2012-01-10 17:31:21 +00:00
|
|
|
/*
|
|
|
|
* virt-host-validate-common.c: Sanity check helper APIs
|
|
|
|
*
|
2014-10-28 12:38:04 -06:00
|
|
|
* Copyright (C) 2012, 2014 Red Hat, Inc.
|
2012-01-10 17:31:21 +00:00
|
|
|
*
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
2012-09-20 16:30:55 -06:00
|
|
|
* License along with this library. If not, see
|
2012-07-21 18:06:23 +08:00
|
|
|
* <http://www.gnu.org/licenses/>.
|
2012-01-10 17:31:21 +00:00
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <config.h>
|
|
|
|
|
|
|
|
#include <stdarg.h>
|
|
|
|
#include <unistd.h>
|
|
|
|
#include <sys/utsname.h>
|
2015-10-07 17:46:18 +01:00
|
|
|
#include <sys/stat.h>
|
2012-01-10 17:31:21 +00:00
|
|
|
|
2012-12-12 18:06:53 +00:00
|
|
|
#include "viralloc.h"
|
2018-09-29 21:37:22 +02:00
|
|
|
#include "vircgroup.h"
|
2012-01-10 17:31:21 +00:00
|
|
|
#include "virfile.h"
|
|
|
|
#include "virt-host-validate-common.h"
|
2013-04-03 12:36:23 +02:00
|
|
|
#include "virstring.h"
|
2017-08-17 19:18:05 +05:30
|
|
|
#include "virarch.h"
|
2012-01-10 17:31:21 +00:00
|
|
|
|
2013-06-07 17:10:28 +02:00
|
|
|
#define VIR_FROM_THIS VIR_FROM_NONE
|
|
|
|
|
2016-03-29 16:38:28 +02:00
|
|
|
VIR_ENUM_IMPL(virHostValidateCPUFlag, VIR_HOST_VALIDATE_CPU_FLAG_LAST,
|
|
|
|
"vmx",
|
2016-05-03 08:10:54 +02:00
|
|
|
"svm",
|
|
|
|
"sie");
|
2016-03-29 16:38:28 +02:00
|
|
|
|
2012-01-10 17:31:21 +00:00
|
|
|
static bool quiet;
|
|
|
|
|
|
|
|
void virHostMsgSetQuiet(bool quietFlag)
|
|
|
|
{
|
|
|
|
quiet = quietFlag;
|
|
|
|
}
|
|
|
|
|
|
|
|
void virHostMsgCheck(const char *prefix,
|
|
|
|
const char *format,
|
|
|
|
...)
|
|
|
|
{
|
|
|
|
va_list args;
|
|
|
|
char *msg;
|
|
|
|
|
|
|
|
if (quiet)
|
|
|
|
return;
|
|
|
|
|
|
|
|
va_start(args, format);
|
|
|
|
if (virVasprintf(&msg, format, args) < 0) {
|
|
|
|
perror("malloc");
|
|
|
|
abort();
|
|
|
|
}
|
|
|
|
va_end(args);
|
|
|
|
|
|
|
|
fprintf(stdout, _("%6s: Checking %-60s: "), prefix, msg);
|
|
|
|
VIR_FREE(msg);
|
|
|
|
}
|
|
|
|
|
|
|
|
static bool virHostMsgWantEscape(void)
|
|
|
|
{
|
|
|
|
static bool detectTty = true;
|
2014-10-28 12:38:04 -06:00
|
|
|
static bool wantEscape;
|
2012-01-10 17:31:21 +00:00
|
|
|
if (detectTty) {
|
|
|
|
if (isatty(STDOUT_FILENO))
|
|
|
|
wantEscape = true;
|
|
|
|
detectTty = false;
|
|
|
|
}
|
|
|
|
return wantEscape;
|
|
|
|
}
|
|
|
|
|
|
|
|
void virHostMsgPass(void)
|
|
|
|
{
|
|
|
|
if (quiet)
|
|
|
|
return;
|
|
|
|
|
|
|
|
if (virHostMsgWantEscape())
|
|
|
|
fprintf(stdout, "\033[32m%s\033[0m\n", _("PASS"));
|
|
|
|
else
|
|
|
|
fprintf(stdout, "%s\n", _("PASS"));
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
static const char * failMessages[] = {
|
|
|
|
N_("FAIL"),
|
|
|
|
N_("WARN"),
|
|
|
|
N_("NOTE"),
|
|
|
|
};
|
|
|
|
|
|
|
|
verify(ARRAY_CARDINALITY(failMessages) == VIR_HOST_VALIDATE_LAST);
|
|
|
|
|
|
|
|
static const char *failEscapeCodes[] = {
|
|
|
|
"\033[31m",
|
|
|
|
"\033[33m",
|
|
|
|
"\033[34m",
|
|
|
|
};
|
|
|
|
|
|
|
|
verify(ARRAY_CARDINALITY(failEscapeCodes) == VIR_HOST_VALIDATE_LAST);
|
|
|
|
|
|
|
|
void virHostMsgFail(virHostValidateLevel level,
|
2015-10-07 17:36:37 +01:00
|
|
|
const char *format,
|
|
|
|
...)
|
2012-01-10 17:31:21 +00:00
|
|
|
{
|
2015-10-07 17:36:37 +01:00
|
|
|
va_list args;
|
|
|
|
char *msg;
|
|
|
|
|
|
|
|
if (quiet)
|
|
|
|
return;
|
|
|
|
|
|
|
|
va_start(args, format);
|
|
|
|
if (virVasprintf(&msg, format, args) < 0) {
|
|
|
|
perror("malloc");
|
|
|
|
abort();
|
|
|
|
}
|
|
|
|
va_end(args);
|
|
|
|
|
2012-01-10 17:31:21 +00:00
|
|
|
if (virHostMsgWantEscape())
|
|
|
|
fprintf(stdout, "%s%s\033[0m (%s)\n",
|
2015-10-07 17:36:37 +01:00
|
|
|
failEscapeCodes[level], _(failMessages[level]), msg);
|
2012-01-10 17:31:21 +00:00
|
|
|
else
|
|
|
|
fprintf(stdout, "%s (%s)\n",
|
2015-10-07 17:36:37 +01:00
|
|
|
_(failMessages[level]), msg);
|
|
|
|
VIR_FREE(msg);
|
2012-01-10 17:31:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-10-07 17:02:31 +01:00
|
|
|
int virHostValidateDeviceExists(const char *hvname,
|
|
|
|
const char *dev_name,
|
|
|
|
virHostValidateLevel level,
|
|
|
|
const char *hint)
|
2012-01-10 17:31:21 +00:00
|
|
|
{
|
2015-10-07 17:02:31 +01:00
|
|
|
virHostMsgCheck(hvname, "if device %s exists", dev_name);
|
|
|
|
|
|
|
|
if (access(dev_name, F_OK) < 0) {
|
2015-10-07 17:36:37 +01:00
|
|
|
virHostMsgFail(level, "%s", hint);
|
2015-10-07 17:02:31 +01:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
virHostMsgPass();
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
int virHostValidateDeviceAccessible(const char *hvname,
|
|
|
|
const char *dev_name,
|
|
|
|
virHostValidateLevel level,
|
|
|
|
const char *hint)
|
|
|
|
{
|
|
|
|
virHostMsgCheck(hvname, "if device %s is accessible", dev_name);
|
2012-01-10 17:31:21 +00:00
|
|
|
|
2012-03-29 17:08:27 -06:00
|
|
|
if (access(dev_name, R_OK|W_OK) < 0) {
|
2015-10-07 17:36:37 +01:00
|
|
|
virHostMsgFail(level, "%s", hint);
|
2012-01-10 17:31:21 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
virHostMsgPass();
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-10-07 16:58:39 +01:00
|
|
|
int virHostValidateNamespace(const char *hvname,
|
|
|
|
const char *ns_name,
|
|
|
|
virHostValidateLevel level,
|
|
|
|
const char *hint)
|
|
|
|
{
|
|
|
|
virHostMsgCheck(hvname, "for namespace %s", ns_name);
|
|
|
|
char nspath[100];
|
|
|
|
|
|
|
|
snprintf(nspath, sizeof(nspath), "/proc/self/ns/%s", ns_name);
|
|
|
|
|
|
|
|
if (access(nspath, F_OK) < 0) {
|
2015-10-07 17:36:37 +01:00
|
|
|
virHostMsgFail(level, "%s", hint);
|
2015-10-07 16:58:39 +01:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
virHostMsgPass();
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-03-29 16:38:28 +02:00
|
|
|
virBitmapPtr virHostValidateGetCPUFlags(void)
|
2012-01-10 17:31:21 +00:00
|
|
|
{
|
2016-03-29 16:38:28 +02:00
|
|
|
FILE *fp;
|
2016-04-14 09:55:21 -04:00
|
|
|
virBitmapPtr flags = NULL;
|
2012-01-10 17:31:21 +00:00
|
|
|
|
2016-03-29 16:38:28 +02:00
|
|
|
if (!(fp = fopen("/proc/cpuinfo", "r")))
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
if (!(flags = virBitmapNewQuiet(VIR_HOST_VALIDATE_CPU_FLAG_LAST)))
|
2016-04-14 09:55:21 -04:00
|
|
|
goto cleanup;
|
2012-01-10 17:31:21 +00:00
|
|
|
|
|
|
|
do {
|
|
|
|
char line[1024];
|
2016-03-29 16:38:28 +02:00
|
|
|
char *start;
|
|
|
|
char **tokens;
|
|
|
|
size_t ntokens;
|
|
|
|
size_t i;
|
2012-01-10 17:31:21 +00:00
|
|
|
|
|
|
|
if (!fgets(line, sizeof(line), fp))
|
|
|
|
break;
|
|
|
|
|
2016-05-03 08:10:52 +02:00
|
|
|
/* The line we're interested in is marked differently depending
|
|
|
|
* on the architecture, so check possible prefixes */
|
|
|
|
if (!STRPREFIX(line, "flags") &&
|
|
|
|
!STRPREFIX(line, "Features") &&
|
|
|
|
!STRPREFIX(line, "features"))
|
2016-03-29 16:38:28 +02:00
|
|
|
continue;
|
|
|
|
|
|
|
|
/* fgets() includes the trailing newline in the output buffer,
|
|
|
|
* so we need to clean that up ourselves. We can safely access
|
|
|
|
* line[strlen(line) - 1] because the checks above would cause
|
|
|
|
* us to skip empty strings */
|
|
|
|
line[strlen(line) - 1] = '\0';
|
|
|
|
|
|
|
|
/* Skip to the separator */
|
|
|
|
if (!(start = strchr(line, ':')))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
/* Split the line using " " as a delimiter. The first token
|
|
|
|
* will always be ":", but that's okay */
|
|
|
|
if (!(tokens = virStringSplitCount(start, " ", 0, &ntokens)))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
/* Go through all flags and check whether one of those we
|
|
|
|
* might want to check for later on is present; if that's
|
|
|
|
* the case, set the relevant bit in the bitmap */
|
|
|
|
for (i = 0; i < ntokens; i++) {
|
|
|
|
int value;
|
|
|
|
|
|
|
|
if ((value = virHostValidateCPUFlagTypeFromString(tokens[i])) >= 0)
|
|
|
|
ignore_value(virBitmapSetBit(flags, value));
|
2012-01-10 17:31:21 +00:00
|
|
|
}
|
2016-03-29 16:38:28 +02:00
|
|
|
|
2016-11-25 09:18:35 +01:00
|
|
|
virStringListFreeCount(tokens, ntokens);
|
2012-01-10 17:31:21 +00:00
|
|
|
} while (1);
|
|
|
|
|
2016-04-14 09:55:21 -04:00
|
|
|
cleanup:
|
2012-01-10 17:31:21 +00:00
|
|
|
VIR_FORCE_FCLOSE(fp);
|
|
|
|
|
2016-03-29 16:38:28 +02:00
|
|
|
return flags;
|
2012-01-10 17:31:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
int virHostValidateLinuxKernel(const char *hvname,
|
|
|
|
int version,
|
|
|
|
virHostValidateLevel level,
|
|
|
|
const char *hint)
|
|
|
|
{
|
|
|
|
struct utsname uts;
|
|
|
|
unsigned long thisversion;
|
|
|
|
|
|
|
|
uname(&uts);
|
|
|
|
|
|
|
|
virHostMsgCheck(hvname, _("for Linux >= %d.%d.%d"),
|
|
|
|
((version >> 16) & 0xff),
|
|
|
|
((version >> 8) & 0xff),
|
|
|
|
(version & 0xff));
|
|
|
|
|
|
|
|
if (STRNEQ(uts.sysname, "Linux")) {
|
2015-10-07 17:36:37 +01:00
|
|
|
virHostMsgFail(level, "%s", hint);
|
2012-01-10 17:31:21 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (virParseVersionString(uts.release, &thisversion, true) < 0) {
|
2015-10-07 17:36:37 +01:00
|
|
|
virHostMsgFail(level, "%s", hint);
|
2012-01-10 17:31:21 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (thisversion < version) {
|
2015-10-07 17:36:37 +01:00
|
|
|
virHostMsgFail(level, "%s", hint);
|
2012-01-10 17:31:21 +00:00
|
|
|
return -1;
|
|
|
|
} else {
|
|
|
|
virHostMsgPass();
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
}
|
2015-10-07 17:36:37 +01:00
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
#ifdef __linux__
|
|
|
|
int virHostValidateCGroupControllers(const char *hvname,
|
|
|
|
int controllers,
|
|
|
|
virHostValidateLevel level)
|
2015-10-07 17:36:37 +01:00
|
|
|
{
|
2018-09-29 21:37:22 +02:00
|
|
|
virCgroupPtr group = NULL;
|
|
|
|
int ret = 0;
|
|
|
|
size_t i;
|
2015-10-07 17:36:37 +01:00
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
if (virCgroupNewSelf(&group) < 0)
|
|
|
|
return -1;
|
2015-10-07 17:36:37 +01:00
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
for (i = 0; i < VIR_CGROUP_CONTROLLER_LAST; i++) {
|
|
|
|
int flag = 1 << i;
|
|
|
|
const char *cg_name = virCgroupControllerTypeToString(i);
|
2016-04-04 16:25:15 +02:00
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
if (!(controllers & flag))
|
2015-10-07 17:36:37 +01:00
|
|
|
continue;
|
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
virHostMsgCheck(hvname, "for cgroup '%s' controller support", cg_name);
|
2015-10-07 17:36:37 +01:00
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
if (!virCgroupHasController(group, i)) {
|
|
|
|
ret = -1;
|
|
|
|
virHostMsgFail(level, "Enable '%s' in kernel Kconfig file or "
|
|
|
|
"mount/enable cgroup controller in your system",
|
|
|
|
cg_name);
|
|
|
|
} else {
|
|
|
|
virHostMsgPass();
|
2016-04-04 16:25:15 +02:00
|
|
|
}
|
2015-10-07 17:36:37 +01:00
|
|
|
}
|
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
virCgroupFree(&group);
|
2015-10-07 17:36:37 +01:00
|
|
|
|
2018-09-29 21:37:22 +02:00
|
|
|
return ret;
|
2015-10-07 17:36:37 +01:00
|
|
|
}
|
2018-09-29 21:37:22 +02:00
|
|
|
#else /* !__linux__ */
|
2018-10-08 09:10:07 +02:00
|
|
|
int virHostValidateCGroupControllers(const char *hvname ATTRIBUTE_UNUSED,
|
|
|
|
int controllers ATTRIBUTE_UNUSED,
|
2018-09-29 21:37:22 +02:00
|
|
|
virHostValidateLevel level)
|
2015-10-12 14:33:04 +01:00
|
|
|
{
|
|
|
|
virHostMsgFail(level, "%s", "This platform does not support cgroups");
|
|
|
|
return -1;
|
|
|
|
}
|
2018-09-29 21:37:22 +02:00
|
|
|
#endif /* !__linux__ */
|
2015-10-07 17:46:18 +01:00
|
|
|
|
|
|
|
int virHostValidateIOMMU(const char *hvname,
|
|
|
|
virHostValidateLevel level)
|
|
|
|
{
|
2016-03-29 16:38:28 +02:00
|
|
|
virBitmapPtr flags;
|
2015-10-07 17:46:18 +01:00
|
|
|
struct stat sb;
|
|
|
|
const char *bootarg = NULL;
|
2017-08-17 19:18:05 +05:30
|
|
|
bool isAMD = false, isIntel = false, isPPC = false;
|
2016-03-29 16:38:28 +02:00
|
|
|
flags = virHostValidateGetCPUFlags();
|
|
|
|
|
|
|
|
if (flags && virBitmapIsBitSet(flags, VIR_HOST_VALIDATE_CPU_FLAG_VMX))
|
2015-10-07 17:46:18 +01:00
|
|
|
isIntel = true;
|
2016-03-29 16:38:28 +02:00
|
|
|
else if (flags && virBitmapIsBitSet(flags, VIR_HOST_VALIDATE_CPU_FLAG_SVM))
|
2015-10-07 17:46:18 +01:00
|
|
|
isAMD = true;
|
|
|
|
|
2016-03-29 16:38:28 +02:00
|
|
|
virBitmapFree(flags);
|
|
|
|
|
2017-08-17 19:18:05 +05:30
|
|
|
isPPC = ARCH_IS_PPC64(virArchFromHost());
|
2015-10-07 17:46:18 +01:00
|
|
|
|
|
|
|
if (isIntel) {
|
2017-08-17 19:18:05 +05:30
|
|
|
virHostMsgCheck(hvname, "%s", _("for device assignment IOMMU support"));
|
2015-10-07 17:46:18 +01:00
|
|
|
if (access("/sys/firmware/acpi/tables/DMAR", F_OK) == 0) {
|
|
|
|
virHostMsgPass();
|
|
|
|
bootarg = "intel_iommu=on";
|
|
|
|
} else {
|
|
|
|
virHostMsgFail(level,
|
|
|
|
"No ACPI DMAR table found, IOMMU either "
|
|
|
|
"disabled in BIOS or not supported by this "
|
|
|
|
"hardware platform");
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
} else if (isAMD) {
|
2017-08-17 19:18:05 +05:30
|
|
|
virHostMsgCheck(hvname, "%s", _("for device assignment IOMMU support"));
|
2015-10-07 17:46:18 +01:00
|
|
|
if (access("/sys/firmware/acpi/tables/IVRS", F_OK) == 0) {
|
|
|
|
virHostMsgPass();
|
|
|
|
bootarg = "iommu=pt iommu=1";
|
|
|
|
} else {
|
|
|
|
virHostMsgFail(level,
|
|
|
|
"No ACPI IVRS table found, IOMMU either "
|
|
|
|
"disabled in BIOS or not supported by this "
|
|
|
|
"hardware platform");
|
|
|
|
return -1;
|
|
|
|
}
|
2017-08-17 19:18:05 +05:30
|
|
|
} else if (isPPC) {
|
|
|
|
/* Empty Block */
|
2015-10-07 17:46:18 +01:00
|
|
|
} else {
|
|
|
|
virHostMsgFail(level,
|
|
|
|
"Unknown if this platform has IOMMU support");
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* We can only check on newer kernels with iommu groups & vfio */
|
|
|
|
if (stat("/sys/kernel/iommu_groups", &sb) < 0)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (!S_ISDIR(sb.st_mode))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
virHostMsgCheck(hvname, "%s", _("if IOMMU is enabled by kernel"));
|
|
|
|
if (sb.st_nlink <= 2) {
|
2017-08-17 19:18:05 +05:30
|
|
|
if (!isPPC)
|
|
|
|
virHostMsgFail(level,
|
|
|
|
"IOMMU appears to be disabled in kernel. "
|
|
|
|
"Add %s to kernel cmdline arguments", bootarg);
|
|
|
|
else
|
|
|
|
virHostMsgFail(level, "IOMMU capability not compiled into kernel.");
|
2015-10-07 17:46:18 +01:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
virHostMsgPass();
|
|
|
|
return 0;
|
|
|
|
}
|