111a82d14SPhilippe Mathieu-Daudé#!/usr/bin/env bash 224342f2cSKevin Wolf# 324342f2cSKevin Wolf# qcow2 format input validation tests 424342f2cSKevin Wolf# 524342f2cSKevin Wolf# Copyright (C) 2013 Red Hat, Inc. 624342f2cSKevin Wolf# 724342f2cSKevin Wolf# This program is free software; you can redistribute it and/or modify 824342f2cSKevin Wolf# it under the terms of the GNU General Public License as published by 924342f2cSKevin Wolf# the Free Software Foundation; either version 2 of the License, or 1024342f2cSKevin Wolf# (at your option) any later version. 1124342f2cSKevin Wolf# 1224342f2cSKevin Wolf# This program is distributed in the hope that it will be useful, 1324342f2cSKevin Wolf# but WITHOUT ANY WARRANTY; without even the implied warranty of 1424342f2cSKevin Wolf# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 1524342f2cSKevin Wolf# GNU General Public License for more details. 1624342f2cSKevin Wolf# 1724342f2cSKevin Wolf# You should have received a copy of the GNU General Public License 1824342f2cSKevin Wolf# along with this program. If not, see <http://www.gnu.org/licenses/>. 1924342f2cSKevin Wolf# 2024342f2cSKevin Wolf 2124342f2cSKevin Wolf# creator 2224342f2cSKevin Wolfowner=kwolf@redhat.com 2324342f2cSKevin Wolf 2424342f2cSKevin Wolfseq=`basename $0` 2524342f2cSKevin Wolfecho "QA output created by $seq" 2624342f2cSKevin Wolf 2724342f2cSKevin Wolfstatus=1 # failure is the default! 2824342f2cSKevin Wolf 2924342f2cSKevin Wolf_cleanup() 3024342f2cSKevin Wolf{ 31f91ecbd7SMax Reitz _rm_test_img "$TEST_IMG.snap" 3224342f2cSKevin Wolf _cleanup_test_img 3324342f2cSKevin Wolf} 3424342f2cSKevin Wolftrap "_cleanup; exit \$status" 0 1 2 3 15 3524342f2cSKevin Wolf 3624342f2cSKevin Wolf# get standard environment, filters and checks 3724342f2cSKevin Wolf. ./common.rc 3824342f2cSKevin Wolf. ./common.filter 3924342f2cSKevin Wolf 4024342f2cSKevin Wolf_supported_fmt qcow2 41*57284d2aSMax Reitz_supported_proto file fuse 4224342f2cSKevin Wolf_supported_os Linux 433be2024aSMax Reitz# - Internal snapshots are (currently) impossible with refcount_bits=1, 443be2024aSMax Reitz# and generally impossible with external data files 4594254c9bSMax Reitz# - This is generally a test for compat=1.1 images 463be2024aSMax Reitz_unsupported_imgopts 'refcount_bits=1[^0-9]' data_file 'compat=0.10' 4724342f2cSKevin Wolf 48572ad978SDenis Plotnikovheader_size=112 49a1b3955cSKevin Wolf 50a1b3955cSKevin Wolfoffset_backing_file_offset=8 516d33e8e7SKevin Wolfoffset_backing_file_size=16 522d51c32cSKevin Wolfoffset_l1_size=36 532d51c32cSKevin Wolfoffset_l1_table_offset=40 548c7de283SKevin Wolfoffset_refcount_table_offset=48 555dab2fadSKevin Wolfoffset_refcount_table_clusters=56 56ce48f2f4SKevin Wolfoffset_nb_snapshots=60 57ce48f2f4SKevin Wolfoffset_snapshots_offset=64 5824342f2cSKevin Wolfoffset_header_size=100 5924342f2cSKevin Wolfoffset_ext_magic=$header_size 6024342f2cSKevin Wolfoffset_ext_size=$((header_size + 4)) 6124342f2cSKevin Wolf 62b106ad91SKevin Wolfoffset_l2_table_0=$((0x40000)) 63b106ad91SKevin Wolf 646a83f8b5SKevin Wolfoffset_snap1=$((0x70000)) 656a83f8b5SKevin Wolfoffset_snap1_l1_offset=$((offset_snap1 + 0)) 666a83f8b5SKevin Wolfoffset_snap1_l1_size=$((offset_snap1 + 8)) 676a83f8b5SKevin Wolf 6824342f2cSKevin Wolfecho 6924342f2cSKevin Wolfecho "== Huge header size ==" 7024342f2cSKevin Wolf_make_test_img 64M 7124342f2cSKevin Wolfpoke_file "$TEST_IMG" "$offset_header_size" "\xff\xff\xff\xff" 7224342f2cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 7324342f2cSKevin Wolfpoke_file "$TEST_IMG" "$offset_header_size" "\x7f\xff\xff\xff" 7424342f2cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 7524342f2cSKevin Wolf 76a1b3955cSKevin Wolfecho 77a1b3955cSKevin Wolfecho "== Huge unknown header extension ==" 78a1b3955cSKevin Wolf_make_test_img 64M 79a1b3955cSKevin Wolfpoke_file "$TEST_IMG" "$offset_backing_file_offset" "\xff\xff\xff\xff\xff\xff\xff\xff" 80a1b3955cSKevin Wolfpoke_file "$TEST_IMG" "$offset_ext_magic" "\x12\x34\x56\x78" 81a1b3955cSKevin Wolfpoke_file "$TEST_IMG" "$offset_ext_size" "\x7f\xff\xff\xff" 82a1b3955cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 832ebafc85SKevin Wolfpoke_file "$TEST_IMG" "$offset_backing_file_offset" "\x00\x00\x00\x00\x00\x00\x00\x$(printf %x $offset_ext_size)" 842ebafc85SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 85a1b3955cSKevin Wolfpoke_file "$TEST_IMG" "$offset_backing_file_offset" "\x00\x00\x00\x00\x00\x00\x00\x00" 86a1b3955cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 87a1b3955cSKevin Wolf 885dab2fadSKevin Wolfecho 895dab2fadSKevin Wolfecho "== Huge refcount table size ==" 905dab2fadSKevin Wolf_make_test_img 64M 915dab2fadSKevin Wolfpoke_file "$TEST_IMG" "$offset_refcount_table_clusters" "\xff\xff\xff\xff" 925dab2fadSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 935dab2fadSKevin Wolfpoke_file "$TEST_IMG" "$offset_refcount_table_clusters" "\x00\x02\x00\x01" 945dab2fadSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 955dab2fadSKevin Wolf 968c7de283SKevin Wolfecho 978c7de283SKevin Wolfecho "== Misaligned refcount table ==" 988c7de283SKevin Wolf_make_test_img 64M 998c7de283SKevin Wolfpoke_file "$TEST_IMG" "$offset_refcount_table_offset" "\x12\x34\x56\x78\x90\xab\xcd\xef" 1008c7de283SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1018c7de283SKevin Wolf 1028c7de283SKevin Wolfecho 1038c7de283SKevin Wolfecho "== Huge refcount offset ==" 1048c7de283SKevin Wolf_make_test_img 64M 1058c7de283SKevin Wolfpoke_file "$TEST_IMG" "$offset_refcount_table_offset" "\xff\xff\xff\xff\xff\xff\x00\x00" 1068c7de283SKevin Wolfpoke_file "$TEST_IMG" "$offset_refcount_table_clusters" "\x00\x00\x00\x7f" 1078c7de283SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1085dab2fadSKevin Wolf 109ce48f2f4SKevin Wolfecho 110ce48f2f4SKevin Wolfecho "== Invalid snapshot table ==" 111ce48f2f4SKevin Wolf_make_test_img 64M 112ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_nb_snapshots" "\xff\xff\xff\xff" 113ce48f2f4SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 114ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_nb_snapshots" "\x7f\xff\xff\xff" 115ce48f2f4SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 116ce48f2f4SKevin Wolf 117ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_snapshots_offset" "\xff\xff\xff\xff\xff\xff\x00\x00" 118ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_nb_snapshots" "\x00\x00\xff\xff" 119ce48f2f4SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 120ce48f2f4SKevin Wolf 121ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_snapshots_offset" "\x12\x34\x56\x78\x90\xab\xcd\xef" 122ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_nb_snapshots" "\x00\x00\x00\x00" 123ce48f2f4SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 124ce48f2f4SKevin Wolf 125ce48f2f4SKevin Wolfecho 126ce48f2f4SKevin Wolfecho "== Hitting snapshot table size limit ==" 127ce48f2f4SKevin Wolf_make_test_img 64M 128ce48f2f4SKevin Wolf# Put the refcount table in a more or less safe place (16 MB) 129ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_snapshots_offset" "\x00\x00\x00\x00\x01\x00\x00\x00" 130ce48f2f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_nb_snapshots" "\x00\x01\x00\x00" 131ce48f2f4SKevin Wolf{ $QEMU_IMG snapshot -c test $TEST_IMG; } 2>&1 | _filter_testdir 132ce48f2f4SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 133ce48f2f4SKevin Wolf 1342d51c32cSKevin Wolfecho 1352d51c32cSKevin Wolfecho "== Invalid L1 table ==" 1362d51c32cSKevin Wolf_make_test_img 64M 1372d51c32cSKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_size" "\xff\xff\xff\xff" 1382d51c32cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1392d51c32cSKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_size" "\x7f\xff\xff\xff" 1402d51c32cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1412d51c32cSKevin Wolf 1422d51c32cSKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_table_offset" "\x7f\xff\xff\xff\xff\xff\x00\x00" 1432d51c32cSKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_size" "\x00\x00\xff\xff" 1442d51c32cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1452d51c32cSKevin Wolf 1462d51c32cSKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_table_offset" "\x12\x34\x56\x78\x90\xab\xcd\xef" 1472d51c32cSKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_size" "\x00\x00\x00\x01" 1482d51c32cSKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1492d51c32cSKevin Wolf 1506d33e8e7SKevin Wolfecho 15111b128f4SKevin Wolfecho "== Invalid L1 table (with internal snapshot in the image) ==" 15211b128f4SKevin Wolf_make_test_img 64M 15311b128f4SKevin Wolf{ $QEMU_IMG snapshot -c foo $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 15411b128f4SKevin Wolfpoke_file "$TEST_IMG" "$offset_l1_size" "\x00\x00\x00\x00" 15511b128f4SKevin Wolf_img_info 15611b128f4SKevin Wolf 15711b128f4SKevin Wolfecho 1586d33e8e7SKevin Wolfecho "== Invalid backing file size ==" 1596d33e8e7SKevin Wolf_make_test_img 64M 1606d33e8e7SKevin Wolfpoke_file "$TEST_IMG" "$offset_backing_file_offset" "\x00\x00\x00\x00\x00\x00\x10\x00" 1616d33e8e7SKevin Wolfpoke_file "$TEST_IMG" "$offset_backing_file_size" "\xff\xff\xff\xff" 1626d33e8e7SKevin Wolf{ $QEMU_IO -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1636d33e8e7SKevin Wolf 164b106ad91SKevin Wolfecho 165b106ad91SKevin Wolfecho "== Invalid L2 entry (huge physical offset) ==" 166b106ad91SKevin Wolf_make_test_img 64M 167b106ad91SKevin Wolf{ $QEMU_IO -c "write 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 168b106ad91SKevin Wolfpoke_file "$TEST_IMG" "$offset_l2_table_0" "\xbf\xff\xff\xff\xff\xff\x00\x00" 169b106ad91SKevin Wolf{ $QEMU_IMG snapshot -c test $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 170b106ad91SKevin Wolfpoke_file "$TEST_IMG" "$offset_l2_table_0" "\x80\x00\x00\xff\xff\xff\x00\x00" 171b106ad91SKevin Wolf{ $QEMU_IMG snapshot -c test $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 172b106ad91SKevin Wolf 1736a83f8b5SKevin Wolfecho 174314e8d39SAlberto Garciaecho "== Invalid snapshot L1 table offset ==" 175314e8d39SAlberto Garcia_make_test_img 64M 176314e8d39SAlberto Garcia{ $QEMU_IO -c "write 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 177314e8d39SAlberto Garcia{ $QEMU_IMG snapshot -c test $TEST_IMG; } 2>&1 | _filter_testdir 178314e8d39SAlberto Garciapoke_file "$TEST_IMG" "$offset_snap1_l1_offset" "\x00\x00\x00\x00\x00\x40\x02\x00" 17946e8d272SThomas Huth{ $QEMU_IMG convert -l test $TEST_IMG $TEST_IMG.snap; } 2>&1 | _filter_testdir 180c9a442e4SAlberto Garcia{ $QEMU_IMG amend -o compat=0.10 $TEST_IMG; } 2>&1 | _filter_testdir 181c7a9d81dSAlberto Garcia{ $QEMU_IO -c "open -o overlap-check.inactive-l2=on $TEST_IMG" \ 182c7a9d81dSAlberto Garcia -c 'write 0 4k'; } 2>&1 | _filter_qemu_io | _filter_testdir 183a8475d75SAlberto Garcia{ $QEMU_IMG snapshot -a test $TEST_IMG; } 2>&1 | _filter_testdir 184db5794f1SAlberto Garcia{ $QEMU_IMG snapshot -d test $TEST_IMG; } 2>&1 | _filter_testdir 1850c2ada81SAlberto Garcia_check_test_img 186314e8d39SAlberto Garcia 187314e8d39SAlberto Garciaecho 188314e8d39SAlberto Garciaecho "== Invalid snapshot L1 table size ==" 1896a83f8b5SKevin Wolf_make_test_img 64M 1906a83f8b5SKevin Wolf{ $QEMU_IO -c "write 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir 1916a83f8b5SKevin Wolf{ $QEMU_IMG snapshot -c test $TEST_IMG; } 2>&1 | _filter_testdir 1926a83f8b5SKevin Wolfpoke_file "$TEST_IMG" "$offset_snap1_l1_size" "\x10\x00\x00\x00" 19346e8d272SThomas Huth{ $QEMU_IMG convert -l test $TEST_IMG $TEST_IMG.snap; } 2>&1 | _filter_testdir 194c9a442e4SAlberto Garcia{ $QEMU_IMG amend -o compat=0.10 $TEST_IMG; } 2>&1 | _filter_testdir 195c7a9d81dSAlberto Garcia{ $QEMU_IO -c "open -o overlap-check.inactive-l2=on $TEST_IMG" \ 196c7a9d81dSAlberto Garcia -c 'write 0 4k'; } 2>&1 | _filter_qemu_io | _filter_testdir 197a8475d75SAlberto Garcia{ $QEMU_IMG snapshot -a test $TEST_IMG; } 2>&1 | _filter_testdir 198db5794f1SAlberto Garcia{ $QEMU_IMG snapshot -d test $TEST_IMG; } 2>&1 | _filter_testdir 1990c2ada81SAlberto Garcia_check_test_img 2006a83f8b5SKevin Wolf 20124342f2cSKevin Wolf# success, all done 20224342f2cSKevin Wolfecho "*** done" 20324342f2cSKevin Wolfrm -f $seq.full 20424342f2cSKevin Wolfstatus=0 205