| blob | bee2756cd391e1fd87fe7244bc2efbcd3f6a385d |
1 /*
2 * QEMU System Emulator
3 *
4 * Copyright (c) 2003-2008 Fabrice Bellard
5 * Copyright (c) 2011-2015 Red Hat Inc
6 *
7 * Authors:
8 * Juan Quintela <quintela@redhat.com>
9 *
10 * Permission is hereby granted, free of charge, to any person obtaining a copy
11 * of this software and associated documentation files (the "Software"), to deal
12 * in the Software without restriction, including without limitation the rights
13 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
14 * copies of the Software, and to permit persons to whom the Software is
15 * furnished to do so, subject to the following conditions:
16 *
17 * The above copyright notice and this permission notice shall be included in
18 * all copies or substantial portions of the Software.
19 *
20 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
21 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
23 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
24 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
25 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 * THE SOFTWARE.
27 */
59 #if defined(__linux__)
63 /***********************************************************/
64 /* ram save/restore */
66 /* RAM_SAVE_FLAG_ZERO used to be named RAM_SAVE_FLAG_COMPRESS, it
67 * worked for pages that where filled with the same char. We switched
68 * it to only search for the zero value. And to avoid confusion with
69 * RAM_SSAVE_FLAG_COMPRESS_PAGE just rename it.
70 */
73 #define RAM_SAVE_FLAG_ZERO 0x02
74 #define RAM_SAVE_FLAG_MEM_SIZE 0x04
75 #define RAM_SAVE_FLAG_PAGE 0x08
76 #define RAM_SAVE_FLAG_EOS 0x10
77 #define RAM_SAVE_FLAG_CONTINUE 0x20
78 #define RAM_SAVE_FLAG_XBZRLE 0x40
79 /* 0x80 is reserved in migration.h start with 0x100 next */
80 #define RAM_SAVE_FLAG_COMPRESS_PAGE 0x100
83 {
85 }
87 XBZRLECacheStats xbzrle_counters;
89 /* struct contains XBZRLE cache and a static page
90 used by the compression */
92 /* buffer used for XBZRLE encoding */
94 /* buffer for storing page content */
96 /* Cache for XBZRLE, Protected by lock. */
98 QemuMutex lock;
99 /* it will store a page full of zeros */
101 /* buffer used for XBZRLE decoding */
106 {
109 }
110 }
113 {
116 }
117 }
119 /**
120 * xbzrle_cache_resize: resize the xbzrle cache
121 *
122 * This function is called from migrate_params_apply in main
123 * thread, possibly while a migration is in progress. A running
124 * migration may be using the cache and might finish during this call,
125 * hence changes to the cache are protected by XBZRLE.lock().
126 *
127 * Returns 0 for success or -1 for error
128 *
129 * @new_size: new cache size
130 * @errp: set *errp if the check failed, with reason
131 */
133 {
137 /* Check for truncation */
142 }
145 /* nothing to do */
147 }
156 }
160 }
161 out:
164 }
167 {
170 }
172 #undef RAMBLOCK_FOREACH
175 {
185 }
186 }
188 }
191 {
197 }
198 }
201 {
204 }
207 {
209 }
212 {
214 }
218 {
221 nr);
222 }
224 #define RAMBLOCK_RECV_BITMAP_ENDING (0x0123456789abcdefULL)
226 /*
227 * Format: bitmap_size (8 bytes) + whole_bitmap (N bytes).
228 *
229 * Returns >0 if success with sent bytes, or <0 if error.
230 */
233 {
241 }
245 /*
246 * Make sure the tmp bitmap buffer is big enough, e.g., on 32bit
247 * machines we may need 4 more bytes for padding (see below
248 * comment). So extend it a bit before hand.
249 */
252 /*
253 * Always use little endian when sending the bitmap. This is
254 * required that when source and destination VMs are not using the
255 * same endianness. (Note: big endian won't work.)
256 */
259 /* Size of the bitmap, in bytes */
262 /*
263 * size is always aligned to 8 bytes for 64bit machines, but it
264 * may not be true for 32bit machines. We need this padding to
265 * make sure the migration can survive even between 32bit and
266 * 64bit machines.
267 */
272 /*
273 * Mark as an end, in case the middle part is screwed up due to
274 * some "mysterious" reason.
275 */
283 }
286 }
288 /*
289 * An outstanding page request, on the source, having been received
290 * and queued
291 */
294 hwaddr offset;
295 hwaddr len;
298 };
300 /* State of RAM for migration */
302 /* QEMUFile used for this migration */
304 /* UFFD file descriptor, used in 'write-tracking' migration */
306 /* Last block that we have visited searching for dirty pages */
308 /* Last block from where we have sent data */
310 /* Last dirty target page we have sent */
311 ram_addr_t last_page;
312 /* last ram version we have seen */
314 /* How many times we have dirty too many pages */
316 /* these variables are used for bitmap sync */
317 /* last time we did a full bitmap_sync */
319 /* bytes transferred at start_time */
321 /* number of dirty pages since start_time */
323 /* xbzrle misses since the beginning of the period */
325 /* Amount of xbzrle pages since the beginning of the period */
327 /* Amount of xbzrle encoded bytes since the beginning of the period */
329 /* Start using XBZRLE (e.g., after the first round). */
332 /* compression statistics since the beginning of the period */
333 /* amount of count that no free thread to compress data */
335 /* amount bytes after compression */
337 /* amount of compressed pages */
340 /* total handled target pages at the beginning of period */
342 /* total handled target pages since start */
344 /* number of dirty bits in the bitmap */
346 /* Protects modification of the bitmap and migration dirty pages */
347 QemuMutex bitmap_mutex;
348 /* The RAMBlock used in the last src_page_requests */
350 /* Queue of outstanding page requests from the destination */
351 QemuMutex src_page_req_mutex;
353 };
361 {
363 }
366 {
368 }
371 {
373 }
376 {
377 PrecopyNotifyData pnd;
382 }
385 {
388 }
390 MigrationStats ram_counters;
392 /* used by the search for pages to send */
394 /* Current block being searched */
396 /* Current page to search from */
398 /* Set once we wrap around */
400 };
403 CompressionStats compression_counters;
410 QemuMutex mutex;
411 QemuCond cond;
413 ram_addr_t offset;
415 /* internally used fields */
416 z_stream stream;
418 };
424 QemuMutex mutex;
425 QemuCond cond;
429 z_stream stream;
430 };
435 /* comp_done_cond is used to wake up the migration thread when
436 * one of the compression threads has finished the compression.
437 * comp_done_lock is used to co-work with comp_done_cond.
438 */
441 /* The empty QEMUFileOps will be used by file in CompressParam */
454 {
457 ram_addr_t offset;
480 }
481 }
485 }
488 {
493 }
497 /*
498 * we use it as a indicator which shows if the thread is
499 * properly init'd or not
500 */
503 }
517 }
524 }
527 {
532 }
542 }
548 }
550 /* comp_param[i].file is just used as a dummy buffer to save data,
551 * set its ops to empty.
552 */
560 QEMU_THREAD_JOINABLE);
561 }
564 exit:
567 }
569 /**
570 * save_page_header: write page header to wire
571 *
572 * If this is the 1st block, it also writes the block identification
573 *
574 * Returns the number of bytes written
575 *
576 * @f: QEMUFile where to send the data
577 * @block: block that contains the page we want to send
578 * @offset: offset inside the block for the page
579 * in the lower bits, it contains flags
580 */
582 ram_addr_t offset)
583 {
588 }
598 }
600 }
602 /**
603 * mig_throttle_guest_down: throotle down the guest
604 *
605 * Reduce amount of guest cpu execution to hopefully slow down memory
606 * writes. If guest dirty memory rate is reduced below the rate at
607 * which we can transfer pages to the destination then we should be
608 * able to complete migration. Some workloads dirty memory way too
609 * fast and will not effectively converge, even with auto-converge.
610 */
613 {
623 /* We have not started throttling yet. Let's start it. */
627 /* Throttling already on, just increase the rate */
631 /* Compute the ideal CPU percentage used by Guest, which may
632 * make the dirty rate match the dirty rate threshold. */
635 bytes_dirty_period);
637 }
639 }
640 }
642 /**
643 * xbzrle_cache_zero_page: insert a zero page in the XBZRLE cache
644 *
645 * @rs: current RAM state
646 * @current_addr: address for the zero page
647 *
648 * Update the xbzrle cache to reflect a page that's been sent as all 0.
649 * The important thing is that a stale (not-yet-0'd) page be replaced
650 * by the new data.
651 * As a bonus, if the page wasn't in the cache it gets added so that
652 * when a small write is made into the 0'd page it gets XBZRLE sent.
653 */
655 {
658 }
660 /* We don't care if this fails to allocate a new cache page
661 * as long as it updated an old one */
664 }
666 #define ENCODING_FLAG_XBZRLE 0x1
668 /**
669 * save_xbzrle_page: compress and send current page
670 *
671 * Returns: 1 means that we wrote the page
672 * 0 means that page is identical to the one already sent
673 * -1 means that xbzrle would be longer than normal
674 *
675 * @rs: current RAM state
676 * @current_data: pointer to the address of the page contents
677 * @current_addr: addr of the page
678 * @block: block that contains the page we want to send
679 * @offset: offset inside the block for the page
680 * @last_stage: if we are at the completion stage
681 */
685 {
697 /* update *current_data when the page has been
698 inserted into cache */
700 }
701 }
703 }
705 /*
706 * Reaching here means the page has hit the xbzrle cache, no matter what
707 * encoding result it is (normal encoding, overflow or skipping the page),
708 * count the page as encoded. This is used to calculate the encoding rate.
709 *
710 * Example: 2 pages (8KB) being encoded, first page encoding generates 2KB,
711 * 2nd page turns out to be skipped (i.e. no new bytes written to the
712 * page), the overall encoding rate will be 8KB / 2KB = 4, which has the
713 * skipped page included. In this way, the encoding rate can tell if the
714 * guest page is good for xbzrle encoding.
715 */
719 /* save current buffer into memory */
722 /* XBZRLE encoding (if there is no overflow) */
725 TARGET_PAGE_SIZE);
727 /*
728 * Update the cache contents, so that it corresponds to the data
729 * sent, in all cases except where we skip the page.
730 */
733 /*
734 * In the case where we couldn't compress, ensure that the caller
735 * sends the data from the cache, since the guest might have
736 * changed the RAM since we copied it.
737 */
739 }
749 }
751 /* Send XBZRLE based compressed page */
758 /*
759 * Like compressed_size (please see update_compress_thread_counts),
760 * the xbzrle encoded bytes don't count the 8 byte header with
761 * RAM_SAVE_FLAG_CONTINUE.
762 */
767 }
769 /**
770 * migration_bitmap_find_dirty: find the next dirty page from start
771 *
772 * Returns the page offset within memory region of the start of a dirty page
773 *
774 * @rs: current RAM state
775 * @rb: RAMBlock where to search for dirty pages
776 * @start: page where we start the search
777 */
781 {
787 }
790 }
795 {
800 /*
801 * Clear dirty bitmap if needed. This _must_ be called before we
802 * send any of the page in the chunk because we need to make sure
803 * we can capture further page content changes when we sync dirty
804 * log the next time. So as long as we are going to send any of
805 * the page in the chunk we clear the remote dirty bitmap for all.
806 * Clearing it earlier won't be a problem, but too late will.
807 */
813 /*
814 * CLEAR_BITMAP_SHIFT_MIN should always guarantee this... this
815 * can make things easier sometimes since then start address
816 * of the small chunk will always be 64 pages aligned so the
817 * bitmap will always be aligned to unsigned long. We should
818 * even be able to remove this restriction but I'm simply
819 * keeping it.
820 */
824 }
830 }
833 }
835 /* Called with RCU critical section */
837 {
843 }
845 /**
846 * ram_pagesize_summary: calculate all the pagesizes of a VM
847 *
848 * Returns a summary bitmap of the page sizes of all RAMBlocks
849 *
850 * For VMs with just normal pages this is equivalent to the host page
851 * size. If it's got some huge pages then it's the OR of all the
852 * different page sizes.
853 */
855 {
861 }
864 }
867 {
870 }
873 {
877 /* calculate period counters */
883 }
892 TARGET_PAGE_SIZE;
898 }
901 }
914 /* Compression-Ratio = Uncompressed-size / Compressed-size */
920 }
921 }
922 }
925 {
933 /* During block migration the auto-converge logic incorrectly detects
934 * that ram migration makes no progress. Avoid this by disabling the
935 * throttling logic during the bulk phase of block migration. */
937 /* The following detection logic can be refined later. For now:
938 Check to see if the ratio between dirtied bytes and the approx.
939 amount of bytes that just got transferred since the last time
940 we were in this routine reaches the threshold. If that happens
941 twice, start or increase throttling. */
948 bytes_dirty_threshold);
949 }
950 }
951 }
954 {
962 }
971 }
973 }
981 /* more than 1 second = 1000 millisecons */
989 /* reset period counters */
993 }
996 }
997 }
1000 {
1003 /*
1004 * The current notifier usage is just an optimization to migration, so we
1005 * don't stop the normal migration process in the error case.
1006 */
1010 }
1016 }
1017 }
1019 /**
1020 * save_zero_page_to_file: send the zero page to the file
1021 *
1022 * Returns the size of data written to the file, 0 means the page is not
1023 * a zero page
1024 *
1025 * @rs: current RAM state
1026 * @file: the file where the data is saved
1027 * @block: block that contains the page we want to send
1028 * @offset: offset inside the block for the page
1029 */
1032 {
1040 }
1042 }
1044 /**
1045 * save_zero_page: send the zero page to the stream
1046 *
1047 * Returns the number of pages written.
1048 *
1049 * @rs: current RAM state
1050 * @block: block that contains the page we want to send
1051 * @offset: offset inside the block for the page
1052 */
1054 {
1061 }
1063 }
1066 {
1069 }
1072 }
1074 /*
1075 * @pages: the number of pages written by the control path,
1076 * < 0 - error
1077 * > 0 - number of pages written
1078 *
1079 * Return true if the pages has been saved, otherwise false is returned.
1080 */
1083 {
1092 }
1097 }
1101 }
1107 }
1110 }
1112 /*
1113 * directly send the page to the stream
1114 *
1115 * Returns the number of pages written.
1116 *
1117 * @rs: current RAM state
1118 * @block: block that contains the page we want to send
1119 * @offset: offset inside the block for the page
1120 * @buf: the page to be sent
1121 * @async: send to page asyncly
1122 */
1125 {
1134 }
1138 }
1140 /**
1141 * ram_save_page: send the given page to the stream
1142 *
1143 * Returns the number of pages written.
1144 * < 0 - error
1145 * >=0 - Number of pages written - this might legally be 0
1146 * if xbzrle noticed the page was the same.
1147 *
1148 * @rs: current RAM state
1149 * @block: block that contains the page we want to send
1150 * @offset: offset inside the block for the page
1151 * @last_stage: if we are at the completion stage
1152 */
1154 {
1170 /* Can't send this cached data async, since the cache page
1171 * might get updated before it gets to the wire
1172 */
1174 }
1175 }
1177 /* XBZRLE overflow or normal page */
1180 }
1185 }
1188 ram_addr_t offset)
1189 {
1192 }
1196 }
1200 {
1209 }
1213 /*
1214 * copy it to a internal buffer to avoid it being modified by VM
1215 * so that we can catch up the error during compression and
1216 * decompression
1217 */
1224 }
1226 exit:
1229 }
1231 static void
1233 {
1239 }
1241 /* 8 means a header with RAM_SAVE_FLAG_CONTINUE. */
1244 }
1249 {
1254 }
1261 }
1262 }
1269 /*
1270 * it's safe to fetch zero_page without holding comp_done_lock
1271 * as there is no further request submitted to the thread,
1272 * i.e, the thread should be waiting for a request at this point.
1273 */
1275 }
1277 }
1278 }
1281 ram_addr_t offset)
1282 {
1285 }
1288 ram_addr_t offset)
1289 {
1295 retry:
1307 }
1308 }
1310 /*
1311 * wait for the free thread if the user specifies 'compress-wait-thread',
1312 * otherwise we will post the page out in the main thread as normal page.
1313 */
1317 }
1321 }
1323 /**
1324 * find_dirty_block: find the next dirty page and update any state
1325 * associated with the search process.
1326 *
1327 * Returns true if a page is found
1328 *
1329 * @rs: current RAM state
1330 * @pss: data about the state of the current dirty page scan
1331 * @again: set to false if the search has scanned the whole of RAM
1332 */
1334 {
1338 /*
1339 * We've been once around the RAM and haven't found anything.
1340 * Give up.
1341 */
1344 }
1347 /* Didn't find anything in this RAM Block */
1351 /*
1352 * If memory migration starts over, we will meet a dirtied page
1353 * which may still exists in compression threads's ring, so we
1354 * should flush the compressed data to make sure the new page
1355 * is not overwritten by the old one in the destination.
1356 *
1357 * Also If xbzrle is on, stop using the data compression at this
1358 * point. In theory, xbzrle can do better than compression.
1359 */
1362 /* Hit the end of the list */
1364 /* Flag that we've looped */
1366 /* After the first round, enable XBZRLE. */
1369 }
1370 }
1371 /* Didn't find anything this time, but try again on the new block */
1375 /* Can go around again, but... */
1377 /* We've found something so probably don't need to */
1379 }
1380 }
1382 /**
1383 * unqueue_page: gets a page of the queue
1384 *
1385 * Helper for 'get_queued_page' - gets a page off the queue
1386 *
1387 * Returns the block of the page (or NULL if none available)
1388 *
1389 * @rs: current RAM state
1390 * @offset: used to return the offset within the RAMBlock
1391 */
1393 {
1398 }
1415 }
1416 }
1419 }
1421 #if defined(__linux__)
1422 /**
1423 * poll_fault_page: try to get next UFFD write fault page and, if pending fault
1424 * is found, return RAM block pointer and page offset
1425 *
1426 * Returns pointer to the RAMBlock containing faulting page,
1427 * NULL if no write faults are pending
1428 *
1429 * @rs: current RAM state
1430 * @offset: page offset from the beginning of the block
1431 */
1433 {
1441 }
1446 }
1452 }
1454 /**
1455 * ram_save_release_protection: release UFFD write protection after
1456 * a range of pages has been saved
1457 *
1458 * @rs: current RAM state
1459 * @pss: page-search-status structure
1460 * @start_page: index of the first page in the range relative to pss->block
1461 *
1462 * Returns 0 on success, negative value in case of an error
1463 */
1466 {
1469 /* Check if page is from UFFD-managed region. */
1474 /* Flush async buffers before un-protect. */
1476 /* Un-protect memory range. */
1479 }
1482 }
1484 /* ram_write_tracking_available: check if kernel supports required UFFD features
1485 *
1486 * Returns true if supports, false otherwise
1487 */
1489 {
1496 }
1498 /* ram_write_tracking_compatible: check if guest configuration is
1499 * compatible with 'write-tracking'
1500 *
1501 * Returns true if compatible, false otherwise
1502 */
1504 {
1510 /* Open UFFD file descriptor */
1514 }
1521 /* Nothing to do with read-only and MMIO-writable regions */
1524 }
1525 /* Try to register block memory via UFFD-IO to track writes */
1529 }
1532 }
1533 }
1536 out:
1539 }
1541 /*
1542 * ram_block_populate_pages: populate memory in the RAM block by reading
1543 * an integer from the beginning of each page.
1544 *
1545 * Since it's solely used for userfault_fd WP feature, here we just
1546 * hardcode page size to qemu_real_host_page_size.
1547 *
1548 * @block: RAM block to populate
1549 */
1551 {
1558 /* Don't optimize the read out */
1560 }
1561 }
1563 /*
1564 * ram_write_tracking_prepare: prepare for UFFD-WP memory tracking
1565 */
1567 {
1573 /* Nothing to do with read-only and MMIO-writable regions */
1576 }
1578 /*
1579 * Populate pages of the RAM block before enabling userfault_fd
1580 * write protection.
1581 *
1582 * This stage is required since ioctl(UFFDIO_WRITEPROTECT) with
1583 * UFFDIO_WRITEPROTECT_MODE_WP mode setting would silently skip
1584 * pages with pte_none() entries in page table.
1585 */
1587 }
1588 }
1590 /*
1591 * ram_write_tracking_start: start UFFD-WP memory tracking
1592 *
1593 * Returns 0 for success or negative value in case of error
1594 */
1596 {
1601 /* Open UFFD file descriptor */
1605 }
1611 /* Nothing to do with read-only and MMIO-writable regions */
1614 }
1616 /* Register block memory with UFFD to track writes */
1620 }
1621 /* Apply UFFD write protection to the block memory range */
1625 }
1631 }
1635 fail:
1641 }
1642 /*
1643 * In case some memory block failed to be write-protected
1644 * remove protection and unregister all succeeded RAM blocks
1645 */
1649 /* Cleanup flags and remove reference */
1652 }
1657 }
1659 /**
1660 * ram_write_tracking_stop: stop UFFD-WP memory tracking and remove protection
1661 */
1663 {
1672 }
1673 /* Remove protection and unregister all affected RAM blocks */
1681 /* Cleanup flags and remove reference */
1684 }
1686 /* Finally close UFFD file descriptor */
1689 }
1691 #else
1692 /* No target OS support, stubs just fail or ignore */
1695 {
1700 }
1704 {
1710 }
1713 {
1715 }
1718 {
1721 }
1724 {
1727 }
1730 {
1732 }
1735 /**
1736 * get_queued_page: unqueue a page from the postcopy requests
1737 *
1738 * Skips pages that are already sent (!dirty)
1739 *
1740 * Returns true if a queued page is found
1741 *
1742 * @rs: current RAM state
1743 * @pss: data about the state of the current dirty page scan
1744 */
1746 {
1748 ram_addr_t offset;
1753 /*
1754 * We're sending this page, and since it's postcopy nothing else
1755 * will dirty it, and we must make sure it doesn't get sent again
1756 * even if this queue request was received after the background
1757 * search already sent it.
1758 */
1766 page);
1769 }
1770 }
1775 /*
1776 * Poll write faults too if background snapshot is enabled; that's
1777 * when we have vcpus got blocked by the write protected pages.
1778 */
1780 }
1783 /*
1784 * We want the background search to continue from the queued page
1785 * since the guest is likely to want other pages near to the page
1786 * it just requested.
1787 */
1791 /*
1792 * This unqueued page would break the "one round" check, even is
1793 * really rare.
1794 */
1796 }
1799 }
1801 /**
1802 * migration_page_queue_free: drop any remaining pages in the ram
1803 * request queue
1804 *
1805 * It should be empty at the end anyway, but in error cases there may
1806 * be some left. in case that there is any page left, we drop it.
1807 *
1808 */
1810 {
1812 /* This queue generally should be empty - but in the case of a failed
1813 * migration might have some droppings in.
1814 */
1820 }
1821 }
1823 /**
1824 * ram_save_queue_pages: queue the page for transmission
1825 *
1826 * A request from postcopy destination for example.
1827 *
1828 * Returns zero on success or negative on error
1829 *
1830 * @rbname: Name of the RAMBLock of the request. NULL means the
1831 * same that last one.
1832 * @start: starting address from the start of the RAMBlock
1833 * @len: length (in bytes) to send
1834 */
1836 {
1844 /* Reuse last RAMBlock */
1848 /*
1849 * Shouldn't happen, we can't reuse the last RAMBlock if
1850 * it's the 1st request.
1851 */
1854 }
1859 /* We shouldn't be asked for a non-existent RAMBlock */
1862 }
1864 }
1871 }
1886 }
1889 {
1892 }
1894 /*
1895 * If xbzrle is enabled (e.g., after first round of migration), stop
1896 * using the data compression. In theory, xbzrle can do better than
1897 * compression.
1898 */
1901 }
1904 }
1906 /*
1907 * try to compress the page before posting it out, return true if the page
1908 * has been properly handled by compression, otherwise needs other
1909 * paths to handle it
1910 */
1912 {
1915 }
1917 /*
1918 * When starting the process of a new block, the first page of
1919 * the block should be sent out before other pages in the same
1920 * block, and all the pages in last block should have been sent
1921 * out, keeping this order is important, because the 'cont' flag
1922 * is used to avoid resending the block name.
1923 *
1924 * We post the fist page as normal page as compression will take
1925 * much CPU resource.
1926 */
1930 }
1934 }
1938 }
1940 /**
1941 * ram_save_target_page: save one target page
1942 *
1943 * Returns the number of pages written
1944 *
1945 * @rs: current RAM state
1946 * @pss: data about the page we want to send
1947 * @last_stage: if we are at the completion stage
1948 */
1951 {
1958 }
1962 }
1966 /* Must let xbzrle know, otherwise a previous (now 0'd) cached
1967 * page would be stale
1968 */
1973 }
1976 }
1978 /*
1979 * Do not use multifd for:
1980 * 1. Compression as the first page in the new block should be posted out
1981 * before sending the compressed page
1982 * 2. In postcopy as one whole host page should be placed
1983 */
1987 }
1990 }
1992 /**
1993 * ram_save_host_page: save a whole host page
1994 *
1995 * Starting at *offset send pages up to the end of the current host
1996 * page. It's valid for the initial offset to point into the middle of
1997 * a host page in which case the remainder of the hostpage is sent.
1998 * Only dirty target pages are sent. Note that the host page size may
1999 * be a huge page for this block.
2000 * The saving stops at the boundary of the used_length of the block
2001 * if the RAMBlock isn't a multiple of the host page size.
2002 *
2003 * Returns the number of pages written or negative on error
2004 *
2005 * @rs: current RAM state
2006 * @ms: current migration state
2007 * @pss: data about the page we want to send
2008 * @last_stage: if we are at the completion stage
2009 */
2012 {
2022 }
2025 /* Check the pages is dirty and if it is send it */
2029 }
2034 }
2038 /* Allow rate limiting to happen in the middle of huge pages */
2043 /* The offset we leave with is the last one we looked at */
2048 }
2050 /**
2051 * ram_find_and_save_block: finds a dirty page and sends it to f
2052 *
2053 * Called within an RCU critical section.
2054 *
2055 * Returns the number of pages written where zero means no dirty pages,
2056 * or negative on error
2057 *
2058 * @rs: current RAM state
2059 * @last_stage: if we are at the completion stage
2060 *
2061 * On systems where host-page-size > target-page-size it will send all the
2062 * pages in a host page that are dirty.
2063 */
2066 {
2067 PageSearchStatus pss;
2071 /* No dirty page as there is zero RAM */
2074 }
2082 }
2089 /* priority queue empty, so just search for something dirty */
2091 }
2095 }
2102 }
2105 {
2114 }
2115 }
2118 {
2127 }
2131 }
2132 }
2134 }
2137 {
2139 }
2142 {
2144 }
2147 {
2150 }
2153 {
2160 }
2161 }
2164 {
2175 }
2177 }
2180 {
2184 /* We don't use dirty log with background snapshots */
2186 /* caller have hold iothread lock or is in a bh, so there is
2187 * no writing race against the migration bitmap
2188 */
2190 }
2197 }
2202 }
2205 {
2211 }
2215 /*
2216 * 'expected' is the value you expect the bitmap mostly to be full
2217 * of; it won't bother printing lines that are all this value.
2218 * If 'todump' is null the migration bitmap is dumped.
2219 */
2222 {
2230 /*
2231 * Last line; catch the case where the line length
2232 * is longer than remaining ram
2233 */
2236 }
2241 }
2245 }
2246 }
2247 }
2249 /* **** functions for postcopy ***** */
2252 {
2267 }
2268 }
2269 }
2271 /**
2272 * postcopy_send_discard_bm_ram: discard a RAMBlock
2273 *
2274 * Returns zero on success
2275 *
2276 * Callback from postcopy_each_ram_send_discard for each RAMBlock
2277 *
2278 * @ms: current migration state
2279 * @block: RAMBlock to discard
2280 */
2282 {
2293 }
2301 }
2304 }
2307 }
2309 /**
2310 * postcopy_each_ram_send_discard: discard all RAMBlocks
2311 *
2312 * Returns 0 for success or negative for error
2313 *
2314 * Utility for the outgoing postcopy code.
2315 * Calls postcopy_send_discard_bm_ram for each RAMBlock
2316 * passing it bitmap indexes and name.
2317 * (qemu_ram_foreach_block ends up passing unscaled lengths
2318 * which would mean postcopy code would have to deal with target page)
2319 *
2320 * @ms: current migration state
2321 */
2323 {
2330 /*
2331 * Postcopy sends chunks of bitmap over the wire, but it
2332 * just needs indexes at this point, avoids it having
2333 * target page specific code.
2334 */
2339 }
2340 }
2343 }
2345 /**
2346 * postcopy_chunk_hostpages_pass: canonicalize bitmap in hostpages
2347 *
2348 * Helper for postcopy_chunk_hostpages; it's called twice to
2349 * canonicalize the two bitmaps, that are similar, but one is
2350 * inverted.
2351 *
2352 * Postcopy requires that all target pages in a hostpage are dirty or
2353 * clean, not a mix. This function canonicalizes the bitmaps.
2354 *
2355 * @ms: current migration state
2356 * @block: block that contains the page we want to canonicalize
2357 */
2359 {
2367 /* Easy case - TPS==HPS for a non-huge page RAMBlock */
2369 }
2371 /* Find a dirty page */
2376 /*
2377 * If the start of this run of pages is in the middle of a host
2378 * page, then we need to fixup this host page.
2379 */
2381 /* Find the end of this run */
2383 /*
2384 * If the end isn't at the start of a host page, then the
2385 * run doesn't finish at the end of a host page
2386 * and we need to discard.
2387 */
2388 }
2393 host_ratio);
2396 /* Clean up the bitmap */
2399 /*
2400 * Remark them as dirty, updating the count for any pages
2401 * that weren't previously dirty.
2402 */
2404 }
2405 }
2407 /* Find the next dirty page for the next iteration */
2409 }
2410 }
2412 /**
2413 * postcopy_chunk_hostpages: discard any partially sent host page
2414 *
2415 * Utility for the outgoing postcopy code.
2416 *
2417 * Discard any partially sent host-page size chunks, mark any partially
2418 * dirty host-page size chunks as all dirty. In this case the host-page
2419 * is the host-page for the particular RAMBlock, i.e. it might be a huge page
2420 *
2421 * Returns zero on success
2422 *
2423 * @ms: current migration state
2424 * @block: block we want to work with
2425 */
2427 {
2430 /*
2431 * Ensure that all partially dirty host pages are made fully dirty.
2432 */
2437 }
2439 /**
2440 * ram_postcopy_send_discard_bitmap: transmit the discard bitmap
2441 *
2442 * Returns zero on success
2443 *
2444 * Transmit the set of pages to be discarded after precopy to the target
2445 * these are pages that:
2446 * a) Have been previously transmitted but are now dirty again
2447 * b) Pages that have never been transmitted, this ensures that
2448 * any pages on the destination that have been mapped by background
2449 * tasks get discarded (transparent huge pages is the specific concern)
2450 * Hopefully this is pretty sparse
2451 *
2452 * @ms: current migration state
2453 */
2455 {
2462 /* This should be our last sync, the src is now paused */
2465 /* Easiest way to make sure we don't resume in the middle of a host-page */
2471 /* Deal with TPS != HPS and huge pages */
2475 }
2477 #ifdef DEBUG_POSTCOPY
2480 #endif
2481 }
2485 }
2487 /**
2488 * ram_discard_range: discard dirtied pages at the beginning of postcopy
2489 *
2490 * Returns zero on success
2491 *
2492 * @rbname: name of the RAMBlock of the request. NULL means the
2493 * same that last one.
2494 * @start: RAMBlock starting page
2495 * @length: RAMBlock size
2496 */
2498 {
2507 }
2509 /*
2510 * On source VM, we don't need to update the received bitmap since
2511 * we don't even have one.
2512 */
2516 }
2519 }
2521 /*
2522 * For every allocation, we will try not to crash the VM if the
2523 * allocation failed.
2524 */
2526 {
2531 }
2539 }
2546 }
2552 }
2558 }
2560 /* We are all good */
2564 free_encoded_buf:
2567 free_cache:
2570 free_zero_page:
2573 err_out:
2576 }
2579 {
2585 }
2591 /*
2592 * Count the total number of pages used by ram blocks not including any
2593 * gaps due to alignment or unplugs.
2594 * This must match with the initial values of dirty bitmap.
2595 */
2600 }
2603 {
2609 /* Skip setting bitmap if there is no RAM */
2620 }
2624 /*
2625 * The initial dirty bitmap for migration must be set with all
2626 * ones to make sure we'll migrate every guest RAM page to
2627 * destination.
2628 * Here we set RAMBlock.bmap all to 1 because when rebegin a
2629 * new migration after a failed migration, ram_list.
2630 * dirty_memory[DIRTY_MEMORY_MIGRATION] don't include the whole
2631 * guest memory.
2632 */
2637 }
2638 }
2639 }
2642 {
2643 /* For memory_global_dirty_log_start below. */
2649 /* We don't use dirty log with background snapshots */
2653 }
2654 }
2657 }
2660 {
2663 }
2668 }
2673 }
2676 {
2680 /*
2681 * Postcopy is not using xbzrle/compression, so no need for that.
2682 * Also, since source are already halted, we don't need to care
2683 * about dirty page logging as well.
2684 */
2689 }
2691 /* This may not be aligned with current bitmaps. Recalculate. */
2696 /* Update RAMState cache of output QEMUFile */
2700 }
2702 /*
2703 * This function clears bits of the free pages reported by the caller from the
2704 * migration dirty bitmap. @addr is the host address corresponding to the
2705 * start of the continuous guest free pages, and @len is the total bytes of
2706 * those pages.
2707 */
2709 {
2711 ram_addr_t offset;
2715 /* This function is currently expected to be used during live migration */
2718 }
2723 /*
2724 * The implementation might not support RAMBlock resize during
2725 * live migration, but it could happen in theory with future
2726 * updates. So we add a check here to capture that case.
2727 */
2730 }
2736 }
2746 }
2747 }
2749 /*
2750 * Each of ram_save_setup, ram_save_iterate and ram_save_complete has
2751 * long-running RCU critical section. When rcu-reclaims in the code
2752 * start to become numerous it will be necessary to reduce the
2753 * granularity of these critical sections.
2754 */
2756 /**
2757 * ram_save_setup: Setup RAM for migration
2758 *
2759 * Returns zero to indicate success and negative for error
2760 *
2761 * @f: QEMUFile where to send the data
2762 * @opaque: RAMState pointer
2763 */
2765 {
2771 }
2773 /* migration has already setup the bitmap, reuse it. */
2778 }
2779 }
2790 qemu_host_page_size) {
2792 }
2795 }
2796 }
2797 }
2807 }
2809 /**
2810 * ram_save_iterate: iterative stage for migration
2811 *
2812 * Returns zero to indicate success and negative for error
2813 *
2814 * @f: QEMUFile where to send the data
2815 * @opaque: RAMState pointer
2816 */
2818 {
2827 /* Avoid transferring ram during bulk phase of block migration as
2828 * the bulk phase will usually take a long time and transferring
2829 * ram updates during that time is pointless. */
2831 }
2836 }
2838 /* Read version before ram_list.blocks */
2851 }
2854 /* no more pages to sent */
2858 }
2863 }
2867 /*
2868 * During postcopy, it is necessary to make sure one whole host
2869 * page is sent in one chunk.
2870 */
2873 }
2875 /*
2876 * we want to check in the 1st loop, just in case it was the 1st
2877 * time and we had to sync the dirty bitmap.
2878 * qemu_clock_get_ns() is a bit expensive, so we only check each
2879 * some iterations
2880 */
2887 }
2888 }
2889 i++;
2890 }
2891 }
2893 /*
2894 * Must occur before EOS (or any QEMUFile operation)
2895 * because of RDMA protocol.
2896 */
2899 out:
2908 }
2911 }
2914 }
2916 /**
2917 * ram_save_complete: function called to send the remaining amount of ram
2918 *
2919 * Returns zero to indicate success or negative on error
2920 *
2921 * Called with iothread lock
2922 *
2923 * @f: QEMUFile where to send the data
2924 * @opaque: RAMState pointer
2925 */
2927 {
2935 }
2939 /* try transferring iterative blocks of memory */
2941 /* flush all remaining blocks regardless of rate limiting */
2946 /* no more blocks to sent */
2949 }
2953 }
2954 }
2958 }
2964 }
2967 }
2973 {
2985 }
2988 }
2991 /* We can do postcopy, and all the data is postcopiable */
2995 }
2996 }
2999 {
3004 /* extract RLE header */
3011 }
3016 }
3018 /* load data and decode */
3019 /* it can change loaded_data to point to an internal buffer */
3022 /* decode RLE */
3027 }
3030 }
3032 /**
3033 * ram_block_from_stream: read a RAMBlock id from the migration stream
3034 *
3035 * Must be called from within a rcu critical section.
3036 *
3037 * Returns a pointer from within the RCU-protected ram_list.
3038 *
3039 * @f: QEMUFile where to read the data from
3040 * @flags: Page flags (mostly to see if it's a continuation of previous block)
3041 */
3043 {
3052 }
3054 }
3064 }
3069 }
3072 }
3075 ram_addr_t offset)
3076 {
3079 }
3082 }
3086 {
3089 }
3094 }
3096 /*
3097 * During colo checkpoint, we need bitmap of these migrated pages.
3098 * It help us to decide which pages in ram cache should be flushed
3099 * into VM's RAM later.
3100 */
3104 }
3106 }
3108 /**
3109 * ram_handle_compressed: handle the zero page case
3110 *
3111 * If a page (or a whole RDMA chunk) has been
3112 * determined to be zero, then zap it.
3113 *
3114 * @host: host address for the zero page
3115 * @ch: what the page is filled from. We only support zero
3116 * @size: size of the zero page
3117 */
3119 {
3122 }
3123 }
3125 /* return the size after decompression, or negative value on error */
3126 static int
3129 {
3135 }
3145 }
3148 }
3151 {
3172 }
3182 }
3183 }
3187 }
3190 {
3195 }
3202 }
3203 }
3206 }
3209 {
3214 }
3217 /*
3218 * we use it as a indicator which shows if the thread is
3219 * properly init'd or not
3220 */
3223 }
3229 }
3233 }
3241 }
3247 }
3250 {
3255 }
3266 }
3275 QEMU_THREAD_JOINABLE);
3276 }
3278 exit:
3281 }
3285 {
3301 }
3302 }
3307 }
3308 }
3309 }
3312 {
3314 }
3316 /*
3317 * colo cache: this is for secondary VM, we cache the whole
3318 * memory of the secondary VM, it is need to hold the global lock
3319 * to call this helper.
3320 */
3322 {
3328 NULL,
3338 }
3339 }
3341 }
3342 }
3343 }
3345 /*
3346 * Record the dirty pages that sent by PVM, we use this dirty bitmap together
3347 * with to decide which page in cache should be flushed into SVM's RAM. Here
3348 * we use the same name 'ram_bitmap' as for migration.
3349 */
3356 }
3357 }
3361 }
3363 /* TODO: duplicated with ram_init_bitmaps */
3365 {
3367 /* For memory_global_dirty_log_start below. */
3375 /* Discard this dirty bitmap record */
3377 }
3379 }
3383 }
3385 /* It is need to hold the global lock to call this helper */
3387 {
3394 }
3401 }
3402 }
3403 }
3405 }
3407 /**
3408 * ram_load_setup: Setup RAM for migration incoming side
3409 *
3410 * Returns zero to indicate success and negative for error
3411 *
3412 * @f: QEMUFile where to receive the data
3413 * @opaque: RAMState pointer
3414 */
3416 {
3419 }
3425 }
3428 {
3433 }
3441 }
3444 }
3446 /**
3447 * ram_postcopy_incoming_init: allocate postcopy data structures
3448 *
3449 * Returns 0 for success and negative if there was one error
3450 *
3451 * @mis: current migration incoming state
3452 *
3453 * Allocate data structures etc needed by incoming migration with
3454 * postcopy-ram. postcopy-ram's similarly names
3455 * postcopy_ram_incoming_init does the work.
3456 */
3458 {
3460 }
3462 /**
3463 * ram_load_postcopy: load a page in postcopy case
3464 *
3465 * Returns 0 for success or -errno in case of error
3466 *
3467 * Called in postcopy mode by ram_load().
3468 * rcu_read_lock is taken prior to this being called.
3469 *
3470 * @f: QEMUFile where to send the data
3471 */
3473 {
3478 /* Temporary page that is later 'placed' */
3485 ram_addr_t addr;
3495 /*
3496 * If qemu file error, we should stop here, and then "addr"
3497 * may be invalid
3498 */
3502 }
3509 RAM_SAVE_FLAG_COMPRESS_PAGE)) {
3517 }
3518 target_pages++;
3520 /*
3521 * Postcopy requires that we place whole host pages atomically;
3522 * these may be huge pages for RAMBlocks that are backed by
3523 * hugetlbfs.
3524 * To make it atomic, the data is read into a temporary page
3525 * that's moved into place later.
3526 * The migration protocol uses, possibly smaller, target-pages
3527 * however the source ensures it always sends all the components
3528 * of a host page in one chunk.
3529 */
3536 /* not the 1st TP within the HP */
3543 }
3544 }
3546 /*
3547 * If it's the last part of a host page then we place the host
3548 * page
3549 */
3552 }
3554 }
3559 /*
3560 * Can skip to set page_buffer when
3561 * this is a zero page and (block->page_size == TARGET_PAGE_SIZE).
3562 */
3565 }
3568 }
3574 /* For huge pages, we always use temporary buffer */
3577 /*
3578 * For small pages that matches target page size, we
3579 * avoid the qemu_file copy. Instead we directly use
3580 * the buffer of QEMUFile to place the page. Note: we
3581 * cannot do any QEMUFile operation before using that
3582 * buffer to make sure the buffer is valid when
3583 * placing the page.
3584 */
3586 TARGET_PAGE_SIZE);
3587 }
3596 }
3601 /* normal exit */
3609 }
3611 /* Got the whole host page, wait for decompress before placing. */
3614 }
3616 /* Detect for any possible file errors */
3619 }
3622 /* This gets called at the last target page in the host page */
3628 block);
3632 }
3635 /* Assume we have a zero page until we detect something different */
3637 }
3638 }
3641 }
3644 {
3647 }
3650 {
3653 }
3655 /*
3656 * Flush content of RAM cache into SVM's memory.
3657 * Only flush the pages that be dirtied by PVM or SVM or both.
3658 */
3660 {
3670 }
3671 }
3691 }
3692 }
3693 }
3695 }
3697 /**
3698 * ram_load_precopy: load pages in precopy case
3699 *
3700 * Returns 0 for success or -errno in case of error
3701 *
3702 * Called in precopy mode by ram_load().
3703 * rcu_read_lock is taken prior to this being called.
3704 *
3705 * @f: QEMUFile where to send the data
3706 */
3708 {
3710 /* ADVISE is earlier, it shows the source has the postcopy capability on */
3714 }
3721 /*
3722 * Yield periodically to let main loop run, but an iteration of
3723 * the main loop is expensive, so do it each some iterations
3724 */
3729 }
3730 i++;
3739 }
3743 }
3750 /*
3751 * After going into COLO stage, we should not load the page
3752 * into SVM's memory directly, we put them into colo_cache firstly.
3753 * NOTE: We need to keep a copy of SVM's ram in colo_cache.
3754 * Previously, we copied all these memory in preparing stage of COLO
3755 * while we need to stop VM, which is a time-consuming process.
3756 * Here we optimize it by a trick, back-up every page while in
3757 * migration process while COLO is enabled, though it affects the
3758 * speed of the migration, but it obviously reduce the downtime of
3759 * back-up all SVM'S memory in COLO preparing stage.
3760 */
3763 /* In COLO stage, put all pages into cache temporarily */
3766 /*
3767 * In migration stage but before COLO stage,
3768 * Put all pages into both cache and SVM's memory.
3769 */
3771 }
3772 }
3777 }
3780 }
3783 }
3787 /* Synchronize RAM block list */
3792 ram_addr_t length;
3811 }
3812 }
3813 /* For postcopy we need to check hugepage sizes match */
3821 remote_page_size);
3823 }
3824 }
3834 }
3835 }
3842 }
3845 }
3863 }
3873 }
3876 /* normal exit */
3884 flags);
3886 }
3887 }
3890 }
3893 }
3894 }
3898 }
3901 {
3904 /*
3905 * If system is running in postcopy mode, page inserts to host memory must
3906 * be atomic
3907 */
3910 seq_iter++;
3914 }
3916 /*
3917 * This RCU critical section can be very long running.
3918 * When RCU reclaims in the code start to become numerous,
3919 * it will be necessary to reduce the granularity of this
3920 * critical section.
3921 */
3927 }
3928 }
3932 }
3935 {
3942 }
3943 }
3946 }
3948 /* Sync all the dirty bitmap with destination VM. */
3950 {
3960 ramblock_count++;
3961 }
3965 /* Wait until all the ramblocks' dirty bitmap synced */
3968 }
3973 }
3976 {
3978 }
3980 /*
3981 * Read the received bitmap, revert it as the initial dirty bitmap.
3982 * This is only used when the postcopy migration is paused but wants
3983 * to resume from a middle point.
3984 */
3986 {
3999 }
4001 /*
4002 * Note: see comments in ramblock_recv_bitmap_send() on why we
4003 * need the endianness conversion, and the paddings.
4004 */
4007 /* Add paddings */
4012 /* The size of the bitmap should match with our ramblock */
4019 }
4031 }
4038 }
4040 /*
4041 * Endianness conversion. We are during postcopy (though paused).
4042 * The dirty bitmap won't change. We can directly modify it.
4043 */
4046 /*
4047 * What we received is "received bitmap". Revert it as the initial
4048 * dirty bitmap for this ramblock.
4049 */
4054 /*
4055 * We succeeded to sync bitmap for current ramblock. If this is
4056 * the last one to sync, we need to notify the main send thread.
4057 */
4061 out:
4064 }
4067 {
4074 }
4079 }
4093 };
4096 {
4099 }