install: on error, just write a GPT

On GPT systems, there's no point in clearing the partition table and then immediately writing back a new GPT. Drop the clearing.
coreos · Aug 11, 2020 · 8420896 · 8420896
1 parent 8389c94
commit 8420896
Show file tree

Hide file tree

Showing 3 changed files with 31 additions and 65 deletions.
diff --git a/src/blockdev.rs b/src/blockdev.rs
@@ -897,24 +897,14 @@ pub fn udev_settle() -> Result<()> {
 
 /// Inspect a buffer from the start of a disk image and return its formatted
 /// sector size, if any can be determined.
-pub fn detect_formatted_sector_size_start(buf: &[u8]) -> Option<NonZeroU32> {
-    detect_formatted_sector_size(buf, 512, 4096)
-}
-
-/// Inspect a buffer 4 KiB from the end of a disk image and return its
-/// formatted sector size, if any can be determined.
-pub fn detect_formatted_sector_size_end(buf: &[u8]) -> Option<NonZeroU32> {
-    detect_formatted_sector_size(buf, 4096 - 512, 0)
-}
-
-fn detect_formatted_sector_size(buf: &[u8], gpt_512: usize, gpt_4096: usize) -> Option<NonZeroU32> {
+pub fn detect_formatted_sector_size(buf: &[u8]) -> Option<NonZeroU32> {
     let gpt_magic: &[u8; 8] = b"EFI PART";
 
-    if buf.len() >= gpt_512 + 8 && buf[gpt_512..gpt_512 + 8] == gpt_magic[..] {
-        // 512-byte GPT
+    if buf.len() >= 520 && buf[512..520] == gpt_magic[..] {
+        // GPT at offset 512
         NonZeroU32::new(512)
-    } else if buf.len() >= gpt_4096 + 8 && buf[gpt_4096..gpt_4096 + 8] == gpt_magic[..] {
-        // 4096-byte GPT
+    } else if buf.len() >= 4104 && buf[4096..4104] == gpt_magic[..] {
+        // GPT at offset 4096
         NonZeroU32::new(4096)
     } else {
         // Unknown
@@ -1019,10 +1009,12 @@ mod tests {
             } else {
                 test.data.to_vec()
             };
-            let result = detect_formatted_sector_size_start(&data);
-            assert_eq!(result, test.result, "{}", test.name);
-            let result = detect_formatted_sector_size_end(&data[data.len().saturating_sub(4096)..]);
-            assert_eq!(result, test.result, "{}", test.name);
+            assert_eq!(
+                detect_formatted_sector_size(&data),
+                test.result,
+                "{}",
+                test.name
+            );
         }
     }
 

diff --git a/src/download.rs b/src/download.rs
@@ -23,7 +23,7 @@ use std::path::{Path, PathBuf};
 use std::result;
 use std::time::{Duration, Instant};
 
-use crate::blockdev::detect_formatted_sector_size_start;
+use crate::blockdev::detect_formatted_sector_size;
 use crate::cmdline::*;
 use crate::errors::*;
 use crate::io::*;
@@ -225,7 +225,7 @@ where
     // Were we asked to check sector size?
     if let Some(expected) = expected_sector_size {
         // Can we derive one from source data?
-        if let Some(actual) = detect_formatted_sector_size_start(&first_mb) {
+        if let Some(actual) = detect_formatted_sector_size(&first_mb) {
             // Do they match?
             if expected != actual {
                 bail!(

diff --git a/src/install.rs b/src/install.rs
@@ -108,7 +108,7 @@ pub fn install(config: &InstallConfig) -> Result<()> {
                 stash_saved_partitions(&mut dest, &saved)?;
             }
         } else {
-            reset_partition_table(&mut dest, &mut *table, &saved)?;
+            reset_partition_table(config, &mut dest, &mut *table, &saved)?;
         }
 
         // return a generic error so our exit status is right
@@ -448,55 +448,29 @@ fn copy_network_config(mountpoint: &Path, net_config_src: &str) -> Result<()> {
 /// Clear the partition table and restore saved partitions.  For use after
 /// a failure.
 fn reset_partition_table(
+    config: &InstallConfig,
     dest: &mut File,
     table: &mut dyn PartTable,
     saved: &SavedPartitions,
 ) -> Result<()> {
-    eprintln!("Clearing partition table");
-
-    // Clear the first MiB of disk.
-    dest.seek(SeekFrom::Start(0))
-        .chain_err(|| "seeking to start of disk")?;
-    let zeroes = [0u8; 1024 * 1024];
-    dest.write_all(&zeroes)
-        .chain_err(|| "clearing primary partition table")?;
-
-    // Clear the backup GPT, which is in the last LBA.  If there is one, we
-    // should clear it, since it might have stale partition info.
-    // Constraints:
-    //   - Never overwrite partition contents.
-    //   - If we're on a GPT platform, we have the right to overwrite at
-    //     least the last 4 KiB of disk.  On 4Kn drives, that's the backup
-    //     GPT.  On 512-byte drives, there is at least 16 KiB of
-    //     non-partitionable space before the backup GPT, so we're still safe.
-    //     This is true even if we're writing to a legacy MBR disk, because
-    //     by doing so, the user already gave the OS permission to write the
-    //     backup GPT on first boot.
-    //   - We can't assume that the backup GPT corresponds to the disk
-    //     sector size because of possible user error.  We probably can't
-    //     even assume there aren't backup GPTs for both sector sizes.
-    //   - If we're not on a GPT system (s390x DASD), we can't overwrite the
-    //     end of the disk.
-    // We could probably get away with clearing the last 4 KiB if !DASD, but
-    // be a bit more conservative: probe for _any_ GPT signature and, if
-    // found, clear the last 4 KiB.
-    let mut buf = [0u8; 4096];
-    dest.seek(SeekFrom::End(-(buf.len() as i64)))
-        .chain_err(|| "seeking to end of disk")?;
-    dest.read_exact(&mut buf)
-        .chain_err(|| "reading end of disk")?;
-    if detect_formatted_sector_size_end(&buf).is_some() {
-        dest.seek(SeekFrom::End(-(buf.len() as i64)))
-            .chain_err(|| "seeking to end of disk")?;
-        dest.write_all(&zeroes[..buf.len()])
-            .chain_err(|| "clearing backup partition table")?;
+    eprintln!("Resetting partition table");
+
+    if is_dasd(config)? {
+        // Don't write out a GPT, since the backup GPT may overwrite
+        // something we're not allowed to touch.  Just clear the first MiB
+        // of disk.
+        dest.seek(SeekFrom::Start(0))
+            .chain_err(|| "seeking to start of disk")?;
+        let zeroes = [0u8; 1024 * 1024];
+        dest.write_all(&zeroes)
+            .chain_err(|| "clearing primary partition table")?;
+    } else {
+        // Write a new GPT including any saved partitions.
+        saved
+            .overwrite(dest)
+            .chain_err(|| "restoring saved partitions")?;
     }
 
-    // Restore saved partitions.
-    saved
-        .overwrite(dest)
-        .chain_err(|| "restoring saved partitions")?;
-
     // Finish writeback and reread the partition table.
     dest.sync_all()
         .chain_err(|| "syncing partition table to disk")?;