migration: Accept 'cont' only after successful incoming migration When a 'cont' is issued on a VM that's just waiting for an incoming migration, the VM reboots and boots into the guest, possibly corrupting its storage since it could be shared with another VM running elsewhere. Ensure that a VM started with '-incoming' is only run when an incoming migration successfully completes. A new qerror, QERR_MIGRATION_EXPECTED, is added to signal that 'cont' failed due to no incoming migration has been attempted yet. Reported-by: Laine Stump <laine@redhat.com> Signed-off-by: Amit Shah <amit.shah@redhat.com> Reviewed-by: Luiz Capitulino <lcapitulino@redhat.com> Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>

commit: 8e84865e54cb66fd7b57bb18c312ad3d56b6e276 [log] [tgz]
author: Amit Shah <amit.shah@redhat.com> Tue Jul 27 15:49:19 2010 +0530
committer: Aurelien Jarno <aurelien@aurel32.net> Fri Jul 30 23:14:08 2010 +0200
tree: 92f787601f3a9d38ba05d4e98a8ed8b707c93a40
parent: 7899f799b71ab502ddc2344e4e22265f3eb663c6 [diff] [blame]
diff --git a/monitor.c b/monitor.c
index 45fd482..5366c36 100644
--- a/monitor.c
+++ b/monitor.c

@@ -1056,6 +1056,10 @@
 {
     struct bdrv_iterate_context context = { mon, 0 };
 
+    if (incoming_expected) {
+        qerror_report(QERR_MIGRATION_EXPECTED);
+        return -1;
+    }
     bdrv_iterate(encrypted_bdrv_it, &context);
     /* only resume the vm if all keys are set and valid */
     if (!context.err) {
commit	8e84865e54cb66fd7b57bb18c312ad3d56b6e276	[log] [tgz]
author	Amit Shah <amit.shah@redhat.com>	Tue Jul 27 15:49:19 2010 +0530
committer	Aurelien Jarno <aurelien@aurel32.net>	Fri Jul 30 23:14:08 2010 +0200
tree	92f787601f3a9d38ba05d4e98a8ed8b707c93a40
parent	7899f799b71ab502ddc2344e4e22265f3eb663c6 [diff] [blame]