qed: protect table cache with CoMutex

 *

 * On failure QED_CLUSTER_L2 or QED_CLUSTER_L1 is returned for missing L2 or L1

 * table offset, respectively. len is number of contiguous unallocated bytes.

 *

 * Called with table_lock held.

 */

int coroutine_fn qed_find_cluster(BDRVQEDState *s, QEDRequest *request,

                                  uint64_t pos, size_t *len,

    }

    ret = qed_read_l2_table(s, request, l2_offset);

    qed_acquire(s);

    if (ret) {

        goto out;

    }

out:

    *img_offset = offset;

    qed_release(s);

    return ret;

}

/**

 * Decrease an entry's reference count and free if necessary when the reference

 * count drops to zero.

 *

 * Called with table_lock held.

 */

void qed_unref_l2_cache_entry(CachedL2Table *entry)

{

 *

 * For a cached entry, this function increases the reference count and returns

 * the entry.

 *

 * Called with table_lock held.

 */

CachedL2Table *qed_find_l2_cache_entry(L2TableCache *l2_cache, uint64_t offset)

{

 * N.B. This function steals a reference to the l2_table from the caller so the

 * caller must obtain a new reference by issuing a call to

 * qed_find_l2_cache_entry().

 *

 * Called with table_lock held.

 */

void qed_commit_l2_cache_entry(L2TableCache *l2_cache, CachedL2Table *l2_table)

{

#include "qed.h"

#include "qemu/bswap.h"

/* Called either from qed_check or with table_lock held.  */

static int qed_read_table(BDRVQEDState *s, uint64_t offset, QEDTable *table)

{

    QEMUIOVector qiov;

    trace_qed_read_table(s, offset, table);

    if (qemu_in_coroutine()) {

        qemu_co_mutex_unlock(&s->table_lock);

    }

    ret = bdrv_preadv(s->bs->file, offset, &qiov);

    if (qemu_in_coroutine()) {

        qemu_co_mutex_lock(&s->table_lock);

    }

    if (ret < 0) {

        goto out;

    }

    /* Byteswap offsets */

    qed_acquire(s);

    noffsets = qiov.size / sizeof(uint64_t);

    for (i = 0; i < noffsets; i++) {

        table->offsets[i] = le64_to_cpu(table->offsets[i]);

    }

    qed_release(s);

    ret = 0;

out:

 * @index:      Index of first element

 * @n:          Number of elements

 * @flush:      Whether or not to sync to disk

 *

 * Called either from qed_check or with table_lock held.

 */

static int qed_write_table(BDRVQEDState *s, uint64_t offset, QEDTable *table,

                           unsigned int index, unsigned int n, bool flush)

    /* Adjust for offset into table */

    offset += start * sizeof(uint64_t);

    if (qemu_in_coroutine()) {

        qemu_co_mutex_unlock(&s->table_lock);

    }

    ret = bdrv_pwritev(s->bs->file, offset, &qiov);

    if (qemu_in_coroutine()) {

        qemu_co_mutex_lock(&s->table_lock);

    }

    trace_qed_write_table_cb(s, table, flush, ret);

    if (ret < 0) {

        goto out;

    }

    if (flush) {

        qed_acquire(s);

        ret = bdrv_flush(s->bs);

        qed_release(s);

        if (ret < 0) {

            goto out;

        }

    return qed_read_table(s, s->header.l1_table_offset, s->l1_table);

}

/* Called either from qed_check or with table_lock held.  */

int qed_write_l1_table(BDRVQEDState *s, unsigned int index, unsigned int n)

{

    BLKDBG_EVENT(s->bs->file, BLKDBG_L1_UPDATE);

    return qed_write_l1_table(s, index, n);

}

/* Called either from qed_check or with table_lock held.  */

int qed_read_l2_table(BDRVQEDState *s, QEDRequest *request, uint64_t offset)

{

    int ret;

    BLKDBG_EVENT(s->bs->file, BLKDBG_L2_LOAD);

    ret = qed_read_table(s, offset, request->l2_table->table);

    qed_acquire(s);

    if (ret) {

        /* can't trust loaded L2 table anymore */

        qed_unref_l2_cache_entry(request->l2_table);

        request->l2_table = qed_find_l2_cache_entry(&s->l2_cache, offset);

        assert(request->l2_table != NULL);

    }

    qed_release(s);

    return ret;

}

    return qed_read_l2_table(s, request, offset);

}

/* Called either from qed_check or with table_lock held.  */

int qed_write_l2_table(BDRVQEDState *s, QEDRequest *request,

                       unsigned int index, unsigned int n, bool flush)

{

 *

 * This function only updates known header fields in-place and does not affect

 * extra data after the QED header.

 *

 * No new allocating reqs can start while this function runs.

 */

static int coroutine_fn qed_write_header(BDRVQEDState *s)

{

    QEMUIOVector qiov;

    int ret;

    assert(s->allocating_acb || s->allocating_write_reqs_plugged);

    buf = qemu_blockalign(s->bs, len);

    iov = (struct iovec) {

        .iov_base = buf,

 * This function only produces the offset where the new clusters should be

 * written.  It updates BDRVQEDState but does not make any changes to the image

 * file.

 *

 * Called with table_lock held.

 */

static uint64_t qed_alloc_clusters(BDRVQEDState *s, unsigned int n)

{

/**

 * Allocate a new zeroed L2 table

 *

 * Called with table_lock held.

 */

static CachedL2Table *qed_new_l2_table(BDRVQEDState *s)

{

    return l2_table;

}

static void qed_plug_allocating_write_reqs(BDRVQEDState *s)

static bool qed_plug_allocating_write_reqs(BDRVQEDState *s)

{

    qemu_co_mutex_lock(&s->table_lock);

    /* No reentrancy is allowed.  */

    assert(!s->allocating_write_reqs_plugged);

    if (s->allocating_acb != NULL) {

        /* Another allocating write came concurrently.  This cannot happen

         * from bdrv_qed_co_drain, but it can happen when the timer runs.

         */

        qemu_co_mutex_unlock(&s->table_lock);

        return false;

    }

    s->allocating_write_reqs_plugged = true;

    qemu_co_mutex_unlock(&s->table_lock);

    return true;

}

static void qed_unplug_allocating_write_reqs(BDRVQEDState *s)

{

    qemu_co_mutex_lock(&s->table_lock);

    assert(s->allocating_write_reqs_plugged);

    s->allocating_write_reqs_plugged = false;

    qemu_co_enter_next(&s->allocating_write_reqs);

    qemu_co_queue_next(&s->allocating_write_reqs);

    qemu_co_mutex_unlock(&s->table_lock);

}

static void coroutine_fn qed_need_check_timer_entry(void *opaque)

    BDRVQEDState *s = opaque;

    int ret;

    /* The timer should only fire when allocating writes have drained */

    assert(!s->allocating_acb);

    trace_qed_need_check_timer_cb(s);

    qed_acquire(s);

    qed_plug_allocating_write_reqs(s);

    if (!qed_plug_allocating_write_reqs(s)) {

        return;

    }

    /* Ensure writes are on disk before clearing flag */

    ret = bdrv_co_flush(s->bs->file->bs);

    qed_release(s);

    if (ret < 0) {

        qed_unplug_allocating_write_reqs(s);

        return;

    qemu_coroutine_enter(co);

}

void qed_acquire(BDRVQEDState *s)

{

    aio_context_acquire(bdrv_get_aio_context(s->bs));

}

void qed_release(BDRVQEDState *s)

{

    aio_context_release(bdrv_get_aio_context(s->bs));

}

static void qed_start_need_check_timer(BDRVQEDState *s)

{

    trace_qed_start_need_check_timer(s);

    memset(s, 0, sizeof(BDRVQEDState));

    s->bs = bs;

    qemu_co_mutex_init(&s->table_lock);

    qemu_co_queue_init(&s->allocating_write_reqs);

}

    BlockDriverState **file;

} QEDIsAllocatedCB;

/* Called with table_lock held.  */

static void qed_is_allocated_cb(void *opaque, int ret, uint64_t offset, size_t len)

{

    QEDIsAllocatedCB *cb = opaque;

    uint64_t offset;

    int ret;

    qemu_co_mutex_lock(&s->table_lock);

    ret = qed_find_cluster(s, &request, cb.pos, &len, &offset);

    qed_is_allocated_cb(&cb, ret, offset, len);

    assert(cb.status != BDRV_BLOCK_OFFSET_MASK);

    qed_unref_l2_cache_entry(request.l2_table);

    qemu_co_mutex_unlock(&s->table_lock);

    return cb.status;

}

 *

 * The cluster offset may be an allocated byte offset in the image file, the

 * zero cluster marker, or the unallocated cluster marker.

 *

 * Called with table_lock held.

 */

static void coroutine_fn qed_update_l2_table(BDRVQEDState *s, QEDTable *table,

                                             int index, unsigned int n,

    }

}

/* Called with table_lock held.  */

static void coroutine_fn qed_aio_complete(QEDAIOCB *acb)

{

    BDRVQEDState *s = acb_to_s(acb);

    if (acb == s->allocating_acb) {

        s->allocating_acb = NULL;

        if (!qemu_co_queue_empty(&s->allocating_write_reqs)) {

            qemu_co_enter_next(&s->allocating_write_reqs);

            qemu_co_queue_next(&s->allocating_write_reqs);

        } else if (s->header.features & QED_F_NEED_CHECK) {

            qed_start_need_check_timer(s);

        }

/**

 * Update L1 table with new L2 table offset and write it out

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_write_l1_update(QEDAIOCB *acb)

{

/**

 * Update L2 table with new cluster offsets and write them out

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_write_l2_update(QEDAIOCB *acb, uint64_t offset)

{

/**

 * Write data to the image file

 *

 * Called with table_lock *not* held.

 */

static int coroutine_fn qed_aio_write_main(QEDAIOCB *acb)

{

/**

 * Populate untouched regions of new data cluster

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_write_cow(QEDAIOCB *acb)

{

    uint64_t start, len, offset;

    int ret;

    qemu_co_mutex_unlock(&s->table_lock);

    /* Populate front untouched region of new data cluster */

    start = qed_start_of_cluster(s, acb->cur_pos);

    len = qed_offset_into_cluster(s, acb->cur_pos);

    trace_qed_aio_write_prefill(s, acb, start, len, acb->cur_cluster);

    ret = qed_copy_from_backing_file(s, start, len, acb->cur_cluster);

    if (ret < 0) {

        return ret;

        goto out;

    }

    /* Populate back untouched region of new data cluster */

    trace_qed_aio_write_postfill(s, acb, start, len, offset);

    ret = qed_copy_from_backing_file(s, start, len, offset);

    if (ret < 0) {

        return ret;

        goto out;

    }

    ret = qed_aio_write_main(acb);

    if (ret < 0) {

        return ret;

        goto out;

    }

    if (s->bs->backing) {

         * cluster and before updating the L2 table.

         */

        ret = bdrv_co_flush(s->bs->file->bs);

        if (ret < 0) {

            return ret;

        }

    }

    return 0;

out:

    qemu_co_mutex_lock(&s->table_lock);

    return ret;

}

/**

 * @len:        Length in bytes

 *

 * This path is taken when writing to previously unallocated clusters.

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_write_alloc(QEDAIOCB *acb, size_t len)

{

    /* Freeze this request if another allocating write is in progress */

    if (s->allocating_acb != acb || s->allocating_write_reqs_plugged) {

        if (s->allocating_acb != NULL) {

            qemu_co_queue_wait(&s->allocating_write_reqs, NULL);

            qemu_co_queue_wait(&s->allocating_write_reqs, &s->table_lock);

            assert(s->allocating_acb == NULL);

        }

        s->allocating_acb = acb;

 * @len:        Length in bytes

 *

 * This path is taken when writing to already allocated clusters.

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_write_inplace(QEDAIOCB *acb, uint64_t offset,

                                              size_t len)

{

    BDRVQEDState *s = acb_to_s(acb);

    int r;

    qemu_co_mutex_unlock(&s->table_lock);

    /* Allocate buffer for zero writes */

    if (acb->flags & QED_AIOCB_ZERO) {

        struct iovec *iov = acb->qiov->iov;

        if (!iov->iov_base) {

            iov->iov_base = qemu_try_blockalign(acb->bs, iov->iov_len);

            if (iov->iov_base == NULL) {

                return -ENOMEM;

                r = -ENOMEM;

                goto out;

            }

            memset(iov->iov_base, 0, iov->iov_len);

        }

    acb->cur_cluster = offset;

    qemu_iovec_concat(&acb->cur_qiov, acb->qiov, acb->qiov_offset, len);

    /* Do the actual write */

    return qed_aio_write_main(acb);

    /* Do the actual write.  */

    r = qed_aio_write_main(acb);

out:

    qemu_co_mutex_lock(&s->table_lock);

    return r;

}

/**

 * @ret:        QED_CLUSTER_FOUND, QED_CLUSTER_L2 or QED_CLUSTER_L1

 * @offset:     Cluster offset in bytes

 * @len:        Length in bytes

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_write_data(void *opaque, int ret,

                                           uint64_t offset, size_t len)

 * @ret:        QED_CLUSTER_FOUND, QED_CLUSTER_L2 or QED_CLUSTER_L1

 * @offset:     Cluster offset in bytes

 * @len:        Length in bytes

 *

 * Called with table_lock held.

 */

static int coroutine_fn qed_aio_read_data(void *opaque, int ret,

                                          uint64_t offset, size_t len)

    QEDAIOCB *acb = opaque;

    BDRVQEDState *s = acb_to_s(acb);

    BlockDriverState *bs = acb->bs;

    int r;

    qemu_co_mutex_unlock(&s->table_lock);

    /* Adjust offset into cluster */

    offset += qed_offset_into_cluster(s, acb->cur_pos);

    qemu_iovec_concat(&acb->cur_qiov, acb->qiov, acb->qiov_offset, len);

    /* Handle zero cluster and backing file reads */

    /* Handle zero cluster and backing file reads, otherwise read

     * data cluster directly.

     */

    if (ret == QED_CLUSTER_ZERO) {

        qemu_iovec_memset(&acb->cur_qiov, 0, 0, acb->cur_qiov.size);

        return 0;

        r = 0;

    } else if (ret != QED_CLUSTER_FOUND) {

        return qed_read_backing_file(s, acb->cur_pos, &acb->cur_qiov,

        r = qed_read_backing_file(s, acb->cur_pos, &acb->cur_qiov,

                                  &acb->backing_qiov);

    }

    } else {

        BLKDBG_EVENT(bs->file, BLKDBG_READ_AIO);

    ret = bdrv_co_preadv(bs->file, offset, acb->cur_qiov.size,

        r = bdrv_co_preadv(bs->file, offset, acb->cur_qiov.size,

                           &acb->cur_qiov, 0);

    if (ret < 0) {

        return ret;

    }

    return 0;

    qemu_co_mutex_lock(&s->table_lock);

    return r;

}

/**

    size_t len;

    int ret;

    qemu_co_mutex_lock(&s->table_lock);

    while (1) {

        trace_qed_aio_next_io(s, acb, 0, acb->cur_pos + acb->cur_qiov.size);

    trace_qed_aio_complete(s, acb, ret);

    qed_aio_complete(acb);

    qemu_co_mutex_unlock(&s->table_lock);

    return ret;

}

static void bdrv_qed_invalidate_cache(BlockDriverState *bs, Error **errp)

{

    BDRVQEDState *s = bs->opaque;

    Error *local_err = NULL;

    int ret;

    bdrv_qed_close(bs);

    bdrv_qed_init_state(bs);

    if (qemu_in_coroutine()) {

        qemu_co_mutex_lock(&s->table_lock);

    }

    ret = bdrv_qed_do_open(bs, NULL, bs->open_flags, &local_err);

    if (qemu_in_coroutine()) {

        qemu_co_mutex_unlock(&s->table_lock);

    }

    if (local_err) {

        error_propagate(errp, local_err);

        error_prepend(errp, "Could not reopen qed layer: ");

typedef struct {

    BlockDriverState *bs;           /* device */

    uint64_t file_size;             /* length of image file, in bytes */

    /* Written only by an allocating write or the timer handler (the latter

     * while allocating reqs are plugged).

     */

    QEDHeader header;               /* always cpu-endian */

    /* Protected by table_lock.  */

    CoMutex table_lock;

    QEDTable *l1_table;

    L2TableCache l2_cache;          /* l2 table cache */

    uint32_t table_nelems;

    uint32_t l1_shift;

    uint32_t l2_shift;

    uint32_t l2_mask;

    uint64_t file_size;             /* length of image file, in bytes */

    /* Allocating write request queue */

    QEDAIOCB *allocating_acb;

    QED_CLUSTER_L1,            /* cluster missing in L1 */

};

void qed_acquire(BDRVQEDState *s);

void qed_release(BDRVQEDState *s);

/**

 * Header functions

 */