_base);
3264     return ret;
3265 }
3266 
3267 /*
3268  * Forwards an already correctly aligned write request to the BlockDriver.
3269  */
3270 static int coroutine_fn bdrv_aligned_pwritev(BlockDriverState *bs,
3271     BdrvTrackedRequest *req, int64_t offset, unsigned int bytes,
3272     QEMUIOVector *qiov, int flags)
3273 {
3274     BlockDriver *drv = bs->drv;
3275     bool waited;
3276     int ret;
3277 
3278     int64_t sector_num = offset >> BDRV_SECTOR_BITS;
3279     unsigned int nb_sectors = bytes >> BDRV_SECTOR_BITS;
3280 
3281     assert((offset & (BDRV_SECTOR_SIZE - 1)) == 0);
3282     assert((bytes & (BDRV_SECTOR_SIZE - 1)) == 0);
3283     assert(!qiov || bytes == qiov->size);
3284 
3285     waited = wait_serialising_requests(req);
3286     assert(!waited || !req->serialising);
3287     assert(req->overlap_offset <= offset);
3288     assert(offset + bytes <= req->overlap_offset + req->overlap_bytes);
3289 
3290     ret = notifier_with_return_list_notify(&bs->before_write_notifiers, req);
3291 
3292     if (!ret && bs->detect_zeroes != BLOCKDEV_DETECT_ZEROES_OPTIONS_OFF &&
3293         !(flags & BDRV_REQ_ZERO_WRITE) && drv->bdrv_co_write_zeroes &&
3294         qemu_iovec_is_zero(qiov)) {
3295         flags |= BDRV_REQ_ZERO_WRITE;
3296         if (bs->detect_zeroes == BLOCKDEV_DETECT_ZEROES_OPTIONS_UNMAP) {
3297             flags |= BDRV_REQ_MAY_UNMAP;
3298         }
3299     }
3300 
3301     if (ret < 0) {
3302         /* Do nothing, write notifier decided to fail this request */
3303     } else if (flags & BDRV_REQ_ZERO_WRITE) {
3304         BLKDBG_EVENT(bs, BLKDBG_PWRITEV_ZERO);
3305         ret = bdrv_co_do_write_zeroes(bs, sector_num, nb_sectors, flags);
3306     } else {
3307         BLKDBG_EVENT(bs, BLKDBG_PWRITEV);
3308         ret = drv->bdrv_co_writev(bs, sector_num, nb_sectors, qiov);
3309     }
3310     BLKDBG_EVENT(bs, BLKDBG_PWRITEV_DONE);
3311 
3312     if (ret == 0 && !bs->enable_write_cache) {
3313         ret = bdrv_co_flush(bs);
3314     }
3315 
3316     bdrv_set_dirty(bs, sector_num, nb_sectors);
3317 
3318     if (bs->wr_highest_sector < sector_num + nb_sectors - 1) {
3319         bs->wr_highest_sector = sector_num + nb_sectors - 1;
3320     }
3321     if (bs->growable && ret >= 0) {
3322         bs->total_sectors = MAX(bs->total_sectors, sector_num + nb_sectors);
3323     }
3324 
3325     return ret;
3326 }
3327 
3328 /*
3329  * Handle a write request in coroutine context
3330  */
3331 static int coroutine_fn bdrv_co_do_pwritev(BlockDriverState *bs,
3332     int64_t offset, unsigned int bytes, QEMUIOVector *qiov,
3333     BdrvRequestFlags flags)
3334 {
3335     BdrvTrackedRequest req;
3336     /* TODO Lift BDRV_SECTOR_SIZE restriction in BlockDriver interface */
3337     uint64_t align = MAX(BDRV_SECTOR_SIZE, bs->request_alignment);
3338     uint8_t *head_buf = NULL;
3339     uint8_t *tail_buf = NULL;
3340     QEMUIOVector local_qiov;
3341     bool use_local_qiov = false;
3342     int ret;
3343 
3344     if (!bs->drv) {
3345         return -ENOMEDIUM;
3346     }
3347     if (bs->read_only) {
3348         return -EACCES;
3349     }
3350     if (bdrv_check_byte_request(bs, offset, bytes)) {
3351         return -EIO;
3352     }
3353 
3354     /* throttling disk I/O */
3355     if (bs->io_limits_enabled) {
3356         bdrv_io_limits_intercept(bs, bytes, true);
3357     }
3358 
3359     /*
3360      * Align write if necessary by performing a read-modify-write cycle.
3361      * Pad qiov with the read parts and be sure to have a tracked request not
3362      * only for bdrv_aligned_pwritev, but also for the reads of the RMW cycle.
3363      */
3364     tracked_request_begin(&req, bs, offset, bytes, true);
3365 
3366     if (offset & (align - 1)) {
3367         QEMUIOVector head_qiov;
3368         struct iovec head_iov;
3369 
3370         mark_request_serialising(&req, align);
3371         wait_serialising_requests(&req);
3372 
3373         head_buf = qemu_blockalign(bs, align);
3374         head_iov = (struct iovec) {
3375             .iov_base   = head_buf,
3376             .iov_len    = align,
3377         };
3378         qemu_iovec_init_external(&head_qiov, &head_iov, 1);
3379 
3380         BLKDBG_EVENT(bs, BLKDBG_PWRITEV_RMW_HEAD);
3381         ret = bdrv_aligned_preadv(bs, &req, offset & ~(align - 1), align,
3382                                   align, &head_qiov, 0);
3383         if (ret < 0) {
3384             goto fail;
3385         }
3386         BLKDBG_EVENT(bs, BLKDBG_PWRITEV_RMW_AFTER_HEAD);
3387 
3388         qemu_iovec_init(&local_qiov, qiov->niov + 2);
3389         qemu_iovec_add(&local_qiov, head_buf, offset & (align - 1));
3390         qemu_iovec_concat(&local_qiov, qiov, 0, qiov->size);
3391         use_local_qiov = true;
3392 
3393         bytes += offset & (align - 1);
3394         offset = offset & ~(align - 1);
3395     }
3396 
3397     if ((offset + bytes) & (align - 1)) {
3398         QEMUIOVector tail_qiov;
3399         struct iovec tail_iov;
3400         size_t tail_bytes;
3401         bool waited;
3402 
3403         mark_request_serialising(&req, align);
3404         waited = wait_serialising_requests(&req);
3405         assert(!waited || !use_local_qiov);
3406 
3407         tail_buf = qemu_blockalign(bs, align);
3408         tail_iov = (struct iovec) {
3409             .iov_base   = tail_buf,
3410             .iov_len    = align,
3411         };
3412         qemu_iovec_init_external(&tail_qiov, &tail_iov, 1);
3413 
3414         BLKDBG_EVENT(bs, BLKDBG_PWRITEV_RMW_TAIL);
3415         ret = bdrv_aligned_preadv(bs, &req, (offset + bytes) & ~(align - 1), align,
3416                                   align, &tail_qiov, 0);
3417         if (ret < 0) {
3418             goto fail;
3419         }
3420         BLKDBG_EVENT(bs, BLKDBG_PWRITEV_RMW_AFTER_TAIL);
3421 
3422         if (!use_local_qiov) {
3423             qemu_iovec_init(&local_qiov, qiov->niov + 1);
3424             qemu_iovec_concat(&local_qiov, qiov, 0, qiov->size);
3425             use_local_qiov = true;
3426         }
3427 
3428         tail_bytes = (offset + bytes) & (align - 1);
3429         qemu_iovec_add(&local_qiov, tail_buf + tail_bytes, align - tail_bytes);
3430 
3431         bytes = ROUND_UP(bytes, align);
3432     }
3433 
3434     ret = bdrv_aligned_pwritev(bs, &req, offset, bytes,
3435                                use_local_qiov ? &local_qiov : qiov,
3436                                flags);
3437 
3438 fail:
3439     tracked_request_end(&req);
3440 
3441     if (use_local_qiov) {
3442         qemu_iovec_destroy(&local_qiov);
3443     }
3444     qemu_vfree(head_buf);
3445     qemu_vfree(tail_buf);
3446 
3447     return ret;
3448 }
3449 
3450 static int coroutine_fn bdrv_co_do_writev(BlockDriverState *bs,
3451     int64_t sector_num, int nb_sectors, QEMUIOVector *qiov,
3452     BdrvRequestFlags flags)
3453 {
3454     if (nb_sectors < 0 || nb_sectors > (INT_MAX >> BDRV_SECTOR_BITS)) {
3455         return -EINVAL;
3456     }
3457 
3458     return bdrv_co_do_pwritev(bs, sector_num << BDRV_SECTOR_BITS,
3459                               nb_sectors << BDRV_SECTOR_BITS, qiov, flags);
3460 }
3461 
3462 int coroutine_fn bdrv_co_writev(BlockDriverState *bs, int64_t sector_num,
3463     int nb_sectors, QEMUIOVector *qiov)
3464 {
3465     trace_bdrv_co_writev(bs, sector_num, nb_sectors);
3466 
3467     return bdrv_co_do_writev(bs, sector_num, nb_sectors, qiov, 0);
3468 }
3469 
3470 int coroutine_fn bdrv_co_write_zeroes(BlockDriverState *bs,
3471                                       int64_t sector_num, int nb_sectors,
3472                                       BdrvRequestFlags flags)
3473 {
3474     trace_bdrv_co_write_zeroes(bs, sector_num, nb_sectors, flags);
3475 
3476     if (!(bs->open_flags & BDRV_O_UNMAP)) {
3477         flags &= ~BDRV_REQ_MAY_UNMAP;
3478     }
3479 
3480     return bdrv_co_do_writev(bs, sector_num, nb_sectors, NULL,
3481                              BDRV_REQ_ZERO_WRITE | flags);
3482 }
3483 
3484 /**
3485  * Truncate file to 'offset' bytes (needed only for file protocols)
3486  */
3487 int bdrv_truncate(BlockDriverState *bs, int64_t offset)
3488 {
3489     BlockDriver *drv = bs->drv;
3490     int ret;
3491     if (!drv)
3492         return -ENOMEDIUM;
3493     if (!drv->bdrv_truncate)
3494         return -ENOTSUP;
3495     if (bs->read_only)
3496         return -EACCES;
3497 
3498     ret = drv->bdrv_truncate(bs, offset);
3499     if (ret == 0) {
3500         ret = refresh_total_sectors(bs, offset >> BDRV_SECTOR_BITS);
3501         bdrv_dev_resize_cb(bs);
3502     }
3503     return ret;
3504 }
3505 
3506 /**
3507  * Length of a allocated file in bytes. Sparse files are counted by actual
3508  * allocated space. Return < 0 if error or unknown.
3509  */
3510 int64_t bdrv_get_allocated_file_size(BlockDriverState *bs)
3511 {
3512     BlockDriver *drv = bs->drv;
3513     if (!drv) {
3514         return -ENOMEDIUM;
3515     }
3516     if (drv->bdrv_get_allocated_file_size) {
3517         return drv->bdrv_get_allocated_file_size(bs);
3518     }
3519     if (bs->file) {
3520         return bdrv_get_allocated_file_size(bs->file);
3521     }
3522     return -ENOTSUP;
3523 }
3524 
3525 /**
3526  * Length of a file in bytes. Return < 0 if error or unknown.
3527  */
3528 int64_t bdrv_getlength(BlockDriverState *bs)
3529 {
3530     BlockDriver *drv = bs->drv;
3531     if (!drv)
3532         return -ENOMEDIUM;
3533 
3534     if (drv->has_variable_length) {
3535         int ret = refresh_total_sectors(bs, bs->total_sectors);
3536         if (ret < 0) {
3537             return ret;
3538         }
3539     }
3540     return bs->total_sectors * BDRV_SECTOR_SIZE;
3541 }
3542 
3543 /* return 0 as number of sectors if no device present or error */
3544 void bdrv_get_geometry(BlockDriverState *bs, uint64_t *nb_sectors_ptr)
3545 {
3546     int64_t length;
3547     length = bdrv_getlength(bs);
3548     if (length < 0)
3549         length = 0;
3550     else
3551         length = length >> BDRV_SECTOR_BITS;
3552     *nb_sectors_ptr = length;
3553 }
3554 
3555 void bdrv_set_on_error(BlockDriverState *bs, BlockdevOnError on_read_error,
3556                        BlockdevOnError on_write_error)
3557 {
3558     bs->on_read_error = on_read_error;
3559     bs->on_write_error = on_write_error;
3560 }
3561 
3562 BlockdevOnError bdrv_get_on_error(BlockDriverState *bs, bool is_read)
3563 {
3564     return is_read ? bs->on_read_error : bs->on_write_error;
3565 }
3566 
3567 BlockErrorAction bdrv_get_error_action(BlockDriverState *bs, bool is_read, int error)
3568 {
3569     BlockdevOnError on_err = is_read ? bs->on_read_error : bs->on_write_error;
3570 
3571     switch (on_err) {
3572     case BLOCKDEV_ON_ERROR_ENOSPC:
3573         return (error == ENOSPC) ?
3574                BLOCK_ERROR_ACTION_STOP : BLOCK_ERROR_ACTION_REPORT;
3575     case BLOCKDEV_ON_ERROR_STOP:
3576         return BLOCK_ERROR_ACTION_STOP;
3577     case BLOCKDEV_ON_ERROR_REPORT:
3578         return BLOCK_ERROR_ACTION_REPORT;
3579     case BLOCKDEV_ON_ERROR_IGNORE:
3580         return BLOCK_ERROR_ACTION_IGNORE;
3581     default:
3582         abort();
3583     }
3584 }
3585 
3586 /* This is done by device models because, while the block layer knows
3587  * about the error, it does not know whether an operation comes from
3588  * the device or the block layer (from a job, for example).
3589  */
3590 void bdrv_error_action(BlockDriverState *bs, BlockErrorAction action,
3591                        bool is_read, int error)
3592 {
3593     assert(error >= 0);
3594 
3595     if (action == BLOCK_ERROR_ACTION_STOP) {
3596         /* First set the iostatus, so that "info block" returns an iostatus
3597          * that matches the events raised so far (an additional error iostatus
3598          * is fine, but not a lost one).
3599          */
3600         bdrv_iostatus_set_err(bs, error);
3601 
3602         /* Then raise the request to stop the VM and the event.
3603          * qemu_system_vmstop_request_prepare has two effects.  First,
3604          * it ensures that the STOP event always comes after the
3605          * BLOCK_IO_ERROR event.  Second, it ensures that even if management
3606          * can observe the STOP event and do a "cont" before the STOP
3607          * event is issued, the VM will not stop.  In this case, vm_start()
3608          * also ensures that the STOP/RESUME pair of events is emitted.
3609          */
3610         qemu_system_vmstop_request_prepare();
3611         qapi_event_send_block_io_error(bdrv_get_device_name(bs),
3612                                        is_read ? IO_OPERATION_TYPE_READ :
3613                                        IO_OPERATION_TYPE_WRITE,
3614                                        action, &error_abort);
3615         qemu_system_vmstop_request(RUN_STATE_IO_ERROR);
3616     } else {
3617         qapi_event_send_block_io_error(bdrv_get_device_name(bs),
3618                                        is_read ? IO_OPERATION_TYPE_READ :
3619                                        IO_OPERATION_TYPE_WRITE,
3620                                        action, &error_abort);
3621     }
3622 }
3623 
3624 int bdrv_is_read_only(BlockDriverState *bs)
3625 {
3626     return bs->read_only;
3627 }
3628 
3629 int bdrv_is_sg(BlockDriverState *bs)
3630 {
3631     return bs->sg;
3632 }
3633 
3634 int bdrv_enable_write_cache(BlockDriverState *bs)
3635 {
3636     return bs->enable_write_cache;
3637 }
3638 
3639 void bdrv_set_enable_write_cache(BlockDriverState *bs, bool wce)
3640 {
3641     bs->enable_write_cache = wce;
3642 
3643     /* so a reopen() will preserve wce */
3644     if (wce) {
3645         bs->open_flags |= BDRV_O_CACHE_WB;
3646     } else {
3647         bs->open_flags &= ~BDRV_O_CACHE_WB;
3648     }
3649 }
3650 
3651 int bdrv_is_encrypted(BlockDriverState *bs)
3652 {
3653     if (bs->backing_hd && bs->backing_hd->encrypted)
3654         return 1;
3655     return bs->encrypted;
3656 }
3657 
3658 int bdrv_key_required(BlockDriverState *bs)
3659 {
3660     BlockDriverState *backing_hd = bs->backing_hd;
3661 
3662     if (backing_hd && backing_hd->encrypted && !backing_hd->valid_key)
3663         return 1;
3664     return (bs->encrypted && !bs->valid_key);
3665 }
3666 
3667 int bdrv_set_key(BlockDriverState *bs, const char *key)
3668 {
3669     int ret;
3670     if (bs->backing_hd && bs->backing_hd->encrypted) {
3671         ret = bdrv_set_key(bs->backing_hd, key);
3672         if (ret < 0)
3673             return ret;
3674         if (!bs->encrypted)
3675             return 0;
3676     }
3677     if (!bs->encrypted) {
3678         return -EINVAL;
3679     } else if (!bs->drv || !bs->drv->bdrv_set_key) {
3680         return -ENOMEDIUM;
3681     }
3682     ret = bs->drv->bdrv_set_key(bs, key);
3683     if (ret < 0) {
3684         bs->valid_key = 0;
3685     } else if (!bs->valid_key) {
3686         bs->valid_key = 1;
3687         /* call the change callback now, we skipped it on open */
3688         bdrv_dev_change_media_cb(bs, true);
3689     }
3690     return ret;
3691 }
3692 
3693 const char *bdrv_get_format_name(BlockDriverState *bs)
3694 {
3695     return bs->drv ? bs->drv->format_name : NULL;
3696 }
3697 
3698 void bdrv_iterate_format(void (*it)(void *opaque, const char *name),
3699                          void *opaque)
3700 {
3701     BlockDriver *drv;
3702     int count = 0;
3703     const char **formats = NULL;
3704 
3705     QLIST_FOREACH(drv, &bdrv_drivers, list) {
3706         if (drv->format_name) {
3707             bool found = false;
3708             int i = count;
3709             while (formats && i && !found) {
3710                 found = !strcmp(formats[--i], drv->format_name);
3711             }
3712 
3713             if (!found) {
3714                 formats = g_realloc(formats, (count + 1) * sizeof(char *));
3715                 formats[count++] = drv->format_name;
3716                 it(opaque, drv->format_name);
3717             }
3718         }
3719     }
3720     g_free(formats);
3721 }
3722 
3723 /* This function is to find block backend bs */
3724 BlockDriverState *bdrv_find(const char *name)
3725 {
3726     BlockDriverState *bs;
3727 
3728     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
3729         if (!strcmp(name, bs->device_name)) {
3730             return bs;
3731         }
3732     }
3733     return NULL;
3734 }
3735 
3736 /* This function is to find a node in the bs graph */
3737 BlockDriverState *bdrv_find_node(const char *node_name)
3738 {
3739     BlockDriverState *bs;
3740 
3741     assert(node_name);
3742 
3743     QTAILQ_FOREACH(bs, &graph_bdrv_states, node_list) {
3744         if (!strcmp(node_name, bs->node_name)) {
3745             return bs;
3746         }
3747     }
3748     return NULL;
3749 }
3750 
3751 /* Put this QMP function here so it can access the static graph_bdrv_states. */
3752 BlockDeviceInfoList *bdrv_named_nodes_list(void)
3753 {
3754     BlockDeviceInfoList *list, *entry;
3755     BlockDriverState *bs;
3756 
3757     list = NULL;
3758     QTAILQ_FOREACH(bs, &graph_bdrv_states, node_list) {
3759         entry = g_malloc0(sizeof(*entry));
3760         entry->value = bdrv_block_device_info(bs);
3761         entry->next = list;
3762         list = entry;
3763     }
3764 
3765     return list;
3766 }
3767 
3768 BlockDriverState *bdrv_lookup_bs(const char *device,
3769                                  const char *node_name,
3770                                  Error **errp)
3771 {
3772     BlockDriverState *bs = NULL;
3773 
3774     if (device) {
3775         bs = bdrv_find(device);
3776 
3777         if (bs) {
3778             return bs;
3779         }
3780     }
3781 
3782     if (node_name) {
3783         bs = bdrv_find_node(node_name);
3784 
3785         if (bs) {
3786             return bs;
3787         }
3788     }
3789 
3790     error_setg(errp, "Cannot find device=%s nor node_name=%s",
3791                      device ? device : "",
3792                      node_name ? node_name : "");
3793     return NULL;
3794 }
3795 
3796 /* If 'base' is in the same chain as 'top', return true. Otherwise,
3797  * return false.  If either argument is NULL, return false. */
3798 bool bdrv_chain_contains(BlockDriverState *top, BlockDriverState *base)
3799 {
3800     while (top && top != base) {
3801         top = top->backing_hd;
3802     }
3803 
3804     return top != NULL;
3805 }
3806 
3807 BlockDriverState *bdrv_next(BlockDriverState *bs)
3808 {
3809     if (!bs) {
3810         return QTAILQ_FIRST(&bdrv_states);
3811     }
3812     return QTAILQ_NEXT(bs, device_list);
3813 }
3814 
3815 void bdrv_iterate(void (*it)(void *opaque, BlockDriverState *bs), void *opaque)
3816 {
3817     BlockDriverState *bs;
3818 
3819     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
3820         it(opaque, bs);
3821     }
3822 }
3823 
3824 const char *bdrv_get_device_name(BlockDriverState *bs)
3825 {
3826     return bs->device_name;
3827 }
3828 
3829 int bdrv_get_flags(BlockDriverState *bs)
3830 {
3831     return bs->open_flags;
3832 }
3833 
3834 int bdrv_flush_all(void)
3835 {
3836     BlockDriverState *bs;
3837     int result = 0;
3838 
3839     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
3840         AioContext *aio_context = bdrv_get_aio_context(bs);
3841         int ret;
3842 
3843         aio_context_acquire(aio_context);
3844         ret = bdrv_flush(bs);
3845         if (ret < 0 && !result) {
3846             result = ret;
3847         }
3848         aio_context_release(aio_context);
3849     }
3850 
3851     return result;
3852 }
3853 
3854 int bdrv_has_zero_init_1(BlockDriverState *bs)
3855 {
3856     return 1;
3857 }
3858 
3859 int bdrv_has_zero_init(BlockDriverState *bs)
3860 {
3861     assert(bs->drv);
3862 
3863     /* If BS is a copy on write image, it is initialized to
3864        the contents of the base image, which may not be zeroes.  */
3865     if (bs->backing_hd) {
3866         return 0;
3867     }
3868     if (bs->drv->bdrv_has_zero_init) {
3869         return bs->drv->bdrv_has_zero_init(bs);
3870     }
3871 
3872     /* safe default */
3873     return 0;
3874 }
3875 
3876 bool bdrv_unallocated_blocks_are_zero(BlockDriverState *bs)
3877 {
3878     BlockDriverInfo bdi;
3879 
3880     if (bs->backing_hd) {
3881         return false;
3882     }
3883 
3884     if (bdrv_get_info(bs, &bdi) == 0) {
3885         return bdi.unallocated_blocks_are_zero;
3886     }
3887 
3888     return false;
3889 }
3890 
3891 bool bdrv_can_write_zeroes_with_unmap(BlockDriverState *bs)
3892 {
3893     BlockDriverInfo bdi;
3894 
3895     if (bs->backing_hd || !(bs->open_flags & BDRV_O_UNMAP)) {
3896         return false;
3897     }
3898 
3899     if (bdrv_get_info(bs, &bdi) == 0) {
3900         return bdi.can_write_zeroes_with_unmap;
3901     }
3902 
3903     return false;
3904 }
3905 
3906 typedef struct BdrvCoGetBlockStatusData {
3907     BlockDriverState *bs;
3908     BlockDriverState *base;
3909     int64_t sector_num;
3910     int nb_sectors;
3911     int *pnum;
3912     int64_t ret;
3913     bool done;
3914 } BdrvCoGetBlockStatusData;
3915 
3916 /*
3917  * Returns true iff the specified sector is present in the disk image. Drivers
3918  * not implementing the functionality are assumed to not support backing files,
3919  * hence all their sectors are reported as allocated.
3920  *
3921  * If 'sector_num' is beyond the end of the disk image the return value is 0
3922  * and 'pnum' is set to 0.
3923  *
3924  * 'pnum' is set to the number of sectors (including and immediately following
3925  * the specified sector) that are known to be in the same
3926  * allocated/unallocated state.
3927  *
3928  * 'nb_sectors' is the max value 'pnum' should be set to.  If nb_sectors goes
3929  * beyond the end of the disk image it will be clamped.
3930  */
3931 static int64_t coroutine_fn bdrv_co_get_block_status(BlockDriverState *bs,
3932                                                      int64_t sector_num,
3933                                                      int nb_sectors, int *pnum)
3934 {
3935     int64_t length;
3936     int64_t n;
3937     int64_t ret, ret2;
3938 
3939     length = bdrv_getlength(bs);
3940     if (length < 0) {
3941         return length;
3942     }
3943 
3944     if (sector_num >= (length >> BDRV_SECTOR_BITS)) {
3945         *pnum = 0;
3946         return 0;
3947     }
3948 
3949     n = bs->total_sectors - sector_num;
3950     if (n < nb_sectors) {
3951         nb_sectors = n;
3952     }
3953 
3954     if (!bs->drv->bdrv_co_get_block_status) {
3955         *pnum = nb_sectors;
3956         ret = BDRV_BLOCK_DATA | BDRV_BLOCK_ALLOCATED;
3957         if (bs->drv->protocol_name) {
3958             ret |= BDRV_BLOCK_OFFSET_VALID | (sector_num * BDRV_SECTOR_SIZE);
3959         }
3960         return ret;
3961     }
3962 
3963     ret = bs->drv->bdrv_co_get_block_status(bs, sector_num, nb_sectors, pnum);
3964     if (ret < 0) {
3965         *pnum = 0;
3966         return ret;
3967     }
3968 
3969     if (ret & BDRV_BLOCK_RAW) {
3970         assert(ret & BDRV_BLOCK_OFFSET_VALID);
3971         return bdrv_get_block_status(bs->file, ret >> BDRV_SECTOR_BITS,
3972                                      *pnum, pnum);
3973     }
3974 
3975     if (ret & (BDRV_BLOCK_DATA | BDRV_BLOCK_ZERO)) {
3976         ret |= BDRV_BLOCK_ALLOCATED;
3977     }
3978 
3979     if (!(ret & BDRV_BLOCK_DATA) && !(ret & BDRV_BLOCK_ZERO)) {
3980         if (bdrv_unallocated_blocks_are_zero(bs)) {
3981             ret |= BDRV_BLOCK_ZERO;
3982         } else if (bs->backing_hd) {
3983             BlockDriverState *bs2 = bs->backing_hd;
3984             int64_t length2 = bdrv_getlength(bs2);
3985             if (length2 >= 0 && sector_num >= (length2 >> BDRV_SECTOR_BITS)) {
3986                 ret |= BDRV_BLOCK_ZERO;
3987             }
3988         }
3989     }
3990 
3991     if (bs->file &&
3992         (ret & BDRV_BLOCK_DATA) && !(ret & BDRV_BLOCK_ZERO) &&
3993         (ret & BDRV_BLOCK_OFFSET_VALID)) {
3994         ret2 = bdrv_co_get_block_status(bs->file, ret >> BDRV_SECTOR_BITS,
3995                                         *pnum, pnum);
3996         if (ret2 >= 0) {
3997             /* Ignore errors.  This is just providing extra information, it
3998              * is useful but not necessary.
3999              */
4000             ret |= (ret2 & BDRV_BLOCK_ZERO);
4001         }
4002     }
4003 
4004     return ret;
4005 }
4006 
4007 /* Coroutine wrapper for bdrv_get_block_status() */
4008 static void coroutine_fn bdrv_get_block_status_co_entry(void *opaque)
4009 {
4010     BdrvCoGetBlockStatusData *data = opaque;
4011     BlockDriverState *bs = data->bs;
4012 
4013     data->ret = bdrv_co_get_block_status(bs, data->sector_num, data->nb_sectors,
4014                                          data->pnum);
4015     data->done = true;
4016 }
4017 
4018 /*
4019  * Synchronous wrapper around bdrv_co_get_block_status().
4020  *
4021  * See bdrv_co_get_block_status() for details.
4022  */
4023 int64_t bdrv_get_block_status(BlockDriverState *bs, int64_t sector_num,
4024                               int nb_sectors, int *pnum)
4025 {
4026     Coroutine *co;
4027     BdrvCoGetBlockStatusData data = {
4028         .bs = bs,
4029         .sector_num = sector_num,
4030         .nb_sectors = nb_sectors,
4031         .pnum = pnum,
4032         .done = false,
4033     };
4034 
4035     if (qemu_in_coroutine()) {
4036         /* Fast-path if already in coroutine context */
4037         bdrv_get_block_status_co_entry(&data);
4038     } else {
4039         AioContext *aio_context = bdrv_get_aio_context(bs);
4040 
4041         co = qemu_coroutine_create(bdrv_get_block_status_co_entry);
4042         qemu_coroutine_enter(co, &data);
4043         while (!data.done) {
4044             aio_poll(aio_context, true);
4045         }
4046     }
4047     return data.ret;
4048 }
4049 
4050 int coroutine_fn bdrv_is_allocated(BlockDriverState *bs, int64_t sector_num,
4051                                    int nb_sectors, int *pnum)
4052 {
4053     int64_t ret = bdrv_get_block_status(bs, sector_num, nb_sectors, pnum);
4054     if (ret < 0) {
4055         return ret;
4056     }
4057     return !!(ret & BDRV_BLOCK_ALLOCATED);
4058 }
4059 
4060 /*
4061  * Given an image chain: ... -> [BASE] -> [INTER1] -> [INTER2] -> [TOP]
4062  *
4063  * Return true if the given sector is allocated in any image between
4064  * BASE and TOP (inclusive).  BASE can be NULL to check if the given
4065  * sector is allocated in any image of the chain.  Return false otherwise.
4066  *
4067  * 'pnum' is set to the number of sectors (including and immediately following
4068  *  the specified sector) that are known to be in the same
4069  *  allocated/unallocated state.
4070  *
4071  */
4072 int bdrv_is_allocated_above(BlockDriverState *top,
4073                             BlockDriverState *base,
4074                             int64_t sector_num,
4075                             int nb_sectors, int *pnum)
4076 {
4077     BlockDriverState *intermediate;
4078     int ret, n = nb_sectors;
4079 
4080     intermediate = top;
4081     while (intermediate && intermediate != base) {
4082         int pnum_inter;
4083         ret = bdrv_is_allocated(intermediate, sector_num, nb_sectors,
4084                                 &pnum_inter);
4085         if (ret < 0) {
4086             return ret;
4087         } else if (ret) {
4088             *pnum = pnum_inter;
4089             return 1;
4090         }
4091 
4092         /*
4093          * [sector_num, nb_sectors] is unallocated on top but intermediate
4094          * might have
4095          *
4096          * [sector_num+x, nr_sectors] allocated.
4097          */
4098         if (n > pnum_inter &&
4099             (intermediate == top ||
4100              sector_num + pnum_inter < intermediate->total_sectors)) {
4101             n = pnum_inter;
4102         }
4103 
4104         intermediate = intermediate->backing_hd;
4105     }
4106 
4107     *pnum = n;
4108     return 0;
4109 }
4110 
4111 const char *bdrv_get_encrypted_filename(BlockDriverState *bs)
4112 {
4113     if (bs->backing_hd && bs->backing_hd->encrypted)
4114         return bs->backing_file;
4115     else if (bs->encrypted)
4116         return bs->filename;
4117     else
4118         return NULL;
4119 }
4120 
4121 void bdrv_get_backing_filename(BlockDriverState *bs,
4122                                char *filename, int filename_size)
4123 {
4124     pstrcpy(filename, filename_size, bs->backing_file);
4125 }
4126 
4127 int bdrv_write_compressed(BlockDriverState *bs, int64_t sector_num,
4128                           const uint8_t *buf, int nb_sectors)
4129 {
4130     BlockDriver *drv = bs->drv;
4131     if (!drv)
4132         return -ENOMEDIUM;
4133     if (!drv->bdrv_write_compressed)
4134         return -ENOTSUP;
4135     if (bdrv_check_request(bs, sector_num, nb_sectors))
4136         return -EIO;
4137 
4138     assert(QLIST_EMPTY(&bs->dirty_bitmaps));
4139 
4140     return drv->bdrv_write_compressed(bs, sector_num, buf, nb_sectors);
4141 }
4142 
4143 int bdrv_get_info(BlockDriverState *bs, BlockDriverInfo *bdi)
4144 {
4145     BlockDriver *drv = bs->drv;
4146     if (!drv)
4147         return -ENOMEDIUM;
4148     if (!drv->bdrv_get_info)
4149         return -ENOTSUP;
4150     memset(bdi, 0, sizeof(*bdi));
4151     return drv->bdrv_get_info(bs, bdi);
4152 }
4153 
4154 ImageInfoSpecific *bdrv_get_specific_info(BlockDriverState *bs)
4155 {
4156     BlockDriver *drv = bs->drv;
4157     if (drv && drv->bdrv_get_specific_info) {
4158         return drv->bdrv_get_specific_info(bs);
4159     }
4160     return NULL;
4161 }
4162 
4163 int bdrv_save_vmstate(BlockDriverState *bs, const uint8_t *buf,
4164                       int64_t pos, int size)
4165 {
4166     QEMUIOVector qiov;
4167     struct iovec iov = {
4168         .iov_base   = (void *) buf,
4169         .iov_len    = size,
4170     };
4171 
4172     qemu_iovec_init_external(&qiov, &iov, 1);
4173     return bdrv_writev_vmstate(bs, &qiov, pos);
4174 }
4175 
4176 int bdrv_writev_vmstate(BlockDriverState *bs, QEMUIOVector *qiov, int64_t pos)
4177 {
4178     BlockDriver *drv = bs->drv;
4179 
4180     if (!drv) {
4181         return -ENOMEDIUM;
4182     } else if (drv->bdrv_save_vmstate) {
4183         return drv->bdrv_save_vmstate(bs, qiov, pos);
4184     } else if (bs->file) {
4185         return bdrv_writev_vmstate(bs->file, qiov, pos);
4186     }
4187 
4188     return -ENOTSUP;
4189 }
4190 
4191 int bdrv_load_vmstate(BlockDriverState *bs, uint8_t *buf,
4192                       int64_t pos, int size)
4193 {
4194     BlockDriver *drv = bs->drv;
4195     if (!drv)
4196         return -ENOMEDIUM;
4197     if (drv->bdrv_load_vmstate)
4198         return drv->bdrv_load_vmstate(bs, buf, pos, size);
4199     if (bs->file)
4200         return bdrv_load_vmstate(bs->file, buf, pos, size);
4201     return -ENOTSUP;
4202 }
4203 
4204 void bdrv_debug_event(BlockDriverState *bs, BlkDebugEvent event)
4205 {
4206     if (!bs || !bs->drv || !bs->drv->bdrv_debug_event) {
4207         return;
4208     }
4209 
4210     bs->drv->bdrv_debug_event(bs, event);
4211 }
4212 
4213 int bdrv_debug_breakpoint(BlockDriverState *bs, const char *event,
4214                           const char *tag)
4215 {
4216     while (bs && bs->drv && !bs->drv->bdrv_debug_breakpoint) {
4217         bs = bs->file;
4218     }
4219 
4220     if (bs && bs->drv && bs->drv->bdrv_debug_breakpoint) {
4221         return bs->drv->bdrv_debug_breakpoint(bs, event, tag);
4222     }
4223 
4224     return -ENOTSUP;
4225 }
4226 
4227 int bdrv_debug_remove_breakpoint(BlockDriverState *bs, const char *tag)
4228 {
4229     while (bs && bs->drv && !bs->drv->bdrv_debug_remove_breakpoint) {
4230         bs = bs->file;
4231     }
4232 
4233     if (bs && bs->drv && bs->drv->bdrv_debug_remove_breakpoint) {
4234         return bs->drv->bdrv_debug_remove_breakpoint(bs, tag);
4235     }
4236 
4237     return -ENOTSUP;
4238 }
4239 
4240 int bdrv_debug_resume(BlockDriverState *bs, const char *tag)
4241 {
4242     while (bs && (!bs->drv || !bs->drv->bdrv_debug_resume)) {
4243         bs = bs->file;
4244     }
4245 
4246     if (bs && bs->drv && bs->drv->bdrv_debug_resume) {
4247         return bs->drv->bdrv_debug_resume(bs, tag);
4248     }
4249 
4250     return -ENOTSUP;
4251 }
4252 
4253 bool bdrv_debug_is_suspended(BlockDriverState *bs, const char *tag)
4254 {
4255     while (bs && bs->drv && !bs->drv->bdrv_debug_is_suspended) {
4256         bs = bs->file;
4257     }
4258 
4259     if (bs && bs->drv && bs->drv->bdrv_debug_is_suspended) {
4260         return bs->drv->bdrv_debug_is_suspended(bs, tag);
4261     }
4262 
4263     return false;
4264 }
4265 
4266 int bdrv_is_snapshot(BlockDriverState *bs)
4267 {
4268     return !!(bs->open_flags & BDRV_O_SNAPSHOT);
4269 }
4270 
4271 /* backing_file can either be relative, or absolute, or a protocol.  If it is
4272  * relative, it must be relative to the chain.  So, passing in bs->filename
4273  * from a BDS as backing_file should not be done, as that may be relative to
4274  * the CWD rather than the chain. */
4275 BlockDriverState *bdrv_find_backing_image(BlockDriverState *bs,
4276         const char *backing_file)
4277 {
4278     char *filename_full = NULL;
4279     char *backing_file_full = NULL;
4280     char *filename_tmp = NULL;
4281     int is_protocol = 0;
4282     BlockDriverState *curr_bs = NULL;
4283     BlockDriverState *retval = NULL;
4284 
4285     if (!bs || !bs->drv || !backing_file) {
4286         return NULL;
4287     }
4288 
4289     filename_full     = g_malloc(PATH_MAX);
4290     backing_file_full = g_malloc(PATH_MAX);
4291     filename_tmp      = g_malloc(PATH_MAX);
4292 
4293     is_protocol = path_has_protocol(backing_file);
4294 
4295     for (curr_bs = bs; curr_bs->backing_hd; curr_bs = curr_bs->backing_hd) {
4296 
4297         /* If either of the filename paths is actually a protocol, then
4298          * compare unmodified paths; otherwise make paths relative */
4299         if (is_protocol || path_has_protocol(curr_bs->backing_file)) {
4300             if (strcmp(backing_file, curr_bs->backing_file) == 0) {
4301                 retval = curr_bs->backing_hd;
4302                 break;
4303             }
4304         } else {
4305             /* If not an absolute filename path, make it relative to the current
4306              * image's filename path */
4307             path_combine(filename_tmp, PATH_MAX, curr_bs->filename,
4308                          backing_file);
4309 
4310             /* We are going to compare absolute pathnames */
4311             if (!realpath(filename_tmp, filename_full)) {
4312                 continue;
4313             }
4314 
4315             /* We need to make sure the backing filename we are comparing against
4316              * is relative to the current image filename (or absolute) */
4317             path_combine(filename_tmp, PATH_MAX, curr_bs->filename,
4318                          curr_bs->backing_file);
4319 
4320             if (!realpath(filename_tmp, backing_file_full)) {
4321                 continue;
4322             }
4323 
4324             if (strcmp(backing_file_full, filename_full) == 0) {
4325                 retval = curr_bs->backing_hd;
4326                 break;
4327             }
4328         }
4329     }
4330 
4331     g_free(filename_full);
4332     g_free(backing_file_full);
4333     g_free(filename_tmp);
4334     return retval;
4335 }
4336 
4337 int bdrv_get_backing_file_depth(BlockDriverState *bs)
4338 {
4339     if (!bs->drv) {
4340         return 0;
4341     }
4342 
4343     if (!bs->backing_hd) {
4344         return 0;
4345     }
4346 
4347     return 1 + bdrv_get_backing_file_depth(bs->backing_hd);
4348 }
4349 
4350 /**************************************************************/
4351 /* async I/Os */
4352 
4353 BlockDriverAIOCB *bdrv_aio_readv(BlockDriverState *bs, int64_t sector_num,
4354                                  QEMUIOVector *qiov, int nb_sectors,
4355                                  BlockDriverCompletionFunc *cb, void *opaque)
4356 {
4357     trace_bdrv_aio_readv(bs, sector_num, nb_sectors, opaque);
4358 
4359     return bdrv_co_aio_rw_vector(bs, sector_num, qiov, nb_sectors, 0,
4360                                  cb, opaque, false);
4361 }
4362 
4363 BlockDriverAIOCB *bdrv_aio_writev(BlockDriverState *bs, int64_t sector_num,
4364                                   QEMUIOVector *qiov, int nb_sectors,
4365                                   BlockDriverCompletionFunc *cb, void *opaque)
4366 {
4367     trace_bdrv_aio_writev(bs, sector_num, nb_sectors, opaque);
4368 
4369     return bdrv_co_aio_rw_vector(bs, sector_num, qiov, nb_sectors, 0,
4370                                  cb, opaque, true);
4371 }
4372 
4373 BlockDriverAIOCB *bdrv_aio_write_zeroes(BlockDriverState *bs,
4374         int64_t sector_num, int nb_sectors, BdrvRequestFlags flags,
4375         BlockDriverCompletionFunc *cb, void *opaque)
4376 {
4377     trace_bdrv_aio_write_zeroes(bs, sector_num, nb_sectors, flags, opaque);
4378 
4379     return bdrv_co_aio_rw_vector(bs, sector_num, NULL, nb_sectors,
4380                                  BDRV_REQ_ZERO_WRITE | flags,
4381                                  cb, opaque, true);
4382 }
4383 
4384 
4385 typedef struct MultiwriteCB {
4386     int error;
4387     int num_requests;
4388     int num_callbacks;
4389     struct {
4390         BlockDriverCompletionFunc *cb;
4391         void *opaque;
4392         QEMUIOVector *free_qiov;
4393     } callbacks[];
4394 } MultiwriteCB;
4395 
4396 static void multiwrite_user_cb(MultiwriteCB *mcb)
4397 {
4398     int i;
4399 
4400     for (i = 0; i < mcb->num_callbacks; i++) {
4401         mcb->callbacks[i].cb(mcb->callbacks[i].opaque, mcb->error);
4402         if (mcb->callbacks[i].free_qiov) {
4403             qemu_iovec_destroy(mcb->callbacks[i].free_qiov);
4404         }
4405         g_free(mcb->callbacks[i].free_qiov);
4406     }
4407 }
4408 
4409 static void multiwrite_cb(void *opaque, int ret)
4410 {
4411     MultiwriteCB *mcb = opaque;
4412 
4413     trace_multiwrite_cb(mcb, ret);
4414 
4415     if (ret < 0 && !mcb->error) {
4416         mcb->error = ret;
4417     }
4418 
4419     mcb->num_requests--;
4420     if (mcb->num_requests == 0) {
4421         multiwrite_user_cb(mcb);
4422         g_free(mcb);
4423     }
4424 }
4425 
4426 static int multiwrite_req_compare(const void *a, const void *b)
4427 {
4428     const BlockRequest *req1 = a, *req2 = b;
4429 
4430     /*
4431      * Note that we can't simply subtract req2->sector from req1->sector
4432      * here as that could overflow the return value.
4433      */
4434     if (req1->sector > req2->sector) {
4435         return 1;
4436     } else if (req1->sector < req2->sector) {
4437         return -1;
4438     } else {
4439         return 0;
4440     }
4441 }
4442 
4443 /*
4444  * Takes a bunch of requests and tries to merge them. Returns the number of
4445  * requests that remain after merging.
4446  */
4447 static int multiwrite_merge(BlockDriverState *bs, BlockRequest *reqs,
4448     int num_reqs, MultiwriteCB *mcb)
4449 {
4450     int i, outidx;
4451 
4452     // Sort requests by start sector
4453     qsort(reqs, num_reqs, sizeof(*reqs), &multiwrite_req_compare);
4454 
4455     // Check if adjacent requests touch the same clusters. If so, combine them,
4456     // filling up gaps with zero sectors.
4457     outidx = 0;
4458     for (i = 1; i < num_reqs; i++) {
4459         int merge = 0;
4460         int64_t oldreq_last = reqs[outidx].sector + reqs[outidx].nb_sectors;
4461 
4462         // Handle exactly sequential writes and overlapping writes.
4463         if (reqs[i].sector <= oldreq_last) {
4464             merge = 1;
4465         }
4466 
4467         if (reqs[outidx].qiov->niov + reqs[i].qiov->niov + 1 > IOV_MAX) {
4468             merge = 0;
4469         }
4470 
4471         if (merge) {
4472             size_t size;
4473             QEMUIOVector *qiov = g_malloc0(sizeof(*qiov));
4474             qemu_iovec_init(qiov,
4475                 reqs[outidx].qiov->niov + reqs[i].qiov->niov + 1);
4476 
4477             // Add the first request to the merged one. If the requests are
4478             // overlapping, drop the last sectors of the first request.
4479             size = (reqs[i].sector - reqs[outidx].sector) << 9;
4480             qemu_iovec_concat(qiov, reqs[outidx].qiov, 0, size);
4481 
4482             // We should need to add any zeros between the two requests
4483             assert (reqs[i].sector <= oldreq_last);
4484 
4485             // Add the second request
4486             qemu_iovec_concat(qiov, reqs[i].qiov, 0, reqs[i].qiov->size);
4487 
4488             reqs[outidx].nb_sectors = qiov->size >> 9;
4489             reqs[outidx].qiov = qiov;
4490 
4491             mcb->callbacks[i].free_qiov = reqs[outidx].qiov;
4492         } else {
4493             outidx++;
4494             reqs[outidx].sector     = reqs[i].sector;
4495             reqs[outidx].nb_sectors = reqs[i].nb_sectors;
4496             reqs[outidx].qiov       = reqs[i].qiov;
4497         }
4498     }
4499 
4500     return outidx + 1;
4501 }
4502 
4503 /*
4504  * Submit multiple AIO write requests at once.
4505  *
4506  * On success, the function returns 0 and all requests in the reqs array have
4507  * been submitted. In error case this function returns -1, and any of the
4508  * requests may or may not be submitted yet. In particular, this means that the
4509  * callback will be called for some of the requests, for others it won't. The
4510  * caller must check the error field of the BlockRequest to wait for the right
4511  * callbacks (if error != 0, no callback will be called).
4512  *
4513  * The implementation may modify the contents of the reqs array, e.g. to merge
4514  * requests. However, the fields opaque and error are left unmodified as they
4515  * are used to signal failure for a single request to the caller.
4516  */
4517 int bdrv_aio_multiwrite(BlockDriverState *bs, BlockRequest *reqs, int num_reqs)
4518 {
4519     MultiwriteCB *mcb;
4520     int i;
4521 
4522     /* don't submit writes if we don't have a medium */
4523     if (bs->drv == NULL) {
4524         for (i = 0; i < num_reqs; i++) {
4525             reqs[i].error = -ENOMEDIUM;
4526         }
4527         return -1;
4528     }
4529 
4530     if (num_reqs == 0) {
4531         return 0;
4532     }
4533 
4534     // Create MultiwriteCB structure
4535     mcb = g_malloc0(sizeof(*mcb) + num_reqs * sizeof(*mcb->callbacks));
4536     mcb->num_requests = 0;
4537     mcb->num_callbacks = num_reqs;
4538 
4539     for (i = 0; i < num_reqs; i++) {
4540         mcb->callbacks[i].cb = reqs[i].cb;
4541         mcb->callbacks[i].opaque = reqs[i].opaque;
4542     }
4543 
4544     // Check for mergable requests
4545     num_reqs = multiwrite_merge(bs, reqs, num_reqs, mcb);
4546 
4547     trace_bdrv_aio_multiwrite(mcb, mcb->num_callbacks, num_reqs);
4548 
4549     /* Run the aio requests. */
4550     mcb->num_requests = num_reqs;
4551     for (i = 0; i < num_reqs; i++) {
4552         bdrv_co_aio_rw_vector(bs, reqs[i].sector, reqs[i].qiov,
4553                               reqs[i].nb_sectors, reqs[i].flags,
4554                               multiwrite_cb, mcb,
4555                               true);
4556     }
4557 
4558     return 0;
4559 }
4560 
4561 void bdrv_aio_cancel(BlockDriverAIOCB *acb)
4562 {
4563     acb->aiocb_info->cancel(acb);
4564 }
4565 
4566 /**************************************************************/
4567 /* async block device emulation */
4568 
4569 typedef struct BlockDriverAIOCBSync {
4570     BlockDriverAIOCB common;
4571     QEMUBH *bh;
4572     int ret;
4573     /* vector translation state */
4574     QEMUIOVector *qiov;
4575     uint8_t *bounce;
4576     int is_write;
4577 } BlockDriverAIOCBSync;
4578 
4579 static void bdrv_aio_cancel_em(BlockDriverAIOCB *blockacb)
4580 {
4581     BlockDriverAIOCBSync *acb =
4582         container_of(blockacb, BlockDriverAIOCBSync, common);
4583     qemu_bh_delete(acb->bh);
4584     acb->bh = NULL;
4585     qemu_aio_release(acb);
4586 }
4587 
4588 static const AIOCBInfo bdrv_em_aiocb_info = {
4589     .aiocb_size         = sizeof(BlockDriverAIOCBSync),
4590     .cancel             = bdrv_aio_cancel_em,
4591 };
4592 
4593 static void bdrv_aio_bh_cb(void *opaque)
4594 {
4595     BlockDriverAIOCBSync *acb = opaque;
4596 
4597     if (!acb->is_write)
4598         qemu_iovec_from_buf(acb->qiov, 0, acb->bounce, acb->qiov->size);
4599     qemu_vfree(acb->bounce);
4600     acb->common.cb(acb->common.opaque, acb->ret);
4601     qemu_bh_delete(acb->bh);
4602     acb->bh = NULL;
4603     qemu_aio_release(acb);
4604 }
4605 
4606 static BlockDriverAIOCB *bdrv_aio_rw_vector(BlockDriverState *bs,
4607                                             int64_t sector_num,
4608                                             QEMUIOVector *qiov,
4609                                             int nb_sectors,
4610                                             BlockDriverCompletionFunc *cb,
4611                                             void *opaque,
4612                                             int is_write)
4613 
4614 {
4615     BlockDriverAIOCBSync *acb;
4616 
4617     acb = qemu_aio_get(&bdrv_em_aiocb_info, bs, cb, opaque);
4618     acb->is_write = is_write;
4619     acb->qiov = qiov;
4620     acb->bounce = qemu_blockalign(bs, qiov->size);
4621     acb->bh = aio_bh_new(bdrv_get_aio_context(bs), bdrv_aio_bh_cb, acb);
4622 
4623     if (is_write) {
4624         qemu_iovec_to_buf(acb->qiov, 0, acb->bounce, qiov->size);
4625         acb->ret = bs->drv->bdrv_write(bs, sector_num, acb->bounce, nb_sectors);
4626     } else {
4627         acb->ret = bs->drv->bdrv_read(bs, sector_num, acb->bounce, nb_sectors);
4628     }
4629 
4630     qemu_bh_schedule(acb->bh);
4631 
4632     return &acb->common;
4633 }
4634 
4635 static BlockDriverAIOCB *bdrv_aio_readv_em(BlockDriverState *bs,
4636         int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
4637         BlockDriverCompletionFunc *cb, void *opaque)
4638 {
4639     return bdrv_aio_rw_vector(bs, sector_num, qiov, nb_sectors, cb, opaque, 0);
4640 }
4641 
4642 static BlockDriverAIOCB *bdrv_aio_writev_em(BlockDriverState *bs,
4643         int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
4644         BlockDriverCompletionFunc *cb, void *opaque)
4645 {
4646     return bdrv_aio_rw_vector(bs, sector_num, qiov, nb_sectors, cb, opaque, 1);
4647 }
4648 
4649 
4650 typedef struct BlockDriverAIOCBCoroutine {
4651     BlockDriverAIOCB common;
4652     BlockRequest req;
4653     bool is_write;
4654     bool *done;
4655     QEMUBH* bh;
4656 } BlockDriverAIOCBCoroutine;
4657 
4658 static void bdrv_aio_co_cancel_em(BlockDriverAIOCB *blockacb)
4659 {
4660     AioContext *aio_context = bdrv_get_aio_context(blockacb->bs);
4661     BlockDriverAIOCBCoroutine *acb =
4662         container_of(blockacb, BlockDriverAIOCBCoroutine, common);
4663     bool done = false;
4664 
4665     acb->done = &done;
4666     while (!done) {
4667         aio_poll(aio_context, true);
4668     }
4669 }
4670 
4671 static const AIOCBInfo bdrv_em_co_aiocb_info = {
4672     .aiocb_size         = sizeof(BlockDriverAIOCBCoroutine),
4673     .cancel             = bdrv_aio_co_cancel_em,
4674 };
4675 
4676 static void bdrv_co_em_bh(void *opaque)
4677 {
4678     BlockDriverAIOCBCoroutine *acb = opaque;
4679 
4680     acb->common.cb(acb->common.opaque, acb->req.error);
4681 
4682     if (acb->done) {
4683         *acb->done = true;
4684     }
4685 
4686     qemu_bh_delete(acb->bh);
4687     qemu_aio_release(acb);
4688 }
4689 
4690 /* Invoke bdrv_co_do_readv/bdrv_co_do_writev */
4691 static void coroutine_fn bdrv_co_do_rw(void *opaque)
4692 {
4693     BlockDriverAIOCBCoroutine *acb = opaque;
4694     BlockDriverState *bs = acb->common.bs;
4695 
4696     if (!acb->is_write) {
4697         acb->req.error = bdrv_co_do_readv(bs, acb->req.sector,
4698             acb->req.nb_sectors, acb->req.qiov, acb->req.flags);
4699     } else {
4700         acb->req.error = bdrv_co_do_writev(bs, acb->req.sector,
4701             acb->req.nb_sectors, acb->req.qiov, acb->req.flags);
4702     }
4703 
4704     acb->bh = aio_bh_new(bdrv_get_aio_context(bs), bdrv_co_em_bh, acb);
4705     qemu_bh_schedule(acb->bh);
4706 }
4707 
4708 static BlockDriverAIOCB *bdrv_co_aio_rw_vector(BlockDriverState *bs,
4709                                                int64_t sector_num,
4710                                                QEMUIOVector *qiov,
4711                                                int nb_sectors,
4712                                                BdrvRequestFlags flags,
4713                                                BlockDriverCompletionFunc *cb,
4714                                                void *opaque,
4715                                                bool is_write)
4716 {
4717     Coroutine *co;
4718     BlockDriverAIOCBCoroutine *acb;
4719 
4720     acb = qemu_aio_get(&bdrv_em_co_aiocb_info, bs, cb, opaque);
4721     acb->req.sector = sector_num;
4722     acb->req.nb_sectors = nb_sectors;
4723     acb->req.qiov = qiov;
4724     acb->req.flags = flags;
4725     acb->is_write = is_write;
4726     acb->done = NULL;
4727 
4728     co = qemu_coroutine_create(bdrv_co_do_rw);
4729     qemu_coroutine_enter(co, acb);
4730 
4731     return &acb->common;
4732 }
4733 
4734 static void coroutine_fn bdrv_aio_flush_co_entry(void *opaque)
4735 {
4736     BlockDriverAIOCBCoroutine *acb = opaque;
4737     BlockDriverState *bs = acb->common.bs;
4738 
4739     acb->req.error = bdrv_co_flush(bs);
4740     acb->bh = aio_bh_new(bdrv_get_aio_context(bs), bdrv_co_em_bh, acb);
4741     qemu_bh_schedule(acb->bh);
4742 }
4743 
4744 BlockDriverAIOCB *bdrv_aio_flush(BlockDriverState *bs,
4745         BlockDriverCompletionFunc *cb, void *opaque)
4746 {
4747     trace_bdrv_aio_flush(bs, opaque);
4748 
4749     Coroutine *co;
4750     BlockDriverAIOCBCoroutine *acb;
4751 
4752     acb = qemu_aio_get(&bdrv_em_co_aiocb_info, bs, cb, opaque);
4753     acb->done = NULL;
4754 
4755     co = qemu_coroutine_create(bdrv_aio_flush_co_entry);
4756     qemu_coroutine_enter(co, acb);
4757 
4758     return &acb->common;
4759 }
4760 
4761 static void coroutine_fn bdrv_aio_discard_co_entry(void *opaque)
4762 {
4763     BlockDriverAIOCBCoroutine *acb = opaque;
4764     BlockDriverState *bs = acb->common.bs;
4765 
4766     acb->req.error = bdrv_co_discard(bs, acb->req.sector, acb->req.nb_sectors);
4767     acb->bh = aio_bh_new(bdrv_get_aio_context(bs), bdrv_co_em_bh, acb);
4768     qemu_bh_schedule(acb->bh);
4769 }
4770 
4771 BlockDriverAIOCB *bdrv_aio_discard(BlockDriverState *bs,
4772         int64_t sector_num, int nb_sectors,
4773         BlockDriverCompletionFunc *cb, void *opaque)
4774 {
4775     Coroutine *co;
4776     BlockDriverAIOCBCoroutine *acb;
4777 
4778     trace_bdrv_aio_discard(bs, sector_num, nb_sectors, opaque);
4779 
4780     acb = qemu_aio_get(&bdrv_em_co_aiocb_info, bs, cb, opaque);
4781     acb->req.sector = sector_num;
4782     acb->req.nb_sectors = nb_sectors;
4783     acb->done = NULL;
4784     co = qemu_coroutine_create(bdrv_aio_discard_co_entry);
4785     qemu_coroutine_enter(co, acb);
4786 
4787     return &acb->common;
4788 }
4789 
4790 void bdrv_init(void)
4791 {
4792     module_call_init(MODULE_INIT_BLOCK);
4793 }
4794 
4795 void bdrv_init_with_whitelist(void)
4796 {
4797     use_bdrv_whitelist = 1;
4798     bdrv_init();
4799 }
4800 
4801 void *qemu_aio_get(const AIOCBInfo *aiocb_info, BlockDriverState *bs,
4802                    BlockDriverCompletionFunc *cb, void *opaque)
4803 {
4804     BlockDriverAIOCB *acb;
4805 
4806     acb = g_slice_alloc(aiocb_info->aiocb_size);
4807     acb->aiocb_info = aiocb_info;
4808     acb->bs = bs;
4809     acb->cb = cb;
4810     acb->opaque = opaque;
4811     return acb;
4812 }
4813 
4814 void qemu_aio_release(void *p)
4815 {
4816     BlockDriverAIOCB *acb = p;
4817     g_slice_free1(acb->aiocb_info->aiocb_size, acb);
4818 }
4819 
4820 /**************************************************************/
4821 /* Coroutine block device emulation */
4822 
4823 typedef struct CoroutineIOCompletion {
4824     Coroutine *coroutine;
4825     int ret;
4826 } CoroutineIOCompletion;
4827 
4828 static void bdrv_co_io_em_complete(void *opaque, int ret)
4829 {
4830     CoroutineIOCompletion *co = opaque;
4831 
4832     co->ret = ret;
4833     qemu_coroutine_enter(co->coroutine, NULL);
4834 }
4835 
4836 static int coroutine_fn bdrv_co_io_em(BlockDriverState *bs, int64_t sector_num,
4837                                       int nb_sectors, QEMUIOVector *iov,
4838                                       bool is_write)
4839 {
4840     CoroutineIOCompletion co = {
4841         .coroutine = qemu_coroutine_self(),
4842     };
4843     BlockDriverAIOCB *acb;
4844 
4845     if (is_write) {
4846         acb = bs->drv->bdrv_aio_writev(bs, sector_num, iov, nb_sectors,
4847                                        bdrv_co_io_em_complete, &co);
4848     } else {
4849         acb = bs->drv->bdrv_aio_readv(bs, sector_num, iov, nb_sectors,
4850                                       bdrv_co_io_em_complete, &co);
4851     }
4852 
4853     trace_bdrv_co_io_em(bs, sector_num, nb_sectors, is_write, acb);
4854     if (!acb) {
4855         return -EIO;
4856     }
4857     qemu_coroutine_yield();
4858 
4859     return co.ret;
4860 }
4861 
4862 static int coroutine_fn bdrv_co_readv_em(BlockDriverState *bs,
4863                                          int64_t sector_num, int nb_sectors,
4864                                          QEMUIOVector *iov)
4865 {
4866     return bdrv_co_io_em(bs, sector_num, nb_sectors, iov, false);
4867 }
4868 
4869 static int coroutine_fn bdrv_co_writev_em(BlockDriverState *bs,
4870                                          int64_t sector_num, int nb_sectors,
4871                                          QEMUIOVector *iov)
4872 {
4873     return bdrv_co_io_em(bs, sector_num, nb_sectors, iov, true);
4874 }
4875 
4876 static void coroutine_fn bdrv_flush_co_entry(void *opaque)
4877 {
4878     RwCo *rwco = opaque;
4879 
4880     rwco->ret = bdrv_co_flush(rwco->bs);
4881 }
4882 
4883 int coroutine_fn bdrv_co_flush(BlockDriverState *bs)
4884 {
4885     int ret;
4886 
4887     if (!bs || !bdrv_is_inserted(bs) || bdrv_is_read_only(bs)) {
4888         return 0;
4889     }
4890 
4891     /* Write back cached data to the OS even with cache=unsafe */
4892     BLKDBG_EVENT(bs->file, BLKDBG_FLUSH_TO_OS);
4893     if (bs->drv->bdrv_co_flush_to_os) {
4894         ret = bs->drv->bdrv_co_flush_to_os(bs);
4895         if (ret < 0) {
4896             return ret;
4897         }
4898     }
4899 
4900     /* But don't actually force it to the disk with cache=unsafe */
4901     if (bs->open_flags & BDRV_O_NO_FLUSH) {
4902         goto flush_parent;
4903     }
4904 
4905     BLKDBG_EVENT(bs->file, BLKDBG_FLUSH_TO_DISK);
4906     if (bs->drv->bdrv_co_flush_to_disk) {
4907         ret = bs->drv->bdrv_co_flush_to_disk(bs);
4908     } else if (bs->drv->bdrv_aio_flush) {
4909         BlockDriverAIOCB *acb;
4910         CoroutineIOCompletion co = {
4911             .coroutine = qemu_coroutine_self(),
4912         };
4913 
4914         acb = bs->drv->bdrv_aio_flush(bs, bdrv_co_io_em_complete, &co);
4915         if (acb == NULL) {
4916             ret = -EIO;
4917         } else {
4918             qemu_coroutine_yield();
4919             ret = co.ret;
4920         }
4921     } else {
4922         /*
4923          * Some block drivers always operate in either writethrough or unsafe
4924          * mode and don't support bdrv_flush therefore. Usually qemu doesn't
4925          * know how the server works (because the behaviour is hardcoded or
4926          * depends on server-side configuration), so we can't ensure that
4927          * everything is safe on disk. Returning an error doesn't work because
4928          * that would break guests even if the server operates in writethrough
4929          * mode.
4930          *
4931          * Let's hope the user knows what he's doing.
4932          */
4933         ret = 0;
4934     }
4935     if (ret < 0) {
4936         return ret;
4937     }
4938 
4939     /* Now flush the underlying protocol.  It will also have BDRV_O_NO_FLUSH
4940      * in the case of cache=unsafe, so there are no useless flushes.
4941      */
4942 flush_parent:
4943     return bdrv_co_flush(bs->file);
4944 }
4945 
4946 void bdrv_invalidate_cache(BlockDriverState *bs, Error **errp)
4947 {
4948     Error *local_err = NULL;
4949     int ret;
4950 
4951     if (!bs->drv)  {
4952         return;
4953     }
4954 
4955     if (bs->drv->bdrv_invalidate_cache) {
4956         bs->drv->bdrv_invalidate_cache(bs, &local_err);
4957     } else if (bs->file) {
4958         bdrv_invalidate_cache(bs->file, &local_err);
4959     }
4960     if (local_err) {
4961         error_propagate(errp, local_err);
4962         return;
4963     }
4964 
4965     ret = refresh_total_sectors(bs, bs->total_sectors);
4966     if (ret < 0) {
4967         error_setg_errno(errp, -ret, "Could not refresh total sector count");
4968         return;
4969     }
4970 }
4971 
4972 void bdrv_invalidate_cache_all(Error **errp)
4973 {
4974     BlockDriverState *bs;
4975     Error *local_err = NULL;
4976 
4977     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
4978         AioContext *aio_context = bdrv_get_aio_context(bs);
4979 
4980         aio_context_acquire(aio_context);
4981         bdrv_invalidate_cache(bs, &local_err);
4982         aio_context_release(aio_context);
4983         if (local_err) {
4984             error_propagate(errp, local_err);
4985             return;
4986         }
4987     }
4988 }
4989 
4990 void bdrv_clear_incoming_migration_all(void)
4991 {
4992     BlockDriverState *bs;
4993 
4994     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
4995         AioContext *aio_context = bdrv_get_aio_context(bs);
4996 
4997         aio_context_acquire(aio_context);
4998         bs->open_flags = bs->open_flags & ~(BDRV_O_INCOMING);
4999         aio_context_release(aio_context);
5000     }
5001 }
5002 
5003 int bdrv_flush(BlockDriverState *bs)
5004 {
5005     Coroutine *co;
5006     RwCo rwco = {
5007         .bs = bs,
5008         .ret = NOT_DONE,
5009     };
5010 
5011     if (qemu_in_coroutine()) {
5012         /* Fast-path if already in coroutine context */
5013         bdrv_flush_co_entry(&rwco);
5014     } else {
5015         AioContext *aio_context = bdrv_get_aio_context(bs);
5016 
5017         co = qemu_coroutine_create(bdrv_flush_co_entry);
5018         qemu_coroutine_enter(co, &rwco);
5019         while (rwco.ret == NOT_DONE) {
5020             aio_poll(aio_context, true);
5021         }
5022     }
5023 
5024     return rwco.ret;
5025 }
5026 
5027 typedef struct DiscardCo {
5028     BlockDriverState *bs;
5029     int64_t sector_num;
5030     int nb_sectors;
5031     int ret;
5032 } DiscardCo;
5033 static void coroutine_fn bdrv_discard_co_entry(void *opaque)
5034 {
5035     DiscardCo *rwco = opaque;
5036 
5037     rwco->ret = bdrv_co_discard(rwco->bs, rwco->sector_num, rwco->nb_sectors);
5038 }
5039 
5040 /* if no limit is specified in the BlockLimits use a default
5041  * of 32768 512-byte sectors (16 MiB) per request.
5042  */
5043 #define MAX_DISCARD_DEFAULT 32768
5044 
5045 int coroutine_fn bdrv_co_discard(BlockDriverState *bs, int64_t sector_num,
5046                                  int nb_sectors)
5047 {
5048     int max_discard;
5049 
5050     if (!bs->drv) {
5051         return -ENOMEDIUM;
5052     } else if (bdrv_check_request(bs, sector_num, nb_sectors)) {
5053         return -EIO;
5054     } else if (bs->read_only) {
5055         return -EROFS;
5056     }
5057 
5058     bdrv_reset_dirty(bs, sector_num, nb_sectors);
5059 
5060     /* Do nothing if disabled.  */
5061     if (!(bs->open_flags & BDRV_O_UNMAP)) {
5062         return 0;
5063     }
5064 
5065     if (!bs->drv->bdrv_co_discard && !bs->drv->bdrv_aio_discard) {
5066         return 0;
5067     }
5068 
5069     max_discard = bs->bl.max_discard ?  bs->bl.max_discard : MAX_DISCARD_DEFAULT;
5070     while (nb_sectors > 0) {
5071         int ret;
5072         int num = nb_sectors;
5073 
5074         /* align request */
5075         if (bs->bl.discard_alignment &&
5076             num >= bs->bl.discard_alignment &&
5077             sector_num % bs->bl.discard_alignment) {
5078             if (num > bs->bl.discard_alignment) {
5079                 num = bs->bl.discard_alignment;
5080             }
5081             num -= sector_num % bs->bl.discard_alignment;
5082         }
5083 
5084         /* limit request size */
5085         if (num > max_discard) {
5086             num = max_discard;
5087         }
5088 
5089         if (bs->drv->bdrv_co_discard) {
5090             ret = bs->drv->bdrv_co_discard(bs, sector_num, num);
5091         } else {
5092             BlockDriverAIOCB *acb;
5093             CoroutineIOCompletion co = {
5094                 .coroutine = qemu_coroutine_self(),
5095             };
5096 
5097             acb = bs->drv->bdrv_aio_discard(bs, sector_num, nb_sectors,
5098                                             bdrv_co_io_em_complete, &co);
5099             if (acb == NULL) {
5100                 return -EIO;
5101             } else {
5102                 qemu_coroutine_yield();
5103                 ret = co.ret;
5104             }
5105         }
5106         if (ret && ret != -ENOTSUP) {
5107             return ret;
5108         }
5109 
5110         sector_num += num;
5111         nb_sectors -= num;
5112     }
5113     return 0;
5114 }
5115 
5116 int bdrv_discard(BlockDriverState *bs, int64_t sector_num, int nb_sectors)
5117 {
5118     Coroutine *co;
5119     DiscardCo rwco = {
5120         .bs = bs,
5121         .sector_num = sector_num,
5122         .nb_sectors = nb_sectors,
5123         .ret = NOT_DONE,
5124     };
5125 
5126     if (qemu_in_coroutine()) {
5127         /* Fast-path if already in coroutine context */
5128         bdrv_discard_co_entry(&rwco);
5129     } else {
5130         AioContext *aio_context = bdrv_get_aio_context(bs);
5131 
5132         co = qemu_coroutine_create(bdrv_discard_co_entry);
5133         qemu_coroutine_enter(co, &rwco);
5134         while (rwco.ret == NOT_DONE) {
5135             aio_poll(aio_context, true);
5136         }
5137     }
5138 
5139     return rwco.ret;
5140 }
5141 
5142 /**************************************************************/
5143 /* removable device support */
5144 
5145 /**
5146  * Return TRUE if the media is present
5147  */
5148 int bdrv_is_inserted(BlockDriverState *bs)
5149 {
5150     BlockDriver *drv = bs->drv;
5151 
5152     if (!drv)
5153         return 0;
5154     if (!drv->bdrv_is_inserted)
5155         return 1;
5156     return drv->bdrv_is_inserted(bs);
5157 }
5158 
5159 /**
5160  * Return whether the media changed since the last call to this
5161  * function, or -ENOTSUP if we don't know.  Most drivers don't know.
5162  */
5163 int bdrv_media_changed(BlockDriverState *bs)
5164 {
5165     BlockDriver *drv = bs->drv;
5166 
5167     if (drv && drv->bdrv_media_changed) {
5168         return drv->bdrv_media_changed(bs);
5169     }
5170     return -ENOTSUP;
5171 }
5172 
5173 /**
5174  * If eject_flag is TRUE, eject the media. Otherwise, close the tray
5175  */
5176 void bdrv_eject(BlockDriverState *bs, bool eject_flag)
5177 {
5178     BlockDriver *drv = bs->drv;
5179 
5180     if (drv && drv->bdrv_eject) {
5181         drv->bdrv_eject(bs, eject_flag);
5182     }
5183 
5184     if (bs->device_name[0] != '\0') {
5185         qapi_event_send_device_tray_moved(bdrv_get_device_name(bs),
5186                                           eject_flag, &error_abort);
5187     }
5188 }
5189 
5190 /**
5191  * Lock or unlock the media (if it is locked, the user won't be able
5192  * to eject it manually).
5193  */
5194 void bdrv_lock_medium(BlockDriverState *bs, bool locked)
5195 {
5196     BlockDriver *drv = bs->drv;
5197 
5198     trace_bdrv_lock_medium(bs, locked);
5199 
5200     if (drv && drv->bdrv_lock_medium) {
5201         drv->bdrv_lock_medium(bs, locked);
5202     }
5203 }
5204 
5205 /* needed for generic scsi interface */
5206 
5207 int bdrv_ioctl(BlockDriverState *bs, unsigned long int req, void *buf)
5208 {
5209     BlockDriver *drv = bs->drv;
5210 
5211     if (drv && drv->bdrv_ioctl)
5212         return drv->bdrv_ioctl(bs, req, buf);
5213     return -ENOTSUP;
5214 }
5215 
5216 BlockDriverAIOCB *bdrv_aio_ioctl(BlockDriverState *bs,
5217         unsigned long int req, void *buf,
5218         BlockDriverCompletionFunc *cb, void *opaque)
5219 {
5220     BlockDriver *drv = bs->drv;
5221 
5222     if (drv && drv->bdrv_aio_ioctl)
5223         return drv->bdrv_aio_ioctl(bs, req, buf, cb, opaque);
5224     return NULL;
5225 }
5226 
5227 void bdrv_set_guest_block_size(BlockDriverState *bs, int align)
5228 {
5229     bs->guest_block_size = align;
5230 }
5231 
5232 void *qemu_blockalign(BlockDriverState *bs, size_t size)
5233 {
5234     return qemu_memalign(bdrv_opt_mem_align(bs), size);
5235 }
5236 
5237 /*
5238  * Check if all memory in this vector is sector aligned.
5239  */
5240 bool bdrv_qiov_is_aligned(BlockDriverState *bs, QEMUIOVector *qiov)
5241 {
5242     int i;
5243     size_t alignment = bdrv_opt_mem_align(bs);
5244 
5245     for (i = 0; i < qiov->niov; i++) {
5246         if ((uintptr_t) qiov->iov[i].iov_base % alignment) {
5247             return false;
5248         }
5249         if (qiov->iov[i].iov_len % alignment) {
5250             return false;
5251         }
5252     }
5253 
5254     return true;
5255 }
5256 
5257 BdrvDirtyBitmap *bdrv_create_dirty_bitmap(BlockDriverState *bs, int granularity,
5258                                           Error **errp)
5259 {
5260     int64_t bitmap_size;
5261     BdrvDirtyBitmap *bitmap;
5262 
5263     assert((granularity & (granularity - 1)) == 0);
5264 
5265     granularity >>= BDRV_SECTOR_BITS;
5266     assert(granularity);
5267     bitmap_size = bdrv_getlength(bs);
5268     if (bitmap_size < 0) {
5269         error_setg_errno(errp, -bitmap_size, "could not get length of device");
5270         errno = -bitmap_size;
5271         return NULL;
5272     }
5273     bitmap_size >>= BDRV_SECTOR_BITS;
5274     bitmap = g_malloc0(sizeof(BdrvDirtyBitmap));
5275     bitmap->bitmap = hbitmap_alloc(bitmap_size, ffs(granularity) - 1);
5276     QLIST_INSERT_HEAD(&bs->dirty_bitmaps, bitmap, list);
5277     return bitmap;
5278 }
5279 
5280 void bdrv_release_dirty_bitmap(BlockDriverState *bs, BdrvDirtyBitmap *bitmap)
5281 {
5282     BdrvDirtyBitmap *bm, *next;
5283     QLIST_FOREACH_SAFE(bm, &bs->dirty_bitmaps, list, next) {
5284         if (bm == bitmap) {
5285             QLIST_REMOVE(bitmap, list);
5286             hbitmap_free(bitmap->bitmap);
5287             g_free(bitmap);
5288             return;
5289         }
5290     }
5291 }
5292 
5293 BlockDirtyInfoList *bdrv_query_dirty_bitmaps(BlockDriverState *bs)
5294 {
5295     BdrvDirtyBitmap *bm;
5296     BlockDirtyInfoList *list = NULL;
5297     BlockDirtyInfoList **plist = &list;
5298 
5299     QLIST_FOREACH(bm, &bs->dirty_bitmaps, list) {
5300         BlockDirtyInfo *info = g_malloc0(sizeof(BlockDirtyInfo));
5301         BlockDirtyInfoList *entry = g_malloc0(sizeof(BlockDirtyInfoList));
5302         info->count = bdrv_get_dirty_count(bs, bm);
5303         info->granularity =
5304             ((int64_t) BDRV_SECTOR_SIZE << hbitmap_granularity(bm->bitmap));
5305         entry->value = info;
5306         *plist = entry;
5307         plist = &entry->next;
5308     }
5309 
5310     return list;
5311 }
5312 
5313 int bdrv_get_dirty(BlockDriverState *bs, BdrvDirtyBitmap *bitmap, int64_t sector)
5314 {
5315     if (bitmap) {
5316         return hbitmap_get(bitmap->bitmap, sector);
5317     } else {
5318         return 0;
5319     }
5320 }
5321 
5322 void bdrv_dirty_iter_init(BlockDriverState *bs,
5323                           BdrvDirtyBitmap *bitmap, HBitmapIter *hbi)
5324 {
5325     hbitmap_iter_init(hbi, bitmap->bitmap, 0);
5326 }
5327 
5328 void bdrv_set_dirty(BlockDriverState *bs, int64_t cur_sector,
5329                     int nr_sectors)
5330 {
5331     BdrvDirtyBitmap *bitmap;
5332     QLIST_FOREACH(bitmap, &bs->dirty_bitmaps, list) {
5333         hbitmap_set(bitmap->bitmap, cur_sector, nr_sectors);
5334     }
5335 }
5336 
5337 void bdrv_reset_dirty(BlockDriverState *bs, int64_t cur_sector, int nr_sectors)
5338 {
5339     BdrvDirtyBitmap *bitmap;
5340     QLIST_FOREACH(bitmap, &bs->dirty_bitmaps, list) {
5341         hbitmap_reset(bitmap->bitmap, cur_sector, nr_sectors);
5342     }
5343 }
5344 
5345 int64_t bdrv_get_dirty_count(BlockDriverState *bs, BdrvDirtyBitmap *bitmap)
5346 {
5347     return hbitmap_count(bitmap->bitmap);
5348 }
5349 
5350 /* Get a reference to bs */
5351 void bdrv_ref(BlockDriverState *bs)
5352 {
5353     bs->refcnt++;
5354 }
5355 
5356 /* Release a previously grabbed reference to bs.
5357  * If after releasing, reference count is zero, the BlockDriverState is
5358  * deleted. */
5359 void bdrv_unref(BlockDriverState *bs)
5360 {
5361     assert(bs->refcnt > 0);
5362     if (--bs->refcnt == 0) {
5363         bdrv_delete(bs);
5364     }
5365 }
5366 
5367 struct BdrvOpBlocker {
5368     Error *reason;
5369     QLIST_ENTRY(BdrvOpBlocker) list;
5370 };
5371 
5372 bool bdrv_op_is_blocked(BlockDriverState *bs, BlockOpType op, Error **errp)
5373 {
5374     BdrvOpBlocker *blocker;
5375     assert((int) op >= 0 && op < BLOCK_OP_TYPE_MAX);
5376     if (!QLIST_EMPTY(&bs->op_blockers[op])) {
5377         blocker = QLIST_FIRST(&bs->op_blockers[op]);
5378         if (errp) {
5379             error_setg(errp, "Device '%s' is busy: %s",
5380                        bs->device_name, error_get_pretty(blocker->reason));
5381         }
5382         return true;
5383     }
5384     return false;
5385 }
5386 
5387 void bdrv_op_block(BlockDriverState *bs, BlockOpType op, Error *reason)
5388 {
5389     BdrvOpBlocker *blocker;
5390     assert((int) op >= 0 && op < BLOCK_OP_TYPE_MAX);
5391 
5392     blocker = g_malloc0(sizeof(BdrvOpBlocker));
5393     blocker->reason = reason;
5394     QLIST_INSERT_HEAD(&bs->op_blockers[op], blocker, list);
5395 }
5396 
5397 void bdrv_op_unblock(BlockDriverState *bs, BlockOpType op, Error *reason)
5398 {
5399     BdrvOpBlocker *blocker, *next;
5400     assert((int) op >= 0 && op < BLOCK_OP_TYPE_MAX);
5401     QLIST_FOREACH_SAFE(blocker, &bs->op_blockers[op], list, next) {
5402         if (blocker->reason == reason) {
5403             QLIST_REMOVE(blocker, list);
5404             g_free(blocker);
5405         }
5406     }
5407 }
5408 
5409 void bdrv_op_block_all(BlockDriverState *bs, Error *reason)
5410 {
5411     int i;
5412     for (i = 0; i < BLOCK_OP_TYPE_MAX; i++) {
5413         bdrv_op_block(bs, i, reason);
5414     }
5415 }
5416 
5417 void bdrv_op_unblock_all(BlockDriverState *bs, Error *reason)
5418 {
5419     int i;
5420     for (i = 0; i < BLOCK_OP_TYPE_MAX; i++) {
5421         bdrv_op_unblock(bs, i, reason);
5422     }
5423 }
5424 
5425 bool bdrv_op_blocker_is_empty(BlockDriverState *bs)
5426 {
5427     int i;
5428 
5429     for (i = 0; i < BLOCK_OP_TYPE_MAX; i++) {
5430         if (!QLIST_EMPTY(&bs->op_blockers[i])) {
5431             return false;
5432         }
5433     }
5434     return true;
5435 }
5436 
5437 void bdrv_iostatus_enable(BlockDriverState *bs)
5438 {
5439     bs->iostatus_enabled = true;
5440     bs->iostatus = BLOCK_DEVICE_IO_STATUS_OK;
5441 }
5442 
5443 /* The I/O status is only enabled if the drive explicitly
5444  * enables it _and_ the VM is configured to stop on errors */
5445 bool bdrv_iostatus_is_enabled(const BlockDriverState *bs)
5446 {
5447     return (bs->iostatus_enabled &&
5448            (bs->on_write_error == BLOCKDEV_ON_ERROR_ENOSPC ||
5449             bs->on_write_error == BLOCKDEV_ON_ERROR_STOP   ||
5450             bs->on_read_error == BLOCKDEV_ON_ERROR_STOP));
5451 }
5452 
5453 void bdrv_iostatus_disable(BlockDriverState *bs)
5454 {
5455     bs->iostatus_enabled = false;
5456 }
5457 
5458 void bdrv_iostatus_reset(BlockDriverState *bs)
5459 {
5460     if (bdrv_iostatus_is_enabled(bs)) {
5461         bs->iostatus = BLOCK_DEVICE_IO_STATUS_OK;
5462         if (bs->job) {
5463             block_job_iostatus_reset(bs->job);
5464         }
5465     }
5466 }
5467 
5468 void bdrv_iostatus_set_err(BlockDriverState *bs, int error)
5469 {
5470     assert(bdrv_iostatus_is_enabled(bs));
5471     if (bs->iostatus == BLOCK_DEVICE_IO_STATUS_OK) {
5472         bs->iostatus = error == ENOSPC ? BLOCK_DEVICE_IO_STATUS_NOSPACE :
5473                                          BLOCK_DEVICE_IO_STATUS_FAILED;
5474     }
5475 }
5476 
5477 void
5478 bdrv_acct_start(BlockDriverState *bs, BlockAcctCookie *cookie, int64_t bytes,
5479         enum BlockAcctType type)
5480 {
5481     assert(type < BDRV_MAX_IOTYPE);
5482 
5483     cookie->bytes = bytes;
5484     cookie->start_time_ns = get_clock();
5485     cookie->type = type;
5486 }
5487 
5488 void
5489 bdrv_acct_done(BlockDriverState *bs, BlockAcctCookie *cookie)
5490 {
5491     assert(cookie->type < BDRV_MAX_IOTYPE);
5492 
5493     bs->nr_bytes[cookie->type] += cookie->bytes;
5494     bs->nr_ops[cookie->type]++;
5495     bs->total_time_ns[cookie->type] += get_clock() - cookie->start_time_ns;
5496 }
5497 
5498 void bdrv_img_create(const char *filename, const char *fmt,
5499                      const char *base_filename, const char *base_fmt,
5500                      char *options, uint64_t img_size, int flags,
5501                      Error **errp, bool quiet)
5502 {
5503     QemuOptsList *create_opts = NULL;
5504     QemuOpts *opts = NULL;
5505     const char *backing_fmt, *backing_file;
5506     int64_t size;
5507     BlockDriver *drv, *proto_drv;
5508     BlockDriver *backing_drv = NULL;
5509     Error *local_err = NULL;
5510     int ret = 0;
5511 
5512     /* Find driver and parse its options */
5513     drv = bdrv_find_format(fmt);
5514     if (!drv) {
5515         error_setg(errp, "Unknown file format '%s'", fmt);
5516         return;
5517     }
5518 
5519     proto_drv = bdrv_find_protocol(filename, true);
5520     if (!proto_drv) {
5521         error_setg(errp, "Unknown protocol '%s'", filename);
5522         return;
5523     }
5524 
5525     create_opts = qemu_opts_append(create_opts, drv->create_opts);
5526     create_opts = qemu_opts_append(create_opts, proto_drv->create_opts);
5527 
5528     /* Create parameter list with default values */
5529     opts = qemu_opts_create(create_opts, NULL, 0, &error_abort);
5530     qemu_opt_set_number(opts, BLOCK_OPT_SIZE, img_size);
5531 
5532     /* Parse -o options */
5533     if (options) {
5534         if (qemu_opts_do_parse(opts, options, NULL) != 0) {
5535             error_setg(errp, "Invalid options for file format '%s'", fmt);
5536             goto out;
5537         }
5538     }
5539 
5540     if (base_filename) {
5541         if (qemu_opt_set(opts, BLOCK_OPT_BACKING_FILE, base_filename)) {
5542             error_setg(errp, "Backing file not supported for file format '%s'",
5543                        fmt);
5544             goto out;
5545         }
5546     }
5547 
5548     if (base_fmt) {
5549         if (qemu_opt_set(opts, BLOCK_OPT_BACKING_FMT, base_fmt)) {
5550             error_setg(errp, "Backing file format not supported for file "
5551                              "format '%s'", fmt);
5552             goto out;
5553         }
5554     }
5555 
5556     backing_file = qemu_opt_get(opts, BLOCK_OPT_BACKING_FILE);
5557     if (backing_file) {
5558         if (!strcmp(filename, backing_file)) {
5559             error_setg(errp, "Error: Trying to create an image with the "
5560                              "same filename as the backing file");
5561             goto out;
5562         }
5563     }
5564 
5565     backing_fmt = qemu_opt_get(opts, BLOCK_OPT_BACKING_FMT);
5566     if (backing_fmt) {
5567         backing_drv = bdrv_find_format(backing_fmt);
5568         if (!backing_drv) {
5569             error_setg(errp, "Unknown backing file format '%s'",
5570                        backing_fmt);
5571             goto out;
5572         }
5573     }
5574 
5575     // The size for the image must always be specified, with one exception:
5576     // If we are using a backing file, we can obtain the size from there
5577     size = qemu_opt_get_size(opts, BLOCK_OPT_SIZE, 0);
5578     if (size == -1) {
5579         if (backing_file) {
5580             BlockDriverState *bs;
5581             uint64_t size;
5582             int back_flags;
5583 
5584             /* backing files always opened read-only */
5585             back_flags =
5586                 flags & ~(BDRV_O_RDWR | BDRV_O_SNAPSHOT | BDRV_O_NO_BACKING);
5587 
5588             bs = NULL;
5589             ret = bdrv_open(&bs, backing_file, NULL, NULL, back_flags,
5590                             backing_drv, &local_err);
5591             if (ret < 0) {
5592                 error_setg_errno(errp, -ret, "Could not open '%s': %s",
5593                                  backing_file,
5594                                  error_get_pretty(local_err));
5595                 error_free(local_err);
5596                 local_err = NULL;
5597                 goto out;
5598             }
5599             bdrv_get_geometry(bs, &size);
5600             size *= 512;
5601 
5602             qemu_opt_set_number(opts, BLOCK_OPT_SIZE, size);
5603 
5604             bdrv_unref(bs);
5605         } else {
5606             error_setg(errp, "Image creation needs a size parameter");
5607             goto out;
5608         }
5609     }
5610 
5611     if (!quiet) {
5612         printf("Formatting '%s', fmt=%s ", filename, fmt);
5613         qemu_opts_print(opts);
5614         puts("");
5615     }
5616 
5617     ret = bdrv_create(drv, filename, opts, &local_err);
5618 
5619     if (ret == -EFBIG) {
5620         /* This is generally a better message than whatever the driver would
5621          * deliver (especially because of the cluster_size_hint), since that
5622          * is most probably not much different from "image too large". */
5623         const char *cluster_size_hint = "";
5624         if (qemu_opt_get_size(opts, BLOCK_OPT_CLUSTER_SIZE, 0)) {
5625             cluster_size_hint = " (try using a larger cluster size)";
5626         }
5627         error_setg(errp, "The image size is too large for file format '%s'"
5628                    "%s", fmt, cluster_size_hint);
5629         error_free(local_err);
5630         local_err = NULL;
5631     }
5632 
5633 out:
5634     qemu_opts_del(opts);
5635     qemu_opts_free(create_opts);
5636     if (local_err) {
5637         error_propagate(errp, local_err);
5638     }
5639 }
5640 
5641 AioContext *bdrv_get_aio_context(BlockDriverState *bs)
5642 {
5643     return bs->aio_context;
5644 }
5645 
5646 void bdrv_detach_aio_context(BlockDriverState *bs)
5647 {
5648     if (!bs->drv) {
5649         return;
5650     }
5651 
5652     if (bs->io_limits_enabled) {
5653         throttle_detach_aio_context(&bs->throttle_state);
5654     }
5655     if (bs->drv->bdrv_detach_aio_context) {
5656         bs->drv->bdrv_detach_aio_context(bs);
5657     }
5658     if (bs->file) {
5659         bdrv_detach_aio_context(bs->file);
5660     }
5661     if (bs->backing_hd) {
5662         bdrv_detach_aio_context(bs->backing_hd);
5663     }
5664 
5665     bs->aio_context = NULL;
5666 }
5667 
5668 void bdrv_attach_aio_context(BlockDriverState *bs,
5669                              AioContext *new_context)
5670 {
5671     if (!bs->drv) {
5672         return;
5673     }
5674 
5675     bs->aio_context = new_context;
5676 
5677     if (bs->backing_hd) {
5678         bdrv_attach_aio_context(bs->backing_hd, new_context);
5679     }
5680     if (bs->file) {
5681         bdrv_attach_aio_context(bs->file, new_context);
5682     }
5683     if (bs->drv->bdrv_attach_aio_context) {
5684         bs->drv->bdrv_attach_aio_context(bs, new_context);
5685     }
5686     if (bs->io_limits_enabled) {
5687         throttle_attach_aio_context(&bs->throttle_state, new_context);
5688     }
5689 }
5690 
5691 void bdrv_set_aio_context(BlockDriverState *bs, AioContext *new_context)
5692 {
5693     bdrv_drain_all(); /* ensure there are no in-flight requests */
5694 
5695     bdrv_detach_aio_context(bs);
5696 
5697     /* This function executes in the old AioContext so acquire the new one in
5698      * case it runs in a different thread.
5699      */
5700     aio_context_acquire(new_context);
5701     bdrv_attach_aio_context(bs, new_context);
5702     aio_context_release(new_context);
5703 }
5704 
5705 void bdrv_add_before_write_notifier(BlockDriverState *bs,
5706                                     NotifierWithReturn *notifier)
5707 {
5708     notifier_with_return_list_add(&bs->before_write_notifiers, notifier);
5709 }
5710 
5711 int bdrv_amend_options(BlockDriverState *bs, QemuOpts *opts)
5712 {
5713     if (!bs->drv->bdrv_amend_options) {
5714         return -ENOTSUP;
5715     }
5716     return bs->drv->bdrv_amend_options(bs, opts);
5717 }
5718 
5719 /* This function will be called by the bdrv_recurse_is_first_non_filter method
5720  * of block filter and by bdrv_is_first_non_filter.
5721  * It is used to test if the given bs is the candidate or recurse more in the
5722  * node graph.
5723  */
5724 bool bdrv_recurse_is_first_non_filter(BlockDriverState *bs,
5725                                       BlockDriverState *candidate)
5726 {
5727     /* return false if basic checks fails */
5728     if (!bs || !bs->drv) {
5729         return false;
5730     }
5731 
5732     /* the code reached a non block filter driver -> check if the bs is
5733      * the same as the candidate. It's the recursion termination condition.
5734      */
5735     if (!bs->drv->is_filter) {
5736         return bs == candidate;
5737     }
5738     /* Down this path the driver is a block filter driver */
5739 
5740     /* If the block filter recursion method is defined use it to recurse down
5741      * the node graph.
5742      */
5743     if (bs->drv->bdrv_recurse_is_first_non_filter) {
5744         return bs->drv->bdrv_recurse_is_first_non_filter(bs, candidate);
5745     }
5746 
5747     /* the driver is a block filter but don't allow to recurse -> return false
5748      */
5749     return false;
5750 }
5751 
5752 /* This function checks if the candidate is the first non filter bs down it's
5753  * bs chain. Since we don't have pointers to parents it explore all bs chains
5754  * from the top. Some filters can choose not to pass down the recursion.
5755  */
5756 bool bdrv_is_first_non_filter(BlockDriverState *candidate)
5757 {
5758     BlockDriverState *bs;
5759 
5760     /* walk down the bs forest recursively */
5761     QTAILQ_FOREACH(bs, &bdrv_states, device_list) {
5762         bool perm;
5763 
5764         /* try to recurse in this top level bs */
5765         perm = bdrv_recurse_is_first_non_filter(bs, candidate);
5766 
5767         /* candidate is the first non filter */
5768         if (perm) {
5769             return true;
5770         }
5771     }
5772 
5773     return false;
5774 }
5775 
5776 BlockDriverState *check_to_replace_node(const char *node_name, Error **errp)
5777 {
5778     BlockDriverState *to_replace_bs = bdrv_find_node(node_name);
5779     if (!to_replace_bs) {
5780         error_setg(errp, "Node name '%s' not found", node_name);
5781         return NULL;
5782     }
5783 
5784     if (bdrv_op_is_blocked(to_replace_bs, BLOCK_OP_TYPE_REPLACE, errp)) {
5785         return NULL;
5786     }
5787 
5788     /* We don't want arbitrary node of the BDS chain to be replaced only the top
5789      * most non filter in order to prevent data corruption.
5790      * Another benefit is that this tests exclude backing files which are
5791      * blocked by the backing blockers.
5792      */
5793     if (!bdrv_is_first_non_filter(to_replace_bs)) {
5794         error_setg(errp, "Only top most non filter can be replaced");
5795         return NULL;
5796     }
5797 
5798     return to_replace_bs;
5799 }
5800 
5801 void bdrv_io_plug(BlockDriverState *bs)
5802 {
5803     BlockDriver *drv = bs->drv;
5804     if (drv && drv->bdrv_io_plug) {
5805         drv->bdrv_io_plug(bs);
5806     } else if (bs->file) {
5807         bdrv_io_plug(bs->file);
5808     }
5809 }
5810 
5811 void bdrv_io_unplug(BlockDriverState *bs)
5812 {
5813     BlockDriver *drv = bs->drv;
5814     if (drv && drv->bdrv_io_unplug) {
5815         drv->bdrv_io_unplug(bs);
5816     } else if (bs->file) {
5817         bdrv_io_unplug(bs->file);
5818     }
5819 }
5820 
5821 void bdrv_flush_io_queue(BlockDriverState *bs)
5822 {
5823     BlockDriver *drv = bs->drv;
5824     if (drv && drv->bdrv_flush_io_queue) {
5825         drv->bdrv_flush_io_queue(bs);
5826     } else if (bs->file) {
5827         bdrv_flush_io_queue(bs->file);
5828     }
5829 }
5830