]> git.ipfire.org Git - thirdparty/qemu.git/blob - migration/migration.c
projects / thirdparty / qemu.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
migrate/cpu-throttle: Add max-cpu-throttle migration parameter
[thirdparty/qemu.git] / migration / migration.c
1 /*
2 * QEMU live migration
3 *
4 * Copyright IBM, Corp. 2008
5 *
6 * Authors:
7 * Anthony Liguori <aliguori@us.ibm.com>
8 *
9 * This work is licensed under the terms of the GNU GPL, version 2. See
10 * the COPYING file in the top-level directory.
11 *
12 * Contributions after 2012-01-13 are licensed under the terms of the
13 * GNU GPL, version 2 or (at your option) any later version.
14 */
15
16 #include "qemu/osdep.h"
17 #include "qemu/cutils.h"
18 #include "qemu/error-report.h"
19 #include "migration/blocker.h"
20 #include "exec.h"
21 #include "fd.h"
22 #include "socket.h"
23 #include "rdma.h"
24 #include "ram.h"
25 #include "migration/global_state.h"
26 #include "migration/misc.h"
27 #include "migration.h"
28 #include "savevm.h"
29 #include "qemu-file-channel.h"
30 #include "qemu-file.h"
31 #include "migration/vmstate.h"
32 #include "block/block.h"
33 #include "qapi/error.h"
34 #include "qapi/qapi-commands-migration.h"
35 #include "qapi/qapi-events-migration.h"
36 #include "qapi/qmp/qerror.h"
37 #include "qapi/qmp/qnull.h"
38 #include "qemu/rcu.h"
39 #include "block.h"
40 #include "postcopy-ram.h"
41 #include "qemu/thread.h"
42 #include "trace.h"
43 #include "exec/target_page.h"
44 #include "io/channel-buffer.h"
45 #include "migration/colo.h"
46 #include "hw/boards.h"
47 #include "monitor/monitor.h"
48
49 #define MAX_THROTTLE (32 << 20) /* Migration transfer speed throttling */
50
51 /* Amount of time to allocate to each "chunk" of bandwidth-throttled
52 * data. */
53 #define BUFFER_DELAY 100
54 #define XFER_LIMIT_RATIO (1000 / BUFFER_DELAY)
55
56 /* Time in milliseconds we are allowed to stop the source,
57 * for sending the last part */
58 #define DEFAULT_MIGRATE_SET_DOWNTIME 300
59
60 /* Maximum migrate downtime set to 2000 seconds */
61 #define MAX_MIGRATE_DOWNTIME_SECONDS 2000
62 #define MAX_MIGRATE_DOWNTIME (MAX_MIGRATE_DOWNTIME_SECONDS * 1000)
63
64 /* Default compression thread count */
65 #define DEFAULT_MIGRATE_COMPRESS_THREAD_COUNT 8
66 /* Default decompression thread count, usually decompression is at
67 * least 4 times as fast as compression.*/
68 #define DEFAULT_MIGRATE_DECOMPRESS_THREAD_COUNT 2
69 /*0: means nocompress, 1: best speed, ... 9: best compress ratio */
70 #define DEFAULT_MIGRATE_COMPRESS_LEVEL 1
71 /* Define default autoconverge cpu throttle migration parameters */
72 #define DEFAULT_MIGRATE_CPU_THROTTLE_INITIAL 20
73 #define DEFAULT_MIGRATE_CPU_THROTTLE_INCREMENT 10
74 #define DEFAULT_MIGRATE_MAX_CPU_THROTTLE 99
75
76 /* Migration XBZRLE default cache size */
77 #define DEFAULT_MIGRATE_XBZRLE_CACHE_SIZE (64 * 1024 * 1024)
78
79 /* The delay time (in ms) between two COLO checkpoints
80 * Note: Please change this default value to 10000 when we support hybrid mode.
81 */
82 #define DEFAULT_MIGRATE_X_CHECKPOINT_DELAY 200
83 #define DEFAULT_MIGRATE_MULTIFD_CHANNELS 2
84 #define DEFAULT_MIGRATE_MULTIFD_PAGE_COUNT 16
85
86 /* Background transfer rate for postcopy, 0 means unlimited, note
87 * that page requests can still exceed this limit.
88 */
89 #define DEFAULT_MIGRATE_MAX_POSTCOPY_BANDWIDTH 0
90
91 static NotifierList migration_state_notifiers =
92 NOTIFIER_LIST_INITIALIZER(migration_state_notifiers);
93
94 static bool deferred_incoming;
95
96 /* Messages sent on the return path from destination to source */
97 enum mig_rp_message_type {
98 MIG_RP_MSG_INVALID = 0, /* Must be 0 */
99 MIG_RP_MSG_SHUT, /* sibling will not send any more RP messages */
100 MIG_RP_MSG_PONG, /* Response to a PING; data (seq: be32 ) */
101
102 MIG_RP_MSG_REQ_PAGES_ID, /* data (start: be64, len: be32, id: string) */
103 MIG_RP_MSG_REQ_PAGES, /* data (start: be64, len: be32) */
104 MIG_RP_MSG_RECV_BITMAP, /* send recved_bitmap back to source */
105 MIG_RP_MSG_RESUME_ACK, /* tell source that we are ready to resume */
106
107 MIG_RP_MSG_MAX
108 };
109
110 /* When we add fault tolerance, we could have several
111 migrations at once. For now we don't need to add
112 dynamic creation of migration */
113
114 static MigrationState *current_migration;
115 static MigrationIncomingState *current_incoming;
116
117 static bool migration_object_check(MigrationState *ms, Error **errp);
118 static int migration_maybe_pause(MigrationState *s,
119 int *current_active_state,
120 int new_state);
121
122 void migration_object_init(void)
123 {
124 MachineState *ms = MACHINE(qdev_get_machine());
125 Error *err = NULL;
126
127 /* This can only be called once. */
128 assert(!current_migration);
129 current_migration = MIGRATION_OBJ(object_new(TYPE_MIGRATION));
130
131 /*
132 * Init the migrate incoming object as well no matter whether
133 * we'll use it or not.
134 */
135 assert(!current_incoming);
136 current_incoming = g_new0(MigrationIncomingState, 1);
137 current_incoming->state = MIGRATION_STATUS_NONE;
138 current_incoming->postcopy_remote_fds =
139 g_array_new(FALSE, TRUE, sizeof(struct PostCopyFD));
140 qemu_mutex_init(&current_incoming->rp_mutex);
141 qemu_event_init(&current_incoming->main_thread_load_event, false);
142 qemu_sem_init(&current_incoming->postcopy_pause_sem_dst, 0);
143 qemu_sem_init(&current_incoming->postcopy_pause_sem_fault, 0);
144
145 init_dirty_bitmap_incoming_migration();
146
147 if (!migration_object_check(current_migration, &err)) {
148 error_report_err(err);
149 exit(1);
150 }
151
152 /*
153 * We cannot really do this in migration_instance_init() since at
154 * that time global properties are not yet applied, then this
155 * value will be definitely replaced by something else.
156 */
157 if (ms->enforce_config_section) {
158 current_migration->send_configuration = true;
159 }
160 }
161
162 void migration_object_finalize(void)
163 {
164 object_unref(OBJECT(current_migration));
165 }
166
167 /* For outgoing */
168 MigrationState *migrate_get_current(void)
169 {
170 /* This can only be called after the object created. */
171 assert(current_migration);
172 return current_migration;
173 }
174
175 MigrationIncomingState *migration_incoming_get_current(void)
176 {
177 assert(current_incoming);
178 return current_incoming;
179 }
180
181 void migration_incoming_state_destroy(void)
182 {
183 struct MigrationIncomingState *mis = migration_incoming_get_current();
184
185 if (mis->to_src_file) {
186 /* Tell source that we are done */
187 migrate_send_rp_shut(mis, qemu_file_get_error(mis->from_src_file) != 0);
188 qemu_fclose(mis->to_src_file);
189 mis->to_src_file = NULL;
190 }
191
192 if (mis->from_src_file) {
193 qemu_fclose(mis->from_src_file);
194 mis->from_src_file = NULL;
195 }
196 if (mis->postcopy_remote_fds) {
197 g_array_free(mis->postcopy_remote_fds, TRUE);
198 mis->postcopy_remote_fds = NULL;
199 }
200
201 qemu_event_reset(&mis->main_thread_load_event);
202 }
203
204 static void migrate_generate_event(int new_state)
205 {
206 if (migrate_use_events()) {
207 qapi_event_send_migration(new_state, &error_abort);
208 }
209 }
210
211 static bool migrate_late_block_activate(void)
212 {
213 MigrationState *s;
214
215 s = migrate_get_current();
216
217 return s->enabled_capabilities[
218 MIGRATION_CAPABILITY_LATE_BLOCK_ACTIVATE];
219 }
220
221 /*
222 * Called on -incoming with a defer: uri.
223 * The migration can be started later after any parameters have been
224 * changed.
225 */
226 static void deferred_incoming_migration(Error **errp)
227 {
228 if (deferred_incoming) {
229 error_setg(errp, "Incoming migration already deferred");
230 }
231 deferred_incoming = true;
232 }
233
234 /*
235 * Send a message on the return channel back to the source
236 * of the migration.
237 */
238 static int migrate_send_rp_message(MigrationIncomingState *mis,
239 enum mig_rp_message_type message_type,
240 uint16_t len, void *data)
241 {
242 int ret = 0;
243
244 trace_migrate_send_rp_message((int)message_type, len);
245 qemu_mutex_lock(&mis->rp_mutex);
246
247 /*
248 * It's possible that the file handle got lost due to network
249 * failures.
250 */
251 if (!mis->to_src_file) {
252 ret = -EIO;
253 goto error;
254 }
255
256 qemu_put_be16(mis->to_src_file, (unsigned int)message_type);
257 qemu_put_be16(mis->to_src_file, len);
258 qemu_put_buffer(mis->to_src_file, data, len);
259 qemu_fflush(mis->to_src_file);
260
261 /* It's possible that qemu file got error during sending */
262 ret = qemu_file_get_error(mis->to_src_file);
263
264 error:
265 qemu_mutex_unlock(&mis->rp_mutex);
266 return ret;
267 }
268
269 /* Request a range of pages from the source VM at the given
270 * start address.
271 * rbname: Name of the RAMBlock to request the page in, if NULL it's the same
272 * as the last request (a name must have been given previously)
273 * Start: Address offset within the RB
274 * Len: Length in bytes required - must be a multiple of pagesize
275 */
276 int migrate_send_rp_req_pages(MigrationIncomingState *mis, const char *rbname,
277 ram_addr_t start, size_t len)
278 {
279 uint8_t bufc[12 + 1 + 255]; /* start (8), len (4), rbname up to 256 */
280 size_t msglen = 12; /* start + len */
281 enum mig_rp_message_type msg_type;
282
283 *(uint64_t *)bufc = cpu_to_be64((uint64_t)start);
284 *(uint32_t *)(bufc + 8) = cpu_to_be32((uint32_t)len);
285
286 if (rbname) {
287 int rbname_len = strlen(rbname);
288 assert(rbname_len < 256);
289
290 bufc[msglen++] = rbname_len;
291 memcpy(bufc + msglen, rbname, rbname_len);
292 msglen += rbname_len;
293 msg_type = MIG_RP_MSG_REQ_PAGES_ID;
294 } else {
295 msg_type = MIG_RP_MSG_REQ_PAGES;
296 }
297
298 return migrate_send_rp_message(mis, msg_type, msglen, bufc);
299 }
300
301 void qemu_start_incoming_migration(const char *uri, Error **errp)
302 {
303 const char *p;
304
305 qapi_event_send_migration(MIGRATION_STATUS_SETUP, &error_abort);
306 if (!strcmp(uri, "defer")) {
307 deferred_incoming_migration(errp);
308 } else if (strstart(uri, "tcp:", &p)) {
309 tcp_start_incoming_migration(p, errp);
310 #ifdef CONFIG_RDMA
311 } else if (strstart(uri, "rdma:", &p)) {
312 rdma_start_incoming_migration(p, errp);
313 #endif
314 } else if (strstart(uri, "exec:", &p)) {
315 exec_start_incoming_migration(p, errp);
316 } else if (strstart(uri, "unix:", &p)) {
317 unix_start_incoming_migration(p, errp);
318 } else if (strstart(uri, "fd:", &p)) {
319 fd_start_incoming_migration(p, errp);
320 } else {
321 error_setg(errp, "unknown migration protocol: %s", uri);
322 }
323 }
324
325 static void process_incoming_migration_bh(void *opaque)
326 {
327 Error *local_err = NULL;
328 MigrationIncomingState *mis = opaque;
329
330 /* If capability late_block_activate is set:
331 * Only fire up the block code now if we're going to restart the
332 * VM, else 'cont' will do it.
333 * This causes file locking to happen; so we don't want it to happen
334 * unless we really are starting the VM.
335 */
336 if (!migrate_late_block_activate() ||
337 (autostart && (!global_state_received() ||
338 global_state_get_runstate() == RUN_STATE_RUNNING))) {
339 /* Make sure all file formats flush their mutable metadata.
340 * If we get an error here, just don't restart the VM yet. */
341 bdrv_invalidate_cache_all(&local_err);
342 if (local_err) {
343 error_report_err(local_err);
344 local_err = NULL;
345 autostart = false;
346 }
347 }
348
349 /*
350 * This must happen after all error conditions are dealt with and
351 * we're sure the VM is going to be running on this host.
352 */
353 qemu_announce_self();
354
355 if (multifd_load_cleanup(&local_err) != 0) {
356 error_report_err(local_err);
357 autostart = false;
358 }
359 /* If global state section was not received or we are in running
360 state, we need to obey autostart. Any other state is set with
361 runstate_set. */
362
363 dirty_bitmap_mig_before_vm_start();
364
365 if (!global_state_received() ||
366 global_state_get_runstate() == RUN_STATE_RUNNING) {
367 if (autostart) {
368 vm_start();
369 } else {
370 runstate_set(RUN_STATE_PAUSED);
371 }
372 } else {
373 runstate_set(global_state_get_runstate());
374 }
375 /*
376 * This must happen after any state changes since as soon as an external
377 * observer sees this event they might start to prod at the VM assuming
378 * it's ready to use.
379 */
380 migrate_set_state(&mis->state, MIGRATION_STATUS_ACTIVE,
381 MIGRATION_STATUS_COMPLETED);
382 qemu_bh_delete(mis->bh);
383 migration_incoming_state_destroy();
384 }
385
386 static void process_incoming_migration_co(void *opaque)
387 {
388 MigrationIncomingState *mis = migration_incoming_get_current();
389 PostcopyState ps;
390 int ret;
391
392 assert(mis->from_src_file);
393 mis->largest_page_size = qemu_ram_pagesize_largest();
394 postcopy_state_set(POSTCOPY_INCOMING_NONE);
395 migrate_set_state(&mis->state, MIGRATION_STATUS_NONE,
396 MIGRATION_STATUS_ACTIVE);
397 ret = qemu_loadvm_state(mis->from_src_file);
398
399 ps = postcopy_state_get();
400 trace_process_incoming_migration_co_end(ret, ps);
401 if (ps != POSTCOPY_INCOMING_NONE) {
402 if (ps == POSTCOPY_INCOMING_ADVISE) {
403 /*
404 * Where a migration had postcopy enabled (and thus went to advise)
405 * but managed to complete within the precopy period, we can use
406 * the normal exit.
407 */
408 postcopy_ram_incoming_cleanup(mis);
409 } else if (ret >= 0) {
410 /*
411 * Postcopy was started, cleanup should happen at the end of the
412 * postcopy thread.
413 */
414 trace_process_incoming_migration_co_postcopy_end_main();
415 return;
416 }
417 /* Else if something went wrong then just fall out of the normal exit */
418 }
419
420 /* we get COLO info, and know if we are in COLO mode */
421 if (!ret && migration_incoming_enable_colo()) {
422 mis->migration_incoming_co = qemu_coroutine_self();
423 qemu_thread_create(&mis->colo_incoming_thread, "COLO incoming",
424 colo_process_incoming_thread, mis, QEMU_THREAD_JOINABLE);
425 mis->have_colo_incoming_thread = true;
426 qemu_coroutine_yield();
427
428 /* Wait checkpoint incoming thread exit before free resource */
429 qemu_thread_join(&mis->colo_incoming_thread);
430 }
431
432 if (ret < 0) {
433 Error *local_err = NULL;
434
435 migrate_set_state(&mis->state, MIGRATION_STATUS_ACTIVE,
436 MIGRATION_STATUS_FAILED);
437 error_report("load of migration failed: %s", strerror(-ret));
438 qemu_fclose(mis->from_src_file);
439 if (multifd_load_cleanup(&local_err) != 0) {
440 error_report_err(local_err);
441 }
442 exit(EXIT_FAILURE);
443 }
444 mis->bh = qemu_bh_new(process_incoming_migration_bh, mis);
445 qemu_bh_schedule(mis->bh);
446 }
447
448 static void migration_incoming_setup(QEMUFile *f)
449 {
450 MigrationIncomingState *mis = migration_incoming_get_current();
451
452 if (multifd_load_setup() != 0) {
453 /* We haven't been able to create multifd threads
454 nothing better to do */
455 exit(EXIT_FAILURE);
456 }
457
458 if (!mis->from_src_file) {
459 mis->from_src_file = f;
460 }
461 qemu_file_set_blocking(f, false);
462 }
463
464 void migration_incoming_process(void)
465 {
466 Coroutine *co = qemu_coroutine_create(process_incoming_migration_co, NULL);
467 qemu_coroutine_enter(co);
468 }
469
470 /* Returns true if recovered from a paused migration, otherwise false */
471 static bool postcopy_try_recover(QEMUFile *f)
472 {
473 MigrationIncomingState *mis = migration_incoming_get_current();
474
475 if (mis->state == MIGRATION_STATUS_POSTCOPY_PAUSED) {
476 /* Resumed from a paused postcopy migration */
477
478 mis->from_src_file = f;
479 /* Postcopy has standalone thread to do vm load */
480 qemu_file_set_blocking(f, true);
481
482 /* Re-configure the return path */
483 mis->to_src_file = qemu_file_get_return_path(f);
484
485 migrate_set_state(&mis->state, MIGRATION_STATUS_POSTCOPY_PAUSED,
486 MIGRATION_STATUS_POSTCOPY_RECOVER);
487
488 /*
489 * Here, we only wake up the main loading thread (while the
490 * fault thread will still be waiting), so that we can receive
491 * commands from source now, and answer it if needed. The
492 * fault thread will be woken up afterwards until we are sure
493 * that source is ready to reply to page requests.
494 */
495 qemu_sem_post(&mis->postcopy_pause_sem_dst);
496 return true;
497 }
498
499 return false;
500 }
501
502 void migration_fd_process_incoming(QEMUFile *f)
503 {
504 if (postcopy_try_recover(f)) {
505 return;
506 }
507
508 migration_incoming_setup(f);
509 migration_incoming_process();
510 }
511
512 void migration_ioc_process_incoming(QIOChannel *ioc)
513 {
514 MigrationIncomingState *mis = migration_incoming_get_current();
515 bool start_migration;
516
517 if (!mis->from_src_file) {
518 /* The first connection (multifd may have multiple) */
519 QEMUFile *f = qemu_fopen_channel_input(ioc);
520
521 /* If it's a recovery, we're done */
522 if (postcopy_try_recover(f)) {
523 return;
524 }
525
526 migration_incoming_setup(f);
527
528 /*
529 * Common migration only needs one channel, so we can start
530 * right now. Multifd needs more than one channel, we wait.
531 */
532 start_migration = !migrate_use_multifd();
533 } else {
534 /* Multiple connections */
535 assert(migrate_use_multifd());
536 start_migration = multifd_recv_new_channel(ioc);
537 }
538
539 if (start_migration) {
540 migration_incoming_process();
541 }
542 }
543
544 /**
545 * @migration_has_all_channels: We have received all channels that we need
546 *
547 * Returns true when we have got connections to all the channels that
548 * we need for migration.
549 */
550 bool migration_has_all_channels(void)
551 {
552 MigrationIncomingState *mis = migration_incoming_get_current();
553 bool all_channels;
554
555 all_channels = multifd_recv_all_channels_created();
556
557 return all_channels && mis->from_src_file != NULL;
558 }
559
560 /*
561 * Send a 'SHUT' message on the return channel with the given value
562 * to indicate that we've finished with the RP. Non-0 value indicates
563 * error.
564 */
565 void migrate_send_rp_shut(MigrationIncomingState *mis,
566 uint32_t value)
567 {
568 uint32_t buf;
569
570 buf = cpu_to_be32(value);
571 migrate_send_rp_message(mis, MIG_RP_MSG_SHUT, sizeof(buf), &buf);
572 }
573
574 /*
575 * Send a 'PONG' message on the return channel with the given value
576 * (normally in response to a 'PING')
577 */
578 void migrate_send_rp_pong(MigrationIncomingState *mis,
579 uint32_t value)
580 {
581 uint32_t buf;
582
583 buf = cpu_to_be32(value);
584 migrate_send_rp_message(mis, MIG_RP_MSG_PONG, sizeof(buf), &buf);
585 }
586
587 void migrate_send_rp_recv_bitmap(MigrationIncomingState *mis,
588 char *block_name)
589 {
590 char buf[512];
591 int len;
592 int64_t res;
593
594 /*
595 * First, we send the header part. It contains only the len of
596 * idstr, and the idstr itself.
597 */
598 len = strlen(block_name);
599 buf[0] = len;
600 memcpy(buf + 1, block_name, len);
601
602 if (mis->state != MIGRATION_STATUS_POSTCOPY_RECOVER) {
603 error_report("%s: MSG_RP_RECV_BITMAP only used for recovery",
604 __func__);
605 return;
606 }
607
608 migrate_send_rp_message(mis, MIG_RP_MSG_RECV_BITMAP, len + 1, buf);
609
610 /*
611 * Next, we dump the received bitmap to the stream.
612 *
613 * TODO: currently we are safe since we are the only one that is
614 * using the to_src_file handle (fault thread is still paused),
615 * and it's ok even not taking the mutex. However the best way is
616 * to take the lock before sending the message header, and release
617 * the lock after sending the bitmap.
618 */
619 qemu_mutex_lock(&mis->rp_mutex);
620 res = ramblock_recv_bitmap_send(mis->to_src_file, block_name);
621 qemu_mutex_unlock(&mis->rp_mutex);
622
623 trace_migrate_send_rp_recv_bitmap(block_name, res);
624 }
625
626 void migrate_send_rp_resume_ack(MigrationIncomingState *mis, uint32_t value)
627 {
628 uint32_t buf;
629
630 buf = cpu_to_be32(value);
631 migrate_send_rp_message(mis, MIG_RP_MSG_RESUME_ACK, sizeof(buf), &buf);
632 }
633
634 MigrationCapabilityStatusList *qmp_query_migrate_capabilities(Error **errp)
635 {
636 MigrationCapabilityStatusList *head = NULL;
637 MigrationCapabilityStatusList *caps;
638 MigrationState *s = migrate_get_current();
639 int i;
640
641 caps = NULL; /* silence compiler warning */
642 for (i = 0; i < MIGRATION_CAPABILITY__MAX; i++) {
643 #ifndef CONFIG_LIVE_BLOCK_MIGRATION
644 if (i == MIGRATION_CAPABILITY_BLOCK) {
645 continue;
646 }
647 #endif
648 if (head == NULL) {
649 head = g_malloc0(sizeof(*caps));
650 caps = head;
651 } else {
652 caps->next = g_malloc0(sizeof(*caps));
653 caps = caps->next;
654 }
655 caps->value =
656 g_malloc(sizeof(*caps->value));
657 caps->value->capability = i;
658 caps->value->state = s->enabled_capabilities[i];
659 }
660
661 return head;
662 }
663
664 MigrationParameters *qmp_query_migrate_parameters(Error **errp)
665 {
666 MigrationParameters *params;
667 MigrationState *s = migrate_get_current();
668
669 /* TODO use QAPI_CLONE() instead of duplicating it inline */
670 params = g_malloc0(sizeof(*params));
671 params->has_compress_level = true;
672 params->compress_level = s->parameters.compress_level;
673 params->has_compress_threads = true;
674 params->compress_threads = s->parameters.compress_threads;
675 params->has_decompress_threads = true;
676 params->decompress_threads = s->parameters.decompress_threads;
677 params->has_cpu_throttle_initial = true;
678 params->cpu_throttle_initial = s->parameters.cpu_throttle_initial;
679 params->has_cpu_throttle_increment = true;
680 params->cpu_throttle_increment = s->parameters.cpu_throttle_increment;
681 params->has_tls_creds = true;
682 params->tls_creds = g_strdup(s->parameters.tls_creds);
683 params->has_tls_hostname = true;
684 params->tls_hostname = g_strdup(s->parameters.tls_hostname);
685 params->has_max_bandwidth = true;
686 params->max_bandwidth = s->parameters.max_bandwidth;
687 params->has_downtime_limit = true;
688 params->downtime_limit = s->parameters.downtime_limit;
689 params->has_x_checkpoint_delay = true;
690 params->x_checkpoint_delay = s->parameters.x_checkpoint_delay;
691 params->has_block_incremental = true;
692 params->block_incremental = s->parameters.block_incremental;
693 params->has_x_multifd_channels = true;
694 params->x_multifd_channels = s->parameters.x_multifd_channels;
695 params->has_x_multifd_page_count = true;
696 params->x_multifd_page_count = s->parameters.x_multifd_page_count;
697 params->has_xbzrle_cache_size = true;
698 params->xbzrle_cache_size = s->parameters.xbzrle_cache_size;
699 params->has_max_postcopy_bandwidth = true;
700 params->max_postcopy_bandwidth = s->parameters.max_postcopy_bandwidth;
701 params->has_max_cpu_throttle = true;
702 params->max_cpu_throttle = s->parameters.max_cpu_throttle;
703
704 return params;
705 }
706
707 /*
708 * Return true if we're already in the middle of a migration
709 * (i.e. any of the active or setup states)
710 */
711 static bool migration_is_setup_or_active(int state)
712 {
713 switch (state) {
714 case MIGRATION_STATUS_ACTIVE:
715 case MIGRATION_STATUS_POSTCOPY_ACTIVE:
716 case MIGRATION_STATUS_POSTCOPY_PAUSED:
717 case MIGRATION_STATUS_POSTCOPY_RECOVER:
718 case MIGRATION_STATUS_SETUP:
719 case MIGRATION_STATUS_PRE_SWITCHOVER:
720 case MIGRATION_STATUS_DEVICE:
721 return true;
722
723 default:
724 return false;
725
726 }
727 }
728
729 static void populate_ram_info(MigrationInfo *info, MigrationState *s)
730 {
731 info->has_ram = true;
732 info->ram = g_malloc0(sizeof(*info->ram));
733 info->ram->transferred = ram_counters.transferred;
734 info->ram->total = ram_bytes_total();
735 info->ram->duplicate = ram_counters.duplicate;
736 /* legacy value. It is not used anymore */
737 info->ram->skipped = 0;
738 info->ram->normal = ram_counters.normal;
739 info->ram->normal_bytes = ram_counters.normal *
740 qemu_target_page_size();
741 info->ram->mbps = s->mbps;
742 info->ram->dirty_sync_count = ram_counters.dirty_sync_count;
743 info->ram->postcopy_requests = ram_counters.postcopy_requests;
744 info->ram->page_size = qemu_target_page_size();
745 info->ram->multifd_bytes = ram_counters.multifd_bytes;
746
747 if (migrate_use_xbzrle()) {
748 info->has_xbzrle_cache = true;
749 info->xbzrle_cache = g_malloc0(sizeof(*info->xbzrle_cache));
750 info->xbzrle_cache->cache_size = migrate_xbzrle_cache_size();
751 info->xbzrle_cache->bytes = xbzrle_counters.bytes;
752 info->xbzrle_cache->pages = xbzrle_counters.pages;
753 info->xbzrle_cache->cache_miss = xbzrle_counters.cache_miss;
754 info->xbzrle_cache->cache_miss_rate = xbzrle_counters.cache_miss_rate;
755 info->xbzrle_cache->overflow = xbzrle_counters.overflow;
756 }
757
758 if (cpu_throttle_active()) {
759 info->has_cpu_throttle_percentage = true;
760 info->cpu_throttle_percentage = cpu_throttle_get_percentage();
761 }
762
763 if (s->state != MIGRATION_STATUS_COMPLETED) {
764 info->ram->remaining = ram_bytes_remaining();
765 info->ram->dirty_pages_rate = ram_counters.dirty_pages_rate;
766 }
767 }
768
769 static void populate_disk_info(MigrationInfo *info)
770 {
771 if (blk_mig_active()) {
772 info->has_disk = true;
773 info->disk = g_malloc0(sizeof(*info->disk));
774 info->disk->transferred = blk_mig_bytes_transferred();
775 info->disk->remaining = blk_mig_bytes_remaining();
776 info->disk->total = blk_mig_bytes_total();
777 }
778 }
779
780 static void fill_source_migration_info(MigrationInfo *info)
781 {
782 MigrationState *s = migrate_get_current();
783
784 switch (s->state) {
785 case MIGRATION_STATUS_NONE:
786 /* no migration has happened ever */
787 /* do not overwrite destination migration status */
788 return;
789 break;
790 case MIGRATION_STATUS_SETUP:
791 info->has_status = true;
792 info->has_total_time = false;
793 break;
794 case MIGRATION_STATUS_ACTIVE:
795 case MIGRATION_STATUS_CANCELLING:
796 case MIGRATION_STATUS_POSTCOPY_ACTIVE:
797 case MIGRATION_STATUS_PRE_SWITCHOVER:
798 case MIGRATION_STATUS_DEVICE:
799 case MIGRATION_STATUS_POSTCOPY_PAUSED:
800 case MIGRATION_STATUS_POSTCOPY_RECOVER:
801 /* TODO add some postcopy stats */
802 info->has_status = true;
803 info->has_total_time = true;
804 info->total_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME)
805 - s->start_time;
806 info->has_expected_downtime = true;
807 info->expected_downtime = s->expected_downtime;
808 info->has_setup_time = true;
809 info->setup_time = s->setup_time;
810
811 populate_ram_info(info, s);
812 populate_disk_info(info);
813 break;
814 case MIGRATION_STATUS_COLO:
815 info->has_status = true;
816 /* TODO: display COLO specific information (checkpoint info etc.) */
817 break;
818 case MIGRATION_STATUS_COMPLETED:
819 info->has_status = true;
820 info->has_total_time = true;
821 info->total_time = s->total_time;
822 info->has_downtime = true;
823 info->downtime = s->downtime;
824 info->has_setup_time = true;
825 info->setup_time = s->setup_time;
826
827 populate_ram_info(info, s);
828 break;
829 case MIGRATION_STATUS_FAILED:
830 info->has_status = true;
831 if (s->error) {
832 info->has_error_desc = true;
833 info->error_desc = g_strdup(error_get_pretty(s->error));
834 }
835 break;
836 case MIGRATION_STATUS_CANCELLED:
837 info->has_status = true;
838 break;
839 }
840 info->status = s->state;
841 }
842
843 /**
844 * @migration_caps_check - check capability validity
845 *
846 * @cap_list: old capability list, array of bool
847 * @params: new capabilities to be applied soon
848 * @errp: set *errp if the check failed, with reason
849 *
850 * Returns true if check passed, otherwise false.
851 */
852 static bool migrate_caps_check(bool *cap_list,
853 MigrationCapabilityStatusList *params,
854 Error **errp)
855 {
856 MigrationCapabilityStatusList *cap;
857 bool old_postcopy_cap;
858 MigrationIncomingState *mis = migration_incoming_get_current();
859
860 old_postcopy_cap = cap_list[MIGRATION_CAPABILITY_POSTCOPY_RAM];
861
862 for (cap = params; cap; cap = cap->next) {
863 cap_list[cap->value->capability] = cap->value->state;
864 }
865
866 #ifndef CONFIG_LIVE_BLOCK_MIGRATION
867 if (cap_list[MIGRATION_CAPABILITY_BLOCK]) {
868 error_setg(errp, "QEMU compiled without old-style (blk/-b, inc/-i) "
869 "block migration");
870 error_append_hint(errp, "Use drive_mirror+NBD instead.\n");
871 return false;
872 }
873 #endif
874
875 if (cap_list[MIGRATION_CAPABILITY_POSTCOPY_RAM]) {
876 if (cap_list[MIGRATION_CAPABILITY_COMPRESS]) {
877 /* The decompression threads asynchronously write into RAM
878 * rather than use the atomic copies needed to avoid
879 * userfaulting. It should be possible to fix the decompression
880 * threads for compatibility in future.
881 */
882 error_setg(errp, "Postcopy is not currently compatible "
883 "with compression");
884 return false;
885 }
886
887 /* This check is reasonably expensive, so only when it's being
888 * set the first time, also it's only the destination that needs
889 * special support.
890 */
891 if (!old_postcopy_cap && runstate_check(RUN_STATE_INMIGRATE) &&
892 !postcopy_ram_supported_by_host(mis)) {
893 /* postcopy_ram_supported_by_host will have emitted a more
894 * detailed message
895 */
896 error_setg(errp, "Postcopy is not supported");
897 return false;
898 }
899 }
900
901 return true;
902 }
903
904 static void fill_destination_migration_info(MigrationInfo *info)
905 {
906 MigrationIncomingState *mis = migration_incoming_get_current();
907
908 switch (mis->state) {
909 case MIGRATION_STATUS_NONE:
910 return;
911 break;
912 case MIGRATION_STATUS_SETUP:
913 case MIGRATION_STATUS_CANCELLING:
914 case MIGRATION_STATUS_CANCELLED:
915 case MIGRATION_STATUS_ACTIVE:
916 case MIGRATION_STATUS_POSTCOPY_ACTIVE:
917 case MIGRATION_STATUS_POSTCOPY_PAUSED:
918 case MIGRATION_STATUS_POSTCOPY_RECOVER:
919 case MIGRATION_STATUS_FAILED:
920 case MIGRATION_STATUS_COLO:
921 info->has_status = true;
922 break;
923 case MIGRATION_STATUS_COMPLETED:
924 info->has_status = true;
925 fill_destination_postcopy_migration_info(info);
926 break;
927 }
928 info->status = mis->state;
929 }
930
931 MigrationInfo *qmp_query_migrate(Error **errp)
932 {
933 MigrationInfo *info = g_malloc0(sizeof(*info));
934
935 fill_destination_migration_info(info);
936 fill_source_migration_info(info);
937
938 return info;
939 }
940
941 void qmp_migrate_set_capabilities(MigrationCapabilityStatusList *params,
942 Error **errp)
943 {
944 MigrationState *s = migrate_get_current();
945 MigrationCapabilityStatusList *cap;
946 bool cap_list[MIGRATION_CAPABILITY__MAX];
947
948 if (migration_is_setup_or_active(s->state)) {
949 error_setg(errp, QERR_MIGRATION_ACTIVE);
950 return;
951 }
952
953 memcpy(cap_list, s->enabled_capabilities, sizeof(cap_list));
954 if (!migrate_caps_check(cap_list, params, errp)) {
955 return;
956 }
957
958 for (cap = params; cap; cap = cap->next) {
959 s->enabled_capabilities[cap->value->capability] = cap->value->state;
960 }
961 }
962
963 /*
964 * Check whether the parameters are valid. Error will be put into errp
965 * (if provided). Return true if valid, otherwise false.
966 */
967 static bool migrate_params_check(MigrationParameters *params, Error **errp)
968 {
969 if (params->has_compress_level &&
970 (params->compress_level > 9)) {
971 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "compress_level",
972 "is invalid, it should be in the range of 0 to 9");
973 return false;
974 }
975
976 if (params->has_compress_threads && (params->compress_threads < 1)) {
977 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
978 "compress_threads",
979 "is invalid, it should be in the range of 1 to 255");
980 return false;
981 }
982
983 if (params->has_decompress_threads && (params->decompress_threads < 1)) {
984 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
985 "decompress_threads",
986 "is invalid, it should be in the range of 1 to 255");
987 return false;
988 }
989
990 if (params->has_cpu_throttle_initial &&
991 (params->cpu_throttle_initial < 1 ||
992 params->cpu_throttle_initial > 99)) {
993 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
994 "cpu_throttle_initial",
995 "an integer in the range of 1 to 99");
996 return false;
997 }
998
999 if (params->has_cpu_throttle_increment &&
1000 (params->cpu_throttle_increment < 1 ||
1001 params->cpu_throttle_increment > 99)) {
1002 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
1003 "cpu_throttle_increment",
1004 "an integer in the range of 1 to 99");
1005 return false;
1006 }
1007
1008 if (params->has_max_bandwidth && (params->max_bandwidth > SIZE_MAX)) {
1009 error_setg(errp, "Parameter 'max_bandwidth' expects an integer in the"
1010 " range of 0 to %zu bytes/second", SIZE_MAX);
1011 return false;
1012 }
1013
1014 if (params->has_downtime_limit &&
1015 (params->downtime_limit > MAX_MIGRATE_DOWNTIME)) {
1016 error_setg(errp, "Parameter 'downtime_limit' expects an integer in "
1017 "the range of 0 to %d milliseconds",
1018 MAX_MIGRATE_DOWNTIME);
1019 return false;
1020 }
1021
1022 /* x_checkpoint_delay is now always positive */
1023
1024 if (params->has_x_multifd_channels && (params->x_multifd_channels < 1)) {
1025 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
1026 "multifd_channels",
1027 "is invalid, it should be in the range of 1 to 255");
1028 return false;
1029 }
1030 if (params->has_x_multifd_page_count &&
1031 (params->x_multifd_page_count < 1 ||
1032 params->x_multifd_page_count > 10000)) {
1033 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
1034 "multifd_page_count",
1035 "is invalid, it should be in the range of 1 to 10000");
1036 return false;
1037 }
1038
1039 if (params->has_xbzrle_cache_size &&
1040 (params->xbzrle_cache_size < qemu_target_page_size() ||
1041 !is_power_of_2(params->xbzrle_cache_size))) {
1042 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
1043 "xbzrle_cache_size",
1044 "is invalid, it should be bigger than target page size"
1045 " and a power of two");
1046 return false;
1047 }
1048
1049 if (params->has_max_cpu_throttle &&
1050 (params->max_cpu_throttle < params->cpu_throttle_initial ||
1051 params->max_cpu_throttle > 99)) {
1052 error_setg(errp, QERR_INVALID_PARAMETER_VALUE,
1053 "max_cpu_throttle",
1054 "an integer in the range of cpu_throttle_initial to 99");
1055 return false;
1056 }
1057
1058 return true;
1059 }
1060
1061 static void migrate_params_test_apply(MigrateSetParameters *params,
1062 MigrationParameters *dest)
1063 {
1064 *dest = migrate_get_current()->parameters;
1065
1066 /* TODO use QAPI_CLONE() instead of duplicating it inline */
1067
1068 if (params->has_compress_level) {
1069 dest->compress_level = params->compress_level;
1070 }
1071
1072 if (params->has_compress_threads) {
1073 dest->compress_threads = params->compress_threads;
1074 }
1075
1076 if (params->has_decompress_threads) {
1077 dest->decompress_threads = params->decompress_threads;
1078 }
1079
1080 if (params->has_cpu_throttle_initial) {
1081 dest->cpu_throttle_initial = params->cpu_throttle_initial;
1082 }
1083
1084 if (params->has_cpu_throttle_increment) {
1085 dest->cpu_throttle_increment = params->cpu_throttle_increment;
1086 }
1087
1088 if (params->has_tls_creds) {
1089 assert(params->tls_creds->type == QTYPE_QSTRING);
1090 dest->tls_creds = g_strdup(params->tls_creds->u.s);
1091 }
1092
1093 if (params->has_tls_hostname) {
1094 assert(params->tls_hostname->type == QTYPE_QSTRING);
1095 dest->tls_hostname = g_strdup(params->tls_hostname->u.s);
1096 }
1097
1098 if (params->has_max_bandwidth) {
1099 dest->max_bandwidth = params->max_bandwidth;
1100 }
1101
1102 if (params->has_downtime_limit) {
1103 dest->downtime_limit = params->downtime_limit;
1104 }
1105
1106 if (params->has_x_checkpoint_delay) {
1107 dest->x_checkpoint_delay = params->x_checkpoint_delay;
1108 }
1109
1110 if (params->has_block_incremental) {
1111 dest->block_incremental = params->block_incremental;
1112 }
1113 if (params->has_x_multifd_channels) {
1114 dest->x_multifd_channels = params->x_multifd_channels;
1115 }
1116 if (params->has_x_multifd_page_count) {
1117 dest->x_multifd_page_count = params->x_multifd_page_count;
1118 }
1119 if (params->has_xbzrle_cache_size) {
1120 dest->xbzrle_cache_size = params->xbzrle_cache_size;
1121 }
1122 if (params->has_max_postcopy_bandwidth) {
1123 dest->max_postcopy_bandwidth = params->max_postcopy_bandwidth;
1124 }
1125 if (params->has_max_cpu_throttle) {
1126 dest->max_cpu_throttle = params->max_cpu_throttle;
1127 }
1128 }
1129
1130 static void migrate_params_apply(MigrateSetParameters *params, Error **errp)
1131 {
1132 MigrationState *s = migrate_get_current();
1133
1134 /* TODO use QAPI_CLONE() instead of duplicating it inline */
1135
1136 if (params->has_compress_level) {
1137 s->parameters.compress_level = params->compress_level;
1138 }
1139
1140 if (params->has_compress_threads) {
1141 s->parameters.compress_threads = params->compress_threads;
1142 }
1143
1144 if (params->has_decompress_threads) {
1145 s->parameters.decompress_threads = params->decompress_threads;
1146 }
1147
1148 if (params->has_cpu_throttle_initial) {
1149 s->parameters.cpu_throttle_initial = params->cpu_throttle_initial;
1150 }
1151
1152 if (params->has_cpu_throttle_increment) {
1153 s->parameters.cpu_throttle_increment = params->cpu_throttle_increment;
1154 }
1155
1156 if (params->has_tls_creds) {
1157 g_free(s->parameters.tls_creds);
1158 assert(params->tls_creds->type == QTYPE_QSTRING);
1159 s->parameters.tls_creds = g_strdup(params->tls_creds->u.s);
1160 }
1161
1162 if (params->has_tls_hostname) {
1163 g_free(s->parameters.tls_hostname);
1164 assert(params->tls_hostname->type == QTYPE_QSTRING);
1165 s->parameters.tls_hostname = g_strdup(params->tls_hostname->u.s);
1166 }
1167
1168 if (params->has_max_bandwidth) {
1169 s->parameters.max_bandwidth = params->max_bandwidth;
1170 if (s->to_dst_file) {
1171 qemu_file_set_rate_limit(s->to_dst_file,
1172 s->parameters.max_bandwidth / XFER_LIMIT_RATIO);
1173 }
1174 }
1175
1176 if (params->has_downtime_limit) {
1177 s->parameters.downtime_limit = params->downtime_limit;
1178 }
1179
1180 if (params->has_x_checkpoint_delay) {
1181 s->parameters.x_checkpoint_delay = params->x_checkpoint_delay;
1182 if (migration_in_colo_state()) {
1183 colo_checkpoint_notify(s);
1184 }
1185 }
1186
1187 if (params->has_block_incremental) {
1188 s->parameters.block_incremental = params->block_incremental;
1189 }
1190 if (params->has_x_multifd_channels) {
1191 s->parameters.x_multifd_channels = params->x_multifd_channels;
1192 }
1193 if (params->has_x_multifd_page_count) {
1194 s->parameters.x_multifd_page_count = params->x_multifd_page_count;
1195 }
1196 if (params->has_xbzrle_cache_size) {
1197 s->parameters.xbzrle_cache_size = params->xbzrle_cache_size;
1198 xbzrle_cache_resize(params->xbzrle_cache_size, errp);
1199 }
1200 if (params->has_max_postcopy_bandwidth) {
1201 s->parameters.max_postcopy_bandwidth = params->max_postcopy_bandwidth;
1202 }
1203 if (params->has_max_cpu_throttle) {
1204 s->parameters.max_cpu_throttle = params->max_cpu_throttle;
1205 }
1206 }
1207
1208 void qmp_migrate_set_parameters(MigrateSetParameters *params, Error **errp)
1209 {
1210 MigrationParameters tmp;
1211
1212 /* TODO Rewrite "" to null instead */
1213 if (params->has_tls_creds
1214 && params->tls_creds->type == QTYPE_QNULL) {
1215 qobject_unref(params->tls_creds->u.n);
1216 params->tls_creds->type = QTYPE_QSTRING;
1217 params->tls_creds->u.s = strdup("");
1218 }
1219 /* TODO Rewrite "" to null instead */
1220 if (params->has_tls_hostname
1221 && params->tls_hostname->type == QTYPE_QNULL) {
1222 qobject_unref(params->tls_hostname->u.n);
1223 params->tls_hostname->type = QTYPE_QSTRING;
1224 params->tls_hostname->u.s = strdup("");
1225 }
1226
1227 migrate_params_test_apply(params, &tmp);
1228
1229 if (!migrate_params_check(&tmp, errp)) {
1230 /* Invalid parameter */
1231 return;
1232 }
1233
1234 migrate_params_apply(params, errp);
1235 }
1236
1237
1238 void qmp_migrate_start_postcopy(Error **errp)
1239 {
1240 MigrationState *s = migrate_get_current();
1241
1242 if (!migrate_postcopy()) {
1243 error_setg(errp, "Enable postcopy with migrate_set_capability before"
1244 " the start of migration");
1245 return;
1246 }
1247
1248 if (s->state == MIGRATION_STATUS_NONE) {
1249 error_setg(errp, "Postcopy must be started after migration has been"
1250 " started");
1251 return;
1252 }
1253 /*
1254 * we don't error if migration has finished since that would be racy
1255 * with issuing this command.
1256 */
1257 atomic_set(&s->start_postcopy, true);
1258 }
1259
1260 /* shared migration helpers */
1261
1262 void migrate_set_state(int *state, int old_state, int new_state)
1263 {
1264 assert(new_state < MIGRATION_STATUS__MAX);
1265 if (atomic_cmpxchg(state, old_state, new_state) == old_state) {
1266 trace_migrate_set_state(MigrationStatus_str(new_state));
1267 migrate_generate_event(new_state);
1268 }
1269 }
1270
1271 static MigrationCapabilityStatusList *migrate_cap_add(
1272 MigrationCapabilityStatusList *list,
1273 MigrationCapability index,
1274 bool state)
1275 {
1276 MigrationCapabilityStatusList *cap;
1277
1278 cap = g_new0(MigrationCapabilityStatusList, 1);
1279 cap->value = g_new0(MigrationCapabilityStatus, 1);
1280 cap->value->capability = index;
1281 cap->value->state = state;
1282 cap->next = list;
1283
1284 return cap;
1285 }
1286
1287 void migrate_set_block_enabled(bool value, Error **errp)
1288 {
1289 MigrationCapabilityStatusList *cap;
1290
1291 cap = migrate_cap_add(NULL, MIGRATION_CAPABILITY_BLOCK, value);
1292 qmp_migrate_set_capabilities(cap, errp);
1293 qapi_free_MigrationCapabilityStatusList(cap);
1294 }
1295
1296 static void migrate_set_block_incremental(MigrationState *s, bool value)
1297 {
1298 s->parameters.block_incremental = value;
1299 }
1300
1301 static void block_cleanup_parameters(MigrationState *s)
1302 {
1303 if (s->must_remove_block_options) {
1304 /* setting to false can never fail */
1305 migrate_set_block_enabled(false, &error_abort);
1306 migrate_set_block_incremental(s, false);
1307 s->must_remove_block_options = false;
1308 }
1309 }
1310
1311 static void migrate_fd_cleanup(void *opaque)
1312 {
1313 MigrationState *s = opaque;
1314
1315 qemu_bh_delete(s->cleanup_bh);
1316 s->cleanup_bh = NULL;
1317
1318 qemu_savevm_state_cleanup();
1319
1320 if (s->to_dst_file) {
1321 Error *local_err = NULL;
1322 QEMUFile *tmp;
1323
1324 trace_migrate_fd_cleanup();
1325 qemu_mutex_unlock_iothread();
1326 if (s->migration_thread_running) {
1327 qemu_thread_join(&s->thread);
1328 s->migration_thread_running = false;
1329 }
1330 qemu_mutex_lock_iothread();
1331
1332 if (multifd_save_cleanup(&local_err) != 0) {
1333 error_report_err(local_err);
1334 }
1335 qemu_mutex_lock(&s->qemu_file_lock);
1336 tmp = s->to_dst_file;
1337 s->to_dst_file = NULL;
1338 qemu_mutex_unlock(&s->qemu_file_lock);
1339 /*
1340 * Close the file handle without the lock to make sure the
1341 * critical section won't block for long.
1342 */
1343 qemu_fclose(tmp);
1344 }
1345
1346 assert((s->state != MIGRATION_STATUS_ACTIVE) &&
1347 (s->state != MIGRATION_STATUS_POSTCOPY_ACTIVE));
1348
1349 if (s->state == MIGRATION_STATUS_CANCELLING) {
1350 migrate_set_state(&s->state, MIGRATION_STATUS_CANCELLING,
1351 MIGRATION_STATUS_CANCELLED);
1352 }
1353
1354 if (s->error) {
1355 /* It is used on info migrate. We can't free it */
1356 error_report_err(error_copy(s->error));
1357 }
1358 notifier_list_notify(&migration_state_notifiers, s);
1359 block_cleanup_parameters(s);
1360 }
1361
1362 void migrate_set_error(MigrationState *s, const Error *error)
1363 {
1364 qemu_mutex_lock(&s->error_mutex);
1365 if (!s->error) {
1366 s->error = error_copy(error);
1367 }
1368 qemu_mutex_unlock(&s->error_mutex);
1369 }
1370
1371 void migrate_fd_error(MigrationState *s, const Error *error)
1372 {
1373 trace_migrate_fd_error(error_get_pretty(error));
1374 assert(s->to_dst_file == NULL);
1375 migrate_set_state(&s->state, MIGRATION_STATUS_SETUP,
1376 MIGRATION_STATUS_FAILED);
1377 migrate_set_error(s, error);
1378 }
1379
1380 static void migrate_fd_cancel(MigrationState *s)
1381 {
1382 int old_state ;
1383 QEMUFile *f = migrate_get_current()->to_dst_file;
1384 trace_migrate_fd_cancel();
1385
1386 if (s->rp_state.from_dst_file) {
1387 /* shutdown the rp socket, so causing the rp thread to shutdown */
1388 qemu_file_shutdown(s->rp_state.from_dst_file);
1389 }
1390
1391 do {
1392 old_state = s->state;
1393 if (!migration_is_setup_or_active(old_state)) {
1394 break;
1395 }
1396 /* If the migration is paused, kick it out of the pause */
1397 if (old_state == MIGRATION_STATUS_PRE_SWITCHOVER) {
1398 qemu_sem_post(&s->pause_sem);
1399 }
1400 migrate_set_state(&s->state, old_state, MIGRATION_STATUS_CANCELLING);
1401 } while (s->state != MIGRATION_STATUS_CANCELLING);
1402
1403 /*
1404 * If we're unlucky the migration code might be stuck somewhere in a
1405 * send/write while the network has failed and is waiting to timeout;
1406 * if we've got shutdown(2) available then we can force it to quit.
1407 * The outgoing qemu file gets closed in migrate_fd_cleanup that is
1408 * called in a bh, so there is no race against this cancel.
1409 */
1410 if (s->state == MIGRATION_STATUS_CANCELLING && f) {
1411 qemu_file_shutdown(f);
1412 }
1413 if (s->state == MIGRATION_STATUS_CANCELLING && s->block_inactive) {
1414 Error *local_err = NULL;
1415
1416 bdrv_invalidate_cache_all(&local_err);
1417 if (local_err) {
1418 error_report_err(local_err);
1419 } else {
1420 s->block_inactive = false;
1421 }
1422 }
1423 }
1424
1425 void add_migration_state_change_notifier(Notifier *notify)
1426 {
1427 notifier_list_add(&migration_state_notifiers, notify);
1428 }
1429
1430 void remove_migration_state_change_notifier(Notifier *notify)
1431 {
1432 notifier_remove(notify);
1433 }
1434
1435 bool migration_in_setup(MigrationState *s)
1436 {
1437 return s->state == MIGRATION_STATUS_SETUP;
1438 }
1439
1440 bool migration_has_finished(MigrationState *s)
1441 {
1442 return s->state == MIGRATION_STATUS_COMPLETED;
1443 }
1444
1445 bool migration_has_failed(MigrationState *s)
1446 {
1447 return (s->state == MIGRATION_STATUS_CANCELLED ||
1448 s->state == MIGRATION_STATUS_FAILED);
1449 }
1450
1451 bool migration_in_postcopy(void)
1452 {
1453 MigrationState *s = migrate_get_current();
1454
1455 return (s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE);
1456 }
1457
1458 bool migration_in_postcopy_after_devices(MigrationState *s)
1459 {
1460 return migration_in_postcopy() && s->postcopy_after_devices;
1461 }
1462
1463 bool migration_is_idle(void)
1464 {
1465 MigrationState *s = migrate_get_current();
1466
1467 switch (s->state) {
1468 case MIGRATION_STATUS_NONE:
1469 case MIGRATION_STATUS_CANCELLED:
1470 case MIGRATION_STATUS_COMPLETED:
1471 case MIGRATION_STATUS_FAILED:
1472 return true;
1473 case MIGRATION_STATUS_SETUP:
1474 case MIGRATION_STATUS_CANCELLING:
1475 case MIGRATION_STATUS_ACTIVE:
1476 case MIGRATION_STATUS_POSTCOPY_ACTIVE:
1477 case MIGRATION_STATUS_COLO:
1478 case MIGRATION_STATUS_PRE_SWITCHOVER:
1479 case MIGRATION_STATUS_DEVICE:
1480 return false;
1481 case MIGRATION_STATUS__MAX:
1482 g_assert_not_reached();
1483 }
1484
1485 return false;
1486 }
1487
1488 void migrate_init(MigrationState *s)
1489 {
1490 /*
1491 * Reinitialise all migration state, except
1492 * parameters/capabilities that the user set, and
1493 * locks.
1494 */
1495 s->bytes_xfer = 0;
1496 s->xfer_limit = 0;
1497 s->cleanup_bh = 0;
1498 s->to_dst_file = NULL;
1499 s->state = MIGRATION_STATUS_NONE;
1500 s->rp_state.from_dst_file = NULL;
1501 s->rp_state.error = false;
1502 s->mbps = 0.0;
1503 s->downtime = 0;
1504 s->expected_downtime = 0;
1505 s->setup_time = 0;
1506 s->start_postcopy = false;
1507 s->postcopy_after_devices = false;
1508 s->migration_thread_running = false;
1509 error_free(s->error);
1510 s->error = NULL;
1511
1512 migrate_set_state(&s->state, MIGRATION_STATUS_NONE, MIGRATION_STATUS_SETUP);
1513
1514 s->start_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
1515 s->total_time = 0;
1516 s->vm_was_running = false;
1517 s->iteration_initial_bytes = 0;
1518 s->threshold_size = 0;
1519 }
1520
1521 static GSList *migration_blockers;
1522
1523 int migrate_add_blocker(Error *reason, Error **errp)
1524 {
1525 if (migrate_get_current()->only_migratable) {
1526 error_propagate(errp, error_copy(reason));
1527 error_prepend(errp, "disallowing migration blocker "
1528 "(--only_migratable) for: ");
1529 return -EACCES;
1530 }
1531
1532 if (migration_is_idle()) {
1533 migration_blockers = g_slist_prepend(migration_blockers, reason);
1534 return 0;
1535 }
1536
1537 error_propagate(errp, error_copy(reason));
1538 error_prepend(errp, "disallowing migration blocker (migration in "
1539 "progress) for: ");
1540 return -EBUSY;
1541 }
1542
1543 void migrate_del_blocker(Error *reason)
1544 {
1545 migration_blockers = g_slist_remove(migration_blockers, reason);
1546 }
1547
1548 void qmp_migrate_incoming(const char *uri, Error **errp)
1549 {
1550 Error *local_err = NULL;
1551 static bool once = true;
1552
1553 if (!deferred_incoming) {
1554 error_setg(errp, "For use with '-incoming defer'");
1555 return;
1556 }
1557 if (!once) {
1558 error_setg(errp, "The incoming migration has already been started");
1559 }
1560
1561 qemu_start_incoming_migration(uri, &local_err);
1562
1563 if (local_err) {
1564 error_propagate(errp, local_err);
1565 return;
1566 }
1567
1568 once = false;
1569 }
1570
1571 void qmp_migrate_recover(const char *uri, Error **errp)
1572 {
1573 MigrationIncomingState *mis = migration_incoming_get_current();
1574
1575 if (mis->state != MIGRATION_STATUS_POSTCOPY_PAUSED) {
1576 error_setg(errp, "Migrate recover can only be run "
1577 "when postcopy is paused.");
1578 return;
1579 }
1580
1581 if (atomic_cmpxchg(&mis->postcopy_recover_triggered,
1582 false, true) == true) {
1583 error_setg(errp, "Migrate recovery is triggered already");
1584 return;
1585 }
1586
1587 /*
1588 * Note that this call will never start a real migration; it will
1589 * only re-setup the migration stream and poke existing migration
1590 * to continue using that newly established channel.
1591 */
1592 qemu_start_incoming_migration(uri, errp);
1593 }
1594
1595 void qmp_migrate_pause(Error **errp)
1596 {
1597 MigrationState *ms = migrate_get_current();
1598 MigrationIncomingState *mis = migration_incoming_get_current();
1599 int ret;
1600
1601 if (ms->state == MIGRATION_STATUS_POSTCOPY_ACTIVE) {
1602 /* Source side, during postcopy */
1603 qemu_mutex_lock(&ms->qemu_file_lock);
1604 ret = qemu_file_shutdown(ms->to_dst_file);
1605 qemu_mutex_unlock(&ms->qemu_file_lock);
1606 if (ret) {
1607 error_setg(errp, "Failed to pause source migration");
1608 }
1609 return;
1610 }
1611
1612 if (mis->state == MIGRATION_STATUS_POSTCOPY_ACTIVE) {
1613 ret = qemu_file_shutdown(mis->from_src_file);
1614 if (ret) {
1615 error_setg(errp, "Failed to pause destination migration");
1616 }
1617 return;
1618 }
1619
1620 error_setg(errp, "migrate-pause is currently only supported "
1621 "during postcopy-active state");
1622 }
1623
1624 bool migration_is_blocked(Error **errp)
1625 {
1626 if (qemu_savevm_state_blocked(errp)) {
1627 return true;
1628 }
1629
1630 if (migration_blockers) {
1631 error_propagate(errp, error_copy(migration_blockers->data));
1632 return true;
1633 }
1634
1635 return false;
1636 }
1637
1638 /* Returns true if continue to migrate, or false if error detected */
1639 static bool migrate_prepare(MigrationState *s, bool blk, bool blk_inc,
1640 bool resume, Error **errp)
1641 {
1642 Error *local_err = NULL;
1643
1644 if (resume) {
1645 if (s->state != MIGRATION_STATUS_POSTCOPY_PAUSED) {
1646 error_setg(errp, "Cannot resume if there is no "
1647 "paused migration");
1648 return false;
1649 }
1650
1651 /*
1652 * Postcopy recovery won't work well with release-ram
1653 * capability since release-ram will drop the page buffer as
1654 * long as the page is put into the send buffer. So if there
1655 * is a network failure happened, any page buffers that have
1656 * not yet reached the destination VM but have already been
1657 * sent from the source VM will be lost forever. Let's refuse
1658 * the client from resuming such a postcopy migration.
1659 * Luckily release-ram was designed to only be used when src
1660 * and destination VMs are on the same host, so it should be
1661 * fine.
1662 */
1663 if (migrate_release_ram()) {
1664 error_setg(errp, "Postcopy recovery cannot work "
1665 "when release-ram capability is set");
1666 return false;
1667 }
1668
1669 /* This is a resume, skip init status */
1670 return true;
1671 }
1672
1673 if (migration_is_setup_or_active(s->state) ||
1674 s->state == MIGRATION_STATUS_CANCELLING ||
1675 s->state == MIGRATION_STATUS_COLO) {
1676 error_setg(errp, QERR_MIGRATION_ACTIVE);
1677 return false;
1678 }
1679
1680 if (runstate_check(RUN_STATE_INMIGRATE)) {
1681 error_setg(errp, "Guest is waiting for an incoming migration");
1682 return false;
1683 }
1684
1685 if (migration_is_blocked(errp)) {
1686 return false;
1687 }
1688
1689 if (blk || blk_inc) {
1690 if (migrate_use_block() || migrate_use_block_incremental()) {
1691 error_setg(errp, "Command options are incompatible with "
1692 "current migration capabilities");
1693 return false;
1694 }
1695 migrate_set_block_enabled(true, &local_err);
1696 if (local_err) {
1697 error_propagate(errp, local_err);
1698 return false;
1699 }
1700 s->must_remove_block_options = true;
1701 }
1702
1703 if (blk_inc) {
1704 migrate_set_block_incremental(s, true);
1705 }
1706
1707 migrate_init(s);
1708
1709 return true;
1710 }
1711
1712 void qmp_migrate(const char *uri, bool has_blk, bool blk,
1713 bool has_inc, bool inc, bool has_detach, bool detach,
1714 bool has_resume, bool resume, Error **errp)
1715 {
1716 Error *local_err = NULL;
1717 MigrationState *s = migrate_get_current();
1718 const char *p;
1719
1720 if (!migrate_prepare(s, has_blk && blk, has_inc && inc,
1721 has_resume && resume, errp)) {
1722 /* Error detected, put into errp */
1723 return;
1724 }
1725
1726 if (strstart(uri, "tcp:", &p)) {
1727 tcp_start_outgoing_migration(s, p, &local_err);
1728 #ifdef CONFIG_RDMA
1729 } else if (strstart(uri, "rdma:", &p)) {
1730 rdma_start_outgoing_migration(s, p, &local_err);
1731 #endif
1732 } else if (strstart(uri, "exec:", &p)) {
1733 exec_start_outgoing_migration(s, p, &local_err);
1734 } else if (strstart(uri, "unix:", &p)) {
1735 unix_start_outgoing_migration(s, p, &local_err);
1736 } else if (strstart(uri, "fd:", &p)) {
1737 fd_start_outgoing_migration(s, p, &local_err);
1738 } else {
1739 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "uri",
1740 "a valid migration protocol");
1741 migrate_set_state(&s->state, MIGRATION_STATUS_SETUP,
1742 MIGRATION_STATUS_FAILED);
1743 block_cleanup_parameters(s);
1744 return;
1745 }
1746
1747 if (local_err) {
1748 migrate_fd_error(s, local_err);
1749 error_propagate(errp, local_err);
1750 return;
1751 }
1752 }
1753
1754 void qmp_migrate_cancel(Error **errp)
1755 {
1756 migrate_fd_cancel(migrate_get_current());
1757 }
1758
1759 void qmp_migrate_continue(MigrationStatus state, Error **errp)
1760 {
1761 MigrationState *s = migrate_get_current();
1762 if (s->state != state) {
1763 error_setg(errp, "Migration not in expected state: %s",
1764 MigrationStatus_str(s->state));
1765 return;
1766 }
1767 qemu_sem_post(&s->pause_sem);
1768 }
1769
1770 void qmp_migrate_set_cache_size(int64_t value, Error **errp)
1771 {
1772 MigrateSetParameters p = {
1773 .has_xbzrle_cache_size = true,
1774 .xbzrle_cache_size = value,
1775 };
1776
1777 qmp_migrate_set_parameters(&p, errp);
1778 }
1779
1780 int64_t qmp_query_migrate_cache_size(Error **errp)
1781 {
1782 return migrate_xbzrle_cache_size();
1783 }
1784
1785 void qmp_migrate_set_speed(int64_t value, Error **errp)
1786 {
1787 MigrateSetParameters p = {
1788 .has_max_bandwidth = true,
1789 .max_bandwidth = value,
1790 };
1791
1792 qmp_migrate_set_parameters(&p, errp);
1793 }
1794
1795 void qmp_migrate_set_downtime(double value, Error **errp)
1796 {
1797 if (value < 0 || value > MAX_MIGRATE_DOWNTIME_SECONDS) {
1798 error_setg(errp, "Parameter 'downtime_limit' expects an integer in "
1799 "the range of 0 to %d seconds",
1800 MAX_MIGRATE_DOWNTIME_SECONDS);
1801 return;
1802 }
1803
1804 value *= 1000; /* Convert to milliseconds */
1805 value = MAX(0, MIN(INT64_MAX, value));
1806
1807 MigrateSetParameters p = {
1808 .has_downtime_limit = true,
1809 .downtime_limit = value,
1810 };
1811
1812 qmp_migrate_set_parameters(&p, errp);
1813 }
1814
1815 bool migrate_release_ram(void)
1816 {
1817 MigrationState *s;
1818
1819 s = migrate_get_current();
1820
1821 return s->enabled_capabilities[MIGRATION_CAPABILITY_RELEASE_RAM];
1822 }
1823
1824 bool migrate_postcopy_ram(void)
1825 {
1826 MigrationState *s;
1827
1828 s = migrate_get_current();
1829
1830 return s->enabled_capabilities[MIGRATION_CAPABILITY_POSTCOPY_RAM];
1831 }
1832
1833 bool migrate_postcopy(void)
1834 {
1835 return migrate_postcopy_ram() || migrate_dirty_bitmaps();
1836 }
1837
1838 bool migrate_auto_converge(void)
1839 {
1840 MigrationState *s;
1841
1842 s = migrate_get_current();
1843
1844 return s->enabled_capabilities[MIGRATION_CAPABILITY_AUTO_CONVERGE];
1845 }
1846
1847 bool migrate_zero_blocks(void)
1848 {
1849 MigrationState *s;
1850
1851 s = migrate_get_current();
1852
1853 return s->enabled_capabilities[MIGRATION_CAPABILITY_ZERO_BLOCKS];
1854 }
1855
1856 bool migrate_postcopy_blocktime(void)
1857 {
1858 MigrationState *s;
1859
1860 s = migrate_get_current();
1861
1862 return s->enabled_capabilities[MIGRATION_CAPABILITY_POSTCOPY_BLOCKTIME];
1863 }
1864
1865 bool migrate_use_compression(void)
1866 {
1867 MigrationState *s;
1868
1869 s = migrate_get_current();
1870
1871 return s->enabled_capabilities[MIGRATION_CAPABILITY_COMPRESS];
1872 }
1873
1874 int migrate_compress_level(void)
1875 {
1876 MigrationState *s;
1877
1878 s = migrate_get_current();
1879
1880 return s->parameters.compress_level;
1881 }
1882
1883 int migrate_compress_threads(void)
1884 {
1885 MigrationState *s;
1886
1887 s = migrate_get_current();
1888
1889 return s->parameters.compress_threads;
1890 }
1891
1892 int migrate_decompress_threads(void)
1893 {
1894 MigrationState *s;
1895
1896 s = migrate_get_current();
1897
1898 return s->parameters.decompress_threads;
1899 }
1900
1901 bool migrate_dirty_bitmaps(void)
1902 {
1903 MigrationState *s;
1904
1905 s = migrate_get_current();
1906
1907 return s->enabled_capabilities[MIGRATION_CAPABILITY_DIRTY_BITMAPS];
1908 }
1909
1910 bool migrate_use_events(void)
1911 {
1912 MigrationState *s;
1913
1914 s = migrate_get_current();
1915
1916 return s->enabled_capabilities[MIGRATION_CAPABILITY_EVENTS];
1917 }
1918
1919 bool migrate_use_multifd(void)
1920 {
1921 MigrationState *s;
1922
1923 s = migrate_get_current();
1924
1925 return s->enabled_capabilities[MIGRATION_CAPABILITY_X_MULTIFD];
1926 }
1927
1928 bool migrate_pause_before_switchover(void)
1929 {
1930 MigrationState *s;
1931
1932 s = migrate_get_current();
1933
1934 return s->enabled_capabilities[
1935 MIGRATION_CAPABILITY_PAUSE_BEFORE_SWITCHOVER];
1936 }
1937
1938 int migrate_multifd_channels(void)
1939 {
1940 MigrationState *s;
1941
1942 s = migrate_get_current();
1943
1944 return s->parameters.x_multifd_channels;
1945 }
1946
1947 int migrate_multifd_page_count(void)
1948 {
1949 MigrationState *s;
1950
1951 s = migrate_get_current();
1952
1953 return s->parameters.x_multifd_page_count;
1954 }
1955
1956 int migrate_use_xbzrle(void)
1957 {
1958 MigrationState *s;
1959
1960 s = migrate_get_current();
1961
1962 return s->enabled_capabilities[MIGRATION_CAPABILITY_XBZRLE];
1963 }
1964
1965 int64_t migrate_xbzrle_cache_size(void)
1966 {
1967 MigrationState *s;
1968
1969 s = migrate_get_current();
1970
1971 return s->parameters.xbzrle_cache_size;
1972 }
1973
1974 static int64_t migrate_max_postcopy_bandwidth(void)
1975 {
1976 MigrationState *s;
1977
1978 s = migrate_get_current();
1979
1980 return s->parameters.max_postcopy_bandwidth;
1981 }
1982
1983 bool migrate_use_block(void)
1984 {
1985 MigrationState *s;
1986
1987 s = migrate_get_current();
1988
1989 return s->enabled_capabilities[MIGRATION_CAPABILITY_BLOCK];
1990 }
1991
1992 bool migrate_use_return_path(void)
1993 {
1994 MigrationState *s;
1995
1996 s = migrate_get_current();
1997
1998 return s->enabled_capabilities[MIGRATION_CAPABILITY_RETURN_PATH];
1999 }
2000
2001 bool migrate_use_block_incremental(void)
2002 {
2003 MigrationState *s;
2004
2005 s = migrate_get_current();
2006
2007 return s->parameters.block_incremental;
2008 }
2009
2010 /* migration thread support */
2011 /*
2012 * Something bad happened to the RP stream, mark an error
2013 * The caller shall print or trace something to indicate why
2014 */
2015 static void mark_source_rp_bad(MigrationState *s)
2016 {
2017 s->rp_state.error = true;
2018 }
2019
2020 static struct rp_cmd_args {
2021 ssize_t len; /* -1 = variable */
2022 const char *name;
2023 } rp_cmd_args[] = {
2024 [MIG_RP_MSG_INVALID] = { .len = -1, .name = "INVALID" },
2025 [MIG_RP_MSG_SHUT] = { .len = 4, .name = "SHUT" },
2026 [MIG_RP_MSG_PONG] = { .len = 4, .name = "PONG" },
2027 [MIG_RP_MSG_REQ_PAGES] = { .len = 12, .name = "REQ_PAGES" },
2028 [MIG_RP_MSG_REQ_PAGES_ID] = { .len = -1, .name = "REQ_PAGES_ID" },
2029 [MIG_RP_MSG_RECV_BITMAP] = { .len = -1, .name = "RECV_BITMAP" },
2030 [MIG_RP_MSG_RESUME_ACK] = { .len = 4, .name = "RESUME_ACK" },
2031 [MIG_RP_MSG_MAX] = { .len = -1, .name = "MAX" },
2032 };
2033
2034 /*
2035 * Process a request for pages received on the return path,
2036 * We're allowed to send more than requested (e.g. to round to our page size)
2037 * and we don't need to send pages that have already been sent.
2038 */
2039 static void migrate_handle_rp_req_pages(MigrationState *ms, const char* rbname,
2040 ram_addr_t start, size_t len)
2041 {
2042 long our_host_ps = getpagesize();
2043
2044 trace_migrate_handle_rp_req_pages(rbname, start, len);
2045
2046 /*
2047 * Since we currently insist on matching page sizes, just sanity check
2048 * we're being asked for whole host pages.
2049 */
2050 if (start & (our_host_ps-1) ||
2051 (len & (our_host_ps-1))) {
2052 error_report("%s: Misaligned page request, start: " RAM_ADDR_FMT
2053 " len: %zd", __func__, start, len);
2054 mark_source_rp_bad(ms);
2055 return;
2056 }
2057
2058 if (ram_save_queue_pages(rbname, start, len)) {
2059 mark_source_rp_bad(ms);
2060 }
2061 }
2062
2063 /* Return true to retry, false to quit */
2064 static bool postcopy_pause_return_path_thread(MigrationState *s)
2065 {
2066 trace_postcopy_pause_return_path();
2067
2068 qemu_sem_wait(&s->postcopy_pause_rp_sem);
2069
2070 trace_postcopy_pause_return_path_continued();
2071
2072 return true;
2073 }
2074
2075 static int migrate_handle_rp_recv_bitmap(MigrationState *s, char *block_name)
2076 {
2077 RAMBlock *block = qemu_ram_block_by_name(block_name);
2078
2079 if (!block) {
2080 error_report("%s: invalid block name '%s'", __func__, block_name);
2081 return -EINVAL;
2082 }
2083
2084 /* Fetch the received bitmap and refresh the dirty bitmap */
2085 return ram_dirty_bitmap_reload(s, block);
2086 }
2087
2088 static int migrate_handle_rp_resume_ack(MigrationState *s, uint32_t value)
2089 {
2090 trace_source_return_path_thread_resume_ack(value);
2091
2092 if (value != MIGRATION_RESUME_ACK_VALUE) {
2093 error_report("%s: illegal resume_ack value %"PRIu32,
2094 __func__, value);
2095 return -1;
2096 }
2097
2098 /* Now both sides are active. */
2099 migrate_set_state(&s->state, MIGRATION_STATUS_POSTCOPY_RECOVER,
2100 MIGRATION_STATUS_POSTCOPY_ACTIVE);
2101
2102 /* Notify send thread that time to continue send pages */
2103 qemu_sem_post(&s->rp_state.rp_sem);
2104
2105 return 0;
2106 }
2107
2108 /*
2109 * Handles messages sent on the return path towards the source VM
2110 *
2111 */
2112 static void *source_return_path_thread(void *opaque)
2113 {
2114 MigrationState *ms = opaque;
2115 QEMUFile *rp = ms->rp_state.from_dst_file;
2116 uint16_t header_len, header_type;
2117 uint8_t buf[512];
2118 uint32_t tmp32, sibling_error;
2119 ram_addr_t start = 0; /* =0 to silence warning */
2120 size_t len = 0, expected_len;
2121 int res;
2122
2123 trace_source_return_path_thread_entry();
2124
2125 retry:
2126 while (!ms->rp_state.error && !qemu_file_get_error(rp) &&
2127 migration_is_setup_or_active(ms->state)) {
2128 trace_source_return_path_thread_loop_top();
2129 header_type = qemu_get_be16(rp);
2130 header_len = qemu_get_be16(rp);
2131
2132 if (qemu_file_get_error(rp)) {
2133 mark_source_rp_bad(ms);
2134 goto out;
2135 }
2136
2137 if (header_type >= MIG_RP_MSG_MAX ||
2138 header_type == MIG_RP_MSG_INVALID) {
2139 error_report("RP: Received invalid message 0x%04x length 0x%04x",
2140 header_type, header_len);
2141 mark_source_rp_bad(ms);
2142 goto out;
2143 }
2144
2145 if ((rp_cmd_args[header_type].len != -1 &&
2146 header_len != rp_cmd_args[header_type].len) ||
2147 header_len > sizeof(buf)) {
2148 error_report("RP: Received '%s' message (0x%04x) with"
2149 "incorrect length %d expecting %zu",
2150 rp_cmd_args[header_type].name, header_type, header_len,
2151 (size_t)rp_cmd_args[header_type].len);
2152 mark_source_rp_bad(ms);
2153 goto out;
2154 }
2155
2156 /* We know we've got a valid header by this point */
2157 res = qemu_get_buffer(rp, buf, header_len);
2158 if (res != header_len) {
2159 error_report("RP: Failed reading data for message 0x%04x"
2160 " read %d expected %d",
2161 header_type, res, header_len);
2162 mark_source_rp_bad(ms);
2163 goto out;
2164 }
2165
2166 /* OK, we have the message and the data */
2167 switch (header_type) {
2168 case MIG_RP_MSG_SHUT:
2169 sibling_error = ldl_be_p(buf);
2170 trace_source_return_path_thread_shut(sibling_error);
2171 if (sibling_error) {
2172 error_report("RP: Sibling indicated error %d", sibling_error);
2173 mark_source_rp_bad(ms);
2174 }
2175 /*
2176 * We'll let the main thread deal with closing the RP
2177 * we could do a shutdown(2) on it, but we're the only user
2178 * anyway, so there's nothing gained.
2179 */
2180 goto out;
2181
2182 case MIG_RP_MSG_PONG:
2183 tmp32 = ldl_be_p(buf);
2184 trace_source_return_path_thread_pong(tmp32);
2185 break;
2186
2187 case MIG_RP_MSG_REQ_PAGES:
2188 start = ldq_be_p(buf);
2189 len = ldl_be_p(buf + 8);
2190 migrate_handle_rp_req_pages(ms, NULL, start, len);
2191 break;
2192
2193 case MIG_RP_MSG_REQ_PAGES_ID:
2194 expected_len = 12 + 1; /* header + termination */
2195
2196 if (header_len >= expected_len) {
2197 start = ldq_be_p(buf);
2198 len = ldl_be_p(buf + 8);
2199 /* Now we expect an idstr */
2200 tmp32 = buf[12]; /* Length of the following idstr */
2201 buf[13 + tmp32] = '\0';
2202 expected_len += tmp32;
2203 }
2204 if (header_len != expected_len) {
2205 error_report("RP: Req_Page_id with length %d expecting %zd",
2206 header_len, expected_len);
2207 mark_source_rp_bad(ms);
2208 goto out;
2209 }
2210 migrate_handle_rp_req_pages(ms, (char *)&buf[13], start, len);
2211 break;
2212
2213 case MIG_RP_MSG_RECV_BITMAP:
2214 if (header_len < 1) {
2215 error_report("%s: missing block name", __func__);
2216 mark_source_rp_bad(ms);
2217 goto out;
2218 }
2219 /* Format: len (1B) + idstr (<255B). This ends the idstr. */
2220 buf[buf[0] + 1] = '\0';
2221 if (migrate_handle_rp_recv_bitmap(ms, (char *)(buf + 1))) {
2222 mark_source_rp_bad(ms);
2223 goto out;
2224 }
2225 break;
2226
2227 case MIG_RP_MSG_RESUME_ACK:
2228 tmp32 = ldl_be_p(buf);
2229 if (migrate_handle_rp_resume_ack(ms, tmp32)) {
2230 mark_source_rp_bad(ms);
2231 goto out;
2232 }
2233 break;
2234
2235 default:
2236 break;
2237 }
2238 }
2239
2240 out:
2241 res = qemu_file_get_error(rp);
2242 if (res) {
2243 if (res == -EIO) {
2244 /*
2245 * Maybe there is something we can do: it looks like a
2246 * network down issue, and we pause for a recovery.
2247 */
2248 if (postcopy_pause_return_path_thread(ms)) {
2249 /* Reload rp, reset the rest */
2250 rp = ms->rp_state.from_dst_file;
2251 ms->rp_state.error = false;
2252 goto retry;
2253 }
2254 }
2255
2256 trace_source_return_path_thread_bad_end();
2257 mark_source_rp_bad(ms);
2258 }
2259
2260 trace_source_return_path_thread_end();
2261 ms->rp_state.from_dst_file = NULL;
2262 qemu_fclose(rp);
2263 return NULL;
2264 }
2265
2266 static int open_return_path_on_source(MigrationState *ms,
2267 bool create_thread)
2268 {
2269
2270 ms->rp_state.from_dst_file = qemu_file_get_return_path(ms->to_dst_file);
2271 if (!ms->rp_state.from_dst_file) {
2272 return -1;
2273 }
2274
2275 trace_open_return_path_on_source();
2276
2277 if (!create_thread) {
2278 /* We're done */
2279 return 0;
2280 }
2281
2282 qemu_thread_create(&ms->rp_state.rp_thread, "return path",
2283 source_return_path_thread, ms, QEMU_THREAD_JOINABLE);
2284
2285 trace_open_return_path_on_source_continue();
2286
2287 return 0;
2288 }
2289
2290 /* Returns 0 if the RP was ok, otherwise there was an error on the RP */
2291 static int await_return_path_close_on_source(MigrationState *ms)
2292 {
2293 /*
2294 * If this is a normal exit then the destination will send a SHUT and the
2295 * rp_thread will exit, however if there's an error we need to cause
2296 * it to exit.
2297 */
2298 if (qemu_file_get_error(ms->to_dst_file) && ms->rp_state.from_dst_file) {
2299 /*
2300 * shutdown(2), if we have it, will cause it to unblock if it's stuck
2301 * waiting for the destination.
2302 */
2303 qemu_file_shutdown(ms->rp_state.from_dst_file);
2304 mark_source_rp_bad(ms);
2305 }
2306 trace_await_return_path_close_on_source_joining();
2307 qemu_thread_join(&ms->rp_state.rp_thread);
2308 trace_await_return_path_close_on_source_close();
2309 return ms->rp_state.error;
2310 }
2311
2312 /*
2313 * Switch from normal iteration to postcopy
2314 * Returns non-0 on error
2315 */
2316 static int postcopy_start(MigrationState *ms)
2317 {
2318 int ret;
2319 QIOChannelBuffer *bioc;
2320 QEMUFile *fb;
2321 int64_t time_at_stop = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
2322 int64_t bandwidth = migrate_max_postcopy_bandwidth();
2323 bool restart_block = false;
2324 int cur_state = MIGRATION_STATUS_ACTIVE;
2325 if (!migrate_pause_before_switchover()) {
2326 migrate_set_state(&ms->state, MIGRATION_STATUS_ACTIVE,
2327 MIGRATION_STATUS_POSTCOPY_ACTIVE);
2328 }
2329
2330 trace_postcopy_start();
2331 qemu_mutex_lock_iothread();
2332 trace_postcopy_start_set_run();
2333
2334 qemu_system_wakeup_request(QEMU_WAKEUP_REASON_OTHER);
2335 global_state_store();
2336 ret = vm_stop_force_state(RUN_STATE_FINISH_MIGRATE);
2337 if (ret < 0) {
2338 goto fail;
2339 }
2340
2341 ret = migration_maybe_pause(ms, &cur_state,
2342 MIGRATION_STATUS_POSTCOPY_ACTIVE);
2343 if (ret < 0) {
2344 goto fail;
2345 }
2346
2347 ret = bdrv_inactivate_all();
2348 if (ret < 0) {
2349 goto fail;
2350 }
2351 restart_block = true;
2352
2353 /*
2354 * Cause any non-postcopiable, but iterative devices to
2355 * send out their final data.
2356 */
2357 qemu_savevm_state_complete_precopy(ms->to_dst_file, true, false);
2358
2359 /*
2360 * in Finish migrate and with the io-lock held everything should
2361 * be quiet, but we've potentially still got dirty pages and we
2362 * need to tell the destination to throw any pages it's already received
2363 * that are dirty
2364 */
2365 if (migrate_postcopy_ram()) {
2366 if (ram_postcopy_send_discard_bitmap(ms)) {
2367 error_report("postcopy send discard bitmap failed");
2368 goto fail;
2369 }
2370 }
2371
2372 /*
2373 * send rest of state - note things that are doing postcopy
2374 * will notice we're in POSTCOPY_ACTIVE and not actually
2375 * wrap their state up here
2376 */
2377 /* 0 max-postcopy-bandwidth means unlimited */
2378 if (!bandwidth) {
2379 qemu_file_set_rate_limit(ms->to_dst_file, INT64_MAX);
2380 } else {
2381 qemu_file_set_rate_limit(ms->to_dst_file, bandwidth / XFER_LIMIT_RATIO);
2382 }
2383 if (migrate_postcopy_ram()) {
2384 /* Ping just for debugging, helps line traces up */
2385 qemu_savevm_send_ping(ms->to_dst_file, 2);
2386 }
2387
2388 /*
2389 * While loading the device state we may trigger page transfer
2390 * requests and the fd must be free to process those, and thus
2391 * the destination must read the whole device state off the fd before
2392 * it starts processing it. Unfortunately the ad-hoc migration format
2393 * doesn't allow the destination to know the size to read without fully
2394 * parsing it through each devices load-state code (especially the open
2395 * coded devices that use get/put).
2396 * So we wrap the device state up in a package with a length at the start;
2397 * to do this we use a qemu_buf to hold the whole of the device state.
2398 */
2399 bioc = qio_channel_buffer_new(4096);
2400 qio_channel_set_name(QIO_CHANNEL(bioc), "migration-postcopy-buffer");
2401 fb = qemu_fopen_channel_output(QIO_CHANNEL(bioc));
2402 object_unref(OBJECT(bioc));
2403
2404 /*
2405 * Make sure the receiver can get incoming pages before we send the rest
2406 * of the state
2407 */
2408 qemu_savevm_send_postcopy_listen(fb);
2409
2410 qemu_savevm_state_complete_precopy(fb, false, false);
2411 if (migrate_postcopy_ram()) {
2412 qemu_savevm_send_ping(fb, 3);
2413 }
2414
2415 qemu_savevm_send_postcopy_run(fb);
2416
2417 /* <><> end of stuff going into the package */
2418
2419 /* Last point of recovery; as soon as we send the package the destination
2420 * can open devices and potentially start running.
2421 * Lets just check again we've not got any errors.
2422 */
2423 ret = qemu_file_get_error(ms->to_dst_file);
2424 if (ret) {
2425 error_report("postcopy_start: Migration stream errored (pre package)");
2426 goto fail_closefb;
2427 }
2428
2429 restart_block = false;
2430
2431 /* Now send that blob */
2432 if (qemu_savevm_send_packaged(ms->to_dst_file, bioc->data, bioc->usage)) {
2433 goto fail_closefb;
2434 }
2435 qemu_fclose(fb);
2436
2437 /* Send a notify to give a chance for anything that needs to happen
2438 * at the transition to postcopy and after the device state; in particular
2439 * spice needs to trigger a transition now
2440 */
2441 ms->postcopy_after_devices = true;
2442 notifier_list_notify(&migration_state_notifiers, ms);
2443
2444 ms->downtime = qemu_clock_get_ms(QEMU_CLOCK_REALTIME) - time_at_stop;
2445
2446 qemu_mutex_unlock_iothread();
2447
2448 if (migrate_postcopy_ram()) {
2449 /*
2450 * Although this ping is just for debug, it could potentially be
2451 * used for getting a better measurement of downtime at the source.
2452 */
2453 qemu_savevm_send_ping(ms->to_dst_file, 4);
2454 }
2455
2456 if (migrate_release_ram()) {
2457 ram_postcopy_migrated_memory_release(ms);
2458 }
2459
2460 ret = qemu_file_get_error(ms->to_dst_file);
2461 if (ret) {
2462 error_report("postcopy_start: Migration stream errored");
2463 migrate_set_state(&ms->state, MIGRATION_STATUS_POSTCOPY_ACTIVE,
2464 MIGRATION_STATUS_FAILED);
2465 }
2466
2467 return ret;
2468
2469 fail_closefb:
2470 qemu_fclose(fb);
2471 fail:
2472 migrate_set_state(&ms->state, MIGRATION_STATUS_POSTCOPY_ACTIVE,
2473 MIGRATION_STATUS_FAILED);
2474 if (restart_block) {
2475 /* A failure happened early enough that we know the destination hasn't
2476 * accessed block devices, so we're safe to recover.
2477 */
2478 Error *local_err = NULL;
2479
2480 bdrv_invalidate_cache_all(&local_err);
2481 if (local_err) {
2482 error_report_err(local_err);
2483 }
2484 }
2485 qemu_mutex_unlock_iothread();
2486 return -1;
2487 }
2488
2489 /**
2490 * migration_maybe_pause: Pause if required to by
2491 * migrate_pause_before_switchover called with the iothread locked
2492 * Returns: 0 on success
2493 */
2494 static int migration_maybe_pause(MigrationState *s,
2495 int *current_active_state,
2496 int new_state)
2497 {
2498 if (!migrate_pause_before_switchover()) {
2499 return 0;
2500 }
2501
2502 /* Since leaving this state is not atomic with posting the semaphore
2503 * it's possible that someone could have issued multiple migrate_continue
2504 * and the semaphore is incorrectly positive at this point;
2505 * the docs say it's undefined to reinit a semaphore that's already
2506 * init'd, so use timedwait to eat up any existing posts.
2507 */
2508 while (qemu_sem_timedwait(&s->pause_sem, 1) == 0) {
2509 /* This block intentionally left blank */
2510 }
2511
2512 qemu_mutex_unlock_iothread();
2513 migrate_set_state(&s->state, *current_active_state,
2514 MIGRATION_STATUS_PRE_SWITCHOVER);
2515 qemu_sem_wait(&s->pause_sem);
2516 migrate_set_state(&s->state, MIGRATION_STATUS_PRE_SWITCHOVER,
2517 new_state);
2518 *current_active_state = new_state;
2519 qemu_mutex_lock_iothread();
2520
2521 return s->state == new_state ? 0 : -EINVAL;
2522 }
2523
2524 /**
2525 * migration_completion: Used by migration_thread when there's not much left.
2526 * The caller 'breaks' the loop when this returns.
2527 *
2528 * @s: Current migration state
2529 */
2530 static void migration_completion(MigrationState *s)
2531 {
2532 int ret;
2533 int current_active_state = s->state;
2534
2535 if (s->state == MIGRATION_STATUS_ACTIVE) {
2536 qemu_mutex_lock_iothread();
2537 s->downtime_start = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
2538 qemu_system_wakeup_request(QEMU_WAKEUP_REASON_OTHER);
2539 s->vm_was_running = runstate_is_running();
2540 ret = global_state_store();
2541
2542 if (!ret) {
2543 bool inactivate = !migrate_colo_enabled();
2544 ret = vm_stop_force_state(RUN_STATE_FINISH_MIGRATE);
2545 if (ret >= 0) {
2546 ret = migration_maybe_pause(s, &current_active_state,
2547 MIGRATION_STATUS_DEVICE);
2548 }
2549 if (ret >= 0) {
2550 qemu_file_set_rate_limit(s->to_dst_file, INT64_MAX);
2551 ret = qemu_savevm_state_complete_precopy(s->to_dst_file, false,
2552 inactivate);
2553 }
2554 if (inactivate && ret >= 0) {
2555 s->block_inactive = true;
2556 }
2557 }
2558 qemu_mutex_unlock_iothread();
2559
2560 if (ret < 0) {
2561 goto fail;
2562 }
2563 } else if (s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE) {
2564 trace_migration_completion_postcopy_end();
2565
2566 qemu_savevm_state_complete_postcopy(s->to_dst_file);
2567 trace_migration_completion_postcopy_end_after_complete();
2568 }
2569
2570 /*
2571 * If rp was opened we must clean up the thread before
2572 * cleaning everything else up (since if there are no failures
2573 * it will wait for the destination to send it's status in
2574 * a SHUT command).
2575 */
2576 if (s->rp_state.from_dst_file) {
2577 int rp_error;
2578 trace_migration_return_path_end_before();
2579 rp_error = await_return_path_close_on_source(s);
2580 trace_migration_return_path_end_after(rp_error);
2581 if (rp_error) {
2582 goto fail_invalidate;
2583 }
2584 }
2585
2586 if (qemu_file_get_error(s->to_dst_file)) {
2587 trace_migration_completion_file_err();
2588 goto fail_invalidate;
2589 }
2590
2591 if (!migrate_colo_enabled()) {
2592 migrate_set_state(&s->state, current_active_state,
2593 MIGRATION_STATUS_COMPLETED);
2594 }
2595
2596 return;
2597
2598 fail_invalidate:
2599 /* If not doing postcopy, vm_start() will be called: let's regain
2600 * control on images.
2601 */
2602 if (s->state == MIGRATION_STATUS_ACTIVE ||
2603 s->state == MIGRATION_STATUS_DEVICE) {
2604 Error *local_err = NULL;
2605
2606 qemu_mutex_lock_iothread();
2607 bdrv_invalidate_cache_all(&local_err);
2608 if (local_err) {
2609 error_report_err(local_err);
2610 } else {
2611 s->block_inactive = false;
2612 }
2613 qemu_mutex_unlock_iothread();
2614 }
2615
2616 fail:
2617 migrate_set_state(&s->state, current_active_state,
2618 MIGRATION_STATUS_FAILED);
2619 }
2620
2621 bool migrate_colo_enabled(void)
2622 {
2623 MigrationState *s = migrate_get_current();
2624 return s->enabled_capabilities[MIGRATION_CAPABILITY_X_COLO];
2625 }
2626
2627 typedef enum MigThrError {
2628 /* No error detected */
2629 MIG_THR_ERR_NONE = 0,
2630 /* Detected error, but resumed successfully */
2631 MIG_THR_ERR_RECOVERED = 1,
2632 /* Detected fatal error, need to exit */
2633 MIG_THR_ERR_FATAL = 2,
2634 } MigThrError;
2635
2636 static int postcopy_resume_handshake(MigrationState *s)
2637 {
2638 qemu_savevm_send_postcopy_resume(s->to_dst_file);
2639
2640 while (s->state == MIGRATION_STATUS_POSTCOPY_RECOVER) {
2641 qemu_sem_wait(&s->rp_state.rp_sem);
2642 }
2643
2644 if (s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE) {
2645 return 0;
2646 }
2647
2648 return -1;
2649 }
2650
2651 /* Return zero if success, or <0 for error */
2652 static int postcopy_do_resume(MigrationState *s)
2653 {
2654 int ret;
2655
2656 /*
2657 * Call all the resume_prepare() hooks, so that modules can be
2658 * ready for the migration resume.
2659 */
2660 ret = qemu_savevm_state_resume_prepare(s);
2661 if (ret) {
2662 error_report("%s: resume_prepare() failure detected: %d",
2663 __func__, ret);
2664 return ret;
2665 }
2666
2667 /*
2668 * Last handshake with destination on the resume (destination will
2669 * switch to postcopy-active afterwards)
2670 */
2671 ret = postcopy_resume_handshake(s);
2672 if (ret) {
2673 error_report("%s: handshake failed: %d", __func__, ret);
2674 return ret;
2675 }
2676
2677 return 0;
2678 }
2679
2680 /*
2681 * We don't return until we are in a safe state to continue current
2682 * postcopy migration. Returns MIG_THR_ERR_RECOVERED if recovered, or
2683 * MIG_THR_ERR_FATAL if unrecovery failure happened.
2684 */
2685 static MigThrError postcopy_pause(MigrationState *s)
2686 {
2687 assert(s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE);
2688
2689 while (true) {
2690 QEMUFile *file;
2691
2692 migrate_set_state(&s->state, s->state,
2693 MIGRATION_STATUS_POSTCOPY_PAUSED);
2694
2695 /* Current channel is possibly broken. Release it. */
2696 assert(s->to_dst_file);
2697 qemu_mutex_lock(&s->qemu_file_lock);
2698 file = s->to_dst_file;
2699 s->to_dst_file = NULL;
2700 qemu_mutex_unlock(&s->qemu_file_lock);
2701
2702 qemu_file_shutdown(file);
2703 qemu_fclose(file);
2704
2705 error_report("Detected IO failure for postcopy. "
2706 "Migration paused.");
2707
2708 /*
2709 * We wait until things fixed up. Then someone will setup the
2710 * status back for us.
2711 */
2712 while (s->state == MIGRATION_STATUS_POSTCOPY_PAUSED) {
2713 qemu_sem_wait(&s->postcopy_pause_sem);
2714 }
2715
2716 if (s->state == MIGRATION_STATUS_POSTCOPY_RECOVER) {
2717 /* Woken up by a recover procedure. Give it a shot */
2718
2719 /*
2720 * Firstly, let's wake up the return path now, with a new
2721 * return path channel.
2722 */
2723 qemu_sem_post(&s->postcopy_pause_rp_sem);
2724
2725 /* Do the resume logic */
2726 if (postcopy_do_resume(s) == 0) {
2727 /* Let's continue! */
2728 trace_postcopy_pause_continued();
2729 return MIG_THR_ERR_RECOVERED;
2730 } else {
2731 /*
2732 * Something wrong happened during the recovery, let's
2733 * pause again. Pause is always better than throwing
2734 * data away.
2735 */
2736 continue;
2737 }
2738 } else {
2739 /* This is not right... Time to quit. */
2740 return MIG_THR_ERR_FATAL;
2741 }
2742 }
2743 }
2744
2745 static MigThrError migration_detect_error(MigrationState *s)
2746 {
2747 int ret;
2748
2749 /* Try to detect any file errors */
2750 ret = qemu_file_get_error(s->to_dst_file);
2751
2752 if (!ret) {
2753 /* Everything is fine */
2754 return MIG_THR_ERR_NONE;
2755 }
2756
2757 if (s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE && ret == -EIO) {
2758 /*
2759 * For postcopy, we allow the network to be down for a
2760 * while. After that, it can be continued by a
2761 * recovery phase.
2762 */
2763 return postcopy_pause(s);
2764 } else {
2765 /*
2766 * For precopy (or postcopy with error outside IO), we fail
2767 * with no time.
2768 */
2769 migrate_set_state(&s->state, s->state, MIGRATION_STATUS_FAILED);
2770 trace_migration_thread_file_err();
2771
2772 /* Time to stop the migration, now. */
2773 return MIG_THR_ERR_FATAL;
2774 }
2775 }
2776
2777 /* How many bytes have we transferred since the beggining of the migration */
2778 static uint64_t migration_total_bytes(MigrationState *s)
2779 {
2780 return qemu_ftell(s->to_dst_file) + ram_counters.multifd_bytes;
2781 }
2782
2783 static void migration_calculate_complete(MigrationState *s)
2784 {
2785 uint64_t bytes = migration_total_bytes(s);
2786 int64_t end_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
2787 int64_t transfer_time;
2788
2789 s->total_time = end_time - s->start_time;
2790 if (!s->downtime) {
2791 /*
2792 * It's still not set, so we are precopy migration. For
2793 * postcopy, downtime is calculated during postcopy_start().
2794 */
2795 s->downtime = end_time - s->downtime_start;
2796 }
2797
2798 transfer_time = s->total_time - s->setup_time;
2799 if (transfer_time) {
2800 s->mbps = ((double) bytes * 8.0) / transfer_time / 1000;
2801 }
2802 }
2803
2804 static void migration_update_counters(MigrationState *s,
2805 int64_t current_time)
2806 {
2807 uint64_t transferred, time_spent;
2808 uint64_t current_bytes; /* bytes transferred since the beginning */
2809 double bandwidth;
2810
2811 if (current_time < s->iteration_start_time + BUFFER_DELAY) {
2812 return;
2813 }
2814
2815 current_bytes = migration_total_bytes(s);
2816 transferred = current_bytes - s->iteration_initial_bytes;
2817 time_spent = current_time - s->iteration_start_time;
2818 bandwidth = (double)transferred / time_spent;
2819 s->threshold_size = bandwidth * s->parameters.downtime_limit;
2820
2821 s->mbps = (((double) transferred * 8.0) /
2822 ((double) time_spent / 1000.0)) / 1000.0 / 1000.0;
2823
2824 /*
2825 * if we haven't sent anything, we don't want to
2826 * recalculate. 10000 is a small enough number for our purposes
2827 */
2828 if (ram_counters.dirty_pages_rate && transferred > 10000) {
2829 s->expected_downtime = ram_counters.remaining / bandwidth;
2830 }
2831
2832 qemu_file_reset_rate_limit(s->to_dst_file);
2833
2834 s->iteration_start_time = current_time;
2835 s->iteration_initial_bytes = current_bytes;
2836
2837 trace_migrate_transferred(transferred, time_spent,
2838 bandwidth, s->threshold_size);
2839 }
2840
2841 /* Migration thread iteration status */
2842 typedef enum {
2843 MIG_ITERATE_RESUME, /* Resume current iteration */
2844 MIG_ITERATE_SKIP, /* Skip current iteration */
2845 MIG_ITERATE_BREAK, /* Break the loop */
2846 } MigIterateState;
2847
2848 /*
2849 * Return true if continue to the next iteration directly, false
2850 * otherwise.
2851 */
2852 static MigIterateState migration_iteration_run(MigrationState *s)
2853 {
2854 uint64_t pending_size, pend_pre, pend_compat, pend_post;
2855 bool in_postcopy = s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE;
2856
2857 qemu_savevm_state_pending(s->to_dst_file, s->threshold_size, &pend_pre,
2858 &pend_compat, &pend_post);
2859 pending_size = pend_pre + pend_compat + pend_post;
2860
2861 trace_migrate_pending(pending_size, s->threshold_size,
2862 pend_pre, pend_compat, pend_post);
2863
2864 if (pending_size && pending_size >= s->threshold_size) {
2865 /* Still a significant amount to transfer */
2866 if (migrate_postcopy() && !in_postcopy &&
2867 pend_pre <= s->threshold_size &&
2868 atomic_read(&s->start_postcopy)) {
2869 if (postcopy_start(s)) {
2870 error_report("%s: postcopy failed to start", __func__);
2871 }
2872 return MIG_ITERATE_SKIP;
2873 }
2874 /* Just another iteration step */
2875 qemu_savevm_state_iterate(s->to_dst_file,
2876 s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE);
2877 } else {
2878 trace_migration_thread_low_pending(pending_size);
2879 migration_completion(s);
2880 return MIG_ITERATE_BREAK;
2881 }
2882
2883 return MIG_ITERATE_RESUME;
2884 }
2885
2886 static void migration_iteration_finish(MigrationState *s)
2887 {
2888 /* If we enabled cpu throttling for auto-converge, turn it off. */
2889 cpu_throttle_stop();
2890
2891 qemu_mutex_lock_iothread();
2892 switch (s->state) {
2893 case MIGRATION_STATUS_COMPLETED:
2894 migration_calculate_complete(s);
2895 runstate_set(RUN_STATE_POSTMIGRATE);
2896 break;
2897
2898 case MIGRATION_STATUS_ACTIVE:
2899 /*
2900 * We should really assert here, but since it's during
2901 * migration, let's try to reduce the usage of assertions.
2902 */
2903 if (!migrate_colo_enabled()) {
2904 error_report("%s: critical error: calling COLO code without "
2905 "COLO enabled", __func__);
2906 }
2907 migrate_start_colo_process(s);
2908 /*
2909 * Fixme: we will run VM in COLO no matter its old running state.
2910 * After exited COLO, we will keep running.
2911 */
2912 s->vm_was_running = true;
2913 /* Fallthrough */
2914 case MIGRATION_STATUS_FAILED:
2915 case MIGRATION_STATUS_CANCELLED:
2916 case MIGRATION_STATUS_CANCELLING:
2917 if (s->vm_was_running) {
2918 vm_start();
2919 } else {
2920 if (runstate_check(RUN_STATE_FINISH_MIGRATE)) {
2921 runstate_set(RUN_STATE_POSTMIGRATE);
2922 }
2923 }
2924 break;
2925
2926 default:
2927 /* Should not reach here, but if so, forgive the VM. */
2928 error_report("%s: Unknown ending state %d", __func__, s->state);
2929 break;
2930 }
2931 qemu_bh_schedule(s->cleanup_bh);
2932 qemu_mutex_unlock_iothread();
2933 }
2934
2935 void migration_make_urgent_request(void)
2936 {
2937 qemu_sem_post(&migrate_get_current()->rate_limit_sem);
2938 }
2939
2940 void migration_consume_urgent_request(void)
2941 {
2942 qemu_sem_wait(&migrate_get_current()->rate_limit_sem);
2943 }
2944
2945 /*
2946 * Master migration thread on the source VM.
2947 * It drives the migration and pumps the data down the outgoing channel.
2948 */
2949 static void *migration_thread(void *opaque)
2950 {
2951 MigrationState *s = opaque;
2952 int64_t setup_start = qemu_clock_get_ms(QEMU_CLOCK_HOST);
2953 MigThrError thr_error;
2954 bool urgent = false;
2955
2956 rcu_register_thread();
2957
2958 s->iteration_start_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
2959
2960 qemu_savevm_state_header(s->to_dst_file);
2961
2962 /*
2963 * If we opened the return path, we need to make sure dst has it
2964 * opened as well.
2965 */
2966 if (s->rp_state.from_dst_file) {
2967 /* Now tell the dest that it should open its end so it can reply */
2968 qemu_savevm_send_open_return_path(s->to_dst_file);
2969
2970 /* And do a ping that will make stuff easier to debug */
2971 qemu_savevm_send_ping(s->to_dst_file, 1);
2972 }
2973
2974 if (migrate_postcopy()) {
2975 /*
2976 * Tell the destination that we *might* want to do postcopy later;
2977 * if the other end can't do postcopy it should fail now, nice and
2978 * early.
2979 */
2980 qemu_savevm_send_postcopy_advise(s->to_dst_file);
2981 }
2982
2983 qemu_savevm_state_setup(s->to_dst_file);
2984
2985 s->setup_time = qemu_clock_get_ms(QEMU_CLOCK_HOST) - setup_start;
2986 migrate_set_state(&s->state, MIGRATION_STATUS_SETUP,
2987 MIGRATION_STATUS_ACTIVE);
2988
2989 trace_migration_thread_setup_complete();
2990
2991 while (s->state == MIGRATION_STATUS_ACTIVE ||
2992 s->state == MIGRATION_STATUS_POSTCOPY_ACTIVE) {
2993 int64_t current_time;
2994
2995 if (urgent || !qemu_file_rate_limit(s->to_dst_file)) {
2996 MigIterateState iter_state = migration_iteration_run(s);
2997 if (iter_state == MIG_ITERATE_SKIP) {
2998 continue;
2999 } else if (iter_state == MIG_ITERATE_BREAK) {
3000 break;
3001 }
3002 }
3003
3004 /*
3005 * Try to detect any kind of failures, and see whether we
3006 * should stop the migration now.
3007 */
3008 thr_error = migration_detect_error(s);
3009 if (thr_error == MIG_THR_ERR_FATAL) {
3010 /* Stop migration */
3011 break;
3012 } else if (thr_error == MIG_THR_ERR_RECOVERED) {
3013 /*
3014 * Just recovered from a e.g. network failure, reset all
3015 * the local variables. This is important to avoid
3016 * breaking transferred_bytes and bandwidth calculation
3017 */
3018 s->iteration_start_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
3019 s->iteration_initial_bytes = 0;
3020 }
3021
3022 current_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME);
3023
3024 migration_update_counters(s, current_time);
3025
3026 urgent = false;
3027 if (qemu_file_rate_limit(s->to_dst_file)) {
3028 /* Wait for a delay to do rate limiting OR
3029 * something urgent to post the semaphore.
3030 */
3031 int ms = s->iteration_start_time + BUFFER_DELAY - current_time;
3032 trace_migration_thread_ratelimit_pre(ms);
3033 if (qemu_sem_timedwait(&s->rate_limit_sem, ms) == 0) {
3034 /* We were worken by one or more urgent things but
3035 * the timedwait will have consumed one of them.
3036 * The service routine for the urgent wake will dec
3037 * the semaphore itself for each item it consumes,
3038 * so add this one we just eat back.
3039 */
3040 qemu_sem_post(&s->rate_limit_sem);
3041 urgent = true;
3042 }
3043 trace_migration_thread_ratelimit_post(urgent);
3044 }
3045 }
3046
3047 trace_migration_thread_after_loop();
3048 migration_iteration_finish(s);
3049 rcu_unregister_thread();
3050 return NULL;
3051 }
3052
3053 void migrate_fd_connect(MigrationState *s, Error *error_in)
3054 {
3055 int64_t rate_limit;
3056 bool resume = s->state == MIGRATION_STATUS_POSTCOPY_PAUSED;
3057
3058 s->expected_downtime = s->parameters.downtime_limit;
3059 s->cleanup_bh = qemu_bh_new(migrate_fd_cleanup, s);
3060 if (error_in) {
3061 migrate_fd_error(s, error_in);
3062 migrate_fd_cleanup(s);
3063 return;
3064 }
3065
3066 if (resume) {
3067 /* This is a resumed migration */
3068 rate_limit = INT64_MAX;
3069 } else {
3070 /* This is a fresh new migration */
3071 rate_limit = s->parameters.max_bandwidth / XFER_LIMIT_RATIO;
3072
3073 /* Notify before starting migration thread */
3074 notifier_list_notify(&migration_state_notifiers, s);
3075 }
3076
3077 qemu_file_set_rate_limit(s->to_dst_file, rate_limit);
3078 qemu_file_set_blocking(s->to_dst_file, true);
3079
3080 /*
3081 * Open the return path. For postcopy, it is used exclusively. For
3082 * precopy, only if user specified "return-path" capability would
3083 * QEMU uses the return path.
3084 */
3085 if (migrate_postcopy_ram() || migrate_use_return_path()) {
3086 if (open_return_path_on_source(s, !resume)) {
3087 error_report("Unable to open return-path for postcopy");
3088 migrate_set_state(&s->state, s->state, MIGRATION_STATUS_FAILED);
3089 migrate_fd_cleanup(s);
3090 return;
3091 }
3092 }
3093
3094 if (resume) {
3095 /* Wakeup the main migration thread to do the recovery */
3096 migrate_set_state(&s->state, MIGRATION_STATUS_POSTCOPY_PAUSED,
3097 MIGRATION_STATUS_POSTCOPY_RECOVER);
3098 qemu_sem_post(&s->postcopy_pause_sem);
3099 return;
3100 }
3101
3102 if (multifd_save_setup() != 0) {
3103 migrate_set_state(&s->state, MIGRATION_STATUS_SETUP,
3104 MIGRATION_STATUS_FAILED);
3105 migrate_fd_cleanup(s);
3106 return;
3107 }
3108 qemu_thread_create(&s->thread, "live_migration", migration_thread, s,
3109 QEMU_THREAD_JOINABLE);
3110 s->migration_thread_running = true;
3111 }
3112
3113 void migration_global_dump(Monitor *mon)
3114 {
3115 MigrationState *ms = migrate_get_current();
3116
3117 monitor_printf(mon, "globals:\n");
3118 monitor_printf(mon, "store-global-state: %s\n",
3119 ms->store_global_state ? "on" : "off");
3120 monitor_printf(mon, "only-migratable: %s\n",
3121 ms->only_migratable ? "on" : "off");
3122 monitor_printf(mon, "send-configuration: %s\n",
3123 ms->send_configuration ? "on" : "off");
3124 monitor_printf(mon, "send-section-footer: %s\n",
3125 ms->send_section_footer ? "on" : "off");
3126 monitor_printf(mon, "decompress-error-check: %s\n",
3127 ms->decompress_error_check ? "on" : "off");
3128 }
3129
3130 #define DEFINE_PROP_MIG_CAP(name, x) \
3131 DEFINE_PROP_BOOL(name, MigrationState, enabled_capabilities[x], false)
3132
3133 static Property migration_properties[] = {
3134 DEFINE_PROP_BOOL("store-global-state", MigrationState,
3135 store_global_state, true),
3136 DEFINE_PROP_BOOL("only-migratable", MigrationState, only_migratable, false),
3137 DEFINE_PROP_BOOL("send-configuration", MigrationState,
3138 send_configuration, true),
3139 DEFINE_PROP_BOOL("send-section-footer", MigrationState,
3140 send_section_footer, true),
3141 DEFINE_PROP_BOOL("decompress-error-check", MigrationState,
3142 decompress_error_check, true),
3143
3144 /* Migration parameters */
3145 DEFINE_PROP_UINT8("x-compress-level", MigrationState,
3146 parameters.compress_level,
3147 DEFAULT_MIGRATE_COMPRESS_LEVEL),
3148 DEFINE_PROP_UINT8("x-compress-threads", MigrationState,
3149 parameters.compress_threads,
3150 DEFAULT_MIGRATE_COMPRESS_THREAD_COUNT),
3151 DEFINE_PROP_UINT8("x-decompress-threads", MigrationState,
3152 parameters.decompress_threads,
3153 DEFAULT_MIGRATE_DECOMPRESS_THREAD_COUNT),
3154 DEFINE_PROP_UINT8("x-cpu-throttle-initial", MigrationState,
3155 parameters.cpu_throttle_initial,
3156 DEFAULT_MIGRATE_CPU_THROTTLE_INITIAL),
3157 DEFINE_PROP_UINT8("x-cpu-throttle-increment", MigrationState,
3158 parameters.cpu_throttle_increment,
3159 DEFAULT_MIGRATE_CPU_THROTTLE_INCREMENT),
3160 DEFINE_PROP_SIZE("x-max-bandwidth", MigrationState,
3161 parameters.max_bandwidth, MAX_THROTTLE),
3162 DEFINE_PROP_UINT64("x-downtime-limit", MigrationState,
3163 parameters.downtime_limit,
3164 DEFAULT_MIGRATE_SET_DOWNTIME),
3165 DEFINE_PROP_UINT32("x-checkpoint-delay", MigrationState,
3166 parameters.x_checkpoint_delay,
3167 DEFAULT_MIGRATE_X_CHECKPOINT_DELAY),
3168 DEFINE_PROP_UINT8("x-multifd-channels", MigrationState,
3169 parameters.x_multifd_channels,
3170 DEFAULT_MIGRATE_MULTIFD_CHANNELS),
3171 DEFINE_PROP_UINT32("x-multifd-page-count", MigrationState,
3172 parameters.x_multifd_page_count,
3173 DEFAULT_MIGRATE_MULTIFD_PAGE_COUNT),
3174 DEFINE_PROP_SIZE("xbzrle-cache-size", MigrationState,
3175 parameters.xbzrle_cache_size,
3176 DEFAULT_MIGRATE_XBZRLE_CACHE_SIZE),
3177 DEFINE_PROP_SIZE("max-postcopy-bandwidth", MigrationState,
3178 parameters.max_postcopy_bandwidth,
3179 DEFAULT_MIGRATE_MAX_POSTCOPY_BANDWIDTH),
3180 DEFINE_PROP_UINT8("max-cpu-throttle", MigrationState,
3181 parameters.max_cpu_throttle,
3182 DEFAULT_MIGRATE_MAX_CPU_THROTTLE),
3183
3184 /* Migration capabilities */
3185 DEFINE_PROP_MIG_CAP("x-xbzrle", MIGRATION_CAPABILITY_XBZRLE),
3186 DEFINE_PROP_MIG_CAP("x-rdma-pin-all", MIGRATION_CAPABILITY_RDMA_PIN_ALL),
3187 DEFINE_PROP_MIG_CAP("x-auto-converge", MIGRATION_CAPABILITY_AUTO_CONVERGE),
3188 DEFINE_PROP_MIG_CAP("x-zero-blocks", MIGRATION_CAPABILITY_ZERO_BLOCKS),
3189 DEFINE_PROP_MIG_CAP("x-compress", MIGRATION_CAPABILITY_COMPRESS),
3190 DEFINE_PROP_MIG_CAP("x-events", MIGRATION_CAPABILITY_EVENTS),
3191 DEFINE_PROP_MIG_CAP("x-postcopy-ram", MIGRATION_CAPABILITY_POSTCOPY_RAM),
3192 DEFINE_PROP_MIG_CAP("x-colo", MIGRATION_CAPABILITY_X_COLO),
3193 DEFINE_PROP_MIG_CAP("x-release-ram", MIGRATION_CAPABILITY_RELEASE_RAM),
3194 DEFINE_PROP_MIG_CAP("x-block", MIGRATION_CAPABILITY_BLOCK),
3195 DEFINE_PROP_MIG_CAP("x-return-path", MIGRATION_CAPABILITY_RETURN_PATH),
3196 DEFINE_PROP_MIG_CAP("x-multifd", MIGRATION_CAPABILITY_X_MULTIFD),
3197
3198 DEFINE_PROP_END_OF_LIST(),
3199 };
3200
3201 static void migration_class_init(ObjectClass *klass, void *data)
3202 {
3203 DeviceClass *dc = DEVICE_CLASS(klass);
3204
3205 dc->user_creatable = false;
3206 dc->props = migration_properties;
3207 }
3208
3209 static void migration_instance_finalize(Object *obj)
3210 {
3211 MigrationState *ms = MIGRATION_OBJ(obj);
3212 MigrationParameters *params = &ms->parameters;
3213
3214 qemu_mutex_destroy(&ms->error_mutex);
3215 qemu_mutex_destroy(&ms->qemu_file_lock);
3216 g_free(params->tls_hostname);
3217 g_free(params->tls_creds);
3218 qemu_sem_destroy(&ms->rate_limit_sem);
3219 qemu_sem_destroy(&ms->pause_sem);
3220 qemu_sem_destroy(&ms->postcopy_pause_sem);
3221 qemu_sem_destroy(&ms->postcopy_pause_rp_sem);
3222 qemu_sem_destroy(&ms->rp_state.rp_sem);
3223 error_free(ms->error);
3224 }
3225
3226 static void migration_instance_init(Object *obj)
3227 {
3228 MigrationState *ms = MIGRATION_OBJ(obj);
3229 MigrationParameters *params = &ms->parameters;
3230
3231 ms->state = MIGRATION_STATUS_NONE;
3232 ms->mbps = -1;
3233 qemu_sem_init(&ms->pause_sem, 0);
3234 qemu_mutex_init(&ms->error_mutex);
3235
3236 params->tls_hostname = g_strdup("");
3237 params->tls_creds = g_strdup("");
3238
3239 /* Set has_* up only for parameter checks */
3240 params->has_compress_level = true;
3241 params->has_compress_threads = true;
3242 params->has_decompress_threads = true;
3243 params->has_cpu_throttle_initial = true;
3244 params->has_cpu_throttle_increment = true;
3245 params->has_max_bandwidth = true;
3246 params->has_downtime_limit = true;
3247 params->has_x_checkpoint_delay = true;
3248 params->has_block_incremental = true;
3249 params->has_x_multifd_channels = true;
3250 params->has_x_multifd_page_count = true;
3251 params->has_xbzrle_cache_size = true;
3252 params->has_max_postcopy_bandwidth = true;
3253 params->has_max_cpu_throttle = true;
3254
3255 qemu_sem_init(&ms->postcopy_pause_sem, 0);
3256 qemu_sem_init(&ms->postcopy_pause_rp_sem, 0);
3257 qemu_sem_init(&ms->rp_state.rp_sem, 0);
3258 qemu_sem_init(&ms->rate_limit_sem, 0);
3259 qemu_mutex_init(&ms->qemu_file_lock);
3260 }
3261
3262 /*
3263 * Return true if check pass, false otherwise. Error will be put
3264 * inside errp if provided.
3265 */
3266 static bool migration_object_check(MigrationState *ms, Error **errp)
3267 {
3268 MigrationCapabilityStatusList *head = NULL;
3269 /* Assuming all off */
3270 bool cap_list[MIGRATION_CAPABILITY__MAX] = { 0 }, ret;
3271 int i;
3272
3273 if (!migrate_params_check(&ms->parameters, errp)) {
3274 return false;
3275 }
3276
3277 for (i = 0; i < MIGRATION_CAPABILITY__MAX; i++) {
3278 if (ms->enabled_capabilities[i]) {
3279 head = migrate_cap_add(head, i, true);
3280 }
3281 }
3282
3283 ret = migrate_caps_check(cap_list, head, errp);
3284
3285 /* It works with head == NULL */
3286 qapi_free_MigrationCapabilityStatusList(head);
3287
3288 return ret;
3289 }
3290
3291 static const TypeInfo migration_type = {
3292 .name = TYPE_MIGRATION,
3293 /*
3294 * NOTE: TYPE_MIGRATION is not really a device, as the object is
3295 * not created using qdev_create(), it is not attached to the qdev
3296 * device tree, and it is never realized.
3297 *
3298 * TODO: Make this TYPE_OBJECT once QOM provides something like
3299 * TYPE_DEVICE's "-global" properties.
3300 */
3301 .parent = TYPE_DEVICE,
3302 .class_init = migration_class_init,
3303 .class_size = sizeof(MigrationClass),
3304 .instance_size = sizeof(MigrationState),
3305 .instance_init = migration_instance_init,
3306 .instance_finalize = migration_instance_finalize,
3307 };
3308
3309 static void register_migration_types(void)
3310 {
3311 type_register_static(&migration_type);
3312 }
3313
3314 type_init(register_migration_types);
Mirror of https://git.qemu.org/git/qemu.git