search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
nbd: move connection code from block/nbd to nbd/client-connection
[qemu/ericb.git] / block / nbd.c
blob26914509f153dd890d4f3f174dab0a903975baee
1 /*
2 * QEMU Block driver for NBD
3 *
4 * Copyright (c) 2019 Virtuozzo International GmbH.
5 * Copyright (C) 2016 Red Hat, Inc.
6 * Copyright (C) 2008 Bull S.A.S.
7 * Author: Laurent Vivier <Laurent.Vivier@bull.net>
8 *
9 * Some parts:
10 * Copyright (C) 2007 Anthony Liguori <anthony@codemonkey.ws>
11 *
12 * Permission is hereby granted, free of charge, to any person obtaining a copy
13 * of this software and associated documentation files (the "Software"), to deal
14 * in the Software without restriction, including without limitation the rights
15 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
16 * copies of the Software, and to permit persons to whom the Software is
17 * furnished to do so, subject to the following conditions:
18 *
19 * The above copyright notice and this permission notice shall be included in
20 * all copies or substantial portions of the Software.
21 *
22 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
23 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
24 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
25 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
26 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
27 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
28 * THE SOFTWARE.
29 */
30
31 #include "qemu/osdep.h"
32
33 #include "trace.h"
34 #include "qemu/uri.h"
35 #include "qemu/option.h"
36 #include "qemu/cutils.h"
37 #include "qemu/main-loop.h"
38 #include "qemu/atomic.h"
39
40 #include "qapi/qapi-visit-sockets.h"
41 #include "qapi/qmp/qstring.h"
42 #include "qapi/clone-visitor.h"
43
44 #include "block/qdict.h"
45 #include "block/nbd.h"
46 #include "block/block_int.h"
47
48 #include "qemu/yank.h"
49
50 #define EN_OPTSTR ":exportname="
51 #define MAX_NBD_REQUESTS 16
52
53 #define HANDLE_TO_INDEX(bs, handle) ((handle) ^ (uint64_t)(intptr_t)(bs))
54 #define INDEX_TO_HANDLE(bs, index) ((index) ^ (uint64_t)(intptr_t)(bs))
55
56 typedef struct {
57 Coroutine *coroutine;
58 uint64_t offset; /* original offset of the request */
59 bool receiving; /* waiting for connection_co? */
60 } NBDClientRequest;
61
62 typedef enum NBDClientState {
63 NBD_CLIENT_CONNECTING_WAIT,
64 NBD_CLIENT_CONNECTING_NOWAIT,
65 NBD_CLIENT_CONNECTED,
66 NBD_CLIENT_QUIT
67 } NBDClientState;
68
69 typedef struct BDRVNBDState {
70 QIOChannelSocket *sioc; /* The master data channel */
71 QIOChannel *ioc; /* The current I/O channel which may differ (eg TLS) */
72 NBDExportInfo info;
73
74 CoMutex send_mutex;
75 CoQueue free_sema;
76 Coroutine *connection_co;
77 Coroutine *teardown_co;
78 QemuCoSleep reconnect_sleep;
79 bool drained;
80 bool wait_drained_end;
81 int in_flight;
82 NBDClientState state;
83 bool wait_in_flight;
84
85 QEMUTimer *reconnect_delay_timer;
86
87 NBDClientRequest requests[MAX_NBD_REQUESTS];
88 NBDReply reply;
89 BlockDriverState *bs;
90
91 /* Connection parameters */
92 uint32_t reconnect_delay;
93 SocketAddress *saddr;
94 char *export, *tlscredsid;
95 QCryptoTLSCreds *tlscreds;
96 const char *hostname;
97 char *x_dirty_bitmap;
98 bool alloc_depth;
99
100 NBDClientConnection *conn;
101 } BDRVNBDState;
102
103 static int nbd_establish_connection(BlockDriverState *bs, SocketAddress *saddr,
104 Error **errp);
105 static int nbd_client_handshake(BlockDriverState *bs, Error **errp);
106 static void nbd_yank(void *opaque);
107
108 static void nbd_clear_bdrvstate(BlockDriverState *bs)
109 {
110 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
111
112 nbd_client_connection_release(s->conn);
113 s->conn = NULL;
114
115 yank_unregister_instance(BLOCKDEV_YANK_INSTANCE(bs->node_name));
116
117 object_unref(OBJECT(s->tlscreds));
118 qapi_free_SocketAddress(s->saddr);
119 s->saddr = NULL;
120 g_free(s->export);
121 s->export = NULL;
122 g_free(s->tlscredsid);
123 s->tlscredsid = NULL;
124 g_free(s->x_dirty_bitmap);
125 s->x_dirty_bitmap = NULL;
126 }
127
128 static void nbd_channel_error(BDRVNBDState *s, int ret)
129 {
130 if (ret == -EIO) {
131 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTED) {
132 s->state = s->reconnect_delay ? NBD_CLIENT_CONNECTING_WAIT :
133 NBD_CLIENT_CONNECTING_NOWAIT;
134 }
135 } else {
136 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTED) {
137 qio_channel_shutdown(s->ioc, QIO_CHANNEL_SHUTDOWN_BOTH, NULL);
138 }
139 s->state = NBD_CLIENT_QUIT;
140 }
141 }
142
143 static void nbd_recv_coroutines_wake_all(BDRVNBDState *s)
144 {
145 int i;
146
147 for (i = 0; i < MAX_NBD_REQUESTS; i++) {
148 NBDClientRequest *req = &s->requests[i];
149
150 if (req->coroutine && req->receiving) {
151 aio_co_wake(req->coroutine);
152 }
153 }
154 }
155
156 static void reconnect_delay_timer_del(BDRVNBDState *s)
157 {
158 if (s->reconnect_delay_timer) {
159 timer_free(s->reconnect_delay_timer);
160 s->reconnect_delay_timer = NULL;
161 }
162 }
163
164 static void reconnect_delay_timer_cb(void *opaque)
165 {
166 BDRVNBDState *s = opaque;
167
168 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTING_WAIT) {
169 s->state = NBD_CLIENT_CONNECTING_NOWAIT;
170 while (qemu_co_enter_next(&s->free_sema, NULL)) {
171 /* Resume all queued requests */
172 }
173 }
174
175 reconnect_delay_timer_del(s);
176 }
177
178 static void reconnect_delay_timer_init(BDRVNBDState *s, uint64_t expire_time_ns)
179 {
180 if (qatomic_load_acquire(&s->state) != NBD_CLIENT_CONNECTING_WAIT) {
181 return;
182 }
183
184 assert(!s->reconnect_delay_timer);
185 s->reconnect_delay_timer = aio_timer_new(bdrv_get_aio_context(s->bs),
186 QEMU_CLOCK_REALTIME,
187 SCALE_NS,
188 reconnect_delay_timer_cb, s);
189 timer_mod(s->reconnect_delay_timer, expire_time_ns);
190 }
191
192 static void nbd_client_detach_aio_context(BlockDriverState *bs)
193 {
194 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
195
196 /* Timer is deleted in nbd_client_co_drain_begin() */
197 assert(!s->reconnect_delay_timer);
198 /*
199 * If reconnect is in progress we may have no ->ioc. It will be
200 * re-instantiated in the proper aio context once the connection is
201 * reestablished.
202 */
203 if (s->ioc) {
204 qio_channel_detach_aio_context(QIO_CHANNEL(s->ioc));
205 }
206 }
207
208 static void nbd_client_attach_aio_context_bh(void *opaque)
209 {
210 BlockDriverState *bs = opaque;
211 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
212
213 if (s->connection_co) {
214 /*
215 * The node is still drained, so we know the coroutine has yielded in
216 * nbd_read_eof(), the only place where bs->in_flight can reach 0, or
217 * it is entered for the first time. Both places are safe for entering
218 * the coroutine.
219 */
220 qemu_aio_coroutine_enter(bs->aio_context, s->connection_co);
221 }
222 bdrv_dec_in_flight(bs);
223 }
224
225 static void nbd_client_attach_aio_context(BlockDriverState *bs,
226 AioContext *new_context)
227 {
228 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
229
230 /*
231 * s->connection_co is either yielded from nbd_receive_reply or from
232 * nbd_co_reconnect_loop()
233 */
234 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTED) {
235 qio_channel_attach_aio_context(QIO_CHANNEL(s->ioc), new_context);
236 }
237
238 bdrv_inc_in_flight(bs);
239
240 /*
241 * Need to wait here for the BH to run because the BH must run while the
242 * node is still drained.
243 */
244 aio_wait_bh_oneshot(new_context, nbd_client_attach_aio_context_bh, bs);
245 }
246
247 static void coroutine_fn nbd_client_co_drain_begin(BlockDriverState *bs)
248 {
249 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
250
251 s->drained = true;
252 qemu_co_sleep_wake(&s->reconnect_sleep);
253
254 nbd_co_establish_connection_cancel(s->conn);
255
256 reconnect_delay_timer_del(s);
257
258 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTING_WAIT) {
259 s->state = NBD_CLIENT_CONNECTING_NOWAIT;
260 qemu_co_queue_restart_all(&s->free_sema);
261 }
262 }
263
264 static void coroutine_fn nbd_client_co_drain_end(BlockDriverState *bs)
265 {
266 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
267
268 s->drained = false;
269 if (s->wait_drained_end) {
270 s->wait_drained_end = false;
271 aio_co_wake(s->connection_co);
272 }
273 }
274
275
276 static void nbd_teardown_connection(BlockDriverState *bs)
277 {
278 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
279
280 if (s->ioc) {
281 /* finish any pending coroutines */
282 qio_channel_shutdown(s->ioc, QIO_CHANNEL_SHUTDOWN_BOTH, NULL);
283 } else if (s->sioc) {
284 /* abort negotiation */
285 qio_channel_shutdown(QIO_CHANNEL(s->sioc), QIO_CHANNEL_SHUTDOWN_BOTH,
286 NULL);
287 }
288
289 s->state = NBD_CLIENT_QUIT;
290 if (s->connection_co) {
291 qemu_co_sleep_wake(&s->reconnect_sleep);
292 nbd_co_establish_connection_cancel(s->conn);
293 }
294 if (qemu_in_coroutine()) {
295 s->teardown_co = qemu_coroutine_self();
296 /* connection_co resumes us when it terminates */
297 qemu_coroutine_yield();
298 s->teardown_co = NULL;
299 } else {
300 BDRV_POLL_WHILE(bs, s->connection_co);
301 }
302 assert(!s->connection_co);
303 }
304
305 static bool nbd_client_connecting(BDRVNBDState *s)
306 {
307 NBDClientState state = qatomic_load_acquire(&s->state);
308 return state == NBD_CLIENT_CONNECTING_WAIT ||
309 state == NBD_CLIENT_CONNECTING_NOWAIT;
310 }
311
312 static bool nbd_client_connecting_wait(BDRVNBDState *s)
313 {
314 return qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTING_WAIT;
315 }
316
317 static coroutine_fn void nbd_reconnect_attempt(BDRVNBDState *s)
318 {
319 int ret;
320
321 if (!nbd_client_connecting(s)) {
322 return;
323 }
324
325 /* Wait for completion of all in-flight requests */
326
327 qemu_co_mutex_lock(&s->send_mutex);
328
329 while (s->in_flight > 0) {
330 qemu_co_mutex_unlock(&s->send_mutex);
331 nbd_recv_coroutines_wake_all(s);
332 s->wait_in_flight = true;
333 qemu_coroutine_yield();
334 s->wait_in_flight = false;
335 qemu_co_mutex_lock(&s->send_mutex);
336 }
337
338 qemu_co_mutex_unlock(&s->send_mutex);
339
340 if (!nbd_client_connecting(s)) {
341 return;
342 }
343
344 /*
345 * Now we are sure that nobody is accessing the channel, and no one will
346 * try until we set the state to CONNECTED.
347 */
348
349 /* Finalize previous connection if any */
350 if (s->ioc) {
351 qio_channel_detach_aio_context(QIO_CHANNEL(s->ioc));
352 yank_unregister_function(BLOCKDEV_YANK_INSTANCE(s->bs->node_name),
353 nbd_yank, s->bs);
354 object_unref(OBJECT(s->sioc));
355 s->sioc = NULL;
356 object_unref(OBJECT(s->ioc));
357 s->ioc = NULL;
358 }
359
360 s->sioc = nbd_co_establish_connection(s->conn, NULL);
361 if (!s->sioc) {
362 ret = -ECONNREFUSED;
363 goto out;
364 }
365
366 yank_register_function(BLOCKDEV_YANK_INSTANCE(s->bs->node_name), nbd_yank,
367 s->bs);
368
369 bdrv_dec_in_flight(s->bs);
370
371 ret = nbd_client_handshake(s->bs, NULL);
372
373 if (s->drained) {
374 s->wait_drained_end = true;
375 while (s->drained) {
376 /*
377 * We may be entered once from nbd_client_attach_aio_context_bh
378 * and then from nbd_client_co_drain_end. So here is a loop.
379 */
380 qemu_coroutine_yield();
381 }
382 }
383 bdrv_inc_in_flight(s->bs);
384
385 out:
386 if (ret >= 0) {
387 /* successfully connected */
388 s->state = NBD_CLIENT_CONNECTED;
389 qemu_co_queue_restart_all(&s->free_sema);
390 }
391 }
392
393 static coroutine_fn void nbd_co_reconnect_loop(BDRVNBDState *s)
394 {
395 uint64_t timeout = 1 * NANOSECONDS_PER_SECOND;
396 uint64_t max_timeout = 16 * NANOSECONDS_PER_SECOND;
397
398 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTING_WAIT) {
399 reconnect_delay_timer_init(s, qemu_clock_get_ns(QEMU_CLOCK_REALTIME) +
400 s->reconnect_delay * NANOSECONDS_PER_SECOND);
401 }
402
403 nbd_reconnect_attempt(s);
404
405 while (nbd_client_connecting(s)) {
406 if (s->drained) {
407 bdrv_dec_in_flight(s->bs);
408 s->wait_drained_end = true;
409 while (s->drained) {
410 /*
411 * We may be entered once from nbd_client_attach_aio_context_bh
412 * and then from nbd_client_co_drain_end. So here is a loop.
413 */
414 qemu_coroutine_yield();
415 }
416 bdrv_inc_in_flight(s->bs);
417 } else {
418 qemu_co_sleep_ns_wakeable(&s->reconnect_sleep,
419 QEMU_CLOCK_REALTIME, timeout);
420 if (s->drained) {
421 continue;
422 }
423 if (timeout < max_timeout) {
424 timeout *= 2;
425 }
426 }
427
428 nbd_reconnect_attempt(s);
429 }
430
431 reconnect_delay_timer_del(s);
432 }
433
434 static coroutine_fn void nbd_connection_entry(void *opaque)
435 {
436 BDRVNBDState *s = opaque;
437 uint64_t i;
438 int ret = 0;
439 Error *local_err = NULL;
440
441 while (qatomic_load_acquire(&s->state) != NBD_CLIENT_QUIT) {
442 /*
443 * The NBD client can only really be considered idle when it has
444 * yielded from qio_channel_readv_all_eof(), waiting for data. This is
445 * the point where the additional scheduled coroutine entry happens
446 * after nbd_client_attach_aio_context().
447 *
448 * Therefore we keep an additional in_flight reference all the time and
449 * only drop it temporarily here.
450 */
451
452 if (nbd_client_connecting(s)) {
453 nbd_co_reconnect_loop(s);
454 }
455
456 if (qatomic_load_acquire(&s->state) != NBD_CLIENT_CONNECTED) {
457 continue;
458 }
459
460 assert(s->reply.handle == 0);
461 ret = nbd_receive_reply(s->bs, s->ioc, &s->reply, &local_err);
462
463 if (local_err) {
464 trace_nbd_read_reply_entry_fail(ret, error_get_pretty(local_err));
465 error_free(local_err);
466 local_err = NULL;
467 }
468 if (ret <= 0) {
469 nbd_channel_error(s, ret ? ret : -EIO);
470 continue;
471 }
472
473 /*
474 * There's no need for a mutex on the receive side, because the
475 * handler acts as a synchronization point and ensures that only
476 * one coroutine is called until the reply finishes.
477 */
478 i = HANDLE_TO_INDEX(s, s->reply.handle);
479 if (i >= MAX_NBD_REQUESTS ||
480 !s->requests[i].coroutine ||
481 !s->requests[i].receiving ||
482 (nbd_reply_is_structured(&s->reply) && !s->info.structured_reply))
483 {
484 nbd_channel_error(s, -EINVAL);
485 continue;
486 }
487
488 /*
489 * We're woken up again by the request itself. Note that there
490 * is no race between yielding and reentering connection_co. This
491 * is because:
492 *
493 * - if the request runs on the same AioContext, it is only
494 * entered after we yield
495 *
496 * - if the request runs on a different AioContext, reentering
497 * connection_co happens through a bottom half, which can only
498 * run after we yield.
499 */
500 aio_co_wake(s->requests[i].coroutine);
501 qemu_coroutine_yield();
502 }
503
504 qemu_co_queue_restart_all(&s->free_sema);
505 nbd_recv_coroutines_wake_all(s);
506 bdrv_dec_in_flight(s->bs);
507
508 s->connection_co = NULL;
509 if (s->ioc) {
510 qio_channel_detach_aio_context(QIO_CHANNEL(s->ioc));
511 yank_unregister_function(BLOCKDEV_YANK_INSTANCE(s->bs->node_name),
512 nbd_yank, s->bs);
513 object_unref(OBJECT(s->sioc));
514 s->sioc = NULL;
515 object_unref(OBJECT(s->ioc));
516 s->ioc = NULL;
517 }
518
519 if (s->teardown_co) {
520 aio_co_wake(s->teardown_co);
521 }
522 aio_wait_kick();
523 }
524
525 static int nbd_co_send_request(BlockDriverState *bs,
526 NBDRequest *request,
527 QEMUIOVector *qiov)
528 {
529 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
530 int rc, i = -1;
531
532 qemu_co_mutex_lock(&s->send_mutex);
533 while (s->in_flight == MAX_NBD_REQUESTS || nbd_client_connecting_wait(s)) {
534 qemu_co_queue_wait(&s->free_sema, &s->send_mutex);
535 }
536
537 if (qatomic_load_acquire(&s->state) != NBD_CLIENT_CONNECTED) {
538 rc = -EIO;
539 goto err;
540 }
541
542 s->in_flight++;
543
544 for (i = 0; i < MAX_NBD_REQUESTS; i++) {
545 if (s->requests[i].coroutine == NULL) {
546 break;
547 }
548 }
549
550 g_assert(qemu_in_coroutine());
551 assert(i < MAX_NBD_REQUESTS);
552
553 s->requests[i].coroutine = qemu_coroutine_self();
554 s->requests[i].offset = request->from;
555 s->requests[i].receiving = false;
556
557 request->handle = INDEX_TO_HANDLE(s, i);
558
559 assert(s->ioc);
560
561 if (qiov) {
562 qio_channel_set_cork(s->ioc, true);
563 rc = nbd_send_request(s->ioc, request);
564 if (qatomic_load_acquire(&s->state) == NBD_CLIENT_CONNECTED &&
565 rc >= 0) {
566 if (qio_channel_writev_all(s->ioc, qiov->iov, qiov->niov,
567 NULL) < 0) {
568 rc = -EIO;
569 }
570 } else if (rc >= 0) {
571 rc = -EIO;
572 }
573 qio_channel_set_cork(s->ioc, false);
574 } else {
575 rc = nbd_send_request(s->ioc, request);
576 }
577
578 err:
579 if (rc < 0) {
580 nbd_channel_error(s, rc);
581 if (i != -1) {
582 s->requests[i].coroutine = NULL;
583 s->in_flight--;
584 }
585 if (s->in_flight == 0 && s->wait_in_flight) {
586 aio_co_wake(s->connection_co);
587 } else {
588 qemu_co_queue_next(&s->free_sema);
589 }
590 }
591 qemu_co_mutex_unlock(&s->send_mutex);
592 return rc;
593 }
594
595 static inline uint16_t payload_advance16(uint8_t **payload)
596 {
597 *payload += 2;
598 return lduw_be_p(*payload - 2);
599 }
600
601 static inline uint32_t payload_advance32(uint8_t **payload)
602 {
603 *payload += 4;
604 return ldl_be_p(*payload - 4);
605 }
606
607 static inline uint64_t payload_advance64(uint8_t **payload)
608 {
609 *payload += 8;
610 return ldq_be_p(*payload - 8);
611 }
612
613 static int nbd_parse_offset_hole_payload(BDRVNBDState *s,
614 NBDStructuredReplyChunk *chunk,
615 uint8_t *payload, uint64_t orig_offset,
616 QEMUIOVector *qiov, Error **errp)
617 {
618 uint64_t offset;
619 uint32_t hole_size;
620
621 if (chunk->length != sizeof(offset) + sizeof(hole_size)) {
622 error_setg(errp, "Protocol error: invalid payload for "
623 "NBD_REPLY_TYPE_OFFSET_HOLE");
624 return -EINVAL;
625 }
626
627 offset = payload_advance64(&payload);
628 hole_size = payload_advance32(&payload);
629
630 if (!hole_size || offset < orig_offset || hole_size > qiov->size ||
631 offset > orig_offset + qiov->size - hole_size) {
632 error_setg(errp, "Protocol error: server sent chunk exceeding requested"
633 " region");
634 return -EINVAL;
635 }
636 if (s->info.min_block &&
637 !QEMU_IS_ALIGNED(hole_size, s->info.min_block)) {
638 trace_nbd_structured_read_compliance("hole");
639 }
640
641 qemu_iovec_memset(qiov, offset - orig_offset, 0, hole_size);
642
643 return 0;
644 }
645
646 /*
647 * nbd_parse_blockstatus_payload
648 * Based on our request, we expect only one extent in reply, for the
649 * base:allocation context.
650 */
651 static int nbd_parse_blockstatus_payload(BDRVNBDState *s,
652 NBDStructuredReplyChunk *chunk,
653 uint8_t *payload, uint64_t orig_length,
654 NBDExtent *extent, Error **errp)
655 {
656 uint32_t context_id;
657
658 /* The server succeeded, so it must have sent [at least] one extent */
659 if (chunk->length < sizeof(context_id) + sizeof(*extent)) {
660 error_setg(errp, "Protocol error: invalid payload for "
661 "NBD_REPLY_TYPE_BLOCK_STATUS");
662 return -EINVAL;
663 }
664
665 context_id = payload_advance32(&payload);
666 if (s->info.context_id != context_id) {
667 error_setg(errp, "Protocol error: unexpected context id %d for "
668 "NBD_REPLY_TYPE_BLOCK_STATUS, when negotiated context "
669 "id is %d", context_id,
670 s->info.context_id);
671 return -EINVAL;
672 }
673
674 extent->length = payload_advance32(&payload);
675 extent->flags = payload_advance32(&payload);
676
677 if (extent->length == 0) {
678 error_setg(errp, "Protocol error: server sent status chunk with "
679 "zero length");
680 return -EINVAL;
681 }
682
683 /*
684 * A server sending unaligned block status is in violation of the
685 * protocol, but as qemu-nbd 3.1 is such a server (at least for
686 * POSIX files that are not a multiple of 512 bytes, since qemu
687 * rounds files up to 512-byte multiples but lseek(SEEK_HOLE)
688 * still sees an implicit hole beyond the real EOF), it's nicer to
689 * work around the misbehaving server. If the request included
690 * more than the final unaligned block, truncate it back to an
691 * aligned result; if the request was only the final block, round
692 * up to the full block and change the status to fully-allocated
693 * (always a safe status, even if it loses information).
694 */
695 if (s->info.min_block && !QEMU_IS_ALIGNED(extent->length,
696 s->info.min_block)) {
697 trace_nbd_parse_blockstatus_compliance("extent length is unaligned");
698 if (extent->length > s->info.min_block) {
699 extent->length = QEMU_ALIGN_DOWN(extent->length,
700 s->info.min_block);
701 } else {
702 extent->length = s->info.min_block;
703 extent->flags = 0;
704 }
705 }
706
707 /*
708 * We used NBD_CMD_FLAG_REQ_ONE, so the server should not have
709 * sent us any more than one extent, nor should it have included
710 * status beyond our request in that extent. However, it's easy
711 * enough to ignore the server's noncompliance without killing the
712 * connection; just ignore trailing extents, and clamp things to
713 * the length of our request.
714 */
715 if (chunk->length > sizeof(context_id) + sizeof(*extent)) {
716 trace_nbd_parse_blockstatus_compliance("more than one extent");
717 }
718 if (extent->length > orig_length) {
719 extent->length = orig_length;
720 trace_nbd_parse_blockstatus_compliance("extent length too large");
721 }
722
723 /*
724 * HACK: if we are using x-dirty-bitmaps to access
725 * qemu:allocation-depth, treat all depths > 2 the same as 2,
726 * since nbd_client_co_block_status is only expecting the low two
727 * bits to be set.
728 */
729 if (s->alloc_depth && extent->flags > 2) {
730 extent->flags = 2;
731 }
732
733 return 0;
734 }
735
736 /*
737 * nbd_parse_error_payload
738 * on success @errp contains message describing nbd error reply
739 */
740 static int nbd_parse_error_payload(NBDStructuredReplyChunk *chunk,
741 uint8_t *payload, int *request_ret,
742 Error **errp)
743 {
744 uint32_t error;
745 uint16_t message_size;
746
747 assert(chunk->type & (1 << 15));
748
749 if (chunk->length < sizeof(error) + sizeof(message_size)) {
750 error_setg(errp,
751 "Protocol error: invalid payload for structured error");
752 return -EINVAL;
753 }
754
755 error = nbd_errno_to_system_errno(payload_advance32(&payload));
756 if (error == 0) {
757 error_setg(errp, "Protocol error: server sent structured error chunk "
758 "with error = 0");
759 return -EINVAL;
760 }
761
762 *request_ret = -error;
763 message_size = payload_advance16(&payload);
764
765 if (message_size > chunk->length - sizeof(error) - sizeof(message_size)) {
766 error_setg(errp, "Protocol error: server sent structured error chunk "
767 "with incorrect message size");
768 return -EINVAL;
769 }
770
771 /* TODO: Add a trace point to mention the server complaint */
772
773 /* TODO handle ERROR_OFFSET */
774
775 return 0;
776 }
777
778 static int nbd_co_receive_offset_data_payload(BDRVNBDState *s,
779 uint64_t orig_offset,
780 QEMUIOVector *qiov, Error **errp)
781 {
782 QEMUIOVector sub_qiov;
783 uint64_t offset;
784 size_t data_size;
785 int ret;
786 NBDStructuredReplyChunk *chunk = &s->reply.structured;
787
788 assert(nbd_reply_is_structured(&s->reply));
789
790 /* The NBD spec requires at least one byte of payload */
791 if (chunk->length <= sizeof(offset)) {
792 error_setg(errp, "Protocol error: invalid payload for "
793 "NBD_REPLY_TYPE_OFFSET_DATA");
794 return -EINVAL;
795 }
796
797 if (nbd_read64(s->ioc, &offset, "OFFSET_DATA offset", errp) < 0) {
798 return -EIO;
799 }
800
801 data_size = chunk->length - sizeof(offset);
802 assert(data_size);
803 if (offset < orig_offset || data_size > qiov->size ||
804 offset > orig_offset + qiov->size - data_size) {
805 error_setg(errp, "Protocol error: server sent chunk exceeding requested"
806 " region");
807 return -EINVAL;
808 }
809 if (s->info.min_block && !QEMU_IS_ALIGNED(data_size, s->info.min_block)) {
810 trace_nbd_structured_read_compliance("data");
811 }
812
813 qemu_iovec_init(&sub_qiov, qiov->niov);
814 qemu_iovec_concat(&sub_qiov, qiov, offset - orig_offset, data_size);
815 ret = qio_channel_readv_all(s->ioc, sub_qiov.iov, sub_qiov.niov, errp);
816 qemu_iovec_destroy(&sub_qiov);
817
818 return ret < 0 ? -EIO : 0;
819 }
820
821 #define NBD_MAX_MALLOC_PAYLOAD 1000
822 static coroutine_fn int nbd_co_receive_structured_payload(
823 BDRVNBDState *s, void **payload, Error **errp)
824 {
825 int ret;
826 uint32_t len;
827
828 assert(nbd_reply_is_structured(&s->reply));
829
830 len = s->reply.structured.length;
831
832 if (len == 0) {
833 return 0;
834 }
835
836 if (payload == NULL) {
837 error_setg(errp, "Unexpected structured payload");
838 return -EINVAL;
839 }
840
841 if (len > NBD_MAX_MALLOC_PAYLOAD) {
842 error_setg(errp, "Payload too large");
843 return -EINVAL;
844 }
845
846 *payload = g_new(char, len);
847 ret = nbd_read(s->ioc, *payload, len, "structured payload", errp);
848 if (ret < 0) {
849 g_free(*payload);
850 *payload = NULL;
851 return ret;
852 }
853
854 return 0;
855 }
856
857 /*
858 * nbd_co_do_receive_one_chunk
859 * for simple reply:
860 * set request_ret to received reply error
861 * if qiov is not NULL: read payload to @qiov
862 * for structured reply chunk:
863 * if error chunk: read payload, set @request_ret, do not set @payload
864 * else if offset_data chunk: read payload data to @qiov, do not set @payload
865 * else: read payload to @payload
866 *
867 * If function fails, @errp contains corresponding error message, and the
868 * connection with the server is suspect. If it returns 0, then the
869 * transaction succeeded (although @request_ret may be a negative errno
870 * corresponding to the server's error reply), and errp is unchanged.
871 */
872 static coroutine_fn int nbd_co_do_receive_one_chunk(
873 BDRVNBDState *s, uint64_t handle, bool only_structured,
874 int *request_ret, QEMUIOVector *qiov, void **payload, Error **errp)
875 {
876 int ret;
877 int i = HANDLE_TO_INDEX(s, handle);
878 void *local_payload = NULL;
879 NBDStructuredReplyChunk *chunk;
880
881 if (payload) {
882 *payload = NULL;
883 }
884 *request_ret = 0;
885
886 /* Wait until we're woken up by nbd_connection_entry. */
887 s->requests[i].receiving = true;
888 qemu_coroutine_yield();
889 s->requests[i].receiving = false;
890 if (qatomic_load_acquire(&s->state) != NBD_CLIENT_CONNECTED) {
891 error_setg(errp, "Connection closed");
892 return -EIO;
893 }
894 assert(s->ioc);
895
896 assert(s->reply.handle == handle);
897
898 if (nbd_reply_is_simple(&s->reply)) {
899 if (only_structured) {
900 error_setg(errp, "Protocol error: simple reply when structured "
901 "reply chunk was expected");
902 return -EINVAL;
903 }
904
905 *request_ret = -nbd_errno_to_system_errno(s->reply.simple.error);
906 if (*request_ret < 0 || !qiov) {
907 return 0;
908 }
909
910 return qio_channel_readv_all(s->ioc, qiov->iov, qiov->niov,
911 errp) < 0 ? -EIO : 0;
912 }
913
914 /* handle structured reply chunk */
915 assert(s->info.structured_reply);
916 chunk = &s->reply.structured;
917
918 if (chunk->type == NBD_REPLY_TYPE_NONE) {
919 if (!(chunk->flags & NBD_REPLY_FLAG_DONE)) {
920 error_setg(errp, "Protocol error: NBD_REPLY_TYPE_NONE chunk without"
921 " NBD_REPLY_FLAG_DONE flag set");
922 return -EINVAL;
923 }
924 if (chunk->length) {
925 error_setg(errp, "Protocol error: NBD_REPLY_TYPE_NONE chunk with"
926 " nonzero length");
927 return -EINVAL;
928 }
929 return 0;
930 }
931
932 if (chunk->type == NBD_REPLY_TYPE_OFFSET_DATA) {
933 if (!qiov) {
934 error_setg(errp, "Unexpected NBD_REPLY_TYPE_OFFSET_DATA chunk");
935 return -EINVAL;
936 }
937
938 return nbd_co_receive_offset_data_payload(s, s->requests[i].offset,
939 qiov, errp);
940 }
941
942 if (nbd_reply_type_is_error(chunk->type)) {
943 payload = &local_payload;
944 }
945
946 ret = nbd_co_receive_structured_payload(s, payload, errp);
947 if (ret < 0) {
948 return ret;
949 }
950
951 if (nbd_reply_type_is_error(chunk->type)) {
952 ret = nbd_parse_error_payload(chunk, local_payload, request_ret, errp);
953 g_free(local_payload);
954 return ret;
955 }
956
957 return 0;
958 }
959
960 /*
961 * nbd_co_receive_one_chunk
962 * Read reply, wake up connection_co and set s->quit if needed.
963 * Return value is a fatal error code or normal nbd reply error code
964 */
965 static coroutine_fn int nbd_co_receive_one_chunk(
966 BDRVNBDState *s, uint64_t handle, bool only_structured,
967 int *request_ret, QEMUIOVector *qiov, NBDReply *reply, void **payload,
968 Error **errp)
969 {
970 int ret = nbd_co_do_receive_one_chunk(s, handle, only_structured,
971 request_ret, qiov, payload, errp);
972
973 if (ret < 0) {
974 memset(reply, 0, sizeof(*reply));
975 nbd_channel_error(s, ret);
976 } else {
977 /* For assert at loop start in nbd_connection_entry */
978 *reply = s->reply;
979 }
980 s->reply.handle = 0;
981
982 if (s->connection_co && !s->wait_in_flight) {
983 /*
984 * We must check s->wait_in_flight, because we may entered by
985 * nbd_recv_coroutines_wake_all(), in this case we should not
986 * wake connection_co here, it will woken by last request.
987 */
988 aio_co_wake(s->connection_co);
989 }
990
991 return ret;
992 }
993
994 typedef struct NBDReplyChunkIter {
995 int ret;
996 int request_ret;
997 Error *err;
998 bool done, only_structured;
999 } NBDReplyChunkIter;
1000
1001 static void nbd_iter_channel_error(NBDReplyChunkIter *iter,
1002 int ret, Error **local_err)
1003 {
1004 assert(local_err && *local_err);
1005 assert(ret < 0);
1006
1007 if (!iter->ret) {
1008 iter->ret = ret;
1009 error_propagate(&iter->err, *local_err);
1010 } else {
1011 error_free(*local_err);
1012 }
1013
1014 *local_err = NULL;
1015 }
1016
1017 static void nbd_iter_request_error(NBDReplyChunkIter *iter, int ret)
1018 {
1019 assert(ret < 0);
1020
1021 if (!iter->request_ret) {
1022 iter->request_ret = ret;
1023 }
1024 }
1025
1026 /*
1027 * NBD_FOREACH_REPLY_CHUNK
1028 * The pointer stored in @payload requires g_free() to free it.
1029 */
1030 #define NBD_FOREACH_REPLY_CHUNK(s, iter, handle, structured, \
1031 qiov, reply, payload) \
1032 for (iter = (NBDReplyChunkIter) { .only_structured = structured }; \
1033 nbd_reply_chunk_iter_receive(s, &iter, handle, qiov, reply, payload);)
1034
1035 /*
1036 * nbd_reply_chunk_iter_receive
1037 * The pointer stored in @payload requires g_free() to free it.
1038 */
1039 static bool nbd_reply_chunk_iter_receive(BDRVNBDState *s,
1040 NBDReplyChunkIter *iter,
1041 uint64_t handle,
1042 QEMUIOVector *qiov, NBDReply *reply,
1043 void **payload)
1044 {
1045 int ret, request_ret;
1046 NBDReply local_reply;
1047 NBDStructuredReplyChunk *chunk;
1048 Error *local_err = NULL;
1049 if (qatomic_load_acquire(&s->state) != NBD_CLIENT_CONNECTED) {
1050 error_setg(&local_err, "Connection closed");
1051 nbd_iter_channel_error(iter, -EIO, &local_err);
1052 goto break_loop;
1053 }
1054
1055 if (iter->done) {
1056 /* Previous iteration was last. */
1057 goto break_loop;
1058 }
1059
1060 if (reply == NULL) {
1061 reply = &local_reply;
1062 }
1063
1064 ret = nbd_co_receive_one_chunk(s, handle, iter->only_structured,
1065 &request_ret, qiov, reply, payload,
1066 &local_err);
1067 if (ret < 0) {
1068 nbd_iter_channel_error(iter, ret, &local_err);
1069 } else if (request_ret < 0) {
1070 nbd_iter_request_error(iter, request_ret);
1071 }
1072
1073 /* Do not execute the body of NBD_FOREACH_REPLY_CHUNK for simple reply. */
1074 if (nbd_reply_is_simple(reply) ||
1075 qatomic_load_acquire(&s->state) != NBD_CLIENT_CONNECTED) {
1076 goto break_loop;
1077 }
1078
1079 chunk = &reply->structured;
1080 iter->only_structured = true;
1081
1082 if (chunk->type == NBD_REPLY_TYPE_NONE) {
1083 /* NBD_REPLY_FLAG_DONE is already checked in nbd_co_receive_one_chunk */
1084 assert(chunk->flags & NBD_REPLY_FLAG_DONE);
1085 goto break_loop;
1086 }
1087
1088 if (chunk->flags & NBD_REPLY_FLAG_DONE) {
1089 /* This iteration is last. */
1090 iter->done = true;
1091 }
1092
1093 /* Execute the loop body */
1094 return true;
1095
1096 break_loop:
1097 s->requests[HANDLE_TO_INDEX(s, handle)].coroutine = NULL;
1098
1099 qemu_co_mutex_lock(&s->send_mutex);
1100 s->in_flight--;
1101 if (s->in_flight == 0 && s->wait_in_flight) {
1102 aio_co_wake(s->connection_co);
1103 } else {
1104 qemu_co_queue_next(&s->free_sema);
1105 }
1106 qemu_co_mutex_unlock(&s->send_mutex);
1107
1108 return false;
1109 }
1110
1111 static int nbd_co_receive_return_code(BDRVNBDState *s, uint64_t handle,
1112 int *request_ret, Error **errp)
1113 {
1114 NBDReplyChunkIter iter;
1115
1116 NBD_FOREACH_REPLY_CHUNK(s, iter, handle, false, NULL, NULL, NULL) {
1117 /* nbd_reply_chunk_iter_receive does all the work */
1118 }
1119
1120 error_propagate(errp, iter.err);
1121 *request_ret = iter.request_ret;
1122 return iter.ret;
1123 }
1124
1125 static int nbd_co_receive_cmdread_reply(BDRVNBDState *s, uint64_t handle,
1126 uint64_t offset, QEMUIOVector *qiov,
1127 int *request_ret, Error **errp)
1128 {
1129 NBDReplyChunkIter iter;
1130 NBDReply reply;
1131 void *payload = NULL;
1132 Error *local_err = NULL;
1133
1134 NBD_FOREACH_REPLY_CHUNK(s, iter, handle, s->info.structured_reply,
1135 qiov, &reply, &payload)
1136 {
1137 int ret;
1138 NBDStructuredReplyChunk *chunk = &reply.structured;
1139
1140 assert(nbd_reply_is_structured(&reply));
1141
1142 switch (chunk->type) {
1143 case NBD_REPLY_TYPE_OFFSET_DATA:
1144 /*
1145 * special cased in nbd_co_receive_one_chunk, data is already
1146 * in qiov
1147 */
1148 break;
1149 case NBD_REPLY_TYPE_OFFSET_HOLE:
1150 ret = nbd_parse_offset_hole_payload(s, &reply.structured, payload,
1151 offset, qiov, &local_err);
1152 if (ret < 0) {
1153 nbd_channel_error(s, ret);
1154 nbd_iter_channel_error(&iter, ret, &local_err);
1155 }
1156 break;
1157 default:
1158 if (!nbd_reply_type_is_error(chunk->type)) {
1159 /* not allowed reply type */
1160 nbd_channel_error(s, -EINVAL);
1161 error_setg(&local_err,
1162 "Unexpected reply type: %d (%s) for CMD_READ",
1163 chunk->type, nbd_reply_type_lookup(chunk->type));
1164 nbd_iter_channel_error(&iter, -EINVAL, &local_err);
1165 }
1166 }
1167
1168 g_free(payload);
1169 payload = NULL;
1170 }
1171
1172 error_propagate(errp, iter.err);
1173 *request_ret = iter.request_ret;
1174 return iter.ret;
1175 }
1176
1177 static int nbd_co_receive_blockstatus_reply(BDRVNBDState *s,
1178 uint64_t handle, uint64_t length,
1179 NBDExtent *extent,
1180 int *request_ret, Error **errp)
1181 {
1182 NBDReplyChunkIter iter;
1183 NBDReply reply;
1184 void *payload = NULL;
1185 Error *local_err = NULL;
1186 bool received = false;
1187
1188 assert(!extent->length);
1189 NBD_FOREACH_REPLY_CHUNK(s, iter, handle, false, NULL, &reply, &payload) {
1190 int ret;
1191 NBDStructuredReplyChunk *chunk = &reply.structured;
1192
1193 assert(nbd_reply_is_structured(&reply));
1194
1195 switch (chunk->type) {
1196 case NBD_REPLY_TYPE_BLOCK_STATUS:
1197 if (received) {
1198 nbd_channel_error(s, -EINVAL);
1199 error_setg(&local_err, "Several BLOCK_STATUS chunks in reply");
1200 nbd_iter_channel_error(&iter, -EINVAL, &local_err);
1201 }
1202 received = true;
1203
1204 ret = nbd_parse_blockstatus_payload(s, &reply.structured,
1205 payload, length, extent,
1206 &local_err);
1207 if (ret < 0) {
1208 nbd_channel_error(s, ret);
1209 nbd_iter_channel_error(&iter, ret, &local_err);
1210 }
1211 break;
1212 default:
1213 if (!nbd_reply_type_is_error(chunk->type)) {
1214 nbd_channel_error(s, -EINVAL);
1215 error_setg(&local_err,
1216 "Unexpected reply type: %d (%s) "
1217 "for CMD_BLOCK_STATUS",
1218 chunk->type, nbd_reply_type_lookup(chunk->type));
1219 nbd_iter_channel_error(&iter, -EINVAL, &local_err);
1220 }
1221 }
1222
1223 g_free(payload);
1224 payload = NULL;
1225 }
1226
1227 if (!extent->length && !iter.request_ret) {
1228 error_setg(&local_err, "Server did not reply with any status extents");
1229 nbd_iter_channel_error(&iter, -EIO, &local_err);
1230 }
1231
1232 error_propagate(errp, iter.err);
1233 *request_ret = iter.request_ret;
1234 return iter.ret;
1235 }
1236
1237 static int nbd_co_request(BlockDriverState *bs, NBDRequest *request,
1238 QEMUIOVector *write_qiov)
1239 {
1240 int ret, request_ret;
1241 Error *local_err = NULL;
1242 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1243
1244 assert(request->type != NBD_CMD_READ);
1245 if (write_qiov) {
1246 assert(request->type == NBD_CMD_WRITE);
1247 assert(request->len == iov_size(write_qiov->iov, write_qiov->niov));
1248 } else {
1249 assert(request->type != NBD_CMD_WRITE);
1250 }
1251
1252 do {
1253 ret = nbd_co_send_request(bs, request, write_qiov);
1254 if (ret < 0) {
1255 continue;
1256 }
1257
1258 ret = nbd_co_receive_return_code(s, request->handle,
1259 &request_ret, &local_err);
1260 if (local_err) {
1261 trace_nbd_co_request_fail(request->from, request->len,
1262 request->handle, request->flags,
1263 request->type,
1264 nbd_cmd_lookup(request->type),
1265 ret, error_get_pretty(local_err));
1266 error_free(local_err);
1267 local_err = NULL;
1268 }
1269 } while (ret < 0 && nbd_client_connecting_wait(s));
1270
1271 return ret ? ret : request_ret;
1272 }
1273
1274 static int nbd_client_co_preadv(BlockDriverState *bs, uint64_t offset,
1275 uint64_t bytes, QEMUIOVector *qiov, int flags)
1276 {
1277 int ret, request_ret;
1278 Error *local_err = NULL;
1279 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1280 NBDRequest request = {
1281 .type = NBD_CMD_READ,
1282 .from = offset,
1283 .len = bytes,
1284 };
1285
1286 assert(bytes <= NBD_MAX_BUFFER_SIZE);
1287 assert(!flags);
1288
1289 if (!bytes) {
1290 return 0;
1291 }
1292 /*
1293 * Work around the fact that the block layer doesn't do
1294 * byte-accurate sizing yet - if the read exceeds the server's
1295 * advertised size because the block layer rounded size up, then
1296 * truncate the request to the server and tail-pad with zero.
1297 */
1298 if (offset >= s->info.size) {
1299 assert(bytes < BDRV_SECTOR_SIZE);
1300 qemu_iovec_memset(qiov, 0, 0, bytes);
1301 return 0;
1302 }
1303 if (offset + bytes > s->info.size) {
1304 uint64_t slop = offset + bytes - s->info.size;
1305
1306 assert(slop < BDRV_SECTOR_SIZE);
1307 qemu_iovec_memset(qiov, bytes - slop, 0, slop);
1308 request.len -= slop;
1309 }
1310
1311 do {
1312 ret = nbd_co_send_request(bs, &request, NULL);
1313 if (ret < 0) {
1314 continue;
1315 }
1316
1317 ret = nbd_co_receive_cmdread_reply(s, request.handle, offset, qiov,
1318 &request_ret, &local_err);
1319 if (local_err) {
1320 trace_nbd_co_request_fail(request.from, request.len, request.handle,
1321 request.flags, request.type,
1322 nbd_cmd_lookup(request.type),
1323 ret, error_get_pretty(local_err));
1324 error_free(local_err);
1325 local_err = NULL;
1326 }
1327 } while (ret < 0 && nbd_client_connecting_wait(s));
1328
1329 return ret ? ret : request_ret;
1330 }
1331
1332 static int nbd_client_co_pwritev(BlockDriverState *bs, uint64_t offset,
1333 uint64_t bytes, QEMUIOVector *qiov, int flags)
1334 {
1335 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1336 NBDRequest request = {
1337 .type = NBD_CMD_WRITE,
1338 .from = offset,
1339 .len = bytes,
1340 };
1341
1342 assert(!(s->info.flags & NBD_FLAG_READ_ONLY));
1343 if (flags & BDRV_REQ_FUA) {
1344 assert(s->info.flags & NBD_FLAG_SEND_FUA);
1345 request.flags |= NBD_CMD_FLAG_FUA;
1346 }
1347
1348 assert(bytes <= NBD_MAX_BUFFER_SIZE);
1349
1350 if (!bytes) {
1351 return 0;
1352 }
1353 return nbd_co_request(bs, &request, qiov);
1354 }
1355
1356 static int nbd_client_co_pwrite_zeroes(BlockDriverState *bs, int64_t offset,
1357 int bytes, BdrvRequestFlags flags)
1358 {
1359 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1360 NBDRequest request = {
1361 .type = NBD_CMD_WRITE_ZEROES,
1362 .from = offset,
1363 .len = bytes,
1364 };
1365
1366 assert(!(s->info.flags & NBD_FLAG_READ_ONLY));
1367 if (!(s->info.flags & NBD_FLAG_SEND_WRITE_ZEROES)) {
1368 return -ENOTSUP;
1369 }
1370
1371 if (flags & BDRV_REQ_FUA) {
1372 assert(s->info.flags & NBD_FLAG_SEND_FUA);
1373 request.flags |= NBD_CMD_FLAG_FUA;
1374 }
1375 if (!(flags & BDRV_REQ_MAY_UNMAP)) {
1376 request.flags |= NBD_CMD_FLAG_NO_HOLE;
1377 }
1378 if (flags & BDRV_REQ_NO_FALLBACK) {
1379 assert(s->info.flags & NBD_FLAG_SEND_FAST_ZERO);
1380 request.flags |= NBD_CMD_FLAG_FAST_ZERO;
1381 }
1382
1383 if (!bytes) {
1384 return 0;
1385 }
1386 return nbd_co_request(bs, &request, NULL);
1387 }
1388
1389 static int nbd_client_co_flush(BlockDriverState *bs)
1390 {
1391 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1392 NBDRequest request = { .type = NBD_CMD_FLUSH };
1393
1394 if (!(s->info.flags & NBD_FLAG_SEND_FLUSH)) {
1395 return 0;
1396 }
1397
1398 request.from = 0;
1399 request.len = 0;
1400
1401 return nbd_co_request(bs, &request, NULL);
1402 }
1403
1404 static int nbd_client_co_pdiscard(BlockDriverState *bs, int64_t offset,
1405 int bytes)
1406 {
1407 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1408 NBDRequest request = {
1409 .type = NBD_CMD_TRIM,
1410 .from = offset,
1411 .len = bytes,
1412 };
1413
1414 assert(!(s->info.flags & NBD_FLAG_READ_ONLY));
1415 if (!(s->info.flags & NBD_FLAG_SEND_TRIM) || !bytes) {
1416 return 0;
1417 }
1418
1419 return nbd_co_request(bs, &request, NULL);
1420 }
1421
1422 static int coroutine_fn nbd_client_co_block_status(
1423 BlockDriverState *bs, bool want_zero, int64_t offset, int64_t bytes,
1424 int64_t *pnum, int64_t *map, BlockDriverState **file)
1425 {
1426 int ret, request_ret;
1427 NBDExtent extent = { 0 };
1428 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1429 Error *local_err = NULL;
1430
1431 NBDRequest request = {
1432 .type = NBD_CMD_BLOCK_STATUS,
1433 .from = offset,
1434 .len = MIN(QEMU_ALIGN_DOWN(INT_MAX, bs->bl.request_alignment),
1435 MIN(bytes, s->info.size - offset)),
1436 .flags = NBD_CMD_FLAG_REQ_ONE,
1437 };
1438
1439 if (!s->info.base_allocation) {
1440 *pnum = bytes;
1441 *map = offset;
1442 *file = bs;
1443 return BDRV_BLOCK_DATA | BDRV_BLOCK_OFFSET_VALID;
1444 }
1445
1446 /*
1447 * Work around the fact that the block layer doesn't do
1448 * byte-accurate sizing yet - if the status request exceeds the
1449 * server's advertised size because the block layer rounded size
1450 * up, we truncated the request to the server (above), or are
1451 * called on just the hole.
1452 */
1453 if (offset >= s->info.size) {
1454 *pnum = bytes;
1455 assert(bytes < BDRV_SECTOR_SIZE);
1456 /* Intentionally don't report offset_valid for the hole */
1457 return BDRV_BLOCK_ZERO;
1458 }
1459
1460 if (s->info.min_block) {
1461 assert(QEMU_IS_ALIGNED(request.len, s->info.min_block));
1462 }
1463 do {
1464 ret = nbd_co_send_request(bs, &request, NULL);
1465 if (ret < 0) {
1466 continue;
1467 }
1468
1469 ret = nbd_co_receive_blockstatus_reply(s, request.handle, bytes,
1470 &extent, &request_ret,
1471 &local_err);
1472 if (local_err) {
1473 trace_nbd_co_request_fail(request.from, request.len, request.handle,
1474 request.flags, request.type,
1475 nbd_cmd_lookup(request.type),
1476 ret, error_get_pretty(local_err));
1477 error_free(local_err);
1478 local_err = NULL;
1479 }
1480 } while (ret < 0 && nbd_client_connecting_wait(s));
1481
1482 if (ret < 0 || request_ret < 0) {
1483 return ret ? ret : request_ret;
1484 }
1485
1486 assert(extent.length);
1487 *pnum = extent.length;
1488 *map = offset;
1489 *file = bs;
1490 return (extent.flags & NBD_STATE_HOLE ? 0 : BDRV_BLOCK_DATA) |
1491 (extent.flags & NBD_STATE_ZERO ? BDRV_BLOCK_ZERO : 0) |
1492 BDRV_BLOCK_OFFSET_VALID;
1493 }
1494
1495 static int nbd_client_reopen_prepare(BDRVReopenState *state,
1496 BlockReopenQueue *queue, Error **errp)
1497 {
1498 BDRVNBDState *s = (BDRVNBDState *)state->bs->opaque;
1499
1500 if ((state->flags & BDRV_O_RDWR) && (s->info.flags & NBD_FLAG_READ_ONLY)) {
1501 error_setg(errp, "Can't reopen read-only NBD mount as read/write");
1502 return -EACCES;
1503 }
1504 return 0;
1505 }
1506
1507 static void nbd_yank(void *opaque)
1508 {
1509 BlockDriverState *bs = opaque;
1510 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1511
1512 qatomic_store_release(&s->state, NBD_CLIENT_QUIT);
1513 qio_channel_shutdown(QIO_CHANNEL(s->sioc), QIO_CHANNEL_SHUTDOWN_BOTH, NULL);
1514 }
1515
1516 static void nbd_client_close(BlockDriverState *bs)
1517 {
1518 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1519 NBDRequest request = { .type = NBD_CMD_DISC };
1520
1521 if (s->ioc) {
1522 nbd_send_request(s->ioc, &request);
1523 }
1524
1525 nbd_teardown_connection(bs);
1526 }
1527
1528 static int nbd_establish_connection(BlockDriverState *bs,
1529 SocketAddress *saddr,
1530 Error **errp)
1531 {
1532 ERRP_GUARD();
1533 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1534
1535 s->sioc = qio_channel_socket_new();
1536 qio_channel_set_name(QIO_CHANNEL(s->sioc), "nbd-client");
1537
1538 qio_channel_socket_connect_sync(s->sioc, saddr, errp);
1539 if (*errp) {
1540 object_unref(OBJECT(s->sioc));
1541 s->sioc = NULL;
1542 return -1;
1543 }
1544
1545 yank_register_function(BLOCKDEV_YANK_INSTANCE(bs->node_name), nbd_yank, bs);
1546 qio_channel_set_delay(QIO_CHANNEL(s->sioc), false);
1547
1548 return 0;
1549 }
1550
1551 /* nbd_client_handshake takes ownership on s->sioc. On failure it's unref'ed. */
1552 static int nbd_client_handshake(BlockDriverState *bs, Error **errp)
1553 {
1554 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
1555 AioContext *aio_context = bdrv_get_aio_context(bs);
1556 int ret;
1557
1558 trace_nbd_client_handshake(s->export);
1559 qio_channel_set_blocking(QIO_CHANNEL(s->sioc), false, NULL);
1560 qio_channel_attach_aio_context(QIO_CHANNEL(s->sioc), aio_context);
1561
1562 s->info.request_sizes = true;
1563 s->info.structured_reply = true;
1564 s->info.base_allocation = true;
1565 s->info.x_dirty_bitmap = g_strdup(s->x_dirty_bitmap);
1566 s->info.name = g_strdup(s->export ?: "");
1567 ret = nbd_receive_negotiate(aio_context, QIO_CHANNEL(s->sioc), s->tlscreds,
1568 s->hostname, &s->ioc, &s->info, errp);
1569 g_free(s->info.x_dirty_bitmap);
1570 g_free(s->info.name);
1571 if (ret < 0) {
1572 yank_unregister_function(BLOCKDEV_YANK_INSTANCE(bs->node_name),
1573 nbd_yank, bs);
1574 object_unref(OBJECT(s->sioc));
1575 s->sioc = NULL;
1576 return ret;
1577 }
1578 if (s->x_dirty_bitmap) {
1579 if (!s->info.base_allocation) {
1580 error_setg(errp, "requested x-dirty-bitmap %s not found",
1581 s->x_dirty_bitmap);
1582 ret = -EINVAL;
1583 goto fail;
1584 }
1585 if (strcmp(s->x_dirty_bitmap, "qemu:allocation-depth") == 0) {
1586 s->alloc_depth = true;
1587 }
1588 }
1589 if (s->info.flags & NBD_FLAG_READ_ONLY) {
1590 ret = bdrv_apply_auto_read_only(bs, "NBD export is read-only", errp);
1591 if (ret < 0) {
1592 goto fail;
1593 }
1594 }
1595 if (s->info.flags & NBD_FLAG_SEND_FUA) {
1596 bs->supported_write_flags = BDRV_REQ_FUA;
1597 bs->supported_zero_flags |= BDRV_REQ_FUA;
1598 }
1599 if (s->info.flags & NBD_FLAG_SEND_WRITE_ZEROES) {
1600 bs->supported_zero_flags |= BDRV_REQ_MAY_UNMAP;
1601 if (s->info.flags & NBD_FLAG_SEND_FAST_ZERO) {
1602 bs->supported_zero_flags |= BDRV_REQ_NO_FALLBACK;
1603 }
1604 }
1605
1606 if (!s->ioc) {
1607 s->ioc = QIO_CHANNEL(s->sioc);
1608 object_ref(OBJECT(s->ioc));
1609 }
1610
1611 trace_nbd_client_handshake_success(s->export);
1612
1613 return 0;
1614
1615 fail:
1616 /*
1617 * We have connected, but must fail for other reasons.
1618 * Send NBD_CMD_DISC as a courtesy to the server.
1619 */
1620 {
1621 NBDRequest request = { .type = NBD_CMD_DISC };
1622
1623 nbd_send_request(s->ioc ?: QIO_CHANNEL(s->sioc), &request);
1624
1625 yank_unregister_function(BLOCKDEV_YANK_INSTANCE(bs->node_name),
1626 nbd_yank, bs);
1627 object_unref(OBJECT(s->sioc));
1628 s->sioc = NULL;
1629 object_unref(OBJECT(s->ioc));
1630 s->ioc = NULL;
1631
1632 return ret;
1633 }
1634 }
1635
1636 /*
1637 * Parse nbd_open options
1638 */
1639
1640 static int nbd_parse_uri(const char *filename, QDict *options)
1641 {
1642 URI *uri;
1643 const char *p;
1644 QueryParams *qp = NULL;
1645 int ret = 0;
1646 bool is_unix;
1647
1648 uri = uri_parse(filename);
1649 if (!uri) {
1650 return -EINVAL;
1651 }
1652
1653 /* transport */
1654 if (!g_strcmp0(uri->scheme, "nbd")) {
1655 is_unix = false;
1656 } else if (!g_strcmp0(uri->scheme, "nbd+tcp")) {
1657 is_unix = false;
1658 } else if (!g_strcmp0(uri->scheme, "nbd+unix")) {
1659 is_unix = true;
1660 } else {
1661 ret = -EINVAL;
1662 goto out;
1663 }
1664
1665 p = uri->path ? uri->path : "";
1666 if (p[0] == '/') {
1667 p++;
1668 }
1669 if (p[0]) {
1670 qdict_put_str(options, "export", p);
1671 }
1672
1673 qp = query_params_parse(uri->query);
1674 if (qp->n > 1 || (is_unix && !qp->n) || (!is_unix && qp->n)) {
1675 ret = -EINVAL;
1676 goto out;
1677 }
1678
1679 if (is_unix) {
1680 /* nbd+unix:///export?socket=path */
1681 if (uri->server || uri->port || strcmp(qp->p[0].name, "socket")) {
1682 ret = -EINVAL;
1683 goto out;
1684 }
1685 qdict_put_str(options, "server.type", "unix");
1686 qdict_put_str(options, "server.path", qp->p[0].value);
1687 } else {
1688 QString *host;
1689 char *port_str;
1690
1691 /* nbd[+tcp]://host[:port]/export */
1692 if (!uri->server) {
1693 ret = -EINVAL;
1694 goto out;
1695 }
1696
1697 /* strip braces from literal IPv6 address */
1698 if (uri->server[0] == '[') {
1699 host = qstring_from_substr(uri->server, 1,
1700 strlen(uri->server) - 1);
1701 } else {
1702 host = qstring_from_str(uri->server);
1703 }
1704
1705 qdict_put_str(options, "server.type", "inet");
1706 qdict_put(options, "server.host", host);
1707
1708 port_str = g_strdup_printf("%d", uri->port ?: NBD_DEFAULT_PORT);
1709 qdict_put_str(options, "server.port", port_str);
1710 g_free(port_str);
1711 }
1712
1713 out:
1714 if (qp) {
1715 query_params_free(qp);
1716 }
1717 uri_free(uri);
1718 return ret;
1719 }
1720
1721 static bool nbd_has_filename_options_conflict(QDict *options, Error **errp)
1722 {
1723 const QDictEntry *e;
1724
1725 for (e = qdict_first(options); e; e = qdict_next(options, e)) {
1726 if (!strcmp(e->key, "host") ||
1727 !strcmp(e->key, "port") ||
1728 !strcmp(e->key, "path") ||
1729 !strcmp(e->key, "export") ||
1730 strstart(e->key, "server.", NULL))
1731 {
1732 error_setg(errp, "Option '%s' cannot be used with a file name",
1733 e->key);
1734 return true;
1735 }
1736 }
1737
1738 return false;
1739 }
1740
1741 static void nbd_parse_filename(const char *filename, QDict *options,
1742 Error **errp)
1743 {
1744 g_autofree char *file = NULL;
1745 char *export_name;
1746 const char *host_spec;
1747 const char *unixpath;
1748
1749 if (nbd_has_filename_options_conflict(options, errp)) {
1750 return;
1751 }
1752
1753 if (strstr(filename, "://")) {
1754 int ret = nbd_parse_uri(filename, options);
1755 if (ret < 0) {
1756 error_setg(errp, "No valid URL specified");
1757 }
1758 return;
1759 }
1760
1761 file = g_strdup(filename);
1762
1763 export_name = strstr(file, EN_OPTSTR);
1764 if (export_name) {
1765 if (export_name[strlen(EN_OPTSTR)] == 0) {
1766 return;
1767 }
1768 export_name[0] = 0; /* truncate 'file' */
1769 export_name += strlen(EN_OPTSTR);
1770
1771 qdict_put_str(options, "export", export_name);
1772 }
1773
1774 /* extract the host_spec - fail if it's not nbd:... */
1775 if (!strstart(file, "nbd:", &host_spec)) {
1776 error_setg(errp, "File name string for NBD must start with 'nbd:'");
1777 return;
1778 }
1779
1780 if (!*host_spec) {
1781 return;
1782 }
1783
1784 /* are we a UNIX or TCP socket? */
1785 if (strstart(host_spec, "unix:", &unixpath)) {
1786 qdict_put_str(options, "server.type", "unix");
1787 qdict_put_str(options, "server.path", unixpath);
1788 } else {
1789 InetSocketAddress *addr = g_new(InetSocketAddress, 1);
1790
1791 if (inet_parse(addr, host_spec, errp)) {
1792 goto out_inet;
1793 }
1794
1795 qdict_put_str(options, "server.type", "inet");
1796 qdict_put_str(options, "server.host", addr->host);
1797 qdict_put_str(options, "server.port", addr->port);
1798 out_inet:
1799 qapi_free_InetSocketAddress(addr);
1800 }
1801 }
1802
1803 static bool nbd_process_legacy_socket_options(QDict *output_options,
1804 QemuOpts *legacy_opts,
1805 Error **errp)
1806 {
1807 const char *path = qemu_opt_get(legacy_opts, "path");
1808 const char *host = qemu_opt_get(legacy_opts, "host");
1809 const char *port = qemu_opt_get(legacy_opts, "port");
1810 const QDictEntry *e;
1811
1812 if (!path && !host && !port) {
1813 return true;
1814 }
1815
1816 for (e = qdict_first(output_options); e; e = qdict_next(output_options, e))
1817 {
1818 if (strstart(e->key, "server.", NULL)) {
1819 error_setg(errp, "Cannot use 'server' and path/host/port at the "
1820 "same time");
1821 return false;
1822 }
1823 }
1824
1825 if (path && host) {
1826 error_setg(errp, "path and host may not be used at the same time");
1827 return false;
1828 } else if (path) {
1829 if (port) {
1830 error_setg(errp, "port may not be used without host");
1831 return false;
1832 }
1833
1834 qdict_put_str(output_options, "server.type", "unix");
1835 qdict_put_str(output_options, "server.path", path);
1836 } else if (host) {
1837 qdict_put_str(output_options, "server.type", "inet");
1838 qdict_put_str(output_options, "server.host", host);
1839 qdict_put_str(output_options, "server.port",
1840 port ?: stringify(NBD_DEFAULT_PORT));
1841 }
1842
1843 return true;
1844 }
1845
1846 static SocketAddress *nbd_config(BDRVNBDState *s, QDict *options,
1847 Error **errp)
1848 {
1849 SocketAddress *saddr = NULL;
1850 QDict *addr = NULL;
1851 Visitor *iv = NULL;
1852
1853 qdict_extract_subqdict(options, &addr, "server.");
1854 if (!qdict_size(addr)) {
1855 error_setg(errp, "NBD server address missing");
1856 goto done;
1857 }
1858
1859 iv = qobject_input_visitor_new_flat_confused(addr, errp);
1860 if (!iv) {
1861 goto done;
1862 }
1863
1864 if (!visit_type_SocketAddress(iv, NULL, &saddr, errp)) {
1865 goto done;
1866 }
1867
1868 if (socket_address_parse_named_fd(saddr, errp) < 0) {
1869 qapi_free_SocketAddress(saddr);
1870 saddr = NULL;
1871 goto done;
1872 }
1873
1874 done:
1875 qobject_unref(addr);
1876 visit_free(iv);
1877 return saddr;
1878 }
1879
1880 static QCryptoTLSCreds *nbd_get_tls_creds(const char *id, Error **errp)
1881 {
1882 Object *obj;
1883 QCryptoTLSCreds *creds;
1884
1885 obj = object_resolve_path_component(
1886 object_get_objects_root(), id);
1887 if (!obj) {
1888 error_setg(errp, "No TLS credentials with id '%s'",
1889 id);
1890 return NULL;
1891 }
1892 creds = (QCryptoTLSCreds *)
1893 object_dynamic_cast(obj, TYPE_QCRYPTO_TLS_CREDS);
1894 if (!creds) {
1895 error_setg(errp, "Object with id '%s' is not TLS credentials",
1896 id);
1897 return NULL;
1898 }
1899
1900 if (creds->endpoint != QCRYPTO_TLS_CREDS_ENDPOINT_CLIENT) {
1901 error_setg(errp,
1902 "Expecting TLS credentials with a client endpoint");
1903 return NULL;
1904 }
1905 object_ref(obj);
1906 return creds;
1907 }
1908
1909
1910 static QemuOptsList nbd_runtime_opts = {
1911 .name = "nbd",
1912 .head = QTAILQ_HEAD_INITIALIZER(nbd_runtime_opts.head),
1913 .desc = {
1914 {
1915 .name = "host",
1916 .type = QEMU_OPT_STRING,
1917 .help = "TCP host to connect to",
1918 },
1919 {
1920 .name = "port",
1921 .type = QEMU_OPT_STRING,
1922 .help = "TCP port to connect to",
1923 },
1924 {
1925 .name = "path",
1926 .type = QEMU_OPT_STRING,
1927 .help = "Unix socket path to connect to",
1928 },
1929 {
1930 .name = "export",
1931 .type = QEMU_OPT_STRING,
1932 .help = "Name of the NBD export to open",
1933 },
1934 {
1935 .name = "tls-creds",
1936 .type = QEMU_OPT_STRING,
1937 .help = "ID of the TLS credentials to use",
1938 },
1939 {
1940 .name = "x-dirty-bitmap",
1941 .type = QEMU_OPT_STRING,
1942 .help = "experimental: expose named dirty bitmap in place of "
1943 "block status",
1944 },
1945 {
1946 .name = "reconnect-delay",
1947 .type = QEMU_OPT_NUMBER,
1948 .help = "On an unexpected disconnect, the nbd client tries to "
1949 "connect again until succeeding or encountering a serious "
1950 "error. During the first @reconnect-delay seconds, all "
1951 "requests are paused and will be rerun on a successful "
1952 "reconnect. After that time, any delayed requests and all "
1953 "future requests before a successful reconnect will "
1954 "immediately fail. Default 0",
1955 },
1956 { /* end of list */ }
1957 },
1958 };
1959
1960 static int nbd_process_options(BlockDriverState *bs, QDict *options,
1961 Error **errp)
1962 {
1963 BDRVNBDState *s = bs->opaque;
1964 QemuOpts *opts;
1965 int ret = -EINVAL;
1966
1967 opts = qemu_opts_create(&nbd_runtime_opts, NULL, 0, &error_abort);
1968 if (!qemu_opts_absorb_qdict(opts, options, errp)) {
1969 goto error;
1970 }
1971
1972 /* Translate @host, @port, and @path to a SocketAddress */
1973 if (!nbd_process_legacy_socket_options(options, opts, errp)) {
1974 goto error;
1975 }
1976
1977 /* Pop the config into our state object. Exit if invalid. */
1978 s->saddr = nbd_config(s, options, errp);
1979 if (!s->saddr) {
1980 goto error;
1981 }
1982
1983 s->export = g_strdup(qemu_opt_get(opts, "export"));
1984 if (s->export && strlen(s->export) > NBD_MAX_STRING_SIZE) {
1985 error_setg(errp, "export name too long to send to server");
1986 goto error;
1987 }
1988
1989 s->tlscredsid = g_strdup(qemu_opt_get(opts, "tls-creds"));
1990 if (s->tlscredsid) {
1991 s->tlscreds = nbd_get_tls_creds(s->tlscredsid, errp);
1992 if (!s->tlscreds) {
1993 goto error;
1994 }
1995
1996 /* TODO SOCKET_ADDRESS_KIND_FD where fd has AF_INET or AF_INET6 */
1997 if (s->saddr->type != SOCKET_ADDRESS_TYPE_INET) {
1998 error_setg(errp, "TLS only supported over IP sockets");
1999 goto error;
2000 }
2001 s->hostname = s->saddr->u.inet.host;
2002 }
2003
2004 s->x_dirty_bitmap = g_strdup(qemu_opt_get(opts, "x-dirty-bitmap"));
2005 if (s->x_dirty_bitmap && strlen(s->x_dirty_bitmap) > NBD_MAX_STRING_SIZE) {
2006 error_setg(errp, "x-dirty-bitmap query too long to send to server");
2007 goto error;
2008 }
2009
2010 s->reconnect_delay = qemu_opt_get_number(opts, "reconnect-delay", 0);
2011
2012 ret = 0;
2013
2014 error:
2015 qemu_opts_del(opts);
2016 return ret;
2017 }
2018
2019 static int nbd_open(BlockDriverState *bs, QDict *options, int flags,
2020 Error **errp)
2021 {
2022 int ret;
2023 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
2024
2025 s->bs = bs;
2026 qemu_co_mutex_init(&s->send_mutex);
2027 qemu_co_queue_init(&s->free_sema);
2028
2029 if (!yank_register_instance(BLOCKDEV_YANK_INSTANCE(bs->node_name), errp)) {
2030 return -EEXIST;
2031 }
2032
2033 ret = nbd_process_options(bs, options, errp);
2034 if (ret < 0) {
2035 goto fail;
2036 }
2037
2038 s->conn = nbd_client_connection_new(s->saddr);
2039
2040 /*
2041 * establish TCP connection, return error if it fails
2042 * TODO: Configurable retry-until-timeout behaviour.
2043 */
2044 if (nbd_establish_connection(bs, s->saddr, errp) < 0) {
2045 ret = -ECONNREFUSED;
2046 goto fail;
2047 }
2048
2049 ret = nbd_client_handshake(bs, errp);
2050 if (ret < 0) {
2051 goto fail;
2052 }
2053 /* successfully connected */
2054 s->state = NBD_CLIENT_CONNECTED;
2055
2056 s->connection_co = qemu_coroutine_create(nbd_connection_entry, s);
2057 bdrv_inc_in_flight(bs);
2058 aio_co_schedule(bdrv_get_aio_context(bs), s->connection_co);
2059
2060 return 0;
2061
2062 fail:
2063 nbd_clear_bdrvstate(bs);
2064 return ret;
2065 }
2066
2067 static int nbd_co_flush(BlockDriverState *bs)
2068 {
2069 return nbd_client_co_flush(bs);
2070 }
2071
2072 static void nbd_refresh_limits(BlockDriverState *bs, Error **errp)
2073 {
2074 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
2075 uint32_t min = s->info.min_block;
2076 uint32_t max = MIN_NON_ZERO(NBD_MAX_BUFFER_SIZE, s->info.max_block);
2077
2078 /*
2079 * If the server did not advertise an alignment:
2080 * - a size that is not sector-aligned implies that an alignment
2081 * of 1 can be used to access those tail bytes
2082 * - advertisement of block status requires an alignment of 1, so
2083 * that we don't violate block layer constraints that block
2084 * status is always aligned (as we can't control whether the
2085 * server will report sub-sector extents, such as a hole at EOF
2086 * on an unaligned POSIX file)
2087 * - otherwise, assume the server is so old that we are safer avoiding
2088 * sub-sector requests
2089 */
2090 if (!min) {
2091 min = (!QEMU_IS_ALIGNED(s->info.size, BDRV_SECTOR_SIZE) ||
2092 s->info.base_allocation) ? 1 : BDRV_SECTOR_SIZE;
2093 }
2094
2095 bs->bl.request_alignment = min;
2096 bs->bl.max_pdiscard = QEMU_ALIGN_DOWN(INT_MAX, min);
2097 bs->bl.max_pwrite_zeroes = max;
2098 bs->bl.max_transfer = max;
2099
2100 if (s->info.opt_block &&
2101 s->info.opt_block > bs->bl.opt_transfer) {
2102 bs->bl.opt_transfer = s->info.opt_block;
2103 }
2104 }
2105
2106 static void nbd_close(BlockDriverState *bs)
2107 {
2108 nbd_client_close(bs);
2109 nbd_clear_bdrvstate(bs);
2110 }
2111
2112 /*
2113 * NBD cannot truncate, but if the caller asks to truncate to the same size, or
2114 * to a smaller size with exact=false, there is no reason to fail the
2115 * operation.
2116 *
2117 * Preallocation mode is ignored since it does not seems useful to fail when
2118 * we never change anything.
2119 */
2120 static int coroutine_fn nbd_co_truncate(BlockDriverState *bs, int64_t offset,
2121 bool exact, PreallocMode prealloc,
2122 BdrvRequestFlags flags, Error **errp)
2123 {
2124 BDRVNBDState *s = bs->opaque;
2125
2126 if (offset != s->info.size && exact) {
2127 error_setg(errp, "Cannot resize NBD nodes");
2128 return -ENOTSUP;
2129 }
2130
2131 if (offset > s->info.size) {
2132 error_setg(errp, "Cannot grow NBD nodes");
2133 return -EINVAL;
2134 }
2135
2136 return 0;
2137 }
2138
2139 static int64_t nbd_getlength(BlockDriverState *bs)
2140 {
2141 BDRVNBDState *s = bs->opaque;
2142
2143 return s->info.size;
2144 }
2145
2146 static void nbd_refresh_filename(BlockDriverState *bs)
2147 {
2148 BDRVNBDState *s = bs->opaque;
2149 const char *host = NULL, *port = NULL, *path = NULL;
2150 size_t len = 0;
2151
2152 if (s->saddr->type == SOCKET_ADDRESS_TYPE_INET) {
2153 const InetSocketAddress *inet = &s->saddr->u.inet;
2154 if (!inet->has_ipv4 && !inet->has_ipv6 && !inet->has_to) {
2155 host = inet->host;
2156 port = inet->port;
2157 }
2158 } else if (s->saddr->type == SOCKET_ADDRESS_TYPE_UNIX) {
2159 path = s->saddr->u.q_unix.path;
2160 } /* else can't represent as pseudo-filename */
2161
2162 if (path && s->export) {
2163 len = snprintf(bs->exact_filename, sizeof(bs->exact_filename),
2164 "nbd+unix:///%s?socket=%s", s->export, path);
2165 } else if (path && !s->export) {
2166 len = snprintf(bs->exact_filename, sizeof(bs->exact_filename),
2167 "nbd+unix://?socket=%s", path);
2168 } else if (host && s->export) {
2169 len = snprintf(bs->exact_filename, sizeof(bs->exact_filename),
2170 "nbd://%s:%s/%s", host, port, s->export);
2171 } else if (host && !s->export) {
2172 len = snprintf(bs->exact_filename, sizeof(bs->exact_filename),
2173 "nbd://%s:%s", host, port);
2174 }
2175 if (len >= sizeof(bs->exact_filename)) {
2176 /* Name is too long to represent exactly, so leave it empty. */
2177 bs->exact_filename[0] = '\0';
2178 }
2179 }
2180
2181 static char *nbd_dirname(BlockDriverState *bs, Error **errp)
2182 {
2183 /* The generic bdrv_dirname() implementation is able to work out some
2184 * directory name for NBD nodes, but that would be wrong. So far there is no
2185 * specification for how "export paths" would work, so NBD does not have
2186 * directory names. */
2187 error_setg(errp, "Cannot generate a base directory for NBD nodes");
2188 return NULL;
2189 }
2190
2191 static const char *const nbd_strong_runtime_opts[] = {
2192 "path",
2193 "host",
2194 "port",
2195 "export",
2196 "tls-creds",
2197 "server.",
2198
2199 NULL
2200 };
2201
2202 static void nbd_cancel_in_flight(BlockDriverState *bs)
2203 {
2204 BDRVNBDState *s = (BDRVNBDState *)bs->opaque;
2205
2206 reconnect_delay_timer_del(s);
2207
2208 if (s->state == NBD_CLIENT_CONNECTING_WAIT) {
2209 s->state = NBD_CLIENT_CONNECTING_NOWAIT;
2210 qemu_co_queue_restart_all(&s->free_sema);
2211 }
2212 }
2213
2214 static BlockDriver bdrv_nbd = {
2215 .format_name = "nbd",
2216 .protocol_name = "nbd",
2217 .instance_size = sizeof(BDRVNBDState),
2218 .bdrv_parse_filename = nbd_parse_filename,
2219 .bdrv_co_create_opts = bdrv_co_create_opts_simple,
2220 .create_opts = &bdrv_create_opts_simple,
2221 .bdrv_file_open = nbd_open,
2222 .bdrv_reopen_prepare = nbd_client_reopen_prepare,
2223 .bdrv_co_preadv = nbd_client_co_preadv,
2224 .bdrv_co_pwritev = nbd_client_co_pwritev,
2225 .bdrv_co_pwrite_zeroes = nbd_client_co_pwrite_zeroes,
2226 .bdrv_close = nbd_close,
2227 .bdrv_co_flush_to_os = nbd_co_flush,
2228 .bdrv_co_pdiscard = nbd_client_co_pdiscard,
2229 .bdrv_refresh_limits = nbd_refresh_limits,
2230 .bdrv_co_truncate = nbd_co_truncate,
2231 .bdrv_getlength = nbd_getlength,
2232 .bdrv_detach_aio_context = nbd_client_detach_aio_context,
2233 .bdrv_attach_aio_context = nbd_client_attach_aio_context,
2234 .bdrv_co_drain_begin = nbd_client_co_drain_begin,
2235 .bdrv_co_drain_end = nbd_client_co_drain_end,
2236 .bdrv_refresh_filename = nbd_refresh_filename,
2237 .bdrv_co_block_status = nbd_client_co_block_status,
2238 .bdrv_dirname = nbd_dirname,
2239 .strong_runtime_opts = nbd_strong_runtime_opts,
2240 .bdrv_cancel_in_flight = nbd_cancel_in_flight,
2241 };
2242
2243 static BlockDriver bdrv_nbd_tcp = {
2244 .format_name = "nbd",
2245 .protocol_name = "nbd+tcp",
2246 .instance_size = sizeof(BDRVNBDState),
2247 .bdrv_parse_filename = nbd_parse_filename,
2248 .bdrv_co_create_opts = bdrv_co_create_opts_simple,
2249 .create_opts = &bdrv_create_opts_simple,
2250 .bdrv_file_open = nbd_open,
2251 .bdrv_reopen_prepare = nbd_client_reopen_prepare,
2252 .bdrv_co_preadv = nbd_client_co_preadv,
2253 .bdrv_co_pwritev = nbd_client_co_pwritev,
2254 .bdrv_co_pwrite_zeroes = nbd_client_co_pwrite_zeroes,
2255 .bdrv_close = nbd_close,
2256 .bdrv_co_flush_to_os = nbd_co_flush,
2257 .bdrv_co_pdiscard = nbd_client_co_pdiscard,
2258 .bdrv_refresh_limits = nbd_refresh_limits,
2259 .bdrv_co_truncate = nbd_co_truncate,
2260 .bdrv_getlength = nbd_getlength,
2261 .bdrv_detach_aio_context = nbd_client_detach_aio_context,
2262 .bdrv_attach_aio_context = nbd_client_attach_aio_context,
2263 .bdrv_co_drain_begin = nbd_client_co_drain_begin,
2264 .bdrv_co_drain_end = nbd_client_co_drain_end,
2265 .bdrv_refresh_filename = nbd_refresh_filename,
2266 .bdrv_co_block_status = nbd_client_co_block_status,
2267 .bdrv_dirname = nbd_dirname,
2268 .strong_runtime_opts = nbd_strong_runtime_opts,
2269 .bdrv_cancel_in_flight = nbd_cancel_in_flight,
2270 };
2271
2272 static BlockDriver bdrv_nbd_unix = {
2273 .format_name = "nbd",
2274 .protocol_name = "nbd+unix",
2275 .instance_size = sizeof(BDRVNBDState),
2276 .bdrv_parse_filename = nbd_parse_filename,
2277 .bdrv_co_create_opts = bdrv_co_create_opts_simple,
2278 .create_opts = &bdrv_create_opts_simple,
2279 .bdrv_file_open = nbd_open,
2280 .bdrv_reopen_prepare = nbd_client_reopen_prepare,
2281 .bdrv_co_preadv = nbd_client_co_preadv,
2282 .bdrv_co_pwritev = nbd_client_co_pwritev,
2283 .bdrv_co_pwrite_zeroes = nbd_client_co_pwrite_zeroes,
2284 .bdrv_close = nbd_close,
2285 .bdrv_co_flush_to_os = nbd_co_flush,
2286 .bdrv_co_pdiscard = nbd_client_co_pdiscard,
2287 .bdrv_refresh_limits = nbd_refresh_limits,
2288 .bdrv_co_truncate = nbd_co_truncate,
2289 .bdrv_getlength = nbd_getlength,
2290 .bdrv_detach_aio_context = nbd_client_detach_aio_context,
2291 .bdrv_attach_aio_context = nbd_client_attach_aio_context,
2292 .bdrv_co_drain_begin = nbd_client_co_drain_begin,
2293 .bdrv_co_drain_end = nbd_client_co_drain_end,
2294 .bdrv_refresh_filename = nbd_refresh_filename,
2295 .bdrv_co_block_status = nbd_client_co_block_status,
2296 .bdrv_dirname = nbd_dirname,
2297 .strong_runtime_opts = nbd_strong_runtime_opts,
2298 .bdrv_cancel_in_flight = nbd_cancel_in_flight,
2299 };
2300
2301 static void bdrv_nbd_init(void)
2302 {
2303 bdrv_register(&bdrv_nbd);
2304 bdrv_register(&bdrv_nbd_tcp);
2305 bdrv_register(&bdrv_nbd_unix);
2306 }
2307
2308 block_init(bdrv_nbd_init);
Eric Blake's pending patches to qemu