Isn't the space needed only dumpextent if compressed cores are kept compressed?

This comment doesn't seem to make sense right now.

Not sure the isencrypted part of this check makes sense. It's tautalogical now and I don't see a problem with it in the future either. I think it should just be: if (compress || iscompressed) {

Perhaps RWTUN?

Where did the di->blocksize come from?

This line is redundant.

comment seems misleading or open to misinterpretation. dumplength represents the uncompressed size of the dump

See my other comment in kerneldump.h - dumplength is the compressed length, and dumplength <= dumpextent.

Yeah, this was from when I had implemented support for encryption+compression. Will fix.

When savecore saves an encrypted dump, it saves it to vmcore_encrypted.0 rather than vmcore.0. Since we decrypt before decompressing, I wanted to ensure that the vmcore was still called vmcore_encrypted.0 rather than vmcore.0.gz. But for now it is indeed tautological.

Will fix.

It's for the trailing copy of the header.

The comment is kind of confusing when paired with this line though. I think I'll try making an ASCII diagram of the layout on disk; that'll make the calculations more clear.

Actually it isn't - kerneldump_parity() XORs the 32-bit words in the header, and the parity field comes last. So if kdh->parity = 0, then kerneldump_parity() returns the bitwise NOT of the XOR of all but the last word in the header. So after we set kdh->parity = 0; kdh->parity = kerneldump_parity(kdh), the XOR of all the words in kdh must be 0, and that's how we verify that the header is valid.

This should probably be lifted into a kerneldump_parity_update() subroutine.

Note that we set dumplength to the compressed length in dump_final(). In particular, we always have dumplength <= dumpextent. The comment is not very useful though, I'll improve it.

Huh, I must have got it confused. What's the function of dumpextent then? If it's just a rounded up dumplength, isn't it redundant?

The snprintf in this clause already prints vmcore_encrypted.last.gz if the dump is encrypted, no?

Or do you think an encrypted gzip shouldn't end in .gz? Maybe it would be more consistent to add ".encrypted" as a suffix after the .gz?

Does the 2 * di->blocksize in dumpextent above (dumpgzs clause) already account for that? I might just be confused. ASCII diagram would help.

I see.

The algorithm used by savecore is basically:

1. read the last sector of the device to find the trailing header
2. use the recorded dumpextent to find the offset of the copy of the leading header
3. read dumplength bytes off the device, starting following the leading header and optional crypto key

When the dump isn't compressed, dumpextent and dumplength are basically the same thing. But dumpextent isn't just a rounded up dumplength.

Yeah, it seems odd to use a .gz suffix for a file that can't be gunzip'ed. I like the idea of having vmcore.0.encrypted rather than vmcore_encrypted.0, i.e., what we have today. But changing that would require modifications to decryptcore as well, so I'd rather defer that to a different change.

I added a diagram above dump_start().

I know this is a bit late, but given this feature hasn't made it to a stable/ branch yet, would it be possible to move dumpextent and compression to after panicstring, to avoid changing offsets unnecessarily? Yes, it'd involve revving the KERNELDUMPVERSION again. I guess I'll post a review for the proposal and see what you think.