vm-curator 0.4.10

A TUI application to manage QEMU VM library
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267

use anyhow::{bail, Context, Result};
use serde::Deserialize;
use std::path::Path;
use std::process::Command;

/// A snapshot of a VM disk
#[derive(Debug, Clone)]
pub struct Snapshot {
    /// Snapshot ID from qemu-img - reserved for future use
    #[allow(dead_code)]
    pub id: String,
    pub name: String,
    pub size: String,
    pub date: String,
    /// VM clock time - reserved for display in future UI
    #[allow(dead_code)]
    pub vm_clock: String,
}

/// JSON output from qemu-img info --output=json
#[derive(Debug, Deserialize)]
struct QemuImgInfo {
    #[serde(default)]
    format: String,
    #[serde(rename = "virtual-size", default)]
    virtual_size: u64,
    #[serde(rename = "actual-size", default)]
    actual_size: Option<u64>,
    #[serde(rename = "cluster-size", default)]
    cluster_size: Option<u64>,
    #[serde(rename = "backing-filename")]
    backing_filename: Option<String>,
    #[serde(default)]
    snapshots: Vec<QemuSnapshot>,
}

/// Snapshot info from qemu-img JSON output
#[derive(Debug, Deserialize)]
struct QemuSnapshot {
    id: String,
    name: String,
    #[serde(rename = "vm-state-size", default)]
    vm_state_size: u64,
    #[serde(rename = "date-sec", default)]
    date_sec: i64,
    #[serde(rename = "date-nsec", default)]
    date_nsec: i64,
    #[serde(rename = "vm-clock-sec", default)]
    vm_clock_sec: i64,
    #[serde(rename = "vm-clock-nsec", default)]
    vm_clock_nsec: i64,
}

/// Convert a path to a string, returning an error if the path contains invalid UTF-8
fn path_to_str(path: &Path) -> Result<&str> {
    path.to_str()
        .ok_or_else(|| anyhow::anyhow!("Path contains invalid UTF-8: {:?}", path))
}

/// Validate and sanitize a snapshot name
/// Returns the sanitized name or an error if the name is invalid
pub fn validate_snapshot_name(name: &str) -> Result<String> {
    // Check for empty or whitespace-only names
    let trimmed = name.trim();
    if trimmed.is_empty() {
        bail!("Snapshot name cannot be empty");
    }

    // Check length (qemu-img has a limit)
    if trimmed.len() > 128 {
        bail!("Snapshot name too long (max 128 characters)");
    }

    // Only allow safe characters: alphanumeric, dash, underscore, dot
    // This prevents command injection and qemu-img parsing issues
    let sanitized: String = trimmed
        .chars()
        .map(|c| {
            if c.is_alphanumeric() || c == '-' || c == '_' || c == '.' {
                c
            } else {
                '_' // Replace unsafe characters with underscore
            }
        })
        .collect();

    // Ensure name doesn't start with a dash (could be interpreted as option)
    let sanitized = if sanitized.starts_with('-') {
        format!("_{}", sanitized)
    } else {
        sanitized
    };

    Ok(sanitized)
}

/// List snapshots for a qcow2 disk image using JSON output
pub fn list_snapshots(disk_path: &Path) -> Result<Vec<Snapshot>> {
    let disk_str = path_to_str(disk_path)?;
    let output = Command::new("qemu-img")
        .args(["info", "--output=json", disk_str])
        .output()
        .context("Failed to run qemu-img info")?;

    if !output.status.success() {
        let stderr = String::from_utf8_lossy(&output.stderr);
        bail!("qemu-img info failed: {}", stderr);
    }

    let stdout = String::from_utf8_lossy(&output.stdout);
    let info: QemuImgInfo = serde_json::from_str(&stdout)
        .context("Failed to parse qemu-img JSON output")?;

    let snapshots = info
        .snapshots
        .into_iter()
        .map(|s| {
            // Convert size to human-readable format
            let size = format_size(s.vm_state_size);

            // Convert timestamp to date string
            let date = format_timestamp(s.date_sec, s.date_nsec);

            // Convert VM clock to readable format
            let vm_clock = format_vm_clock(s.vm_clock_sec, s.vm_clock_nsec);

            Snapshot {
                id: s.id,
                name: s.name,
                size,
                date,
                vm_clock,
            }
        })
        .collect();

    Ok(snapshots)
}

/// Format bytes to human-readable size
fn format_size(bytes: u64) -> String {
    const KB: u64 = 1024;
    const MB: u64 = KB * 1024;
    const GB: u64 = MB * 1024;

    if bytes >= GB {
        format!("{:.1}G", bytes as f64 / GB as f64)
    } else if bytes >= MB {
        format!("{:.1}M", bytes as f64 / MB as f64)
    } else if bytes >= KB {
        format!("{:.1}K", bytes as f64 / KB as f64)
    } else {
        format!("{}B", bytes)
    }
}

/// Format Unix timestamp to date string
fn format_timestamp(secs: i64, _nsecs: i64) -> String {
    use chrono::{Local, TimeZone};
    if let Some(dt) = Local.timestamp_opt(secs, 0).single() {
        dt.format("%Y-%m-%d %H:%M:%S").to_string()
    } else {
        "unknown".to_string()
    }
}

/// Format VM clock seconds/nanoseconds to readable string
fn format_vm_clock(secs: i64, nsecs: i64) -> String {
    let total_secs = secs as f64 + (nsecs as f64 / 1_000_000_000.0);
    let hours = (total_secs / 3600.0) as u64;
    let minutes = ((total_secs % 3600.0) / 60.0) as u64;
    let seconds = total_secs % 60.0;
    format!("{:02}:{:02}:{:06.3}", hours, minutes, seconds)
}

/// Create a new snapshot
pub fn create_snapshot(disk_path: &Path, name: &str) -> Result<()> {
    let disk_str = path_to_str(disk_path)?;
    let sanitized_name = validate_snapshot_name(name)?;
    let output = Command::new("qemu-img")
        .args(["snapshot", "-c", &sanitized_name, disk_str])
        .output()
        .context("Failed to run qemu-img snapshot -c")?;

    if !output.status.success() {
        let stderr = String::from_utf8_lossy(&output.stderr);
        bail!("Failed to create snapshot: {}", stderr);
    }

    Ok(())
}

/// Restore (apply) a snapshot
pub fn restore_snapshot(disk_path: &Path, name: &str) -> Result<()> {
    let disk_str = path_to_str(disk_path)?;
    let sanitized_name = validate_snapshot_name(name)?;
    let output = Command::new("qemu-img")
        .args(["snapshot", "-a", &sanitized_name, disk_str])
        .output()
        .context("Failed to run qemu-img snapshot -a")?;

    if !output.status.success() {
        let stderr = String::from_utf8_lossy(&output.stderr);
        bail!("Failed to restore snapshot: {}", stderr);
    }

    Ok(())
}

/// Delete a snapshot
pub fn delete_snapshot(disk_path: &Path, name: &str) -> Result<()> {
    let disk_str = path_to_str(disk_path)?;
    let sanitized_name = validate_snapshot_name(name)?;
    let output = Command::new("qemu-img")
        .args(["snapshot", "-d", &sanitized_name, disk_str])
        .output()
        .context("Failed to run qemu-img snapshot -d")?;

    if !output.status.success() {
        let stderr = String::from_utf8_lossy(&output.stderr);
        bail!("Failed to delete snapshot: {}", stderr);
    }

    Ok(())
}

/// Get information about a disk image using JSON output
#[allow(dead_code)]
pub fn get_disk_info(disk_path: &Path) -> Result<DiskInfo> {
    let disk_str = path_to_str(disk_path)?;
    let output = Command::new("qemu-img")
        .args(["info", "--output=json", disk_str])
        .output()
        .context("Failed to run qemu-img info")?;

    if !output.status.success() {
        let stderr = String::from_utf8_lossy(&output.stderr);
        bail!("Failed to get disk info: {}", stderr);
    }

    let stdout = String::from_utf8_lossy(&output.stdout);
    let info: QemuImgInfo = serde_json::from_str(&stdout)
        .context("Failed to parse qemu-img JSON output")?;

    Ok(DiskInfo {
        format: info.format,
        virtual_size: format_size(info.virtual_size),
        disk_size: info.actual_size.map(format_size).unwrap_or_else(|| "unknown".to_string()),
        cluster_size: info.cluster_size.map(format_size),
        backing_file: info.backing_filename,
    })
}

/// Disk image information - reserved for future disk info display
#[derive(Debug, Clone)]
#[allow(dead_code)]
pub struct DiskInfo {
    pub format: String,
    pub virtual_size: String,
    pub disk_size: String,
    pub cluster_size: Option<String>,
    pub backing_file: Option<String>,
}

#[cfg(test)]
#[path = "tests/snapshot.rs"]
mod tests;