| blob | 56ff9cd29d927f164792ce67be198238cac4f74f |
1 /*
2 * QEMU System Emulator
3 *
4 * Copyright (c) 2003-2008 Fabrice Bellard
5 * Copyright (c) 2011-2015 Red Hat Inc
6 *
7 * Authors:
8 * Juan Quintela <quintela@redhat.com>
9 *
10 * Permission is hereby granted, free of charge, to any person obtaining a copy
11 * of this software and associated documentation files (the "Software"), to deal
12 * in the Software without restriction, including without limitation the rights
13 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
14 * copies of the Software, and to permit persons to whom the Software is
15 * furnished to do so, subject to the following conditions:
16 *
17 * The above copyright notice and this permission notice shall be included in
18 * all copies or substantial portions of the Software.
19 *
20 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
21 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
23 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
24 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
25 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 * THE SOFTWARE.
27 */
63 #if defined(__linux__)
67 /***********************************************************/
68 /* ram save/restore */
70 /* RAM_SAVE_FLAG_ZERO used to be named RAM_SAVE_FLAG_COMPRESS, it
71 * worked for pages that where filled with the same char. We switched
72 * it to only search for the zero value. And to avoid confusion with
73 * RAM_SSAVE_FLAG_COMPRESS_PAGE just rename it.
74 */
77 #define RAM_SAVE_FLAG_ZERO 0x02
78 #define RAM_SAVE_FLAG_MEM_SIZE 0x04
79 #define RAM_SAVE_FLAG_PAGE 0x08
80 #define RAM_SAVE_FLAG_EOS 0x10
81 #define RAM_SAVE_FLAG_CONTINUE 0x20
82 #define RAM_SAVE_FLAG_XBZRLE 0x40
83 /* 0x80 is reserved in migration.h start with 0x100 next */
84 #define RAM_SAVE_FLAG_COMPRESS_PAGE 0x100
86 XBZRLECacheStats xbzrle_counters;
88 /* used by the search for pages to send */
90 /* The migration channel used for a specific host page */
92 /* Last block from where we have sent data */
94 /* Current block being searched */
96 /* Current page to search from */
98 /* Set once we wrap around */
100 /* Whether we're sending a host page */
102 /* The start/end of current host page. Invalid if host_page_sending==false */
105 };
108 /* struct contains XBZRLE cache and a static page
109 used by the compression */
111 /* buffer used for XBZRLE encoding */
113 /* buffer for storing page content */
115 /* Cache for XBZRLE, Protected by lock. */
117 QemuMutex lock;
118 /* it will store a page full of zeros */
120 /* buffer used for XBZRLE decoding */
125 {
128 }
129 }
132 {
135 }
136 }
138 /**
139 * xbzrle_cache_resize: resize the xbzrle cache
140 *
141 * This function is called from migrate_params_apply in main
142 * thread, possibly while a migration is in progress. A running
143 * migration may be using the cache and might finish during this call,
144 * hence changes to the cache are protected by XBZRLE.lock().
145 *
146 * Returns 0 for success or -1 for error
147 *
148 * @new_size: new cache size
149 * @errp: set *errp if the check failed, with reason
150 */
152 {
156 /* Check for truncation */
161 }
164 /* nothing to do */
166 }
175 }
179 }
180 out:
183 }
186 {
188 }
191 {
194 }
196 #undef RAMBLOCK_FOREACH
199 {
209 }
210 }
212 }
215 {
221 }
222 }
225 {
228 }
231 {
233 }
236 {
238 }
242 {
245 nr);
246 }
248 #define RAMBLOCK_RECV_BITMAP_ENDING (0x0123456789abcdefULL)
250 /*
251 * Format: bitmap_size (8 bytes) + whole_bitmap (N bytes).
252 *
253 * Returns >0 if success with sent bytes, or <0 if error.
254 */
257 {
265 }
269 /*
270 * Make sure the tmp bitmap buffer is big enough, e.g., on 32bit
271 * machines we may need 4 more bytes for padding (see below
272 * comment). So extend it a bit before hand.
273 */
276 /*
277 * Always use little endian when sending the bitmap. This is
278 * required that when source and destination VMs are not using the
279 * same endianness. (Note: big endian won't work.)
280 */
283 /* Size of the bitmap, in bytes */
286 /*
287 * size is always aligned to 8 bytes for 64bit machines, but it
288 * may not be true for 32bit machines. We need this padding to
289 * make sure the migration can survive even between 32bit and
290 * 64bit machines.
291 */
296 /*
297 * Mark as an end, in case the middle part is screwed up due to
298 * some "mysterious" reason.
299 */
307 }
310 }
312 /*
313 * An outstanding page request, on the source, having been received
314 * and queued
315 */
318 hwaddr offset;
319 hwaddr len;
322 };
324 /* State of RAM for migration */
326 /*
327 * PageSearchStatus structures for the channels when send pages.
328 * Protected by the bitmap_mutex.
329 */
331 /* UFFD file descriptor, used in 'write-tracking' migration */
333 /* Last block that we have visited searching for dirty pages */
335 /* Last dirty target page we have sent */
336 ram_addr_t last_page;
337 /* last ram version we have seen */
339 /* How many times we have dirty too many pages */
341 /* these variables are used for bitmap sync */
342 /* last time we did a full bitmap_sync */
344 /* bytes transferred at start_time */
346 /* number of dirty pages since start_time */
348 /* xbzrle misses since the beginning of the period */
350 /* Amount of xbzrle pages since the beginning of the period */
352 /* Amount of xbzrle encoded bytes since the beginning of the period */
354 /* Start using XBZRLE (e.g., after the first round). */
356 /* Are we on the last stage of migration */
358 /* compression statistics since the beginning of the period */
359 /* amount of count that no free thread to compress data */
361 /* amount bytes after compression */
363 /* amount of compressed pages */
366 /* total handled target pages at the beginning of period */
368 /* total handled target pages since start */
370 /* number of dirty bits in the bitmap */
372 /*
373 * Protects:
374 * - dirty/clear bitmap
375 * - migration_dirty_pages
376 * - pss structures
377 */
378 QemuMutex bitmap_mutex;
379 /* The RAMBlock used in the last src_page_requests */
381 /* Queue of outstanding page requests from the destination */
382 QemuMutex src_page_req_mutex;
384 };
391 /* Whether postcopy has queued requests? */
393 {
395 }
398 {
400 }
403 {
405 }
408 {
410 }
413 {
414 PrecopyNotifyData pnd;
419 }
422 {
425 }
427 /*
428 * NOTE: not all stats in ram_counters are used in reality. See comments
429 * for struct MigrationAtomicStats. The ultimate result of ram migration
430 * counters will be a merged version with both ram_counters and the atomic
431 * fields in ram_atomic_counters.
432 */
433 MigrationStats ram_counters;
434 MigrationAtomicStats ram_atomic_counters;
437 {
444 }
446 }
449 {
451 }
453 CompressionStats compression_counters;
460 QemuMutex mutex;
461 QemuCond cond;
463 ram_addr_t offset;
465 /* internally used fields */
466 z_stream stream;
468 };
474 QemuMutex mutex;
475 QemuCond cond;
479 z_stream stream;
480 };
485 /* comp_done_cond is used to wake up the migration thread when
486 * one of the compression threads has finished the compression.
487 * comp_done_lock is used to co-work with comp_done_cond.
488 */
503 /* NOTE: page is the PFN not real ram_addr_t. */
505 {
509 }
511 /*
512 * Check whether two PSSs are actively sending the same page. Return true
513 * if it is, false otherwise.
514 */
516 {
519 }
522 {
525 ram_addr_t offset;
548 }
549 }
553 }
556 {
561 }
565 /*
566 * we use it as a indicator which shows if the thread is
567 * properly init'd or not
568 */
571 }
585 }
592 }
595 {
600 }
610 }
616 }
618 /* comp_param[i].file is just used as a dummy buffer to save data,
619 * set its ops to empty.
620 */
629 QEMU_THREAD_JOINABLE);
630 }
633 exit:
636 }
638 /**
639 * save_page_header: write page header to wire
640 *
641 * If this is the 1st block, it also writes the block identification
642 *
643 * Returns the number of bytes written
644 *
645 * @pss: current PSS channel status
646 * @block: block that contains the page we want to send
647 * @offset: offset inside the block for the page
648 * in the lower bits, it contains flags
649 */
651 ram_addr_t offset)
652 {
659 }
669 }
671 }
673 /**
674 * mig_throttle_guest_down: throttle down the guest
675 *
676 * Reduce amount of guest cpu execution to hopefully slow down memory
677 * writes. If guest dirty memory rate is reduced below the rate at
678 * which we can transfer pages to the destination then we should be
679 * able to complete migration. Some workloads dirty memory way too
680 * fast and will not effectively converge, even with auto-converge.
681 */
684 {
694 /* We have not started throttling yet. Let's start it. */
698 /* Throttling already on, just increase the rate */
702 /* Compute the ideal CPU percentage used by Guest, which may
703 * make the dirty rate match the dirty rate threshold. */
706 bytes_dirty_period);
708 }
710 }
711 }
714 {
720 }
722 /**
723 * xbzrle_cache_zero_page: insert a zero page in the XBZRLE cache
724 *
725 * @rs: current RAM state
726 * @current_addr: address for the zero page
727 *
728 * Update the xbzrle cache to reflect a page that's been sent as all 0.
729 * The important thing is that a stale (not-yet-0'd) page be replaced
730 * by the new data.
731 * As a bonus, if the page wasn't in the cache it gets added so that
732 * when a small write is made into the 0'd page it gets XBZRLE sent.
733 */
735 {
736 /* We don't care if this fails to allocate a new cache page
737 * as long as it updated an old one */
740 }
742 #define ENCODING_FLAG_XBZRLE 0x1
744 /**
745 * save_xbzrle_page: compress and send current page
746 *
747 * Returns: 1 means that we wrote the page
748 * 0 means that page is identical to the one already sent
749 * -1 means that xbzrle would be longer than normal
750 *
751 * @rs: current RAM state
752 * @pss: current PSS channel
753 * @current_data: pointer to the address of the page contents
754 * @current_addr: addr of the page
755 * @block: block that contains the page we want to send
756 * @offset: offset inside the block for the page
757 */
761 {
774 /* update *current_data when the page has been
775 inserted into cache */
777 }
778 }
780 }
782 /*
783 * Reaching here means the page has hit the xbzrle cache, no matter what
784 * encoding result it is (normal encoding, overflow or skipping the page),
785 * count the page as encoded. This is used to calculate the encoding rate.
786 *
787 * Example: 2 pages (8KB) being encoded, first page encoding generates 2KB,
788 * 2nd page turns out to be skipped (i.e. no new bytes written to the
789 * page), the overall encoding rate will be 8KB / 2KB = 4, which has the
790 * skipped page included. In this way, the encoding rate can tell if the
791 * guest page is good for xbzrle encoding.
792 */
796 /* save current buffer into memory */
799 /* XBZRLE encoding (if there is no overflow) */
802 TARGET_PAGE_SIZE);
804 /*
805 * Update the cache contents, so that it corresponds to the data
806 * sent, in all cases except where we skip the page.
807 */
810 /*
811 * In the case where we couldn't compress, ensure that the caller
812 * sends the data from the cache, since the guest might have
813 * changed the RAM since we copied it.
814 */
816 }
826 }
828 /* Send XBZRLE based compressed page */
835 /*
836 * Like compressed_size (please see update_compress_thread_counts),
837 * the xbzrle encoded bytes don't count the 8 byte header with
838 * RAM_SAVE_FLAG_CONTINUE.
839 */
844 }
846 /**
847 * pss_find_next_dirty: find the next dirty page of current ramblock
848 *
849 * This function updates pss->page to point to the next dirty page index
850 * within the ramblock to migrate, or the end of ramblock when nothing
851 * found. Note that when pss->host_page_sending==true it means we're
852 * during sending a host page, so we won't look for dirty page that is
853 * outside the host page boundary.
854 *
855 * @pss: the current page search status
856 */
858 {
864 /* Points directly to the end, so we know no dirty page */
867 }
869 /*
870 * If during sending a host page, only look for dirty pages within the
871 * current host page being send.
872 */
876 }
879 }
883 {
889 }
892 /*
893 * CLEAR_BITMAP_SHIFT_MIN should always guarantee this... this
894 * can make things easier sometimes since then start address
895 * of the small chunk will always be 64 pages aligned so the
896 * bitmap will always be aligned to unsigned long. We should
897 * even be able to remove this restriction but I'm simply
898 * keeping it.
899 */
906 }
908 static void
912 {
917 /*
918 * Clear pages from start to start + npages - 1, so the end boundary is
919 * exclusive.
920 */
923 }
924 }
926 /*
927 * colo_bitmap_find_diry:find contiguous dirty pages from start
928 *
929 * Returns the page offset within memory region of the start of the contiguout
930 * dirty page
931 *
932 * @rs: current RAM state
933 * @rb: RAMBlock where to search for dirty pages
934 * @start: page where we start the search
935 * @num: the number of contiguous dirty pages
936 */
940 {
949 }
954 }
959 }
964 {
967 /*
968 * Clear dirty bitmap if needed. This _must_ be called before we
969 * send any of the page in the chunk because we need to make sure
970 * we can capture further page content changes when we sync dirty
971 * log the next time. So as long as we are going to send any of
972 * the page in the chunk we clear the remote dirty bitmap for all.
973 * Clearing it earlier won't be a problem, but too late will.
974 */
980 }
983 }
987 {
995 /*
996 * We don't grab ram_state->bitmap_mutex because we expect to run
997 * only when starting migration or during postcopy recovery where
998 * we don't have concurrent access.
999 */
1002 }
1005 }
1007 /*
1008 * Exclude all dirty pages from migration that fall into a discarded range as
1009 * managed by a RamDiscardManager responsible for the mapped memory region of
1010 * the RAMBlock. Clear the corresponding bits in the dirty bitmaps.
1011 *
1012 * Discarded pages ("logically unplugged") have undefined content and must
1013 * not get migrated, because even reading these pages for migration might
1014 * result in undesired behavior.
1015 *
1016 * Returns the number of cleared bits in the RAMBlock dirty bitmap.
1017 *
1018 * Note: The result is only stable while migrating (precopy/postcopy).
1019 */
1021 {
1026 MemoryRegionSection section = {
1030 };
1033 dirty_bitmap_clear_section,
1035 }
1037 }
1039 /*
1040 * Check if a host-page aligned page falls into a discarded range as managed by
1041 * a RamDiscardManager responsible for the mapped memory region of the RAMBlock.
1042 *
1043 * Note: The result is only stable while migrating (precopy/postcopy).
1044 */
1046 {
1049 MemoryRegionSection section = {
1053 };
1056 }
1058 }
1060 /* Called with RCU critical section */
1062 {
1068 }
1070 /**
1071 * ram_pagesize_summary: calculate all the pagesizes of a VM
1072 *
1073 * Returns a summary bitmap of the page sizes of all RAMBlocks
1074 *
1075 * For VMs with just normal pages this is equivalent to the host page
1076 * size. If it's got some huge pages then it's the OR of all the
1077 * different page sizes.
1078 */
1080 {
1086 }
1089 }
1092 {
1096 }
1099 {
1103 /* calculate period counters */
1109 }
1118 TARGET_PAGE_SIZE;
1124 }
1127 }
1140 /* Compression-Ratio = Uncompressed-size / Compressed-size */
1146 }
1147 }
1148 }
1151 {
1159 /* During block migration the auto-converge logic incorrectly detects
1160 * that ram migration makes no progress. Avoid this by disabling the
1161 * throttling logic during the bulk phase of block migration. */
1163 /* The following detection logic can be refined later. For now:
1164 Check to see if the ratio between dirtied bytes and the approx.
1165 amount of bytes that just got transferred since the last time
1166 we were in this routine reaches the threshold. If that happens
1167 twice, start or increase throttling. */
1174 bytes_dirty_threshold);
1175 }
1176 }
1177 }
1180 {
1188 }
1197 }
1199 }
1207 /* more than 1 second = 1000 millisecons */
1215 /* reset period counters */
1219 }
1222 }
1223 }
1226 {
1229 /*
1230 * The current notifier usage is just an optimization to migration, so we
1231 * don't stop the normal migration process in the error case.
1232 */
1236 }
1242 }
1243 }
1246 {
1249 }
1252 }
1254 /**
1255 * save_zero_page_to_file: send the zero page to the file
1256 *
1257 * Returns the size of data written to the file, 0 means the page is not
1258 * a zero page
1259 *
1260 * @pss: current PSS channel
1261 * @block: block that contains the page we want to send
1262 * @offset: offset inside the block for the page
1263 */
1266 {
1276 }
1278 }
1280 /**
1281 * save_zero_page: send the zero page to the stream
1282 *
1283 * Returns the number of pages written.
1284 *
1285 * @pss: current PSS channel
1286 * @block: block that contains the page we want to send
1287 * @offset: offset inside the block for the page
1288 */
1290 ram_addr_t offset)
1291 {
1298 }
1300 }
1302 /*
1303 * @pages: the number of pages written by the control path,
1304 * < 0 - error
1305 * > 0 - number of pages written
1306 *
1307 * Return true if the pages has been saved, otherwise false is returned.
1308 */
1311 {
1320 }
1325 }
1329 }
1335 }
1338 }
1340 /*
1341 * directly send the page to the stream
1342 *
1343 * Returns the number of pages written.
1344 *
1345 * @pss: current PSS channel
1346 * @block: block that contains the page we want to send
1347 * @offset: offset inside the block for the page
1348 * @buf: the page to be sent
1349 * @async: send to page asyncly
1350 */
1353 {
1364 }
1368 }
1370 /**
1371 * ram_save_page: send the given page to the stream
1372 *
1373 * Returns the number of pages written.
1374 * < 0 - error
1375 * >=0 - Number of pages written - this might legally be 0
1376 * if xbzrle noticed the page was the same.
1377 *
1378 * @rs: current RAM state
1379 * @block: block that contains the page we want to send
1380 * @offset: offset inside the block for the page
1381 */
1383 {
1399 /* Can't send this cached data async, since the cache page
1400 * might get updated before it gets to the wire
1401 */
1403 }
1404 }
1406 /* XBZRLE overflow or normal page */
1409 }
1414 }
1417 ram_addr_t offset)
1418 {
1421 }
1425 }
1429 {
1437 }
1441 /*
1442 * copy it to a internal buffer to avoid it being modified by VM
1443 * so that we can catch up the error during compression and
1444 * decompression
1445 */
1451 }
1453 }
1455 static void
1457 {
1463 }
1465 /* 8 means a header with RAM_SAVE_FLAG_CONTINUE. */
1468 }
1473 {
1479 }
1486 }
1487 }
1494 /*
1495 * it's safe to fetch zero_page without holding comp_done_lock
1496 * as there is no further request submitted to the thread,
1497 * i.e, the thread should be waiting for a request at this point.
1498 */
1500 }
1502 }
1503 }
1506 ram_addr_t offset)
1507 {
1510 }
1513 {
1520 retry:
1533 }
1534 }
1536 /*
1537 * wait for the free thread if the user specifies 'compress-wait-thread',
1538 * otherwise we will post the page out in the main thread as normal page.
1539 */
1543 }
1547 }
1549 /**
1550 * find_dirty_block: find the next dirty page and update any state
1551 * associated with the search process.
1552 *
1553 * Returns true if a page is found
1554 *
1555 * @rs: current RAM state
1556 * @pss: data about the state of the current dirty page scan
1557 * @again: set to false if the search has scanned the whole of RAM
1558 */
1560 {
1561 /* Update pss->page for the next dirty bit in ramblock */
1566 /*
1567 * We've been once around the RAM and haven't found anything.
1568 * Give up.
1569 */
1572 }
1575 /* Didn't find anything in this RAM Block */
1579 /*
1580 * If memory migration starts over, we will meet a dirtied page
1581 * which may still exists in compression threads's ring, so we
1582 * should flush the compressed data to make sure the new page
1583 * is not overwritten by the old one in the destination.
1584 *
1585 * Also If xbzrle is on, stop using the data compression at this
1586 * point. In theory, xbzrle can do better than compression.
1587 */
1590 /* Hit the end of the list */
1592 /* Flag that we've looped */
1594 /* After the first round, enable XBZRLE. */
1597 }
1598 }
1599 /* Didn't find anything this time, but try again on the new block */
1603 /* Can go around again, but... */
1605 /* We've found something so probably don't need to */
1607 }
1608 }
1610 /**
1611 * unqueue_page: gets a page of the queue
1612 *
1613 * Helper for 'get_queued_page' - gets a page off the queue
1614 *
1615 * Returns the block of the page (or NULL if none available)
1616 *
1617 * @rs: current RAM state
1618 * @offset: used to return the offset within the RAMBlock
1619 */
1621 {
1627 }
1631 /*
1632 * This should _never_ change even after we take the lock, because no one
1633 * should be taking anything off the request list other than us.
1634 */
1649 }
1652 }
1654 #if defined(__linux__)
1655 /**
1656 * poll_fault_page: try to get next UFFD write fault page and, if pending fault
1657 * is found, return RAM block pointer and page offset
1658 *
1659 * Returns pointer to the RAMBlock containing faulting page,
1660 * NULL if no write faults are pending
1661 *
1662 * @rs: current RAM state
1663 * @offset: page offset from the beginning of the block
1664 */
1666 {
1674 }
1679 }
1685 }
1687 /**
1688 * ram_save_release_protection: release UFFD write protection after
1689 * a range of pages has been saved
1690 *
1691 * @rs: current RAM state
1692 * @pss: page-search-status structure
1693 * @start_page: index of the first page in the range relative to pss->block
1694 *
1695 * Returns 0 on success, negative value in case of an error
1696 */
1699 {
1702 /* Check if page is from UFFD-managed region. */
1707 /* Flush async buffers before un-protect. */
1709 /* Un-protect memory range. */
1712 }
1715 }
1717 /* ram_write_tracking_available: check if kernel supports required UFFD features
1718 *
1719 * Returns true if supports, false otherwise
1720 */
1722 {
1729 }
1731 /* ram_write_tracking_compatible: check if guest configuration is
1732 * compatible with 'write-tracking'
1733 *
1734 * Returns true if compatible, false otherwise
1735 */
1737 {
1743 /* Open UFFD file descriptor */
1747 }
1754 /* Nothing to do with read-only and MMIO-writable regions */
1757 }
1758 /* Try to register block memory via UFFD-IO to track writes */
1762 }
1765 }
1766 }
1769 out:
1772 }
1775 ram_addr_t size)
1776 {
1777 /*
1778 * We read one byte of each page; this will preallocate page tables if
1779 * required and populate the shared zeropage on MAP_PRIVATE anonymous memory
1780 * where no page was populated yet. This might require adaption when
1781 * supporting other mappings, like shmem.
1782 */
1786 /* Don't optimize the read out */
1788 }
1789 }
1793 {
1800 }
1802 /*
1803 * ram_block_populate_read: preallocate page tables and populate pages in the
1804 * RAM block by reading a byte of each page.
1805 *
1806 * Since it's solely used for userfault_fd WP feature, here we just
1807 * hardcode page size to qemu_real_host_page_size.
1808 *
1809 * @block: RAM block to populate
1810 */
1812 {
1813 /*
1814 * Skip populating all pages that fall into a discarded range as managed by
1815 * a RamDiscardManager responsible for the mapped memory region of the
1816 * RAMBlock. Such discarded ("logically unplugged") parts of a RAMBlock
1817 * must not get populated automatically. We don't have to track
1818 * modifications via userfaultfd WP reliably, because these pages will
1819 * not be part of the migration stream either way -- see
1820 * ramblock_dirty_bitmap_exclude_discarded_pages().
1821 *
1822 * Note: The result is only stable while migrating (precopy/postcopy).
1823 */
1826 MemoryRegionSection section = {
1830 };
1836 }
1837 }
1839 /*
1840 * ram_write_tracking_prepare: prepare for UFFD-WP memory tracking
1841 */
1843 {
1849 /* Nothing to do with read-only and MMIO-writable regions */
1852 }
1854 /*
1855 * Populate pages of the RAM block before enabling userfault_fd
1856 * write protection.
1857 *
1858 * This stage is required since ioctl(UFFDIO_WRITEPROTECT) with
1859 * UFFDIO_WRITEPROTECT_MODE_WP mode setting would silently skip
1860 * pages with pte_none() entries in page table.
1861 */
1863 }
1864 }
1866 /*
1867 * ram_write_tracking_start: start UFFD-WP memory tracking
1868 *
1869 * Returns 0 for success or negative value in case of error
1870 */
1872 {
1877 /* Open UFFD file descriptor */
1881 }
1887 /* Nothing to do with read-only and MMIO-writable regions */
1890 }
1892 /* Register block memory with UFFD to track writes */
1896 }
1897 /* Apply UFFD write protection to the block memory range */
1901 }
1907 }
1911 fail:
1917 }
1918 /*
1919 * In case some memory block failed to be write-protected
1920 * remove protection and unregister all succeeded RAM blocks
1921 */
1925 /* Cleanup flags and remove reference */
1928 }
1933 }
1935 /**
1936 * ram_write_tracking_stop: stop UFFD-WP memory tracking and remove protection
1937 */
1939 {
1948 }
1949 /* Remove protection and unregister all affected RAM blocks */
1957 /* Cleanup flags and remove reference */
1960 }
1962 /* Finally close UFFD file descriptor */
1965 }
1967 #else
1968 /* No target OS support, stubs just fail or ignore */
1971 {
1976 }
1980 {
1986 }
1989 {
1991 }
1994 {
1997 }
2000 {
2003 }
2006 {
2008 }
2011 /**
2012 * get_queued_page: unqueue a page from the postcopy requests
2013 *
2014 * Skips pages that are already sent (!dirty)
2015 *
2016 * Returns true if a queued page is found
2017 *
2018 * @rs: current RAM state
2019 * @pss: data about the state of the current dirty page scan
2020 */
2022 {
2024 ram_addr_t offset;
2029 /*
2030 * We're sending this page, and since it's postcopy nothing else
2031 * will dirty it, and we must make sure it doesn't get sent again
2032 * even if this queue request was received after the background
2033 * search already sent it.
2034 */
2042 page);
2045 }
2046 }
2051 /*
2052 * Poll write faults too if background snapshot is enabled; that's
2053 * when we have vcpus got blocked by the write protected pages.
2054 */
2056 }
2059 /*
2060 * We want the background search to continue from the queued page
2061 * since the guest is likely to want other pages near to the page
2062 * it just requested.
2063 */
2067 /*
2068 * This unqueued page would break the "one round" check, even is
2069 * really rare.
2070 */
2072 }
2075 }
2077 /**
2078 * migration_page_queue_free: drop any remaining pages in the ram
2079 * request queue
2080 *
2081 * It should be empty at the end anyway, but in error cases there may
2082 * be some left. in case that there is any page left, we drop it.
2083 *
2084 */
2086 {
2088 /* This queue generally should be empty - but in the case of a failed
2089 * migration might have some droppings in.
2090 */
2096 }
2097 }
2099 /**
2100 * ram_save_queue_pages: queue the page for transmission
2101 *
2102 * A request from postcopy destination for example.
2103 *
2104 * Returns zero on success or negative on error
2105 *
2106 * @rbname: Name of the RAMBLock of the request. NULL means the
2107 * same that last one.
2108 * @start: starting address from the start of the RAMBlock
2109 * @len: length (in bytes) to send
2110 */
2112 {
2120 /* Reuse last RAMBlock */
2124 /*
2125 * Shouldn't happen, we can't reuse the last RAMBlock if
2126 * it's the 1st request.
2127 */
2130 }
2135 /* We shouldn't be asked for a non-existent RAMBlock */
2138 }
2140 }
2147 }
2149 /*
2150 * When with postcopy preempt, we send back the page directly in the
2151 * rp-return thread.
2152 */
2162 /*
2163 * Always use the preempt channel, and make sure it's there. It's
2164 * safe to access without lock, because when rp-thread is running
2165 * we should be the only one who operates on the qemufile
2166 */
2170 /*
2171 * It must be either one or multiple of host page size. Just
2172 * assert; if something wrong we're mostly split brain anyway.
2173 */
2182 }
2183 /*
2184 * NOTE: after ram_save_host_page_urgent() succeeded, pss->page
2185 * will automatically be moved and point to the next host page
2186 * we're going to send, so no need to update here.
2187 *
2188 * Normally QEMU never sends >1 host page in requests, so
2189 * logically we don't even need that as the loop should only
2190 * run once, but just to be consistent.
2191 */
2193 };
2197 }
2212 }
2215 {
2218 }
2220 /*
2221 * If xbzrle is enabled (e.g., after first round of migration), stop
2222 * using the data compression. In theory, xbzrle can do better than
2223 * compression.
2224 */
2227 }
2230 }
2232 /*
2233 * try to compress the page before posting it out, return true if the page
2234 * has been properly handled by compression, otherwise needs other
2235 * paths to handle it
2236 */
2239 {
2242 }
2244 /*
2245 * When starting the process of a new block, the first page of
2246 * the block should be sent out before other pages in the same
2247 * block, and all the pages in last block should have been sent
2248 * out, keeping this order is important, because the 'cont' flag
2249 * is used to avoid resending the block name.
2250 *
2251 * We post the fist page as normal page as compression will take
2252 * much CPU resource.
2253 */
2257 }
2261 }
2265 }
2267 /**
2268 * ram_save_target_page: save one target page
2269 *
2270 * Returns the number of pages written
2271 *
2272 * @rs: current RAM state
2273 * @pss: data about the page we want to send
2274 */
2276 {
2283 }
2287 }
2291 /* Must let xbzrle know, otherwise a previous (now 0'd) cached
2292 * page would be stale
2293 */
2298 }
2300 }
2302 /*
2303 * Do not use multifd in postcopy as one whole host page should be
2304 * placed. Meanwhile postcopy requires atomic update of pages, so even
2305 * if host page size == guest page size the dest guest during run may
2306 * still see partially copied pages which is data corruption.
2307 */
2310 }
2313 }
2315 /* Should be called before sending a host page */
2317 {
2318 /* How many guest pages are there in one host page? */
2323 /*
2324 * This covers both when guest psize == host psize, or when guest
2325 * has larger psize than the host (guest_pfns==0).
2326 *
2327 * For the latter, we always send one whole guest page per
2328 * iteration of the host page (example: an Alpha VM on x86 host
2329 * will have guest psize 8K while host psize 4K).
2330 */
2334 /*
2335 * The host page spans over multiple guest pages, we send them
2336 * within the same host page iteration.
2337 */
2340 }
2341 }
2343 /*
2344 * Whether the page pointed by PSS is within the host page being sent.
2345 * Must be called after a previous pss_host_page_prepare().
2346 */
2348 {
2349 ram_addr_t ram_addr;
2353 /* Over host-page boundary? */
2356 }
2361 }
2364 {
2366 /* This is not needed, but just to reset it */
2368 }
2370 /*
2371 * Send an urgent host page specified by `pss'. Need to be called with
2372 * bitmap_mutex held.
2373 *
2374 * Returns 0 if save host page succeeded, false otherwise.
2375 */
2377 {
2385 /*
2386 * If precopy is sending the same page, let it be done in precopy, or
2387 * we could send the same page in two channels and none of them will
2388 * receive the whole page.
2389 */
2394 }
2400 /* Be strict to return code; it must be 1, or what else? */
2405 }
2407 }
2410 out:
2412 /* For urgent requests, flush immediately if sent */
2415 }
2417 }
2419 /**
2420 * ram_save_host_page: save a whole host page
2421 *
2422 * Starting at *offset send pages up to the end of the current host
2423 * page. It's valid for the initial offset to point into the middle of
2424 * a host page in which case the remainder of the hostpage is sent.
2425 * Only dirty target pages are sent. Note that the host page size may
2426 * be a huge page for this block.
2427 *
2428 * The saving stops at the boundary of the used_length of the block
2429 * if the RAMBlock isn't a multiple of the host page size.
2430 *
2431 * The caller must be with ram_state.bitmap_mutex held to call this
2432 * function. Note that this function can temporarily release the lock, but
2433 * when the function is returned it'll make sure the lock is still held.
2434 *
2435 * Returns the number of pages written or negative on error
2436 *
2437 * @rs: current RAM state
2438 * @pss: data about the page we want to send
2439 */
2441 {
2452 }
2454 /* Update host page boundary information */
2460 /* Check the pages is dirty and if it is send it */
2462 /*
2463 * Properly yield the lock only in postcopy preempt mode
2464 * because both migration thread and rp-return thread can
2465 * operate on the bitmaps.
2466 */
2469 }
2473 /*
2474 * Allow rate limiting to happen in the middle of huge pages if
2475 * something is sent in the current iteration.
2476 */
2479 }
2480 }
2483 }
2486 }
2491 }
2500 }
2502 /**
2503 * ram_find_and_save_block: finds a dirty page and sends it to f
2504 *
2505 * Called within an RCU critical section.
2506 *
2507 * Returns the number of pages written where zero means no dirty pages,
2508 * or negative on error
2509 *
2510 * @rs: current RAM state
2511 *
2512 * On systems where host-page-size > target-page-size it will send all the
2513 * pages in a host page that are dirty.
2514 */
2516 {
2521 /* No dirty page as there is zero RAM */
2524 }
2526 /*
2527 * Always keep last_seen_block/last_page valid during this procedure,
2528 * because find_dirty_block() relies on these values (e.g., we compare
2529 * last_seen_block with pss.block to see whether we searched all the
2530 * ramblocks) to detect the completion of migration. Having NULL value
2531 * of last_seen_block can conditionally cause below loop to run forever.
2532 */
2536 }
2545 /* priority queue empty, so just search for something dirty */
2547 }
2551 }
2558 }
2561 {
2570 }
2571 }
2574 {
2583 }
2587 }
2588 }
2590 }
2593 {
2595 }
2598 {
2600 }
2603 {
2606 }
2609 {
2616 }
2617 }
2620 {
2631 }
2633 }
2636 {
2640 /* We don't use dirty log with background snapshots */
2642 /* caller have hold iothread lock or is in a bh, so there is
2643 * no writing race against the migration bitmap
2644 */
2646 /*
2647 * do not stop dirty log without starting it, since
2648 * memory_global_dirty_log_stop will assert that
2649 * memory_global_dirty_log_start/stop used in pairs
2650 */
2652 }
2653 }
2660 }
2665 }
2668 {
2673 }
2679 }
2683 /* **** functions for postcopy ***** */
2686 {
2701 }
2702 }
2703 }
2705 /**
2706 * postcopy_send_discard_bm_ram: discard a RAMBlock
2707 *
2708 * Callback from postcopy_each_ram_send_discard for each RAMBlock
2709 *
2710 * @ms: current migration state
2711 * @block: RAMBlock to discard
2712 */
2714 {
2725 }
2733 }
2736 }
2737 }
2741 /**
2742 * postcopy_each_ram_send_discard: discard all RAMBlocks
2743 *
2744 * Utility for the outgoing postcopy code.
2745 * Calls postcopy_send_discard_bm_ram for each RAMBlock
2746 * passing it bitmap indexes and name.
2747 * (qemu_ram_foreach_block ends up passing unscaled lengths
2748 * which would mean postcopy code would have to deal with target page)
2749 *
2750 * @ms: current migration state
2751 */
2753 {
2759 /*
2760 * Deal with TPS != HPS and huge pages. It discard any partially sent
2761 * host-page size chunks, mark any partially dirty host-page size
2762 * chunks as all dirty. In this case the host-page is the host-page
2763 * for the particular RAMBlock, i.e. it might be a huge page.
2764 */
2767 /*
2768 * Postcopy sends chunks of bitmap over the wire, but it
2769 * just needs indexes at this point, avoids it having
2770 * target page specific code.
2771 */
2774 }
2775 }
2777 /**
2778 * postcopy_chunk_hostpages_pass: canonicalize bitmap in hostpages
2779 *
2780 * Helper for postcopy_chunk_hostpages; it's called twice to
2781 * canonicalize the two bitmaps, that are similar, but one is
2782 * inverted.
2783 *
2784 * Postcopy requires that all target pages in a hostpage are dirty or
2785 * clean, not a mix. This function canonicalizes the bitmaps.
2786 *
2787 * @ms: current migration state
2788 * @block: block that contains the page we want to canonicalize
2789 */
2791 {
2799 /* Easy case - TPS==HPS for a non-huge page RAMBlock */
2801 }
2803 /* Find a dirty page */
2808 /*
2809 * If the start of this run of pages is in the middle of a host
2810 * page, then we need to fixup this host page.
2811 */
2813 /* Find the end of this run */
2815 /*
2816 * If the end isn't at the start of a host page, then the
2817 * run doesn't finish at the end of a host page
2818 * and we need to discard.
2819 */
2820 }
2825 host_ratio);
2828 /* Clean up the bitmap */
2831 /*
2832 * Remark them as dirty, updating the count for any pages
2833 * that weren't previously dirty.
2834 */
2836 }
2837 }
2839 /* Find the next dirty page for the next iteration */
2841 }
2842 }
2844 /**
2845 * ram_postcopy_send_discard_bitmap: transmit the discard bitmap
2846 *
2847 * Transmit the set of pages to be discarded after precopy to the target
2848 * these are pages that:
2849 * a) Have been previously transmitted but are now dirty again
2850 * b) Pages that have never been transmitted, this ensures that
2851 * any pages on the destination that have been mapped by background
2852 * tasks get discarded (transparent huge pages is the specific concern)
2853 * Hopefully this is pretty sparse
2854 *
2855 * @ms: current migration state
2856 */
2858 {
2863 /* This should be our last sync, the src is now paused */
2866 /* Easiest way to make sure we don't resume in the middle of a host-page */
2874 }
2876 /**
2877 * ram_discard_range: discard dirtied pages at the beginning of postcopy
2878 *
2879 * Returns zero on success
2880 *
2881 * @rbname: name of the RAMBlock of the request. NULL means the
2882 * same that last one.
2883 * @start: RAMBlock starting page
2884 * @length: RAMBlock size
2885 */
2887 {
2896 }
2898 /*
2899 * On source VM, we don't need to update the received bitmap since
2900 * we don't even have one.
2901 */
2905 }
2908 }
2910 /*
2911 * For every allocation, we will try not to crash the VM if the
2912 * allocation failed.
2913 */
2915 {
2920 }
2928 }
2935 }
2941 }
2947 }
2949 /* We are all good */
2953 free_encoded_buf:
2956 free_cache:
2959 free_zero_page:
2962 err_out:
2965 }
2968 {
2974 }
2980 /*
2981 * Count the total number of pages used by ram blocks not including any
2982 * gaps due to alignment or unplugs.
2983 * This must match with the initial values of dirty bitmap.
2984 */
2989 }
2992 {
2998 /* Skip setting bitmap if there is no RAM */
3009 }
3013 /*
3014 * The initial dirty bitmap for migration must be set with all
3015 * ones to make sure we'll migrate every guest RAM page to
3016 * destination.
3017 * Here we set RAMBlock.bmap all to 1 because when rebegin a
3018 * new migration after a failed migration, ram_list.
3019 * dirty_memory[DIRTY_MEMORY_MIGRATION] don't include the whole
3020 * guest memory.
3021 */
3026 }
3027 }
3028 }
3031 {
3040 }
3041 }
3044 {
3045 /* For memory_global_dirty_log_start below. */
3051 /* We don't use dirty log with background snapshots */
3055 }
3056 }
3060 /*
3061 * After an eventual first bitmap sync, fixup the initial bitmap
3062 * containing all 1s to exclude any discarded pages from migration.
3063 */
3065 }
3068 {
3071 }
3076 }
3081 }
3084 {
3088 /*
3089 * Postcopy is not using xbzrle/compression, so no need for that.
3090 * Also, since source are already halted, we don't need to care
3091 * about dirty page logging as well.
3092 */
3097 }
3099 /* This may not be aligned with current bitmaps. Recalculate. */
3104 /* Update RAMState cache of output QEMUFile */
3108 }
3110 /*
3111 * This function clears bits of the free pages reported by the caller from the
3112 * migration dirty bitmap. @addr is the host address corresponding to the
3113 * start of the continuous guest free pages, and @len is the total bytes of
3114 * those pages.
3115 */
3117 {
3119 ram_addr_t offset;
3123 /* This function is currently expected to be used during live migration */
3126 }
3131 /*
3132 * The implementation might not support RAMBlock resize during
3133 * live migration, but it could happen in theory with future
3134 * updates. So we add a check here to capture that case.
3135 */
3138 }
3144 }
3150 /*
3151 * The skipped free pages are equavalent to be sent from clear_bmap's
3152 * perspective, so clear the bits from the memory region bitmap which
3153 * are initially set. Otherwise those skipped pages will be sent in
3154 * the next round after syncing from the memory region bitmap.
3155 */
3161 }
3162 }
3164 /*
3165 * Each of ram_save_setup, ram_save_iterate and ram_save_complete has
3166 * long-running RCU critical section. When rcu-reclaims in the code
3167 * start to become numerous it will be necessary to reduce the
3168 * granularity of these critical sections.
3169 */
3171 /**
3172 * ram_save_setup: Setup RAM for migration
3173 *
3174 * Returns zero to indicate success and negative for error
3175 *
3176 * @f: QEMUFile where to send the data
3177 * @opaque: RAMState pointer
3178 */
3180 {
3187 }
3189 /* migration has already setup the bitmap, reuse it. */
3194 }
3195 }
3206 qemu_host_page_size) {
3208 }
3211 }
3212 }
3213 }
3221 }
3227 }
3229 /**
3230 * ram_save_iterate: iterative stage for migration
3231 *
3232 * Returns zero to indicate success and negative for error
3233 *
3234 * @f: QEMUFile where to send the data
3235 * @opaque: RAMState pointer
3236 */
3238 {
3247 /* Avoid transferring ram during bulk phase of block migration as
3248 * the bulk phase will usually take a long time and transferring
3249 * ram updates during that time is pointless. */
3251 }
3253 /*
3254 * We'll take this lock a little bit long, but it's okay for two reasons.
3255 * Firstly, the only possible other thread to take it is who calls
3256 * qemu_guest_free_page_hint(), which should be rare; secondly, see
3257 * MAX_WAIT (if curious, further see commit 4508bd9ed8053ce) below, which
3258 * guarantees that we'll at least released it in a regular basis.
3259 */
3264 }
3266 /* Read version before ram_list.blocks */
3279 }
3282 /* no more pages to sent */
3286 }
3291 }
3295 /*
3296 * During postcopy, it is necessary to make sure one whole host
3297 * page is sent in one chunk.
3298 */
3301 }
3303 /*
3304 * we want to check in the 1st loop, just in case it was the 1st
3305 * time and we had to sync the dirty bitmap.
3306 * qemu_clock_get_ns() is a bit expensive, so we only check each
3307 * some iterations
3308 */
3315 }
3316 }
3317 i++;
3318 }
3319 }
3322 /*
3323 * Must occur before EOS (or any QEMUFile operation)
3324 * because of RDMA protocol.
3325 */
3328 out:
3334 }
3341 }
3344 }
3347 }
3349 /**
3350 * ram_save_complete: function called to send the remaining amount of ram
3351 *
3352 * Returns zero to indicate success or negative on error
3353 *
3354 * Called with iothread lock
3355 *
3356 * @f: QEMUFile where to send the data
3357 * @opaque: RAMState pointer
3358 */
3360 {
3370 }
3374 /* try transferring iterative blocks of memory */
3376 /* flush all remaining blocks regardless of rate limiting */
3382 /* no more blocks to sent */
3385 }
3389 }
3390 }
3395 }
3399 }
3404 }
3410 }
3416 {
3423 /* We can do postcopy, and all the data is postcopiable */
3427 }
3428 }
3434 {
3444 }
3447 }
3450 /* We can do postcopy, and all the data is postcopiable */
3454 }
3455 }
3458 {
3463 /* extract RLE header */
3470 }
3475 }
3477 /* load data and decode */
3478 /* it can change loaded_data to point to an internal buffer */
3481 /* decode RLE */
3486 }
3489 }
3491 /**
3492 * ram_block_from_stream: read a RAMBlock id from the migration stream
3493 *
3494 * Must be called from within a rcu critical section.
3495 *
3496 * Returns a pointer from within the RCU-protected ram_list.
3497 *
3498 * @mis: the migration incoming state pointer
3499 * @f: QEMUFile where to read the data from
3500 * @flags: Page flags (mostly to see if it's a continuation of previous block)
3501 * @channel: the channel we're using
3502 */
3506 {
3515 }
3517 }
3527 }
3532 }
3537 }
3540 ram_addr_t offset)
3541 {
3544 }
3547 }
3550 ram_addr_t offset)
3551 {
3552 /* Note: Explicitly no check against offset_in_ramblock(). */
3555 }
3558 ram_addr_t offset)
3559 {
3561 }
3565 {
3568 }
3573 }
3575 /*
3576 * During colo checkpoint, we need bitmap of these migrated pages.
3577 * It help us to decide which pages in ram cache should be flushed
3578 * into VM's RAM later.
3579 */
3583 }
3585 }
3587 /**
3588 * ram_handle_compressed: handle the zero page case
3589 *
3590 * If a page (or a whole RDMA chunk) has been
3591 * determined to be zero, then zap it.
3592 *
3593 * @host: host address for the zero page
3594 * @ch: what the page is filled from. We only support zero
3595 * @size: size of the zero page
3596 */
3598 {
3601 }
3602 }
3604 /* return the size after decompression, or negative value on error */
3605 static int
3608 {
3614 }
3624 }
3627 }
3630 {
3651 }
3661 }
3662 }
3666 }
3669 {
3674 }
3681 }
3682 }
3685 }
3688 {
3693 }
3696 /*
3697 * we use it as a indicator which shows if the thread is
3698 * properly init'd or not
3699 */
3702 }
3708 }
3712 }
3720 }
3726 }
3729 {
3734 }
3745 }
3754 QEMU_THREAD_JOINABLE);
3755 }
3757 exit:
3760 }
3764 {
3780 }
3781 }
3786 }
3787 }
3788 }
3791 {
3793 }
3795 /*
3796 * colo cache: this is for secondary VM, we cache the whole
3797 * memory of the secondary VM, it is need to hold the global lock
3798 * to call this helper.
3799 */
3801 {
3816 }
3817 }
3819 }
3822 QEMU_MADV_DONTDUMP);
3823 }
3824 }
3825 }
3827 /*
3828 * Record the dirty pages that sent by PVM, we use this dirty bitmap together
3829 * with to decide which page in cache should be flushed into SVM's RAM. Here
3830 * we use the same name 'ram_bitmap' as for migration.
3831 */
3838 }
3839 }
3843 }
3845 /* TODO: duplicated with ram_init_bitmaps */
3847 {
3849 /* For memory_global_dirty_log_start below. */
3857 /* Discard this dirty bitmap record */
3859 }
3861 }
3865 }
3867 /* It is need to hold the global lock to call this helper */
3869 {
3876 }
3883 }
3884 }
3885 }
3887 }
3889 /**
3890 * ram_load_setup: Setup RAM for migration incoming side
3891 *
3892 * Returns zero to indicate success and negative for error
3893 *
3894 * @f: QEMUFile where to receive the data
3895 * @opaque: RAMState pointer
3896 */
3898 {
3901 }
3907 }
3910 {
3915 }
3923 }
3926 }
3928 /**
3929 * ram_postcopy_incoming_init: allocate postcopy data structures
3930 *
3931 * Returns 0 for success and negative if there was one error
3932 *
3933 * @mis: current migration incoming state
3934 *
3935 * Allocate data structures etc needed by incoming migration with
3936 * postcopy-ram. postcopy-ram's similarly names
3937 * postcopy_ram_incoming_init does the work.
3938 */
3940 {
3942 }
3944 /**
3945 * ram_load_postcopy: load a page in postcopy case
3946 *
3947 * Returns 0 for success or -errno in case of error
3948 *
3949 * Called in postcopy mode by ram_load().
3950 * rcu_read_lock is taken prior to this being called.
3951 *
3952 * @f: QEMUFile where to send the data
3953 * @channel: the channel to use for loading
3954 */
3956 {
3964 ram_addr_t addr;
3973 /*
3974 * If qemu file error, we should stop here, and then "addr"
3975 * may be invalid
3976 */
3980 }
3987 RAM_SAVE_FLAG_COMPRESS_PAGE)) {
3992 }
3994 /*
3995 * Relying on used_length is racy and can result in false positives.
3996 * We might place pages beyond used_length in case RAM was shrunk
3997 * while in postcopy, which is fine - trying to place via
3998 * UFFDIO_COPY/UFFDIO_ZEROPAGE will never segfault.
3999 */
4004 }
4007 /*
4008 * Postcopy requires that we place whole host pages atomically;
4009 * these may be huge pages for RAMBlocks that are backed by
4010 * hugetlbfs.
4011 * To make it atomic, the data is read into a temporary page
4012 * that's moved into place later.
4013 * The migration protocol uses, possibly smaller, target-pages
4014 * however the source ensures it always sends all the components
4015 * of a host page in one chunk.
4016 */
4019 /* If all TP are zero then we can optimise the place */
4025 /* not the 1st TP within the HP */
4027 "Target host page %p, received host page %p "
4034 }
4036 /*
4037 * If it's the last part of a host page then we place the host
4038 * page
4039 */
4043 }
4045 }
4050 /*
4051 * Can skip to set page_buffer when
4052 * this is a zero page and (block->page_size == TARGET_PAGE_SIZE).
4053 */
4056 }
4059 }
4065 /* For huge pages, we always use temporary buffer */
4068 /*
4069 * For small pages that matches target page size, we
4070 * avoid the qemu_file copy. Instead we directly use
4071 * the buffer of QEMUFile to place the page. Note: we
4072 * cannot do any QEMUFile operation before using that
4073 * buffer to make sure the buffer is valid when
4074 * placing the page.
4075 */
4077 TARGET_PAGE_SIZE);
4078 }
4087 }
4092 /* normal exit */
4100 }
4102 /* Got the whole host page, wait for decompress before placing. */
4105 }
4107 /* Detect for any possible file errors */
4110 }
4118 }
4121 }
4122 }
4125 }
4128 {
4131 }
4134 {
4137 }
4139 /*
4140 * Flush content of RAM cache into SVM's memory.
4141 * Only flush the pages that be dirtied by PVM or SVM or both.
4142 */
4144 {
4154 }
4155 }
4175 }
4182 }
4183 }
4184 }
4186 }
4188 /**
4189 * ram_load_precopy: load pages in precopy case
4190 *
4191 * Returns 0 for success or -errno in case of error
4192 *
4193 * Called in precopy mode by ram_load().
4194 * rcu_read_lock is taken prior to this being called.
4195 *
4196 * @f: QEMUFile where to send the data
4197 */
4199 {
4202 /* ADVISE is earlier, it shows the source has the postcopy capability on */
4206 }
4213 /*
4214 * Yield periodically to let main loop run, but an iteration of
4215 * the main loop is expensive, so do it each some iterations
4216 */
4221 }
4222 i++;
4231 }
4235 }
4240 RAM_CHANNEL_PRECOPY);
4243 /*
4244 * After going into COLO stage, we should not load the page
4245 * into SVM's memory directly, we put them into colo_cache firstly.
4246 * NOTE: We need to keep a copy of SVM's ram in colo_cache.
4247 * Previously, we copied all these memory in preparing stage of COLO
4248 * while we need to stop VM, which is a time-consuming process.
4249 * Here we optimize it by a trick, back-up every page while in
4250 * migration process while COLO is enabled, though it affects the
4251 * speed of the migration, but it obviously reduce the downtime of
4252 * back-up all SVM'S memory in COLO preparing stage.
4253 */
4256 /* In COLO stage, put all pages into cache temporarily */
4259 /*
4260 * In migration stage but before COLO stage,
4261 * Put all pages into both cache and SVM's memory.
4262 */
4264 }
4265 }
4270 }
4273 }
4276 }
4280 /* Synchronize RAM block list */
4285 ram_addr_t length;
4304 }
4305 }
4306 /* For postcopy we need to check hugepage sizes match */
4314 remote_page_size);
4316 }
4317 }
4327 }
4328 }
4335 }
4338 }
4356 }
4366 }
4369 /* normal exit */
4377 flags);
4379 }
4380 }
4383 }
4386 }
4387 }
4391 }
4394 {
4397 /*
4398 * If system is running in postcopy mode, page inserts to host memory must
4399 * be atomic
4400 */
4403 seq_iter++;
4407 }
4409 /*
4410 * This RCU critical section can be very long running.
4411 * When RCU reclaims in the code start to become numerous,
4412 * it will be necessary to reduce the granularity of this
4413 * critical section.
4414 */
4417 /*
4418 * Note! Here RAM_CHANNEL_PRECOPY is the precopy channel of
4419 * postcopy migration, we have another RAM_CHANNEL_POSTCOPY to
4420 * service fast page faults.
4421 */
4425 }
4426 }
4430 }
4433 {
4440 }
4441 }
4444 }
4446 /* Sync all the dirty bitmap with destination VM. */
4448 {
4458 ramblock_count++;
4459 }
4463 /* Wait until all the ramblocks' dirty bitmap synced */
4466 }
4471 }
4474 {
4476 }
4478 /*
4479 * Read the received bitmap, revert it as the initial dirty bitmap.
4480 * This is only used when the postcopy migration is paused but wants
4481 * to resume from a middle point.
4482 */
4484 {
4486 /* from_dst_file is always valid because we're within rp_thread */
4498 }
4500 /*
4501 * Note: see comments in ramblock_recv_bitmap_send() on why we
4502 * need the endianness conversion, and the paddings.
4503 */
4506 /* Add paddings */
4511 /* The size of the bitmap should match with our ramblock */
4518 }
4530 }
4537 }
4539 /*
4540 * Endianness conversion. We are during postcopy (though paused).
4541 * The dirty bitmap won't change. We can directly modify it.
4542 */
4545 /*
4546 * What we received is "received bitmap". Revert it as the initial
4547 * dirty bitmap for this ramblock.
4548 */
4551 /* Clear dirty bits of discarded ranges that we don't want to migrate. */
4554 /* We'll recalculate migration_dirty_pages in ram_state_resume_prepare(). */
4557 /*
4558 * We succeeded to sync bitmap for current ramblock. If this is
4559 * the last one to sync, we need to notify the main send thread.
4560 */
4564 out:
4567 }
4570 {
4577 }
4582 }
4585 {
4588 }
4603 };
4607 {
4609 ram_addr_t offset;
4615 }
4618 /*
4619 * Precopy code on the source cannot deal with the size of RAM blocks
4620 * changing at random points in time - especially after sending the
4621 * RAM block sizes in the migration stream, they must no longer change.
4622 * Abort and indicate a proper reason.
4623 */
4627 }
4631 /*
4632 * Update what ram_postcopy_incoming_init()->init_range() does at the
4633 * time postcopy was advised. Syncing RAM blocks with the source will
4634 * result in RAM resizes.
4635 */
4640 }
4641 }
4647 /*
4648 * Once our guest is running, postcopy does no longer care about
4649 * resizes. When growing, the new memory was not available on the
4650 * source, no handler needed.
4651 */
4657 }
4658 }
4662 };
4665 {
4669 }