qemu-io: Failure on a qcow2 image with the fuzzed refcount table
Bug #1353456 reported by
Maria Kustova
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| QEMU |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
'qemu-io -c write' and 'qemu-io -c aio_write' crashes on a qcow2 image with a fuzzed refcount table.
Sequence:
1. Unpack the attached archive, make a copy of test.img
2. Put copy.img and backing_img.file in the same directory
3. Execute
qemu-io copy.img -c write 279552 322560
qemu-io copy.img -c aio_write 836608 166400
Result: qemu-io was killed by SIGIOT with the reason:
qemu-io: block/qcow2-
qemu.git HEAD 69f87f713069f1f
Revision history for this message
| Maria Kustova (maria-k-o) wrote | #1 |
Revision history for this message
| Max Reitz (xanclic) wrote | #2 |
| Changed in qemu: | |
| status: | New → Fix Committed |
| Changed in qemu: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
Hi,
this has been fixed in upstream master (5f77ef69a19509
$ ./qemu-io copy.img -c 'aio_write 836608 166400'
qcow2: Marking image as corrupt: Preventing invalid write on metadata (overlaps with qcow2_header); further corruption events will be suppressed
aio_write failed: Input/output error
Thanks for your report,
Max