| blob | 16ade7cb70b01be0531e6dd13e46ccc0034f3c1b |
1 /*
2 * QEMU System Emulator
3 *
4 * Copyright (c) 2003-2008 Fabrice Bellard
5 * Copyright (c) 2011-2015 Red Hat Inc
6 *
7 * Authors:
8 * Juan Quintela <quintela@redhat.com>
9 *
10 * Permission is hereby granted, free of charge, to any person obtaining a copy
11 * of this software and associated documentation files (the "Software"), to deal
12 * in the Software without restriction, including without limitation the rights
13 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
14 * copies of the Software, and to permit persons to whom the Software is
15 * furnished to do so, subject to the following conditions:
16 *
17 * The above copyright notice and this permission notice shall be included in
18 * all copies or substantial portions of the Software.
19 *
20 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
21 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
23 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
24 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
25 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 * THE SOFTWARE.
27 */
63 #if defined(__linux__)
67 /***********************************************************/
68 /* ram save/restore */
70 /* RAM_SAVE_FLAG_ZERO used to be named RAM_SAVE_FLAG_COMPRESS, it
71 * worked for pages that where filled with the same char. We switched
72 * it to only search for the zero value. And to avoid confusion with
73 * RAM_SSAVE_FLAG_COMPRESS_PAGE just rename it.
74 */
77 #define RAM_SAVE_FLAG_ZERO 0x02
78 #define RAM_SAVE_FLAG_MEM_SIZE 0x04
79 #define RAM_SAVE_FLAG_PAGE 0x08
80 #define RAM_SAVE_FLAG_EOS 0x10
81 #define RAM_SAVE_FLAG_CONTINUE 0x20
82 #define RAM_SAVE_FLAG_XBZRLE 0x40
83 /* 0x80 is reserved in migration.h start with 0x100 next */
84 #define RAM_SAVE_FLAG_COMPRESS_PAGE 0x100
86 XBZRLECacheStats xbzrle_counters;
88 /* used by the search for pages to send */
90 /* The migration channel used for a specific host page */
92 /* Last block from where we have sent data */
94 /* Current block being searched */
96 /* Current page to search from */
98 /* Set once we wrap around */
100 /*
101 * [POSTCOPY-ONLY] Whether current page is explicitly requested by
102 * postcopy. When set, the request is "urgent" because the dest QEMU
103 * threads are waiting for us.
104 */
106 /*
107 * [POSTCOPY-ONLY] The target channel to use to send current page.
108 *
109 * Note: This may _not_ match with the value in postcopy_requested
110 * above. Let's imagine the case where the postcopy request is exactly
111 * the page that we're sending in progress during precopy. In this case
112 * we'll have postcopy_requested set to true but the target channel
113 * will be the precopy channel (so that we don't split brain on that
114 * specific page since the precopy channel already contains partial of
115 * that page data).
116 *
117 * Besides that specific use case, postcopy_target_channel should
118 * always be equal to postcopy_requested, because by default we send
119 * postcopy pages via postcopy preempt channel.
120 */
122 /* Whether we're sending a host page */
124 /* The start/end of current host page. Invalid if host_page_sending==false */
127 };
130 /* struct contains XBZRLE cache and a static page
131 used by the compression */
133 /* buffer used for XBZRLE encoding */
135 /* buffer for storing page content */
137 /* Cache for XBZRLE, Protected by lock. */
139 QemuMutex lock;
140 /* it will store a page full of zeros */
142 /* buffer used for XBZRLE decoding */
147 {
150 }
151 }
154 {
157 }
158 }
160 /**
161 * xbzrle_cache_resize: resize the xbzrle cache
162 *
163 * This function is called from migrate_params_apply in main
164 * thread, possibly while a migration is in progress. A running
165 * migration may be using the cache and might finish during this call,
166 * hence changes to the cache are protected by XBZRLE.lock().
167 *
168 * Returns 0 for success or -1 for error
169 *
170 * @new_size: new cache size
171 * @errp: set *errp if the check failed, with reason
172 */
174 {
178 /* Check for truncation */
183 }
186 /* nothing to do */
188 }
197 }
201 }
202 out:
205 }
208 {
210 }
213 {
216 }
218 #undef RAMBLOCK_FOREACH
221 {
231 }
232 }
234 }
237 {
243 }
244 }
247 {
250 }
253 {
255 }
258 {
260 }
264 {
267 nr);
268 }
270 #define RAMBLOCK_RECV_BITMAP_ENDING (0x0123456789abcdefULL)
272 /*
273 * Format: bitmap_size (8 bytes) + whole_bitmap (N bytes).
274 *
275 * Returns >0 if success with sent bytes, or <0 if error.
276 */
279 {
287 }
291 /*
292 * Make sure the tmp bitmap buffer is big enough, e.g., on 32bit
293 * machines we may need 4 more bytes for padding (see below
294 * comment). So extend it a bit before hand.
295 */
298 /*
299 * Always use little endian when sending the bitmap. This is
300 * required that when source and destination VMs are not using the
301 * same endianness. (Note: big endian won't work.)
302 */
305 /* Size of the bitmap, in bytes */
308 /*
309 * size is always aligned to 8 bytes for 64bit machines, but it
310 * may not be true for 32bit machines. We need this padding to
311 * make sure the migration can survive even between 32bit and
312 * 64bit machines.
313 */
318 /*
319 * Mark as an end, in case the middle part is screwed up due to
320 * some "mysterious" reason.
321 */
329 }
332 }
334 /*
335 * An outstanding page request, on the source, having been received
336 * and queued
337 */
340 hwaddr offset;
341 hwaddr len;
344 };
347 /*
348 * Cached ramblock/offset values if preempted. They're only meaningful if
349 * preempted==true below.
350 */
353 /*
354 * Whether a postcopy preemption just happened. Will be reset after
355 * precopy recovered to background migration.
356 */
360 /* State of RAM for migration */
362 /* QEMUFile used for this migration */
364 /*
365 * PageSearchStatus structures for the channels when send pages.
366 * Protected by the bitmap_mutex.
367 */
369 /* UFFD file descriptor, used in 'write-tracking' migration */
371 /* Last block that we have visited searching for dirty pages */
373 /* Last dirty target page we have sent */
374 ram_addr_t last_page;
375 /* last ram version we have seen */
377 /* How many times we have dirty too many pages */
379 /* these variables are used for bitmap sync */
380 /* last time we did a full bitmap_sync */
382 /* bytes transferred at start_time */
384 /* number of dirty pages since start_time */
386 /* xbzrle misses since the beginning of the period */
388 /* Amount of xbzrle pages since the beginning of the period */
390 /* Amount of xbzrle encoded bytes since the beginning of the period */
392 /* Start using XBZRLE (e.g., after the first round). */
394 /* Are we on the last stage of migration */
396 /* compression statistics since the beginning of the period */
397 /* amount of count that no free thread to compress data */
399 /* amount bytes after compression */
401 /* amount of compressed pages */
404 /* total handled target pages at the beginning of period */
406 /* total handled target pages since start */
408 /* number of dirty bits in the bitmap */
410 /*
411 * Protects:
412 * - dirty/clear bitmap
413 * - migration_dirty_pages
414 * - pss structures
415 */
416 QemuMutex bitmap_mutex;
417 /* The RAMBlock used in the last src_page_requests */
419 /* Queue of outstanding page requests from the destination */
420 QemuMutex src_page_req_mutex;
423 /* Postcopy preemption informations */
424 PostcopyPreemptState postcopy_preempt_state;
425 /*
426 * Current channel we're using on src VM. Only valid if postcopy-preempt
427 * is enabled.
428 */
430 };
438 {
440 }
442 /* Whether postcopy has queued requests? */
444 {
446 }
449 {
451 }
454 {
456 }
459 {
461 }
464 {
465 PrecopyNotifyData pnd;
470 }
473 {
476 }
478 /*
479 * NOTE: not all stats in ram_counters are used in reality. See comments
480 * for struct MigrationAtomicStats. The ultimate result of ram migration
481 * counters will be a merged version with both ram_counters and the atomic
482 * fields in ram_atomic_counters.
483 */
484 MigrationStats ram_counters;
485 MigrationAtomicStats ram_atomic_counters;
488 {
495 }
497 }
500 {
502 }
504 CompressionStats compression_counters;
511 QemuMutex mutex;
512 QemuCond cond;
514 ram_addr_t offset;
516 /* internally used fields */
517 z_stream stream;
519 };
525 QemuMutex mutex;
526 QemuCond cond;
530 z_stream stream;
531 };
536 /* comp_done_cond is used to wake up the migration thread when
537 * one of the compression threads has finished the compression.
538 * comp_done_lock is used to co-work with comp_done_cond.
539 */
557 /* NOTE: page is the PFN not real ram_addr_t. */
559 {
563 }
565 /*
566 * Check whether two PSSs are actively sending the same page. Return true
567 * if it is, false otherwise.
568 */
570 {
573 }
576 {
579 ram_addr_t offset;
602 }
603 }
607 }
610 {
615 }
619 /*
620 * we use it as a indicator which shows if the thread is
621 * properly init'd or not
622 */
625 }
639 }
646 }
649 {
654 }
664 }
670 }
672 /* comp_param[i].file is just used as a dummy buffer to save data,
673 * set its ops to empty.
674 */
683 QEMU_THREAD_JOINABLE);
684 }
687 exit:
690 }
692 /**
693 * save_page_header: write page header to wire
694 *
695 * If this is the 1st block, it also writes the block identification
696 *
697 * Returns the number of bytes written
698 *
699 * @pss: current PSS channel status
700 * @block: block that contains the page we want to send
701 * @offset: offset inside the block for the page
702 * in the lower bits, it contains flags
703 */
705 ram_addr_t offset)
706 {
713 }
723 }
725 }
727 /**
728 * mig_throttle_guest_down: throttle down the guest
729 *
730 * Reduce amount of guest cpu execution to hopefully slow down memory
731 * writes. If guest dirty memory rate is reduced below the rate at
732 * which we can transfer pages to the destination then we should be
733 * able to complete migration. Some workloads dirty memory way too
734 * fast and will not effectively converge, even with auto-converge.
735 */
738 {
748 /* We have not started throttling yet. Let's start it. */
752 /* Throttling already on, just increase the rate */
756 /* Compute the ideal CPU percentage used by Guest, which may
757 * make the dirty rate match the dirty rate threshold. */
760 bytes_dirty_period);
762 }
764 }
765 }
768 {
774 }
776 /**
777 * xbzrle_cache_zero_page: insert a zero page in the XBZRLE cache
778 *
779 * @rs: current RAM state
780 * @current_addr: address for the zero page
781 *
782 * Update the xbzrle cache to reflect a page that's been sent as all 0.
783 * The important thing is that a stale (not-yet-0'd) page be replaced
784 * by the new data.
785 * As a bonus, if the page wasn't in the cache it gets added so that
786 * when a small write is made into the 0'd page it gets XBZRLE sent.
787 */
789 {
790 /* We don't care if this fails to allocate a new cache page
791 * as long as it updated an old one */
794 }
796 #define ENCODING_FLAG_XBZRLE 0x1
798 /**
799 * save_xbzrle_page: compress and send current page
800 *
801 * Returns: 1 means that we wrote the page
802 * 0 means that page is identical to the one already sent
803 * -1 means that xbzrle would be longer than normal
804 *
805 * @rs: current RAM state
806 * @pss: current PSS channel
807 * @current_data: pointer to the address of the page contents
808 * @current_addr: addr of the page
809 * @block: block that contains the page we want to send
810 * @offset: offset inside the block for the page
811 */
815 {
828 /* update *current_data when the page has been
829 inserted into cache */
831 }
832 }
834 }
836 /*
837 * Reaching here means the page has hit the xbzrle cache, no matter what
838 * encoding result it is (normal encoding, overflow or skipping the page),
839 * count the page as encoded. This is used to calculate the encoding rate.
840 *
841 * Example: 2 pages (8KB) being encoded, first page encoding generates 2KB,
842 * 2nd page turns out to be skipped (i.e. no new bytes written to the
843 * page), the overall encoding rate will be 8KB / 2KB = 4, which has the
844 * skipped page included. In this way, the encoding rate can tell if the
845 * guest page is good for xbzrle encoding.
846 */
850 /* save current buffer into memory */
853 /* XBZRLE encoding (if there is no overflow) */
856 TARGET_PAGE_SIZE);
858 /*
859 * Update the cache contents, so that it corresponds to the data
860 * sent, in all cases except where we skip the page.
861 */
864 /*
865 * In the case where we couldn't compress, ensure that the caller
866 * sends the data from the cache, since the guest might have
867 * changed the RAM since we copied it.
868 */
870 }
880 }
882 /* Send XBZRLE based compressed page */
889 /*
890 * Like compressed_size (please see update_compress_thread_counts),
891 * the xbzrle encoded bytes don't count the 8 byte header with
892 * RAM_SAVE_FLAG_CONTINUE.
893 */
898 }
900 /**
901 * pss_find_next_dirty: find the next dirty page of current ramblock
902 *
903 * This function updates pss->page to point to the next dirty page index
904 * within the ramblock to migrate, or the end of ramblock when nothing
905 * found. Note that when pss->host_page_sending==true it means we're
906 * during sending a host page, so we won't look for dirty page that is
907 * outside the host page boundary.
908 *
909 * @pss: the current page search status
910 */
912 {
918 /* Points directly to the end, so we know no dirty page */
921 }
923 /*
924 * If during sending a host page, only look for dirty pages within the
925 * current host page being send.
926 */
930 }
933 }
937 {
943 }
946 /*
947 * CLEAR_BITMAP_SHIFT_MIN should always guarantee this... this
948 * can make things easier sometimes since then start address
949 * of the small chunk will always be 64 pages aligned so the
950 * bitmap will always be aligned to unsigned long. We should
951 * even be able to remove this restriction but I'm simply
952 * keeping it.
953 */
960 }
962 static void
966 {
971 /*
972 * Clear pages from start to start + npages - 1, so the end boundary is
973 * exclusive.
974 */
977 }
978 }
980 /*
981 * colo_bitmap_find_diry:find contiguous dirty pages from start
982 *
983 * Returns the page offset within memory region of the start of the contiguout
984 * dirty page
985 *
986 * @rs: current RAM state
987 * @rb: RAMBlock where to search for dirty pages
988 * @start: page where we start the search
989 * @num: the number of contiguous dirty pages
990 */
994 {
1003 }
1008 }
1013 }
1018 {
1021 /*
1022 * Clear dirty bitmap if needed. This _must_ be called before we
1023 * send any of the page in the chunk because we need to make sure
1024 * we can capture further page content changes when we sync dirty
1025 * log the next time. So as long as we are going to send any of
1026 * the page in the chunk we clear the remote dirty bitmap for all.
1027 * Clearing it earlier won't be a problem, but too late will.
1028 */
1034 }
1037 }
1041 {
1049 /*
1050 * We don't grab ram_state->bitmap_mutex because we expect to run
1051 * only when starting migration or during postcopy recovery where
1052 * we don't have concurrent access.
1053 */
1056 }
1059 }
1061 /*
1062 * Exclude all dirty pages from migration that fall into a discarded range as
1063 * managed by a RamDiscardManager responsible for the mapped memory region of
1064 * the RAMBlock. Clear the corresponding bits in the dirty bitmaps.
1065 *
1066 * Discarded pages ("logically unplugged") have undefined content and must
1067 * not get migrated, because even reading these pages for migration might
1068 * result in undesired behavior.
1069 *
1070 * Returns the number of cleared bits in the RAMBlock dirty bitmap.
1071 *
1072 * Note: The result is only stable while migrating (precopy/postcopy).
1073 */
1075 {
1080 MemoryRegionSection section = {
1084 };
1087 dirty_bitmap_clear_section,
1089 }
1091 }
1093 /*
1094 * Check if a host-page aligned page falls into a discarded range as managed by
1095 * a RamDiscardManager responsible for the mapped memory region of the RAMBlock.
1096 *
1097 * Note: The result is only stable while migrating (precopy/postcopy).
1098 */
1100 {
1103 MemoryRegionSection section = {
1107 };
1110 }
1112 }
1114 /* Called with RCU critical section */
1116 {
1122 }
1124 /**
1125 * ram_pagesize_summary: calculate all the pagesizes of a VM
1126 *
1127 * Returns a summary bitmap of the page sizes of all RAMBlocks
1128 *
1129 * For VMs with just normal pages this is equivalent to the host page
1130 * size. If it's got some huge pages then it's the OR of all the
1131 * different page sizes.
1132 */
1134 {
1140 }
1143 }
1146 {
1150 }
1153 {
1157 /* calculate period counters */
1163 }
1172 TARGET_PAGE_SIZE;
1178 }
1181 }
1194 /* Compression-Ratio = Uncompressed-size / Compressed-size */
1200 }
1201 }
1202 }
1205 {
1213 /* During block migration the auto-converge logic incorrectly detects
1214 * that ram migration makes no progress. Avoid this by disabling the
1215 * throttling logic during the bulk phase of block migration. */
1217 /* The following detection logic can be refined later. For now:
1218 Check to see if the ratio between dirtied bytes and the approx.
1219 amount of bytes that just got transferred since the last time
1220 we were in this routine reaches the threshold. If that happens
1221 twice, start or increase throttling. */
1228 bytes_dirty_threshold);
1229 }
1230 }
1231 }
1234 {
1242 }
1251 }
1253 }
1261 /* more than 1 second = 1000 millisecons */
1269 /* reset period counters */
1273 }
1276 }
1277 }
1280 {
1283 /*
1284 * The current notifier usage is just an optimization to migration, so we
1285 * don't stop the normal migration process in the error case.
1286 */
1290 }
1296 }
1297 }
1300 {
1303 }
1306 }
1308 /**
1309 * save_zero_page_to_file: send the zero page to the file
1310 *
1311 * Returns the size of data written to the file, 0 means the page is not
1312 * a zero page
1313 *
1314 * @pss: current PSS channel
1315 * @block: block that contains the page we want to send
1316 * @offset: offset inside the block for the page
1317 */
1320 {
1330 }
1332 }
1334 /**
1335 * save_zero_page: send the zero page to the stream
1336 *
1337 * Returns the number of pages written.
1338 *
1339 * @pss: current PSS channel
1340 * @block: block that contains the page we want to send
1341 * @offset: offset inside the block for the page
1342 */
1344 ram_addr_t offset)
1345 {
1352 }
1354 }
1356 /*
1357 * @pages: the number of pages written by the control path,
1358 * < 0 - error
1359 * > 0 - number of pages written
1360 *
1361 * Return true if the pages has been saved, otherwise false is returned.
1362 */
1365 {
1374 }
1379 }
1383 }
1389 }
1392 }
1394 /*
1395 * directly send the page to the stream
1396 *
1397 * Returns the number of pages written.
1398 *
1399 * @pss: current PSS channel
1400 * @block: block that contains the page we want to send
1401 * @offset: offset inside the block for the page
1402 * @buf: the page to be sent
1403 * @async: send to page asyncly
1404 */
1407 {
1418 }
1422 }
1424 /**
1425 * ram_save_page: send the given page to the stream
1426 *
1427 * Returns the number of pages written.
1428 * < 0 - error
1429 * >=0 - Number of pages written - this might legally be 0
1430 * if xbzrle noticed the page was the same.
1431 *
1432 * @rs: current RAM state
1433 * @block: block that contains the page we want to send
1434 * @offset: offset inside the block for the page
1435 */
1437 {
1453 /* Can't send this cached data async, since the cache page
1454 * might get updated before it gets to the wire
1455 */
1457 }
1458 }
1460 /* XBZRLE overflow or normal page */
1463 }
1468 }
1471 ram_addr_t offset)
1472 {
1475 }
1479 }
1483 {
1491 }
1495 /*
1496 * copy it to a internal buffer to avoid it being modified by VM
1497 * so that we can catch up the error during compression and
1498 * decompression
1499 */
1505 }
1507 }
1509 static void
1511 {
1517 }
1519 /* 8 means a header with RAM_SAVE_FLAG_CONTINUE. */
1522 }
1527 {
1533 }
1540 }
1541 }
1548 /*
1549 * it's safe to fetch zero_page without holding comp_done_lock
1550 * as there is no further request submitted to the thread,
1551 * i.e, the thread should be waiting for a request at this point.
1552 */
1554 }
1556 }
1557 }
1560 ram_addr_t offset)
1561 {
1564 }
1567 {
1574 retry:
1587 }
1588 }
1590 /*
1591 * wait for the free thread if the user specifies 'compress-wait-thread',
1592 * otherwise we will post the page out in the main thread as normal page.
1593 */
1597 }
1601 }
1603 /**
1604 * find_dirty_block: find the next dirty page and update any state
1605 * associated with the search process.
1606 *
1607 * Returns true if a page is found
1608 *
1609 * @rs: current RAM state
1610 * @pss: data about the state of the current dirty page scan
1611 * @again: set to false if the search has scanned the whole of RAM
1612 */
1614 {
1615 /*
1616 * This is not a postcopy requested page, mark it "not urgent", and use
1617 * precopy channel to send it.
1618 */
1622 /* Update pss->page for the next dirty bit in ramblock */
1627 /*
1628 * We've been once around the RAM and haven't found anything.
1629 * Give up.
1630 */
1633 }
1636 /* Didn't find anything in this RAM Block */
1640 /*
1641 * If memory migration starts over, we will meet a dirtied page
1642 * which may still exists in compression threads's ring, so we
1643 * should flush the compressed data to make sure the new page
1644 * is not overwritten by the old one in the destination.
1645 *
1646 * Also If xbzrle is on, stop using the data compression at this
1647 * point. In theory, xbzrle can do better than compression.
1648 */
1651 /* Hit the end of the list */
1653 /* Flag that we've looped */
1655 /* After the first round, enable XBZRLE. */
1658 }
1659 }
1660 /* Didn't find anything this time, but try again on the new block */
1664 /* Can go around again, but... */
1666 /* We've found something so probably don't need to */
1668 }
1669 }
1671 /**
1672 * unqueue_page: gets a page of the queue
1673 *
1674 * Helper for 'get_queued_page' - gets a page off the queue
1675 *
1676 * Returns the block of the page (or NULL if none available)
1677 *
1678 * @rs: current RAM state
1679 * @offset: used to return the offset within the RAMBlock
1680 */
1682 {
1688 }
1692 /*
1693 * This should _never_ change even after we take the lock, because no one
1694 * should be taking anything off the request list other than us.
1695 */
1710 }
1713 }
1715 #if defined(__linux__)
1716 /**
1717 * poll_fault_page: try to get next UFFD write fault page and, if pending fault
1718 * is found, return RAM block pointer and page offset
1719 *
1720 * Returns pointer to the RAMBlock containing faulting page,
1721 * NULL if no write faults are pending
1722 *
1723 * @rs: current RAM state
1724 * @offset: page offset from the beginning of the block
1725 */
1727 {
1735 }
1740 }
1746 }
1748 /**
1749 * ram_save_release_protection: release UFFD write protection after
1750 * a range of pages has been saved
1751 *
1752 * @rs: current RAM state
1753 * @pss: page-search-status structure
1754 * @start_page: index of the first page in the range relative to pss->block
1755 *
1756 * Returns 0 on success, negative value in case of an error
1757 */
1760 {
1763 /* Check if page is from UFFD-managed region. */
1768 /* Flush async buffers before un-protect. */
1770 /* Un-protect memory range. */
1773 }
1776 }
1778 /* ram_write_tracking_available: check if kernel supports required UFFD features
1779 *
1780 * Returns true if supports, false otherwise
1781 */
1783 {
1790 }
1792 /* ram_write_tracking_compatible: check if guest configuration is
1793 * compatible with 'write-tracking'
1794 *
1795 * Returns true if compatible, false otherwise
1796 */
1798 {
1804 /* Open UFFD file descriptor */
1808 }
1815 /* Nothing to do with read-only and MMIO-writable regions */
1818 }
1819 /* Try to register block memory via UFFD-IO to track writes */
1823 }
1826 }
1827 }
1830 out:
1833 }
1836 ram_addr_t size)
1837 {
1838 /*
1839 * We read one byte of each page; this will preallocate page tables if
1840 * required and populate the shared zeropage on MAP_PRIVATE anonymous memory
1841 * where no page was populated yet. This might require adaption when
1842 * supporting other mappings, like shmem.
1843 */
1847 /* Don't optimize the read out */
1849 }
1850 }
1854 {
1861 }
1863 /*
1864 * ram_block_populate_read: preallocate page tables and populate pages in the
1865 * RAM block by reading a byte of each page.
1866 *
1867 * Since it's solely used for userfault_fd WP feature, here we just
1868 * hardcode page size to qemu_real_host_page_size.
1869 *
1870 * @block: RAM block to populate
1871 */
1873 {
1874 /*
1875 * Skip populating all pages that fall into a discarded range as managed by
1876 * a RamDiscardManager responsible for the mapped memory region of the
1877 * RAMBlock. Such discarded ("logically unplugged") parts of a RAMBlock
1878 * must not get populated automatically. We don't have to track
1879 * modifications via userfaultfd WP reliably, because these pages will
1880 * not be part of the migration stream either way -- see
1881 * ramblock_dirty_bitmap_exclude_discarded_pages().
1882 *
1883 * Note: The result is only stable while migrating (precopy/postcopy).
1884 */
1887 MemoryRegionSection section = {
1891 };
1897 }
1898 }
1900 /*
1901 * ram_write_tracking_prepare: prepare for UFFD-WP memory tracking
1902 */
1904 {
1910 /* Nothing to do with read-only and MMIO-writable regions */
1913 }
1915 /*
1916 * Populate pages of the RAM block before enabling userfault_fd
1917 * write protection.
1918 *
1919 * This stage is required since ioctl(UFFDIO_WRITEPROTECT) with
1920 * UFFDIO_WRITEPROTECT_MODE_WP mode setting would silently skip
1921 * pages with pte_none() entries in page table.
1922 */
1924 }
1925 }
1927 /*
1928 * ram_write_tracking_start: start UFFD-WP memory tracking
1929 *
1930 * Returns 0 for success or negative value in case of error
1931 */
1933 {
1938 /* Open UFFD file descriptor */
1942 }
1948 /* Nothing to do with read-only and MMIO-writable regions */
1951 }
1953 /* Register block memory with UFFD to track writes */
1957 }
1958 /* Apply UFFD write protection to the block memory range */
1962 }
1968 }
1972 fail:
1978 }
1979 /*
1980 * In case some memory block failed to be write-protected
1981 * remove protection and unregister all succeeded RAM blocks
1982 */
1986 /* Cleanup flags and remove reference */
1989 }
1994 }
1996 /**
1997 * ram_write_tracking_stop: stop UFFD-WP memory tracking and remove protection
1998 */
2000 {
2009 }
2010 /* Remove protection and unregister all affected RAM blocks */
2018 /* Cleanup flags and remove reference */
2021 }
2023 /* Finally close UFFD file descriptor */
2026 }
2028 #else
2029 /* No target OS support, stubs just fail or ignore */
2032 {
2037 }
2041 {
2047 }
2050 {
2052 }
2055 {
2058 }
2061 {
2064 }
2067 {
2069 }
2072 /*
2073 * Check whether two addr/offset of the ramblock falls onto the same host huge
2074 * page. Returns true if so, false otherwise.
2075 */
2078 {
2085 }
2087 /*
2088 * Whether a previous preempted precopy huge page contains current requested
2089 * page? Returns true if so, false otherwise.
2090 *
2091 * This should really happen very rarely, because it means when we were sending
2092 * during background migration for postcopy we're sending exactly the page that
2093 * some vcpu got faulted on on dest node. When it happens, we probably don't
2094 * need to do much but drop the request, because we know right after we restore
2095 * the precopy stream it'll be serviced. It'll slightly affect the order of
2096 * postcopy requests to be serviced (e.g. it'll be the same as we move current
2097 * request to the end of the queue) but it shouldn't be a big deal. The most
2098 * imporant thing is we can _never_ try to send a partial-sent huge page on the
2099 * POSTCOPY channel again, otherwise that huge page will got "split brain" on
2100 * two channels (PRECOPY, POSTCOPY).
2101 */
2103 ram_addr_t offset)
2104 {
2107 /* No preemption at all? */
2110 }
2112 /* Not even the same ramblock? */
2115 }
2119 }
2121 /**
2122 * get_queued_page: unqueue a page from the postcopy requests
2123 *
2124 * Skips pages that are already sent (!dirty)
2125 *
2126 * Returns true if a queued page is found
2127 *
2128 * @rs: current RAM state
2129 * @pss: data about the state of the current dirty page scan
2130 */
2132 {
2134 ram_addr_t offset;
2139 /*
2140 * We're sending this page, and since it's postcopy nothing else
2141 * will dirty it, and we must make sure it doesn't get sent again
2142 * even if this queue request was received after the background
2143 * search already sent it.
2144 */
2152 page);
2155 }
2156 }
2161 /* See comment above postcopy_preempted_contains() */
2164 /*
2165 * If what we preempted previously was exactly what we're
2166 * requesting right now, restore the preempted precopy
2167 * immediately, boosting its priority as it's requested by
2168 * postcopy.
2169 */
2172 }
2174 /*
2175 * Poll write faults too if background snapshot is enabled; that's
2176 * when we have vcpus got blocked by the write protected pages.
2177 */
2179 }
2182 /*
2183 * We want the background search to continue from the queued page
2184 * since the guest is likely to want other pages near to the page
2185 * it just requested.
2186 */
2190 /*
2191 * This unqueued page would break the "one round" check, even is
2192 * really rare.
2193 */
2195 /* Mark it an urgent request, meanwhile using POSTCOPY channel */
2198 }
2201 }
2203 /**
2204 * migration_page_queue_free: drop any remaining pages in the ram
2205 * request queue
2206 *
2207 * It should be empty at the end anyway, but in error cases there may
2208 * be some left. in case that there is any page left, we drop it.
2209 *
2210 */
2212 {
2214 /* This queue generally should be empty - but in the case of a failed
2215 * migration might have some droppings in.
2216 */
2222 }
2223 }
2225 /**
2226 * ram_save_queue_pages: queue the page for transmission
2227 *
2228 * A request from postcopy destination for example.
2229 *
2230 * Returns zero on success or negative on error
2231 *
2232 * @rbname: Name of the RAMBLock of the request. NULL means the
2233 * same that last one.
2234 * @start: starting address from the start of the RAMBlock
2235 * @len: length (in bytes) to send
2236 */
2238 {
2246 /* Reuse last RAMBlock */
2250 /*
2251 * Shouldn't happen, we can't reuse the last RAMBlock if
2252 * it's the 1st request.
2253 */
2256 }
2261 /* We shouldn't be asked for a non-existent RAMBlock */
2264 }
2266 }
2273 }
2275 /*
2276 * When with postcopy preempt, we send back the page directly in the
2277 * rp-return thread.
2278 */
2288 /*
2289 * Always use the preempt channel, and make sure it's there. It's
2290 * safe to access without lock, because when rp-thread is running
2291 * we should be the only one who operates on the qemufile
2292 */
2297 /*
2298 * It must be either one or multiple of host page size. Just
2299 * assert; if something wrong we're mostly split brain anyway.
2300 */
2309 }
2310 /*
2311 * NOTE: after ram_save_host_page_urgent() succeeded, pss->page
2312 * will automatically be moved and point to the next host page
2313 * we're going to send, so no need to update here.
2314 *
2315 * Normally QEMU never sends >1 host page in requests, so
2316 * logically we don't even need that as the loop should only
2317 * run once, but just to be consistent.
2318 */
2320 };
2324 }
2339 }
2342 {
2345 }
2347 /*
2348 * If xbzrle is enabled (e.g., after first round of migration), stop
2349 * using the data compression. In theory, xbzrle can do better than
2350 * compression.
2351 */
2354 }
2357 }
2359 /*
2360 * try to compress the page before posting it out, return true if the page
2361 * has been properly handled by compression, otherwise needs other
2362 * paths to handle it
2363 */
2366 {
2369 }
2371 /*
2372 * When starting the process of a new block, the first page of
2373 * the block should be sent out before other pages in the same
2374 * block, and all the pages in last block should have been sent
2375 * out, keeping this order is important, because the 'cont' flag
2376 * is used to avoid resending the block name.
2377 *
2378 * We post the fist page as normal page as compression will take
2379 * much CPU resource.
2380 */
2384 }
2388 }
2392 }
2394 /**
2395 * ram_save_target_page: save one target page
2396 *
2397 * Returns the number of pages written
2398 *
2399 * @rs: current RAM state
2400 * @pss: data about the page we want to send
2401 */
2403 {
2410 }
2414 }
2418 /* Must let xbzrle know, otherwise a previous (now 0'd) cached
2419 * page would be stale
2420 */
2425 }
2427 }
2429 /*
2430 * Do not use multifd in postcopy as one whole host page should be
2431 * placed. Meanwhile postcopy requires atomic update of pages, so even
2432 * if host page size == guest page size the dest guest during run may
2433 * still see partially copied pages which is data corruption.
2434 */
2437 }
2440 }
2443 {
2446 /* Not enabled eager preempt? Then never do that. */
2449 }
2451 /* If the user explicitly disabled breaking of huge page, skip */
2454 }
2456 /* If the ramblock we're sending is a small page? Never bother. */
2459 }
2461 /* Not in postcopy at all? */
2464 }
2466 /*
2467 * If we're already handling a postcopy request, don't preempt as this page
2468 * has got the same high priority.
2469 */
2472 }
2474 /* If there's postcopy requests, then check it up! */
2476 }
2478 /* Returns true if we preempted precopy, false otherwise */
2480 {
2485 /*
2486 * Time to preempt precopy. Cache current PSS into preempt state, so that
2487 * after handling the postcopy pages we can recover to it. We need to do
2488 * so because the dest VM will have partial of the precopy huge page kept
2489 * over in its tmp huge page caches; better move on with it when we can.
2490 */
2494 }
2496 /* Whether we're preempted by a postcopy request during sending a huge page */
2498 {
2500 }
2504 {
2512 /* Whether this is a postcopy request? */
2514 /*
2515 * When restoring a preempted page, the old data resides in PRECOPY
2516 * slow channel, even if postcopy_requested is set. So always use
2517 * PRECOPY channel here.
2518 */
2523 /* Reset preempt state, most importantly, set preempted==false */
2525 }
2528 {
2538 }
2539 /* Update and cache the current channel */
2543 /*
2544 * If channel switched, reset last_sent_block since the old sent block
2545 * may not be on the same channel.
2546 */
2550 }
2553 }
2555 /* We need to make sure rs->f always points to the default channel elsewhere */
2557 {
2562 }
2563 }
2565 /* Should be called before sending a host page */
2567 {
2568 /* How many guest pages are there in one host page? */
2574 }
2576 /*
2577 * Whether the page pointed by PSS is within the host page being sent.
2578 * Must be called after a previous pss_host_page_prepare().
2579 */
2581 {
2582 ram_addr_t ram_addr;
2586 /* Over host-page boundary? */
2589 }
2594 }
2597 {
2599 /* This is not needed, but just to reset it */
2601 }
2603 /*
2604 * Send an urgent host page specified by `pss'. Need to be called with
2605 * bitmap_mutex held.
2606 *
2607 * Returns 0 if save host page succeeded, false otherwise.
2608 */
2610 {
2618 /*
2619 * If precopy is sending the same page, let it be done in precopy, or
2620 * we could send the same page in two channels and none of them will
2621 * receive the whole page.
2622 */
2627 }
2633 /* Be strict to return code; it must be 1, or what else? */
2638 }
2640 }
2643 out:
2645 /* For urgent requests, flush immediately if sent */
2648 }
2650 }
2652 /**
2653 * ram_save_host_page: save a whole host page
2654 *
2655 * Starting at *offset send pages up to the end of the current host
2656 * page. It's valid for the initial offset to point into the middle of
2657 * a host page in which case the remainder of the hostpage is sent.
2658 * Only dirty target pages are sent. Note that the host page size may
2659 * be a huge page for this block.
2660 *
2661 * The saving stops at the boundary of the used_length of the block
2662 * if the RAMBlock isn't a multiple of the host page size.
2663 *
2664 * The caller must be with ram_state.bitmap_mutex held to call this
2665 * function. Note that this function can temporarily release the lock, but
2666 * when the function is returned it'll make sure the lock is still held.
2667 *
2668 * Returns the number of pages written or negative on error
2669 *
2670 * @rs: current RAM state
2671 * @pss: data about the page we want to send
2672 */
2674 {
2685 }
2687 /* Update host page boundary information */
2694 }
2698 /* Check the pages is dirty and if it is send it */
2700 /*
2701 * Properly yield the lock only in postcopy preempt mode
2702 * because both migration thread and rp-return thread can
2703 * operate on the bitmaps.
2704 */
2707 }
2711 /*
2712 * Allow rate limiting to happen in the middle of huge pages if
2713 * something is sent in the current iteration.
2714 */
2717 }
2718 }
2721 }
2724 }
2729 }
2736 /*
2737 * When with postcopy preempt mode, flush the data as soon as possible for
2738 * postcopy requests, because we've already sent a whole huge page, so the
2739 * dst node should already have enough resource to atomically filling in
2740 * the current missing page.
2741 *
2742 * More importantly, when using separate postcopy channel, we must do
2743 * explicit flush or it won't flush until the buffer is full.
2744 */
2747 }
2751 }
2753 /**
2754 * ram_find_and_save_block: finds a dirty page and sends it to f
2755 *
2756 * Called within an RCU critical section.
2757 *
2758 * Returns the number of pages written where zero means no dirty pages,
2759 * or negative on error
2760 *
2761 * @rs: current RAM state
2762 *
2763 * On systems where host-page-size > target-page-size it will send all the
2764 * pages in a host page that are dirty.
2765 */
2767 {
2772 /* No dirty page as there is zero RAM */
2775 }
2777 /*
2778 * Always keep last_seen_block/last_page valid during this procedure,
2779 * because find_dirty_block() relies on these values (e.g., we compare
2780 * last_seen_block with pss.block to see whether we searched all the
2781 * ramblocks) to detect the completion of migration. Having NULL value
2782 * of last_seen_block can conditionally cause below loop to run forever.
2783 */
2787 }
2796 /*
2797 * Recover previous precopy ramblock/offset if postcopy has
2798 * preempted precopy. Otherwise find the next dirty bit.
2799 */
2804 /* priority queue empty, so just search for something dirty */
2806 }
2807 }
2810 /* Update rs->f with correct channel */
2813 }
2814 /* Cache rs->f in pss_channel (TODO: remove rs->f) */
2817 }
2824 }
2827 {
2836 }
2837 }
2840 {
2849 }
2853 }
2854 }
2856 }
2859 {
2861 }
2864 {
2866 }
2869 {
2872 }
2875 {
2882 }
2883 }
2886 {
2897 }
2899 }
2902 {
2906 /* We don't use dirty log with background snapshots */
2908 /* caller have hold iothread lock or is in a bh, so there is
2909 * no writing race against the migration bitmap
2910 */
2912 /*
2913 * do not stop dirty log without starting it, since
2914 * memory_global_dirty_log_stop will assert that
2915 * memory_global_dirty_log_start/stop used in pairs
2916 */
2918 }
2919 }
2926 }
2931 }
2934 {
2939 }
2947 }
2951 /* **** functions for postcopy ***** */
2954 {
2969 }
2970 }
2971 }
2973 /**
2974 * postcopy_send_discard_bm_ram: discard a RAMBlock
2975 *
2976 * Callback from postcopy_each_ram_send_discard for each RAMBlock
2977 *
2978 * @ms: current migration state
2979 * @block: RAMBlock to discard
2980 */
2982 {
2993 }
3001 }
3004 }
3005 }
3009 /**
3010 * postcopy_each_ram_send_discard: discard all RAMBlocks
3011 *
3012 * Utility for the outgoing postcopy code.
3013 * Calls postcopy_send_discard_bm_ram for each RAMBlock
3014 * passing it bitmap indexes and name.
3015 * (qemu_ram_foreach_block ends up passing unscaled lengths
3016 * which would mean postcopy code would have to deal with target page)
3017 *
3018 * @ms: current migration state
3019 */
3021 {
3027 /*
3028 * Deal with TPS != HPS and huge pages. It discard any partially sent
3029 * host-page size chunks, mark any partially dirty host-page size
3030 * chunks as all dirty. In this case the host-page is the host-page
3031 * for the particular RAMBlock, i.e. it might be a huge page.
3032 */
3035 /*
3036 * Postcopy sends chunks of bitmap over the wire, but it
3037 * just needs indexes at this point, avoids it having
3038 * target page specific code.
3039 */
3042 }
3043 }
3045 /**
3046 * postcopy_chunk_hostpages_pass: canonicalize bitmap in hostpages
3047 *
3048 * Helper for postcopy_chunk_hostpages; it's called twice to
3049 * canonicalize the two bitmaps, that are similar, but one is
3050 * inverted.
3051 *
3052 * Postcopy requires that all target pages in a hostpage are dirty or
3053 * clean, not a mix. This function canonicalizes the bitmaps.
3054 *
3055 * @ms: current migration state
3056 * @block: block that contains the page we want to canonicalize
3057 */
3059 {
3067 /* Easy case - TPS==HPS for a non-huge page RAMBlock */
3069 }
3071 /* Find a dirty page */
3076 /*
3077 * If the start of this run of pages is in the middle of a host
3078 * page, then we need to fixup this host page.
3079 */
3081 /* Find the end of this run */
3083 /*
3084 * If the end isn't at the start of a host page, then the
3085 * run doesn't finish at the end of a host page
3086 * and we need to discard.
3087 */
3088 }
3093 host_ratio);
3096 /* Clean up the bitmap */
3099 /*
3100 * Remark them as dirty, updating the count for any pages
3101 * that weren't previously dirty.
3102 */
3104 }
3105 }
3107 /* Find the next dirty page for the next iteration */
3109 }
3110 }
3112 /**
3113 * ram_postcopy_send_discard_bitmap: transmit the discard bitmap
3114 *
3115 * Transmit the set of pages to be discarded after precopy to the target
3116 * these are pages that:
3117 * a) Have been previously transmitted but are now dirty again
3118 * b) Pages that have never been transmitted, this ensures that
3119 * any pages on the destination that have been mapped by background
3120 * tasks get discarded (transparent huge pages is the specific concern)
3121 * Hopefully this is pretty sparse
3122 *
3123 * @ms: current migration state
3124 */
3126 {
3131 /* This should be our last sync, the src is now paused */
3134 /* Easiest way to make sure we don't resume in the middle of a host-page */
3142 }
3144 /**
3145 * ram_discard_range: discard dirtied pages at the beginning of postcopy
3146 *
3147 * Returns zero on success
3148 *
3149 * @rbname: name of the RAMBlock of the request. NULL means the
3150 * same that last one.
3151 * @start: RAMBlock starting page
3152 * @length: RAMBlock size
3153 */
3155 {
3164 }
3166 /*
3167 * On source VM, we don't need to update the received bitmap since
3168 * we don't even have one.
3169 */
3173 }
3176 }
3178 /*
3179 * For every allocation, we will try not to crash the VM if the
3180 * allocation failed.
3181 */
3183 {
3188 }
3196 }
3203 }
3209 }
3215 }
3217 /* We are all good */
3221 free_encoded_buf:
3224 free_cache:
3227 free_zero_page:
3230 err_out:
3233 }
3236 {
3242 }
3248 /*
3249 * Count the total number of pages used by ram blocks not including any
3250 * gaps due to alignment or unplugs.
3251 * This must match with the initial values of dirty bitmap.
3252 */
3257 }
3260 {
3266 /* Skip setting bitmap if there is no RAM */
3277 }
3281 /*
3282 * The initial dirty bitmap for migration must be set with all
3283 * ones to make sure we'll migrate every guest RAM page to
3284 * destination.
3285 * Here we set RAMBlock.bmap all to 1 because when rebegin a
3286 * new migration after a failed migration, ram_list.
3287 * dirty_memory[DIRTY_MEMORY_MIGRATION] don't include the whole
3288 * guest memory.
3289 */
3294 }
3295 }
3296 }
3299 {
3308 }
3309 }
3312 {
3313 /* For memory_global_dirty_log_start below. */
3319 /* We don't use dirty log with background snapshots */
3323 }
3324 }
3328 /*
3329 * After an eventual first bitmap sync, fixup the initial bitmap
3330 * containing all 1s to exclude any discarded pages from migration.
3331 */
3333 }
3336 {
3339 }
3344 }
3349 }
3352 {
3356 /*
3357 * Postcopy is not using xbzrle/compression, so no need for that.
3358 * Also, since source are already halted, we don't need to care
3359 * about dirty page logging as well.
3360 */
3365 }
3367 /* This may not be aligned with current bitmaps. Recalculate. */
3372 /* Update RAMState cache of output QEMUFile */
3376 }
3378 /*
3379 * This function clears bits of the free pages reported by the caller from the
3380 * migration dirty bitmap. @addr is the host address corresponding to the
3381 * start of the continuous guest free pages, and @len is the total bytes of
3382 * those pages.
3383 */
3385 {
3387 ram_addr_t offset;
3391 /* This function is currently expected to be used during live migration */
3394 }
3399 /*
3400 * The implementation might not support RAMBlock resize during
3401 * live migration, but it could happen in theory with future
3402 * updates. So we add a check here to capture that case.
3403 */
3406 }
3412 }
3418 /*
3419 * The skipped free pages are equavalent to be sent from clear_bmap's
3420 * perspective, so clear the bits from the memory region bitmap which
3421 * are initially set. Otherwise those skipped pages will be sent in
3422 * the next round after syncing from the memory region bitmap.
3423 */
3429 }
3430 }
3432 /*
3433 * Each of ram_save_setup, ram_save_iterate and ram_save_complete has
3434 * long-running RCU critical section. When rcu-reclaims in the code
3435 * start to become numerous it will be necessary to reduce the
3436 * granularity of these critical sections.
3437 */
3439 /**
3440 * ram_save_setup: Setup RAM for migration
3441 *
3442 * Returns zero to indicate success and negative for error
3443 *
3444 * @f: QEMUFile where to send the data
3445 * @opaque: RAMState pointer
3446 */
3448 {
3455 }
3457 /* migration has already setup the bitmap, reuse it. */
3462 }
3463 }
3474 qemu_host_page_size) {
3476 }
3479 }
3480 }
3481 }
3489 }
3495 }
3497 /**
3498 * ram_save_iterate: iterative stage for migration
3499 *
3500 * Returns zero to indicate success and negative for error
3501 *
3502 * @f: QEMUFile where to send the data
3503 * @opaque: RAMState pointer
3504 */
3506 {
3515 /* Avoid transferring ram during bulk phase of block migration as
3516 * the bulk phase will usually take a long time and transferring
3517 * ram updates during that time is pointless. */
3519 }
3521 /*
3522 * We'll take this lock a little bit long, but it's okay for two reasons.
3523 * Firstly, the only possible other thread to take it is who calls
3524 * qemu_guest_free_page_hint(), which should be rare; secondly, see
3525 * MAX_WAIT (if curious, further see commit 4508bd9ed8053ce) below, which
3526 * guarantees that we'll at least released it in a regular basis.
3527 */
3532 }
3534 /* Read version before ram_list.blocks */
3547 }
3550 /* no more pages to sent */
3554 }
3559 }
3563 /*
3564 * During postcopy, it is necessary to make sure one whole host
3565 * page is sent in one chunk.
3566 */
3569 }
3571 /*
3572 * we want to check in the 1st loop, just in case it was the 1st
3573 * time and we had to sync the dirty bitmap.
3574 * qemu_clock_get_ns() is a bit expensive, so we only check each
3575 * some iterations
3576 */
3583 }
3584 }
3585 i++;
3586 }
3587 }
3592 /*
3593 * Must occur before EOS (or any QEMUFile operation)
3594 * because of RDMA protocol.
3595 */
3598 out:
3604 }
3611 }
3614 }
3617 }
3619 /**
3620 * ram_save_complete: function called to send the remaining amount of ram
3621 *
3622 * Returns zero to indicate success or negative on error
3623 *
3624 * Called with iothread lock
3625 *
3626 * @f: QEMUFile where to send the data
3627 * @opaque: RAMState pointer
3628 */
3630 {
3640 }
3644 /* try transferring iterative blocks of memory */
3646 /* flush all remaining blocks regardless of rate limiting */
3652 /* no more blocks to sent */
3655 }
3659 }
3660 }
3665 }
3669 }
3676 }
3682 }
3688 {
3700 }
3703 }
3706 /* We can do postcopy, and all the data is postcopiable */
3710 }
3711 }
3714 {
3719 /* extract RLE header */
3726 }
3731 }
3733 /* load data and decode */
3734 /* it can change loaded_data to point to an internal buffer */
3737 /* decode RLE */
3742 }
3745 }
3747 /**
3748 * ram_block_from_stream: read a RAMBlock id from the migration stream
3749 *
3750 * Must be called from within a rcu critical section.
3751 *
3752 * Returns a pointer from within the RCU-protected ram_list.
3753 *
3754 * @mis: the migration incoming state pointer
3755 * @f: QEMUFile where to read the data from
3756 * @flags: Page flags (mostly to see if it's a continuation of previous block)
3757 * @channel: the channel we're using
3758 */
3762 {
3771 }
3773 }
3783 }
3788 }
3793 }
3796 ram_addr_t offset)
3797 {
3800 }
3803 }
3806 ram_addr_t offset)
3807 {
3808 /* Note: Explicitly no check against offset_in_ramblock(). */
3811 }
3814 ram_addr_t offset)
3815 {
3817 }
3821 {
3824 }
3829 }
3831 /*
3832 * During colo checkpoint, we need bitmap of these migrated pages.
3833 * It help us to decide which pages in ram cache should be flushed
3834 * into VM's RAM later.
3835 */
3839 }
3841 }
3843 /**
3844 * ram_handle_compressed: handle the zero page case
3845 *
3846 * If a page (or a whole RDMA chunk) has been
3847 * determined to be zero, then zap it.
3848 *
3849 * @host: host address for the zero page
3850 * @ch: what the page is filled from. We only support zero
3851 * @size: size of the zero page
3852 */
3854 {
3857 }
3858 }
3860 /* return the size after decompression, or negative value on error */
3861 static int
3864 {
3870 }
3880 }
3883 }
3886 {
3907 }
3917 }
3918 }
3922 }
3925 {
3930 }
3937 }
3938 }
3941 }
3944 {
3949 }
3952 /*
3953 * we use it as a indicator which shows if the thread is
3954 * properly init'd or not
3955 */
3958 }
3964 }
3968 }
3976 }
3982 }
3985 {
3990 }
4001 }
4010 QEMU_THREAD_JOINABLE);
4011 }
4013 exit:
4016 }
4020 {
4036 }
4037 }
4042 }
4043 }
4044 }
4047 {
4049 }
4051 /*
4052 * colo cache: this is for secondary VM, we cache the whole
4053 * memory of the secondary VM, it is need to hold the global lock
4054 * to call this helper.
4055 */
4057 {
4072 }
4073 }
4075 }
4078 QEMU_MADV_DONTDUMP);
4079 }
4080 }
4081 }
4083 /*
4084 * Record the dirty pages that sent by PVM, we use this dirty bitmap together
4085 * with to decide which page in cache should be flushed into SVM's RAM. Here
4086 * we use the same name 'ram_bitmap' as for migration.
4087 */
4094 }
4095 }
4099 }
4101 /* TODO: duplicated with ram_init_bitmaps */
4103 {
4105 /* For memory_global_dirty_log_start below. */
4113 /* Discard this dirty bitmap record */
4115 }
4117 }
4121 }
4123 /* It is need to hold the global lock to call this helper */
4125 {
4132 }
4139 }
4140 }
4141 }
4143 }
4145 /**
4146 * ram_load_setup: Setup RAM for migration incoming side
4147 *
4148 * Returns zero to indicate success and negative for error
4149 *
4150 * @f: QEMUFile where to receive the data
4151 * @opaque: RAMState pointer
4152 */
4154 {
4157 }
4163 }
4166 {
4171 }
4179 }
4182 }
4184 /**
4185 * ram_postcopy_incoming_init: allocate postcopy data structures
4186 *
4187 * Returns 0 for success and negative if there was one error
4188 *
4189 * @mis: current migration incoming state
4190 *
4191 * Allocate data structures etc needed by incoming migration with
4192 * postcopy-ram. postcopy-ram's similarly names
4193 * postcopy_ram_incoming_init does the work.
4194 */
4196 {
4198 }
4200 /**
4201 * ram_load_postcopy: load a page in postcopy case
4202 *
4203 * Returns 0 for success or -errno in case of error
4204 *
4205 * Called in postcopy mode by ram_load().
4206 * rcu_read_lock is taken prior to this being called.
4207 *
4208 * @f: QEMUFile where to send the data
4209 * @channel: the channel to use for loading
4210 */
4212 {
4220 ram_addr_t addr;
4229 /*
4230 * If qemu file error, we should stop here, and then "addr"
4231 * may be invalid
4232 */
4236 }
4243 RAM_SAVE_FLAG_COMPRESS_PAGE)) {
4248 }
4250 /*
4251 * Relying on used_length is racy and can result in false positives.
4252 * We might place pages beyond used_length in case RAM was shrunk
4253 * while in postcopy, which is fine - trying to place via
4254 * UFFDIO_COPY/UFFDIO_ZEROPAGE will never segfault.
4255 */
4260 }
4263 /*
4264 * Postcopy requires that we place whole host pages atomically;
4265 * these may be huge pages for RAMBlocks that are backed by
4266 * hugetlbfs.
4267 * To make it atomic, the data is read into a temporary page
4268 * that's moved into place later.
4269 * The migration protocol uses, possibly smaller, target-pages
4270 * however the source ensures it always sends all the components
4271 * of a host page in one chunk.
4272 */
4275 /* If all TP are zero then we can optimise the place */
4281 /* not the 1st TP within the HP */
4283 "Target host page %p, received host page %p "
4290 }
4292 /*
4293 * If it's the last part of a host page then we place the host
4294 * page
4295 */
4299 }
4301 }
4306 /*
4307 * Can skip to set page_buffer when
4308 * this is a zero page and (block->page_size == TARGET_PAGE_SIZE).
4309 */
4312 }
4315 }
4321 /* For huge pages, we always use temporary buffer */
4324 /*
4325 * For small pages that matches target page size, we
4326 * avoid the qemu_file copy. Instead we directly use
4327 * the buffer of QEMUFile to place the page. Note: we
4328 * cannot do any QEMUFile operation before using that
4329 * buffer to make sure the buffer is valid when
4330 * placing the page.
4331 */
4333 TARGET_PAGE_SIZE);
4334 }
4343 }
4348 /* normal exit */
4356 }
4358 /* Got the whole host page, wait for decompress before placing. */
4361 }
4363 /* Detect for any possible file errors */
4366 }
4374 }
4377 }
4378 }
4381 }
4384 {
4387 }
4390 {
4393 }
4395 /*
4396 * Flush content of RAM cache into SVM's memory.
4397 * Only flush the pages that be dirtied by PVM or SVM or both.
4398 */
4400 {
4410 }
4411 }
4431 }
4438 }
4439 }
4440 }
4442 }
4444 /**
4445 * ram_load_precopy: load pages in precopy case
4446 *
4447 * Returns 0 for success or -errno in case of error
4448 *
4449 * Called in precopy mode by ram_load().
4450 * rcu_read_lock is taken prior to this being called.
4451 *
4452 * @f: QEMUFile where to send the data
4453 */
4455 {
4458 /* ADVISE is earlier, it shows the source has the postcopy capability on */
4462 }
4469 /*
4470 * Yield periodically to let main loop run, but an iteration of
4471 * the main loop is expensive, so do it each some iterations
4472 */
4477 }
4478 i++;
4487 }
4491 }
4496 RAM_CHANNEL_PRECOPY);
4499 /*
4500 * After going into COLO stage, we should not load the page
4501 * into SVM's memory directly, we put them into colo_cache firstly.
4502 * NOTE: We need to keep a copy of SVM's ram in colo_cache.
4503 * Previously, we copied all these memory in preparing stage of COLO
4504 * while we need to stop VM, which is a time-consuming process.
4505 * Here we optimize it by a trick, back-up every page while in
4506 * migration process while COLO is enabled, though it affects the
4507 * speed of the migration, but it obviously reduce the downtime of
4508 * back-up all SVM'S memory in COLO preparing stage.
4509 */
4512 /* In COLO stage, put all pages into cache temporarily */
4515 /*
4516 * In migration stage but before COLO stage,
4517 * Put all pages into both cache and SVM's memory.
4518 */
4520 }
4521 }
4526 }
4529 }
4532 }
4536 /* Synchronize RAM block list */
4541 ram_addr_t length;
4560 }
4561 }
4562 /* For postcopy we need to check hugepage sizes match */
4570 remote_page_size);
4572 }
4573 }
4583 }
4584 }
4591 }
4594 }
4612 }
4622 }
4625 /* normal exit */
4633 flags);
4635 }
4636 }
4639 }
4642 }
4643 }
4647 }
4650 {
4653 /*
4654 * If system is running in postcopy mode, page inserts to host memory must
4655 * be atomic
4656 */
4659 seq_iter++;
4663 }
4665 /*
4666 * This RCU critical section can be very long running.
4667 * When RCU reclaims in the code start to become numerous,
4668 * it will be necessary to reduce the granularity of this
4669 * critical section.
4670 */
4673 /*
4674 * Note! Here RAM_CHANNEL_PRECOPY is the precopy channel of
4675 * postcopy migration, we have another RAM_CHANNEL_POSTCOPY to
4676 * service fast page faults.
4677 */
4681 }
4682 }
4686 }
4689 {
4696 }
4697 }
4700 }
4702 /* Sync all the dirty bitmap with destination VM. */
4704 {
4714 ramblock_count++;
4715 }
4719 /* Wait until all the ramblocks' dirty bitmap synced */
4722 }
4727 }
4730 {
4732 }
4734 /*
4735 * Read the received bitmap, revert it as the initial dirty bitmap.
4736 * This is only used when the postcopy migration is paused but wants
4737 * to resume from a middle point.
4738 */
4740 {
4742 /* from_dst_file is always valid because we're within rp_thread */
4754 }
4756 /*
4757 * Note: see comments in ramblock_recv_bitmap_send() on why we
4758 * need the endianness conversion, and the paddings.
4759 */
4762 /* Add paddings */
4767 /* The size of the bitmap should match with our ramblock */
4774 }
4786 }
4793 }
4795 /*
4796 * Endianness conversion. We are during postcopy (though paused).
4797 * The dirty bitmap won't change. We can directly modify it.
4798 */
4801 /*
4802 * What we received is "received bitmap". Revert it as the initial
4803 * dirty bitmap for this ramblock.
4804 */
4807 /* Clear dirty bits of discarded ranges that we don't want to migrate. */
4810 /* We'll recalculate migration_dirty_pages in ram_state_resume_prepare(). */
4813 /*
4814 * We succeeded to sync bitmap for current ramblock. If this is
4815 * the last one to sync, we need to notify the main send thread.
4816 */
4820 out:
4823 }
4826 {
4833 }
4838 }
4841 {
4844 }
4858 };
4862 {
4864 ram_addr_t offset;
4870 }
4873 /*
4874 * Precopy code on the source cannot deal with the size of RAM blocks
4875 * changing at random points in time - especially after sending the
4876 * RAM block sizes in the migration stream, they must no longer change.
4877 * Abort and indicate a proper reason.
4878 */
4882 }
4886 /*
4887 * Update what ram_postcopy_incoming_init()->init_range() does at the
4888 * time postcopy was advised. Syncing RAM blocks with the source will
4889 * result in RAM resizes.
4890 */
4895 }
4896 }
4902 /*
4903 * Once our guest is running, postcopy does no longer care about
4904 * resizes. When growing, the new memory was not available on the
4905 * source, no handler needed.
4906 */
4912 }
4913 }
4917 };
4920 {
4924 }