MAINTAINERS: Add maintainers for Exynos SOC.

[qemu.git] / block.c
diff --git a/block.c b/block.c

index 16436670dc5b87ba80dd3560d8563a250c446777..ae297bb8471346db4c4e539ea13f5f519380aa36 100644 (file)
--- a/block.c
+++ b/block.c
@@ -48,6 +48,11 @@
  
  #define NOT_DONE 0x7fffffff /* used while emulated sync operation in progress */
  
  
  #define NOT_DONE 0x7fffffff /* used while emulated sync operation in progress */
  
+typedef enum {
+    BDRV_REQ_COPY_ON_READ = 0x1,
+    BDRV_REQ_ZERO_WRITE   = 0x2,
+} BdrvRequestFlags;
+
  static void bdrv_dev_change_media_cb(BlockDriverState *bs, bool load);
  static BlockDriverAIOCB *bdrv_aio_readv_em(BlockDriverState *bs,
          int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
  static void bdrv_dev_change_media_cb(BlockDriverState *bs, bool load);
  static BlockDriverAIOCB *bdrv_aio_readv_em(BlockDriverState *bs,
          int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
@@ -62,9 +67,11 @@ static int coroutine_fn bdrv_co_writev_em(BlockDriverState *bs,
                                           int64_t sector_num, int nb_sectors,
                                           QEMUIOVector *iov);
  static int coroutine_fn bdrv_co_do_readv(BlockDriverState *bs,
                                           int64_t sector_num, int nb_sectors,
                                           QEMUIOVector *iov);
  static int coroutine_fn bdrv_co_do_readv(BlockDriverState *bs,
-    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov);
+    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov,
+    BdrvRequestFlags flags);
  static int coroutine_fn bdrv_co_do_writev(BlockDriverState *bs,
  static int coroutine_fn bdrv_co_do_writev(BlockDriverState *bs,
-    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov);
+    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov,
+    BdrvRequestFlags flags);
  static BlockDriverAIOCB *bdrv_co_aio_rw_vector(BlockDriverState *bs,
                                                 int64_t sector_num,
                                                 QEMUIOVector *qiov,
  static BlockDriverAIOCB *bdrv_co_aio_rw_vector(BlockDriverState *bs,
                                                 int64_t sector_num,
                                                 QEMUIOVector *qiov,
@@ -538,6 +545,22 @@ int bdrv_parse_cache_flags(const char *mode, int *flags)
      return 0;
  }
  
      return 0;
  }
  
+/**
+ * The copy-on-read flag is actually a reference count so multiple users may
+ * use the feature without worrying about clobbering its previous state.
+ * Copy-on-read stays enabled until all users have called to disable it.
+ */
+void bdrv_enable_copy_on_read(BlockDriverState *bs)
+{
+    bs->copy_on_read++;
+}
+
+void bdrv_disable_copy_on_read(BlockDriverState *bs)
+{
+    assert(bs->copy_on_read > 0);
+    bs->copy_on_read--;
+}
+
  /*
   * Common part for opening disk images and files
   */
  /*
   * Common part for opening disk images and files
   */
@@ -559,6 +582,11 @@ static int bdrv_open_common(BlockDriverState *bs, const char *filename,
      bs->growable = 0;
      bs->buffer_alignment = 512;
  
      bs->growable = 0;
      bs->buffer_alignment = 512;
  
+    assert(bs->copy_on_read == 0); /* bdrv_new() and bdrv_close() make it so */
+    if ((flags & BDRV_O_RDWR) && (flags & BDRV_O_COPY_ON_READ)) {
+        bdrv_enable_copy_on_read(bs);
+    }
+
      pstrcpy(bs->filename, sizeof(bs->filename), filename);
      bs->backing_file[0] = '\0';
  
      pstrcpy(bs->filename, sizeof(bs->filename), filename);
      bs->backing_file[0] = '\0';
  
@@ -801,6 +829,7 @@ void bdrv_close(BlockDriverState *bs)
  #endif
          bs->opaque = NULL;
          bs->drv = NULL;
  #endif
          bs->opaque = NULL;
          bs->drv = NULL;
+        bs->copy_on_read = 0;
  
          if (bs->file != NULL) {
              bdrv_close(bs->file);
  
          if (bs->file != NULL) {
              bdrv_close(bs->file);
@@ -824,6 +853,25 @@ void bdrv_close_all(void)
      }
  }
  
      }
  }
  
+/*
+ * Wait for pending requests to complete across all BlockDriverStates
+ *
+ * This function does not flush data to disk, use bdrv_flush_all() for that
+ * after calling this function.
+ */
+void bdrv_drain_all(void)
+{
+    BlockDriverState *bs;
+
+    qemu_aio_flush();
+
+    /* If requests are still pending there is a bug somewhere */
+    QTAILQ_FOREACH(bs, &bdrv_states, list) {
+        assert(QLIST_EMPTY(&bs->tracked_requests));
+        assert(qemu_co_queue_empty(&bs->throttled_reqs));
+    }
+}
+
  /* make a BlockDriverState anonymous by removing from bdrv_state list.
     Also, NULL terminate the device_name to prevent double remove */
  void bdrv_make_anon(BlockDriverState *bs)
  /* make a BlockDriverState anonymous by removing from bdrv_state list.
     Also, NULL terminate the device_name to prevent double remove */
  void bdrv_make_anon(BlockDriverState *bs)
@@ -979,6 +1027,10 @@ int bdrv_commit(BlockDriverState *bs)
          return -EACCES;
      }
  
          return -EACCES;
      }
  
+    if (bdrv_in_use(bs) || bdrv_in_use(bs->backing_hd)) {
+        return -EBUSY;
+    }
+
      backing_drv = bs->backing_hd->drv;
      ro = bs->backing_hd->read_only;
      strncpy(filename, bs->backing_hd->filename, sizeof(filename));
      backing_drv = bs->backing_hd->drv;
      ro = bs->backing_hd->read_only;
      strncpy(filename, bs->backing_hd->filename, sizeof(filename));
@@ -1077,6 +1129,8 @@ struct BdrvTrackedRequest {
      int nb_sectors;
      bool is_write;
      QLIST_ENTRY(BdrvTrackedRequest) list;
      int nb_sectors;
      bool is_write;
      QLIST_ENTRY(BdrvTrackedRequest) list;
+    Coroutine *co; /* owner, used for deadlock detection */
+    CoQueue wait_queue; /* coroutines blocked on this request */
  };
  
  /**
  };
  
  /**
@@ -1087,6 +1141,7 @@ struct BdrvTrackedRequest {
  static void tracked_request_end(BdrvTrackedRequest *req)
  {
      QLIST_REMOVE(req, list);
  static void tracked_request_end(BdrvTrackedRequest *req)
  {
      QLIST_REMOVE(req, list);
+    qemu_co_queue_restart_all(&req->wait_queue);
  }
  
  /**
  }
  
  /**
@@ -1102,11 +1157,84 @@ static void tracked_request_begin(BdrvTrackedRequest *req,
          .sector_num = sector_num,
          .nb_sectors = nb_sectors,
          .is_write = is_write,
          .sector_num = sector_num,
          .nb_sectors = nb_sectors,
          .is_write = is_write,
+        .co = qemu_coroutine_self(),
      };
  
      };
  
+    qemu_co_queue_init(&req->wait_queue);
+
      QLIST_INSERT_HEAD(&bs->tracked_requests, req, list);
  }
  
      QLIST_INSERT_HEAD(&bs->tracked_requests, req, list);
  }
  
+/**
+ * Round a region to cluster boundaries
+ */
+static void round_to_clusters(BlockDriverState *bs,
+                              int64_t sector_num, int nb_sectors,
+                              int64_t *cluster_sector_num,
+                              int *cluster_nb_sectors)
+{
+    BlockDriverInfo bdi;
+
+    if (bdrv_get_info(bs, &bdi) < 0 || bdi.cluster_size == 0) {
+        *cluster_sector_num = sector_num;
+        *cluster_nb_sectors = nb_sectors;
+    } else {
+        int64_t c = bdi.cluster_size / BDRV_SECTOR_SIZE;
+        *cluster_sector_num = QEMU_ALIGN_DOWN(sector_num, c);
+        *cluster_nb_sectors = QEMU_ALIGN_UP(sector_num - *cluster_sector_num +
+                                            nb_sectors, c);
+    }
+}
+
+static bool tracked_request_overlaps(BdrvTrackedRequest *req,
+                                     int64_t sector_num, int nb_sectors) {
+    /*        aaaa   bbbb */
+    if (sector_num >= req->sector_num + req->nb_sectors) {
+        return false;
+    }
+    /* bbbb   aaaa        */
+    if (req->sector_num >= sector_num + nb_sectors) {
+        return false;
+    }
+    return true;
+}
+
+static void coroutine_fn wait_for_overlapping_requests(BlockDriverState *bs,
+        int64_t sector_num, int nb_sectors)
+{
+    BdrvTrackedRequest *req;
+    int64_t cluster_sector_num;
+    int cluster_nb_sectors;
+    bool retry;
+
+    /* If we touch the same cluster it counts as an overlap.  This guarantees
+     * that allocating writes will be serialized and not race with each other
+     * for the same cluster.  For example, in copy-on-read it ensures that the
+     * CoR read and write operations are atomic and guest writes cannot
+     * interleave between them.
+     */
+    round_to_clusters(bs, sector_num, nb_sectors,
+                      &cluster_sector_num, &cluster_nb_sectors);
+
+    do {
+        retry = false;
+        QLIST_FOREACH(req, &bs->tracked_requests, list) {
+            if (tracked_request_overlaps(req, cluster_sector_num,
+                                         cluster_nb_sectors)) {
+                /* Hitting this means there was a reentrant request, for
+                 * example, a block driver issuing nested requests.  This must
+                 * never happen since it means deadlock.
+                 */
+                assert(qemu_coroutine_self() != req->co);
+
+                qemu_co_queue_wait(&req->wait_queue);
+                retry = true;
+                break;
+            }
+        }
+    } while (retry);
+}
+
  /*
   * Return values:
   * 0        - success
  /*
   * Return values:
   * 0        - success
@@ -1171,10 +1299,10 @@ static void coroutine_fn bdrv_rw_co_entry(void *opaque)
  
      if (!rwco->is_write) {
          rwco->ret = bdrv_co_do_readv(rwco->bs, rwco->sector_num,
  
      if (!rwco->is_write) {
          rwco->ret = bdrv_co_do_readv(rwco->bs, rwco->sector_num,
-                                     rwco->nb_sectors, rwco->qiov);
+                                     rwco->nb_sectors, rwco->qiov, 0);
      } else {
          rwco->ret = bdrv_co_do_writev(rwco->bs, rwco->sector_num,
      } else {
          rwco->ret = bdrv_co_do_writev(rwco->bs, rwco->sector_num,
-                                      rwco->nb_sectors, rwco->qiov);
+                                      rwco->nb_sectors, rwco->qiov, 0);
      }
  }
  
      }
  }
  
@@ -1379,11 +1507,75 @@ int bdrv_pwrite_sync(BlockDriverState *bs, int64_t offset,
      return 0;
  }
  
      return 0;
  }
  
+static int coroutine_fn bdrv_co_do_copy_on_readv(BlockDriverState *bs,
+        int64_t sector_num, int nb_sectors, QEMUIOVector *qiov)
+{
+    /* Perform I/O through a temporary buffer so that users who scribble over
+     * their read buffer while the operation is in progress do not end up
+     * modifying the image file.  This is critical for zero-copy guest I/O
+     * where anything might happen inside guest memory.
+     */
+    void *bounce_buffer;
+
+    BlockDriver *drv = bs->drv;
+    struct iovec iov;
+    QEMUIOVector bounce_qiov;
+    int64_t cluster_sector_num;
+    int cluster_nb_sectors;
+    size_t skip_bytes;
+    int ret;
+
+    /* Cover entire cluster so no additional backing file I/O is required when
+     * allocating cluster in the image file.
+     */
+    round_to_clusters(bs, sector_num, nb_sectors,
+                      &cluster_sector_num, &cluster_nb_sectors);
+
+    trace_bdrv_co_do_copy_on_readv(bs, sector_num, nb_sectors,
+                                   cluster_sector_num, cluster_nb_sectors);
+
+    iov.iov_len = cluster_nb_sectors * BDRV_SECTOR_SIZE;
+    iov.iov_base = bounce_buffer = qemu_blockalign(bs, iov.iov_len);
+    qemu_iovec_init_external(&bounce_qiov, &iov, 1);
+
+    ret = drv->bdrv_co_readv(bs, cluster_sector_num, cluster_nb_sectors,
+                             &bounce_qiov);
+    if (ret < 0) {
+        goto err;
+    }
+
+    if (drv->bdrv_co_write_zeroes &&
+        buffer_is_zero(bounce_buffer, iov.iov_len)) {
+        ret = drv->bdrv_co_write_zeroes(bs, cluster_sector_num,
+                                        cluster_nb_sectors);
+    } else {
+        ret = drv->bdrv_co_writev(bs, cluster_sector_num, cluster_nb_sectors,
+                                  &bounce_qiov);
+    }
+
+    if (ret < 0) {
+        /* It might be okay to ignore write errors for guest requests.  If this
+         * is a deliberate copy-on-read then we don't want to ignore the error.
+         * Simply report it in all cases.
+         */
+        goto err;
+    }
+
+    skip_bytes = (sector_num - cluster_sector_num) * BDRV_SECTOR_SIZE;
+    qemu_iovec_from_buffer(qiov, bounce_buffer + skip_bytes,
+                           nb_sectors * BDRV_SECTOR_SIZE);
+
+err:
+    qemu_vfree(bounce_buffer);
+    return ret;
+}
+
  /*
   * Handle a read request in coroutine context
   */
  static int coroutine_fn bdrv_co_do_readv(BlockDriverState *bs,
  /*
   * Handle a read request in coroutine context
   */
  static int coroutine_fn bdrv_co_do_readv(BlockDriverState *bs,
-    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov)
+    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov,
+    BdrvRequestFlags flags)
  {
      BlockDriver *drv = bs->drv;
      BdrvTrackedRequest req;
  {
      BlockDriver *drv = bs->drv;
      BdrvTrackedRequest req;
@@ -1401,9 +1593,42 @@ static int coroutine_fn bdrv_co_do_readv(BlockDriverState *bs,
          bdrv_io_limits_intercept(bs, false, nb_sectors);
      }
  
          bdrv_io_limits_intercept(bs, false, nb_sectors);
      }
  
+    if (bs->copy_on_read) {
+        flags |= BDRV_REQ_COPY_ON_READ;
+    }
+    if (flags & BDRV_REQ_COPY_ON_READ) {
+        bs->copy_on_read_in_flight++;
+    }
+
+    if (bs->copy_on_read_in_flight) {
+        wait_for_overlapping_requests(bs, sector_num, nb_sectors);
+    }
+
      tracked_request_begin(&req, bs, sector_num, nb_sectors, false);
      tracked_request_begin(&req, bs, sector_num, nb_sectors, false);
+
+    if (flags & BDRV_REQ_COPY_ON_READ) {
+        int pnum;
+
+        ret = bdrv_co_is_allocated(bs, sector_num, nb_sectors, &pnum);
+        if (ret < 0) {
+            goto out;
+        }
+
+        if (!ret || pnum != nb_sectors) {
+            ret = bdrv_co_do_copy_on_readv(bs, sector_num, nb_sectors, qiov);
+            goto out;
+        }
+    }
+
      ret = drv->bdrv_co_readv(bs, sector_num, nb_sectors, qiov);
      ret = drv->bdrv_co_readv(bs, sector_num, nb_sectors, qiov);
+
+out:
      tracked_request_end(&req);
      tracked_request_end(&req);
+
+    if (flags & BDRV_REQ_COPY_ON_READ) {
+        bs->copy_on_read_in_flight--;
+    }
+
      return ret;
  }
  
      return ret;
  }
  
@@ -1412,14 +1637,49 @@ int coroutine_fn bdrv_co_readv(BlockDriverState *bs, int64_t sector_num,
  {
      trace_bdrv_co_readv(bs, sector_num, nb_sectors);
  
  {
      trace_bdrv_co_readv(bs, sector_num, nb_sectors);
  
-    return bdrv_co_do_readv(bs, sector_num, nb_sectors, qiov);
+    return bdrv_co_do_readv(bs, sector_num, nb_sectors, qiov, 0);
+}
+
+int coroutine_fn bdrv_co_copy_on_readv(BlockDriverState *bs,
+    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov)
+{
+    trace_bdrv_co_copy_on_readv(bs, sector_num, nb_sectors);
+
+    return bdrv_co_do_readv(bs, sector_num, nb_sectors, qiov,
+                            BDRV_REQ_COPY_ON_READ);
+}
+
+static int coroutine_fn bdrv_co_do_write_zeroes(BlockDriverState *bs,
+    int64_t sector_num, int nb_sectors)
+{
+    BlockDriver *drv = bs->drv;
+    QEMUIOVector qiov;
+    struct iovec iov;
+    int ret;
+
+    /* First try the efficient write zeroes operation */
+    if (drv->bdrv_co_write_zeroes) {
+        return drv->bdrv_co_write_zeroes(bs, sector_num, nb_sectors);
+    }
+
+    /* Fall back to bounce buffer if write zeroes is unsupported */
+    iov.iov_len  = nb_sectors * BDRV_SECTOR_SIZE;
+    iov.iov_base = qemu_blockalign(bs, iov.iov_len);
+    memset(iov.iov_base, 0, iov.iov_len);
+    qemu_iovec_init_external(&qiov, &iov, 1);
+
+    ret = drv->bdrv_co_writev(bs, sector_num, nb_sectors, &qiov);
+
+    qemu_vfree(iov.iov_base);
+    return ret;
  }
  
  /*
   * Handle a write request in coroutine context
   */
  static int coroutine_fn bdrv_co_do_writev(BlockDriverState *bs,
  }
  
  /*
   * Handle a write request in coroutine context
   */
  static int coroutine_fn bdrv_co_do_writev(BlockDriverState *bs,
-    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov)
+    int64_t sector_num, int nb_sectors, QEMUIOVector *qiov,
+    BdrvRequestFlags flags)
  {
      BlockDriver *drv = bs->drv;
      BdrvTrackedRequest req;
  {
      BlockDriver *drv = bs->drv;
      BdrvTrackedRequest req;
@@ -1440,9 +1700,17 @@ static int coroutine_fn bdrv_co_do_writev(BlockDriverState *bs,
          bdrv_io_limits_intercept(bs, true, nb_sectors);
      }
  
          bdrv_io_limits_intercept(bs, true, nb_sectors);
      }
  
+    if (bs->copy_on_read_in_flight) {
+        wait_for_overlapping_requests(bs, sector_num, nb_sectors);
+    }
+
      tracked_request_begin(&req, bs, sector_num, nb_sectors, true);
  
      tracked_request_begin(&req, bs, sector_num, nb_sectors, true);
  
-    ret = drv->bdrv_co_writev(bs, sector_num, nb_sectors, qiov);
+    if (flags & BDRV_REQ_ZERO_WRITE) {
+        ret = bdrv_co_do_write_zeroes(bs, sector_num, nb_sectors);
+    } else {
+        ret = drv->bdrv_co_writev(bs, sector_num, nb_sectors, qiov);
+    }
  
      if (bs->dirty_bitmap) {
          set_dirty_bitmap(bs, sector_num, nb_sectors, 1);
  
      if (bs->dirty_bitmap) {
          set_dirty_bitmap(bs, sector_num, nb_sectors, 1);
@@ -1462,7 +1730,16 @@ int coroutine_fn bdrv_co_writev(BlockDriverState *bs, int64_t sector_num,
  {
      trace_bdrv_co_writev(bs, sector_num, nb_sectors);
  
  {
      trace_bdrv_co_writev(bs, sector_num, nb_sectors);
  
-    return bdrv_co_do_writev(bs, sector_num, nb_sectors, qiov);
+    return bdrv_co_do_writev(bs, sector_num, nb_sectors, qiov, 0);
+}
+
+int coroutine_fn bdrv_co_write_zeroes(BlockDriverState *bs,
+                                      int64_t sector_num, int nb_sectors)
+{
+    trace_bdrv_co_write_zeroes(bs, sector_num, nb_sectors);
+
+    return bdrv_co_do_writev(bs, sector_num, nb_sectors, NULL,
+                             BDRV_REQ_ZERO_WRITE);
  }
  
  /**
  }
  
  /**
@@ -1947,23 +2224,33 @@ typedef struct BdrvCoIsAllocatedData {
   * not implementing the functionality are assumed to not support backing files,
   * hence all their sectors are reported as allocated.
   *
   * not implementing the functionality are assumed to not support backing files,
   * hence all their sectors are reported as allocated.
   *
+ * If 'sector_num' is beyond the end of the disk image the return value is 0
+ * and 'pnum' is set to 0.
+ *
   * 'pnum' is set to the number of sectors (including and immediately following
   * the specified sector) that are known to be in the same
   * allocated/unallocated state.
   *
   * 'pnum' is set to the number of sectors (including and immediately following
   * the specified sector) that are known to be in the same
   * allocated/unallocated state.
   *
- * 'nb_sectors' is the max value 'pnum' should be set to.
+ * 'nb_sectors' is the max value 'pnum' should be set to.  If nb_sectors goes
+ * beyond the end of the disk image it will be clamped.
   */
  int coroutine_fn bdrv_co_is_allocated(BlockDriverState *bs, int64_t sector_num,
                                        int nb_sectors, int *pnum)
  {
   */
  int coroutine_fn bdrv_co_is_allocated(BlockDriverState *bs, int64_t sector_num,
                                        int nb_sectors, int *pnum)
  {
+    int64_t n;
+
+    if (sector_num >= bs->total_sectors) {
+        *pnum = 0;
+        return 0;
+    }
+
+    n = bs->total_sectors - sector_num;
+    if (n < nb_sectors) {
+        nb_sectors = n;
+    }
+
      if (!bs->drv->bdrv_co_is_allocated) {
      if (!bs->drv->bdrv_co_is_allocated) {
-        int64_t n;
-        if (sector_num >= bs->total_sectors) {
-            *pnum = 0;
-            return 0;
-        }
-        n = bs->total_sectors - sector_num;
-        *pnum = (n < nb_sectors) ? (n) : (nb_sectors);
+        *pnum = nb_sectors;
          return 1;
      }
  
          return 1;
      }
  
@@ -2357,6 +2644,24 @@ int bdrv_snapshot_load_tmp(BlockDriverState *bs,
      return -ENOTSUP;
  }
  
      return -ENOTSUP;
  }
  
+BlockDriverState *bdrv_find_backing_image(BlockDriverState *bs,
+        const char *backing_file)
+{
+    if (!bs->drv) {
+        return NULL;
+    }
+
+    if (bs->backing_hd) {
+        if (strcmp(bs->backing_file, backing_file) == 0) {
+            return bs->backing_hd;
+        } else {
+            return bdrv_find_backing_image(bs->backing_hd, backing_file);
+        }
+    }
+
+    return NULL;
+}
+
  #define NB_SUFFIXES 4
  
  char *get_human_readable_size(char *buf, int buf_size, int64_t size)
  #define NB_SUFFIXES 4
  
  char *get_human_readable_size(char *buf, int buf_size, int64_t size)
@@ -2605,7 +2910,6 @@ static int multiwrite_merge(BlockDriverState *bs, BlockRequest *reqs,
   */
  int bdrv_aio_multiwrite(BlockDriverState *bs, BlockRequest *reqs, int num_reqs)
  {
   */
  int bdrv_aio_multiwrite(BlockDriverState *bs, BlockRequest *reqs, int num_reqs)
  {
-    BlockDriverAIOCB *acb;
      MultiwriteCB *mcb;
      int i;
  
      MultiwriteCB *mcb;
      int i;
  
@@ -2636,59 +2940,14 @@ int bdrv_aio_multiwrite(BlockDriverState *bs, BlockRequest *reqs, int num_reqs)
  
      trace_bdrv_aio_multiwrite(mcb, mcb->num_callbacks, num_reqs);
  
  
      trace_bdrv_aio_multiwrite(mcb, mcb->num_callbacks, num_reqs);
  
-    /*
-     * Run the aio requests. As soon as one request can't be submitted
-     * successfully, fail all requests that are not yet submitted (we must
-     * return failure for all requests anyway)
-     *
-     * num_requests cannot be set to the right value immediately: If
-     * bdrv_aio_writev fails for some request, num_requests would be too high
-     * and therefore multiwrite_cb() would never recognize the multiwrite
-     * request as completed. We also cannot use the loop variable i to set it
-     * when the first request fails because the callback may already have been
-     * called for previously submitted requests. Thus, num_requests must be
-     * incremented for each request that is submitted.
-     *
-     * The problem that callbacks may be called early also means that we need
-     * to take care that num_requests doesn't become 0 before all requests are
-     * submitted - multiwrite_cb() would consider the multiwrite request
-     * completed. A dummy request that is "completed" by a manual call to
-     * multiwrite_cb() takes care of this.
-     */
-    mcb->num_requests = 1;
-
-    // Run the aio requests
+    /* Run the aio requests. */
+    mcb->num_requests = num_reqs;
      for (i = 0; i < num_reqs; i++) {
      for (i = 0; i < num_reqs; i++) {
-        mcb->num_requests++;
-        acb = bdrv_aio_writev(bs, reqs[i].sector, reqs[i].qiov,
+        bdrv_aio_writev(bs, reqs[i].sector, reqs[i].qiov,
              reqs[i].nb_sectors, multiwrite_cb, mcb);
              reqs[i].nb_sectors, multiwrite_cb, mcb);
-
-        if (acb == NULL) {
-            // We can only fail the whole thing if no request has been
-            // submitted yet. Otherwise we'll wait for the submitted AIOs to
-            // complete and report the error in the callback.
-            if (i == 0) {
-                trace_bdrv_aio_multiwrite_earlyfail(mcb);
-                goto fail;
-            } else {
-                trace_bdrv_aio_multiwrite_latefail(mcb, i);
-                multiwrite_cb(mcb, -EIO);
-                break;
-            }
-        }
      }
  
      }
  
-    /* Complete the dummy request */
-    multiwrite_cb(mcb, 0);
-
      return 0;
      return 0;
-
-fail:
-    for (i = 0; i < mcb->num_callbacks; i++) {
-        reqs[i].error = -EIO;
-    }
-    g_free(mcb);
-    return -1;
  }
  
  void bdrv_aio_cancel(BlockDriverAIOCB *acb)
  }
  
  void bdrv_aio_cancel(BlockDriverAIOCB *acb)
@@ -2916,9 +3175,7 @@ static BlockDriverAIOCB *bdrv_aio_rw_vector(BlockDriverState *bs,
      acb->is_write = is_write;
      acb->qiov = qiov;
      acb->bounce = qemu_blockalign(bs, qiov->size);
      acb->is_write = is_write;
      acb->qiov = qiov;
      acb->bounce = qemu_blockalign(bs, qiov->size);
-
-    if (!acb->bh)
-        acb->bh = qemu_bh_new(bdrv_aio_bh_cb, acb);
+    acb->bh = qemu_bh_new(bdrv_aio_bh_cb, acb);
  
      if (is_write) {
          qemu_iovec_to_buffer(acb->qiov, acb->bounce);
  
      if (is_write) {
          qemu_iovec_to_buffer(acb->qiov, acb->bounce);
@@ -2981,10 +3238,10 @@ static void coroutine_fn bdrv_co_do_rw(void *opaque)
  
      if (!acb->is_write) {
          acb->req.error = bdrv_co_do_readv(bs, acb->req.sector,
  
      if (!acb->is_write) {
          acb->req.error = bdrv_co_do_readv(bs, acb->req.sector,
-            acb->req.nb_sectors, acb->req.qiov);
+            acb->req.nb_sectors, acb->req.qiov, 0);
      } else {
          acb->req.error = bdrv_co_do_writev(bs, acb->req.sector,
      } else {
          acb->req.error = bdrv_co_do_writev(bs, acb->req.sector,
-            acb->req.nb_sectors, acb->req.qiov);
+            acb->req.nb_sectors, acb->req.qiov, 0);
      }
  
      acb->bh = qemu_bh_new(bdrv_co_em_bh, acb);
      }
  
      acb->bh = qemu_bh_new(bdrv_co_em_bh, acb);
@@ -3668,3 +3925,51 @@ out:
  
      return ret;
  }
  
      return ret;
  }
+
+void *block_job_create(const BlockJobType *job_type, BlockDriverState *bs,
+                       BlockDriverCompletionFunc *cb, void *opaque)
+{
+    BlockJob *job;
+
+    if (bs->job || bdrv_in_use(bs)) {
+        return NULL;
+    }
+    bdrv_set_in_use(bs, 1);
+
+    job = g_malloc0(job_type->instance_size);
+    job->job_type      = job_type;
+    job->bs            = bs;
+    job->cb            = cb;
+    job->opaque        = opaque;
+    bs->job = job;
+    return job;
+}
+
+void block_job_complete(BlockJob *job, int ret)
+{
+    BlockDriverState *bs = job->bs;
+
+    assert(bs->job == job);
+    job->cb(job->opaque, ret);
+    bs->job = NULL;
+    g_free(job);
+    bdrv_set_in_use(bs, 0);
+}
+
+int block_job_set_speed(BlockJob *job, int64_t value)
+{
+    if (!job->job_type->set_speed) {
+        return -ENOTSUP;
+    }
+    return job->job_type->set_speed(job, value);
+}
+
+void block_job_cancel(BlockJob *job)
+{
+    job->cancelled = true;
+}
+
+bool block_job_is_cancelled(BlockJob *job)
+{
+    return job->cancelled;
+}