1 /* 2 * QEMU System Emulator 3 * 4 * Copyright (c) 2003-2008 Fabrice Bellard 5 * Copyright (c) 2011-2015 Red Hat Inc 6 * 7 * Authors: 8 * Juan Quintela <quintela@redhat.com> 9 * 10 * Permission is hereby granted, free of charge, to any person obtaining a copy 11 * of this software and associated documentation files (the "Software"), to deal 12 * in the Software without restriction, including without limitation the rights 13 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 14 * copies of the Software, and to permit persons to whom the Software is 15 * furnished to do so, subject to the following conditions: 16 * 17 * The above copyright notice and this permission notice shall be included in 18 * all copies or substantial portions of the Software. 19 * 20 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 21 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 22 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL 23 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 24 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 25 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 26 * THE SOFTWARE. 27 */ 28 29 #include "qemu/osdep.h" 30 #include "cpu.h" 31 #include <zlib.h> 32 #include "qemu/cutils.h" 33 #include "qemu/bitops.h" 34 #include "qemu/bitmap.h" 35 #include "qemu/main-loop.h" 36 #include "xbzrle.h" 37 #include "ram.h" 38 #include "migration.h" 39 #include "migration/register.h" 40 #include "migration/misc.h" 41 #include "qemu-file.h" 42 #include "postcopy-ram.h" 43 #include "migration/page_cache.h" 44 #include "qemu/error-report.h" 45 #include "qapi/error.h" 46 #include "qapi/qapi-events-migration.h" 47 #include "qapi/qmp/qerror.h" 48 #include "trace.h" 49 #include "exec/ram_addr.h" 50 #include "exec/target_page.h" 51 #include "qemu/rcu_queue.h" 52 #include "migration/colo.h" 53 #include "migration/block.h" 54 55 /***********************************************************/ 56 /* ram save/restore */ 57 58 /* RAM_SAVE_FLAG_ZERO used to be named RAM_SAVE_FLAG_COMPRESS, it 59 * worked for pages that where filled with the same char. We switched 60 * it to only search for the zero value. And to avoid confusion with 61 * RAM_SSAVE_FLAG_COMPRESS_PAGE just rename it. 62 */ 63 64 #define RAM_SAVE_FLAG_FULL 0x01 /* Obsolete, not used anymore */ 65 #define RAM_SAVE_FLAG_ZERO 0x02 66 #define RAM_SAVE_FLAG_MEM_SIZE 0x04 67 #define RAM_SAVE_FLAG_PAGE 0x08 68 #define RAM_SAVE_FLAG_EOS 0x10 69 #define RAM_SAVE_FLAG_CONTINUE 0x20 70 #define RAM_SAVE_FLAG_XBZRLE 0x40 71 /* 0x80 is reserved in migration.h start with 0x100 next */ 72 #define RAM_SAVE_FLAG_COMPRESS_PAGE 0x100 73 74 static inline bool is_zero_range(uint8_t *p, uint64_t size) 75 { 76 return buffer_is_zero(p, size); 77 } 78 79 XBZRLECacheStats xbzrle_counters; 80 81 /* struct contains XBZRLE cache and a static page 82 used by the compression */ 83 static struct { 84 /* buffer used for XBZRLE encoding */ 85 uint8_t *encoded_buf; 86 /* buffer for storing page content */ 87 uint8_t *current_buf; 88 /* Cache for XBZRLE, Protected by lock. */ 89 PageCache *cache; 90 QemuMutex lock; 91 /* it will store a page full of zeros */ 92 uint8_t *zero_target_page; 93 /* buffer used for XBZRLE decoding */ 94 uint8_t *decoded_buf; 95 } XBZRLE; 96 97 static void XBZRLE_cache_lock(void) 98 { 99 if (migrate_use_xbzrle()) 100 qemu_mutex_lock(&XBZRLE.lock); 101 } 102 103 static void XBZRLE_cache_unlock(void) 104 { 105 if (migrate_use_xbzrle()) 106 qemu_mutex_unlock(&XBZRLE.lock); 107 } 108 109 /** 110 * xbzrle_cache_resize: resize the xbzrle cache 111 * 112 * This function is called from qmp_migrate_set_cache_size in main 113 * thread, possibly while a migration is in progress. A running 114 * migration may be using the cache and might finish during this call, 115 * hence changes to the cache are protected by XBZRLE.lock(). 116 * 117 * Returns 0 for success or -1 for error 118 * 119 * @new_size: new cache size 120 * @errp: set *errp if the check failed, with reason 121 */ 122 int xbzrle_cache_resize(int64_t new_size, Error **errp) 123 { 124 PageCache *new_cache; 125 int64_t ret = 0; 126 127 /* Check for truncation */ 128 if (new_size != (size_t)new_size) { 129 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "cache size", 130 "exceeding address space"); 131 return -1; 132 } 133 134 if (new_size == migrate_xbzrle_cache_size()) { 135 /* nothing to do */ 136 return 0; 137 } 138 139 XBZRLE_cache_lock(); 140 141 if (XBZRLE.cache != NULL) { 142 new_cache = cache_init(new_size, TARGET_PAGE_SIZE, errp); 143 if (!new_cache) { 144 ret = -1; 145 goto out; 146 } 147 148 cache_fini(XBZRLE.cache); 149 XBZRLE.cache = new_cache; 150 } 151 out: 152 XBZRLE_cache_unlock(); 153 return ret; 154 } 155 156 static void ramblock_recv_map_init(void) 157 { 158 RAMBlock *rb; 159 160 RAMBLOCK_FOREACH(rb) { 161 assert(!rb->receivedmap); 162 rb->receivedmap = bitmap_new(rb->max_length >> qemu_target_page_bits()); 163 } 164 } 165 166 int ramblock_recv_bitmap_test(RAMBlock *rb, void *host_addr) 167 { 168 return test_bit(ramblock_recv_bitmap_offset(host_addr, rb), 169 rb->receivedmap); 170 } 171 172 bool ramblock_recv_bitmap_test_byte_offset(RAMBlock *rb, uint64_t byte_offset) 173 { 174 return test_bit(byte_offset >> TARGET_PAGE_BITS, rb->receivedmap); 175 } 176 177 void ramblock_recv_bitmap_set(RAMBlock *rb, void *host_addr) 178 { 179 set_bit_atomic(ramblock_recv_bitmap_offset(host_addr, rb), rb->receivedmap); 180 } 181 182 void ramblock_recv_bitmap_set_range(RAMBlock *rb, void *host_addr, 183 size_t nr) 184 { 185 bitmap_set_atomic(rb->receivedmap, 186 ramblock_recv_bitmap_offset(host_addr, rb), 187 nr); 188 } 189 190 /* 191 * An outstanding page request, on the source, having been received 192 * and queued 193 */ 194 struct RAMSrcPageRequest { 195 RAMBlock *rb; 196 hwaddr offset; 197 hwaddr len; 198 199 QSIMPLEQ_ENTRY(RAMSrcPageRequest) next_req; 200 }; 201 202 /* State of RAM for migration */ 203 struct RAMState { 204 /* QEMUFile used for this migration */ 205 QEMUFile *f; 206 /* Last block that we have visited searching for dirty pages */ 207 RAMBlock *last_seen_block; 208 /* Last block from where we have sent data */ 209 RAMBlock *last_sent_block; 210 /* Last dirty target page we have sent */ 211 ram_addr_t last_page; 212 /* last ram version we have seen */ 213 uint32_t last_version; 214 /* We are in the first round */ 215 bool ram_bulk_stage; 216 /* How many times we have dirty too many pages */ 217 int dirty_rate_high_cnt; 218 /* these variables are used for bitmap sync */ 219 /* last time we did a full bitmap_sync */ 220 int64_t time_last_bitmap_sync; 221 /* bytes transferred at start_time */ 222 uint64_t bytes_xfer_prev; 223 /* number of dirty pages since start_time */ 224 uint64_t num_dirty_pages_period; 225 /* xbzrle misses since the beginning of the period */ 226 uint64_t xbzrle_cache_miss_prev; 227 /* number of iterations at the beginning of period */ 228 uint64_t iterations_prev; 229 /* Iterations since start */ 230 uint64_t iterations; 231 /* number of dirty bits in the bitmap */ 232 uint64_t migration_dirty_pages; 233 /* protects modification of the bitmap */ 234 QemuMutex bitmap_mutex; 235 /* The RAMBlock used in the last src_page_requests */ 236 RAMBlock *last_req_rb; 237 /* Queue of outstanding page requests from the destination */ 238 QemuMutex src_page_req_mutex; 239 QSIMPLEQ_HEAD(src_page_requests, RAMSrcPageRequest) src_page_requests; 240 }; 241 typedef struct RAMState RAMState; 242 243 static RAMState *ram_state; 244 245 uint64_t ram_bytes_remaining(void) 246 { 247 return ram_state ? (ram_state->migration_dirty_pages * TARGET_PAGE_SIZE) : 248 0; 249 } 250 251 MigrationStats ram_counters; 252 253 /* used by the search for pages to send */ 254 struct PageSearchStatus { 255 /* Current block being searched */ 256 RAMBlock *block; 257 /* Current page to search from */ 258 unsigned long page; 259 /* Set once we wrap around */ 260 bool complete_round; 261 }; 262 typedef struct PageSearchStatus PageSearchStatus; 263 264 struct CompressParam { 265 bool done; 266 bool quit; 267 QEMUFile *file; 268 QemuMutex mutex; 269 QemuCond cond; 270 RAMBlock *block; 271 ram_addr_t offset; 272 }; 273 typedef struct CompressParam CompressParam; 274 275 struct DecompressParam { 276 bool done; 277 bool quit; 278 QemuMutex mutex; 279 QemuCond cond; 280 void *des; 281 uint8_t *compbuf; 282 int len; 283 }; 284 typedef struct DecompressParam DecompressParam; 285 286 static CompressParam *comp_param; 287 static QemuThread *compress_threads; 288 /* comp_done_cond is used to wake up the migration thread when 289 * one of the compression threads has finished the compression. 290 * comp_done_lock is used to co-work with comp_done_cond. 291 */ 292 static QemuMutex comp_done_lock; 293 static QemuCond comp_done_cond; 294 /* The empty QEMUFileOps will be used by file in CompressParam */ 295 static const QEMUFileOps empty_ops = { }; 296 297 static DecompressParam *decomp_param; 298 static QemuThread *decompress_threads; 299 static QemuMutex decomp_done_lock; 300 static QemuCond decomp_done_cond; 301 302 static int do_compress_ram_page(QEMUFile *f, RAMBlock *block, 303 ram_addr_t offset); 304 305 static void *do_data_compress(void *opaque) 306 { 307 CompressParam *param = opaque; 308 RAMBlock *block; 309 ram_addr_t offset; 310 311 qemu_mutex_lock(¶m->mutex); 312 while (!param->quit) { 313 if (param->block) { 314 block = param->block; 315 offset = param->offset; 316 param->block = NULL; 317 qemu_mutex_unlock(¶m->mutex); 318 319 do_compress_ram_page(param->file, block, offset); 320 321 qemu_mutex_lock(&comp_done_lock); 322 param->done = true; 323 qemu_cond_signal(&comp_done_cond); 324 qemu_mutex_unlock(&comp_done_lock); 325 326 qemu_mutex_lock(¶m->mutex); 327 } else { 328 qemu_cond_wait(¶m->cond, ¶m->mutex); 329 } 330 } 331 qemu_mutex_unlock(¶m->mutex); 332 333 return NULL; 334 } 335 336 static inline void terminate_compression_threads(void) 337 { 338 int idx, thread_count; 339 340 thread_count = migrate_compress_threads(); 341 342 for (idx = 0; idx < thread_count; idx++) { 343 qemu_mutex_lock(&comp_param[idx].mutex); 344 comp_param[idx].quit = true; 345 qemu_cond_signal(&comp_param[idx].cond); 346 qemu_mutex_unlock(&comp_param[idx].mutex); 347 } 348 } 349 350 static void compress_threads_save_cleanup(void) 351 { 352 int i, thread_count; 353 354 if (!migrate_use_compression()) { 355 return; 356 } 357 terminate_compression_threads(); 358 thread_count = migrate_compress_threads(); 359 for (i = 0; i < thread_count; i++) { 360 qemu_thread_join(compress_threads + i); 361 qemu_fclose(comp_param[i].file); 362 qemu_mutex_destroy(&comp_param[i].mutex); 363 qemu_cond_destroy(&comp_param[i].cond); 364 } 365 qemu_mutex_destroy(&comp_done_lock); 366 qemu_cond_destroy(&comp_done_cond); 367 g_free(compress_threads); 368 g_free(comp_param); 369 compress_threads = NULL; 370 comp_param = NULL; 371 } 372 373 static void compress_threads_save_setup(void) 374 { 375 int i, thread_count; 376 377 if (!migrate_use_compression()) { 378 return; 379 } 380 thread_count = migrate_compress_threads(); 381 compress_threads = g_new0(QemuThread, thread_count); 382 comp_param = g_new0(CompressParam, thread_count); 383 qemu_cond_init(&comp_done_cond); 384 qemu_mutex_init(&comp_done_lock); 385 for (i = 0; i < thread_count; i++) { 386 /* comp_param[i].file is just used as a dummy buffer to save data, 387 * set its ops to empty. 388 */ 389 comp_param[i].file = qemu_fopen_ops(NULL, &empty_ops); 390 comp_param[i].done = true; 391 comp_param[i].quit = false; 392 qemu_mutex_init(&comp_param[i].mutex); 393 qemu_cond_init(&comp_param[i].cond); 394 qemu_thread_create(compress_threads + i, "compress", 395 do_data_compress, comp_param + i, 396 QEMU_THREAD_JOINABLE); 397 } 398 } 399 400 /* Multiple fd's */ 401 402 struct MultiFDSendParams { 403 uint8_t id; 404 char *name; 405 QemuThread thread; 406 QemuSemaphore sem; 407 QemuMutex mutex; 408 bool quit; 409 }; 410 typedef struct MultiFDSendParams MultiFDSendParams; 411 412 struct { 413 MultiFDSendParams *params; 414 /* number of created threads */ 415 int count; 416 } *multifd_send_state; 417 418 static void terminate_multifd_send_threads(Error *errp) 419 { 420 int i; 421 422 for (i = 0; i < multifd_send_state->count; i++) { 423 MultiFDSendParams *p = &multifd_send_state->params[i]; 424 425 qemu_mutex_lock(&p->mutex); 426 p->quit = true; 427 qemu_sem_post(&p->sem); 428 qemu_mutex_unlock(&p->mutex); 429 } 430 } 431 432 int multifd_save_cleanup(Error **errp) 433 { 434 int i; 435 int ret = 0; 436 437 if (!migrate_use_multifd()) { 438 return 0; 439 } 440 terminate_multifd_send_threads(NULL); 441 for (i = 0; i < multifd_send_state->count; i++) { 442 MultiFDSendParams *p = &multifd_send_state->params[i]; 443 444 qemu_thread_join(&p->thread); 445 qemu_mutex_destroy(&p->mutex); 446 qemu_sem_destroy(&p->sem); 447 g_free(p->name); 448 p->name = NULL; 449 } 450 g_free(multifd_send_state->params); 451 multifd_send_state->params = NULL; 452 g_free(multifd_send_state); 453 multifd_send_state = NULL; 454 return ret; 455 } 456 457 static void *multifd_send_thread(void *opaque) 458 { 459 MultiFDSendParams *p = opaque; 460 461 while (true) { 462 qemu_mutex_lock(&p->mutex); 463 if (p->quit) { 464 qemu_mutex_unlock(&p->mutex); 465 break; 466 } 467 qemu_mutex_unlock(&p->mutex); 468 qemu_sem_wait(&p->sem); 469 } 470 471 return NULL; 472 } 473 474 int multifd_save_setup(void) 475 { 476 int thread_count; 477 uint8_t i; 478 479 if (!migrate_use_multifd()) { 480 return 0; 481 } 482 thread_count = migrate_multifd_channels(); 483 multifd_send_state = g_malloc0(sizeof(*multifd_send_state)); 484 multifd_send_state->params = g_new0(MultiFDSendParams, thread_count); 485 multifd_send_state->count = 0; 486 for (i = 0; i < thread_count; i++) { 487 MultiFDSendParams *p = &multifd_send_state->params[i]; 488 489 qemu_mutex_init(&p->mutex); 490 qemu_sem_init(&p->sem, 0); 491 p->quit = false; 492 p->id = i; 493 p->name = g_strdup_printf("multifdsend_%d", i); 494 qemu_thread_create(&p->thread, p->name, multifd_send_thread, p, 495 QEMU_THREAD_JOINABLE); 496 497 multifd_send_state->count++; 498 } 499 return 0; 500 } 501 502 struct MultiFDRecvParams { 503 uint8_t id; 504 char *name; 505 QemuThread thread; 506 QemuSemaphore sem; 507 QemuMutex mutex; 508 bool quit; 509 }; 510 typedef struct MultiFDRecvParams MultiFDRecvParams; 511 512 struct { 513 MultiFDRecvParams *params; 514 /* number of created threads */ 515 int count; 516 } *multifd_recv_state; 517 518 static void terminate_multifd_recv_threads(Error *errp) 519 { 520 int i; 521 522 for (i = 0; i < multifd_recv_state->count; i++) { 523 MultiFDRecvParams *p = &multifd_recv_state->params[i]; 524 525 qemu_mutex_lock(&p->mutex); 526 p->quit = true; 527 qemu_sem_post(&p->sem); 528 qemu_mutex_unlock(&p->mutex); 529 } 530 } 531 532 int multifd_load_cleanup(Error **errp) 533 { 534 int i; 535 int ret = 0; 536 537 if (!migrate_use_multifd()) { 538 return 0; 539 } 540 terminate_multifd_recv_threads(NULL); 541 for (i = 0; i < multifd_recv_state->count; i++) { 542 MultiFDRecvParams *p = &multifd_recv_state->params[i]; 543 544 qemu_thread_join(&p->thread); 545 qemu_mutex_destroy(&p->mutex); 546 qemu_sem_destroy(&p->sem); 547 g_free(p->name); 548 p->name = NULL; 549 } 550 g_free(multifd_recv_state->params); 551 multifd_recv_state->params = NULL; 552 g_free(multifd_recv_state); 553 multifd_recv_state = NULL; 554 555 return ret; 556 } 557 558 static void *multifd_recv_thread(void *opaque) 559 { 560 MultiFDRecvParams *p = opaque; 561 562 while (true) { 563 qemu_mutex_lock(&p->mutex); 564 if (p->quit) { 565 qemu_mutex_unlock(&p->mutex); 566 break; 567 } 568 qemu_mutex_unlock(&p->mutex); 569 qemu_sem_wait(&p->sem); 570 } 571 572 return NULL; 573 } 574 575 int multifd_load_setup(void) 576 { 577 int thread_count; 578 uint8_t i; 579 580 if (!migrate_use_multifd()) { 581 return 0; 582 } 583 thread_count = migrate_multifd_channels(); 584 multifd_recv_state = g_malloc0(sizeof(*multifd_recv_state)); 585 multifd_recv_state->params = g_new0(MultiFDRecvParams, thread_count); 586 multifd_recv_state->count = 0; 587 for (i = 0; i < thread_count; i++) { 588 MultiFDRecvParams *p = &multifd_recv_state->params[i]; 589 590 qemu_mutex_init(&p->mutex); 591 qemu_sem_init(&p->sem, 0); 592 p->quit = false; 593 p->id = i; 594 p->name = g_strdup_printf("multifdrecv_%d", i); 595 qemu_thread_create(&p->thread, p->name, multifd_recv_thread, p, 596 QEMU_THREAD_JOINABLE); 597 multifd_recv_state->count++; 598 } 599 return 0; 600 } 601 602 /** 603 * save_page_header: write page header to wire 604 * 605 * If this is the 1st block, it also writes the block identification 606 * 607 * Returns the number of bytes written 608 * 609 * @f: QEMUFile where to send the data 610 * @block: block that contains the page we want to send 611 * @offset: offset inside the block for the page 612 * in the lower bits, it contains flags 613 */ 614 static size_t save_page_header(RAMState *rs, QEMUFile *f, RAMBlock *block, 615 ram_addr_t offset) 616 { 617 size_t size, len; 618 619 if (block == rs->last_sent_block) { 620 offset |= RAM_SAVE_FLAG_CONTINUE; 621 } 622 qemu_put_be64(f, offset); 623 size = 8; 624 625 if (!(offset & RAM_SAVE_FLAG_CONTINUE)) { 626 len = strlen(block->idstr); 627 qemu_put_byte(f, len); 628 qemu_put_buffer(f, (uint8_t *)block->idstr, len); 629 size += 1 + len; 630 rs->last_sent_block = block; 631 } 632 return size; 633 } 634 635 /** 636 * mig_throttle_guest_down: throotle down the guest 637 * 638 * Reduce amount of guest cpu execution to hopefully slow down memory 639 * writes. If guest dirty memory rate is reduced below the rate at 640 * which we can transfer pages to the destination then we should be 641 * able to complete migration. Some workloads dirty memory way too 642 * fast and will not effectively converge, even with auto-converge. 643 */ 644 static void mig_throttle_guest_down(void) 645 { 646 MigrationState *s = migrate_get_current(); 647 uint64_t pct_initial = s->parameters.cpu_throttle_initial; 648 uint64_t pct_icrement = s->parameters.cpu_throttle_increment; 649 650 /* We have not started throttling yet. Let's start it. */ 651 if (!cpu_throttle_active()) { 652 cpu_throttle_set(pct_initial); 653 } else { 654 /* Throttling already on, just increase the rate */ 655 cpu_throttle_set(cpu_throttle_get_percentage() + pct_icrement); 656 } 657 } 658 659 /** 660 * xbzrle_cache_zero_page: insert a zero page in the XBZRLE cache 661 * 662 * @rs: current RAM state 663 * @current_addr: address for the zero page 664 * 665 * Update the xbzrle cache to reflect a page that's been sent as all 0. 666 * The important thing is that a stale (not-yet-0'd) page be replaced 667 * by the new data. 668 * As a bonus, if the page wasn't in the cache it gets added so that 669 * when a small write is made into the 0'd page it gets XBZRLE sent. 670 */ 671 static void xbzrle_cache_zero_page(RAMState *rs, ram_addr_t current_addr) 672 { 673 if (rs->ram_bulk_stage || !migrate_use_xbzrle()) { 674 return; 675 } 676 677 /* We don't care if this fails to allocate a new cache page 678 * as long as it updated an old one */ 679 cache_insert(XBZRLE.cache, current_addr, XBZRLE.zero_target_page, 680 ram_counters.dirty_sync_count); 681 } 682 683 #define ENCODING_FLAG_XBZRLE 0x1 684 685 /** 686 * save_xbzrle_page: compress and send current page 687 * 688 * Returns: 1 means that we wrote the page 689 * 0 means that page is identical to the one already sent 690 * -1 means that xbzrle would be longer than normal 691 * 692 * @rs: current RAM state 693 * @current_data: pointer to the address of the page contents 694 * @current_addr: addr of the page 695 * @block: block that contains the page we want to send 696 * @offset: offset inside the block for the page 697 * @last_stage: if we are at the completion stage 698 */ 699 static int save_xbzrle_page(RAMState *rs, uint8_t **current_data, 700 ram_addr_t current_addr, RAMBlock *block, 701 ram_addr_t offset, bool last_stage) 702 { 703 int encoded_len = 0, bytes_xbzrle; 704 uint8_t *prev_cached_page; 705 706 if (!cache_is_cached(XBZRLE.cache, current_addr, 707 ram_counters.dirty_sync_count)) { 708 xbzrle_counters.cache_miss++; 709 if (!last_stage) { 710 if (cache_insert(XBZRLE.cache, current_addr, *current_data, 711 ram_counters.dirty_sync_count) == -1) { 712 return -1; 713 } else { 714 /* update *current_data when the page has been 715 inserted into cache */ 716 *current_data = get_cached_data(XBZRLE.cache, current_addr); 717 } 718 } 719 return -1; 720 } 721 722 prev_cached_page = get_cached_data(XBZRLE.cache, current_addr); 723 724 /* save current buffer into memory */ 725 memcpy(XBZRLE.current_buf, *current_data, TARGET_PAGE_SIZE); 726 727 /* XBZRLE encoding (if there is no overflow) */ 728 encoded_len = xbzrle_encode_buffer(prev_cached_page, XBZRLE.current_buf, 729 TARGET_PAGE_SIZE, XBZRLE.encoded_buf, 730 TARGET_PAGE_SIZE); 731 if (encoded_len == 0) { 732 trace_save_xbzrle_page_skipping(); 733 return 0; 734 } else if (encoded_len == -1) { 735 trace_save_xbzrle_page_overflow(); 736 xbzrle_counters.overflow++; 737 /* update data in the cache */ 738 if (!last_stage) { 739 memcpy(prev_cached_page, *current_data, TARGET_PAGE_SIZE); 740 *current_data = prev_cached_page; 741 } 742 return -1; 743 } 744 745 /* we need to update the data in the cache, in order to get the same data */ 746 if (!last_stage) { 747 memcpy(prev_cached_page, XBZRLE.current_buf, TARGET_PAGE_SIZE); 748 } 749 750 /* Send XBZRLE based compressed page */ 751 bytes_xbzrle = save_page_header(rs, rs->f, block, 752 offset | RAM_SAVE_FLAG_XBZRLE); 753 qemu_put_byte(rs->f, ENCODING_FLAG_XBZRLE); 754 qemu_put_be16(rs->f, encoded_len); 755 qemu_put_buffer(rs->f, XBZRLE.encoded_buf, encoded_len); 756 bytes_xbzrle += encoded_len + 1 + 2; 757 xbzrle_counters.pages++; 758 xbzrle_counters.bytes += bytes_xbzrle; 759 ram_counters.transferred += bytes_xbzrle; 760 761 return 1; 762 } 763 764 /** 765 * migration_bitmap_find_dirty: find the next dirty page from start 766 * 767 * Called with rcu_read_lock() to protect migration_bitmap 768 * 769 * Returns the byte offset within memory region of the start of a dirty page 770 * 771 * @rs: current RAM state 772 * @rb: RAMBlock where to search for dirty pages 773 * @start: page where we start the search 774 */ 775 static inline 776 unsigned long migration_bitmap_find_dirty(RAMState *rs, RAMBlock *rb, 777 unsigned long start) 778 { 779 unsigned long size = rb->used_length >> TARGET_PAGE_BITS; 780 unsigned long *bitmap = rb->bmap; 781 unsigned long next; 782 783 if (rs->ram_bulk_stage && start > 0) { 784 next = start + 1; 785 } else { 786 next = find_next_bit(bitmap, size, start); 787 } 788 789 return next; 790 } 791 792 static inline bool migration_bitmap_clear_dirty(RAMState *rs, 793 RAMBlock *rb, 794 unsigned long page) 795 { 796 bool ret; 797 798 ret = test_and_clear_bit(page, rb->bmap); 799 800 if (ret) { 801 rs->migration_dirty_pages--; 802 } 803 return ret; 804 } 805 806 static void migration_bitmap_sync_range(RAMState *rs, RAMBlock *rb, 807 ram_addr_t start, ram_addr_t length) 808 { 809 rs->migration_dirty_pages += 810 cpu_physical_memory_sync_dirty_bitmap(rb, start, length, 811 &rs->num_dirty_pages_period); 812 } 813 814 /** 815 * ram_pagesize_summary: calculate all the pagesizes of a VM 816 * 817 * Returns a summary bitmap of the page sizes of all RAMBlocks 818 * 819 * For VMs with just normal pages this is equivalent to the host page 820 * size. If it's got some huge pages then it's the OR of all the 821 * different page sizes. 822 */ 823 uint64_t ram_pagesize_summary(void) 824 { 825 RAMBlock *block; 826 uint64_t summary = 0; 827 828 RAMBLOCK_FOREACH(block) { 829 summary |= block->page_size; 830 } 831 832 return summary; 833 } 834 835 static void migration_bitmap_sync(RAMState *rs) 836 { 837 RAMBlock *block; 838 int64_t end_time; 839 uint64_t bytes_xfer_now; 840 841 ram_counters.dirty_sync_count++; 842 843 if (!rs->time_last_bitmap_sync) { 844 rs->time_last_bitmap_sync = qemu_clock_get_ms(QEMU_CLOCK_REALTIME); 845 } 846 847 trace_migration_bitmap_sync_start(); 848 memory_global_dirty_log_sync(); 849 850 qemu_mutex_lock(&rs->bitmap_mutex); 851 rcu_read_lock(); 852 RAMBLOCK_FOREACH(block) { 853 migration_bitmap_sync_range(rs, block, 0, block->used_length); 854 } 855 rcu_read_unlock(); 856 qemu_mutex_unlock(&rs->bitmap_mutex); 857 858 trace_migration_bitmap_sync_end(rs->num_dirty_pages_period); 859 860 end_time = qemu_clock_get_ms(QEMU_CLOCK_REALTIME); 861 862 /* more than 1 second = 1000 millisecons */ 863 if (end_time > rs->time_last_bitmap_sync + 1000) { 864 /* calculate period counters */ 865 ram_counters.dirty_pages_rate = rs->num_dirty_pages_period * 1000 866 / (end_time - rs->time_last_bitmap_sync); 867 bytes_xfer_now = ram_counters.transferred; 868 869 /* During block migration the auto-converge logic incorrectly detects 870 * that ram migration makes no progress. Avoid this by disabling the 871 * throttling logic during the bulk phase of block migration. */ 872 if (migrate_auto_converge() && !blk_mig_bulk_active()) { 873 /* The following detection logic can be refined later. For now: 874 Check to see if the dirtied bytes is 50% more than the approx. 875 amount of bytes that just got transferred since the last time we 876 were in this routine. If that happens twice, start or increase 877 throttling */ 878 879 if ((rs->num_dirty_pages_period * TARGET_PAGE_SIZE > 880 (bytes_xfer_now - rs->bytes_xfer_prev) / 2) && 881 (++rs->dirty_rate_high_cnt >= 2)) { 882 trace_migration_throttle(); 883 rs->dirty_rate_high_cnt = 0; 884 mig_throttle_guest_down(); 885 } 886 } 887 888 if (migrate_use_xbzrle()) { 889 if (rs->iterations_prev != rs->iterations) { 890 xbzrle_counters.cache_miss_rate = 891 (double)(xbzrle_counters.cache_miss - 892 rs->xbzrle_cache_miss_prev) / 893 (rs->iterations - rs->iterations_prev); 894 } 895 rs->iterations_prev = rs->iterations; 896 rs->xbzrle_cache_miss_prev = xbzrle_counters.cache_miss; 897 } 898 899 /* reset period counters */ 900 rs->time_last_bitmap_sync = end_time; 901 rs->num_dirty_pages_period = 0; 902 rs->bytes_xfer_prev = bytes_xfer_now; 903 } 904 if (migrate_use_events()) { 905 qapi_event_send_migration_pass(ram_counters.dirty_sync_count, NULL); 906 } 907 } 908 909 /** 910 * save_zero_page: send the zero page to the stream 911 * 912 * Returns the number of pages written. 913 * 914 * @rs: current RAM state 915 * @block: block that contains the page we want to send 916 * @offset: offset inside the block for the page 917 */ 918 static int save_zero_page(RAMState *rs, RAMBlock *block, ram_addr_t offset) 919 { 920 uint8_t *p = block->host + offset; 921 int pages = -1; 922 923 if (is_zero_range(p, TARGET_PAGE_SIZE)) { 924 ram_counters.duplicate++; 925 ram_counters.transferred += 926 save_page_header(rs, rs->f, block, offset | RAM_SAVE_FLAG_ZERO); 927 qemu_put_byte(rs->f, 0); 928 ram_counters.transferred += 1; 929 pages = 1; 930 } 931 932 return pages; 933 } 934 935 static void ram_release_pages(const char *rbname, uint64_t offset, int pages) 936 { 937 if (!migrate_release_ram() || !migration_in_postcopy()) { 938 return; 939 } 940 941 ram_discard_range(rbname, offset, pages << TARGET_PAGE_BITS); 942 } 943 944 /** 945 * ram_save_page: send the given page to the stream 946 * 947 * Returns the number of pages written. 948 * < 0 - error 949 * >=0 - Number of pages written - this might legally be 0 950 * if xbzrle noticed the page was the same. 951 * 952 * @rs: current RAM state 953 * @block: block that contains the page we want to send 954 * @offset: offset inside the block for the page 955 * @last_stage: if we are at the completion stage 956 */ 957 static int ram_save_page(RAMState *rs, PageSearchStatus *pss, bool last_stage) 958 { 959 int pages = -1; 960 uint64_t bytes_xmit; 961 ram_addr_t current_addr; 962 uint8_t *p; 963 int ret; 964 bool send_async = true; 965 RAMBlock *block = pss->block; 966 ram_addr_t offset = pss->page << TARGET_PAGE_BITS; 967 968 p = block->host + offset; 969 trace_ram_save_page(block->idstr, (uint64_t)offset, p); 970 971 /* In doubt sent page as normal */ 972 bytes_xmit = 0; 973 ret = ram_control_save_page(rs->f, block->offset, 974 offset, TARGET_PAGE_SIZE, &bytes_xmit); 975 if (bytes_xmit) { 976 ram_counters.transferred += bytes_xmit; 977 pages = 1; 978 } 979 980 XBZRLE_cache_lock(); 981 982 current_addr = block->offset + offset; 983 984 if (ret != RAM_SAVE_CONTROL_NOT_SUPP) { 985 if (ret != RAM_SAVE_CONTROL_DELAYED) { 986 if (bytes_xmit > 0) { 987 ram_counters.normal++; 988 } else if (bytes_xmit == 0) { 989 ram_counters.duplicate++; 990 } 991 } 992 } else { 993 pages = save_zero_page(rs, block, offset); 994 if (pages > 0) { 995 /* Must let xbzrle know, otherwise a previous (now 0'd) cached 996 * page would be stale 997 */ 998 xbzrle_cache_zero_page(rs, current_addr); 999 ram_release_pages(block->idstr, offset, pages); 1000 } else if (!rs->ram_bulk_stage && 1001 !migration_in_postcopy() && migrate_use_xbzrle()) { 1002 pages = save_xbzrle_page(rs, &p, current_addr, block, 1003 offset, last_stage); 1004 if (!last_stage) { 1005 /* Can't send this cached data async, since the cache page 1006 * might get updated before it gets to the wire 1007 */ 1008 send_async = false; 1009 } 1010 } 1011 } 1012 1013 /* XBZRLE overflow or normal page */ 1014 if (pages == -1) { 1015 ram_counters.transferred += 1016 save_page_header(rs, rs->f, block, offset | RAM_SAVE_FLAG_PAGE); 1017 if (send_async) { 1018 qemu_put_buffer_async(rs->f, p, TARGET_PAGE_SIZE, 1019 migrate_release_ram() & 1020 migration_in_postcopy()); 1021 } else { 1022 qemu_put_buffer(rs->f, p, TARGET_PAGE_SIZE); 1023 } 1024 ram_counters.transferred += TARGET_PAGE_SIZE; 1025 pages = 1; 1026 ram_counters.normal++; 1027 } 1028 1029 XBZRLE_cache_unlock(); 1030 1031 return pages; 1032 } 1033 1034 static int do_compress_ram_page(QEMUFile *f, RAMBlock *block, 1035 ram_addr_t offset) 1036 { 1037 RAMState *rs = ram_state; 1038 int bytes_sent, blen; 1039 uint8_t *p = block->host + (offset & TARGET_PAGE_MASK); 1040 1041 bytes_sent = save_page_header(rs, f, block, offset | 1042 RAM_SAVE_FLAG_COMPRESS_PAGE); 1043 blen = qemu_put_compression_data(f, p, TARGET_PAGE_SIZE, 1044 migrate_compress_level()); 1045 if (blen < 0) { 1046 bytes_sent = 0; 1047 qemu_file_set_error(migrate_get_current()->to_dst_file, blen); 1048 error_report("compressed data failed!"); 1049 } else { 1050 bytes_sent += blen; 1051 ram_release_pages(block->idstr, offset & TARGET_PAGE_MASK, 1); 1052 } 1053 1054 return bytes_sent; 1055 } 1056 1057 static void flush_compressed_data(RAMState *rs) 1058 { 1059 int idx, len, thread_count; 1060 1061 if (!migrate_use_compression()) { 1062 return; 1063 } 1064 thread_count = migrate_compress_threads(); 1065 1066 qemu_mutex_lock(&comp_done_lock); 1067 for (idx = 0; idx < thread_count; idx++) { 1068 while (!comp_param[idx].done) { 1069 qemu_cond_wait(&comp_done_cond, &comp_done_lock); 1070 } 1071 } 1072 qemu_mutex_unlock(&comp_done_lock); 1073 1074 for (idx = 0; idx < thread_count; idx++) { 1075 qemu_mutex_lock(&comp_param[idx].mutex); 1076 if (!comp_param[idx].quit) { 1077 len = qemu_put_qemu_file(rs->f, comp_param[idx].file); 1078 ram_counters.transferred += len; 1079 } 1080 qemu_mutex_unlock(&comp_param[idx].mutex); 1081 } 1082 } 1083 1084 static inline void set_compress_params(CompressParam *param, RAMBlock *block, 1085 ram_addr_t offset) 1086 { 1087 param->block = block; 1088 param->offset = offset; 1089 } 1090 1091 static int compress_page_with_multi_thread(RAMState *rs, RAMBlock *block, 1092 ram_addr_t offset) 1093 { 1094 int idx, thread_count, bytes_xmit = -1, pages = -1; 1095 1096 thread_count = migrate_compress_threads(); 1097 qemu_mutex_lock(&comp_done_lock); 1098 while (true) { 1099 for (idx = 0; idx < thread_count; idx++) { 1100 if (comp_param[idx].done) { 1101 comp_param[idx].done = false; 1102 bytes_xmit = qemu_put_qemu_file(rs->f, comp_param[idx].file); 1103 qemu_mutex_lock(&comp_param[idx].mutex); 1104 set_compress_params(&comp_param[idx], block, offset); 1105 qemu_cond_signal(&comp_param[idx].cond); 1106 qemu_mutex_unlock(&comp_param[idx].mutex); 1107 pages = 1; 1108 ram_counters.normal++; 1109 ram_counters.transferred += bytes_xmit; 1110 break; 1111 } 1112 } 1113 if (pages > 0) { 1114 break; 1115 } else { 1116 qemu_cond_wait(&comp_done_cond, &comp_done_lock); 1117 } 1118 } 1119 qemu_mutex_unlock(&comp_done_lock); 1120 1121 return pages; 1122 } 1123 1124 /** 1125 * ram_save_compressed_page: compress the given page and send it to the stream 1126 * 1127 * Returns the number of pages written. 1128 * 1129 * @rs: current RAM state 1130 * @block: block that contains the page we want to send 1131 * @offset: offset inside the block for the page 1132 * @last_stage: if we are at the completion stage 1133 */ 1134 static int ram_save_compressed_page(RAMState *rs, PageSearchStatus *pss, 1135 bool last_stage) 1136 { 1137 int pages = -1; 1138 uint64_t bytes_xmit = 0; 1139 uint8_t *p; 1140 int ret, blen; 1141 RAMBlock *block = pss->block; 1142 ram_addr_t offset = pss->page << TARGET_PAGE_BITS; 1143 1144 p = block->host + offset; 1145 1146 ret = ram_control_save_page(rs->f, block->offset, 1147 offset, TARGET_PAGE_SIZE, &bytes_xmit); 1148 if (bytes_xmit) { 1149 ram_counters.transferred += bytes_xmit; 1150 pages = 1; 1151 } 1152 if (ret != RAM_SAVE_CONTROL_NOT_SUPP) { 1153 if (ret != RAM_SAVE_CONTROL_DELAYED) { 1154 if (bytes_xmit > 0) { 1155 ram_counters.normal++; 1156 } else if (bytes_xmit == 0) { 1157 ram_counters.duplicate++; 1158 } 1159 } 1160 } else { 1161 /* When starting the process of a new block, the first page of 1162 * the block should be sent out before other pages in the same 1163 * block, and all the pages in last block should have been sent 1164 * out, keeping this order is important, because the 'cont' flag 1165 * is used to avoid resending the block name. 1166 */ 1167 if (block != rs->last_sent_block) { 1168 flush_compressed_data(rs); 1169 pages = save_zero_page(rs, block, offset); 1170 if (pages == -1) { 1171 /* Make sure the first page is sent out before other pages */ 1172 bytes_xmit = save_page_header(rs, rs->f, block, offset | 1173 RAM_SAVE_FLAG_COMPRESS_PAGE); 1174 blen = qemu_put_compression_data(rs->f, p, TARGET_PAGE_SIZE, 1175 migrate_compress_level()); 1176 if (blen > 0) { 1177 ram_counters.transferred += bytes_xmit + blen; 1178 ram_counters.normal++; 1179 pages = 1; 1180 } else { 1181 qemu_file_set_error(rs->f, blen); 1182 error_report("compressed data failed!"); 1183 } 1184 } 1185 if (pages > 0) { 1186 ram_release_pages(block->idstr, offset, pages); 1187 } 1188 } else { 1189 pages = save_zero_page(rs, block, offset); 1190 if (pages == -1) { 1191 pages = compress_page_with_multi_thread(rs, block, offset); 1192 } else { 1193 ram_release_pages(block->idstr, offset, pages); 1194 } 1195 } 1196 } 1197 1198 return pages; 1199 } 1200 1201 /** 1202 * find_dirty_block: find the next dirty page and update any state 1203 * associated with the search process. 1204 * 1205 * Returns if a page is found 1206 * 1207 * @rs: current RAM state 1208 * @pss: data about the state of the current dirty page scan 1209 * @again: set to false if the search has scanned the whole of RAM 1210 */ 1211 static bool find_dirty_block(RAMState *rs, PageSearchStatus *pss, bool *again) 1212 { 1213 pss->page = migration_bitmap_find_dirty(rs, pss->block, pss->page); 1214 if (pss->complete_round && pss->block == rs->last_seen_block && 1215 pss->page >= rs->last_page) { 1216 /* 1217 * We've been once around the RAM and haven't found anything. 1218 * Give up. 1219 */ 1220 *again = false; 1221 return false; 1222 } 1223 if ((pss->page << TARGET_PAGE_BITS) >= pss->block->used_length) { 1224 /* Didn't find anything in this RAM Block */ 1225 pss->page = 0; 1226 pss->block = QLIST_NEXT_RCU(pss->block, next); 1227 if (!pss->block) { 1228 /* Hit the end of the list */ 1229 pss->block = QLIST_FIRST_RCU(&ram_list.blocks); 1230 /* Flag that we've looped */ 1231 pss->complete_round = true; 1232 rs->ram_bulk_stage = false; 1233 if (migrate_use_xbzrle()) { 1234 /* If xbzrle is on, stop using the data compression at this 1235 * point. In theory, xbzrle can do better than compression. 1236 */ 1237 flush_compressed_data(rs); 1238 } 1239 } 1240 /* Didn't find anything this time, but try again on the new block */ 1241 *again = true; 1242 return false; 1243 } else { 1244 /* Can go around again, but... */ 1245 *again = true; 1246 /* We've found something so probably don't need to */ 1247 return true; 1248 } 1249 } 1250 1251 /** 1252 * unqueue_page: gets a page of the queue 1253 * 1254 * Helper for 'get_queued_page' - gets a page off the queue 1255 * 1256 * Returns the block of the page (or NULL if none available) 1257 * 1258 * @rs: current RAM state 1259 * @offset: used to return the offset within the RAMBlock 1260 */ 1261 static RAMBlock *unqueue_page(RAMState *rs, ram_addr_t *offset) 1262 { 1263 RAMBlock *block = NULL; 1264 1265 qemu_mutex_lock(&rs->src_page_req_mutex); 1266 if (!QSIMPLEQ_EMPTY(&rs->src_page_requests)) { 1267 struct RAMSrcPageRequest *entry = 1268 QSIMPLEQ_FIRST(&rs->src_page_requests); 1269 block = entry->rb; 1270 *offset = entry->offset; 1271 1272 if (entry->len > TARGET_PAGE_SIZE) { 1273 entry->len -= TARGET_PAGE_SIZE; 1274 entry->offset += TARGET_PAGE_SIZE; 1275 } else { 1276 memory_region_unref(block->mr); 1277 QSIMPLEQ_REMOVE_HEAD(&rs->src_page_requests, next_req); 1278 g_free(entry); 1279 } 1280 } 1281 qemu_mutex_unlock(&rs->src_page_req_mutex); 1282 1283 return block; 1284 } 1285 1286 /** 1287 * get_queued_page: unqueue a page from the postocpy requests 1288 * 1289 * Skips pages that are already sent (!dirty) 1290 * 1291 * Returns if a queued page is found 1292 * 1293 * @rs: current RAM state 1294 * @pss: data about the state of the current dirty page scan 1295 */ 1296 static bool get_queued_page(RAMState *rs, PageSearchStatus *pss) 1297 { 1298 RAMBlock *block; 1299 ram_addr_t offset; 1300 bool dirty; 1301 1302 do { 1303 block = unqueue_page(rs, &offset); 1304 /* 1305 * We're sending this page, and since it's postcopy nothing else 1306 * will dirty it, and we must make sure it doesn't get sent again 1307 * even if this queue request was received after the background 1308 * search already sent it. 1309 */ 1310 if (block) { 1311 unsigned long page; 1312 1313 page = offset >> TARGET_PAGE_BITS; 1314 dirty = test_bit(page, block->bmap); 1315 if (!dirty) { 1316 trace_get_queued_page_not_dirty(block->idstr, (uint64_t)offset, 1317 page, test_bit(page, block->unsentmap)); 1318 } else { 1319 trace_get_queued_page(block->idstr, (uint64_t)offset, page); 1320 } 1321 } 1322 1323 } while (block && !dirty); 1324 1325 if (block) { 1326 /* 1327 * As soon as we start servicing pages out of order, then we have 1328 * to kill the bulk stage, since the bulk stage assumes 1329 * in (migration_bitmap_find_and_reset_dirty) that every page is 1330 * dirty, that's no longer true. 1331 */ 1332 rs->ram_bulk_stage = false; 1333 1334 /* 1335 * We want the background search to continue from the queued page 1336 * since the guest is likely to want other pages near to the page 1337 * it just requested. 1338 */ 1339 pss->block = block; 1340 pss->page = offset >> TARGET_PAGE_BITS; 1341 } 1342 1343 return !!block; 1344 } 1345 1346 /** 1347 * migration_page_queue_free: drop any remaining pages in the ram 1348 * request queue 1349 * 1350 * It should be empty at the end anyway, but in error cases there may 1351 * be some left. in case that there is any page left, we drop it. 1352 * 1353 */ 1354 static void migration_page_queue_free(RAMState *rs) 1355 { 1356 struct RAMSrcPageRequest *mspr, *next_mspr; 1357 /* This queue generally should be empty - but in the case of a failed 1358 * migration might have some droppings in. 1359 */ 1360 rcu_read_lock(); 1361 QSIMPLEQ_FOREACH_SAFE(mspr, &rs->src_page_requests, next_req, next_mspr) { 1362 memory_region_unref(mspr->rb->mr); 1363 QSIMPLEQ_REMOVE_HEAD(&rs->src_page_requests, next_req); 1364 g_free(mspr); 1365 } 1366 rcu_read_unlock(); 1367 } 1368 1369 /** 1370 * ram_save_queue_pages: queue the page for transmission 1371 * 1372 * A request from postcopy destination for example. 1373 * 1374 * Returns zero on success or negative on error 1375 * 1376 * @rbname: Name of the RAMBLock of the request. NULL means the 1377 * same that last one. 1378 * @start: starting address from the start of the RAMBlock 1379 * @len: length (in bytes) to send 1380 */ 1381 int ram_save_queue_pages(const char *rbname, ram_addr_t start, ram_addr_t len) 1382 { 1383 RAMBlock *ramblock; 1384 RAMState *rs = ram_state; 1385 1386 ram_counters.postcopy_requests++; 1387 rcu_read_lock(); 1388 if (!rbname) { 1389 /* Reuse last RAMBlock */ 1390 ramblock = rs->last_req_rb; 1391 1392 if (!ramblock) { 1393 /* 1394 * Shouldn't happen, we can't reuse the last RAMBlock if 1395 * it's the 1st request. 1396 */ 1397 error_report("ram_save_queue_pages no previous block"); 1398 goto err; 1399 } 1400 } else { 1401 ramblock = qemu_ram_block_by_name(rbname); 1402 1403 if (!ramblock) { 1404 /* We shouldn't be asked for a non-existent RAMBlock */ 1405 error_report("ram_save_queue_pages no block '%s'", rbname); 1406 goto err; 1407 } 1408 rs->last_req_rb = ramblock; 1409 } 1410 trace_ram_save_queue_pages(ramblock->idstr, start, len); 1411 if (start+len > ramblock->used_length) { 1412 error_report("%s request overrun start=" RAM_ADDR_FMT " len=" 1413 RAM_ADDR_FMT " blocklen=" RAM_ADDR_FMT, 1414 __func__, start, len, ramblock->used_length); 1415 goto err; 1416 } 1417 1418 struct RAMSrcPageRequest *new_entry = 1419 g_malloc0(sizeof(struct RAMSrcPageRequest)); 1420 new_entry->rb = ramblock; 1421 new_entry->offset = start; 1422 new_entry->len = len; 1423 1424 memory_region_ref(ramblock->mr); 1425 qemu_mutex_lock(&rs->src_page_req_mutex); 1426 QSIMPLEQ_INSERT_TAIL(&rs->src_page_requests, new_entry, next_req); 1427 qemu_mutex_unlock(&rs->src_page_req_mutex); 1428 rcu_read_unlock(); 1429 1430 return 0; 1431 1432 err: 1433 rcu_read_unlock(); 1434 return -1; 1435 } 1436 1437 /** 1438 * ram_save_target_page: save one target page 1439 * 1440 * Returns the number of pages written 1441 * 1442 * @rs: current RAM state 1443 * @ms: current migration state 1444 * @pss: data about the page we want to send 1445 * @last_stage: if we are at the completion stage 1446 */ 1447 static int ram_save_target_page(RAMState *rs, PageSearchStatus *pss, 1448 bool last_stage) 1449 { 1450 int res = 0; 1451 1452 /* Check the pages is dirty and if it is send it */ 1453 if (migration_bitmap_clear_dirty(rs, pss->block, pss->page)) { 1454 /* 1455 * If xbzrle is on, stop using the data compression after first 1456 * round of migration even if compression is enabled. In theory, 1457 * xbzrle can do better than compression. 1458 */ 1459 if (migrate_use_compression() && 1460 (rs->ram_bulk_stage || !migrate_use_xbzrle())) { 1461 res = ram_save_compressed_page(rs, pss, last_stage); 1462 } else { 1463 res = ram_save_page(rs, pss, last_stage); 1464 } 1465 1466 if (res < 0) { 1467 return res; 1468 } 1469 if (pss->block->unsentmap) { 1470 clear_bit(pss->page, pss->block->unsentmap); 1471 } 1472 } 1473 1474 return res; 1475 } 1476 1477 /** 1478 * ram_save_host_page: save a whole host page 1479 * 1480 * Starting at *offset send pages up to the end of the current host 1481 * page. It's valid for the initial offset to point into the middle of 1482 * a host page in which case the remainder of the hostpage is sent. 1483 * Only dirty target pages are sent. Note that the host page size may 1484 * be a huge page for this block. 1485 * The saving stops at the boundary of the used_length of the block 1486 * if the RAMBlock isn't a multiple of the host page size. 1487 * 1488 * Returns the number of pages written or negative on error 1489 * 1490 * @rs: current RAM state 1491 * @ms: current migration state 1492 * @pss: data about the page we want to send 1493 * @last_stage: if we are at the completion stage 1494 */ 1495 static int ram_save_host_page(RAMState *rs, PageSearchStatus *pss, 1496 bool last_stage) 1497 { 1498 int tmppages, pages = 0; 1499 size_t pagesize_bits = 1500 qemu_ram_pagesize(pss->block) >> TARGET_PAGE_BITS; 1501 1502 do { 1503 tmppages = ram_save_target_page(rs, pss, last_stage); 1504 if (tmppages < 0) { 1505 return tmppages; 1506 } 1507 1508 pages += tmppages; 1509 pss->page++; 1510 } while ((pss->page & (pagesize_bits - 1)) && 1511 offset_in_ramblock(pss->block, pss->page << TARGET_PAGE_BITS)); 1512 1513 /* The offset we leave with is the last one we looked at */ 1514 pss->page--; 1515 return pages; 1516 } 1517 1518 /** 1519 * ram_find_and_save_block: finds a dirty page and sends it to f 1520 * 1521 * Called within an RCU critical section. 1522 * 1523 * Returns the number of pages written where zero means no dirty pages 1524 * 1525 * @rs: current RAM state 1526 * @last_stage: if we are at the completion stage 1527 * 1528 * On systems where host-page-size > target-page-size it will send all the 1529 * pages in a host page that are dirty. 1530 */ 1531 1532 static int ram_find_and_save_block(RAMState *rs, bool last_stage) 1533 { 1534 PageSearchStatus pss; 1535 int pages = 0; 1536 bool again, found; 1537 1538 /* No dirty page as there is zero RAM */ 1539 if (!ram_bytes_total()) { 1540 return pages; 1541 } 1542 1543 pss.block = rs->last_seen_block; 1544 pss.page = rs->last_page; 1545 pss.complete_round = false; 1546 1547 if (!pss.block) { 1548 pss.block = QLIST_FIRST_RCU(&ram_list.blocks); 1549 } 1550 1551 do { 1552 again = true; 1553 found = get_queued_page(rs, &pss); 1554 1555 if (!found) { 1556 /* priority queue empty, so just search for something dirty */ 1557 found = find_dirty_block(rs, &pss, &again); 1558 } 1559 1560 if (found) { 1561 pages = ram_save_host_page(rs, &pss, last_stage); 1562 } 1563 } while (!pages && again); 1564 1565 rs->last_seen_block = pss.block; 1566 rs->last_page = pss.page; 1567 1568 return pages; 1569 } 1570 1571 void acct_update_position(QEMUFile *f, size_t size, bool zero) 1572 { 1573 uint64_t pages = size / TARGET_PAGE_SIZE; 1574 1575 if (zero) { 1576 ram_counters.duplicate += pages; 1577 } else { 1578 ram_counters.normal += pages; 1579 ram_counters.transferred += size; 1580 qemu_update_position(f, size); 1581 } 1582 } 1583 1584 uint64_t ram_bytes_total(void) 1585 { 1586 RAMBlock *block; 1587 uint64_t total = 0; 1588 1589 rcu_read_lock(); 1590 RAMBLOCK_FOREACH(block) { 1591 total += block->used_length; 1592 } 1593 rcu_read_unlock(); 1594 return total; 1595 } 1596 1597 static void xbzrle_load_setup(void) 1598 { 1599 XBZRLE.decoded_buf = g_malloc(TARGET_PAGE_SIZE); 1600 } 1601 1602 static void xbzrle_load_cleanup(void) 1603 { 1604 g_free(XBZRLE.decoded_buf); 1605 XBZRLE.decoded_buf = NULL; 1606 } 1607 1608 static void ram_state_cleanup(RAMState **rsp) 1609 { 1610 if (*rsp) { 1611 migration_page_queue_free(*rsp); 1612 qemu_mutex_destroy(&(*rsp)->bitmap_mutex); 1613 qemu_mutex_destroy(&(*rsp)->src_page_req_mutex); 1614 g_free(*rsp); 1615 *rsp = NULL; 1616 } 1617 } 1618 1619 static void xbzrle_cleanup(void) 1620 { 1621 XBZRLE_cache_lock(); 1622 if (XBZRLE.cache) { 1623 cache_fini(XBZRLE.cache); 1624 g_free(XBZRLE.encoded_buf); 1625 g_free(XBZRLE.current_buf); 1626 g_free(XBZRLE.zero_target_page); 1627 XBZRLE.cache = NULL; 1628 XBZRLE.encoded_buf = NULL; 1629 XBZRLE.current_buf = NULL; 1630 XBZRLE.zero_target_page = NULL; 1631 } 1632 XBZRLE_cache_unlock(); 1633 } 1634 1635 static void ram_save_cleanup(void *opaque) 1636 { 1637 RAMState **rsp = opaque; 1638 RAMBlock *block; 1639 1640 /* caller have hold iothread lock or is in a bh, so there is 1641 * no writing race against this migration_bitmap 1642 */ 1643 memory_global_dirty_log_stop(); 1644 1645 QLIST_FOREACH_RCU(block, &ram_list.blocks, next) { 1646 g_free(block->bmap); 1647 block->bmap = NULL; 1648 g_free(block->unsentmap); 1649 block->unsentmap = NULL; 1650 } 1651 1652 xbzrle_cleanup(); 1653 compress_threads_save_cleanup(); 1654 ram_state_cleanup(rsp); 1655 } 1656 1657 static void ram_state_reset(RAMState *rs) 1658 { 1659 rs->last_seen_block = NULL; 1660 rs->last_sent_block = NULL; 1661 rs->last_page = 0; 1662 rs->last_version = ram_list.version; 1663 rs->ram_bulk_stage = true; 1664 } 1665 1666 #define MAX_WAIT 50 /* ms, half buffered_file limit */ 1667 1668 /* 1669 * 'expected' is the value you expect the bitmap mostly to be full 1670 * of; it won't bother printing lines that are all this value. 1671 * If 'todump' is null the migration bitmap is dumped. 1672 */ 1673 void ram_debug_dump_bitmap(unsigned long *todump, bool expected, 1674 unsigned long pages) 1675 { 1676 int64_t cur; 1677 int64_t linelen = 128; 1678 char linebuf[129]; 1679 1680 for (cur = 0; cur < pages; cur += linelen) { 1681 int64_t curb; 1682 bool found = false; 1683 /* 1684 * Last line; catch the case where the line length 1685 * is longer than remaining ram 1686 */ 1687 if (cur + linelen > pages) { 1688 linelen = pages - cur; 1689 } 1690 for (curb = 0; curb < linelen; curb++) { 1691 bool thisbit = test_bit(cur + curb, todump); 1692 linebuf[curb] = thisbit ? '1' : '.'; 1693 found = found || (thisbit != expected); 1694 } 1695 if (found) { 1696 linebuf[curb] = '\0'; 1697 fprintf(stderr, "0x%08" PRIx64 " : %s\n", cur, linebuf); 1698 } 1699 } 1700 } 1701 1702 /* **** functions for postcopy ***** */ 1703 1704 void ram_postcopy_migrated_memory_release(MigrationState *ms) 1705 { 1706 struct RAMBlock *block; 1707 1708 RAMBLOCK_FOREACH(block) { 1709 unsigned long *bitmap = block->bmap; 1710 unsigned long range = block->used_length >> TARGET_PAGE_BITS; 1711 unsigned long run_start = find_next_zero_bit(bitmap, range, 0); 1712 1713 while (run_start < range) { 1714 unsigned long run_end = find_next_bit(bitmap, range, run_start + 1); 1715 ram_discard_range(block->idstr, run_start << TARGET_PAGE_BITS, 1716 (run_end - run_start) << TARGET_PAGE_BITS); 1717 run_start = find_next_zero_bit(bitmap, range, run_end + 1); 1718 } 1719 } 1720 } 1721 1722 /** 1723 * postcopy_send_discard_bm_ram: discard a RAMBlock 1724 * 1725 * Returns zero on success 1726 * 1727 * Callback from postcopy_each_ram_send_discard for each RAMBlock 1728 * Note: At this point the 'unsentmap' is the processed bitmap combined 1729 * with the dirtymap; so a '1' means it's either dirty or unsent. 1730 * 1731 * @ms: current migration state 1732 * @pds: state for postcopy 1733 * @start: RAMBlock starting page 1734 * @length: RAMBlock size 1735 */ 1736 static int postcopy_send_discard_bm_ram(MigrationState *ms, 1737 PostcopyDiscardState *pds, 1738 RAMBlock *block) 1739 { 1740 unsigned long end = block->used_length >> TARGET_PAGE_BITS; 1741 unsigned long current; 1742 unsigned long *unsentmap = block->unsentmap; 1743 1744 for (current = 0; current < end; ) { 1745 unsigned long one = find_next_bit(unsentmap, end, current); 1746 1747 if (one <= end) { 1748 unsigned long zero = find_next_zero_bit(unsentmap, end, one + 1); 1749 unsigned long discard_length; 1750 1751 if (zero >= end) { 1752 discard_length = end - one; 1753 } else { 1754 discard_length = zero - one; 1755 } 1756 if (discard_length) { 1757 postcopy_discard_send_range(ms, pds, one, discard_length); 1758 } 1759 current = one + discard_length; 1760 } else { 1761 current = one; 1762 } 1763 } 1764 1765 return 0; 1766 } 1767 1768 /** 1769 * postcopy_each_ram_send_discard: discard all RAMBlocks 1770 * 1771 * Returns 0 for success or negative for error 1772 * 1773 * Utility for the outgoing postcopy code. 1774 * Calls postcopy_send_discard_bm_ram for each RAMBlock 1775 * passing it bitmap indexes and name. 1776 * (qemu_ram_foreach_block ends up passing unscaled lengths 1777 * which would mean postcopy code would have to deal with target page) 1778 * 1779 * @ms: current migration state 1780 */ 1781 static int postcopy_each_ram_send_discard(MigrationState *ms) 1782 { 1783 struct RAMBlock *block; 1784 int ret; 1785 1786 RAMBLOCK_FOREACH(block) { 1787 PostcopyDiscardState *pds = 1788 postcopy_discard_send_init(ms, block->idstr); 1789 1790 /* 1791 * Postcopy sends chunks of bitmap over the wire, but it 1792 * just needs indexes at this point, avoids it having 1793 * target page specific code. 1794 */ 1795 ret = postcopy_send_discard_bm_ram(ms, pds, block); 1796 postcopy_discard_send_finish(ms, pds); 1797 if (ret) { 1798 return ret; 1799 } 1800 } 1801 1802 return 0; 1803 } 1804 1805 /** 1806 * postcopy_chunk_hostpages_pass: canocalize bitmap in hostpages 1807 * 1808 * Helper for postcopy_chunk_hostpages; it's called twice to 1809 * canonicalize the two bitmaps, that are similar, but one is 1810 * inverted. 1811 * 1812 * Postcopy requires that all target pages in a hostpage are dirty or 1813 * clean, not a mix. This function canonicalizes the bitmaps. 1814 * 1815 * @ms: current migration state 1816 * @unsent_pass: if true we need to canonicalize partially unsent host pages 1817 * otherwise we need to canonicalize partially dirty host pages 1818 * @block: block that contains the page we want to canonicalize 1819 * @pds: state for postcopy 1820 */ 1821 static void postcopy_chunk_hostpages_pass(MigrationState *ms, bool unsent_pass, 1822 RAMBlock *block, 1823 PostcopyDiscardState *pds) 1824 { 1825 RAMState *rs = ram_state; 1826 unsigned long *bitmap = block->bmap; 1827 unsigned long *unsentmap = block->unsentmap; 1828 unsigned int host_ratio = block->page_size / TARGET_PAGE_SIZE; 1829 unsigned long pages = block->used_length >> TARGET_PAGE_BITS; 1830 unsigned long run_start; 1831 1832 if (block->page_size == TARGET_PAGE_SIZE) { 1833 /* Easy case - TPS==HPS for a non-huge page RAMBlock */ 1834 return; 1835 } 1836 1837 if (unsent_pass) { 1838 /* Find a sent page */ 1839 run_start = find_next_zero_bit(unsentmap, pages, 0); 1840 } else { 1841 /* Find a dirty page */ 1842 run_start = find_next_bit(bitmap, pages, 0); 1843 } 1844 1845 while (run_start < pages) { 1846 bool do_fixup = false; 1847 unsigned long fixup_start_addr; 1848 unsigned long host_offset; 1849 1850 /* 1851 * If the start of this run of pages is in the middle of a host 1852 * page, then we need to fixup this host page. 1853 */ 1854 host_offset = run_start % host_ratio; 1855 if (host_offset) { 1856 do_fixup = true; 1857 run_start -= host_offset; 1858 fixup_start_addr = run_start; 1859 /* For the next pass */ 1860 run_start = run_start + host_ratio; 1861 } else { 1862 /* Find the end of this run */ 1863 unsigned long run_end; 1864 if (unsent_pass) { 1865 run_end = find_next_bit(unsentmap, pages, run_start + 1); 1866 } else { 1867 run_end = find_next_zero_bit(bitmap, pages, run_start + 1); 1868 } 1869 /* 1870 * If the end isn't at the start of a host page, then the 1871 * run doesn't finish at the end of a host page 1872 * and we need to discard. 1873 */ 1874 host_offset = run_end % host_ratio; 1875 if (host_offset) { 1876 do_fixup = true; 1877 fixup_start_addr = run_end - host_offset; 1878 /* 1879 * This host page has gone, the next loop iteration starts 1880 * from after the fixup 1881 */ 1882 run_start = fixup_start_addr + host_ratio; 1883 } else { 1884 /* 1885 * No discards on this iteration, next loop starts from 1886 * next sent/dirty page 1887 */ 1888 run_start = run_end + 1; 1889 } 1890 } 1891 1892 if (do_fixup) { 1893 unsigned long page; 1894 1895 /* Tell the destination to discard this page */ 1896 if (unsent_pass || !test_bit(fixup_start_addr, unsentmap)) { 1897 /* For the unsent_pass we: 1898 * discard partially sent pages 1899 * For the !unsent_pass (dirty) we: 1900 * discard partially dirty pages that were sent 1901 * (any partially sent pages were already discarded 1902 * by the previous unsent_pass) 1903 */ 1904 postcopy_discard_send_range(ms, pds, fixup_start_addr, 1905 host_ratio); 1906 } 1907 1908 /* Clean up the bitmap */ 1909 for (page = fixup_start_addr; 1910 page < fixup_start_addr + host_ratio; page++) { 1911 /* All pages in this host page are now not sent */ 1912 set_bit(page, unsentmap); 1913 1914 /* 1915 * Remark them as dirty, updating the count for any pages 1916 * that weren't previously dirty. 1917 */ 1918 rs->migration_dirty_pages += !test_and_set_bit(page, bitmap); 1919 } 1920 } 1921 1922 if (unsent_pass) { 1923 /* Find the next sent page for the next iteration */ 1924 run_start = find_next_zero_bit(unsentmap, pages, run_start); 1925 } else { 1926 /* Find the next dirty page for the next iteration */ 1927 run_start = find_next_bit(bitmap, pages, run_start); 1928 } 1929 } 1930 } 1931 1932 /** 1933 * postcopy_chuck_hostpages: discrad any partially sent host page 1934 * 1935 * Utility for the outgoing postcopy code. 1936 * 1937 * Discard any partially sent host-page size chunks, mark any partially 1938 * dirty host-page size chunks as all dirty. In this case the host-page 1939 * is the host-page for the particular RAMBlock, i.e. it might be a huge page 1940 * 1941 * Returns zero on success 1942 * 1943 * @ms: current migration state 1944 * @block: block we want to work with 1945 */ 1946 static int postcopy_chunk_hostpages(MigrationState *ms, RAMBlock *block) 1947 { 1948 PostcopyDiscardState *pds = 1949 postcopy_discard_send_init(ms, block->idstr); 1950 1951 /* First pass: Discard all partially sent host pages */ 1952 postcopy_chunk_hostpages_pass(ms, true, block, pds); 1953 /* 1954 * Second pass: Ensure that all partially dirty host pages are made 1955 * fully dirty. 1956 */ 1957 postcopy_chunk_hostpages_pass(ms, false, block, pds); 1958 1959 postcopy_discard_send_finish(ms, pds); 1960 return 0; 1961 } 1962 1963 /** 1964 * ram_postcopy_send_discard_bitmap: transmit the discard bitmap 1965 * 1966 * Returns zero on success 1967 * 1968 * Transmit the set of pages to be discarded after precopy to the target 1969 * these are pages that: 1970 * a) Have been previously transmitted but are now dirty again 1971 * b) Pages that have never been transmitted, this ensures that 1972 * any pages on the destination that have been mapped by background 1973 * tasks get discarded (transparent huge pages is the specific concern) 1974 * Hopefully this is pretty sparse 1975 * 1976 * @ms: current migration state 1977 */ 1978 int ram_postcopy_send_discard_bitmap(MigrationState *ms) 1979 { 1980 RAMState *rs = ram_state; 1981 RAMBlock *block; 1982 int ret; 1983 1984 rcu_read_lock(); 1985 1986 /* This should be our last sync, the src is now paused */ 1987 migration_bitmap_sync(rs); 1988 1989 /* Easiest way to make sure we don't resume in the middle of a host-page */ 1990 rs->last_seen_block = NULL; 1991 rs->last_sent_block = NULL; 1992 rs->last_page = 0; 1993 1994 QLIST_FOREACH_RCU(block, &ram_list.blocks, next) { 1995 unsigned long pages = block->used_length >> TARGET_PAGE_BITS; 1996 unsigned long *bitmap = block->bmap; 1997 unsigned long *unsentmap = block->unsentmap; 1998 1999 if (!unsentmap) { 2000 /* We don't have a safe way to resize the sentmap, so 2001 * if the bitmap was resized it will be NULL at this 2002 * point. 2003 */ 2004 error_report("migration ram resized during precopy phase"); 2005 rcu_read_unlock(); 2006 return -EINVAL; 2007 } 2008 /* Deal with TPS != HPS and huge pages */ 2009 ret = postcopy_chunk_hostpages(ms, block); 2010 if (ret) { 2011 rcu_read_unlock(); 2012 return ret; 2013 } 2014 2015 /* 2016 * Update the unsentmap to be unsentmap = unsentmap | dirty 2017 */ 2018 bitmap_or(unsentmap, unsentmap, bitmap, pages); 2019 #ifdef DEBUG_POSTCOPY 2020 ram_debug_dump_bitmap(unsentmap, true, pages); 2021 #endif 2022 } 2023 trace_ram_postcopy_send_discard_bitmap(); 2024 2025 ret = postcopy_each_ram_send_discard(ms); 2026 rcu_read_unlock(); 2027 2028 return ret; 2029 } 2030 2031 /** 2032 * ram_discard_range: discard dirtied pages at the beginning of postcopy 2033 * 2034 * Returns zero on success 2035 * 2036 * @rbname: name of the RAMBlock of the request. NULL means the 2037 * same that last one. 2038 * @start: RAMBlock starting page 2039 * @length: RAMBlock size 2040 */ 2041 int ram_discard_range(const char *rbname, uint64_t start, size_t length) 2042 { 2043 int ret = -1; 2044 2045 trace_ram_discard_range(rbname, start, length); 2046 2047 rcu_read_lock(); 2048 RAMBlock *rb = qemu_ram_block_by_name(rbname); 2049 2050 if (!rb) { 2051 error_report("ram_discard_range: Failed to find block '%s'", rbname); 2052 goto err; 2053 } 2054 2055 bitmap_clear(rb->receivedmap, start >> qemu_target_page_bits(), 2056 length >> qemu_target_page_bits()); 2057 ret = ram_block_discard_range(rb, start, length); 2058 2059 err: 2060 rcu_read_unlock(); 2061 2062 return ret; 2063 } 2064 2065 /* 2066 * For every allocation, we will try not to crash the VM if the 2067 * allocation failed. 2068 */ 2069 static int xbzrle_init(void) 2070 { 2071 Error *local_err = NULL; 2072 2073 if (!migrate_use_xbzrle()) { 2074 return 0; 2075 } 2076 2077 XBZRLE_cache_lock(); 2078 2079 XBZRLE.zero_target_page = g_try_malloc0(TARGET_PAGE_SIZE); 2080 if (!XBZRLE.zero_target_page) { 2081 error_report("%s: Error allocating zero page", __func__); 2082 goto err_out; 2083 } 2084 2085 XBZRLE.cache = cache_init(migrate_xbzrle_cache_size(), 2086 TARGET_PAGE_SIZE, &local_err); 2087 if (!XBZRLE.cache) { 2088 error_report_err(local_err); 2089 goto free_zero_page; 2090 } 2091 2092 XBZRLE.encoded_buf = g_try_malloc0(TARGET_PAGE_SIZE); 2093 if (!XBZRLE.encoded_buf) { 2094 error_report("%s: Error allocating encoded_buf", __func__); 2095 goto free_cache; 2096 } 2097 2098 XBZRLE.current_buf = g_try_malloc(TARGET_PAGE_SIZE); 2099 if (!XBZRLE.current_buf) { 2100 error_report("%s: Error allocating current_buf", __func__); 2101 goto free_encoded_buf; 2102 } 2103 2104 /* We are all good */ 2105 XBZRLE_cache_unlock(); 2106 return 0; 2107 2108 free_encoded_buf: 2109 g_free(XBZRLE.encoded_buf); 2110 XBZRLE.encoded_buf = NULL; 2111 free_cache: 2112 cache_fini(XBZRLE.cache); 2113 XBZRLE.cache = NULL; 2114 free_zero_page: 2115 g_free(XBZRLE.zero_target_page); 2116 XBZRLE.zero_target_page = NULL; 2117 err_out: 2118 XBZRLE_cache_unlock(); 2119 return -ENOMEM; 2120 } 2121 2122 static int ram_state_init(RAMState **rsp) 2123 { 2124 *rsp = g_try_new0(RAMState, 1); 2125 2126 if (!*rsp) { 2127 error_report("%s: Init ramstate fail", __func__); 2128 return -1; 2129 } 2130 2131 qemu_mutex_init(&(*rsp)->bitmap_mutex); 2132 qemu_mutex_init(&(*rsp)->src_page_req_mutex); 2133 QSIMPLEQ_INIT(&(*rsp)->src_page_requests); 2134 2135 /* 2136 * Count the total number of pages used by ram blocks not including any 2137 * gaps due to alignment or unplugs. 2138 */ 2139 (*rsp)->migration_dirty_pages = ram_bytes_total() >> TARGET_PAGE_BITS; 2140 2141 ram_state_reset(*rsp); 2142 2143 return 0; 2144 } 2145 2146 static void ram_list_init_bitmaps(void) 2147 { 2148 RAMBlock *block; 2149 unsigned long pages; 2150 2151 /* Skip setting bitmap if there is no RAM */ 2152 if (ram_bytes_total()) { 2153 QLIST_FOREACH_RCU(block, &ram_list.blocks, next) { 2154 pages = block->max_length >> TARGET_PAGE_BITS; 2155 block->bmap = bitmap_new(pages); 2156 bitmap_set(block->bmap, 0, pages); 2157 if (migrate_postcopy_ram()) { 2158 block->unsentmap = bitmap_new(pages); 2159 bitmap_set(block->unsentmap, 0, pages); 2160 } 2161 } 2162 } 2163 } 2164 2165 static void ram_init_bitmaps(RAMState *rs) 2166 { 2167 /* For memory_global_dirty_log_start below. */ 2168 qemu_mutex_lock_iothread(); 2169 qemu_mutex_lock_ramlist(); 2170 rcu_read_lock(); 2171 2172 ram_list_init_bitmaps(); 2173 memory_global_dirty_log_start(); 2174 migration_bitmap_sync(rs); 2175 2176 rcu_read_unlock(); 2177 qemu_mutex_unlock_ramlist(); 2178 qemu_mutex_unlock_iothread(); 2179 } 2180 2181 static int ram_init_all(RAMState **rsp) 2182 { 2183 if (ram_state_init(rsp)) { 2184 return -1; 2185 } 2186 2187 if (xbzrle_init()) { 2188 ram_state_cleanup(rsp); 2189 return -1; 2190 } 2191 2192 ram_init_bitmaps(*rsp); 2193 2194 return 0; 2195 } 2196 2197 /* 2198 * Each of ram_save_setup, ram_save_iterate and ram_save_complete has 2199 * long-running RCU critical section. When rcu-reclaims in the code 2200 * start to become numerous it will be necessary to reduce the 2201 * granularity of these critical sections. 2202 */ 2203 2204 /** 2205 * ram_save_setup: Setup RAM for migration 2206 * 2207 * Returns zero to indicate success and negative for error 2208 * 2209 * @f: QEMUFile where to send the data 2210 * @opaque: RAMState pointer 2211 */ 2212 static int ram_save_setup(QEMUFile *f, void *opaque) 2213 { 2214 RAMState **rsp = opaque; 2215 RAMBlock *block; 2216 2217 /* migration has already setup the bitmap, reuse it. */ 2218 if (!migration_in_colo_state()) { 2219 if (ram_init_all(rsp) != 0) { 2220 return -1; 2221 } 2222 } 2223 (*rsp)->f = f; 2224 2225 rcu_read_lock(); 2226 2227 qemu_put_be64(f, ram_bytes_total() | RAM_SAVE_FLAG_MEM_SIZE); 2228 2229 RAMBLOCK_FOREACH(block) { 2230 qemu_put_byte(f, strlen(block->idstr)); 2231 qemu_put_buffer(f, (uint8_t *)block->idstr, strlen(block->idstr)); 2232 qemu_put_be64(f, block->used_length); 2233 if (migrate_postcopy_ram() && block->page_size != qemu_host_page_size) { 2234 qemu_put_be64(f, block->page_size); 2235 } 2236 } 2237 2238 rcu_read_unlock(); 2239 compress_threads_save_setup(); 2240 2241 ram_control_before_iterate(f, RAM_CONTROL_SETUP); 2242 ram_control_after_iterate(f, RAM_CONTROL_SETUP); 2243 2244 qemu_put_be64(f, RAM_SAVE_FLAG_EOS); 2245 2246 return 0; 2247 } 2248 2249 /** 2250 * ram_save_iterate: iterative stage for migration 2251 * 2252 * Returns zero to indicate success and negative for error 2253 * 2254 * @f: QEMUFile where to send the data 2255 * @opaque: RAMState pointer 2256 */ 2257 static int ram_save_iterate(QEMUFile *f, void *opaque) 2258 { 2259 RAMState **temp = opaque; 2260 RAMState *rs = *temp; 2261 int ret; 2262 int i; 2263 int64_t t0; 2264 int done = 0; 2265 2266 if (blk_mig_bulk_active()) { 2267 /* Avoid transferring ram during bulk phase of block migration as 2268 * the bulk phase will usually take a long time and transferring 2269 * ram updates during that time is pointless. */ 2270 goto out; 2271 } 2272 2273 rcu_read_lock(); 2274 if (ram_list.version != rs->last_version) { 2275 ram_state_reset(rs); 2276 } 2277 2278 /* Read version before ram_list.blocks */ 2279 smp_rmb(); 2280 2281 ram_control_before_iterate(f, RAM_CONTROL_ROUND); 2282 2283 t0 = qemu_clock_get_ns(QEMU_CLOCK_REALTIME); 2284 i = 0; 2285 while ((ret = qemu_file_rate_limit(f)) == 0) { 2286 int pages; 2287 2288 pages = ram_find_and_save_block(rs, false); 2289 /* no more pages to sent */ 2290 if (pages == 0) { 2291 done = 1; 2292 break; 2293 } 2294 rs->iterations++; 2295 2296 /* we want to check in the 1st loop, just in case it was the 1st time 2297 and we had to sync the dirty bitmap. 2298 qemu_get_clock_ns() is a bit expensive, so we only check each some 2299 iterations 2300 */ 2301 if ((i & 63) == 0) { 2302 uint64_t t1 = (qemu_clock_get_ns(QEMU_CLOCK_REALTIME) - t0) / 1000000; 2303 if (t1 > MAX_WAIT) { 2304 trace_ram_save_iterate_big_wait(t1, i); 2305 break; 2306 } 2307 } 2308 i++; 2309 } 2310 flush_compressed_data(rs); 2311 rcu_read_unlock(); 2312 2313 /* 2314 * Must occur before EOS (or any QEMUFile operation) 2315 * because of RDMA protocol. 2316 */ 2317 ram_control_after_iterate(f, RAM_CONTROL_ROUND); 2318 2319 out: 2320 qemu_put_be64(f, RAM_SAVE_FLAG_EOS); 2321 ram_counters.transferred += 8; 2322 2323 ret = qemu_file_get_error(f); 2324 if (ret < 0) { 2325 return ret; 2326 } 2327 2328 return done; 2329 } 2330 2331 /** 2332 * ram_save_complete: function called to send the remaining amount of ram 2333 * 2334 * Returns zero to indicate success 2335 * 2336 * Called with iothread lock 2337 * 2338 * @f: QEMUFile where to send the data 2339 * @opaque: RAMState pointer 2340 */ 2341 static int ram_save_complete(QEMUFile *f, void *opaque) 2342 { 2343 RAMState **temp = opaque; 2344 RAMState *rs = *temp; 2345 2346 rcu_read_lock(); 2347 2348 if (!migration_in_postcopy()) { 2349 migration_bitmap_sync(rs); 2350 } 2351 2352 ram_control_before_iterate(f, RAM_CONTROL_FINISH); 2353 2354 /* try transferring iterative blocks of memory */ 2355 2356 /* flush all remaining blocks regardless of rate limiting */ 2357 while (true) { 2358 int pages; 2359 2360 pages = ram_find_and_save_block(rs, !migration_in_colo_state()); 2361 /* no more blocks to sent */ 2362 if (pages == 0) { 2363 break; 2364 } 2365 } 2366 2367 flush_compressed_data(rs); 2368 ram_control_after_iterate(f, RAM_CONTROL_FINISH); 2369 2370 rcu_read_unlock(); 2371 2372 qemu_put_be64(f, RAM_SAVE_FLAG_EOS); 2373 2374 return 0; 2375 } 2376 2377 static void ram_save_pending(QEMUFile *f, void *opaque, uint64_t max_size, 2378 uint64_t *res_precopy_only, 2379 uint64_t *res_compatible, 2380 uint64_t *res_postcopy_only) 2381 { 2382 RAMState **temp = opaque; 2383 RAMState *rs = *temp; 2384 uint64_t remaining_size; 2385 2386 remaining_size = rs->migration_dirty_pages * TARGET_PAGE_SIZE; 2387 2388 if (!migration_in_postcopy() && 2389 remaining_size < max_size) { 2390 qemu_mutex_lock_iothread(); 2391 rcu_read_lock(); 2392 migration_bitmap_sync(rs); 2393 rcu_read_unlock(); 2394 qemu_mutex_unlock_iothread(); 2395 remaining_size = rs->migration_dirty_pages * TARGET_PAGE_SIZE; 2396 } 2397 2398 if (migrate_postcopy_ram()) { 2399 /* We can do postcopy, and all the data is postcopiable */ 2400 *res_compatible += remaining_size; 2401 } else { 2402 *res_precopy_only += remaining_size; 2403 } 2404 } 2405 2406 static int load_xbzrle(QEMUFile *f, ram_addr_t addr, void *host) 2407 { 2408 unsigned int xh_len; 2409 int xh_flags; 2410 uint8_t *loaded_data; 2411 2412 /* extract RLE header */ 2413 xh_flags = qemu_get_byte(f); 2414 xh_len = qemu_get_be16(f); 2415 2416 if (xh_flags != ENCODING_FLAG_XBZRLE) { 2417 error_report("Failed to load XBZRLE page - wrong compression!"); 2418 return -1; 2419 } 2420 2421 if (xh_len > TARGET_PAGE_SIZE) { 2422 error_report("Failed to load XBZRLE page - len overflow!"); 2423 return -1; 2424 } 2425 loaded_data = XBZRLE.decoded_buf; 2426 /* load data and decode */ 2427 /* it can change loaded_data to point to an internal buffer */ 2428 qemu_get_buffer_in_place(f, &loaded_data, xh_len); 2429 2430 /* decode RLE */ 2431 if (xbzrle_decode_buffer(loaded_data, xh_len, host, 2432 TARGET_PAGE_SIZE) == -1) { 2433 error_report("Failed to load XBZRLE page - decode error!"); 2434 return -1; 2435 } 2436 2437 return 0; 2438 } 2439 2440 /** 2441 * ram_block_from_stream: read a RAMBlock id from the migration stream 2442 * 2443 * Must be called from within a rcu critical section. 2444 * 2445 * Returns a pointer from within the RCU-protected ram_list. 2446 * 2447 * @f: QEMUFile where to read the data from 2448 * @flags: Page flags (mostly to see if it's a continuation of previous block) 2449 */ 2450 static inline RAMBlock *ram_block_from_stream(QEMUFile *f, int flags) 2451 { 2452 static RAMBlock *block = NULL; 2453 char id[256]; 2454 uint8_t len; 2455 2456 if (flags & RAM_SAVE_FLAG_CONTINUE) { 2457 if (!block) { 2458 error_report("Ack, bad migration stream!"); 2459 return NULL; 2460 } 2461 return block; 2462 } 2463 2464 len = qemu_get_byte(f); 2465 qemu_get_buffer(f, (uint8_t *)id, len); 2466 id[len] = 0; 2467 2468 block = qemu_ram_block_by_name(id); 2469 if (!block) { 2470 error_report("Can't find block %s", id); 2471 return NULL; 2472 } 2473 2474 return block; 2475 } 2476 2477 static inline void *host_from_ram_block_offset(RAMBlock *block, 2478 ram_addr_t offset) 2479 { 2480 if (!offset_in_ramblock(block, offset)) { 2481 return NULL; 2482 } 2483 2484 return block->host + offset; 2485 } 2486 2487 /** 2488 * ram_handle_compressed: handle the zero page case 2489 * 2490 * If a page (or a whole RDMA chunk) has been 2491 * determined to be zero, then zap it. 2492 * 2493 * @host: host address for the zero page 2494 * @ch: what the page is filled from. We only support zero 2495 * @size: size of the zero page 2496 */ 2497 void ram_handle_compressed(void *host, uint8_t ch, uint64_t size) 2498 { 2499 if (ch != 0 || !is_zero_range(host, size)) { 2500 memset(host, ch, size); 2501 } 2502 } 2503 2504 static void *do_data_decompress(void *opaque) 2505 { 2506 DecompressParam *param = opaque; 2507 unsigned long pagesize; 2508 uint8_t *des; 2509 int len; 2510 2511 qemu_mutex_lock(¶m->mutex); 2512 while (!param->quit) { 2513 if (param->des) { 2514 des = param->des; 2515 len = param->len; 2516 param->des = 0; 2517 qemu_mutex_unlock(¶m->mutex); 2518 2519 pagesize = TARGET_PAGE_SIZE; 2520 /* uncompress() will return failed in some case, especially 2521 * when the page is dirted when doing the compression, it's 2522 * not a problem because the dirty page will be retransferred 2523 * and uncompress() won't break the data in other pages. 2524 */ 2525 uncompress((Bytef *)des, &pagesize, 2526 (const Bytef *)param->compbuf, len); 2527 2528 qemu_mutex_lock(&decomp_done_lock); 2529 param->done = true; 2530 qemu_cond_signal(&decomp_done_cond); 2531 qemu_mutex_unlock(&decomp_done_lock); 2532 2533 qemu_mutex_lock(¶m->mutex); 2534 } else { 2535 qemu_cond_wait(¶m->cond, ¶m->mutex); 2536 } 2537 } 2538 qemu_mutex_unlock(¶m->mutex); 2539 2540 return NULL; 2541 } 2542 2543 static void wait_for_decompress_done(void) 2544 { 2545 int idx, thread_count; 2546 2547 if (!migrate_use_compression()) { 2548 return; 2549 } 2550 2551 thread_count = migrate_decompress_threads(); 2552 qemu_mutex_lock(&decomp_done_lock); 2553 for (idx = 0; idx < thread_count; idx++) { 2554 while (!decomp_param[idx].done) { 2555 qemu_cond_wait(&decomp_done_cond, &decomp_done_lock); 2556 } 2557 } 2558 qemu_mutex_unlock(&decomp_done_lock); 2559 } 2560 2561 static void compress_threads_load_setup(void) 2562 { 2563 int i, thread_count; 2564 2565 if (!migrate_use_compression()) { 2566 return; 2567 } 2568 thread_count = migrate_decompress_threads(); 2569 decompress_threads = g_new0(QemuThread, thread_count); 2570 decomp_param = g_new0(DecompressParam, thread_count); 2571 qemu_mutex_init(&decomp_done_lock); 2572 qemu_cond_init(&decomp_done_cond); 2573 for (i = 0; i < thread_count; i++) { 2574 qemu_mutex_init(&decomp_param[i].mutex); 2575 qemu_cond_init(&decomp_param[i].cond); 2576 decomp_param[i].compbuf = g_malloc0(compressBound(TARGET_PAGE_SIZE)); 2577 decomp_param[i].done = true; 2578 decomp_param[i].quit = false; 2579 qemu_thread_create(decompress_threads + i, "decompress", 2580 do_data_decompress, decomp_param + i, 2581 QEMU_THREAD_JOINABLE); 2582 } 2583 } 2584 2585 static void compress_threads_load_cleanup(void) 2586 { 2587 int i, thread_count; 2588 2589 if (!migrate_use_compression()) { 2590 return; 2591 } 2592 thread_count = migrate_decompress_threads(); 2593 for (i = 0; i < thread_count; i++) { 2594 qemu_mutex_lock(&decomp_param[i].mutex); 2595 decomp_param[i].quit = true; 2596 qemu_cond_signal(&decomp_param[i].cond); 2597 qemu_mutex_unlock(&decomp_param[i].mutex); 2598 } 2599 for (i = 0; i < thread_count; i++) { 2600 qemu_thread_join(decompress_threads + i); 2601 qemu_mutex_destroy(&decomp_param[i].mutex); 2602 qemu_cond_destroy(&decomp_param[i].cond); 2603 g_free(decomp_param[i].compbuf); 2604 } 2605 g_free(decompress_threads); 2606 g_free(decomp_param); 2607 decompress_threads = NULL; 2608 decomp_param = NULL; 2609 } 2610 2611 static void decompress_data_with_multi_threads(QEMUFile *f, 2612 void *host, int len) 2613 { 2614 int idx, thread_count; 2615 2616 thread_count = migrate_decompress_threads(); 2617 qemu_mutex_lock(&decomp_done_lock); 2618 while (true) { 2619 for (idx = 0; idx < thread_count; idx++) { 2620 if (decomp_param[idx].done) { 2621 decomp_param[idx].done = false; 2622 qemu_mutex_lock(&decomp_param[idx].mutex); 2623 qemu_get_buffer(f, decomp_param[idx].compbuf, len); 2624 decomp_param[idx].des = host; 2625 decomp_param[idx].len = len; 2626 qemu_cond_signal(&decomp_param[idx].cond); 2627 qemu_mutex_unlock(&decomp_param[idx].mutex); 2628 break; 2629 } 2630 } 2631 if (idx < thread_count) { 2632 break; 2633 } else { 2634 qemu_cond_wait(&decomp_done_cond, &decomp_done_lock); 2635 } 2636 } 2637 qemu_mutex_unlock(&decomp_done_lock); 2638 } 2639 2640 /** 2641 * ram_load_setup: Setup RAM for migration incoming side 2642 * 2643 * Returns zero to indicate success and negative for error 2644 * 2645 * @f: QEMUFile where to receive the data 2646 * @opaque: RAMState pointer 2647 */ 2648 static int ram_load_setup(QEMUFile *f, void *opaque) 2649 { 2650 xbzrle_load_setup(); 2651 compress_threads_load_setup(); 2652 ramblock_recv_map_init(); 2653 return 0; 2654 } 2655 2656 static int ram_load_cleanup(void *opaque) 2657 { 2658 RAMBlock *rb; 2659 xbzrle_load_cleanup(); 2660 compress_threads_load_cleanup(); 2661 2662 RAMBLOCK_FOREACH(rb) { 2663 g_free(rb->receivedmap); 2664 rb->receivedmap = NULL; 2665 } 2666 return 0; 2667 } 2668 2669 /** 2670 * ram_postcopy_incoming_init: allocate postcopy data structures 2671 * 2672 * Returns 0 for success and negative if there was one error 2673 * 2674 * @mis: current migration incoming state 2675 * 2676 * Allocate data structures etc needed by incoming migration with 2677 * postcopy-ram. postcopy-ram's similarly names 2678 * postcopy_ram_incoming_init does the work. 2679 */ 2680 int ram_postcopy_incoming_init(MigrationIncomingState *mis) 2681 { 2682 unsigned long ram_pages = last_ram_page(); 2683 2684 return postcopy_ram_incoming_init(mis, ram_pages); 2685 } 2686 2687 /** 2688 * ram_load_postcopy: load a page in postcopy case 2689 * 2690 * Returns 0 for success or -errno in case of error 2691 * 2692 * Called in postcopy mode by ram_load(). 2693 * rcu_read_lock is taken prior to this being called. 2694 * 2695 * @f: QEMUFile where to send the data 2696 */ 2697 static int ram_load_postcopy(QEMUFile *f) 2698 { 2699 int flags = 0, ret = 0; 2700 bool place_needed = false; 2701 bool matching_page_sizes = false; 2702 MigrationIncomingState *mis = migration_incoming_get_current(); 2703 /* Temporary page that is later 'placed' */ 2704 void *postcopy_host_page = postcopy_get_tmp_page(mis); 2705 void *last_host = NULL; 2706 bool all_zero = false; 2707 2708 while (!ret && !(flags & RAM_SAVE_FLAG_EOS)) { 2709 ram_addr_t addr; 2710 void *host = NULL; 2711 void *page_buffer = NULL; 2712 void *place_source = NULL; 2713 RAMBlock *block = NULL; 2714 uint8_t ch; 2715 2716 addr = qemu_get_be64(f); 2717 2718 /* 2719 * If qemu file error, we should stop here, and then "addr" 2720 * may be invalid 2721 */ 2722 ret = qemu_file_get_error(f); 2723 if (ret) { 2724 break; 2725 } 2726 2727 flags = addr & ~TARGET_PAGE_MASK; 2728 addr &= TARGET_PAGE_MASK; 2729 2730 trace_ram_load_postcopy_loop((uint64_t)addr, flags); 2731 place_needed = false; 2732 if (flags & (RAM_SAVE_FLAG_ZERO | RAM_SAVE_FLAG_PAGE)) { 2733 block = ram_block_from_stream(f, flags); 2734 2735 host = host_from_ram_block_offset(block, addr); 2736 if (!host) { 2737 error_report("Illegal RAM offset " RAM_ADDR_FMT, addr); 2738 ret = -EINVAL; 2739 break; 2740 } 2741 matching_page_sizes = block->page_size == TARGET_PAGE_SIZE; 2742 /* 2743 * Postcopy requires that we place whole host pages atomically; 2744 * these may be huge pages for RAMBlocks that are backed by 2745 * hugetlbfs. 2746 * To make it atomic, the data is read into a temporary page 2747 * that's moved into place later. 2748 * The migration protocol uses, possibly smaller, target-pages 2749 * however the source ensures it always sends all the components 2750 * of a host page in order. 2751 */ 2752 page_buffer = postcopy_host_page + 2753 ((uintptr_t)host & (block->page_size - 1)); 2754 /* If all TP are zero then we can optimise the place */ 2755 if (!((uintptr_t)host & (block->page_size - 1))) { 2756 all_zero = true; 2757 } else { 2758 /* not the 1st TP within the HP */ 2759 if (host != (last_host + TARGET_PAGE_SIZE)) { 2760 error_report("Non-sequential target page %p/%p", 2761 host, last_host); 2762 ret = -EINVAL; 2763 break; 2764 } 2765 } 2766 2767 2768 /* 2769 * If it's the last part of a host page then we place the host 2770 * page 2771 */ 2772 place_needed = (((uintptr_t)host + TARGET_PAGE_SIZE) & 2773 (block->page_size - 1)) == 0; 2774 place_source = postcopy_host_page; 2775 } 2776 last_host = host; 2777 2778 switch (flags & ~RAM_SAVE_FLAG_CONTINUE) { 2779 case RAM_SAVE_FLAG_ZERO: 2780 ch = qemu_get_byte(f); 2781 memset(page_buffer, ch, TARGET_PAGE_SIZE); 2782 if (ch) { 2783 all_zero = false; 2784 } 2785 break; 2786 2787 case RAM_SAVE_FLAG_PAGE: 2788 all_zero = false; 2789 if (!place_needed || !matching_page_sizes) { 2790 qemu_get_buffer(f, page_buffer, TARGET_PAGE_SIZE); 2791 } else { 2792 /* Avoids the qemu_file copy during postcopy, which is 2793 * going to do a copy later; can only do it when we 2794 * do this read in one go (matching page sizes) 2795 */ 2796 qemu_get_buffer_in_place(f, (uint8_t **)&place_source, 2797 TARGET_PAGE_SIZE); 2798 } 2799 break; 2800 case RAM_SAVE_FLAG_EOS: 2801 /* normal exit */ 2802 break; 2803 default: 2804 error_report("Unknown combination of migration flags: %#x" 2805 " (postcopy mode)", flags); 2806 ret = -EINVAL; 2807 break; 2808 } 2809 2810 /* Detect for any possible file errors */ 2811 if (!ret && qemu_file_get_error(f)) { 2812 ret = qemu_file_get_error(f); 2813 } 2814 2815 if (!ret && place_needed) { 2816 /* This gets called at the last target page in the host page */ 2817 void *place_dest = host + TARGET_PAGE_SIZE - block->page_size; 2818 2819 if (all_zero) { 2820 ret = postcopy_place_page_zero(mis, place_dest, 2821 block); 2822 } else { 2823 ret = postcopy_place_page(mis, place_dest, 2824 place_source, block); 2825 } 2826 } 2827 } 2828 2829 return ret; 2830 } 2831 2832 static bool postcopy_is_advised(void) 2833 { 2834 PostcopyState ps = postcopy_state_get(); 2835 return ps >= POSTCOPY_INCOMING_ADVISE && ps < POSTCOPY_INCOMING_END; 2836 } 2837 2838 static bool postcopy_is_running(void) 2839 { 2840 PostcopyState ps = postcopy_state_get(); 2841 return ps >= POSTCOPY_INCOMING_LISTENING && ps < POSTCOPY_INCOMING_END; 2842 } 2843 2844 static int ram_load(QEMUFile *f, void *opaque, int version_id) 2845 { 2846 int flags = 0, ret = 0, invalid_flags = 0; 2847 static uint64_t seq_iter; 2848 int len = 0; 2849 /* 2850 * If system is running in postcopy mode, page inserts to host memory must 2851 * be atomic 2852 */ 2853 bool postcopy_running = postcopy_is_running(); 2854 /* ADVISE is earlier, it shows the source has the postcopy capability on */ 2855 bool postcopy_advised = postcopy_is_advised(); 2856 2857 seq_iter++; 2858 2859 if (version_id != 4) { 2860 ret = -EINVAL; 2861 } 2862 2863 if (!migrate_use_compression()) { 2864 invalid_flags |= RAM_SAVE_FLAG_COMPRESS_PAGE; 2865 } 2866 /* This RCU critical section can be very long running. 2867 * When RCU reclaims in the code start to become numerous, 2868 * it will be necessary to reduce the granularity of this 2869 * critical section. 2870 */ 2871 rcu_read_lock(); 2872 2873 if (postcopy_running) { 2874 ret = ram_load_postcopy(f); 2875 } 2876 2877 while (!postcopy_running && !ret && !(flags & RAM_SAVE_FLAG_EOS)) { 2878 ram_addr_t addr, total_ram_bytes; 2879 void *host = NULL; 2880 uint8_t ch; 2881 2882 addr = qemu_get_be64(f); 2883 flags = addr & ~TARGET_PAGE_MASK; 2884 addr &= TARGET_PAGE_MASK; 2885 2886 if (flags & invalid_flags) { 2887 if (flags & invalid_flags & RAM_SAVE_FLAG_COMPRESS_PAGE) { 2888 error_report("Received an unexpected compressed page"); 2889 } 2890 2891 ret = -EINVAL; 2892 break; 2893 } 2894 2895 if (flags & (RAM_SAVE_FLAG_ZERO | RAM_SAVE_FLAG_PAGE | 2896 RAM_SAVE_FLAG_COMPRESS_PAGE | RAM_SAVE_FLAG_XBZRLE)) { 2897 RAMBlock *block = ram_block_from_stream(f, flags); 2898 2899 host = host_from_ram_block_offset(block, addr); 2900 if (!host) { 2901 error_report("Illegal RAM offset " RAM_ADDR_FMT, addr); 2902 ret = -EINVAL; 2903 break; 2904 } 2905 ramblock_recv_bitmap_set(block, host); 2906 trace_ram_load_loop(block->idstr, (uint64_t)addr, flags, host); 2907 } 2908 2909 switch (flags & ~RAM_SAVE_FLAG_CONTINUE) { 2910 case RAM_SAVE_FLAG_MEM_SIZE: 2911 /* Synchronize RAM block list */ 2912 total_ram_bytes = addr; 2913 while (!ret && total_ram_bytes) { 2914 RAMBlock *block; 2915 char id[256]; 2916 ram_addr_t length; 2917 2918 len = qemu_get_byte(f); 2919 qemu_get_buffer(f, (uint8_t *)id, len); 2920 id[len] = 0; 2921 length = qemu_get_be64(f); 2922 2923 block = qemu_ram_block_by_name(id); 2924 if (block) { 2925 if (length != block->used_length) { 2926 Error *local_err = NULL; 2927 2928 ret = qemu_ram_resize(block, length, 2929 &local_err); 2930 if (local_err) { 2931 error_report_err(local_err); 2932 } 2933 } 2934 /* For postcopy we need to check hugepage sizes match */ 2935 if (postcopy_advised && 2936 block->page_size != qemu_host_page_size) { 2937 uint64_t remote_page_size = qemu_get_be64(f); 2938 if (remote_page_size != block->page_size) { 2939 error_report("Mismatched RAM page size %s " 2940 "(local) %zd != %" PRId64, 2941 id, block->page_size, 2942 remote_page_size); 2943 ret = -EINVAL; 2944 } 2945 } 2946 ram_control_load_hook(f, RAM_CONTROL_BLOCK_REG, 2947 block->idstr); 2948 } else { 2949 error_report("Unknown ramblock \"%s\", cannot " 2950 "accept migration", id); 2951 ret = -EINVAL; 2952 } 2953 2954 total_ram_bytes -= length; 2955 } 2956 break; 2957 2958 case RAM_SAVE_FLAG_ZERO: 2959 ch = qemu_get_byte(f); 2960 ram_handle_compressed(host, ch, TARGET_PAGE_SIZE); 2961 break; 2962 2963 case RAM_SAVE_FLAG_PAGE: 2964 qemu_get_buffer(f, host, TARGET_PAGE_SIZE); 2965 break; 2966 2967 case RAM_SAVE_FLAG_COMPRESS_PAGE: 2968 len = qemu_get_be32(f); 2969 if (len < 0 || len > compressBound(TARGET_PAGE_SIZE)) { 2970 error_report("Invalid compressed data length: %d", len); 2971 ret = -EINVAL; 2972 break; 2973 } 2974 decompress_data_with_multi_threads(f, host, len); 2975 break; 2976 2977 case RAM_SAVE_FLAG_XBZRLE: 2978 if (load_xbzrle(f, addr, host) < 0) { 2979 error_report("Failed to decompress XBZRLE page at " 2980 RAM_ADDR_FMT, addr); 2981 ret = -EINVAL; 2982 break; 2983 } 2984 break; 2985 case RAM_SAVE_FLAG_EOS: 2986 /* normal exit */ 2987 break; 2988 default: 2989 if (flags & RAM_SAVE_FLAG_HOOK) { 2990 ram_control_load_hook(f, RAM_CONTROL_HOOK, NULL); 2991 } else { 2992 error_report("Unknown combination of migration flags: %#x", 2993 flags); 2994 ret = -EINVAL; 2995 } 2996 } 2997 if (!ret) { 2998 ret = qemu_file_get_error(f); 2999 } 3000 } 3001 3002 wait_for_decompress_done(); 3003 rcu_read_unlock(); 3004 trace_ram_load_complete(ret, seq_iter); 3005 return ret; 3006 } 3007 3008 static bool ram_has_postcopy(void *opaque) 3009 { 3010 return migrate_postcopy_ram(); 3011 } 3012 3013 static SaveVMHandlers savevm_ram_handlers = { 3014 .save_setup = ram_save_setup, 3015 .save_live_iterate = ram_save_iterate, 3016 .save_live_complete_postcopy = ram_save_complete, 3017 .save_live_complete_precopy = ram_save_complete, 3018 .has_postcopy = ram_has_postcopy, 3019 .save_live_pending = ram_save_pending, 3020 .load_state = ram_load, 3021 .save_cleanup = ram_save_cleanup, 3022 .load_setup = ram_load_setup, 3023 .load_cleanup = ram_load_cleanup, 3024 }; 3025 3026 void ram_mig_init(void) 3027 { 3028 qemu_mutex_init(&XBZRLE.lock); 3029 register_savevm_live(NULL, "ram", 0, 4, &savevm_ram_handlers, &ram_state); 3030 } 3031