xref: /openbmc/qemu/block/backup.c (revision 20ced60dd2a577d5e9bf0a16ff3ef0f8a953f495)
1 /*
2  * QEMU backup
3  *
4  * Copyright (C) 2013 Proxmox Server Solutions
5  * Copyright (c) 2019 Virtuozzo International GmbH.
6  *
7  * Authors:
8  *  Dietmar Maurer (dietmar@proxmox.com)
9  *
10  * This work is licensed under the terms of the GNU GPL, version 2 or later.
11  * See the COPYING file in the top-level directory.
12  *
13  */
14 
15 #include "qemu/osdep.h"
16 
17 #include "trace.h"
18 #include "block/block.h"
19 #include "block/block_int.h"
20 #include "block/blockjob_int.h"
21 #include "block/block_backup.h"
22 #include "block/block-copy.h"
23 #include "block/dirty-bitmap.h"
24 #include "qapi/error.h"
25 #include "qemu/cutils.h"
26 #include "system/block-backend.h"
27 #include "qemu/bitmap.h"
28 #include "qemu/error-report.h"
29 
30 #include "block/copy-before-write.h"
31 
32 typedef struct BackupBlockJob {
33     BlockJob common;
34     BlockDriverState *cbw;
35     BlockDriverState *source_bs;
36     BlockDriverState *target_bs;
37 
38     BdrvDirtyBitmap *sync_bitmap;
39 
40     MirrorSyncMode sync_mode;
41     BitmapSyncMode bitmap_mode;
42     BlockdevOnError on_source_error;
43     BlockdevOnError on_target_error;
44     uint64_t len;
45     int64_t cluster_size;
46     BackupPerf perf;
47 
48     BlockCopyState *bcs;
49 
50     bool wait;
51     BlockCopyCallState *bg_bcs_call;
52 } BackupBlockJob;
53 
54 static const BlockJobDriver backup_job_driver;
55 
56 static void backup_cleanup_sync_bitmap(BackupBlockJob *job, int ret)
57 {
58     BdrvDirtyBitmap *bm;
59     bool sync = (((ret == 0) || (job->bitmap_mode == BITMAP_SYNC_MODE_ALWAYS)) \
60                  && (job->bitmap_mode != BITMAP_SYNC_MODE_NEVER));
61 
62     if (sync) {
63         /*
64          * We succeeded, or we always intended to sync the bitmap.
65          * Delete this bitmap and install the child.
66          */
67         bm = bdrv_dirty_bitmap_abdicate(job->sync_bitmap, NULL);
68     } else {
69         /*
70          * We failed, or we never intended to sync the bitmap anyway.
71          * Merge the successor back into the parent, keeping all data.
72          */
73         bm = bdrv_reclaim_dirty_bitmap(job->sync_bitmap, NULL);
74     }
75 
76     assert(bm);
77 
78     if (ret < 0 && job->bitmap_mode == BITMAP_SYNC_MODE_ALWAYS) {
79         /* If we failed and synced, merge in the bits we didn't copy: */
80         bdrv_dirty_bitmap_merge_internal(bm, block_copy_dirty_bitmap(job->bcs),
81                                          NULL, true);
82     }
83 }
84 
85 static void backup_commit(Job *job)
86 {
87     BackupBlockJob *s = container_of(job, BackupBlockJob, common.job);
88     if (s->sync_bitmap) {
89         backup_cleanup_sync_bitmap(s, 0);
90     }
91 }
92 
93 static void backup_abort(Job *job)
94 {
95     BackupBlockJob *s = container_of(job, BackupBlockJob, common.job);
96     if (s->sync_bitmap) {
97         backup_cleanup_sync_bitmap(s, -1);
98     }
99 }
100 
101 static void backup_clean(Job *job)
102 {
103     BackupBlockJob *s = container_of(job, BackupBlockJob, common.job);
104     block_job_remove_all_bdrv(&s->common);
105     bdrv_cbw_drop(s->cbw);
106 }
107 
108 void backup_do_checkpoint(BlockJob *job, Error **errp)
109 {
110     BackupBlockJob *backup_job = container_of(job, BackupBlockJob, common);
111 
112     assert(block_job_driver(job) == &backup_job_driver);
113 
114     if (backup_job->sync_mode != MIRROR_SYNC_MODE_NONE) {
115         error_setg(errp, "The backup job only supports block checkpoint in"
116                    " sync=none mode");
117         return;
118     }
119 
120     bdrv_set_dirty_bitmap(block_copy_dirty_bitmap(backup_job->bcs), 0,
121                           backup_job->len);
122 }
123 
124 static BlockErrorAction backup_error_action(BackupBlockJob *job,
125                                             bool read, int error)
126 {
127     if (read) {
128         return block_job_error_action(&job->common, job->on_source_error,
129                                       true, error);
130     } else {
131         return block_job_error_action(&job->common, job->on_target_error,
132                                       false, error);
133     }
134 }
135 
136 static void coroutine_fn backup_block_copy_callback(void *opaque)
137 {
138     BackupBlockJob *s = opaque;
139 
140     if (s->wait) {
141         s->wait = false;
142         aio_co_wake(s->common.job.co);
143     } else {
144         job_enter(&s->common.job);
145     }
146 }
147 
148 static int coroutine_fn backup_loop(BackupBlockJob *job)
149 {
150     BlockCopyCallState *s = NULL;
151     int ret = 0;
152     bool error_is_read;
153     BlockErrorAction act;
154 
155     while (true) { /* retry loop */
156         job->bg_bcs_call = s = block_copy_async(job->bcs, 0,
157                 QEMU_ALIGN_UP(job->len, job->cluster_size),
158                 job->perf.max_workers, job->perf.max_chunk,
159                 backup_block_copy_callback, job);
160 
161         while (!block_copy_call_finished(s) &&
162                !job_is_cancelled(&job->common.job))
163         {
164             job_yield(&job->common.job);
165         }
166 
167         if (!block_copy_call_finished(s)) {
168             assert(job_is_cancelled(&job->common.job));
169             /*
170              * Note that we can't use job_yield() here, as it doesn't work for
171              * cancelled job.
172              */
173             block_copy_call_cancel(s);
174             job->wait = true;
175             qemu_coroutine_yield();
176             assert(block_copy_call_finished(s));
177             ret = 0;
178             goto out;
179         }
180 
181         if (job_is_cancelled(&job->common.job) ||
182             block_copy_call_succeeded(s))
183         {
184             ret = 0;
185             goto out;
186         }
187 
188         if (block_copy_call_cancelled(s)) {
189             /*
190              * Job is not cancelled but only block-copy call. This is possible
191              * after job pause. Now the pause is finished, start new block-copy
192              * iteration.
193              */
194             block_copy_call_free(s);
195             continue;
196         }
197 
198         /* The only remaining case is failed block-copy call. */
199         assert(block_copy_call_failed(s));
200 
201         ret = block_copy_call_status(s, &error_is_read);
202         act = backup_error_action(job, error_is_read, -ret);
203         switch (act) {
204         case BLOCK_ERROR_ACTION_REPORT:
205             goto out;
206         case BLOCK_ERROR_ACTION_STOP:
207             /*
208              * Go to pause prior to starting new block-copy call on the next
209              * iteration.
210              */
211             job_pause_point(&job->common.job);
212             break;
213         case BLOCK_ERROR_ACTION_IGNORE:
214             /* Proceed to new block-copy call to retry. */
215             break;
216         default:
217             abort();
218         }
219 
220         block_copy_call_free(s);
221     }
222 
223 out:
224     block_copy_call_free(s);
225     job->bg_bcs_call = NULL;
226     return ret;
227 }
228 
229 static void backup_init_bcs_bitmap(BackupBlockJob *job)
230 {
231     uint64_t estimate;
232     BdrvDirtyBitmap *bcs_bitmap = block_copy_dirty_bitmap(job->bcs);
233 
234     if (job->sync_mode == MIRROR_SYNC_MODE_BITMAP) {
235         bdrv_clear_dirty_bitmap(bcs_bitmap, NULL);
236         bdrv_dirty_bitmap_merge_internal(bcs_bitmap, job->sync_bitmap, NULL,
237                                          true);
238     } else if (job->sync_mode == MIRROR_SYNC_MODE_TOP) {
239         /*
240          * We can't hog the coroutine to initialize this thoroughly.
241          * Set a flag and resume work when we are able to yield safely.
242          */
243         block_copy_set_skip_unallocated(job->bcs, true);
244     }
245 
246     estimate = bdrv_get_dirty_count(bcs_bitmap);
247     job_progress_set_remaining(&job->common.job, estimate);
248 }
249 
250 static int coroutine_fn backup_run(Job *job, Error **errp)
251 {
252     BackupBlockJob *s = container_of(job, BackupBlockJob, common.job);
253     int ret;
254 
255     backup_init_bcs_bitmap(s);
256 
257     if (s->sync_mode == MIRROR_SYNC_MODE_TOP) {
258         int64_t offset = 0;
259         int64_t count;
260 
261         for (offset = 0; offset < s->len; ) {
262             if (job_is_cancelled(job)) {
263                 return -ECANCELED;
264             }
265 
266             job_pause_point(job);
267 
268             if (job_is_cancelled(job)) {
269                 return -ECANCELED;
270             }
271 
272             /* rdlock protects the subsequent call to bdrv_is_allocated() */
273             bdrv_graph_co_rdlock();
274             ret = block_copy_reset_unallocated(s->bcs, offset, &count);
275             bdrv_graph_co_rdunlock();
276             if (ret < 0) {
277                 return ret;
278             }
279 
280             offset += count;
281         }
282         block_copy_set_skip_unallocated(s->bcs, false);
283     }
284 
285     if (s->sync_mode == MIRROR_SYNC_MODE_NONE) {
286         /*
287          * All bits are set in bcs bitmap to allow any cluster to be copied.
288          * This does not actually require them to be copied.
289          */
290         while (!job_is_cancelled(job)) {
291             /*
292              * Yield until the job is cancelled.  We just let our before_write
293              * notify callback service CoW requests.
294              */
295             job_yield(job);
296         }
297     } else {
298         return backup_loop(s);
299     }
300 
301     return 0;
302 }
303 
304 static void coroutine_fn backup_pause(Job *job)
305 {
306     BackupBlockJob *s = container_of(job, BackupBlockJob, common.job);
307 
308     if (s->bg_bcs_call && !block_copy_call_finished(s->bg_bcs_call)) {
309         block_copy_call_cancel(s->bg_bcs_call);
310         s->wait = true;
311         qemu_coroutine_yield();
312     }
313 }
314 
315 static void backup_set_speed(BlockJob *job, int64_t speed)
316 {
317     BackupBlockJob *s = container_of(job, BackupBlockJob, common);
318 
319     /*
320      * block_job_set_speed() is called first from block_job_create(), when we
321      * don't yet have s->bcs.
322      */
323     if (s->bcs) {
324         block_copy_set_speed(s->bcs, speed);
325         if (s->bg_bcs_call) {
326             block_copy_kick(s->bg_bcs_call);
327         }
328     }
329 }
330 
331 static bool backup_cancel(Job *job, bool force)
332 {
333     BackupBlockJob *s = container_of(job, BackupBlockJob, common.job);
334 
335     bdrv_cancel_in_flight(s->target_bs);
336     return true;
337 }
338 
339 static const BlockJobDriver backup_job_driver = {
340     .job_driver = {
341         .instance_size          = sizeof(BackupBlockJob),
342         .job_type               = JOB_TYPE_BACKUP,
343         .free                   = block_job_free,
344         .user_resume            = block_job_user_resume,
345         .run                    = backup_run,
346         .commit                 = backup_commit,
347         .abort                  = backup_abort,
348         .clean                  = backup_clean,
349         .pause                  = backup_pause,
350         .cancel                 = backup_cancel,
351     },
352     .set_speed = backup_set_speed,
353 };
354 
355 BlockJob *backup_job_create(const char *job_id, BlockDriverState *bs,
356                   BlockDriverState *target, int64_t speed,
357                   MirrorSyncMode sync_mode, BdrvDirtyBitmap *sync_bitmap,
358                   BitmapSyncMode bitmap_mode,
359                   bool compress, bool discard_source,
360                   const char *filter_node_name,
361                   BackupPerf *perf,
362                   BlockdevOnError on_source_error,
363                   BlockdevOnError on_target_error,
364                   OnCbwError on_cbw_error,
365                   int creation_flags,
366                   BlockCompletionFunc *cb, void *opaque,
367                   JobTxn *txn, Error **errp)
368 {
369     int64_t len, target_len;
370     BackupBlockJob *job = NULL;
371     int64_t cluster_size;
372     BlockDriverState *cbw = NULL;
373     BlockCopyState *bcs = NULL;
374 
375     assert(bs);
376     assert(target);
377     GLOBAL_STATE_CODE();
378 
379     /* QMP interface protects us from these cases */
380     assert(sync_mode != MIRROR_SYNC_MODE_INCREMENTAL);
381     assert(sync_bitmap || sync_mode != MIRROR_SYNC_MODE_BITMAP);
382 
383     if (bs == target) {
384         error_setg(errp, "Source and target cannot be the same");
385         return NULL;
386     }
387 
388     bdrv_graph_rdlock_main_loop();
389     if (!bdrv_is_inserted(bs)) {
390         error_setg(errp, "Device is not inserted: %s",
391                    bdrv_get_device_name(bs));
392         goto error_rdlock;
393     }
394 
395     if (!bdrv_is_inserted(target)) {
396         error_setg(errp, "Device is not inserted: %s",
397                    bdrv_get_device_name(target));
398         goto error_rdlock;
399     }
400 
401     if (compress && !bdrv_supports_compressed_writes(target)) {
402         error_setg(errp, "Compression is not supported for this drive %s",
403                    bdrv_get_device_name(target));
404         goto error_rdlock;
405     }
406 
407     if (bdrv_op_is_blocked(bs, BLOCK_OP_TYPE_BACKUP_SOURCE, errp)) {
408         goto error_rdlock;
409     }
410 
411     if (bdrv_op_is_blocked(target, BLOCK_OP_TYPE_BACKUP_TARGET, errp)) {
412         goto error_rdlock;
413     }
414     bdrv_graph_rdunlock_main_loop();
415 
416     if (perf->max_workers < 1 || perf->max_workers > INT_MAX) {
417         error_setg(errp, "max-workers must be between 1 and %d", INT_MAX);
418         return NULL;
419     }
420 
421     if (perf->max_chunk < 0) {
422         error_setg(errp, "max-chunk must be zero (which means no limit) or "
423                    "positive");
424         return NULL;
425     }
426 
427     if (sync_bitmap) {
428         /* If we need to write to this bitmap, check that we can: */
429         if (bitmap_mode != BITMAP_SYNC_MODE_NEVER &&
430             bdrv_dirty_bitmap_check(sync_bitmap, BDRV_BITMAP_DEFAULT, errp)) {
431             return NULL;
432         }
433 
434         /* Create a new bitmap, and freeze/disable this one. */
435         if (bdrv_dirty_bitmap_create_successor(sync_bitmap, errp) < 0) {
436             return NULL;
437         }
438     }
439 
440     len = bdrv_getlength(bs);
441     if (len < 0) {
442         GRAPH_RDLOCK_GUARD_MAINLOOP();
443         error_setg_errno(errp, -len, "Unable to get length for '%s'",
444                          bdrv_get_device_or_node_name(bs));
445         goto error;
446     }
447 
448     target_len = bdrv_getlength(target);
449     if (target_len < 0) {
450         GRAPH_RDLOCK_GUARD_MAINLOOP();
451         error_setg_errno(errp, -target_len, "Unable to get length for '%s'",
452                          bdrv_get_device_or_node_name(bs));
453         goto error;
454     }
455 
456     if (target_len != len) {
457         error_setg(errp, "Source and target image have different sizes");
458         goto error;
459     }
460 
461     cbw = bdrv_cbw_append(bs, target, filter_node_name, discard_source,
462                           perf->min_cluster_size, &bcs, on_cbw_error, errp);
463     if (!cbw) {
464         goto error;
465     }
466 
467     cluster_size = block_copy_cluster_size(bcs);
468 
469     if (perf->max_chunk && perf->max_chunk < cluster_size) {
470         error_setg(errp, "Required max-chunk (%" PRIi64 ") is less than backup "
471                    "cluster size (%" PRIi64 ")", perf->max_chunk, cluster_size);
472         goto error;
473     }
474 
475     /* job->len is fixed, so we can't allow resize */
476     job = block_job_create(job_id, &backup_job_driver, txn, cbw,
477                            0, BLK_PERM_ALL,
478                            speed, creation_flags, cb, opaque, errp);
479     if (!job) {
480         goto error;
481     }
482 
483     job->cbw = cbw;
484     job->source_bs = bs;
485     job->target_bs = target;
486     job->on_source_error = on_source_error;
487     job->on_target_error = on_target_error;
488     job->sync_mode = sync_mode;
489     job->sync_bitmap = sync_bitmap;
490     job->bitmap_mode = bitmap_mode;
491     job->bcs = bcs;
492     job->cluster_size = cluster_size;
493     job->len = len;
494     job->perf = *perf;
495 
496     block_copy_set_copy_opts(bcs, perf->use_copy_range, compress);
497     block_copy_set_progress_meter(bcs, &job->common.job.progress);
498     block_copy_set_speed(bcs, speed);
499 
500     /* Required permissions are taken by copy-before-write filter target */
501     bdrv_graph_wrlock_drained();
502     block_job_add_bdrv(&job->common, "target", target, 0, BLK_PERM_ALL,
503                        &error_abort);
504     bdrv_graph_wrunlock();
505 
506     return &job->common;
507 
508  error:
509     if (sync_bitmap) {
510         bdrv_reclaim_dirty_bitmap(sync_bitmap, NULL);
511     }
512     if (cbw) {
513         bdrv_cbw_drop(cbw);
514     }
515 
516     return NULL;
517 
518 error_rdlock:
519     bdrv_graph_rdunlock_main_loop();
520     return NULL;
521 }
522