2010-12-16 15:23:41 +00:00
|
|
|
/*
|
2014-03-07 13:38:51 +00:00
|
|
|
* qemu_domain.c: QEMU domain private state
|
2010-12-16 15:23:41 +00:00
|
|
|
*
|
2016-02-10 12:33:47 +00:00
|
|
|
* Copyright (C) 2006-2016 Red Hat, Inc.
|
2010-12-16 15:23:41 +00:00
|
|
|
* Copyright (C) 2006 Daniel P. Berrange
|
|
|
|
*
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
2012-09-20 22:30:55 +00:00
|
|
|
* License along with this library. If not, see
|
2012-07-21 10:06:23 +00:00
|
|
|
* <http://www.gnu.org/licenses/>.
|
2010-12-16 15:23:41 +00:00
|
|
|
*
|
|
|
|
* Author: Daniel P. Berrange <berrange@redhat.com>
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <config.h>
|
|
|
|
|
|
|
|
#include "qemu_domain.h"
|
2016-02-16 15:11:34 +00:00
|
|
|
#include "qemu_alias.h"
|
2016-02-29 14:39:57 +00:00
|
|
|
#include "qemu_cgroup.h"
|
2010-12-16 15:23:41 +00:00
|
|
|
#include "qemu_command.h"
|
2016-08-01 15:51:28 +00:00
|
|
|
#include "qemu_process.h"
|
2016-02-10 12:33:47 +00:00
|
|
|
#include "qemu_parse_command.h"
|
2011-05-04 11:55:38 +00:00
|
|
|
#include "qemu_capabilities.h"
|
2011-07-19 00:27:30 +00:00
|
|
|
#include "qemu_migration.h"
|
2012-12-12 18:06:53 +00:00
|
|
|
#include "viralloc.h"
|
2012-12-12 17:59:27 +00:00
|
|
|
#include "virlog.h"
|
2012-12-13 18:21:53 +00:00
|
|
|
#include "virerror.h"
|
2010-12-16 15:23:41 +00:00
|
|
|
#include "c-ctype.h"
|
2011-01-31 10:47:03 +00:00
|
|
|
#include "cpu/cpu.h"
|
2012-12-13 18:01:25 +00:00
|
|
|
#include "viruuid.h"
|
2011-07-19 18:32:58 +00:00
|
|
|
#include "virfile.h"
|
2014-05-13 16:10:40 +00:00
|
|
|
#include "domain_addr.h"
|
2011-10-18 14:15:42 +00:00
|
|
|
#include "domain_event.h"
|
2011-11-29 12:33:23 +00:00
|
|
|
#include "virtime.h"
|
2012-12-13 15:25:48 +00:00
|
|
|
#include "virstoragefile.h"
|
2013-04-03 10:36:23 +00:00
|
|
|
#include "virstring.h"
|
2015-03-11 12:58:42 +00:00
|
|
|
#include "virthreadjob.h"
|
2015-11-12 12:43:29 +00:00
|
|
|
#include "viratomic.h"
|
2015-12-10 17:39:14 +00:00
|
|
|
#include "virprocess.h"
|
2016-05-19 17:05:36 +00:00
|
|
|
#include "vircrypto.h"
|
2016-04-06 19:00:59 +00:00
|
|
|
#include "secret_util.h"
|
2015-11-03 11:13:25 +00:00
|
|
|
#include "logging/log_manager.h"
|
2016-02-29 14:39:57 +00:00
|
|
|
#include "locking/domain_lock.h"
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2014-04-24 10:14:01 +00:00
|
|
|
#include "storage/storage_driver.h"
|
|
|
|
|
2010-12-16 16:12:02 +00:00
|
|
|
#include <sys/time.h>
|
2011-05-05 11:38:04 +00:00
|
|
|
#include <fcntl.h>
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
#include <libxml/xpathInternals.h>
|
|
|
|
|
|
|
|
#define VIR_FROM_THIS VIR_FROM_QEMU
|
|
|
|
|
2014-02-28 12:16:17 +00:00
|
|
|
VIR_LOG_INIT("qemu.qemu_domain");
|
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
#define QEMU_NAMESPACE_HREF "http://libvirt.org/schemas/domain/qemu/1.0"
|
|
|
|
|
2011-06-06 08:28:38 +00:00
|
|
|
VIR_ENUM_IMPL(qemuDomainJob, QEMU_JOB_LAST,
|
|
|
|
"none",
|
|
|
|
"query",
|
|
|
|
"destroy",
|
|
|
|
"suspend",
|
|
|
|
"modify",
|
2011-07-19 00:27:39 +00:00
|
|
|
"abort",
|
2011-07-19 00:27:36 +00:00
|
|
|
"migration operation",
|
2011-06-06 08:28:38 +00:00
|
|
|
"none", /* async job is never stored in job.active */
|
|
|
|
"async nested",
|
|
|
|
);
|
|
|
|
|
|
|
|
VIR_ENUM_IMPL(qemuDomainAsyncJob, QEMU_ASYNC_JOB_LAST,
|
|
|
|
"none",
|
|
|
|
"migration out",
|
|
|
|
"migration in",
|
|
|
|
"save",
|
|
|
|
"dump",
|
2012-10-08 14:34:19 +00:00
|
|
|
"snapshot",
|
2015-10-21 08:55:43 +00:00
|
|
|
"start",
|
2011-06-06 08:28:38 +00:00
|
|
|
);
|
|
|
|
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2015-11-12 12:43:29 +00:00
|
|
|
struct _qemuDomainLogContext {
|
|
|
|
int refs;
|
|
|
|
int writefd;
|
2015-11-03 11:13:25 +00:00
|
|
|
int readfd; /* Only used if manager == NULL */
|
2015-11-12 12:43:29 +00:00
|
|
|
off_t pos;
|
2015-11-03 11:13:25 +00:00
|
|
|
ino_t inode; /* Only used if manager != NULL */
|
2015-12-03 17:20:35 +00:00
|
|
|
char *path;
|
2015-11-03 11:13:25 +00:00
|
|
|
virLogManagerPtr manager;
|
2015-11-12 12:43:29 +00:00
|
|
|
};
|
|
|
|
|
2011-06-06 08:30:54 +00:00
|
|
|
const char *
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainAsyncJobPhaseToString(qemuDomainAsyncJob job,
|
2011-06-06 08:30:54 +00:00
|
|
|
int phase ATTRIBUTE_UNUSED)
|
|
|
|
{
|
|
|
|
switch (job) {
|
|
|
|
case QEMU_ASYNC_JOB_MIGRATION_OUT:
|
|
|
|
case QEMU_ASYNC_JOB_MIGRATION_IN:
|
2011-07-19 00:27:30 +00:00
|
|
|
return qemuMigrationJobPhaseTypeToString(phase);
|
|
|
|
|
2011-06-06 08:30:54 +00:00
|
|
|
case QEMU_ASYNC_JOB_SAVE:
|
|
|
|
case QEMU_ASYNC_JOB_DUMP:
|
2012-10-08 14:34:19 +00:00
|
|
|
case QEMU_ASYNC_JOB_SNAPSHOT:
|
2015-10-21 08:55:43 +00:00
|
|
|
case QEMU_ASYNC_JOB_START:
|
2011-06-06 08:30:54 +00:00
|
|
|
case QEMU_ASYNC_JOB_NONE:
|
|
|
|
case QEMU_ASYNC_JOB_LAST:
|
|
|
|
; /* fall through */
|
|
|
|
}
|
|
|
|
|
|
|
|
return "none";
|
|
|
|
}
|
|
|
|
|
|
|
|
int
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainAsyncJobPhaseFromString(qemuDomainAsyncJob job,
|
2011-06-06 08:30:54 +00:00
|
|
|
const char *phase)
|
|
|
|
{
|
|
|
|
if (!phase)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
switch (job) {
|
|
|
|
case QEMU_ASYNC_JOB_MIGRATION_OUT:
|
|
|
|
case QEMU_ASYNC_JOB_MIGRATION_IN:
|
2011-07-19 00:27:30 +00:00
|
|
|
return qemuMigrationJobPhaseTypeFromString(phase);
|
|
|
|
|
2011-06-06 08:30:54 +00:00
|
|
|
case QEMU_ASYNC_JOB_SAVE:
|
|
|
|
case QEMU_ASYNC_JOB_DUMP:
|
2012-10-08 14:34:19 +00:00
|
|
|
case QEMU_ASYNC_JOB_SNAPSHOT:
|
2015-10-21 08:55:43 +00:00
|
|
|
case QEMU_ASYNC_JOB_START:
|
2011-06-06 08:30:54 +00:00
|
|
|
case QEMU_ASYNC_JOB_NONE:
|
|
|
|
case QEMU_ASYNC_JOB_LAST:
|
|
|
|
; /* fall through */
|
|
|
|
}
|
|
|
|
|
|
|
|
if (STREQ(phase, "none"))
|
|
|
|
return 0;
|
|
|
|
else
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2011-02-14 16:09:39 +00:00
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
void qemuDomainEventQueue(virQEMUDriverPtr driver,
|
2013-11-22 14:38:05 +00:00
|
|
|
virObjectEventPtr event)
|
2011-02-14 16:09:39 +00:00
|
|
|
{
|
2015-07-07 13:33:53 +00:00
|
|
|
if (event)
|
|
|
|
virObjectEventStateQueue(driver->domainEventState, event);
|
2011-02-14 16:09:39 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-02-17 23:12:33 +00:00
|
|
|
void
|
|
|
|
qemuDomainEventEmitJobCompleted(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
virObjectEventPtr event;
|
|
|
|
virTypedParameterPtr params = NULL;
|
|
|
|
int nparams = 0;
|
|
|
|
int type;
|
|
|
|
|
|
|
|
if (!priv->job.completed)
|
|
|
|
return;
|
|
|
|
|
|
|
|
if (qemuDomainJobInfoToParams(priv->job.completed, &type,
|
|
|
|
¶ms, &nparams) < 0) {
|
|
|
|
VIR_WARN("Could not get stats for completed job; domain %s",
|
|
|
|
vm->def->name);
|
|
|
|
}
|
|
|
|
|
|
|
|
event = virDomainEventJobCompletedNewFromObj(vm, params, nparams);
|
|
|
|
qemuDomainEventQueue(driver, event);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
static int
|
|
|
|
qemuDomainObjInitJob(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
|
|
|
memset(&priv->job, 0, sizeof(priv->job));
|
|
|
|
|
|
|
|
if (virCondInit(&priv->job.cond) < 0)
|
|
|
|
return -1;
|
|
|
|
|
2011-06-30 09:23:50 +00:00
|
|
|
if (virCondInit(&priv->job.asyncCond) < 0) {
|
2013-02-07 14:03:17 +00:00
|
|
|
virCondDestroy(&priv->job.cond);
|
2011-06-30 09:23:50 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
qemuDomainObjResetJob(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
|
|
|
struct qemuDomainJobObj *job = &priv->job;
|
|
|
|
|
|
|
|
job->active = QEMU_JOB_NONE;
|
2012-04-06 16:55:46 +00:00
|
|
|
job->owner = 0;
|
2015-03-16 17:18:46 +00:00
|
|
|
job->ownerAPI = NULL;
|
2015-03-23 11:46:45 +00:00
|
|
|
job->started = 0;
|
2011-06-30 09:23:50 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
qemuDomainObjResetAsyncJob(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
|
|
|
struct qemuDomainJobObj *job = &priv->job;
|
|
|
|
|
|
|
|
job->asyncJob = QEMU_ASYNC_JOB_NONE;
|
2012-04-06 16:55:46 +00:00
|
|
|
job->asyncOwner = 0;
|
2015-03-16 17:18:46 +00:00
|
|
|
job->asyncOwnerAPI = NULL;
|
2015-03-23 11:46:45 +00:00
|
|
|
job->asyncStarted = 0;
|
2011-06-06 08:30:54 +00:00
|
|
|
job->phase = 0;
|
2014-09-03 11:16:41 +00:00
|
|
|
job->mask = QEMU_JOB_DEFAULT_MASK;
|
2012-06-12 03:06:33 +00:00
|
|
|
job->dump_memory_only = false;
|
2015-05-15 13:59:49 +00:00
|
|
|
job->abortJob = false;
|
2016-07-05 08:07:24 +00:00
|
|
|
job->spiceMigration = false;
|
2015-05-25 14:57:49 +00:00
|
|
|
job->spiceMigrated = false;
|
2014-12-01 15:59:57 +00:00
|
|
|
job->postcopyEnabled = false;
|
2014-08-21 13:08:39 +00:00
|
|
|
VIR_FREE(job->current);
|
2011-06-06 08:34:33 +00:00
|
|
|
}
|
|
|
|
|
2011-07-04 21:33:39 +00:00
|
|
|
void
|
|
|
|
qemuDomainObjRestoreJob(virDomainObjPtr obj,
|
|
|
|
struct qemuDomainJobObj *job)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
|
|
|
memset(job, 0, sizeof(*job));
|
|
|
|
job->active = priv->job.active;
|
2012-04-06 16:55:46 +00:00
|
|
|
job->owner = priv->job.owner;
|
2011-07-04 21:33:39 +00:00
|
|
|
job->asyncJob = priv->job.asyncJob;
|
2012-04-06 16:55:46 +00:00
|
|
|
job->asyncOwner = priv->job.asyncOwner;
|
2011-06-06 08:30:54 +00:00
|
|
|
job->phase = priv->job.phase;
|
2011-07-04 21:33:39 +00:00
|
|
|
|
|
|
|
qemuDomainObjResetJob(priv);
|
|
|
|
qemuDomainObjResetAsyncJob(priv);
|
|
|
|
}
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
static void
|
|
|
|
qemuDomainObjFreeJob(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
2014-08-21 13:08:39 +00:00
|
|
|
VIR_FREE(priv->job.current);
|
2014-08-28 11:52:58 +00:00
|
|
|
VIR_FREE(priv->job.completed);
|
2013-02-07 14:03:17 +00:00
|
|
|
virCondDestroy(&priv->job.cond);
|
|
|
|
virCondDestroy(&priv->job.asyncCond);
|
2011-06-06 08:34:33 +00:00
|
|
|
}
|
|
|
|
|
2012-04-06 17:42:34 +00:00
|
|
|
static bool
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainTrackJob(qemuDomainJob job)
|
2012-04-06 17:42:34 +00:00
|
|
|
{
|
|
|
|
return (QEMU_DOMAIN_TRACK_JOBS & JOB_MASK(job)) != 0;
|
|
|
|
}
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
int
|
|
|
|
qemuDomainJobInfoUpdateTime(qemuDomainJobInfoPtr jobInfo)
|
|
|
|
{
|
|
|
|
unsigned long long now;
|
|
|
|
|
|
|
|
if (!jobInfo->started)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (virTimeMillisNow(&now) < 0)
|
|
|
|
return -1;
|
|
|
|
|
2014-08-28 14:37:38 +00:00
|
|
|
if (now < jobInfo->started) {
|
|
|
|
VIR_WARN("Async job starts in the future");
|
|
|
|
jobInfo->started = 0;
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
jobInfo->timeElapsed = now - jobInfo->started;
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2014-08-28 14:37:38 +00:00
|
|
|
int
|
|
|
|
qemuDomainJobInfoUpdateDowntime(qemuDomainJobInfoPtr jobInfo)
|
|
|
|
{
|
|
|
|
unsigned long long now;
|
|
|
|
|
|
|
|
if (!jobInfo->stopped)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (virTimeMillisNow(&now) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if (now < jobInfo->stopped) {
|
|
|
|
VIR_WARN("Guest's CPUs stopped in the future");
|
|
|
|
jobInfo->stopped = 0;
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
jobInfo->stats.downtime = now - jobInfo->stopped;
|
|
|
|
jobInfo->stats.downtime_set = true;
|
2014-08-28 14:37:38 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
int
|
|
|
|
qemuDomainJobInfoToInfo(qemuDomainJobInfoPtr jobInfo,
|
|
|
|
virDomainJobInfoPtr info)
|
|
|
|
{
|
2014-11-25 11:51:45 +00:00
|
|
|
info->type = jobInfo->type;
|
2014-08-21 13:08:39 +00:00
|
|
|
info->timeElapsed = jobInfo->timeElapsed;
|
|
|
|
info->timeRemaining = jobInfo->timeRemaining;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
info->memTotal = jobInfo->stats.ram_total;
|
|
|
|
info->memRemaining = jobInfo->stats.ram_remaining;
|
|
|
|
info->memProcessed = jobInfo->stats.ram_transferred;
|
2014-08-21 13:08:39 +00:00
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
info->fileTotal = jobInfo->stats.disk_total;
|
|
|
|
info->fileRemaining = jobInfo->stats.disk_remaining;
|
|
|
|
info->fileProcessed = jobInfo->stats.disk_transferred;
|
2014-08-21 13:08:39 +00:00
|
|
|
|
|
|
|
info->dataTotal = info->memTotal + info->fileTotal;
|
|
|
|
info->dataRemaining = info->memRemaining + info->fileRemaining;
|
|
|
|
info->dataProcessed = info->memProcessed + info->fileProcessed;
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int
|
|
|
|
qemuDomainJobInfoToParams(qemuDomainJobInfoPtr jobInfo,
|
|
|
|
int *type,
|
|
|
|
virTypedParameterPtr *params,
|
|
|
|
int *nparams)
|
|
|
|
{
|
2015-11-26 12:23:08 +00:00
|
|
|
qemuMonitorMigrationStats *stats = &jobInfo->stats;
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParameterPtr par = NULL;
|
|
|
|
int maxpar = 0;
|
|
|
|
int npar = 0;
|
|
|
|
|
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_TIME_ELAPSED,
|
|
|
|
jobInfo->timeElapsed) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2015-04-23 07:19:12 +00:00
|
|
|
if (jobInfo->timeDeltaSet &&
|
|
|
|
jobInfo->timeElapsed > jobInfo->timeDelta &&
|
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_TIME_ELAPSED_NET,
|
|
|
|
jobInfo->timeElapsed - jobInfo->timeDelta) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
if (jobInfo->type == VIR_DOMAIN_JOB_BOUNDED &&
|
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_TIME_REMAINING,
|
|
|
|
jobInfo->timeRemaining) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->downtime_set &&
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DOWNTIME,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->downtime) < 0)
|
2014-08-21 13:08:39 +00:00
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->downtime_set &&
|
2015-04-23 07:19:12 +00:00
|
|
|
jobInfo->timeDeltaSet &&
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->downtime > jobInfo->timeDelta &&
|
2015-04-23 07:19:12 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DOWNTIME_NET,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->downtime - jobInfo->timeDelta) < 0)
|
2015-04-23 07:19:12 +00:00
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->setup_time_set &&
|
2014-01-13 06:28:10 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_SETUP_TIME,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->setup_time) < 0)
|
2014-01-13 06:28:10 +00:00
|
|
|
goto error;
|
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DATA_TOTAL,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_total +
|
|
|
|
stats->disk_total) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DATA_PROCESSED,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_transferred +
|
|
|
|
stats->disk_transferred) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DATA_REMAINING,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_remaining +
|
|
|
|
stats->disk_remaining) < 0)
|
2014-08-21 13:08:39 +00:00
|
|
|
goto error;
|
|
|
|
|
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_TOTAL,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_total) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_PROCESSED,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_transferred) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_REMAINING,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_remaining) < 0)
|
2014-08-21 13:08:39 +00:00
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->ram_bps &&
|
2014-01-13 06:28:10 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_BPS,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_bps) < 0)
|
2014-01-13 06:28:10 +00:00
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->ram_duplicate_set) {
|
2014-08-21 13:08:39 +00:00
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_CONSTANT,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_duplicate) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_NORMAL,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_normal) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_NORMAL_BYTES,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->ram_normal_bytes) < 0)
|
2014-08-21 13:08:39 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2015-11-27 11:30:09 +00:00
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_DIRTY_RATE,
|
|
|
|
stats->ram_dirty_rate) < 0 ||
|
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_MEMORY_ITERATION,
|
|
|
|
stats->ram_iteration) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DISK_TOTAL,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->disk_total) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DISK_PROCESSED,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->disk_transferred) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DISK_REMAINING,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->disk_remaining) < 0)
|
2014-08-21 13:08:39 +00:00
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->disk_bps &&
|
2014-01-13 06:28:10 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_DISK_BPS,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->disk_bps) < 0)
|
2014-01-13 06:28:10 +00:00
|
|
|
goto error;
|
|
|
|
|
2015-11-26 12:23:08 +00:00
|
|
|
if (stats->xbzrle_set) {
|
2014-08-21 13:08:39 +00:00
|
|
|
if (virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_COMPRESSION_CACHE,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->xbzrle_cache_size) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_COMPRESSION_BYTES,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->xbzrle_bytes) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_COMPRESSION_PAGES,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->xbzrle_pages) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_COMPRESSION_CACHE_MISSES,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->xbzrle_cache_miss) < 0 ||
|
2014-08-21 13:08:39 +00:00
|
|
|
virTypedParamsAddULLong(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_COMPRESSION_OVERFLOW,
|
2015-11-26 12:23:08 +00:00
|
|
|
stats->xbzrle_overflow) < 0)
|
2014-08-21 13:08:39 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2016-06-21 11:40:33 +00:00
|
|
|
if (stats->cpu_throttle_percentage &&
|
|
|
|
virTypedParamsAddInt(&par, &npar, &maxpar,
|
|
|
|
VIR_DOMAIN_JOB_AUTO_CONVERGE_THROTTLE,
|
|
|
|
stats->cpu_throttle_percentage) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2014-08-21 13:08:39 +00:00
|
|
|
*type = jobInfo->type;
|
|
|
|
*params = par;
|
|
|
|
*nparams = npar;
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
error:
|
|
|
|
virTypedParamsFree(par, npar);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-03-29 22:22:46 +00:00
|
|
|
/* qemuDomainGetMasterKeyFilePath:
|
|
|
|
* @libDir: Directory path to domain lib files
|
|
|
|
*
|
|
|
|
* Generate a path to the domain master key file for libDir.
|
|
|
|
* It's up to the caller to handle checking if path exists.
|
|
|
|
*
|
|
|
|
* Returns path to memory containing the name of the file. It is up to the
|
|
|
|
* caller to free; otherwise, NULL on failure.
|
|
|
|
*/
|
|
|
|
char *
|
|
|
|
qemuDomainGetMasterKeyFilePath(const char *libDir)
|
|
|
|
{
|
|
|
|
if (!libDir) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("invalid path for master key file"));
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
return virFileBuildPath(libDir, "master-key.aes", NULL);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* qemuDomainWriteMasterKeyFile:
|
2016-05-02 17:11:24 +00:00
|
|
|
* @driver: qemu driver data
|
|
|
|
* @vm: Pointer to the vm object
|
2016-03-29 22:22:46 +00:00
|
|
|
*
|
|
|
|
* Get the desired path to the masterKey file and store it in the path.
|
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure with error message indicating failure
|
|
|
|
*/
|
2016-05-02 17:11:24 +00:00
|
|
|
int
|
2016-04-13 15:17:35 +00:00
|
|
|
qemuDomainWriteMasterKeyFile(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm)
|
2016-03-29 22:22:46 +00:00
|
|
|
{
|
|
|
|
char *path;
|
|
|
|
int fd = -1;
|
|
|
|
int ret = -1;
|
2016-04-13 15:17:35 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2016-03-29 22:22:46 +00:00
|
|
|
|
2016-05-02 17:11:24 +00:00
|
|
|
/* Only gets filled in if we have the capability */
|
|
|
|
if (!priv->masterKey)
|
|
|
|
return 0;
|
|
|
|
|
2016-03-29 22:22:46 +00:00
|
|
|
if (!(path = qemuDomainGetMasterKeyFilePath(priv->libDir)))
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if ((fd = open(path, O_WRONLY|O_TRUNC|O_CREAT, 0600)) < 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("failed to open domain master key file for write"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (safewrite(fd, priv->masterKey, priv->masterKeyLen) < 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("failed to write master key file for domain"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
2016-04-14 07:20:55 +00:00
|
|
|
if (virSecurityManagerDomainSetPathLabel(driver->securityManager,
|
|
|
|
vm->def, path) < 0)
|
2016-04-13 15:17:35 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
2016-03-29 22:22:46 +00:00
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
VIR_FORCE_CLOSE(fd);
|
|
|
|
VIR_FREE(path);
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-07-08 21:37:24 +00:00
|
|
|
static void
|
|
|
|
qemuDomainMasterKeyFree(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
|
|
|
if (!priv->masterKey)
|
|
|
|
return;
|
|
|
|
|
|
|
|
VIR_DISPOSE_N(priv->masterKey, priv->masterKeyLen);
|
|
|
|
}
|
|
|
|
|
2016-03-29 22:22:46 +00:00
|
|
|
/* qemuDomainMasterKeyReadFile:
|
|
|
|
* @priv: pointer to domain private object
|
|
|
|
*
|
|
|
|
* Expected to be called during qemuProcessReconnect once the domain
|
|
|
|
* libDir has been generated through qemuStateInitialize calling
|
|
|
|
* virDomainObjListLoadAllConfigs which will restore the libDir path
|
|
|
|
* to the domain private object.
|
|
|
|
*
|
|
|
|
* This function will get the path to the master key file and if it
|
|
|
|
* exists, it will read the contents of the file saving it in priv->masterKey.
|
|
|
|
*
|
|
|
|
* Once the file exists, the validity checks may cause failures; however,
|
|
|
|
* if the file doesn't exist or the capability doesn't exist, we just
|
|
|
|
* return (mostly) quietly.
|
|
|
|
*
|
|
|
|
* Returns 0 on success or lack of capability
|
|
|
|
* -1 on failure with error message indicating failure
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainMasterKeyReadFile(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
|
|
|
char *path;
|
|
|
|
int fd = -1;
|
|
|
|
uint8_t *masterKey = NULL;
|
|
|
|
ssize_t masterKeyLen = 0;
|
|
|
|
|
|
|
|
/* If we don't have the capability, then do nothing. */
|
|
|
|
if (!virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_OBJECT_SECRET))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (!(path = qemuDomainGetMasterKeyFilePath(priv->libDir)))
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if (!virFileExists(path)) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("domain master key file doesn't exist in %s"),
|
|
|
|
priv->libDir);
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ((fd = open(path, O_RDONLY)) < 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("failed to open domain master key file for read"));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (VIR_ALLOC_N(masterKey, 1024) < 0)
|
|
|
|
goto error;
|
|
|
|
|
|
|
|
if ((masterKeyLen = saferead(fd, masterKey, 1024)) < 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("unable to read domain master key file"));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (masterKeyLen != QEMU_DOMAIN_MASTER_KEY_LEN) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("invalid master key read, size=%zd"), masterKeyLen);
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
ignore_value(VIR_REALLOC_N_QUIET(masterKey, masterKeyLen));
|
|
|
|
|
|
|
|
priv->masterKey = masterKey;
|
|
|
|
priv->masterKeyLen = masterKeyLen;
|
|
|
|
|
|
|
|
VIR_FORCE_CLOSE(fd);
|
|
|
|
VIR_FREE(path);
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
error:
|
|
|
|
if (masterKeyLen > 0)
|
|
|
|
memset(masterKey, 0, masterKeyLen);
|
|
|
|
VIR_FREE(masterKey);
|
|
|
|
|
|
|
|
VIR_FORCE_CLOSE(fd);
|
|
|
|
VIR_FREE(path);
|
|
|
|
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* qemuDomainMasterKeyRemove:
|
|
|
|
* @priv: Pointer to the domain private object
|
|
|
|
*
|
|
|
|
* Remove the traces of the master key, clear the heap, clear the file,
|
|
|
|
* delete the file.
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainMasterKeyRemove(qemuDomainObjPrivatePtr priv)
|
|
|
|
{
|
|
|
|
char *path = NULL;
|
|
|
|
|
|
|
|
if (!priv->masterKey)
|
|
|
|
return;
|
|
|
|
|
|
|
|
/* Clear the contents */
|
2016-07-08 21:37:24 +00:00
|
|
|
qemuDomainMasterKeyFree(priv);
|
2016-03-29 22:22:46 +00:00
|
|
|
|
|
|
|
/* Delete the master key file */
|
|
|
|
path = qemuDomainGetMasterKeyFilePath(priv->libDir);
|
|
|
|
unlink(path);
|
|
|
|
|
|
|
|
VIR_FREE(path);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* qemuDomainMasterKeyCreate:
|
2016-05-02 17:11:24 +00:00
|
|
|
* @vm: Pointer to the domain object
|
2016-03-29 22:22:46 +00:00
|
|
|
*
|
|
|
|
* As long as the underlying qemu has the secret capability,
|
|
|
|
* generate and store 'raw' in a file a random 32-byte key to
|
|
|
|
* be used as a secret shared with qemu to share sensitive data.
|
|
|
|
*
|
|
|
|
* Returns: 0 on success, -1 w/ error message on failure
|
|
|
|
*/
|
|
|
|
int
|
2016-05-02 17:11:24 +00:00
|
|
|
qemuDomainMasterKeyCreate(virDomainObjPtr vm)
|
2016-03-29 22:22:46 +00:00
|
|
|
{
|
2016-04-13 15:17:35 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
|
2016-03-29 22:22:46 +00:00
|
|
|
/* If we don't have the capability, then do nothing. */
|
|
|
|
if (!virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_OBJECT_SECRET))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (!(priv->masterKey =
|
2016-05-19 17:05:36 +00:00
|
|
|
virCryptoGenerateRandom(QEMU_DOMAIN_MASTER_KEY_LEN)))
|
2016-05-02 17:11:24 +00:00
|
|
|
return -1;
|
2016-03-29 22:22:46 +00:00
|
|
|
|
|
|
|
priv->masterKeyLen = QEMU_DOMAIN_MASTER_KEY_LEN;
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 12:56:52 +00:00
|
|
|
static void
|
2016-05-13 14:46:47 +00:00
|
|
|
qemuDomainSecretPlainClear(qemuDomainSecretPlain secret)
|
2016-04-06 12:56:52 +00:00
|
|
|
{
|
|
|
|
VIR_FREE(secret.username);
|
2016-05-12 15:43:39 +00:00
|
|
|
VIR_DISPOSE_N(secret.secret, secret.secretlen);
|
2016-04-06 12:56:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-05-02 10:43:32 +00:00
|
|
|
static void
|
2016-05-13 14:46:47 +00:00
|
|
|
qemuDomainSecretAESClear(qemuDomainSecretAES secret)
|
2016-05-02 10:43:32 +00:00
|
|
|
{
|
|
|
|
VIR_FREE(secret.username);
|
|
|
|
VIR_FREE(secret.alias);
|
|
|
|
VIR_FREE(secret.iv);
|
|
|
|
VIR_FREE(secret.ciphertext);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 12:56:52 +00:00
|
|
|
static void
|
|
|
|
qemuDomainSecretInfoFree(qemuDomainSecretInfoPtr *secinfo)
|
|
|
|
{
|
|
|
|
if (!*secinfo)
|
|
|
|
return;
|
|
|
|
|
2016-05-02 10:43:32 +00:00
|
|
|
switch ((qemuDomainSecretInfoType) (*secinfo)->type) {
|
|
|
|
case VIR_DOMAIN_SECRET_INFO_TYPE_PLAIN:
|
2016-05-13 14:46:47 +00:00
|
|
|
qemuDomainSecretPlainClear((*secinfo)->s.plain);
|
2016-05-02 10:43:32 +00:00
|
|
|
break;
|
|
|
|
|
2016-05-11 20:57:54 +00:00
|
|
|
case VIR_DOMAIN_SECRET_INFO_TYPE_AES:
|
2016-05-13 14:46:47 +00:00
|
|
|
qemuDomainSecretAESClear((*secinfo)->s.aes);
|
2016-05-02 10:43:32 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
case VIR_DOMAIN_SECRET_INFO_TYPE_LAST:
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2016-04-06 12:56:52 +00:00
|
|
|
VIR_FREE(*secinfo);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-05-13 09:20:36 +00:00
|
|
|
static virClassPtr qemuDomainDiskPrivateClass;
|
2016-04-06 12:56:52 +00:00
|
|
|
static void qemuDomainDiskPrivateDispose(void *obj);
|
2015-05-13 09:20:36 +00:00
|
|
|
|
|
|
|
static int
|
|
|
|
qemuDomainDiskPrivateOnceInit(void)
|
|
|
|
{
|
|
|
|
qemuDomainDiskPrivateClass = virClassNew(virClassForObject(),
|
|
|
|
"qemuDomainDiskPrivate",
|
|
|
|
sizeof(qemuDomainDiskPrivate),
|
2016-04-06 12:56:52 +00:00
|
|
|
qemuDomainDiskPrivateDispose);
|
2015-05-13 09:20:36 +00:00
|
|
|
if (!qemuDomainDiskPrivateClass)
|
|
|
|
return -1;
|
|
|
|
else
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
VIR_ONCE_GLOBAL_INIT(qemuDomainDiskPrivate)
|
|
|
|
|
|
|
|
static virObjectPtr
|
|
|
|
qemuDomainDiskPrivateNew(void)
|
|
|
|
{
|
|
|
|
qemuDomainDiskPrivatePtr priv;
|
|
|
|
|
|
|
|
if (qemuDomainDiskPrivateInitialize() < 0)
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
if (!(priv = virObjectNew(qemuDomainDiskPrivateClass)))
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
return (virObjectPtr) priv;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 12:56:52 +00:00
|
|
|
static void
|
|
|
|
qemuDomainDiskPrivateDispose(void *obj)
|
|
|
|
{
|
|
|
|
qemuDomainDiskPrivatePtr priv = obj;
|
|
|
|
|
|
|
|
qemuDomainSecretInfoFree(&priv->secinfo);
|
2016-06-08 16:51:20 +00:00
|
|
|
qemuDomainSecretInfoFree(&priv->encinfo);
|
2016-04-06 12:56:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 13:46:49 +00:00
|
|
|
static virClassPtr qemuDomainHostdevPrivateClass;
|
|
|
|
static void qemuDomainHostdevPrivateDispose(void *obj);
|
|
|
|
|
|
|
|
static int
|
|
|
|
qemuDomainHostdevPrivateOnceInit(void)
|
|
|
|
{
|
|
|
|
qemuDomainHostdevPrivateClass =
|
|
|
|
virClassNew(virClassForObject(),
|
|
|
|
"qemuDomainHostdevPrivate",
|
|
|
|
sizeof(qemuDomainHostdevPrivate),
|
|
|
|
qemuDomainHostdevPrivateDispose);
|
|
|
|
if (!qemuDomainHostdevPrivateClass)
|
|
|
|
return -1;
|
|
|
|
else
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
VIR_ONCE_GLOBAL_INIT(qemuDomainHostdevPrivate)
|
|
|
|
|
|
|
|
static virObjectPtr
|
|
|
|
qemuDomainHostdevPrivateNew(void)
|
|
|
|
{
|
|
|
|
qemuDomainHostdevPrivatePtr priv;
|
|
|
|
|
|
|
|
if (qemuDomainHostdevPrivateInitialize() < 0)
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
if (!(priv = virObjectNew(qemuDomainHostdevPrivateClass)))
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
return (virObjectPtr) priv;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
qemuDomainHostdevPrivateDispose(void *obj)
|
|
|
|
{
|
|
|
|
qemuDomainHostdevPrivatePtr priv = obj;
|
|
|
|
|
|
|
|
qemuDomainSecretInfoFree(&priv->secinfo);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-29 13:40:09 +00:00
|
|
|
static virClassPtr qemuDomainVcpuPrivateClass;
|
|
|
|
static void qemuDomainVcpuPrivateDispose(void *obj);
|
|
|
|
|
|
|
|
static int
|
|
|
|
qemuDomainVcpuPrivateOnceInit(void)
|
|
|
|
{
|
|
|
|
qemuDomainVcpuPrivateClass = virClassNew(virClassForObject(),
|
|
|
|
"qemuDomainVcpuPrivate",
|
|
|
|
sizeof(qemuDomainVcpuPrivate),
|
|
|
|
qemuDomainVcpuPrivateDispose);
|
|
|
|
if (!qemuDomainVcpuPrivateClass)
|
|
|
|
return -1;
|
|
|
|
else
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
VIR_ONCE_GLOBAL_INIT(qemuDomainVcpuPrivate)
|
|
|
|
|
|
|
|
static virObjectPtr
|
|
|
|
qemuDomainVcpuPrivateNew(void)
|
|
|
|
{
|
|
|
|
qemuDomainVcpuPrivatePtr priv;
|
|
|
|
|
|
|
|
if (qemuDomainVcpuPrivateInitialize() < 0)
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
if (!(priv = virObjectNew(qemuDomainVcpuPrivateClass)))
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
return (virObjectPtr) priv;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
static void
|
2016-07-31 12:05:04 +00:00
|
|
|
qemuDomainVcpuPrivateDispose(void *obj)
|
2016-06-29 13:40:09 +00:00
|
|
|
{
|
2016-07-31 12:05:04 +00:00
|
|
|
qemuDomainVcpuPrivatePtr priv = obj;
|
|
|
|
|
|
|
|
VIR_FREE(priv->type);
|
|
|
|
VIR_FREE(priv->alias);
|
2016-06-29 13:40:09 +00:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
/* qemuDomainSecretPlainSetup:
|
|
|
|
* @conn: Pointer to connection
|
|
|
|
* @secinfo: Pointer to secret info
|
2016-06-02 18:15:54 +00:00
|
|
|
* @secretUsageType: The virSecretUsageType
|
2016-06-02 18:27:08 +00:00
|
|
|
* @username: username to use for authentication (may be NULL)
|
|
|
|
* @seclookupdef: Pointer to seclookupdef data
|
2016-04-06 19:00:59 +00:00
|
|
|
*
|
|
|
|
* Taking a secinfo, fill in the plaintext information
|
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure with error message
|
|
|
|
*/
|
|
|
|
static int
|
|
|
|
qemuDomainSecretPlainSetup(virConnectPtr conn,
|
|
|
|
qemuDomainSecretInfoPtr secinfo,
|
2016-06-02 18:15:54 +00:00
|
|
|
virSecretUsageType secretUsageType,
|
2016-06-02 18:27:08 +00:00
|
|
|
const char *username,
|
|
|
|
virSecretLookupTypeDefPtr seclookupdef)
|
2016-04-06 19:00:59 +00:00
|
|
|
{
|
2016-05-02 11:20:32 +00:00
|
|
|
secinfo->type = VIR_DOMAIN_SECRET_INFO_TYPE_PLAIN;
|
2016-06-02 18:27:08 +00:00
|
|
|
if (VIR_STRDUP(secinfo->s.plain.username, username) < 0)
|
2016-04-06 19:00:59 +00:00
|
|
|
return -1;
|
|
|
|
|
2016-06-02 18:27:08 +00:00
|
|
|
return virSecretGetSecretString(conn, seclookupdef, secretUsageType,
|
2016-05-12 15:43:39 +00:00
|
|
|
&secinfo->s.plain.secret,
|
|
|
|
&secinfo->s.plain.secretlen);
|
2016-04-06 19:00:59 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
/* qemuDomainSecretAESSetup:
|
|
|
|
* @conn: Pointer to connection
|
|
|
|
* @priv: pointer to domain private object
|
|
|
|
* @secinfo: Pointer to secret info
|
|
|
|
* @srcalias: Alias of the disk/hostdev used to generate the secret alias
|
2016-06-02 18:15:54 +00:00
|
|
|
* @secretUsageType: The virSecretUsageType
|
2016-06-02 18:27:08 +00:00
|
|
|
* @username: username to use for authentication (may be NULL)
|
|
|
|
* @seclookupdef: Pointer to seclookupdef data
|
2016-06-24 19:31:57 +00:00
|
|
|
* @isLuks: True/False for is for luks (alias generation)
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
*
|
|
|
|
* Taking a secinfo, fill in the AES specific information using the
|
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure with error message
|
|
|
|
*/
|
|
|
|
static int
|
|
|
|
qemuDomainSecretAESSetup(virConnectPtr conn,
|
|
|
|
qemuDomainObjPrivatePtr priv,
|
|
|
|
qemuDomainSecretInfoPtr secinfo,
|
|
|
|
const char *srcalias,
|
2016-06-02 18:15:54 +00:00
|
|
|
virSecretUsageType secretUsageType,
|
2016-06-02 18:27:08 +00:00
|
|
|
const char *username,
|
2016-06-24 19:31:57 +00:00
|
|
|
virSecretLookupTypeDefPtr seclookupdef,
|
|
|
|
bool isLuks)
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
{
|
|
|
|
int ret = -1;
|
|
|
|
uint8_t *raw_iv = NULL;
|
|
|
|
size_t ivlen = QEMU_DOMAIN_AES_IV_LEN;
|
|
|
|
uint8_t *secret = NULL;
|
|
|
|
size_t secretlen = 0;
|
|
|
|
uint8_t *ciphertext = NULL;
|
|
|
|
size_t ciphertextlen = 0;
|
|
|
|
|
|
|
|
secinfo->type = VIR_DOMAIN_SECRET_INFO_TYPE_AES;
|
2016-06-02 18:27:08 +00:00
|
|
|
if (VIR_STRDUP(secinfo->s.aes.username, username) < 0)
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
return -1;
|
|
|
|
|
2016-06-24 19:31:57 +00:00
|
|
|
if (!(secinfo->s.aes.alias = qemuDomainGetSecretAESAlias(srcalias, isLuks)))
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
return -1;
|
|
|
|
|
|
|
|
/* Create a random initialization vector */
|
|
|
|
if (!(raw_iv = virCryptoGenerateRandom(ivlen)))
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
/* Encode the IV and save that since qemu will need it */
|
|
|
|
if (!(secinfo->s.aes.iv = virStringEncodeBase64(raw_iv, ivlen)))
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
/* Grab the unencoded secret */
|
2016-06-02 18:27:08 +00:00
|
|
|
if (virSecretGetSecretString(conn, seclookupdef, secretUsageType,
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
&secret, &secretlen) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (virCryptoEncryptData(VIR_CRYPTO_CIPHER_AES256CBC,
|
|
|
|
priv->masterKey, QEMU_DOMAIN_MASTER_KEY_LEN,
|
|
|
|
raw_iv, ivlen, secret, secretlen,
|
|
|
|
&ciphertext, &ciphertextlen) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
/* Clear out the secret */
|
|
|
|
memset(secret, 0, secretlen);
|
|
|
|
|
|
|
|
/* Now encode the ciphertext and store to be passed to qemu */
|
|
|
|
if (!(secinfo->s.aes.ciphertext = virStringEncodeBase64(ciphertext,
|
|
|
|
ciphertextlen)))
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
VIR_DISPOSE_N(raw_iv, ivlen);
|
|
|
|
VIR_DISPOSE_N(secret, secretlen);
|
|
|
|
VIR_DISPOSE_N(ciphertext, ciphertextlen);
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-05-18 22:46:40 +00:00
|
|
|
/* qemuDomainSecretSetup:
|
|
|
|
* @conn: Pointer to connection
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
* @priv: pointer to domain private object
|
2016-05-18 22:46:40 +00:00
|
|
|
* @secinfo: Pointer to secret info
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
* @srcalias: Alias of the disk/hostdev used to generate the secret alias
|
2016-06-02 18:15:54 +00:00
|
|
|
* @secretUsageType: The virSecretUsageType
|
2016-06-02 18:27:08 +00:00
|
|
|
* @username: username to use for authentication (may be NULL)
|
|
|
|
* @seclookupdef: Pointer to seclookupdef data
|
2016-06-24 19:31:57 +00:00
|
|
|
* @isLuks: True when is luks (generates different alias)
|
2016-05-18 22:46:40 +00:00
|
|
|
*
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
* If we have the encryption API present and can support a secret object, then
|
|
|
|
* build the AES secret; otherwise, build the Plain secret. This is the magic
|
|
|
|
* decision point for utilizing the AES secrets for an RBD disk. For now iSCSI
|
|
|
|
* disks and hostdevs will not be able to utilize this mechanism.
|
2016-05-18 22:46:40 +00:00
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure
|
|
|
|
*/
|
|
|
|
static int
|
|
|
|
qemuDomainSecretSetup(virConnectPtr conn,
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
qemuDomainObjPrivatePtr priv,
|
2016-05-18 22:46:40 +00:00
|
|
|
qemuDomainSecretInfoPtr secinfo,
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
const char *srcalias,
|
2016-06-02 18:15:54 +00:00
|
|
|
virSecretUsageType secretUsageType,
|
2016-06-02 18:27:08 +00:00
|
|
|
const char *username,
|
2016-06-24 19:31:57 +00:00
|
|
|
virSecretLookupTypeDefPtr seclookupdef,
|
|
|
|
bool isLuks)
|
2016-05-18 22:46:40 +00:00
|
|
|
{
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
if (virCryptoHaveCipher(VIR_CRYPTO_CIPHER_AES256CBC) &&
|
|
|
|
virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_OBJECT_SECRET) &&
|
2016-06-02 20:28:28 +00:00
|
|
|
(secretUsageType == VIR_SECRET_USAGE_TYPE_CEPH ||
|
|
|
|
secretUsageType == VIR_SECRET_USAGE_TYPE_VOLUME)) {
|
2016-06-02 18:15:54 +00:00
|
|
|
if (qemuDomainSecretAESSetup(conn, priv, secinfo, srcalias,
|
2016-06-02 18:27:08 +00:00
|
|
|
secretUsageType, username,
|
2016-06-24 19:31:57 +00:00
|
|
|
seclookupdef, isLuks) < 0)
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
return -1;
|
|
|
|
} else {
|
2016-06-02 18:15:54 +00:00
|
|
|
if (qemuDomainSecretPlainSetup(conn, secinfo, secretUsageType,
|
2016-06-02 18:27:08 +00:00
|
|
|
username, seclookupdef) < 0)
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
return 0;
|
2016-05-18 22:46:40 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
/* qemuDomainSecretDiskDestroy:
|
|
|
|
* @disk: Pointer to a disk definition
|
|
|
|
*
|
|
|
|
* Clear and destroy memory associated with the secret
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainSecretDiskDestroy(virDomainDiskDefPtr disk)
|
|
|
|
{
|
|
|
|
qemuDomainDiskPrivatePtr diskPriv = QEMU_DOMAIN_DISK_PRIVATE(disk);
|
|
|
|
|
2016-05-10 18:26:44 +00:00
|
|
|
if (!diskPriv || !diskPriv->secinfo)
|
2016-04-06 19:00:59 +00:00
|
|
|
return;
|
|
|
|
|
|
|
|
qemuDomainSecretInfoFree(&diskPriv->secinfo);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-24 19:47:09 +00:00
|
|
|
bool
|
|
|
|
qemuDomainSecretDiskCapable(virStorageSourcePtr src)
|
|
|
|
{
|
|
|
|
if (!virStorageSourceIsEmpty(src) &&
|
|
|
|
virStorageSourceGetActualType(src) == VIR_STORAGE_TYPE_NETWORK &&
|
|
|
|
src->auth &&
|
|
|
|
(src->protocol == VIR_STORAGE_NET_PROTOCOL_ISCSI ||
|
|
|
|
src->protocol == VIR_STORAGE_NET_PROTOCOL_RBD))
|
|
|
|
return true;
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
/* qemuDomainSecretDiskPrepare:
|
|
|
|
* @conn: Pointer to connection
|
2016-05-02 10:43:32 +00:00
|
|
|
* @priv: pointer to domain private object
|
2016-04-06 19:00:59 +00:00
|
|
|
* @disk: Pointer to a disk definition
|
|
|
|
*
|
|
|
|
* For the right disk, generate the qemuDomainSecretInfo structure.
|
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainSecretDiskPrepare(virConnectPtr conn,
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
qemuDomainObjPrivatePtr priv,
|
2016-04-06 19:00:59 +00:00
|
|
|
virDomainDiskDefPtr disk)
|
|
|
|
{
|
|
|
|
virStorageSourcePtr src = disk->src;
|
2016-06-02 20:28:28 +00:00
|
|
|
qemuDomainDiskPrivatePtr diskPriv = QEMU_DOMAIN_DISK_PRIVATE(disk);
|
2016-04-06 19:00:59 +00:00
|
|
|
qemuDomainSecretInfoPtr secinfo = NULL;
|
|
|
|
|
2016-06-02 20:28:28 +00:00
|
|
|
if (!conn)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (qemuDomainSecretDiskCapable(src)) {
|
2016-06-02 18:15:54 +00:00
|
|
|
virSecretUsageType secretUsageType = VIR_SECRET_USAGE_TYPE_ISCSI;
|
2016-04-06 19:00:59 +00:00
|
|
|
|
|
|
|
if (VIR_ALLOC(secinfo) < 0)
|
|
|
|
return -1;
|
|
|
|
|
2016-06-02 18:15:54 +00:00
|
|
|
if (src->protocol == VIR_STORAGE_NET_PROTOCOL_RBD)
|
|
|
|
secretUsageType = VIR_SECRET_USAGE_TYPE_CEPH;
|
|
|
|
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
if (qemuDomainSecretSetup(conn, priv, secinfo, disk->info.alias,
|
2016-06-02 18:27:08 +00:00
|
|
|
secretUsageType, src->auth->username,
|
2016-06-24 19:31:57 +00:00
|
|
|
&src->auth->seclookupdef, false) < 0)
|
2016-04-06 19:00:59 +00:00
|
|
|
goto error;
|
|
|
|
|
|
|
|
diskPriv->secinfo = secinfo;
|
|
|
|
}
|
|
|
|
|
2016-06-02 20:28:28 +00:00
|
|
|
if (!virStorageSourceIsEmpty(src) && src->encryption &&
|
storage: remove "luks" storage volume type
The current LUKS support has a "luks" volume type which has
a "luks" encryption format.
This partially makes sense if you consider the QEMU shorthand
syntax only requires you to specify a format=luks, and it'll
automagically uses "raw" as the next level driver. QEMU will
however let you override the "raw" with any other driver it
supports (vmdk, qcow, rbd, iscsi, etc, etc)
IOW the intention though is that the "luks" encryption format
is applied to all disk formats (whether raw, qcow2, rbd, gluster
or whatever). As such it doesn't make much sense for libvirt
to say the volume type is "luks" - we should be saying that it
is a "raw" file, but with "luks" encryption applied.
IOW, when creating a storage volume we should use this XML
<volume>
<name>demo.raw</name>
<capacity>5368709120</capacity>
<target>
<format type='raw'/>
<encryption format='luks'>
<secret type='passphrase' uuid='0a81f5b2-8403-7b23-c8d6-21ccd2f80d6f'/>
</encryption>
</target>
</volume>
and when configuring a guest disk we should use
<disk type='file' device='disk'>
<driver name='qemu' type='raw'/>
<source file='/home/berrange/VirtualMachines/demo.raw'/>
<target dev='sda' bus='scsi'/>
<encryption format='luks'>
<secret type='passphrase' uuid='0a81f5b2-8403-7b23-c8d6-21ccd2f80d6f'/>
</encryption>
</disk>
This commit thus removes the "luks" storage volume type added
in
commit 318ebb36f1027b3357a32d6f781bd77d7a9043fd
Author: John Ferlan <jferlan@redhat.com>
Date: Tue Jun 21 12:59:54 2016 -0400
util: Add 'luks' to the FileTypeInfo
The storage file probing code is modified so that it can probe
the actual encryption formats explicitly, rather than merely
probing existance of encryption and letting the storage driver
guess the format.
The rest of the code is then adapted to deal with
VIR_STORAGE_FILE_RAW w/ VIR_STORAGE_ENCRYPTION_FORMAT_LUKS
instead of just VIR_STORAGE_FILE_LUKS.
The commit mentioned above was included in libvirt v2.0.0.
So when querying volume XML this will be a change in behaviour
vs the 2.0.0 release - it'll report 'raw' instead of 'luks'
for the volume format, but still report 'luks' for encryption
format. I think this change is OK because the storage driver
did not include any support for creating volumes, nor starting
guets with luks volumes in v2.0.0 - that only since then.
Clearly if we change this we must do it before v2.1.0 though.
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2016-07-26 16:41:46 +00:00
|
|
|
src->encryption->format == VIR_STORAGE_ENCRYPTION_FORMAT_LUKS) {
|
2016-06-02 20:28:28 +00:00
|
|
|
|
|
|
|
if (VIR_ALLOC(secinfo) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if (qemuDomainSecretSetup(conn, priv, secinfo, disk->info.alias,
|
|
|
|
VIR_SECRET_USAGE_TYPE_VOLUME, NULL,
|
|
|
|
&src->encryption->secrets[0]->seclookupdef,
|
|
|
|
true) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2016-07-19 17:40:41 +00:00
|
|
|
if (secinfo->type == VIR_DOMAIN_SECRET_INFO_TYPE_PLAIN) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("luks encryption requires encrypted secrets "
|
|
|
|
"to be supported"));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2016-06-02 20:28:28 +00:00
|
|
|
diskPriv->encinfo = secinfo;
|
|
|
|
}
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
return 0;
|
|
|
|
|
|
|
|
error:
|
|
|
|
qemuDomainSecretInfoFree(&secinfo);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 14:41:33 +00:00
|
|
|
/* qemuDomainSecretHostdevDestroy:
|
|
|
|
* @disk: Pointer to a hostdev definition
|
|
|
|
*
|
|
|
|
* Clear and destroy memory associated with the secret
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainSecretHostdevDestroy(virDomainHostdevDefPtr hostdev)
|
|
|
|
{
|
|
|
|
qemuDomainHostdevPrivatePtr hostdevPriv =
|
|
|
|
QEMU_DOMAIN_HOSTDEV_PRIVATE(hostdev);
|
|
|
|
|
2016-05-10 18:26:44 +00:00
|
|
|
if (!hostdevPriv || !hostdevPriv->secinfo)
|
2016-04-06 14:41:33 +00:00
|
|
|
return;
|
|
|
|
|
|
|
|
qemuDomainSecretInfoFree(&hostdevPriv->secinfo);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* qemuDomainSecretHostdevPrepare:
|
|
|
|
* @conn: Pointer to connection
|
2016-05-02 10:43:32 +00:00
|
|
|
* @priv: pointer to domain private object
|
2016-04-06 14:41:33 +00:00
|
|
|
* @hostdev: Pointer to a hostdev definition
|
|
|
|
*
|
|
|
|
* For the right host device, generate the qemuDomainSecretInfo structure.
|
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainSecretHostdevPrepare(virConnectPtr conn,
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
qemuDomainObjPrivatePtr priv,
|
2016-04-06 14:41:33 +00:00
|
|
|
virDomainHostdevDefPtr hostdev)
|
|
|
|
{
|
|
|
|
virDomainHostdevSubsysPtr subsys = &hostdev->source.subsys;
|
|
|
|
qemuDomainSecretInfoPtr secinfo = NULL;
|
|
|
|
|
|
|
|
if (conn && hostdev->mode == VIR_DOMAIN_HOSTDEV_MODE_SUBSYS &&
|
|
|
|
subsys->type == VIR_DOMAIN_HOSTDEV_SUBSYS_TYPE_SCSI) {
|
|
|
|
|
|
|
|
virDomainHostdevSubsysSCSIPtr scsisrc = &hostdev->source.subsys.u.scsi;
|
|
|
|
virDomainHostdevSubsysSCSIiSCSIPtr iscsisrc = &scsisrc->u.iscsi;
|
|
|
|
|
|
|
|
if (scsisrc->protocol == VIR_DOMAIN_HOSTDEV_SCSI_PROTOCOL_TYPE_ISCSI &&
|
|
|
|
iscsisrc->auth) {
|
|
|
|
|
|
|
|
qemuDomainHostdevPrivatePtr hostdevPriv =
|
|
|
|
QEMU_DOMAIN_HOSTDEV_PRIVATE(hostdev);
|
|
|
|
|
|
|
|
if (VIR_ALLOC(secinfo) < 0)
|
|
|
|
return -1;
|
|
|
|
|
qemu: Utilize qemu secret objects for RBD auth/secret
https://bugzilla.redhat.com/show_bug.cgi?id=1182074
If they're available and we need to pass secrets to qemu, then use the
qemu domain secret object in order to pass the secrets for RBD volumes
instead of passing the base64 encoded secret on the command line.
The goal is to make AES secrets the default and have no user interaction
required in order to allow using the AES mechanism. If the mechanism
is not available, then fall back to the current plain mechanism using
a base64 encoded secret.
New APIs:
qemu_domain.c:
qemuDomainGetSecretAESAlias:
Generate/return the secret object alias for an AES Secret Info type.
This will be called from qemuDomainSecretAESSetup.
qemuDomainSecretAESSetup: (private)
This API handles the details of the generation of the AES secret
and saves the pieces that need to be passed to qemu in order for
the secret to be decrypted. The encrypted secret based upon the
domain master key, an initialization vector (16 byte random value),
and the stored secret. Finally, the requirement from qemu is the IV
and encrypted secret are to be base64 encoded.
qemu_command.c:
qemuBuildSecretInfoProps: (private)
Generate/return a JSON properties object for the AES secret to
be used by both the command building and eventually the hotplug
code in order to add the secret object. Code was designed so that
in the future perhaps hotplug could use it if it made sense.
qemuBuildObjectSecretCommandLine (private)
Generate and add to the command line the -object secret for the
secret. This will be required for the subsequent RBD reference
to the object.
qemuBuildDiskSecinfoCommandLine (private)
Handle adding the AES secret object.
Adjustments:
qemu_domain.c:
The qemuDomainSecretSetup was altered to call either the AES or Plain
Setup functions based upon whether AES secrets are possible (we have
the encryption API) or not, we have secrets, and of course if the
protocol source is RBD.
qemu_command.c:
Adjust the qemuBuildRBDSecinfoURI API's in order to generate the
specific command options for an AES secret, such as:
-object secret,id=$alias,keyid=$masterKey,data=$base64encodedencrypted,
format=base64
-drive file=rbd:pool/image:id=myname:auth_supported=cephx\;none:\
mon_host=mon1.example.org\:6321,password-secret=$alias,...
where the 'id=' value is the secret object alias generated by
concatenating the disk alias and "-aesKey0". The 'keyid= $masterKey'
is the master key shared with qemu, and the -drive syntax will
reference that alias as the 'password-secret'. For the -drive
syntax, the 'id=myname' is kept to define the username, while the
'key=$base64 encoded secret' is removed.
While according to the syntax described for qemu commit '60390a21'
or as seen in the email archive:
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg04083.html
it is possible to pass a plaintext password via a file, the qemu
commit 'ac1d8878' describes the more feature rich 'keyid=' option
based upon the shared masterKey.
Add tests for checking/comparing output.
NB: For hotplug, since the hotplug code doesn't add command line
arguments, passing the encoded secret directly to the monitor
will suffice.
2016-04-11 15:26:14 +00:00
|
|
|
if (qemuDomainSecretSetup(conn, priv, secinfo, hostdev->info->alias,
|
2016-06-02 18:15:54 +00:00
|
|
|
VIR_SECRET_USAGE_TYPE_ISCSI,
|
2016-06-02 18:27:08 +00:00
|
|
|
iscsisrc->auth->username,
|
2016-06-24 19:31:57 +00:00
|
|
|
&iscsisrc->auth->seclookupdef, false) < 0)
|
2016-04-06 14:41:33 +00:00
|
|
|
goto error;
|
|
|
|
|
|
|
|
hostdevPriv->secinfo = secinfo;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
error:
|
|
|
|
qemuDomainSecretInfoFree(&secinfo);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
/* qemuDomainSecretDestroy:
|
|
|
|
* @vm: Domain object
|
|
|
|
*
|
|
|
|
* Once completed with the generation of the command line it is
|
|
|
|
* expect to remove the secrets
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainSecretDestroy(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
for (i = 0; i < vm->def->ndisks; i++)
|
|
|
|
qemuDomainSecretDiskDestroy(vm->def->disks[i]);
|
2016-04-06 14:41:33 +00:00
|
|
|
|
|
|
|
for (i = 0; i < vm->def->nhostdevs; i++)
|
|
|
|
qemuDomainSecretHostdevDestroy(vm->def->hostdevs[i]);
|
2016-04-06 19:00:59 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* qemuDomainSecretPrepare:
|
|
|
|
* @conn: Pointer to connection
|
|
|
|
* @vm: Domain object
|
|
|
|
*
|
|
|
|
* For any objects that may require an auth/secret setup, create a
|
|
|
|
* qemuDomainSecretInfo and save it in the approriate place within
|
|
|
|
* the private structures. This will be used by command line build
|
|
|
|
* code in order to pass the secret along to qemu in order to provide
|
|
|
|
* the necessary authentication data.
|
|
|
|
*
|
|
|
|
* Returns 0 on success, -1 on failure with error message set
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainSecretPrepare(virConnectPtr conn,
|
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
2016-05-02 10:43:32 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2016-04-06 19:00:59 +00:00
|
|
|
size_t i;
|
|
|
|
|
|
|
|
for (i = 0; i < vm->def->ndisks; i++) {
|
2016-05-02 10:43:32 +00:00
|
|
|
if (qemuDomainSecretDiskPrepare(conn, priv, vm->def->disks[i]) < 0)
|
2016-04-06 19:00:59 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2016-04-06 14:41:33 +00:00
|
|
|
for (i = 0; i < vm->def->nhostdevs; i++) {
|
2016-05-02 10:43:32 +00:00
|
|
|
if (qemuDomainSecretHostdevPrepare(conn, priv,
|
|
|
|
vm->def->hostdevs[i]) < 0)
|
2016-04-06 14:41:33 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-02-26 08:15:55 +00:00
|
|
|
/* This is the old way of setting up per-domain directories */
|
|
|
|
static int
|
|
|
|
qemuDomainSetPrivatePathsOld(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
if (!priv->libDir &&
|
|
|
|
virAsprintf(&priv->libDir, "%s/domain-%s",
|
|
|
|
cfg->libDir, vm->def->name) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (!priv->channelTargetDir &&
|
|
|
|
virAsprintf(&priv->channelTargetDir, "%s/domain-%s",
|
|
|
|
cfg->channelTargetDir, vm->def->name) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
int
|
2016-04-03 19:59:46 +00:00
|
|
|
qemuDomainSetPrivatePaths(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm)
|
2016-02-26 08:15:55 +00:00
|
|
|
{
|
2016-04-03 19:59:46 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2016-04-26 06:43:40 +00:00
|
|
|
char *domname = virDomainObjGetShortName(vm);
|
2016-04-03 19:59:46 +00:00
|
|
|
int ret = -1;
|
2016-02-26 08:15:55 +00:00
|
|
|
|
2016-04-26 06:43:40 +00:00
|
|
|
if (!domname)
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-04-03 19:59:46 +00:00
|
|
|
if (!priv->libDir &&
|
2016-04-26 06:43:40 +00:00
|
|
|
virAsprintf(&priv->libDir, "%s/domain-%s", cfg->libDir, domname) < 0)
|
2016-04-03 19:59:46 +00:00
|
|
|
goto cleanup;
|
2016-02-26 08:15:55 +00:00
|
|
|
|
2016-04-03 19:59:46 +00:00
|
|
|
if (!priv->channelTargetDir &&
|
2016-04-26 06:43:40 +00:00
|
|
|
virAsprintf(&priv->channelTargetDir, "%s/domain-%s",
|
|
|
|
cfg->channelTargetDir, domname) < 0)
|
2016-04-03 19:59:46 +00:00
|
|
|
goto cleanup;
|
2016-02-26 08:15:55 +00:00
|
|
|
|
2016-04-03 19:59:46 +00:00
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(cfg);
|
2016-04-26 06:43:40 +00:00
|
|
|
VIR_FREE(domname);
|
2016-04-03 19:59:46 +00:00
|
|
|
return ret;
|
2016-02-26 08:15:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-04-03 19:51:29 +00:00
|
|
|
void
|
|
|
|
qemuDomainClearPrivatePaths(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
|
|
|
|
VIR_FREE(priv->libDir);
|
|
|
|
VIR_FREE(priv->channelTargetDir);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-07-04 10:02:00 +00:00
|
|
|
static void *
|
|
|
|
qemuDomainObjPrivateAlloc(void)
|
2010-12-16 15:23:41 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv;
|
|
|
|
|
|
|
|
if (VIR_ALLOC(priv) < 0)
|
|
|
|
return NULL;
|
|
|
|
|
2013-07-04 10:02:00 +00:00
|
|
|
if (qemuDomainObjInitJob(priv) < 0) {
|
|
|
|
virReportSystemError(errno, "%s",
|
|
|
|
_("Unable to init qemu driver mutexes"));
|
2011-11-23 14:51:28 +00:00
|
|
|
goto error;
|
2013-07-04 10:02:00 +00:00
|
|
|
}
|
2011-05-13 10:11:47 +00:00
|
|
|
|
2013-01-02 15:38:52 +00:00
|
|
|
if (!(priv->devs = virChrdevAlloc()))
|
2011-10-06 10:24:47 +00:00
|
|
|
goto error;
|
|
|
|
|
2012-08-03 16:34:06 +00:00
|
|
|
priv->migMaxBandwidth = QEMU_DOMAIN_MIG_BANDWIDTH_MAX;
|
2011-08-26 18:10:22 +00:00
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
return priv;
|
2011-11-23 14:51:28 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
error:
|
2011-11-23 14:51:28 +00:00
|
|
|
VIR_FREE(priv);
|
|
|
|
return NULL;
|
2010-12-16 15:23:41 +00:00
|
|
|
}
|
|
|
|
|
2013-03-05 15:17:24 +00:00
|
|
|
static void
|
|
|
|
qemuDomainObjPrivateFree(void *data)
|
2010-12-16 15:23:41 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = data;
|
|
|
|
|
2013-02-01 13:48:58 +00:00
|
|
|
virObjectUnref(priv->qemuCaps);
|
2011-05-04 11:55:38 +00:00
|
|
|
|
2013-03-21 14:40:29 +00:00
|
|
|
virCgroupFree(&priv->cgroup);
|
2014-05-13 16:10:40 +00:00
|
|
|
virDomainPCIAddressSetFree(priv->pciaddrs);
|
2015-08-12 14:52:17 +00:00
|
|
|
virDomainUSBAddressSetFree(priv->usbaddrs);
|
2011-01-07 23:36:25 +00:00
|
|
|
virDomainChrSourceDefFree(priv->monConfig);
|
2011-06-06 08:34:33 +00:00
|
|
|
qemuDomainObjFreeJob(priv);
|
2010-10-26 14:04:46 +00:00
|
|
|
VIR_FREE(priv->lockState);
|
2011-10-04 07:11:35 +00:00
|
|
|
VIR_FREE(priv->origname);
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2015-03-24 13:52:11 +00:00
|
|
|
virStringFreeList(priv->qemuDevices);
|
2013-01-02 15:38:52 +00:00
|
|
|
virChrdevFree(priv->devs);
|
2011-10-06 10:24:47 +00:00
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
/* This should never be non-NULL if we get here, but just in case... */
|
|
|
|
if (priv->mon) {
|
2011-05-09 09:24:09 +00:00
|
|
|
VIR_ERROR(_("Unexpected QEMU monitor still active during domain deletion"));
|
2010-12-16 15:23:41 +00:00
|
|
|
qemuMonitorClose(priv->mon);
|
|
|
|
}
|
2011-10-05 17:31:54 +00:00
|
|
|
if (priv->agent) {
|
|
|
|
VIR_ERROR(_("Unexpected QEMU agent still active during domain deletion"));
|
|
|
|
qemuAgentClose(priv->agent);
|
|
|
|
}
|
2012-03-16 06:52:26 +00:00
|
|
|
VIR_FREE(priv->cleanupCallbacks);
|
2014-12-12 14:23:12 +00:00
|
|
|
virBitmapFree(priv->autoNodeset);
|
2015-03-27 09:11:00 +00:00
|
|
|
virBitmapFree(priv->autoCpuset);
|
2016-02-26 08:15:55 +00:00
|
|
|
|
|
|
|
VIR_FREE(priv->libDir);
|
|
|
|
VIR_FREE(priv->channelTargetDir);
|
2016-07-08 21:37:24 +00:00
|
|
|
qemuDomainMasterKeyFree(priv);
|
2016-02-26 08:15:55 +00:00
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
VIR_FREE(priv);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-30 08:35:12 +00:00
|
|
|
static void
|
|
|
|
qemuDomainObjPrivateXMLFormatVcpus(virBufferPtr buf,
|
2016-07-01 12:56:14 +00:00
|
|
|
virDomainDefPtr def)
|
2016-06-30 08:35:12 +00:00
|
|
|
{
|
|
|
|
size_t i;
|
2016-07-01 12:56:14 +00:00
|
|
|
size_t maxvcpus = virDomainDefGetVcpusMax(def);
|
|
|
|
virDomainVcpuDefPtr vcpu;
|
|
|
|
pid_t tid;
|
2016-06-30 08:35:12 +00:00
|
|
|
|
|
|
|
virBufferAddLit(buf, "<vcpus>\n");
|
|
|
|
virBufferAdjustIndent(buf, 2);
|
|
|
|
|
2016-07-01 12:56:14 +00:00
|
|
|
for (i = 0; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(def, i);
|
|
|
|
tid = QEMU_DOMAIN_VCPU_PRIVATE(vcpu)->tid;
|
|
|
|
|
|
|
|
if (!vcpu->online || tid == 0)
|
|
|
|
continue;
|
|
|
|
|
|
|
|
virBufferAsprintf(buf, "<vcpu id='%zu' pid='%d'/>\n", i, tid);
|
|
|
|
}
|
2016-06-30 08:35:12 +00:00
|
|
|
|
|
|
|
virBufferAdjustIndent(buf, -2);
|
|
|
|
virBufferAddLit(buf, "</vcpus>\n");
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-03-05 15:17:24 +00:00
|
|
|
static int
|
2015-05-19 08:14:19 +00:00
|
|
|
qemuDomainObjPrivateXMLFormat(virBufferPtr buf,
|
|
|
|
virDomainObjPtr vm)
|
2010-12-16 15:23:41 +00:00
|
|
|
{
|
2015-05-19 08:14:19 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2010-12-16 15:23:41 +00:00
|
|
|
const char *monitorpath;
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainJob job;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
/* priv->monitor_chr is set only for qemu */
|
|
|
|
if (priv->monConfig) {
|
2011-01-07 23:36:25 +00:00
|
|
|
switch (priv->monConfig->type) {
|
2010-12-16 15:23:41 +00:00
|
|
|
case VIR_DOMAIN_CHR_TYPE_UNIX:
|
2011-01-07 23:36:25 +00:00
|
|
|
monitorpath = priv->monConfig->data.nix.path;
|
2010-12-16 15:23:41 +00:00
|
|
|
break;
|
|
|
|
default:
|
|
|
|
case VIR_DOMAIN_CHR_TYPE_PTY:
|
2011-01-07 23:36:25 +00:00
|
|
|
monitorpath = priv->monConfig->data.file.path;
|
2010-12-16 15:23:41 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferEscapeString(buf, "<monitor path='%s'", monitorpath);
|
2010-12-16 15:23:41 +00:00
|
|
|
if (priv->monJSON)
|
|
|
|
virBufferAddLit(buf, " json='1'");
|
2011-04-30 16:34:49 +00:00
|
|
|
virBufferAsprintf(buf, " type='%s'/>\n",
|
2011-01-07 23:36:25 +00:00
|
|
|
virDomainChrTypeToString(priv->monConfig->type));
|
2010-12-16 15:23:41 +00:00
|
|
|
}
|
|
|
|
|
2016-07-01 12:56:14 +00:00
|
|
|
qemuDomainObjPrivateXMLFormatVcpus(buf, vm->def);
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2013-02-01 13:48:58 +00:00
|
|
|
if (priv->qemuCaps) {
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAddLit(buf, "<qemuCaps>\n");
|
|
|
|
virBufferAdjustIndent(buf, 2);
|
2013-05-21 07:21:20 +00:00
|
|
|
for (i = 0; i < QEMU_CAPS_LAST; i++) {
|
2013-02-01 13:48:58 +00:00
|
|
|
if (virQEMUCapsGet(priv->qemuCaps, i)) {
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAsprintf(buf, "<flag name='%s'/>\n",
|
2013-02-01 13:48:58 +00:00
|
|
|
virQEMUCapsTypeToString(i));
|
2011-05-04 11:55:38 +00:00
|
|
|
}
|
|
|
|
}
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAdjustIndent(buf, -2);
|
|
|
|
virBufferAddLit(buf, "</qemuCaps>\n");
|
2011-05-04 11:55:38 +00:00
|
|
|
}
|
|
|
|
|
2010-10-26 14:04:46 +00:00
|
|
|
if (priv->lockState)
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAsprintf(buf, "<lockstate>%s</lockstate>\n", priv->lockState);
|
2010-10-26 14:04:46 +00:00
|
|
|
|
2012-04-06 17:42:34 +00:00
|
|
|
job = priv->job.active;
|
|
|
|
if (!qemuDomainTrackJob(job))
|
|
|
|
priv->job.active = QEMU_JOB_NONE;
|
|
|
|
|
2011-06-06 08:28:38 +00:00
|
|
|
if (priv->job.active || priv->job.asyncJob) {
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAsprintf(buf, "<job type='%s' async='%s'",
|
2011-06-06 08:28:38 +00:00
|
|
|
qemuDomainJobTypeToString(priv->job.active),
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob));
|
2011-06-06 08:30:54 +00:00
|
|
|
if (priv->job.phase) {
|
|
|
|
virBufferAsprintf(buf, " phase='%s'",
|
|
|
|
qemuDomainAsyncJobPhaseToString(
|
|
|
|
priv->job.asyncJob, priv->job.phase));
|
|
|
|
}
|
2015-05-19 15:28:25 +00:00
|
|
|
if (priv->job.asyncJob != QEMU_ASYNC_JOB_MIGRATION_OUT) {
|
|
|
|
virBufferAddLit(buf, "/>\n");
|
|
|
|
} else {
|
|
|
|
size_t i;
|
|
|
|
virDomainDiskDefPtr disk;
|
|
|
|
qemuDomainDiskPrivatePtr diskPriv;
|
|
|
|
|
|
|
|
virBufferAddLit(buf, ">\n");
|
|
|
|
virBufferAdjustIndent(buf, 2);
|
|
|
|
|
|
|
|
for (i = 0; i < vm->def->ndisks; i++) {
|
|
|
|
disk = vm->def->disks[i];
|
|
|
|
diskPriv = QEMU_DOMAIN_DISK_PRIVATE(disk);
|
|
|
|
virBufferAsprintf(buf, "<disk dev='%s' migrating='%s'/>\n",
|
|
|
|
disk->dst,
|
|
|
|
diskPriv->migrating ? "yes" : "no");
|
|
|
|
}
|
|
|
|
|
|
|
|
virBufferAdjustIndent(buf, -2);
|
|
|
|
virBufferAddLit(buf, "</job>\n");
|
|
|
|
}
|
2011-06-06 08:28:38 +00:00
|
|
|
}
|
2012-04-06 17:42:34 +00:00
|
|
|
priv->job.active = job;
|
2011-06-06 08:28:38 +00:00
|
|
|
|
2011-09-28 10:10:13 +00:00
|
|
|
if (priv->fakeReboot)
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAddLit(buf, "<fakereboot/>\n");
|
2011-09-28 10:10:13 +00:00
|
|
|
|
2013-07-19 13:08:29 +00:00
|
|
|
if (priv->qemuDevices && *priv->qemuDevices) {
|
|
|
|
char **tmp = priv->qemuDevices;
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAddLit(buf, "<devices>\n");
|
|
|
|
virBufferAdjustIndent(buf, 2);
|
2013-07-19 13:08:29 +00:00
|
|
|
while (*tmp) {
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAsprintf(buf, "<device alias='%s'/>\n", *tmp);
|
2013-07-19 13:08:29 +00:00
|
|
|
tmp++;
|
|
|
|
}
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAdjustIndent(buf, -2);
|
|
|
|
virBufferAddLit(buf, "</devices>\n");
|
2013-07-19 13:08:29 +00:00
|
|
|
}
|
|
|
|
|
2015-07-24 14:06:33 +00:00
|
|
|
if (priv->autoNodeset) {
|
|
|
|
char *nodeset = virBitmapFormat(priv->autoNodeset);
|
|
|
|
|
|
|
|
if (!nodeset)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
virBufferAsprintf(buf, "<numad nodeset='%s'/>\n", nodeset);
|
|
|
|
VIR_FREE(nodeset);
|
|
|
|
}
|
|
|
|
|
2016-02-26 08:15:55 +00:00
|
|
|
/* Various per-domain paths */
|
|
|
|
virBufferEscapeString(buf, "<libDir path='%s'/>\n", priv->libDir);
|
|
|
|
virBufferEscapeString(buf, "<channelTargetDir path='%s'/>\n",
|
|
|
|
priv->channelTargetDir);
|
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2016-06-30 08:35:12 +00:00
|
|
|
|
|
|
|
static int
|
|
|
|
qemuDomainObjPrivateXMLParseVcpu(xmlNodePtr node,
|
|
|
|
unsigned int idx,
|
2016-07-01 12:56:14 +00:00
|
|
|
virDomainDefPtr def)
|
2016-06-30 08:35:12 +00:00
|
|
|
{
|
2016-07-01 12:56:14 +00:00
|
|
|
virDomainVcpuDefPtr vcpu;
|
2016-06-30 13:06:46 +00:00
|
|
|
char *idstr;
|
2016-06-30 08:35:12 +00:00
|
|
|
char *pidstr;
|
2016-07-01 12:56:14 +00:00
|
|
|
unsigned int tmp;
|
2016-06-30 08:35:12 +00:00
|
|
|
int ret = -1;
|
|
|
|
|
2016-07-01 12:56:14 +00:00
|
|
|
idstr = virXMLPropString(node, "id");
|
|
|
|
|
2016-07-11 09:30:03 +00:00
|
|
|
if (idstr &&
|
|
|
|
(virStrToLong_uip(idstr, NULL, 10, &idx) < 0)) {
|
2016-07-01 12:56:14 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
2016-07-11 09:30:03 +00:00
|
|
|
_("cannot parse vcpu index '%s'"), idstr);
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
if (!(vcpu = virDomainDefGetVcpu(def, idx))) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("invalid vcpu index '%u'"), idx);
|
2016-07-01 12:56:14 +00:00
|
|
|
goto cleanup;
|
2016-06-30 13:06:46 +00:00
|
|
|
}
|
|
|
|
|
2016-06-30 08:35:12 +00:00
|
|
|
if (!(pidstr = virXMLPropString(node, "pid")))
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-07-01 12:56:14 +00:00
|
|
|
if (virStrToLong_uip(pidstr, NULL, 10, &tmp) < 0)
|
2016-06-30 08:35:12 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
2016-07-01 12:56:14 +00:00
|
|
|
QEMU_DOMAIN_VCPU_PRIVATE(vcpu)->tid = tmp;
|
|
|
|
|
2016-06-30 08:35:12 +00:00
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
2016-06-30 13:06:46 +00:00
|
|
|
VIR_FREE(idstr);
|
2016-06-30 08:35:12 +00:00
|
|
|
VIR_FREE(pidstr);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-03-05 15:17:24 +00:00
|
|
|
static int
|
2015-05-19 08:14:19 +00:00
|
|
|
qemuDomainObjPrivateXMLParse(xmlXPathContextPtr ctxt,
|
2015-07-24 17:35:00 +00:00
|
|
|
virDomainObjPtr vm,
|
2015-07-24 14:06:33 +00:00
|
|
|
virDomainDefParserConfigPtr config)
|
2010-12-16 15:23:41 +00:00
|
|
|
{
|
2015-05-19 08:14:19 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2015-07-24 14:06:33 +00:00
|
|
|
virQEMUDriverPtr driver = config->priv;
|
2010-12-16 15:23:41 +00:00
|
|
|
char *monitorpath;
|
2015-08-13 08:03:12 +00:00
|
|
|
char *tmp = NULL;
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
int n;
|
|
|
|
size_t i;
|
2010-12-16 15:23:41 +00:00
|
|
|
xmlNodePtr *nodes = NULL;
|
2013-02-01 13:48:58 +00:00
|
|
|
virQEMUCapsPtr qemuCaps = NULL;
|
2015-07-24 14:06:33 +00:00
|
|
|
virCapsPtr caps = NULL;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2013-07-04 10:14:12 +00:00
|
|
|
if (VIR_ALLOC(priv->monConfig) < 0)
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
|
|
|
|
if (!(monitorpath =
|
|
|
|
virXPathString("string(./monitor[1]/@path)", ctxt))) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("no monitor path"));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
tmp = virXPathString("string(./monitor[1]/@type)", ctxt);
|
|
|
|
if (tmp)
|
2011-01-07 23:36:25 +00:00
|
|
|
priv->monConfig->type = virDomainChrTypeFromString(tmp);
|
2010-12-16 15:23:41 +00:00
|
|
|
else
|
2011-01-07 23:36:25 +00:00
|
|
|
priv->monConfig->type = VIR_DOMAIN_CHR_TYPE_PTY;
|
2010-12-16 15:23:41 +00:00
|
|
|
VIR_FREE(tmp);
|
|
|
|
|
2013-04-26 02:32:41 +00:00
|
|
|
priv->monJSON = virXPathBoolean("count(./monitor[@json = '1']) > 0",
|
|
|
|
ctxt) > 0;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2011-01-07 23:36:25 +00:00
|
|
|
switch (priv->monConfig->type) {
|
2010-12-16 15:23:41 +00:00
|
|
|
case VIR_DOMAIN_CHR_TYPE_PTY:
|
2011-01-07 23:36:25 +00:00
|
|
|
priv->monConfig->data.file.path = monitorpath;
|
2010-12-16 15:23:41 +00:00
|
|
|
break;
|
|
|
|
case VIR_DOMAIN_CHR_TYPE_UNIX:
|
2011-01-07 23:36:25 +00:00
|
|
|
priv->monConfig->data.nix.path = monitorpath;
|
2010-12-16 15:23:41 +00:00
|
|
|
break;
|
|
|
|
default:
|
|
|
|
VIR_FREE(monitorpath);
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("unsupported monitor type '%s'"),
|
|
|
|
virDomainChrTypeToString(priv->monConfig->type));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2016-06-30 08:35:12 +00:00
|
|
|
if ((n = virXPathNodeSet("./vcpus/vcpu", ctxt, &nodes)) < 0)
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
|
2016-06-30 08:35:12 +00:00
|
|
|
for (i = 0; i < n; i++) {
|
2016-07-01 12:56:14 +00:00
|
|
|
if (qemuDomainObjPrivateXMLParseVcpu(nodes[i], i, vm->def) < 0)
|
2016-06-30 08:35:12 +00:00
|
|
|
goto error;
|
2010-12-16 15:23:41 +00:00
|
|
|
}
|
2016-06-30 08:35:12 +00:00
|
|
|
VIR_FREE(nodes);
|
2014-09-03 13:06:52 +00:00
|
|
|
|
2011-05-04 11:55:38 +00:00
|
|
|
if ((n = virXPathNodeSet("./qemuCaps/flag", ctxt, &nodes)) < 0) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("failed to parse qemu capabilities flags"));
|
2011-05-04 11:55:38 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (n > 0) {
|
2013-02-01 13:48:58 +00:00
|
|
|
if (!(qemuCaps = virQEMUCapsNew()))
|
2011-05-04 11:55:38 +00:00
|
|
|
goto error;
|
|
|
|
|
2013-05-21 07:21:20 +00:00
|
|
|
for (i = 0; i < n; i++) {
|
2011-05-04 11:55:38 +00:00
|
|
|
char *str = virXMLPropString(nodes[i], "name");
|
|
|
|
if (str) {
|
2013-02-01 13:48:58 +00:00
|
|
|
int flag = virQEMUCapsTypeFromString(str);
|
2011-05-04 11:55:38 +00:00
|
|
|
if (flag < 0) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("Unknown qemu capabilities flag %s"), str);
|
2011-06-03 14:33:25 +00:00
|
|
|
VIR_FREE(str);
|
2011-05-04 11:55:38 +00:00
|
|
|
goto error;
|
|
|
|
}
|
2011-06-03 14:33:25 +00:00
|
|
|
VIR_FREE(str);
|
2013-02-01 13:48:58 +00:00
|
|
|
virQEMUCapsSet(qemuCaps, flag);
|
2011-05-04 11:55:38 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-02-01 13:48:58 +00:00
|
|
|
priv->qemuCaps = qemuCaps;
|
2015-08-13 08:03:12 +00:00
|
|
|
qemuCaps = NULL;
|
2011-05-04 11:55:38 +00:00
|
|
|
}
|
|
|
|
VIR_FREE(nodes);
|
|
|
|
|
2010-10-26 14:04:46 +00:00
|
|
|
priv->lockState = virXPathString("string(./lockstate)", ctxt);
|
2011-05-04 11:55:38 +00:00
|
|
|
|
2011-06-06 08:28:38 +00:00
|
|
|
if ((tmp = virXPathString("string(./job[1]/@type)", ctxt))) {
|
|
|
|
int type;
|
|
|
|
|
|
|
|
if ((type = qemuDomainJobTypeFromString(tmp)) < 0) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("Unknown job type %s"), tmp);
|
2011-06-06 08:28:38 +00:00
|
|
|
VIR_FREE(tmp);
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
VIR_FREE(tmp);
|
|
|
|
priv->job.active = type;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ((tmp = virXPathString("string(./job[1]/@async)", ctxt))) {
|
|
|
|
int async;
|
|
|
|
|
|
|
|
if ((async = qemuDomainAsyncJobTypeFromString(tmp)) < 0) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("Unknown async job type %s"), tmp);
|
2011-06-06 08:28:38 +00:00
|
|
|
VIR_FREE(tmp);
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
VIR_FREE(tmp);
|
|
|
|
priv->job.asyncJob = async;
|
2011-06-06 08:30:54 +00:00
|
|
|
|
|
|
|
if ((tmp = virXPathString("string(./job[1]/@phase)", ctxt))) {
|
|
|
|
priv->job.phase = qemuDomainAsyncJobPhaseFromString(async, tmp);
|
|
|
|
if (priv->job.phase < 0) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("Unknown job phase %s"), tmp);
|
2011-06-06 08:30:54 +00:00
|
|
|
VIR_FREE(tmp);
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
VIR_FREE(tmp);
|
|
|
|
}
|
2011-06-06 08:28:38 +00:00
|
|
|
}
|
|
|
|
|
2015-05-19 15:28:25 +00:00
|
|
|
if ((n = virXPathNodeSet("./job[1]/disk[@migrating='yes']",
|
|
|
|
ctxt, &nodes)) < 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("failed to parse list of disks marked for migration"));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (n > 0) {
|
|
|
|
if (priv->job.asyncJob != QEMU_ASYNC_JOB_MIGRATION_OUT) {
|
|
|
|
VIR_WARN("Found disks marked for migration but we were not "
|
|
|
|
"migrating");
|
|
|
|
n = 0;
|
|
|
|
}
|
|
|
|
for (i = 0; i < n; i++) {
|
|
|
|
char *dst = virXMLPropString(nodes[i], "dev");
|
|
|
|
virDomainDiskDefPtr disk;
|
|
|
|
|
|
|
|
if (dst && (disk = virDomainDiskByName(vm->def, dst, false)))
|
|
|
|
QEMU_DOMAIN_DISK_PRIVATE(disk)->migrating = true;
|
|
|
|
VIR_FREE(dst);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
VIR_FREE(nodes);
|
|
|
|
|
2011-09-28 10:10:13 +00:00
|
|
|
priv->fakeReboot = virXPathBoolean("boolean(./fakereboot)", ctxt) == 1;
|
|
|
|
|
2013-07-19 13:08:29 +00:00
|
|
|
if ((n = virXPathNodeSet("./devices/device", ctxt, &nodes)) < 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("failed to parse qemu device list"));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (n > 0) {
|
|
|
|
/* NULL-terminated list */
|
|
|
|
if (VIR_ALLOC_N(priv->qemuDevices, n + 1) < 0)
|
|
|
|
goto error;
|
|
|
|
|
|
|
|
for (i = 0; i < n; i++) {
|
|
|
|
priv->qemuDevices[i] = virXMLPropString(nodes[i], "alias");
|
|
|
|
if (!priv->qemuDevices[i]) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("failed to parse qemu device list"));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
VIR_FREE(nodes);
|
|
|
|
|
2015-07-24 14:06:33 +00:00
|
|
|
if (!(caps = virQEMUDriverGetCapabilities(driver, false)))
|
|
|
|
goto error;
|
|
|
|
|
|
|
|
if ((tmp = virXPathString("string(./numad/@nodeset)", ctxt))) {
|
2016-06-17 12:56:45 +00:00
|
|
|
if (virBitmapParse(tmp, &priv->autoNodeset,
|
2015-07-24 14:06:33 +00:00
|
|
|
caps->host.nnumaCell_max) < 0)
|
|
|
|
goto error;
|
|
|
|
|
|
|
|
if (!(priv->autoCpuset = virCapabilitiesGetCpusForNodemask(caps,
|
|
|
|
priv->autoNodeset)))
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
virObjectUnref(caps);
|
|
|
|
VIR_FREE(tmp);
|
|
|
|
|
2016-02-26 08:15:55 +00:00
|
|
|
if ((tmp = virXPathString("string(./libDir/@path)", ctxt)))
|
|
|
|
priv->libDir = tmp;
|
|
|
|
if ((tmp = virXPathString("string(./channelTargetDir/@path)", ctxt)))
|
|
|
|
priv->channelTargetDir = tmp;
|
|
|
|
tmp = NULL;
|
|
|
|
|
|
|
|
if (qemuDomainSetPrivatePathsOld(driver, vm) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
return 0;
|
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
error:
|
2011-01-07 23:36:25 +00:00
|
|
|
virDomainChrSourceDefFree(priv->monConfig);
|
2010-12-16 15:23:41 +00:00
|
|
|
priv->monConfig = NULL;
|
|
|
|
VIR_FREE(nodes);
|
2015-07-24 14:06:33 +00:00
|
|
|
VIR_FREE(tmp);
|
2013-07-19 13:08:29 +00:00
|
|
|
virStringFreeList(priv->qemuDevices);
|
|
|
|
priv->qemuDevices = NULL;
|
2013-02-01 13:48:58 +00:00
|
|
|
virObjectUnref(qemuCaps);
|
2015-07-24 14:06:33 +00:00
|
|
|
virObjectUnref(caps);
|
2010-12-16 15:23:41 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-03-05 15:17:24 +00:00
|
|
|
virDomainXMLPrivateDataCallbacks virQEMUDriverPrivateDataCallbacks = {
|
|
|
|
.alloc = qemuDomainObjPrivateAlloc,
|
|
|
|
.free = qemuDomainObjPrivateFree,
|
2015-05-13 09:20:36 +00:00
|
|
|
.diskNew = qemuDomainDiskPrivateNew,
|
2016-06-29 13:40:09 +00:00
|
|
|
.vcpuNew = qemuDomainVcpuPrivateNew,
|
2016-04-06 13:46:49 +00:00
|
|
|
.hostdevNew = qemuDomainHostdevPrivateNew,
|
2013-03-05 15:17:24 +00:00
|
|
|
.parse = qemuDomainObjPrivateXMLParse,
|
|
|
|
.format = qemuDomainObjPrivateXMLFormat,
|
|
|
|
};
|
|
|
|
|
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
static void
|
|
|
|
qemuDomainDefNamespaceFree(void *nsdata)
|
|
|
|
{
|
|
|
|
qemuDomainCmdlineDefPtr cmd = nsdata;
|
|
|
|
|
2013-09-24 15:38:26 +00:00
|
|
|
qemuDomainCmdlineDefFree(cmd);
|
2010-12-16 15:23:41 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static int
|
2011-10-18 16:22:49 +00:00
|
|
|
qemuDomainDefNamespaceParse(xmlDocPtr xml ATTRIBUTE_UNUSED,
|
|
|
|
xmlNodePtr root ATTRIBUTE_UNUSED,
|
2010-12-16 15:23:41 +00:00
|
|
|
xmlXPathContextPtr ctxt,
|
|
|
|
void **data)
|
|
|
|
{
|
|
|
|
qemuDomainCmdlineDefPtr cmd = NULL;
|
2011-10-18 16:22:49 +00:00
|
|
|
bool uses_qemu_ns = false;
|
2010-12-16 15:23:41 +00:00
|
|
|
xmlNodePtr *nodes = NULL;
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
int n;
|
|
|
|
size_t i;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2011-10-18 16:22:49 +00:00
|
|
|
if (xmlXPathRegisterNs(ctxt, BAD_CAST "qemu", BAD_CAST QEMU_NAMESPACE_HREF) < 0) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("Failed to register xml namespace '%s'"),
|
|
|
|
QEMU_NAMESPACE_HREF);
|
2010-12-16 15:23:41 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2013-07-04 10:14:12 +00:00
|
|
|
if (VIR_ALLOC(cmd) < 0)
|
2010-12-16 15:23:41 +00:00
|
|
|
return -1;
|
|
|
|
|
|
|
|
/* first handle the extra command-line arguments */
|
|
|
|
n = virXPathNodeSet("./qemu:commandline/qemu:arg", ctxt, &nodes);
|
|
|
|
if (n < 0)
|
|
|
|
goto error;
|
2011-10-18 16:22:49 +00:00
|
|
|
uses_qemu_ns |= n > 0;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
if (n && VIR_ALLOC_N(cmd->args, n) < 0)
|
2013-07-04 10:14:12 +00:00
|
|
|
goto error;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
for (i = 0; i < n; i++) {
|
|
|
|
cmd->args[cmd->num_args] = virXMLPropString(nodes[i], "value");
|
|
|
|
if (cmd->args[cmd->num_args] == NULL) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("No qemu command-line argument specified"));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
cmd->num_args++;
|
|
|
|
}
|
|
|
|
|
|
|
|
VIR_FREE(nodes);
|
|
|
|
|
|
|
|
/* now handle the extra environment variables */
|
|
|
|
n = virXPathNodeSet("./qemu:commandline/qemu:env", ctxt, &nodes);
|
|
|
|
if (n < 0)
|
|
|
|
goto error;
|
2011-10-18 16:22:49 +00:00
|
|
|
uses_qemu_ns |= n > 0;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
if (n && VIR_ALLOC_N(cmd->env_name, n) < 0)
|
2013-07-04 10:14:12 +00:00
|
|
|
goto error;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
if (n && VIR_ALLOC_N(cmd->env_value, n) < 0)
|
2013-07-04 10:14:12 +00:00
|
|
|
goto error;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
for (i = 0; i < n; i++) {
|
|
|
|
char *tmp;
|
|
|
|
|
|
|
|
tmp = virXMLPropString(nodes[i], "name");
|
|
|
|
if (tmp == NULL) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("No qemu environment name specified"));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (tmp[0] == '\0') {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("Empty qemu environment name specified"));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (!c_isalpha(tmp[0]) && tmp[0] != '_') {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("Invalid environment name, it must begin with a letter or underscore"));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (strspn(tmp, "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789_") != strlen(tmp)) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
"%s", _("Invalid environment name, it must contain only alphanumerics and underscore"));
|
2010-12-16 15:23:41 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
cmd->env_name[cmd->num_env] = tmp;
|
|
|
|
|
|
|
|
cmd->env_value[cmd->num_env] = virXMLPropString(nodes[i], "value");
|
|
|
|
/* a NULL value for command is allowed, since it might be empty */
|
|
|
|
cmd->num_env++;
|
|
|
|
}
|
|
|
|
|
|
|
|
VIR_FREE(nodes);
|
|
|
|
|
2011-10-18 16:22:49 +00:00
|
|
|
if (uses_qemu_ns)
|
|
|
|
*data = cmd;
|
|
|
|
else
|
|
|
|
VIR_FREE(cmd);
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
error:
|
2010-12-16 15:23:41 +00:00
|
|
|
VIR_FREE(nodes);
|
|
|
|
qemuDomainDefNamespaceFree(cmd);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
static int
|
|
|
|
qemuDomainDefNamespaceFormatXML(virBufferPtr buf,
|
|
|
|
void *nsdata)
|
|
|
|
{
|
|
|
|
qemuDomainCmdlineDefPtr cmd = nsdata;
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2010-12-16 15:23:41 +00:00
|
|
|
|
|
|
|
if (!cmd->num_args && !cmd->num_env)
|
|
|
|
return 0;
|
|
|
|
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAddLit(buf, "<qemu:commandline>\n");
|
|
|
|
virBufferAdjustIndent(buf, 2);
|
|
|
|
|
2010-12-16 15:23:41 +00:00
|
|
|
for (i = 0; i < cmd->num_args; i++)
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferEscapeString(buf, "<qemu:arg value='%s'/>\n",
|
2010-12-16 15:23:41 +00:00
|
|
|
cmd->args[i]);
|
|
|
|
for (i = 0; i < cmd->num_env; i++) {
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAsprintf(buf, "<qemu:env name='%s'", cmd->env_name[i]);
|
2010-12-16 15:23:41 +00:00
|
|
|
if (cmd->env_value[i])
|
|
|
|
virBufferEscapeString(buf, " value='%s'", cmd->env_value[i]);
|
|
|
|
virBufferAddLit(buf, "/>\n");
|
|
|
|
}
|
|
|
|
|
2014-03-05 09:50:42 +00:00
|
|
|
virBufferAdjustIndent(buf, -2);
|
|
|
|
virBufferAddLit(buf, "</qemu:commandline>\n");
|
2010-12-16 15:23:41 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
static const char *
|
|
|
|
qemuDomainDefNamespaceHref(void)
|
|
|
|
{
|
|
|
|
return "xmlns:qemu='" QEMU_NAMESPACE_HREF "'";
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-03-05 15:17:24 +00:00
|
|
|
virDomainXMLNamespace virQEMUDriverDomainXMLNamespace = {
|
|
|
|
.parse = qemuDomainDefNamespaceParse,
|
|
|
|
.free = qemuDomainDefNamespaceFree,
|
|
|
|
.format = qemuDomainDefNamespaceFormatXML,
|
|
|
|
.href = qemuDomainDefNamespaceHref,
|
|
|
|
};
|
2010-12-16 15:23:41 +00:00
|
|
|
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2016-01-11 11:40:32 +00:00
|
|
|
static int
|
|
|
|
qemuDomainDefAddImplicitInputDevice(virDomainDef *def)
|
|
|
|
{
|
|
|
|
if (ARCH_IS_X86(def->os.arch)) {
|
|
|
|
if (virDomainDefMaybeAddInput(def,
|
|
|
|
VIR_DOMAIN_INPUT_TYPE_MOUSE,
|
|
|
|
VIR_DOMAIN_INPUT_BUS_PS2) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if (virDomainDefMaybeAddInput(def,
|
|
|
|
VIR_DOMAIN_INPUT_TYPE_KBD,
|
|
|
|
VIR_DOMAIN_INPUT_BUS_PS2) < 0)
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-03-11 11:12:08 +00:00
|
|
|
static int
|
2016-01-07 01:35:36 +00:00
|
|
|
qemuDomainDefAddDefaultDevices(virDomainDefPtr def,
|
|
|
|
virQEMUCapsPtr qemuCaps)
|
2013-03-11 11:12:08 +00:00
|
|
|
{
|
2013-08-02 08:13:33 +00:00
|
|
|
bool addDefaultUSB = true;
|
2015-10-20 16:08:56 +00:00
|
|
|
int usbModel = -1; /* "default for machinetype" */
|
2016-04-19 21:05:54 +00:00
|
|
|
int pciRoot; /* index within def->controllers */
|
qemu: fix handling of default/implicit devices for q35
This patch adds in special handling for a few devices that need to be
treated differently for q35 domains:
usb - there is no implicit/default usb controller for the q35
machinetype. This is done because normally the default usb controller
is added to a domain by just adding "-usb" to the qemu commandline,
and it's assumed that this will add a single piix3 usb1 controller at
slot 1 function 2. That's not what happens when the machinetype is
q35, though. Instead, adding -usb to the commandline adds 3 usb
(version 2) controllers to the domain at slot 0x1D.{1,2,7}. Rather
than having
<controller type='usb' index='0'/>
translate into 3 separate devices on the PCI bus, it's cleaner to not
automatically add a default usb device; one can always be added
explicitly if desired. Or we may decide that on q35 machines, 3 usb
controllers will be automatically added when none is given. But for
this initial commit, at least we aren't locking ourselves into
something we later won't want.
video - qemu always initializes the primary video device immediately
after any integrated devices for the machinetype. Unless instructed
otherwise (by using "-device vga..." instead of "-vga" which libvirt
uses in many cases to work around deficiencies and bugs in various
qemu versions) qemu will always pick the first unused slot. In the
case of the "pc" machinetype and its derivatives, this is always slot
2, but on q35 machinetypes, the first free slot is slot 1 (since the
q35's integrated peripheral devices are placed in other slots,
e.g. slot 0x1f). In order to make the PCI address of the video device
predictable, that slot (1 or 2, depending on machinetype) is reserved
even when no video device has been specified.
sata - a q35 machine always has a sata controller implicitly added at
slot 0x1F, function 2. There is no way to avoid this controller, so we
always add it. Note that the xml2xml tests for the pcie-root and q35
cases were changed to use DO_TEST_DIFFERENT() so that we can check for
the sata controller being automatically added. This is especially
important because we can't check for it in the xml2argv output (it has
no effect on that output since it's an implicit device).
ide - q35 has no ide controllers.
isa and smbus controllers - these two are always present in a q35 (at
slot 0x1F functions 0 and 3) but we have no way of modelling them in
our config. We do need to reserve those functions so that the user
doesn't attempt to put anything else there though. (note that the "pc"
machine type also has an ISA controller, which we also ignore).
2013-08-02 08:55:55 +00:00
|
|
|
bool addImplicitSATA = false;
|
2013-04-22 12:16:13 +00:00
|
|
|
bool addPCIRoot = false;
|
2013-07-10 19:19:32 +00:00
|
|
|
bool addPCIeRoot = false;
|
2013-07-30 19:41:14 +00:00
|
|
|
bool addDefaultMemballoon = true;
|
2014-02-17 10:17:58 +00:00
|
|
|
bool addDefaultUSBKBD = false;
|
|
|
|
bool addDefaultUSBMouse = false;
|
2015-05-28 14:39:13 +00:00
|
|
|
bool addPanicDevice = false;
|
2015-07-17 11:27:45 +00:00
|
|
|
int ret = -1;
|
2013-04-22 12:16:13 +00:00
|
|
|
|
2016-01-11 11:40:32 +00:00
|
|
|
/* add implicit input devices */
|
|
|
|
if (qemuDomainDefAddImplicitInputDevice(def) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
2013-04-22 12:16:13 +00:00
|
|
|
/* Add implicit PCI root controller if the machine has one */
|
|
|
|
switch (def->os.arch) {
|
|
|
|
case VIR_ARCH_I686:
|
|
|
|
case VIR_ARCH_X86_64:
|
2013-07-10 19:19:32 +00:00
|
|
|
if (STREQ(def->os.machine, "isapc")) {
|
2013-08-02 08:13:33 +00:00
|
|
|
addDefaultUSB = false;
|
2013-04-22 12:16:13 +00:00
|
|
|
break;
|
2013-08-02 08:13:33 +00:00
|
|
|
}
|
2016-05-03 08:33:56 +00:00
|
|
|
if (qemuDomainMachineIsQ35(def)) {
|
2015-08-06 13:33:01 +00:00
|
|
|
addPCIeRoot = true;
|
|
|
|
addImplicitSATA = true;
|
2015-10-20 16:08:56 +00:00
|
|
|
|
|
|
|
/* add a USB2 controller set, but only if the
|
|
|
|
* ich9-usb-ehci1 device is supported
|
|
|
|
*/
|
|
|
|
if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_ICH9_USB_EHCI1))
|
|
|
|
usbModel = VIR_DOMAIN_CONTROLLER_MODEL_USB_ICH9_EHCI1;
|
|
|
|
else
|
|
|
|
addDefaultUSB = false;
|
2015-08-06 13:33:01 +00:00
|
|
|
break;
|
2013-07-10 19:19:32 +00:00
|
|
|
}
|
2016-05-03 10:05:27 +00:00
|
|
|
if (qemuDomainMachineIsI440FX(def))
|
|
|
|
addPCIRoot = true;
|
2013-04-22 12:16:13 +00:00
|
|
|
break;
|
|
|
|
|
2013-08-02 08:13:33 +00:00
|
|
|
case VIR_ARCH_ARMV7L:
|
2014-01-02 10:42:56 +00:00
|
|
|
case VIR_ARCH_AARCH64:
|
2015-07-17 11:27:45 +00:00
|
|
|
addDefaultUSB = false;
|
|
|
|
addDefaultMemballoon = false;
|
2016-05-03 08:49:40 +00:00
|
|
|
if (qemuDomainMachineIsVirt(def))
|
2015-07-17 11:27:45 +00:00
|
|
|
addPCIeRoot = virQEMUCapsGet(qemuCaps, QEMU_CAPS_OBJECT_GPEX);
|
|
|
|
break;
|
2013-08-02 08:13:33 +00:00
|
|
|
|
2014-02-17 10:17:58 +00:00
|
|
|
case VIR_ARCH_PPC64:
|
2014-11-04 17:21:26 +00:00
|
|
|
case VIR_ARCH_PPC64LE:
|
2014-02-17 10:17:58 +00:00
|
|
|
addPCIRoot = true;
|
|
|
|
addDefaultUSBKBD = true;
|
|
|
|
addDefaultUSBMouse = true;
|
2015-05-28 14:39:13 +00:00
|
|
|
/* For pSeries guests, the firmware provides the same
|
|
|
|
* functionality as the pvpanic device, so automatically
|
|
|
|
* add the definition if not already present */
|
2016-06-23 08:19:05 +00:00
|
|
|
if (qemuDomainMachineIsPSeries(def))
|
2015-05-28 14:39:13 +00:00
|
|
|
addPanicDevice = true;
|
2014-02-17 10:17:58 +00:00
|
|
|
break;
|
|
|
|
|
2013-04-22 12:16:13 +00:00
|
|
|
case VIR_ARCH_ALPHA:
|
|
|
|
case VIR_ARCH_PPC:
|
|
|
|
case VIR_ARCH_PPCEMB:
|
|
|
|
case VIR_ARCH_SH4:
|
|
|
|
case VIR_ARCH_SH4EB:
|
|
|
|
addPCIRoot = true;
|
|
|
|
break;
|
2016-04-29 13:23:45 +00:00
|
|
|
|
2015-02-18 15:44:17 +00:00
|
|
|
case VIR_ARCH_S390:
|
|
|
|
case VIR_ARCH_S390X:
|
|
|
|
addDefaultUSB = false;
|
2016-04-29 13:23:42 +00:00
|
|
|
addPanicDevice = true;
|
2015-02-18 15:44:17 +00:00
|
|
|
break;
|
2015-04-09 08:38:28 +00:00
|
|
|
|
|
|
|
case VIR_ARCH_SPARC:
|
|
|
|
case VIR_ARCH_SPARC64:
|
|
|
|
addPCIRoot = true;
|
|
|
|
break;
|
|
|
|
|
2013-04-22 12:16:13 +00:00
|
|
|
default:
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2013-08-02 08:13:33 +00:00
|
|
|
if (addDefaultUSB &&
|
2015-10-20 16:08:56 +00:00
|
|
|
virDomainControllerFind(def, VIR_DOMAIN_CONTROLLER_TYPE_USB, 0) < 0 &&
|
|
|
|
virDomainDefAddUSBController(def, 0, usbModel) < 0)
|
2015-07-17 11:27:45 +00:00
|
|
|
goto cleanup;
|
2013-08-02 08:13:33 +00:00
|
|
|
|
qemu: fix handling of default/implicit devices for q35
This patch adds in special handling for a few devices that need to be
treated differently for q35 domains:
usb - there is no implicit/default usb controller for the q35
machinetype. This is done because normally the default usb controller
is added to a domain by just adding "-usb" to the qemu commandline,
and it's assumed that this will add a single piix3 usb1 controller at
slot 1 function 2. That's not what happens when the machinetype is
q35, though. Instead, adding -usb to the commandline adds 3 usb
(version 2) controllers to the domain at slot 0x1D.{1,2,7}. Rather
than having
<controller type='usb' index='0'/>
translate into 3 separate devices on the PCI bus, it's cleaner to not
automatically add a default usb device; one can always be added
explicitly if desired. Or we may decide that on q35 machines, 3 usb
controllers will be automatically added when none is given. But for
this initial commit, at least we aren't locking ourselves into
something we later won't want.
video - qemu always initializes the primary video device immediately
after any integrated devices for the machinetype. Unless instructed
otherwise (by using "-device vga..." instead of "-vga" which libvirt
uses in many cases to work around deficiencies and bugs in various
qemu versions) qemu will always pick the first unused slot. In the
case of the "pc" machinetype and its derivatives, this is always slot
2, but on q35 machinetypes, the first free slot is slot 1 (since the
q35's integrated peripheral devices are placed in other slots,
e.g. slot 0x1f). In order to make the PCI address of the video device
predictable, that slot (1 or 2, depending on machinetype) is reserved
even when no video device has been specified.
sata - a q35 machine always has a sata controller implicitly added at
slot 0x1F, function 2. There is no way to avoid this controller, so we
always add it. Note that the xml2xml tests for the pcie-root and q35
cases were changed to use DO_TEST_DIFFERENT() so that we can check for
the sata controller being automatically added. This is especially
important because we can't check for it in the xml2argv output (it has
no effect on that output since it's an implicit device).
ide - q35 has no ide controllers.
isa and smbus controllers - these two are always present in a q35 (at
slot 0x1F functions 0 and 3) but we have no way of modelling them in
our config. We do need to reserve those functions so that the user
doesn't attempt to put anything else there though. (note that the "pc"
machine type also has an ISA controller, which we also ignore).
2013-08-02 08:55:55 +00:00
|
|
|
if (addImplicitSATA &&
|
|
|
|
virDomainDefMaybeAddController(
|
|
|
|
def, VIR_DOMAIN_CONTROLLER_TYPE_SATA, 0, -1) < 0)
|
2015-07-17 11:27:45 +00:00
|
|
|
goto cleanup;
|
qemu: fix handling of default/implicit devices for q35
This patch adds in special handling for a few devices that need to be
treated differently for q35 domains:
usb - there is no implicit/default usb controller for the q35
machinetype. This is done because normally the default usb controller
is added to a domain by just adding "-usb" to the qemu commandline,
and it's assumed that this will add a single piix3 usb1 controller at
slot 1 function 2. That's not what happens when the machinetype is
q35, though. Instead, adding -usb to the commandline adds 3 usb
(version 2) controllers to the domain at slot 0x1D.{1,2,7}. Rather
than having
<controller type='usb' index='0'/>
translate into 3 separate devices on the PCI bus, it's cleaner to not
automatically add a default usb device; one can always be added
explicitly if desired. Or we may decide that on q35 machines, 3 usb
controllers will be automatically added when none is given. But for
this initial commit, at least we aren't locking ourselves into
something we later won't want.
video - qemu always initializes the primary video device immediately
after any integrated devices for the machinetype. Unless instructed
otherwise (by using "-device vga..." instead of "-vga" which libvirt
uses in many cases to work around deficiencies and bugs in various
qemu versions) qemu will always pick the first unused slot. In the
case of the "pc" machinetype and its derivatives, this is always slot
2, but on q35 machinetypes, the first free slot is slot 1 (since the
q35's integrated peripheral devices are placed in other slots,
e.g. slot 0x1f). In order to make the PCI address of the video device
predictable, that slot (1 or 2, depending on machinetype) is reserved
even when no video device has been specified.
sata - a q35 machine always has a sata controller implicitly added at
slot 0x1F, function 2. There is no way to avoid this controller, so we
always add it. Note that the xml2xml tests for the pcie-root and q35
cases were changed to use DO_TEST_DIFFERENT() so that we can check for
the sata controller being automatically added. This is especially
important because we can't check for it in the xml2argv output (it has
no effect on that output since it's an implicit device).
ide - q35 has no ide controllers.
isa and smbus controllers - these two are always present in a q35 (at
slot 0x1F functions 0 and 3) but we have no way of modelling them in
our config. We do need to reserve those functions so that the user
doesn't attempt to put anything else there though. (note that the "pc"
machine type also has an ISA controller, which we also ignore).
2013-08-02 08:55:55 +00:00
|
|
|
|
2016-04-19 21:05:54 +00:00
|
|
|
pciRoot = virDomainControllerFind(def, VIR_DOMAIN_CONTROLLER_TYPE_PCI, 0);
|
|
|
|
|
2015-08-11 18:56:21 +00:00
|
|
|
/* NB: any machine that sets addPCIRoot to true must also return
|
|
|
|
* true from the function qemuDomainSupportsPCI().
|
|
|
|
*/
|
2016-04-19 21:05:54 +00:00
|
|
|
if (addPCIRoot) {
|
|
|
|
if (pciRoot >= 0) {
|
|
|
|
if (def->controllers[pciRoot]->model != VIR_DOMAIN_CONTROLLER_MODEL_PCI_ROOT) {
|
|
|
|
virReportError(VIR_ERR_XML_ERROR,
|
|
|
|
_("The PCI controller with index='0' must be "
|
|
|
|
"model='pci-root' for this machine type, "
|
|
|
|
"but model='%s' was found instead"),
|
|
|
|
virDomainControllerModelPCITypeToString(def->controllers[pciRoot]->model));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
} else if (!virDomainDefAddController(def, VIR_DOMAIN_CONTROLLER_TYPE_PCI, 0,
|
|
|
|
VIR_DOMAIN_CONTROLLER_MODEL_PCI_ROOT)) {
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
}
|
2013-04-22 12:16:13 +00:00
|
|
|
|
qemu: add dmi-to-pci-bridge controller
This PCI controller, named "dmi-to-pci-bridge" in the libvirt config,
and implemented with qemu's "i82801b11-bridge" device, connects to a
PCI Express slot (e.g. one of the slots provided by the pcie-root
controller, aka "pcie.0" on the qemu commandline), and provides 31
*non-hot-pluggable* PCI (*not* PCIe) slots, numbered 1-31.
Any time a machine is defined which has a pcie-root controller
(i.e. any q35-based machinetype), libvirt will automatically add a
dmi-to-pci-bridge controller if one doesn't exist, and also add a
pci-bridge controller. The reasoning here is that any useful domain
will have either an immediate (startup time) or eventual (subsequent
hot-plug) need for a standard PCI slot; since the pcie-root controller
only provides PCIe slots, we need to connect a dmi-to-pci-bridge
controller to it in order to get a non-hot-plug PCI slot that we can
then use to connect a pci-bridge - the slots provided by the
pci-bridge will be both standard PCI and hot-pluggable.
Since pci-bridge devices themselves can not be hot-plugged into a
running system (although you can hot-plug other devices into a
pci-bridge's slots), any new pci-bridge controller that is added can
(and will) be plugged into the dmi-to-pci-bridge as long as it has
empty slots available.
This patch is also changing the qemuxml2xml-pcie test from a "DO_TEST"
to a "DO_DIFFERENT_TEST". This is so that the "before" xml can omit
the automatically added dmi-to-pci-bridge and pci-bridge devices, and
the "after" xml can include it - this way we are testing if libvirt is
properly adding these devices.
2013-07-31 01:37:32 +00:00
|
|
|
/* When a machine has a pcie-root, make sure that there is always
|
|
|
|
* a dmi-to-pci-bridge controller added as bus 1, and a pci-bridge
|
|
|
|
* as bus 2, so that standard PCI devices can be connected
|
2015-08-11 18:56:21 +00:00
|
|
|
*
|
|
|
|
* NB: any machine that sets addPCIeRoot to true must also return
|
|
|
|
* true from the function qemuDomainSupportsPCI().
|
qemu: add dmi-to-pci-bridge controller
This PCI controller, named "dmi-to-pci-bridge" in the libvirt config,
and implemented with qemu's "i82801b11-bridge" device, connects to a
PCI Express slot (e.g. one of the slots provided by the pcie-root
controller, aka "pcie.0" on the qemu commandline), and provides 31
*non-hot-pluggable* PCI (*not* PCIe) slots, numbered 1-31.
Any time a machine is defined which has a pcie-root controller
(i.e. any q35-based machinetype), libvirt will automatically add a
dmi-to-pci-bridge controller if one doesn't exist, and also add a
pci-bridge controller. The reasoning here is that any useful domain
will have either an immediate (startup time) or eventual (subsequent
hot-plug) need for a standard PCI slot; since the pcie-root controller
only provides PCIe slots, we need to connect a dmi-to-pci-bridge
controller to it in order to get a non-hot-plug PCI slot that we can
then use to connect a pci-bridge - the slots provided by the
pci-bridge will be both standard PCI and hot-pluggable.
Since pci-bridge devices themselves can not be hot-plugged into a
running system (although you can hot-plug other devices into a
pci-bridge's slots), any new pci-bridge controller that is added can
(and will) be plugged into the dmi-to-pci-bridge as long as it has
empty slots available.
This patch is also changing the qemuxml2xml-pcie test from a "DO_TEST"
to a "DO_DIFFERENT_TEST". This is so that the "before" xml can omit
the automatically added dmi-to-pci-bridge and pci-bridge devices, and
the "after" xml can include it - this way we are testing if libvirt is
properly adding these devices.
2013-07-31 01:37:32 +00:00
|
|
|
*/
|
|
|
|
if (addPCIeRoot) {
|
2016-04-19 21:05:54 +00:00
|
|
|
if (pciRoot >= 0) {
|
|
|
|
if (def->controllers[pciRoot]->model != VIR_DOMAIN_CONTROLLER_MODEL_PCIE_ROOT) {
|
|
|
|
virReportError(VIR_ERR_XML_ERROR,
|
|
|
|
_("The PCI controller with index='0' must be "
|
|
|
|
"model='pcie-root' for this machine type, "
|
|
|
|
"but model='%s' was found instead"),
|
|
|
|
virDomainControllerModelPCITypeToString(def->controllers[pciRoot]->model));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
} else if (!virDomainDefAddController(def, VIR_DOMAIN_CONTROLLER_TYPE_PCI, 0,
|
|
|
|
VIR_DOMAIN_CONTROLLER_MODEL_PCIE_ROOT)) {
|
|
|
|
goto cleanup;
|
|
|
|
}
|
2016-06-16 17:13:19 +00:00
|
|
|
/* Add a dmi-to-pci-bridge bridge if there are no PCI controllers
|
2016-04-19 21:37:51 +00:00
|
|
|
* other than the pcie-root. This is so that there will be hot-pluggable
|
2016-06-16 17:13:19 +00:00
|
|
|
* PCI slots available.
|
|
|
|
*
|
|
|
|
* We skip this step for aarch64 mach-virt guests, where we want to
|
|
|
|
* be able to have a pure virtio-mmio topology
|
2016-04-19 21:37:51 +00:00
|
|
|
*/
|
|
|
|
if (virDomainControllerFind(def, VIR_DOMAIN_CONTROLLER_TYPE_PCI, 1) < 0 &&
|
2016-06-16 17:13:19 +00:00
|
|
|
!qemuDomainMachineIsVirt(def) &&
|
2016-04-19 21:37:51 +00:00
|
|
|
!virDomainDefAddController(def, VIR_DOMAIN_CONTROLLER_TYPE_PCI, 1,
|
2016-06-17 11:05:51 +00:00
|
|
|
VIR_DOMAIN_CONTROLLER_MODEL_DMI_TO_PCI_BRIDGE))
|
2016-04-19 21:37:51 +00:00
|
|
|
goto cleanup;
|
qemu: add dmi-to-pci-bridge controller
This PCI controller, named "dmi-to-pci-bridge" in the libvirt config,
and implemented with qemu's "i82801b11-bridge" device, connects to a
PCI Express slot (e.g. one of the slots provided by the pcie-root
controller, aka "pcie.0" on the qemu commandline), and provides 31
*non-hot-pluggable* PCI (*not* PCIe) slots, numbered 1-31.
Any time a machine is defined which has a pcie-root controller
(i.e. any q35-based machinetype), libvirt will automatically add a
dmi-to-pci-bridge controller if one doesn't exist, and also add a
pci-bridge controller. The reasoning here is that any useful domain
will have either an immediate (startup time) or eventual (subsequent
hot-plug) need for a standard PCI slot; since the pcie-root controller
only provides PCIe slots, we need to connect a dmi-to-pci-bridge
controller to it in order to get a non-hot-plug PCI slot that we can
then use to connect a pci-bridge - the slots provided by the
pci-bridge will be both standard PCI and hot-pluggable.
Since pci-bridge devices themselves can not be hot-plugged into a
running system (although you can hot-plug other devices into a
pci-bridge's slots), any new pci-bridge controller that is added can
(and will) be plugged into the dmi-to-pci-bridge as long as it has
empty slots available.
This patch is also changing the qemuxml2xml-pcie test from a "DO_TEST"
to a "DO_DIFFERENT_TEST". This is so that the "before" xml can omit
the automatically added dmi-to-pci-bridge and pci-bridge devices, and
the "after" xml can include it - this way we are testing if libvirt is
properly adding these devices.
2013-07-31 01:37:32 +00:00
|
|
|
}
|
2013-08-17 00:33:23 +00:00
|
|
|
|
2013-07-30 19:41:14 +00:00
|
|
|
if (addDefaultMemballoon && !def->memballoon) {
|
2013-08-17 00:33:23 +00:00
|
|
|
virDomainMemballoonDefPtr memballoon;
|
|
|
|
if (VIR_ALLOC(memballoon) < 0)
|
2015-07-17 11:27:45 +00:00
|
|
|
goto cleanup;
|
2013-08-17 00:33:23 +00:00
|
|
|
|
|
|
|
memballoon->model = VIR_DOMAIN_MEMBALLOON_MODEL_VIRTIO;
|
|
|
|
def->memballoon = memballoon;
|
|
|
|
}
|
|
|
|
|
2014-02-17 10:17:58 +00:00
|
|
|
if (addDefaultUSBKBD &&
|
|
|
|
def->ngraphics > 0 &&
|
|
|
|
virDomainDefMaybeAddInput(def,
|
|
|
|
VIR_DOMAIN_INPUT_TYPE_KBD,
|
|
|
|
VIR_DOMAIN_INPUT_BUS_USB) < 0)
|
2015-07-17 11:27:45 +00:00
|
|
|
goto cleanup;
|
2014-02-17 10:17:58 +00:00
|
|
|
|
|
|
|
if (addDefaultUSBMouse &&
|
|
|
|
def->ngraphics > 0 &&
|
|
|
|
virDomainDefMaybeAddInput(def,
|
|
|
|
VIR_DOMAIN_INPUT_TYPE_MOUSE,
|
|
|
|
VIR_DOMAIN_INPUT_BUS_USB) < 0)
|
2015-07-17 11:27:45 +00:00
|
|
|
goto cleanup;
|
2014-02-17 10:17:58 +00:00
|
|
|
|
2015-11-24 12:26:36 +00:00
|
|
|
if (addPanicDevice) {
|
|
|
|
size_t j;
|
|
|
|
for (j = 0; j < def->npanics; j++) {
|
|
|
|
if (def->panics[j]->model == VIR_DOMAIN_PANIC_MODEL_DEFAULT ||
|
2016-04-29 13:23:42 +00:00
|
|
|
(ARCH_IS_PPC64(def->os.arch) &&
|
|
|
|
def->panics[j]->model == VIR_DOMAIN_PANIC_MODEL_PSERIES) ||
|
|
|
|
(ARCH_IS_S390(def->os.arch) &&
|
|
|
|
def->panics[j]->model == VIR_DOMAIN_PANIC_MODEL_S390))
|
2015-11-24 12:26:36 +00:00
|
|
|
break;
|
|
|
|
}
|
2015-05-28 14:39:13 +00:00
|
|
|
|
2015-11-24 12:26:36 +00:00
|
|
|
if (j == def->npanics) {
|
|
|
|
virDomainPanicDefPtr panic;
|
|
|
|
if (VIR_ALLOC(panic) < 0 ||
|
|
|
|
VIR_APPEND_ELEMENT_COPY(def->panics,
|
|
|
|
def->npanics, panic) < 0) {
|
|
|
|
VIR_FREE(panic);
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
}
|
2015-05-28 14:39:13 +00:00
|
|
|
}
|
|
|
|
|
2016-01-07 01:35:36 +00:00
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-02-03 18:49:07 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainDefEnableDefaultFeatures:
|
|
|
|
* @def: domain definition
|
2016-05-09 13:38:55 +00:00
|
|
|
* @qemuCaps: QEMU capabilities
|
2016-02-03 18:49:07 +00:00
|
|
|
*
|
|
|
|
* Make sure that features that should be enabled by default are actually
|
|
|
|
* enabled and configure default values related to those features.
|
|
|
|
*/
|
|
|
|
static void
|
2016-05-09 13:38:55 +00:00
|
|
|
qemuDomainDefEnableDefaultFeatures(virDomainDefPtr def,
|
|
|
|
virQEMUCapsPtr qemuCaps)
|
2016-02-03 18:49:07 +00:00
|
|
|
{
|
2016-05-09 13:38:55 +00:00
|
|
|
virGICVersion version;
|
|
|
|
|
|
|
|
/* The virt machine type always uses GIC: if the relevant element
|
|
|
|
* was not included in the domain XML, we need to choose a suitable
|
|
|
|
* GIC version ourselves */
|
|
|
|
if (def->features[VIR_DOMAIN_FEATURE_GIC] == VIR_TRISTATE_SWITCH_ABSENT &&
|
|
|
|
qemuDomainMachineIsVirt(def)) {
|
|
|
|
|
|
|
|
VIR_DEBUG("Looking for usable GIC version in domain capabilities");
|
|
|
|
for (version = VIR_GIC_VERSION_LAST - 1;
|
|
|
|
version > VIR_GIC_VERSION_NONE;
|
|
|
|
version--) {
|
|
|
|
if (virQEMUCapsSupportsGICVersion(qemuCaps,
|
|
|
|
def->virtType,
|
|
|
|
version)) {
|
|
|
|
VIR_DEBUG("Using GIC version %s",
|
|
|
|
virGICVersionTypeToString(version));
|
|
|
|
def->gic_version = version;
|
|
|
|
break;
|
|
|
|
}
|
2016-02-03 18:49:27 +00:00
|
|
|
}
|
|
|
|
|
2016-05-09 13:38:55 +00:00
|
|
|
/* Even if we haven't found a usable GIC version in the domain
|
|
|
|
* capabilities, we still want to enable this */
|
|
|
|
def->features[VIR_DOMAIN_FEATURE_GIC] = VIR_TRISTATE_SWITCH_ON;
|
2016-02-03 18:49:27 +00:00
|
|
|
}
|
|
|
|
|
2016-02-18 15:13:42 +00:00
|
|
|
/* Use the default GIC version if no version was specified */
|
2016-02-03 18:49:07 +00:00
|
|
|
if (def->features[VIR_DOMAIN_FEATURE_GIC] == VIR_TRISTATE_SWITCH_ON &&
|
|
|
|
def->gic_version == VIR_GIC_VERSION_NONE)
|
2016-02-18 15:13:42 +00:00
|
|
|
def->gic_version = VIR_GIC_VERSION_DEFAULT;
|
2016-02-03 18:49:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-01-07 01:39:06 +00:00
|
|
|
static int
|
|
|
|
qemuCanonicalizeMachine(virDomainDefPtr def, virQEMUCapsPtr qemuCaps)
|
|
|
|
{
|
|
|
|
const char *canon;
|
|
|
|
|
|
|
|
if (!(canon = virQEMUCapsGetCanonicalMachine(qemuCaps, def->os.machine)))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (STRNEQ(canon, def->os.machine)) {
|
|
|
|
char *tmp;
|
|
|
|
if (VIR_STRDUP(tmp, canon) < 0)
|
|
|
|
return -1;
|
|
|
|
VIR_FREE(def->os.machine);
|
|
|
|
def->os.machine = tmp;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-05-19 07:35:02 +00:00
|
|
|
static int
|
2016-04-26 12:27:16 +00:00
|
|
|
qemuDomainRecheckInternalPaths(virDomainDefPtr def,
|
|
|
|
virQEMUDriverConfigPtr cfg,
|
|
|
|
unsigned int flags)
|
|
|
|
{
|
|
|
|
size_t i = 0;
|
2016-06-08 13:18:25 +00:00
|
|
|
size_t j = 0;
|
2016-04-26 12:27:16 +00:00
|
|
|
|
|
|
|
for (i = 0; i < def->ngraphics; ++i) {
|
|
|
|
virDomainGraphicsDefPtr graphics = def->graphics[i];
|
|
|
|
|
2016-06-08 13:18:25 +00:00
|
|
|
for (j = 0; j < graphics->nListens; ++j) {
|
|
|
|
virDomainGraphicsListenDefPtr glisten = &graphics->listens[j];
|
|
|
|
|
|
|
|
/* This will happen only if we parse XML from old libvirts where
|
|
|
|
* unix socket was available only for VNC graphics. In this
|
|
|
|
* particular case we should follow the behavior and if we remove
|
|
|
|
* the auto-generated socket base on config option from qemu.conf
|
|
|
|
* we need to change the listen type to address. */
|
|
|
|
if (graphics->type == VIR_DOMAIN_GRAPHICS_TYPE_VNC &&
|
|
|
|
glisten->type == VIR_DOMAIN_GRAPHICS_LISTEN_TYPE_SOCKET &&
|
|
|
|
glisten->socket &&
|
|
|
|
STRPREFIX(glisten->socket, cfg->libDir)) {
|
|
|
|
if (flags & VIR_DOMAIN_DEF_PARSE_INACTIVE) {
|
|
|
|
VIR_FREE(glisten->socket);
|
|
|
|
glisten->type = VIR_DOMAIN_GRAPHICS_LISTEN_TYPE_ADDRESS;
|
|
|
|
} else {
|
|
|
|
glisten->fromConfig = true;
|
|
|
|
}
|
2016-05-19 07:35:02 +00:00
|
|
|
}
|
2016-04-26 12:27:16 +00:00
|
|
|
}
|
|
|
|
}
|
2016-05-19 07:35:02 +00:00
|
|
|
|
|
|
|
return 0;
|
2016-04-26 12:27:16 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-08-04 12:36:24 +00:00
|
|
|
static int
|
|
|
|
qemuDomainDefVcpusPostParse(virDomainDefPtr def)
|
|
|
|
{
|
|
|
|
unsigned int maxvcpus = virDomainDefGetVcpusMax(def);
|
|
|
|
virDomainVcpuDefPtr vcpu;
|
|
|
|
virDomainVcpuDefPtr prevvcpu;
|
|
|
|
size_t i;
|
|
|
|
bool has_order = false;
|
|
|
|
|
|
|
|
/* vcpu 0 needs to be present, first, and non-hotpluggable */
|
|
|
|
vcpu = virDomainDefGetVcpu(def, 0);
|
|
|
|
if (!vcpu->online) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("vcpu 0 can't be offline"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
if (vcpu->hotpluggable == VIR_TRISTATE_BOOL_YES) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("vcpu0 can't be hotpluggable"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
if (vcpu->order != 0 && vcpu->order != 1) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("vcpu0 must be enabled first"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (vcpu->order != 0)
|
|
|
|
has_order = true;
|
|
|
|
|
|
|
|
prevvcpu = vcpu;
|
|
|
|
|
|
|
|
/* all online vcpus or non online vcpu need to have order set */
|
|
|
|
for (i = 1; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(def, i);
|
|
|
|
|
|
|
|
if (vcpu->online &&
|
|
|
|
(vcpu->order != 0) != has_order) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("all vcpus must have either set or unset order"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* few conditions for non-hotpluggable (thus online) vcpus */
|
|
|
|
if (vcpu->hotpluggable == VIR_TRISTATE_BOOL_NO) {
|
|
|
|
/* they can be ordered only at the beginning */
|
|
|
|
if (prevvcpu->hotpluggable == VIR_TRISTATE_BOOL_YES) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("online non-hotpluggable vcpus need to be "
|
|
|
|
"ordered prior to hotplugable vcpus"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* they need to be in order (qemu doesn't support any order yet).
|
|
|
|
* Also note that multiple vcpus may share order on some platforms */
|
|
|
|
if (prevvcpu->order > vcpu->order) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("online non-hotpluggable vcpus must be ordered "
|
|
|
|
"in ascending order"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
prevvcpu = vcpu;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-01-07 01:35:36 +00:00
|
|
|
static int
|
|
|
|
qemuDomainDefPostParse(virDomainDefPtr def,
|
|
|
|
virCapsPtr caps,
|
2016-04-26 12:27:16 +00:00
|
|
|
unsigned int parseFlags,
|
2016-09-22 14:41:33 +00:00
|
|
|
void *opaque,
|
|
|
|
void *parseOpaque ATTRIBUTE_UNUSED)
|
2016-01-07 01:35:36 +00:00
|
|
|
{
|
|
|
|
virQEMUDriverPtr driver = opaque;
|
2016-03-09 15:10:54 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
2016-01-07 01:35:36 +00:00
|
|
|
virQEMUCapsPtr qemuCaps = NULL;
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
if (def->os.bootloader || def->os.bootloaderArgs) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("bootloader is not supported by QEMU"));
|
2016-06-15 10:47:07 +00:00
|
|
|
goto cleanup;
|
2016-01-07 01:35:36 +00:00
|
|
|
}
|
|
|
|
|
2016-02-25 15:21:41 +00:00
|
|
|
if (!def->os.machine) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
|
|
_("missing machine type"));
|
2016-06-15 10:47:07 +00:00
|
|
|
goto cleanup;
|
2016-02-25 15:21:41 +00:00
|
|
|
}
|
|
|
|
|
2016-03-09 15:10:54 +00:00
|
|
|
if (def->os.loader &&
|
|
|
|
def->os.loader->type == VIR_DOMAIN_LOADER_TYPE_PFLASH &&
|
|
|
|
def->os.loader->readonly == VIR_TRISTATE_SWITCH_ON &&
|
|
|
|
!def->os.loader->nvram) {
|
|
|
|
if (virAsprintf(&def->os.loader->nvram, "%s/%s_VARS.fd",
|
|
|
|
cfg->nvramDir, def->name) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
2016-01-07 01:35:36 +00:00
|
|
|
/* check for emulator and create a default one if needed */
|
|
|
|
if (!def->emulator &&
|
|
|
|
!(def->emulator = virDomainDefGetDefaultEmulator(def, caps)))
|
2016-06-15 10:47:07 +00:00
|
|
|
goto cleanup;
|
2016-01-07 01:35:36 +00:00
|
|
|
|
2016-06-15 11:48:19 +00:00
|
|
|
if (!(qemuCaps = virQEMUCapsCacheLookup(caps,
|
|
|
|
driver->qemuCapsCache,
|
2016-01-08 19:46:48 +00:00
|
|
|
def->emulator)))
|
|
|
|
goto cleanup;
|
2016-01-07 01:35:36 +00:00
|
|
|
|
|
|
|
if (qemuDomainDefAddDefaultDevices(def, qemuCaps) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-01-07 01:39:06 +00:00
|
|
|
if (qemuCanonicalizeMachine(def, qemuCaps) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-05-09 13:38:55 +00:00
|
|
|
qemuDomainDefEnableDefaultFeatures(def, qemuCaps);
|
2016-02-03 18:49:07 +00:00
|
|
|
|
2016-05-19 07:35:02 +00:00
|
|
|
if (qemuDomainRecheckInternalPaths(def, cfg, parseFlags) < 0)
|
|
|
|
goto cleanup;
|
2016-04-26 12:27:16 +00:00
|
|
|
|
2016-01-07 01:43:15 +00:00
|
|
|
if (virSecurityManagerVerify(driver->securityManager, def) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-08-04 12:36:24 +00:00
|
|
|
if (qemuDomainDefVcpusPostParse(def) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
2015-07-17 11:27:45 +00:00
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(qemuCaps);
|
2016-04-26 12:38:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2015-07-17 11:27:45 +00:00
|
|
|
return ret;
|
2013-03-11 11:12:08 +00:00
|
|
|
}
|
|
|
|
|
2016-05-17 13:56:51 +00:00
|
|
|
|
|
|
|
static int
|
|
|
|
qemuDomainDefValidate(const virDomainDef *def,
|
2016-06-15 11:48:19 +00:00
|
|
|
virCapsPtr caps,
|
2016-08-01 08:35:04 +00:00
|
|
|
void *opaque)
|
2016-05-17 13:56:51 +00:00
|
|
|
{
|
2016-08-01 08:35:04 +00:00
|
|
|
virQEMUDriverPtr driver = opaque;
|
|
|
|
virQEMUCapsPtr qemuCaps = NULL;
|
|
|
|
size_t topologycpus;
|
|
|
|
int ret = -1;
|
|
|
|
|
2016-06-15 11:48:19 +00:00
|
|
|
if (!(qemuCaps = virQEMUCapsCacheLookup(caps,
|
|
|
|
driver->qemuCapsCache,
|
2016-08-01 08:35:04 +00:00
|
|
|
def->emulator)))
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-05-17 13:56:51 +00:00
|
|
|
if (def->mem.min_guarantee) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("Parameter 'min_guarantee' not supported by QEMU."));
|
2016-08-01 08:35:04 +00:00
|
|
|
goto cleanup;
|
2016-05-17 13:56:51 +00:00
|
|
|
}
|
|
|
|
|
qemu: Enable secure boot
In qemu, enabling this feature boils down to adding the following
onto the command line:
-global driver=cfi.pflash01,property=secure,value=on
However, there are some constraints resulting from the
implementation. For instance, System Management Mode (SMM) is
required to be enabled, the machine type must be q35-2.4 or
later, and the guest should be x86_64. While technically it is
possible to have 32 bit guests with secure boot, some non-trivial
CPU flags tuning is required (for instance lm and nx flags must
be prohibited). Given complexity of our CPU driver, this is not
trivial. Therefore I've chosen to forbid 32 bit guests for now.
If there's ever need, we can refine the check later.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2016-07-13 09:33:52 +00:00
|
|
|
if (def->os.loader &&
|
|
|
|
def->os.loader->secure == VIR_TRISTATE_BOOL_YES) {
|
|
|
|
/* These are the QEMU implementation limitations. But we
|
|
|
|
* have to live with them for now. */
|
|
|
|
|
|
|
|
if (!qemuDomainMachineIsQ35(def)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("Secure boot is supported with q35 machine types only"));
|
2016-08-01 08:35:04 +00:00
|
|
|
goto cleanup;
|
qemu: Enable secure boot
In qemu, enabling this feature boils down to adding the following
onto the command line:
-global driver=cfi.pflash01,property=secure,value=on
However, there are some constraints resulting from the
implementation. For instance, System Management Mode (SMM) is
required to be enabled, the machine type must be q35-2.4 or
later, and the guest should be x86_64. While technically it is
possible to have 32 bit guests with secure boot, some non-trivial
CPU flags tuning is required (for instance lm and nx flags must
be prohibited). Given complexity of our CPU driver, this is not
trivial. Therefore I've chosen to forbid 32 bit guests for now.
If there's ever need, we can refine the check later.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2016-07-13 09:33:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/* Now, technically it is possible to have secure boot on
|
|
|
|
* 32bits too, but that would require some -cpu xxx magic
|
|
|
|
* too. Not worth it unless we are explicitly asked. */
|
|
|
|
if (def->os.arch != VIR_ARCH_X86_64) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("Secure boot is supported for x86_64 architecture only"));
|
2016-08-01 08:35:04 +00:00
|
|
|
goto cleanup;
|
qemu: Enable secure boot
In qemu, enabling this feature boils down to adding the following
onto the command line:
-global driver=cfi.pflash01,property=secure,value=on
However, there are some constraints resulting from the
implementation. For instance, System Management Mode (SMM) is
required to be enabled, the machine type must be q35-2.4 or
later, and the guest should be x86_64. While technically it is
possible to have 32 bit guests with secure boot, some non-trivial
CPU flags tuning is required (for instance lm and nx flags must
be prohibited). Given complexity of our CPU driver, this is not
trivial. Therefore I've chosen to forbid 32 bit guests for now.
If there's ever need, we can refine the check later.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2016-07-13 09:33:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (def->features[VIR_DOMAIN_FEATURE_SMM] != VIR_TRISTATE_SWITCH_ON) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("Secure boot requires SMM feature enabled"));
|
2016-08-01 08:35:04 +00:00
|
|
|
goto cleanup;
|
qemu: Enable secure boot
In qemu, enabling this feature boils down to adding the following
onto the command line:
-global driver=cfi.pflash01,property=secure,value=on
However, there are some constraints resulting from the
implementation. For instance, System Management Mode (SMM) is
required to be enabled, the machine type must be q35-2.4 or
later, and the guest should be x86_64. While technically it is
possible to have 32 bit guests with secure boot, some non-trivial
CPU flags tuning is required (for instance lm and nx flags must
be prohibited). Given complexity of our CPU driver, this is not
trivial. Therefore I've chosen to forbid 32 bit guests for now.
If there's ever need, we can refine the check later.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2016-07-13 09:33:52 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-08-01 08:35:04 +00:00
|
|
|
/* qemu as of 2.5.0 rejects SMP topologies that don't match the cpu count */
|
|
|
|
if (def->cpu && def->cpu->sockets) {
|
|
|
|
topologycpus = def->cpu->sockets * def->cpu->cores * def->cpu->threads;
|
|
|
|
if (topologycpus != virDomainDefGetVcpusMax(def)) {
|
|
|
|
/* presence of query-hotpluggable-cpus should be a good enough witness */
|
|
|
|
if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_QUERY_HOTPLUGGABLE_CPUS)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("CPU topology doesn't match maximum vcpu count"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(qemuCaps);
|
|
|
|
return ret;
|
2016-05-17 13:56:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-21 15:59:37 +00:00
|
|
|
static int
|
|
|
|
qemuDomainDeviceDefValidate(const virDomainDeviceDef *dev,
|
|
|
|
const virDomainDef *def ATTRIBUTE_UNUSED,
|
|
|
|
void *opaque)
|
|
|
|
{
|
|
|
|
virQEMUDriverPtr driver = opaque;
|
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_NET) {
|
|
|
|
const virDomainNetDef *net = dev->data.net;
|
|
|
|
|
|
|
|
if (net->guestIP.nroutes || net->guestIP.nips) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("Invalid attempt to set network interface "
|
|
|
|
"guest-side IP route and/or address info, "
|
|
|
|
"not supported by QEMU"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
2016-08-18 16:19:13 +00:00
|
|
|
|
|
|
|
if (STREQ_NULLABLE(net->model, "virtio") &&
|
|
|
|
net->driver.virtio.rx_queue_size & (net->driver.virtio.rx_queue_size - 1)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("rx_queue_size has to be a power of two"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
2016-06-21 15:59:37 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-07-30 22:51:30 +00:00
|
|
|
static const char *
|
2015-09-07 06:51:00 +00:00
|
|
|
qemuDomainDefaultNetModel(const virDomainDef *def,
|
|
|
|
virQEMUCapsPtr qemuCaps)
|
maint: avoid 'const fooPtr' in domain_conf
'const fooPtr' is the same as 'foo * const' (the pointer won't
change, but it's contents can). But in general, if an interface
is trying to be const-correct, it should be using 'const foo *'
(the pointer is to data that can't be changed).
Fix up offenders in src/conf/domain_conf, and their fallout.
Several things to note: virObjectLock() requires a non-const
argument; if this were C++, we could treat the locking field
as 'mutable' and allow locking an otherwise 'const' object, but
that is a more invasive change, so I instead dropped attempts
to be const-correct on domain lookup. virXMLPropString and
friends require a non-const xmlNodePtr - this is because libxml2
is not a const-correct library. We could make the src/util/virxml
wrappers cast away const, but I figured it was easier to not
try to mark xmlNodePtr as const. Finally, virDomainDeviceDefCopy
was a rather hard conversion - it calls virDomainDeviceDefPostParse,
which in turn in the xen driver was actually modifying the domain
outside of the current device being visited. We should not be
adding a device on the first per-device callback, but waiting until
after all per-device callbacks are complete.
* src/conf/domain_conf.h (virDomainObjListFindByID)
(virDomainObjListFindByUUID, virDomainObjListFindByName)
(virDomainObjAssignDef, virDomainObjListAdd): Drop attempt at
const.
(virDomainDeviceDefCopy): Use intended type.
(virDomainDeviceDefParse, virDomainDeviceDefPostParseCallback)
(virDomainVideoDefaultType, virDomainVideoDefaultRAM)
(virDomainChrGetDomainPtrs): Make const-correct.
* src/conf/domain_conf.c (virDomainObjListFindByID)
(virDomainObjListFindByUUID, virDomainObjListFindByName)
(virDomainDeviceDefCopy, virDomainObjListAdd)
(virDomainObjAssignDef, virDomainHostdevSubsysUsbDefParseXML)
(virDomainHostdevSubsysPciOrigStatesDefParseXML)
(virDomainHostdevSubsysPciDefParseXML)
(virDomainHostdevSubsysScsiDefParseXML)
(virDomainControllerModelTypeFromString)
(virDomainTPMDefParseXML, virDomainTimerDefParseXML)
(virDomainSoundCodecDefParseXML, virDomainSoundDefParseXML)
(virDomainWatchdogDefParseXML, virDomainRNGDefParseXML)
(virDomainMemballoonDefParseXML, virDomainNVRAMDefParseXML)
(virSysinfoParseXML, virDomainVideoAccelDefParseXML)
(virDomainVideoDefParseXML, virDomainHostdevDefParseXML)
(virDomainRedirdevDefParseXML)
(virDomainRedirFilterUsbDevDefParseXML)
(virDomainRedirFilterDefParseXML, virDomainIdMapEntrySort)
(virDomainIdmapDefParseXML, virDomainVcpuPinDefParseXML)
(virDiskNameToBusDeviceIndex, virDomainDeviceDefCopy)
(virDomainVideoDefaultType, virDomainHostdevAssignAddress)
(virDomainDeviceDefPostParseInternal, virDomainDeviceDefPostParse)
(virDomainChrGetDomainPtrs, virDomainControllerSCSINextUnit)
(virDomainSCSIDriveAddressIsUsed)
(virDomainDriveAddressIsUsedByDisk)
(virDomainDriveAddressIsUsedByHostdev): Fix fallout.
* src/openvz/openvz_driver.c (openvzDomainDeviceDefPostParse):
Likewise.
* src/libxl/libxl_domain.c (libxlDomainDeviceDefPostParse):
Likewise.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainDefaultNetModel): Likewise.
* src/lxc/lxc_domain.c (virLXCDomainDeviceDefPostParse):
Likewise.
* src/uml/uml_driver.c (umlDomainDeviceDefPostParse): Likewise.
* src/xen/xen_driver.c (xenDomainDeviceDefPostParse): Split...
(xenDomainDefPostParse): ...since per-device callback is not the
time to be adding a device.
Signed-off-by: Eric Blake <eblake@redhat.com>
2013-10-08 15:08:25 +00:00
|
|
|
{
|
2015-02-18 15:44:19 +00:00
|
|
|
if (ARCH_IS_S390(def->os.arch))
|
2013-07-30 22:51:30 +00:00
|
|
|
return "virtio";
|
|
|
|
|
2014-02-14 14:09:00 +00:00
|
|
|
if (def->os.arch == VIR_ARCH_ARMV7L ||
|
|
|
|
def->os.arch == VIR_ARCH_AARCH64) {
|
2013-07-30 22:51:30 +00:00
|
|
|
if (STREQ(def->os.machine, "versatilepb"))
|
|
|
|
return "smc91c111";
|
|
|
|
|
2016-05-03 08:49:40 +00:00
|
|
|
if (qemuDomainMachineIsVirt(def))
|
2013-11-19 21:49:40 +00:00
|
|
|
return "virtio";
|
|
|
|
|
2013-07-30 22:51:30 +00:00
|
|
|
/* Incomplete. vexpress (and a few others) use this, but not all
|
|
|
|
* arm boards */
|
|
|
|
return "lan9118";
|
|
|
|
}
|
|
|
|
|
2015-09-07 06:51:00 +00:00
|
|
|
/* Try several network devices in turn; each of these devices is
|
|
|
|
* less likely be supported out-of-the-box by the guest operating
|
|
|
|
* system than the previous one */
|
|
|
|
if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_DEVICE_RTL8139))
|
|
|
|
return "rtl8139";
|
|
|
|
else if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_DEVICE_E1000))
|
|
|
|
return "e1000";
|
|
|
|
else if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_DEVICE_VIRTIO_NET))
|
|
|
|
return "virtio";
|
|
|
|
|
|
|
|
/* We've had no luck detecting support for any network device,
|
|
|
|
* but we have to return something: might as well be rtl8139 */
|
2013-07-30 22:51:30 +00:00
|
|
|
return "rtl8139";
|
|
|
|
}
|
2013-03-11 11:12:08 +00:00
|
|
|
|
2016-07-08 15:25:03 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Clear auto generated unix socket path, i.e., the one which starts with our
|
|
|
|
* channel directory.
|
|
|
|
*/
|
|
|
|
static void
|
|
|
|
qemuDomainChrDefDropDefaultPath(virDomainChrDefPtr chr,
|
|
|
|
virQEMUDriverPtr driver)
|
|
|
|
{
|
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
|
|
|
|
if (chr->deviceType == VIR_DOMAIN_CHR_DEVICE_TYPE_CHANNEL &&
|
|
|
|
chr->targetType == VIR_DOMAIN_CHR_CHANNEL_TARGET_TYPE_VIRTIO &&
|
|
|
|
chr->source.type == VIR_DOMAIN_CHR_TYPE_UNIX &&
|
|
|
|
chr->source.data.nix.path &&
|
|
|
|
STRPREFIX(chr->source.data.nix.path, cfg->channelTargetDir)) {
|
|
|
|
VIR_FREE(chr->source.data.nix.path);
|
|
|
|
}
|
|
|
|
|
|
|
|
virObjectUnref(cfg);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-02-19 16:33:52 +00:00
|
|
|
static int
|
|
|
|
qemuDomainDeviceDefPostParse(virDomainDeviceDefPtr dev,
|
maint: avoid 'const fooPtr' in domain_conf
'const fooPtr' is the same as 'foo * const' (the pointer won't
change, but it's contents can). But in general, if an interface
is trying to be const-correct, it should be using 'const foo *'
(the pointer is to data that can't be changed).
Fix up offenders in src/conf/domain_conf, and their fallout.
Several things to note: virObjectLock() requires a non-const
argument; if this were C++, we could treat the locking field
as 'mutable' and allow locking an otherwise 'const' object, but
that is a more invasive change, so I instead dropped attempts
to be const-correct on domain lookup. virXMLPropString and
friends require a non-const xmlNodePtr - this is because libxml2
is not a const-correct library. We could make the src/util/virxml
wrappers cast away const, but I figured it was easier to not
try to mark xmlNodePtr as const. Finally, virDomainDeviceDefCopy
was a rather hard conversion - it calls virDomainDeviceDefPostParse,
which in turn in the xen driver was actually modifying the domain
outside of the current device being visited. We should not be
adding a device on the first per-device callback, but waiting until
after all per-device callbacks are complete.
* src/conf/domain_conf.h (virDomainObjListFindByID)
(virDomainObjListFindByUUID, virDomainObjListFindByName)
(virDomainObjAssignDef, virDomainObjListAdd): Drop attempt at
const.
(virDomainDeviceDefCopy): Use intended type.
(virDomainDeviceDefParse, virDomainDeviceDefPostParseCallback)
(virDomainVideoDefaultType, virDomainVideoDefaultRAM)
(virDomainChrGetDomainPtrs): Make const-correct.
* src/conf/domain_conf.c (virDomainObjListFindByID)
(virDomainObjListFindByUUID, virDomainObjListFindByName)
(virDomainDeviceDefCopy, virDomainObjListAdd)
(virDomainObjAssignDef, virDomainHostdevSubsysUsbDefParseXML)
(virDomainHostdevSubsysPciOrigStatesDefParseXML)
(virDomainHostdevSubsysPciDefParseXML)
(virDomainHostdevSubsysScsiDefParseXML)
(virDomainControllerModelTypeFromString)
(virDomainTPMDefParseXML, virDomainTimerDefParseXML)
(virDomainSoundCodecDefParseXML, virDomainSoundDefParseXML)
(virDomainWatchdogDefParseXML, virDomainRNGDefParseXML)
(virDomainMemballoonDefParseXML, virDomainNVRAMDefParseXML)
(virSysinfoParseXML, virDomainVideoAccelDefParseXML)
(virDomainVideoDefParseXML, virDomainHostdevDefParseXML)
(virDomainRedirdevDefParseXML)
(virDomainRedirFilterUsbDevDefParseXML)
(virDomainRedirFilterDefParseXML, virDomainIdMapEntrySort)
(virDomainIdmapDefParseXML, virDomainVcpuPinDefParseXML)
(virDiskNameToBusDeviceIndex, virDomainDeviceDefCopy)
(virDomainVideoDefaultType, virDomainHostdevAssignAddress)
(virDomainDeviceDefPostParseInternal, virDomainDeviceDefPostParse)
(virDomainChrGetDomainPtrs, virDomainControllerSCSINextUnit)
(virDomainSCSIDriveAddressIsUsed)
(virDomainDriveAddressIsUsedByDisk)
(virDomainDriveAddressIsUsedByHostdev): Fix fallout.
* src/openvz/openvz_driver.c (openvzDomainDeviceDefPostParse):
Likewise.
* src/libxl/libxl_domain.c (libxlDomainDeviceDefPostParse):
Likewise.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainDefaultNetModel): Likewise.
* src/lxc/lxc_domain.c (virLXCDomainDeviceDefPostParse):
Likewise.
* src/uml/uml_driver.c (umlDomainDeviceDefPostParse): Likewise.
* src/xen/xen_driver.c (xenDomainDeviceDefPostParse): Split...
(xenDomainDefPostParse): ...since per-device callback is not the
time to be adding a device.
Signed-off-by: Eric Blake <eblake@redhat.com>
2013-10-08 15:08:25 +00:00
|
|
|
const virDomainDef *def,
|
2016-06-15 11:48:19 +00:00
|
|
|
virCapsPtr caps,
|
2016-01-08 12:59:20 +00:00
|
|
|
unsigned int parseFlags,
|
2016-09-23 08:53:38 +00:00
|
|
|
void *opaque,
|
|
|
|
void *parseOpaque ATTRIBUTE_UNUSED)
|
2013-02-19 16:33:52 +00:00
|
|
|
{
|
2013-03-11 09:24:29 +00:00
|
|
|
virQEMUDriverPtr driver = opaque;
|
2015-09-07 06:51:00 +00:00
|
|
|
virQEMUCapsPtr qemuCaps = NULL;
|
2015-09-23 08:03:10 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
2015-09-07 06:51:00 +00:00
|
|
|
int ret = -1;
|
2013-03-11 09:24:29 +00:00
|
|
|
|
2016-06-15 11:48:19 +00:00
|
|
|
qemuCaps = virQEMUCapsCacheLookup(caps, driver->qemuCapsCache,
|
|
|
|
def->emulator);
|
2015-09-07 06:51:00 +00:00
|
|
|
|
2013-02-19 16:33:52 +00:00
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_NET &&
|
2013-04-05 09:52:49 +00:00
|
|
|
dev->data.net->type != VIR_DOMAIN_NET_TYPE_HOSTDEV &&
|
|
|
|
!dev->data.net->model) {
|
2013-05-20 09:23:13 +00:00
|
|
|
if (VIR_STRDUP(dev->data.net->model,
|
2015-09-07 06:51:00 +00:00
|
|
|
qemuDomainDefaultNetModel(def, qemuCaps)) < 0)
|
2013-05-20 09:23:13 +00:00
|
|
|
goto cleanup;
|
2013-02-19 16:33:52 +00:00
|
|
|
}
|
2013-03-11 09:24:29 +00:00
|
|
|
|
2013-03-13 14:28:11 +00:00
|
|
|
/* set default disk types and drivers */
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_DISK) {
|
|
|
|
virDomainDiskDefPtr disk = dev->data.disk;
|
|
|
|
|
2015-09-23 08:03:10 +00:00
|
|
|
/* assign default storage format and driver according to config */
|
|
|
|
if (cfg->allowDiskFormatProbing) {
|
|
|
|
/* default disk format for drives */
|
|
|
|
if (virDomainDiskGetFormat(disk) == VIR_STORAGE_FILE_NONE &&
|
|
|
|
(virDomainDiskGetType(disk) == VIR_STORAGE_TYPE_FILE ||
|
|
|
|
virDomainDiskGetType(disk) == VIR_STORAGE_TYPE_BLOCK))
|
|
|
|
virDomainDiskSetFormat(disk, VIR_STORAGE_FILE_AUTO);
|
|
|
|
|
|
|
|
/* default disk format for mirrored drive */
|
|
|
|
if (disk->mirror &&
|
|
|
|
disk->mirror->format == VIR_STORAGE_FILE_NONE)
|
|
|
|
disk->mirror->format = VIR_STORAGE_FILE_AUTO;
|
|
|
|
} else {
|
|
|
|
/* default driver if probing is forbidden */
|
|
|
|
if (!virDomainDiskGetDriver(disk) &&
|
|
|
|
virDomainDiskSetDriver(disk, "qemu") < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
/* default disk format for drives */
|
|
|
|
if (virDomainDiskGetFormat(disk) == VIR_STORAGE_FILE_NONE &&
|
|
|
|
(virDomainDiskGetType(disk) == VIR_STORAGE_TYPE_FILE ||
|
|
|
|
virDomainDiskGetType(disk) == VIR_STORAGE_TYPE_BLOCK))
|
|
|
|
virDomainDiskSetFormat(disk, VIR_STORAGE_FILE_RAW);
|
|
|
|
|
|
|
|
/* default disk format for mirrored drive */
|
|
|
|
if (disk->mirror &&
|
|
|
|
disk->mirror->format == VIR_STORAGE_FILE_NONE)
|
|
|
|
disk->mirror->format = VIR_STORAGE_FILE_RAW;
|
2013-03-11 09:24:29 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-03-13 20:39:34 +00:00
|
|
|
/* set the default console type for S390 arches */
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_CHR &&
|
|
|
|
dev->data.chr->deviceType == VIR_DOMAIN_CHR_DEVICE_TYPE_CONSOLE &&
|
|
|
|
dev->data.chr->targetType == VIR_DOMAIN_CHR_CONSOLE_TARGET_TYPE_NONE &&
|
2015-02-18 15:44:19 +00:00
|
|
|
ARCH_IS_S390(def->os.arch))
|
2013-03-13 20:39:34 +00:00
|
|
|
dev->data.chr->targetType = VIR_DOMAIN_CHR_CONSOLE_TARGET_TYPE_VIRTIO;
|
|
|
|
|
2013-04-29 16:11:29 +00:00
|
|
|
/* set the default USB model to none for s390 unless an address is found */
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_CONTROLLER &&
|
|
|
|
dev->data.controller->type == VIR_DOMAIN_CONTROLLER_TYPE_USB &&
|
|
|
|
dev->data.controller->model == -1 &&
|
|
|
|
dev->data.controller->info.type == VIR_DOMAIN_DEVICE_ADDRESS_TYPE_NONE &&
|
2015-02-18 15:44:19 +00:00
|
|
|
ARCH_IS_S390(def->os.arch))
|
2013-04-29 16:11:29 +00:00
|
|
|
dev->data.controller->model = VIR_DOMAIN_CONTROLLER_MODEL_USB_NONE;
|
|
|
|
|
2016-06-15 06:00:14 +00:00
|
|
|
/* forbid usb model 'qusb1' and 'qusb2' in this kind of hyperviosr */
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_CONTROLLER &&
|
|
|
|
dev->data.controller->type == VIR_DOMAIN_CONTROLLER_TYPE_USB &&
|
|
|
|
(dev->data.controller->model == VIR_DOMAIN_CONTROLLER_MODEL_USB_QUSB1 ||
|
|
|
|
dev->data.controller->model == VIR_DOMAIN_CONTROLLER_MODEL_USB_QUSB2)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("USB controller model type 'qusb1' or 'qusb2' "
|
|
|
|
"is not supported in %s"),
|
|
|
|
virDomainVirtTypeToString(def->virtType));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-03-20 15:01:10 +00:00
|
|
|
/* set the default SCSI controller model for S390 arches */
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_CONTROLLER &&
|
|
|
|
dev->data.controller->type == VIR_DOMAIN_CONTROLLER_TYPE_SCSI &&
|
|
|
|
dev->data.controller->model == -1 &&
|
|
|
|
ARCH_IS_S390(def->os.arch))
|
|
|
|
dev->data.controller->model = VIR_DOMAIN_CONTROLLER_MODEL_SCSI_VIRTIO_SCSI;
|
|
|
|
|
2016-01-08 12:59:20 +00:00
|
|
|
/* clear auto generated unix socket path for inactive definitions */
|
|
|
|
if ((parseFlags & VIR_DOMAIN_DEF_PARSE_INACTIVE) &&
|
2016-07-08 15:25:03 +00:00
|
|
|
dev->type == VIR_DOMAIN_DEVICE_CHR)
|
|
|
|
qemuDomainChrDefDropDefaultPath(dev->data.chr, driver);
|
2013-04-09 17:04:00 +00:00
|
|
|
|
2014-06-25 06:45:59 +00:00
|
|
|
/* forbid capabilities mode hostdev in this kind of hypervisor */
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_HOSTDEV &&
|
|
|
|
dev->data.hostdev->mode == VIR_DOMAIN_HOSTDEV_MODE_CAPABILITIES) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("hostdev mode 'capabilities' is not "
|
|
|
|
"supported in %s"),
|
|
|
|
virDomainVirtTypeToString(def->virtType));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
2014-11-20 18:52:00 +00:00
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_VIDEO &&
|
|
|
|
dev->data.video->type == VIR_DOMAIN_VIDEO_TYPE_QXL) {
|
|
|
|
if (dev->data.video->vgamem) {
|
|
|
|
if (dev->data.video->vgamem < 1024) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("value for 'vgamem' must be at least 1 MiB "
|
|
|
|
"(1024 KiB)"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
if (dev->data.video->vgamem != VIR_ROUND_UP_POWER_OF_TWO(dev->data.video->vgamem)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("value for 'vgamem' must be power of two"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
} else {
|
2015-01-12 12:18:46 +00:00
|
|
|
dev->data.video->vgamem = QEMU_QXL_VGAMEM_DEFAULT;
|
2014-11-20 18:52:00 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-11-24 12:26:33 +00:00
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_PANIC &&
|
|
|
|
dev->data.panic->model == VIR_DOMAIN_PANIC_MODEL_DEFAULT) {
|
2016-06-23 08:19:05 +00:00
|
|
|
if (qemuDomainMachineIsPSeries(def))
|
2015-11-24 12:26:33 +00:00
|
|
|
dev->data.panic->model = VIR_DOMAIN_PANIC_MODEL_PSERIES;
|
2016-04-29 13:23:41 +00:00
|
|
|
else if (ARCH_IS_S390(def->os.arch))
|
|
|
|
dev->data.panic->model = VIR_DOMAIN_PANIC_MODEL_S390;
|
2015-11-24 12:26:33 +00:00
|
|
|
else
|
|
|
|
dev->data.panic->model = VIR_DOMAIN_PANIC_MODEL_ISA;
|
|
|
|
}
|
|
|
|
|
2016-03-04 19:35:20 +00:00
|
|
|
|
|
|
|
if (dev->type == VIR_DOMAIN_DEVICE_CONTROLLER) {
|
|
|
|
virDomainControllerDefPtr cont = dev->data.controller;
|
|
|
|
|
2016-03-23 19:49:29 +00:00
|
|
|
if (cont->type == VIR_DOMAIN_CONTROLLER_TYPE_PCI) {
|
|
|
|
if (cont->model == VIR_DOMAIN_CONTROLLER_MODEL_PCI_EXPANDER_BUS &&
|
|
|
|
!qemuDomainMachineIsI440FX(def)) {
|
2016-03-04 19:35:20 +00:00
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("pci-expander-bus controllers are only supported "
|
|
|
|
"on 440fx-based machinetypes"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
2016-03-23 19:49:29 +00:00
|
|
|
if (cont->model == VIR_DOMAIN_CONTROLLER_MODEL_PCIE_EXPANDER_BUS &&
|
|
|
|
!qemuDomainMachineIsQ35(def)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("pcie-expander-bus controllers are only supported "
|
|
|
|
"on q35-based machinetypes"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
2016-03-04 19:35:20 +00:00
|
|
|
|
|
|
|
/* if a PCI expander bus has a NUMA node set, make sure
|
|
|
|
* that NUMA node is configured in the guest <cpu><numa>
|
|
|
|
* array. NUMA cell id's in this array are numbered
|
|
|
|
* from 0 .. size-1.
|
|
|
|
*/
|
2016-03-23 19:49:29 +00:00
|
|
|
if ((cont->model == VIR_DOMAIN_CONTROLLER_MODEL_PCI_EXPANDER_BUS ||
|
|
|
|
cont->model == VIR_DOMAIN_CONTROLLER_MODEL_PCIE_EXPANDER_BUS) &&
|
|
|
|
(int) virDomainNumaGetNodeCount(def->numa)
|
2016-03-04 19:35:20 +00:00
|
|
|
<= cont->opts.pciopts.numaNode) {
|
|
|
|
virReportError(VIR_ERR_XML_ERROR,
|
2016-03-23 19:49:29 +00:00
|
|
|
_("%s with index %d is "
|
2016-03-04 19:35:20 +00:00
|
|
|
"configured for a NUMA node (%d) "
|
|
|
|
"not present in the domain's "
|
|
|
|
"<cpu><numa> array (%zu)"),
|
2016-03-23 19:49:29 +00:00
|
|
|
virDomainControllerModelPCITypeToString(cont->model),
|
2016-03-04 19:35:20 +00:00
|
|
|
cont->idx, cont->opts.pciopts.numaNode,
|
|
|
|
virDomainNumaGetNodeCount(def->numa));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
2016-07-28 13:33:29 +00:00
|
|
|
} else if (cont->type == VIR_DOMAIN_CONTROLLER_TYPE_USB &&
|
|
|
|
cont->model == -1) {
|
|
|
|
/* Pick a suitable default model for the USB controller if none
|
|
|
|
* has been selected by the user.
|
|
|
|
*
|
|
|
|
* We rely on device availability instead of setting the model
|
|
|
|
* unconditionally because, for some machine types, there's a
|
|
|
|
* chance we will get away with using the legacy USB controller
|
|
|
|
* when the relevant device is not available.
|
|
|
|
*
|
|
|
|
* See qemuBuildControllerDevCommandLine() */
|
|
|
|
if (ARCH_IS_PPC64(def->os.arch)) {
|
|
|
|
/* Default USB controller for ppc64 is pci-ohci */
|
|
|
|
if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_PCI_OHCI))
|
|
|
|
cont->model = VIR_DOMAIN_CONTROLLER_MODEL_USB_PCI_OHCI;
|
|
|
|
} else {
|
|
|
|
/* Default USB controller for anything else is piix3-uhci */
|
|
|
|
if (virQEMUCapsGet(qemuCaps, QEMU_CAPS_PIIX3_USB_UHCI))
|
|
|
|
cont->model = VIR_DOMAIN_CONTROLLER_MODEL_USB_PIIX3_UHCI;
|
|
|
|
}
|
2016-03-04 19:35:20 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-03-11 09:24:29 +00:00
|
|
|
ret = 0;
|
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2015-09-07 06:51:00 +00:00
|
|
|
virObjectUnref(qemuCaps);
|
2013-03-11 09:24:29 +00:00
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ret;
|
2013-02-19 16:33:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-05-14 18:52:45 +00:00
|
|
|
static int
|
|
|
|
qemuDomainDefAssignAddresses(virDomainDef *def,
|
2016-06-15 11:48:19 +00:00
|
|
|
virCapsPtr caps,
|
2016-05-14 18:52:45 +00:00
|
|
|
unsigned int parseFlags ATTRIBUTE_UNUSED,
|
2016-09-23 09:04:39 +00:00
|
|
|
void *opaque,
|
|
|
|
void *parseOpaque ATTRIBUTE_UNUSED)
|
2016-05-14 18:52:45 +00:00
|
|
|
{
|
|
|
|
virQEMUDriverPtr driver = opaque;
|
|
|
|
virQEMUCapsPtr qemuCaps = NULL;
|
|
|
|
int ret = -1;
|
2016-06-16 15:15:53 +00:00
|
|
|
bool newDomain = parseFlags & VIR_DOMAIN_DEF_PARSE_ABI_UPDATE;
|
2016-05-14 18:52:45 +00:00
|
|
|
|
2016-06-15 11:48:19 +00:00
|
|
|
if (!(qemuCaps = virQEMUCapsCacheLookup(caps,
|
|
|
|
driver->qemuCapsCache,
|
2016-05-14 18:52:45 +00:00
|
|
|
def->emulator)))
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-06-16 15:15:53 +00:00
|
|
|
if (qemuDomainAssignAddresses(def, qemuCaps, NULL, newDomain) < 0)
|
2016-05-14 18:52:45 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(qemuCaps);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-02-19 16:33:52 +00:00
|
|
|
virDomainDefParserConfig virQEMUDriverDomainDefParserConfig = {
|
|
|
|
.devicesPostParseCallback = qemuDomainDeviceDefPostParse,
|
2013-03-11 11:12:08 +00:00
|
|
|
.domainPostParseCallback = qemuDomainDefPostParse,
|
2016-05-14 18:52:45 +00:00
|
|
|
.assignAddressesCallback = qemuDomainDefAssignAddresses,
|
2016-05-17 13:56:51 +00:00
|
|
|
.domainValidateCallback = qemuDomainDefValidate,
|
2016-06-21 15:59:37 +00:00
|
|
|
.deviceValidateCallback = qemuDomainDeviceDefValidate,
|
|
|
|
|
2016-02-12 13:57:45 +00:00
|
|
|
.features = VIR_DOMAIN_DEF_FEATURE_MEMORY_HOTPLUG |
|
2016-08-04 12:36:24 +00:00
|
|
|
VIR_DOMAIN_DEF_FEATURE_OFFLINE_VCPUPIN |
|
|
|
|
VIR_DOMAIN_DEF_FEATURE_INDIVIDUAL_VCPUS,
|
2013-02-19 16:33:52 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
2011-07-19 00:27:31 +00:00
|
|
|
static void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjSaveJob(virQEMUDriverPtr driver, virDomainObjPtr obj)
|
2011-06-06 08:34:33 +00:00
|
|
|
{
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
|
|
|
|
if (virDomainObjIsActive(obj)) {
|
2016-02-04 12:32:45 +00:00
|
|
|
if (virDomainSaveStatus(driver->xmlopt, cfg->stateDir, obj, driver->caps) < 0)
|
2013-01-10 21:03:14 +00:00
|
|
|
VIR_WARN("Failed to save status on vm %s", obj->def->name);
|
2011-06-06 08:28:38 +00:00
|
|
|
}
|
2011-06-06 08:34:33 +00:00
|
|
|
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2011-06-06 08:34:33 +00:00
|
|
|
}
|
|
|
|
|
2011-06-06 08:30:54 +00:00
|
|
|
void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjSetJobPhase(virQEMUDriverPtr driver,
|
2011-06-06 08:30:54 +00:00
|
|
|
virDomainObjPtr obj,
|
|
|
|
int phase)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
build: avoid non-portable cast of pthread_t
POSIX says pthread_t is opaque. We can't guarantee if it is scaler
or a pointer, nor what size it is; and BSD differs from Linux.
We've also had reports of gcc complaining on attempts to cast it,
if we use a cast to the wrong type (for example, pointers have to be
cast to void* or intptr_t before being narrowed; while casting a
function return of scalar pthread_t to void* triggers a different
warning).
Give up on casts, and use unions to get at decent bits instead. And
rather than futz around with figuring which 32 bits of a potentially
64-bit pointer are most likely to be unique, convert the rest of
the code base to use 64-bit values when using a debug id.
Based on a report by Guido Günther against kFreeBSD, but with a
fix that doesn't regress commit 4d970fd29 for FreeBSD.
* src/util/virthreadpthread.c (virThreadSelfID, virThreadID): Use
union to get at a decent bit representation of thread_t bits.
* src/util/virthread.h (virThreadSelfID, virThreadID): Alter
signature.
* src/util/virthreadwin32.c (virThreadSelfID, virThreadID):
Likewise.
* src/qemu/qemu_domain.h (qemuDomainJobObj): Alter type of owner.
* src/qemu/qemu_domain.c (qemuDomainObjTransferJob)
(qemuDomainObjSetJobPhase, qemuDomainObjReleaseAsyncJob)
(qemuDomainObjBeginNestedJob, qemuDomainObjBeginJobInternal): Fix
clients.
* src/util/virlog.c (virLogFormatString): Likewise.
* src/util/vireventpoll.c (virEventPollInterruptLocked):
Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2013-05-02 20:23:02 +00:00
|
|
|
unsigned long long me = virThreadSelfID();
|
2011-06-06 08:30:54 +00:00
|
|
|
|
|
|
|
if (!priv->job.asyncJob)
|
|
|
|
return;
|
|
|
|
|
2012-04-06 16:55:46 +00:00
|
|
|
VIR_DEBUG("Setting '%s' phase to '%s'",
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
qemuDomainAsyncJobPhaseToString(priv->job.asyncJob, phase));
|
|
|
|
|
|
|
|
if (priv->job.asyncOwner && me != priv->job.asyncOwner) {
|
build: avoid non-portable cast of pthread_t
POSIX says pthread_t is opaque. We can't guarantee if it is scaler
or a pointer, nor what size it is; and BSD differs from Linux.
We've also had reports of gcc complaining on attempts to cast it,
if we use a cast to the wrong type (for example, pointers have to be
cast to void* or intptr_t before being narrowed; while casting a
function return of scalar pthread_t to void* triggers a different
warning).
Give up on casts, and use unions to get at decent bits instead. And
rather than futz around with figuring which 32 bits of a potentially
64-bit pointer are most likely to be unique, convert the rest of
the code base to use 64-bit values when using a debug id.
Based on a report by Guido Günther against kFreeBSD, but with a
fix that doesn't regress commit 4d970fd29 for FreeBSD.
* src/util/virthreadpthread.c (virThreadSelfID, virThreadID): Use
union to get at a decent bit representation of thread_t bits.
* src/util/virthread.h (virThreadSelfID, virThreadID): Alter
signature.
* src/util/virthreadwin32.c (virThreadSelfID, virThreadID):
Likewise.
* src/qemu/qemu_domain.h (qemuDomainJobObj): Alter type of owner.
* src/qemu/qemu_domain.c (qemuDomainObjTransferJob)
(qemuDomainObjSetJobPhase, qemuDomainObjReleaseAsyncJob)
(qemuDomainObjBeginNestedJob, qemuDomainObjBeginJobInternal): Fix
clients.
* src/util/virlog.c (virLogFormatString): Likewise.
* src/util/vireventpoll.c (virEventPollInterruptLocked):
Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2013-05-02 20:23:02 +00:00
|
|
|
VIR_WARN("'%s' async job is owned by thread %llu",
|
2012-04-06 16:55:46 +00:00
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
priv->job.asyncOwner);
|
|
|
|
}
|
|
|
|
|
2011-06-06 08:30:54 +00:00
|
|
|
priv->job.phase = phase;
|
2012-04-06 16:55:46 +00:00
|
|
|
priv->job.asyncOwner = me;
|
2011-06-06 08:30:54 +00:00
|
|
|
qemuDomainObjSaveJob(driver, obj);
|
|
|
|
}
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
void
|
2011-06-30 09:23:50 +00:00
|
|
|
qemuDomainObjSetAsyncJobMask(virDomainObjPtr obj,
|
|
|
|
unsigned long long allowedJobs)
|
2011-06-06 08:34:33 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
2011-06-30 09:23:50 +00:00
|
|
|
if (!priv->job.asyncJob)
|
|
|
|
return;
|
|
|
|
|
|
|
|
priv->job.mask = allowedJobs | JOB_MASK(QEMU_JOB_DESTROY);
|
|
|
|
}
|
|
|
|
|
|
|
|
void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjDiscardAsyncJob(virQEMUDriverPtr driver, virDomainObjPtr obj)
|
2011-06-30 09:23:50 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
|
|
|
if (priv->job.active == QEMU_JOB_ASYNC_NESTED)
|
|
|
|
qemuDomainObjResetJob(priv);
|
|
|
|
qemuDomainObjResetAsyncJob(priv);
|
2011-06-06 08:28:38 +00:00
|
|
|
qemuDomainObjSaveJob(driver, obj);
|
2011-06-30 09:23:50 +00:00
|
|
|
}
|
|
|
|
|
2012-04-06 16:55:46 +00:00
|
|
|
void
|
|
|
|
qemuDomainObjReleaseAsyncJob(virDomainObjPtr obj)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
|
|
|
VIR_DEBUG("Releasing ownership of '%s' async job",
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob));
|
|
|
|
|
|
|
|
if (priv->job.asyncOwner != virThreadSelfID()) {
|
build: avoid non-portable cast of pthread_t
POSIX says pthread_t is opaque. We can't guarantee if it is scaler
or a pointer, nor what size it is; and BSD differs from Linux.
We've also had reports of gcc complaining on attempts to cast it,
if we use a cast to the wrong type (for example, pointers have to be
cast to void* or intptr_t before being narrowed; while casting a
function return of scalar pthread_t to void* triggers a different
warning).
Give up on casts, and use unions to get at decent bits instead. And
rather than futz around with figuring which 32 bits of a potentially
64-bit pointer are most likely to be unique, convert the rest of
the code base to use 64-bit values when using a debug id.
Based on a report by Guido Günther against kFreeBSD, but with a
fix that doesn't regress commit 4d970fd29 for FreeBSD.
* src/util/virthreadpthread.c (virThreadSelfID, virThreadID): Use
union to get at a decent bit representation of thread_t bits.
* src/util/virthread.h (virThreadSelfID, virThreadID): Alter
signature.
* src/util/virthreadwin32.c (virThreadSelfID, virThreadID):
Likewise.
* src/qemu/qemu_domain.h (qemuDomainJobObj): Alter type of owner.
* src/qemu/qemu_domain.c (qemuDomainObjTransferJob)
(qemuDomainObjSetJobPhase, qemuDomainObjReleaseAsyncJob)
(qemuDomainObjBeginNestedJob, qemuDomainObjBeginJobInternal): Fix
clients.
* src/util/virlog.c (virLogFormatString): Likewise.
* src/util/vireventpoll.c (virEventPollInterruptLocked):
Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2013-05-02 20:23:02 +00:00
|
|
|
VIR_WARN("'%s' async job is owned by thread %llu",
|
2012-04-06 16:55:46 +00:00
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
priv->job.asyncOwner);
|
|
|
|
}
|
|
|
|
priv->job.asyncOwner = 0;
|
|
|
|
}
|
|
|
|
|
2011-06-30 09:23:50 +00:00
|
|
|
static bool
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainNestedJobAllowed(qemuDomainObjPrivatePtr priv, qemuDomainJob job)
|
2011-06-30 09:23:50 +00:00
|
|
|
{
|
|
|
|
return !priv->job.asyncJob || (priv->job.mask & JOB_MASK(job)) != 0;
|
2011-06-06 08:34:33 +00:00
|
|
|
}
|
|
|
|
|
2011-09-29 13:14:13 +00:00
|
|
|
bool
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainJobAllowed(qemuDomainObjPrivatePtr priv, qemuDomainJob job)
|
2011-09-29 13:14:13 +00:00
|
|
|
{
|
|
|
|
return !priv->job.active && qemuDomainNestedJobAllowed(priv, job);
|
|
|
|
}
|
|
|
|
|
2010-12-16 16:12:02 +00:00
|
|
|
/* Give up waiting for mutex after 30 seconds */
|
|
|
|
#define QEMU_JOB_WAIT_TIME (1000ull * 30)
|
|
|
|
|
2011-06-30 09:21:34 +00:00
|
|
|
/*
|
2013-02-06 18:17:20 +00:00
|
|
|
* obj must be locked before calling
|
2011-06-30 09:21:34 +00:00
|
|
|
*/
|
2011-06-06 08:28:38 +00:00
|
|
|
static int ATTRIBUTE_NONNULL(1)
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjBeginJobInternal(virQEMUDriverPtr driver,
|
2011-06-30 09:23:50 +00:00
|
|
|
virDomainObjPtr obj,
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainJob job,
|
|
|
|
qemuDomainAsyncJob asyncJob)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
2011-06-01 10:35:18 +00:00
|
|
|
unsigned long long now;
|
2010-12-16 16:12:02 +00:00
|
|
|
unsigned long long then;
|
2011-06-30 09:23:50 +00:00
|
|
|
bool nested = job == QEMU_JOB_ASYNC_NESTED;
|
2015-10-30 08:37:14 +00:00
|
|
|
bool async = job == QEMU_JOB_ASYNC;
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
2015-03-16 17:18:46 +00:00
|
|
|
const char *blocker = NULL;
|
2014-08-21 13:08:39 +00:00
|
|
|
int ret = -1;
|
2015-03-23 11:46:45 +00:00
|
|
|
unsigned long long duration = 0;
|
|
|
|
unsigned long long asyncDuration = 0;
|
2015-10-30 08:37:14 +00:00
|
|
|
const char *jobStr;
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2015-10-30 08:37:14 +00:00
|
|
|
if (async)
|
|
|
|
jobStr = qemuDomainAsyncJobTypeToString(asyncJob);
|
|
|
|
else
|
|
|
|
jobStr = qemuDomainJobTypeToString(job);
|
|
|
|
|
|
|
|
VIR_DEBUG("Starting %s: %s (vm=%p name=%s, current job=%s async=%s)",
|
|
|
|
async ? "async job" : "job", jobStr, obj, obj->def->name,
|
|
|
|
qemuDomainJobTypeToString(priv->job.active),
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob));
|
2013-10-31 11:27:10 +00:00
|
|
|
|
2013-01-10 21:03:14 +00:00
|
|
|
if (virTimeMillisNow(&now) < 0) {
|
|
|
|
virObjectUnref(cfg);
|
2010-12-16 16:12:02 +00:00
|
|
|
return -1;
|
2013-01-10 21:03:14 +00:00
|
|
|
}
|
|
|
|
|
2014-09-09 07:17:58 +00:00
|
|
|
priv->jobs_queued++;
|
2011-06-01 10:35:18 +00:00
|
|
|
then = now + QEMU_JOB_WAIT_TIME;
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
retry:
|
2013-01-10 21:03:14 +00:00
|
|
|
if (cfg->maxQueuedJobs &&
|
|
|
|
priv->jobs_queued > cfg->maxQueuedJobs) {
|
2011-08-12 13:29:37 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2011-09-29 13:14:13 +00:00
|
|
|
while (!nested && !qemuDomainNestedJobAllowed(priv, job)) {
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Waiting for async job (vm=%p name=%s)", obj, obj->def->name);
|
2013-01-09 21:00:32 +00:00
|
|
|
if (virCondWaitUntil(&priv->job.asyncCond, &obj->parent.lock, then) < 0)
|
2011-06-30 09:23:50 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
while (priv->job.active) {
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Waiting for job (vm=%p name=%s)", obj, obj->def->name);
|
2013-01-09 21:00:32 +00:00
|
|
|
if (virCondWaitUntil(&priv->job.cond, &obj->parent.lock, then) < 0)
|
2011-06-30 09:23:50 +00:00
|
|
|
goto error;
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
2011-06-30 09:23:50 +00:00
|
|
|
|
|
|
|
/* No job is active but a new async job could have been started while obj
|
|
|
|
* was unlocked, so we need to recheck it. */
|
2011-09-29 13:14:13 +00:00
|
|
|
if (!nested && !qemuDomainNestedJobAllowed(priv, job))
|
2011-06-30 09:23:50 +00:00
|
|
|
goto retry;
|
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
qemuDomainObjResetJob(priv);
|
2011-06-30 09:23:50 +00:00
|
|
|
|
2015-03-23 11:46:45 +00:00
|
|
|
ignore_value(virTimeMillisNow(&now));
|
|
|
|
|
2011-06-30 09:23:50 +00:00
|
|
|
if (job != QEMU_JOB_ASYNC) {
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Started job: %s (async=%s vm=%p name=%s)",
|
2011-10-13 10:32:38 +00:00
|
|
|
qemuDomainJobTypeToString(job),
|
2013-10-31 11:27:10 +00:00
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
obj, obj->def->name);
|
2011-06-30 09:23:50 +00:00
|
|
|
priv->job.active = job;
|
2012-04-06 16:55:46 +00:00
|
|
|
priv->job.owner = virThreadSelfID();
|
2015-03-16 17:18:46 +00:00
|
|
|
priv->job.ownerAPI = virThreadJobGet();
|
2015-03-23 11:46:45 +00:00
|
|
|
priv->job.started = now;
|
2011-06-30 09:23:50 +00:00
|
|
|
} else {
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Started async job: %s (vm=%p name=%s)",
|
|
|
|
qemuDomainAsyncJobTypeToString(asyncJob),
|
|
|
|
obj, obj->def->name);
|
2011-06-30 09:23:50 +00:00
|
|
|
qemuDomainObjResetAsyncJob(priv);
|
2014-08-21 13:08:39 +00:00
|
|
|
if (VIR_ALLOC(priv->job.current) < 0)
|
|
|
|
goto cleanup;
|
2011-06-30 09:23:50 +00:00
|
|
|
priv->job.asyncJob = asyncJob;
|
2012-04-06 16:55:46 +00:00
|
|
|
priv->job.asyncOwner = virThreadSelfID();
|
2015-03-16 17:18:46 +00:00
|
|
|
priv->job.asyncOwnerAPI = virThreadJobGet();
|
2015-03-23 11:46:45 +00:00
|
|
|
priv->job.asyncStarted = now;
|
2014-08-21 13:08:39 +00:00
|
|
|
priv->job.current->started = now;
|
2011-06-30 09:23:50 +00:00
|
|
|
}
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2012-04-06 17:42:34 +00:00
|
|
|
if (qemuDomainTrackJob(job))
|
|
|
|
qemuDomainObjSaveJob(driver, obj);
|
2011-06-06 08:28:38 +00:00
|
|
|
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2010-12-16 16:12:02 +00:00
|
|
|
return 0;
|
2011-06-30 09:23:50 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
error:
|
2015-03-23 11:46:45 +00:00
|
|
|
ignore_value(virTimeMillisNow(&now));
|
|
|
|
if (priv->job.active && priv->job.started)
|
|
|
|
duration = now - priv->job.started;
|
|
|
|
if (priv->job.asyncJob && priv->job.asyncStarted)
|
|
|
|
asyncDuration = now - priv->job.asyncStarted;
|
|
|
|
|
2015-03-16 17:18:46 +00:00
|
|
|
VIR_WARN("Cannot start job (%s, %s) for domain %s; "
|
2015-03-23 11:46:45 +00:00
|
|
|
"current job is (%s, %s) owned by (%llu %s, %llu %s) "
|
|
|
|
"for (%llus, %llus)",
|
2012-04-06 16:55:46 +00:00
|
|
|
qemuDomainJobTypeToString(job),
|
|
|
|
qemuDomainAsyncJobTypeToString(asyncJob),
|
|
|
|
obj->def->name,
|
|
|
|
qemuDomainJobTypeToString(priv->job.active),
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
2015-03-16 17:18:46 +00:00
|
|
|
priv->job.owner, NULLSTR(priv->job.ownerAPI),
|
2015-03-23 11:46:45 +00:00
|
|
|
priv->job.asyncOwner, NULLSTR(priv->job.asyncOwnerAPI),
|
|
|
|
duration / 1000, asyncDuration / 1000);
|
2015-03-16 17:18:46 +00:00
|
|
|
|
|
|
|
if (nested || qemuDomainNestedJobAllowed(priv, job))
|
|
|
|
blocker = priv->job.ownerAPI;
|
|
|
|
else
|
|
|
|
blocker = priv->job.asyncOwnerAPI;
|
2012-04-06 16:55:46 +00:00
|
|
|
|
2014-05-13 12:39:35 +00:00
|
|
|
ret = -1;
|
|
|
|
if (errno == ETIMEDOUT) {
|
2015-03-16 17:18:46 +00:00
|
|
|
if (blocker) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_TIMEOUT,
|
|
|
|
_("cannot acquire state change lock (held by %s)"),
|
|
|
|
blocker);
|
|
|
|
} else {
|
|
|
|
virReportError(VIR_ERR_OPERATION_TIMEOUT, "%s",
|
|
|
|
_("cannot acquire state change lock"));
|
|
|
|
}
|
2014-05-13 12:39:35 +00:00
|
|
|
ret = -2;
|
|
|
|
} else if (cfg->maxQueuedJobs &&
|
|
|
|
priv->jobs_queued > cfg->maxQueuedJobs) {
|
2015-03-16 17:18:46 +00:00
|
|
|
if (blocker) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_FAILED,
|
|
|
|
_("cannot acquire state change lock (held by %s) "
|
|
|
|
"due to max_queued limit"),
|
|
|
|
blocker);
|
|
|
|
} else {
|
|
|
|
virReportError(VIR_ERR_OPERATION_FAILED, "%s",
|
|
|
|
_("cannot acquire state change lock "
|
|
|
|
"due to max_queued limit"));
|
|
|
|
}
|
2014-05-13 12:39:35 +00:00
|
|
|
ret = -2;
|
|
|
|
} else {
|
2015-03-16 17:18:46 +00:00
|
|
|
virReportSystemError(errno, "%s", _("cannot acquire job mutex"));
|
2014-05-13 12:39:35 +00:00
|
|
|
}
|
2014-08-21 13:08:39 +00:00
|
|
|
|
|
|
|
cleanup:
|
2011-08-12 13:29:37 +00:00
|
|
|
priv->jobs_queued--;
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2014-05-13 12:39:35 +00:00
|
|
|
return ret;
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
2013-02-06 18:17:20 +00:00
|
|
|
* obj must be locked before calling
|
2011-06-30 09:21:34 +00:00
|
|
|
*
|
|
|
|
* This must be called by anything that will change the VM state
|
|
|
|
* in any way, or anything that will use the QEMU monitor.
|
|
|
|
*
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
* Successful calls must be followed by EndJob eventually
|
2011-06-30 09:21:34 +00:00
|
|
|
*/
|
2012-11-28 16:43:10 +00:00
|
|
|
int qemuDomainObjBeginJob(virQEMUDriverPtr driver,
|
2011-06-06 08:28:38 +00:00
|
|
|
virDomainObjPtr obj,
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainJob job)
|
2011-06-30 09:23:50 +00:00
|
|
|
{
|
2014-05-13 12:39:35 +00:00
|
|
|
if (qemuDomainObjBeginJobInternal(driver, obj, job,
|
|
|
|
QEMU_ASYNC_JOB_NONE) < 0)
|
|
|
|
return -1;
|
|
|
|
else
|
|
|
|
return 0;
|
2011-06-30 09:23:50 +00:00
|
|
|
}
|
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
int qemuDomainObjBeginAsyncJob(virQEMUDriverPtr driver,
|
2011-06-06 08:28:38 +00:00
|
|
|
virDomainObjPtr obj,
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainAsyncJob asyncJob)
|
2011-06-30 09:21:34 +00:00
|
|
|
{
|
2014-05-13 12:39:35 +00:00
|
|
|
if (qemuDomainObjBeginJobInternal(driver, obj, QEMU_JOB_ASYNC,
|
|
|
|
asyncJob) < 0)
|
|
|
|
return -1;
|
|
|
|
else
|
|
|
|
return 0;
|
2011-06-30 09:21:34 +00:00
|
|
|
}
|
|
|
|
|
2016-01-28 12:57:12 +00:00
|
|
|
int
|
2013-02-28 11:48:01 +00:00
|
|
|
qemuDomainObjBeginNestedJob(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr obj,
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainAsyncJob asyncJob)
|
2013-02-28 11:48:01 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
|
|
|
if (asyncJob != priv->job.asyncJob) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("unexpected async job %d"), asyncJob);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (priv->job.asyncOwner != virThreadSelfID()) {
|
build: avoid non-portable cast of pthread_t
POSIX says pthread_t is opaque. We can't guarantee if it is scaler
or a pointer, nor what size it is; and BSD differs from Linux.
We've also had reports of gcc complaining on attempts to cast it,
if we use a cast to the wrong type (for example, pointers have to be
cast to void* or intptr_t before being narrowed; while casting a
function return of scalar pthread_t to void* triggers a different
warning).
Give up on casts, and use unions to get at decent bits instead. And
rather than futz around with figuring which 32 bits of a potentially
64-bit pointer are most likely to be unique, convert the rest of
the code base to use 64-bit values when using a debug id.
Based on a report by Guido Günther against kFreeBSD, but with a
fix that doesn't regress commit 4d970fd29 for FreeBSD.
* src/util/virthreadpthread.c (virThreadSelfID, virThreadID): Use
union to get at a decent bit representation of thread_t bits.
* src/util/virthread.h (virThreadSelfID, virThreadID): Alter
signature.
* src/util/virthreadwin32.c (virThreadSelfID, virThreadID):
Likewise.
* src/qemu/qemu_domain.h (qemuDomainJobObj): Alter type of owner.
* src/qemu/qemu_domain.c (qemuDomainObjTransferJob)
(qemuDomainObjSetJobPhase, qemuDomainObjReleaseAsyncJob)
(qemuDomainObjBeginNestedJob, qemuDomainObjBeginJobInternal): Fix
clients.
* src/util/virlog.c (virLogFormatString): Likewise.
* src/util/vireventpoll.c (virEventPollInterruptLocked):
Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2013-05-02 20:23:02 +00:00
|
|
|
VIR_WARN("This thread doesn't seem to be the async job owner: %llu",
|
2013-02-28 11:48:01 +00:00
|
|
|
priv->job.asyncOwner);
|
|
|
|
}
|
|
|
|
|
|
|
|
return qemuDomainObjBeginJobInternal(driver, obj,
|
|
|
|
QEMU_JOB_ASYNC_NESTED,
|
|
|
|
QEMU_ASYNC_JOB_NONE);
|
|
|
|
}
|
|
|
|
|
2011-06-30 09:23:50 +00:00
|
|
|
|
2010-12-16 16:12:02 +00:00
|
|
|
/*
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
* obj must be locked and have a reference before calling
|
2010-12-16 16:12:02 +00:00
|
|
|
*
|
|
|
|
* To be called after completing the work associated with the
|
|
|
|
* earlier qemuDomainBeginJob() call
|
|
|
|
*/
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
void
|
|
|
|
qemuDomainObjEndJob(virQEMUDriverPtr driver, virDomainObjPtr obj)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainJob job = priv->job.active;
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2011-08-12 13:29:37 +00:00
|
|
|
priv->jobs_queued--;
|
|
|
|
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Stopping job: %s (async=%s vm=%p name=%s)",
|
2012-04-06 17:42:34 +00:00
|
|
|
qemuDomainJobTypeToString(job),
|
2013-10-31 11:27:10 +00:00
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
obj, obj->def->name);
|
2011-10-13 10:32:38 +00:00
|
|
|
|
2011-06-06 08:34:33 +00:00
|
|
|
qemuDomainObjResetJob(priv);
|
2012-04-06 17:42:34 +00:00
|
|
|
if (qemuDomainTrackJob(job))
|
|
|
|
qemuDomainObjSaveJob(driver, obj);
|
2011-06-06 08:34:33 +00:00
|
|
|
virCondSignal(&priv->job.cond);
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
|
|
|
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjEndAsyncJob(virQEMUDriverPtr driver, virDomainObjPtr obj)
|
2011-06-30 09:23:50 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
2011-07-03 21:55:47 +00:00
|
|
|
|
2011-08-12 13:29:37 +00:00
|
|
|
priv->jobs_queued--;
|
|
|
|
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Stopping async job: %s (vm=%p name=%s)",
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
obj, obj->def->name);
|
2011-10-13 10:32:38 +00:00
|
|
|
|
2011-06-30 09:23:50 +00:00
|
|
|
qemuDomainObjResetAsyncJob(priv);
|
2011-06-06 08:28:38 +00:00
|
|
|
qemuDomainObjSaveJob(driver, obj);
|
2011-06-30 09:23:50 +00:00
|
|
|
virCondBroadcast(&priv->job.asyncCond);
|
|
|
|
}
|
|
|
|
|
2012-11-08 13:49:55 +00:00
|
|
|
void
|
|
|
|
qemuDomainObjAbortAsyncJob(virDomainObjPtr obj)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Requesting abort of async job: %s (vm=%p name=%s)",
|
|
|
|
qemuDomainAsyncJobTypeToString(priv->job.asyncJob),
|
|
|
|
obj, obj->def->name);
|
2012-11-08 13:49:55 +00:00
|
|
|
|
2015-05-15 13:59:49 +00:00
|
|
|
priv->job.abortJob = true;
|
|
|
|
virDomainObjBroadcast(obj);
|
2012-11-08 13:49:55 +00:00
|
|
|
}
|
|
|
|
|
2013-02-06 18:17:20 +00:00
|
|
|
/*
|
|
|
|
* obj must be locked before calling
|
|
|
|
*
|
|
|
|
* To be called immediately before any QEMU monitor API call
|
|
|
|
* Must have already either called qemuDomainObjBeginJob() and checked
|
|
|
|
* that the VM is still active; may not be used for nested async jobs.
|
|
|
|
*
|
|
|
|
* To be followed with qemuDomainObjExitMonitor() once complete
|
|
|
|
*/
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
static int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjEnterMonitorInternal(virQEMUDriverPtr driver,
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
virDomainObjPtr obj,
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainAsyncJob asyncJob)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
if (asyncJob != QEMU_ASYNC_JOB_NONE) {
|
2014-05-13 12:45:31 +00:00
|
|
|
int ret;
|
|
|
|
if ((ret = qemuDomainObjBeginNestedJob(driver, obj, asyncJob)) < 0)
|
|
|
|
return ret;
|
2011-06-30 09:23:50 +00:00
|
|
|
if (!virDomainObjIsActive(obj)) {
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_OPERATION_FAILED, "%s",
|
|
|
|
_("domain is no longer running"));
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
qemuDomainObjEndJob(driver, obj);
|
2011-06-30 09:23:50 +00:00
|
|
|
return -1;
|
|
|
|
}
|
2012-04-10 14:39:33 +00:00
|
|
|
} else if (priv->job.asyncOwner == virThreadSelfID()) {
|
|
|
|
VIR_WARN("This thread seems to be the async job owner; entering"
|
|
|
|
" monitor without asking for a nested job is dangerous");
|
2011-06-30 09:23:50 +00:00
|
|
|
}
|
|
|
|
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Entering monitor (mon=%p vm=%p name=%s)",
|
|
|
|
priv->mon, obj, obj->def->name);
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectLock(priv->mon);
|
2012-07-11 13:35:47 +00:00
|
|
|
virObjectRef(priv->mon);
|
2011-11-29 12:33:23 +00:00
|
|
|
ignore_value(virTimeMillisNow(&priv->monStart));
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectUnlock(obj);
|
2011-06-30 09:23:50 +00:00
|
|
|
|
|
|
|
return 0;
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
|
|
|
|
2011-06-06 08:28:38 +00:00
|
|
|
static void ATTRIBUTE_NONNULL(1)
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjExitMonitorInternal(virQEMUDriverPtr driver,
|
2011-07-03 21:55:47 +00:00
|
|
|
virDomainObjPtr obj)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
2012-07-11 13:35:47 +00:00
|
|
|
bool hasRefs;
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2012-07-11 13:35:47 +00:00
|
|
|
hasRefs = virObjectUnref(priv->mon);
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2012-07-11 13:35:47 +00:00
|
|
|
if (hasRefs)
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectUnlock(priv->mon);
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectLock(obj);
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Exited monitor (mon=%p vm=%p name=%s)",
|
|
|
|
priv->mon, obj, obj->def->name);
|
2010-12-16 16:12:02 +00:00
|
|
|
|
2011-05-31 16:34:20 +00:00
|
|
|
priv->monStart = 0;
|
2012-07-11 13:35:47 +00:00
|
|
|
if (!hasRefs)
|
2010-12-16 16:12:02 +00:00
|
|
|
priv->mon = NULL;
|
2011-06-30 09:23:50 +00:00
|
|
|
|
2016-01-28 12:48:17 +00:00
|
|
|
if (priv->job.active == QEMU_JOB_ASYNC_NESTED)
|
|
|
|
qemuDomainObjEndJob(driver, obj);
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
void qemuDomainObjEnterMonitor(virQEMUDriverPtr driver,
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
virDomainObjPtr obj)
|
2011-07-03 21:55:47 +00:00
|
|
|
{
|
2013-02-06 18:17:20 +00:00
|
|
|
ignore_value(qemuDomainObjEnterMonitorInternal(driver, obj,
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
QEMU_ASYNC_JOB_NONE));
|
2011-07-03 21:55:47 +00:00
|
|
|
}
|
|
|
|
|
2013-02-06 18:17:20 +00:00
|
|
|
/* obj must NOT be locked before calling
|
2011-07-03 21:55:47 +00:00
|
|
|
*
|
|
|
|
* Should be paired with an earlier qemuDomainObjEnterMonitor() call
|
2014-12-12 15:57:21 +00:00
|
|
|
*
|
|
|
|
* Returns -1 if the domain is no longer alive after exiting the monitor.
|
|
|
|
* In that case, the caller should be careful when using obj's data,
|
|
|
|
* e.g. the live definition in vm->def has been freed by qemuProcessStop
|
|
|
|
* and replaced by the persistent definition, so pointers stolen
|
|
|
|
* from the live definition could no longer be valid.
|
2011-07-03 21:55:47 +00:00
|
|
|
*/
|
2014-12-12 15:57:21 +00:00
|
|
|
int qemuDomainObjExitMonitor(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr obj)
|
2011-07-03 21:55:47 +00:00
|
|
|
{
|
2013-02-06 18:17:20 +00:00
|
|
|
qemuDomainObjExitMonitorInternal(driver, obj);
|
2014-12-12 15:57:21 +00:00
|
|
|
if (!virDomainObjIsActive(obj)) {
|
2015-03-19 03:14:39 +00:00
|
|
|
if (!virGetLastError())
|
|
|
|
virReportError(VIR_ERR_OPERATION_FAILED, "%s",
|
|
|
|
_("domain is no longer running"));
|
2014-12-12 15:57:21 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
return 0;
|
2011-07-03 21:55:47 +00:00
|
|
|
}
|
2010-12-16 16:12:02 +00:00
|
|
|
|
|
|
|
/*
|
2013-02-06 18:17:20 +00:00
|
|
|
* obj must be locked before calling
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
*
|
|
|
|
* To be called immediately before any QEMU monitor API call.
|
2013-02-06 18:17:20 +00:00
|
|
|
* Must have already either called qemuDomainObjBeginJob()
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
* and checked that the VM is still active, with asyncJob of
|
|
|
|
* QEMU_ASYNC_JOB_NONE; or already called qemuDomainObjBeginAsyncJob,
|
|
|
|
* with the same asyncJob.
|
|
|
|
*
|
|
|
|
* Returns 0 if job was started, in which case this must be followed with
|
2014-05-13 12:45:31 +00:00
|
|
|
* qemuDomainObjExitMonitor(); -2 if waiting for the nested job times out;
|
|
|
|
* or -1 if the job could not be started (probably because the vm exited
|
|
|
|
* in the meantime).
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
*/
|
|
|
|
int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainObjEnterMonitorAsync(virQEMUDriverPtr driver,
|
qemu: fix crash when mixing sync and async monitor jobs
Currently, we attempt to run sync job and async job at the same time. It
means that the monitor commands for two jobs can be run in any order.
In the function qemuDomainObjEnterMonitorInternal():
if (priv->job.active == QEMU_JOB_NONE && priv->job.asyncJob) {
if (qemuDomainObjBeginNestedJob(driver, obj) < 0)
We check whether the caller is an async job by priv->job.active and
priv->job.asynJob. But when an async job is running, and a sync job is
also running at the time of the check, then priv->job.active is not
QEMU_JOB_NONE. So we cannot check whether the caller is an async job
in the function qemuDomainObjEnterMonitorInternal(), and must instead
put the burden on the caller to tell us when an async command wants
to do a nested job.
Once the burden is on the caller, then only async monitor enters need
to worry about whether the VM is still running; for sync monitor enter,
the internal return is always 0, so lots of ignore_value can be dropped.
* src/qemu/THREADS.txt: Reflect new rules.
* src/qemu/qemu_domain.h (qemuDomainObjEnterMonitorAsync): New
prototype.
* src/qemu/qemu_process.h (qemuProcessStartCPUs)
(qemuProcessStopCPUs): Add parameter.
* src/qemu/qemu_migration.h (qemuMigrationToFile): Likewise.
(qemuMigrationWaitForCompletion): Make static.
* src/qemu/qemu_domain.c (qemuDomainObjEnterMonitorInternal): Add
parameter.
(qemuDomainObjEnterMonitorAsync): New function.
(qemuDomainObjEnterMonitor, qemuDomainObjEnterMonitorWithDriver):
Update callers.
* src/qemu/qemu_driver.c (qemuDomainSaveInternal)
(qemudDomainCoreDump, doCoreDump, processWatchdogEvent)
(qemudDomainSuspend, qemudDomainResume, qemuDomainSaveImageStartVM)
(qemuDomainSnapshotCreateActive, qemuDomainRevertToSnapshot):
Likewise.
* src/qemu/qemu_process.c (qemuProcessStopCPUs)
(qemuProcessFakeReboot, qemuProcessRecoverMigration)
(qemuProcessRecoverJob, qemuProcessStart): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationToFile)
(qemuMigrationWaitForCompletion, qemuMigrationUpdateJobStatus)
(qemuMigrationJobStart, qemuDomainMigrateGraphicsRelocate)
(doNativeMigrate, doTunnelMigrate, qemuMigrationPerformJob)
(qemuMigrationPerformPhase, qemuMigrationFinish)
(qemuMigrationConfirm): Likewise.
* src/qemu/qemu_hotplug.c: Drop unneeded ignore_value.
2011-07-28 23:18:24 +00:00
|
|
|
virDomainObjPtr obj,
|
2014-06-15 16:32:56 +00:00
|
|
|
qemuDomainAsyncJob asyncJob)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
2013-02-06 18:17:20 +00:00
|
|
|
return qemuDomainObjEnterMonitorInternal(driver, obj, asyncJob);
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
|
|
|
|
2011-10-05 17:31:54 +00:00
|
|
|
|
2015-10-27 06:09:00 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainGetAgent:
|
|
|
|
* @vm: domain object
|
|
|
|
*
|
|
|
|
* Returns the agent pointer of @vm;
|
|
|
|
*/
|
|
|
|
qemuAgentPtr
|
|
|
|
qemuDomainGetAgent(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
return (((qemuDomainObjPrivatePtr)(vm->privateData))->agent);
|
|
|
|
}
|
|
|
|
|
2011-10-05 17:31:54 +00:00
|
|
|
|
2013-02-06 18:17:20 +00:00
|
|
|
/*
|
|
|
|
* obj must be locked before calling
|
|
|
|
*
|
|
|
|
* To be called immediately before any QEMU agent API call.
|
|
|
|
* Must have already called qemuDomainObjBeginJob() and checked
|
|
|
|
* that the VM is still active.
|
|
|
|
*
|
|
|
|
* To be followed with qemuDomainObjExitAgent() once complete
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainObjEnterAgent(virDomainObjPtr obj)
|
2011-10-05 17:31:54 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
|
|
|
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Entering agent (agent=%p vm=%p name=%s)",
|
|
|
|
priv->agent, obj, obj->def->name);
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectLock(priv->agent);
|
2012-07-11 13:35:47 +00:00
|
|
|
virObjectRef(priv->agent);
|
2011-10-05 17:31:54 +00:00
|
|
|
ignore_value(virTimeMillisNow(&priv->agentStart));
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectUnlock(obj);
|
2011-10-05 17:31:54 +00:00
|
|
|
}
|
|
|
|
|
2013-02-06 18:17:20 +00:00
|
|
|
|
|
|
|
/* obj must NOT be locked before calling
|
|
|
|
*
|
|
|
|
* Should be paired with an earlier qemuDomainObjEnterAgent() call
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainObjExitAgent(virDomainObjPtr obj)
|
2011-10-05 17:31:54 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
2012-07-11 13:35:47 +00:00
|
|
|
bool hasRefs;
|
2011-10-05 17:31:54 +00:00
|
|
|
|
2012-07-11 13:35:47 +00:00
|
|
|
hasRefs = virObjectUnref(priv->agent);
|
2011-10-05 17:31:54 +00:00
|
|
|
|
2012-07-11 13:35:47 +00:00
|
|
|
if (hasRefs)
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectUnlock(priv->agent);
|
2011-10-05 17:31:54 +00:00
|
|
|
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectLock(obj);
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Exited agent (agent=%p vm=%p name=%s)",
|
|
|
|
priv->agent, obj, obj->def->name);
|
2011-10-05 17:31:54 +00:00
|
|
|
|
|
|
|
priv->agentStart = 0;
|
2012-07-11 13:35:47 +00:00
|
|
|
if (!hasRefs)
|
2011-10-05 17:31:54 +00:00
|
|
|
priv->agent = NULL;
|
|
|
|
}
|
|
|
|
|
2013-02-06 18:17:20 +00:00
|
|
|
void qemuDomainObjEnterRemote(virDomainObjPtr obj)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Entering remote (vm=%p name=%s)",
|
|
|
|
obj, obj->def->name);
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectUnlock(obj);
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
|
|
|
|
2013-02-06 18:17:20 +00:00
|
|
|
void qemuDomainObjExitRemote(virDomainObjPtr obj)
|
2010-12-16 16:12:02 +00:00
|
|
|
{
|
2013-01-09 21:00:32 +00:00
|
|
|
virObjectLock(obj);
|
2013-10-31 11:27:10 +00:00
|
|
|
VIR_DEBUG("Exited remote (vm=%p name=%s)",
|
|
|
|
obj, obj->def->name);
|
2010-12-16 16:12:02 +00:00
|
|
|
}
|
2011-01-31 10:47:03 +00:00
|
|
|
|
|
|
|
|
2013-06-11 13:03:17 +00:00
|
|
|
virDomainDefPtr
|
|
|
|
qemuDomainDefCopy(virQEMUDriverPtr driver,
|
|
|
|
virDomainDefPtr src,
|
|
|
|
unsigned int flags)
|
|
|
|
{
|
|
|
|
virBuffer buf = VIR_BUFFER_INITIALIZER;
|
|
|
|
virDomainDefPtr ret = NULL;
|
|
|
|
virCapsPtr caps = NULL;
|
2013-09-03 11:36:22 +00:00
|
|
|
char *xml = NULL;
|
2013-06-11 13:03:17 +00:00
|
|
|
|
|
|
|
if (qemuDomainDefFormatBuf(driver, src, flags, &buf) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
xml = virBufferContentAndReset(&buf);
|
|
|
|
|
|
|
|
if (!(caps = virQEMUDriverGetCapabilities(driver, false)))
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-09-22 15:14:17 +00:00
|
|
|
if (!(ret = virDomainDefParseString(xml, caps, driver->xmlopt, NULL,
|
2016-05-26 13:58:53 +00:00
|
|
|
VIR_DOMAIN_DEF_PARSE_INACTIVE |
|
|
|
|
VIR_DOMAIN_DEF_PARSE_SKIP_VALIDATE)))
|
2013-06-11 13:03:17 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2013-06-11 13:03:17 +00:00
|
|
|
VIR_FREE(xml);
|
|
|
|
virObjectUnref(caps);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
2012-05-04 19:00:13 +00:00
|
|
|
int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainDefFormatBuf(virQEMUDriverPtr driver,
|
2012-05-04 19:00:13 +00:00
|
|
|
virDomainDefPtr def,
|
|
|
|
unsigned int flags,
|
|
|
|
virBuffer *buf)
|
2011-01-31 10:47:03 +00:00
|
|
|
{
|
2012-05-04 19:00:13 +00:00
|
|
|
int ret = -1;
|
2016-07-08 14:44:02 +00:00
|
|
|
virDomainDefPtr copy = NULL;
|
2013-02-01 17:04:15 +00:00
|
|
|
virCapsPtr caps = NULL;
|
|
|
|
|
|
|
|
if (!(caps = virQEMUDriverGetCapabilities(driver, false)))
|
|
|
|
goto cleanup;
|
2011-01-31 10:47:03 +00:00
|
|
|
|
2016-07-08 14:44:02 +00:00
|
|
|
if (!(flags & (VIR_DOMAIN_XML_UPDATE_CPU | VIR_DOMAIN_XML_MIGRATABLE)))
|
|
|
|
goto format;
|
|
|
|
|
2016-09-22 15:23:03 +00:00
|
|
|
if (!(copy = virDomainDefCopy(def, caps, driver->xmlopt, NULL,
|
2016-07-08 14:44:02 +00:00
|
|
|
flags & VIR_DOMAIN_XML_MIGRATABLE)))
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
def = copy;
|
|
|
|
|
2011-01-31 10:47:03 +00:00
|
|
|
/* Update guest CPU requirements according to host CPU */
|
2011-12-19 14:41:16 +00:00
|
|
|
if ((flags & VIR_DOMAIN_XML_UPDATE_CPU) &&
|
2016-07-08 14:44:02 +00:00
|
|
|
def->cpu &&
|
2016-06-22 13:53:48 +00:00
|
|
|
(def->cpu->mode != VIR_CPU_MODE_CUSTOM ||
|
|
|
|
def->cpu->model)) {
|
2016-06-23 13:27:07 +00:00
|
|
|
if (virCPUUpdate(def->os.arch, def->cpu, caps->host.cpu) < 0)
|
2011-01-31 10:47:03 +00:00
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
2012-10-08 09:58:05 +00:00
|
|
|
if ((flags & VIR_DOMAIN_XML_MIGRATABLE)) {
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2013-04-25 17:22:39 +00:00
|
|
|
int toremove = 0;
|
2013-04-22 12:16:13 +00:00
|
|
|
virDomainControllerDefPtr usb = NULL, pci = NULL;
|
2012-05-04 19:23:17 +00:00
|
|
|
|
|
|
|
/* If only the default USB controller is present, we can remove it
|
|
|
|
* and make the XML compatible with older versions of libvirt which
|
|
|
|
* didn't support USB controllers in the XML but always added the
|
|
|
|
* default one to qemu anyway.
|
|
|
|
*/
|
|
|
|
for (i = 0; i < def->ncontrollers; i++) {
|
|
|
|
if (def->controllers[i]->type == VIR_DOMAIN_CONTROLLER_TYPE_USB) {
|
|
|
|
if (usb) {
|
|
|
|
usb = NULL;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
usb = def->controllers[i];
|
|
|
|
}
|
|
|
|
}
|
2016-08-12 15:10:40 +00:00
|
|
|
|
|
|
|
/* In order to maintain compatibility with version of libvirt that
|
|
|
|
* didn't support <controller type='usb'/> (<= 0.9.4), we need to
|
|
|
|
* drop the default USB controller, ie. a USB controller at index
|
|
|
|
* zero with no model or with the default piix3-ohci model.
|
|
|
|
*
|
|
|
|
* However, we only need to do so for x86 i440fx machine types,
|
|
|
|
* because other architectures and machine types were introduced
|
|
|
|
* when libvirt already supported <controller type='usb'/>.
|
2016-04-29 14:01:51 +00:00
|
|
|
*/
|
2016-05-04 08:31:05 +00:00
|
|
|
if (ARCH_IS_X86(def->os.arch) && qemuDomainMachineIsI440FX(def) &&
|
2016-08-12 15:10:40 +00:00
|
|
|
usb && usb->idx == 0 &&
|
|
|
|
(usb->model == -1 ||
|
|
|
|
usb->model == VIR_DOMAIN_CONTROLLER_MODEL_USB_PIIX3_UHCI)) {
|
2012-05-04 19:23:17 +00:00
|
|
|
VIR_DEBUG("Removing default USB controller from domain '%s'"
|
|
|
|
" for migration compatibility", def->name);
|
2013-04-25 17:22:39 +00:00
|
|
|
toremove++;
|
2013-04-22 12:16:13 +00:00
|
|
|
} else {
|
|
|
|
usb = NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Remove the default PCI controller if there is only one present
|
|
|
|
* and its model is pci-root */
|
|
|
|
for (i = 0; i < def->ncontrollers; i++) {
|
|
|
|
if (def->controllers[i]->type == VIR_DOMAIN_CONTROLLER_TYPE_PCI) {
|
|
|
|
if (pci) {
|
|
|
|
pci = NULL;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
pci = def->controllers[i];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (pci && pci->idx == 0 &&
|
|
|
|
pci->model == VIR_DOMAIN_CONTROLLER_MODEL_PCI_ROOT) {
|
2013-07-10 19:19:32 +00:00
|
|
|
VIR_DEBUG("Removing default pci-root from domain '%s'"
|
2013-04-22 12:16:13 +00:00
|
|
|
" for migration compatibility", def->name);
|
2013-04-25 17:22:39 +00:00
|
|
|
toremove++;
|
2013-04-22 12:16:13 +00:00
|
|
|
} else {
|
|
|
|
pci = NULL;
|
|
|
|
}
|
|
|
|
|
2013-04-25 17:22:39 +00:00
|
|
|
if (toremove) {
|
2016-07-08 14:44:02 +00:00
|
|
|
virDomainControllerDefPtr *controllers = def->controllers;
|
|
|
|
int ncontrollers = def->ncontrollers;
|
|
|
|
|
2013-04-25 17:22:39 +00:00
|
|
|
if (VIR_ALLOC_N(def->controllers, ncontrollers - toremove) < 0) {
|
2016-07-08 14:44:02 +00:00
|
|
|
def->controllers = controllers;
|
2012-05-04 19:23:17 +00:00
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
|
|
|
def->ncontrollers = 0;
|
|
|
|
for (i = 0; i < ncontrollers; i++) {
|
2013-04-22 12:16:13 +00:00
|
|
|
if (controllers[i] != usb && controllers[i] != pci)
|
2012-05-04 19:23:17 +00:00
|
|
|
def->controllers[def->ncontrollers++] = controllers[i];
|
|
|
|
}
|
2016-07-08 14:44:02 +00:00
|
|
|
|
|
|
|
VIR_FREE(controllers);
|
|
|
|
virDomainControllerDefFree(pci);
|
|
|
|
virDomainControllerDefFree(usb);
|
2012-05-04 19:23:17 +00:00
|
|
|
}
|
2013-04-22 12:16:13 +00:00
|
|
|
|
2016-07-28 13:15:49 +00:00
|
|
|
/* Remove the panic device for selected models if present */
|
|
|
|
for (i = 0; i < def->npanics; i++) {
|
|
|
|
if (def->panics[i]->model == VIR_DOMAIN_PANIC_MODEL_S390 ||
|
|
|
|
def->panics[i]->model == VIR_DOMAIN_PANIC_MODEL_PSERIES) {
|
|
|
|
VIR_DELETE_ELEMENT(def->panics, i, def->npanics);
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-07-08 15:25:03 +00:00
|
|
|
for (i = 0; i < def->nchannels; i++)
|
|
|
|
qemuDomainChrDefDropDefaultPath(def->channels[i], driver);
|
2012-05-04 19:23:17 +00:00
|
|
|
}
|
|
|
|
|
2016-07-08 14:44:02 +00:00
|
|
|
format:
|
|
|
|
ret = virDomainDefFormatInternal(def, caps,
|
2014-11-18 16:44:00 +00:00
|
|
|
virDomainDefFormatConvertXMLFlags(flags),
|
|
|
|
buf);
|
2011-01-31 10:47:03 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2016-07-08 14:44:02 +00:00
|
|
|
virDomainDefFree(copy);
|
2013-02-01 17:04:15 +00:00
|
|
|
virObjectUnref(caps);
|
2011-01-31 10:47:03 +00:00
|
|
|
return ret;
|
|
|
|
}
|
2011-05-04 10:59:20 +00:00
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
char *qemuDomainDefFormatXML(virQEMUDriverPtr driver,
|
2012-05-04 19:00:13 +00:00
|
|
|
virDomainDefPtr def,
|
2012-10-08 09:58:05 +00:00
|
|
|
unsigned int flags)
|
2012-05-04 19:00:13 +00:00
|
|
|
{
|
|
|
|
virBuffer buf = VIR_BUFFER_INITIALIZER;
|
|
|
|
|
2012-10-08 09:58:05 +00:00
|
|
|
if (qemuDomainDefFormatBuf(driver, def, flags, &buf) < 0) {
|
2012-05-04 19:00:13 +00:00
|
|
|
virBufferFreeAndReset(&buf);
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (virBufferError(&buf)) {
|
|
|
|
virReportOOMError();
|
|
|
|
virBufferFreeAndReset(&buf);
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
return virBufferContentAndReset(&buf);
|
|
|
|
}
|
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
char *qemuDomainFormatXML(virQEMUDriverPtr driver,
|
2011-05-27 10:30:26 +00:00
|
|
|
virDomainObjPtr vm,
|
2012-10-08 09:58:05 +00:00
|
|
|
unsigned int flags)
|
2011-05-27 10:30:26 +00:00
|
|
|
{
|
|
|
|
virDomainDefPtr def;
|
|
|
|
|
2016-06-22 13:53:48 +00:00
|
|
|
if ((flags & VIR_DOMAIN_XML_INACTIVE) && vm->newDef) {
|
2011-05-27 10:30:26 +00:00
|
|
|
def = vm->newDef;
|
2016-06-22 13:53:48 +00:00
|
|
|
} else {
|
2011-05-27 10:30:26 +00:00
|
|
|
def = vm->def;
|
2016-06-22 13:53:48 +00:00
|
|
|
if (virDomainObjIsActive(vm))
|
|
|
|
flags &= ~VIR_DOMAIN_XML_UPDATE_CPU;
|
|
|
|
}
|
2011-05-27 10:30:26 +00:00
|
|
|
|
2012-10-08 09:58:05 +00:00
|
|
|
return qemuDomainDefFormatXML(driver, def, flags);
|
2011-05-27 10:30:26 +00:00
|
|
|
}
|
|
|
|
|
2012-03-09 15:42:46 +00:00
|
|
|
char *
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainDefFormatLive(virQEMUDriverPtr driver,
|
2012-03-09 15:42:46 +00:00
|
|
|
virDomainDefPtr def,
|
2012-05-04 19:23:17 +00:00
|
|
|
bool inactive,
|
|
|
|
bool compatible)
|
2012-03-09 15:42:46 +00:00
|
|
|
{
|
|
|
|
unsigned int flags = QEMU_DOMAIN_FORMAT_LIVE_FLAGS;
|
|
|
|
|
|
|
|
if (inactive)
|
|
|
|
flags |= VIR_DOMAIN_XML_INACTIVE;
|
2012-10-08 09:58:05 +00:00
|
|
|
if (compatible)
|
|
|
|
flags |= VIR_DOMAIN_XML_MIGRATABLE;
|
2012-03-09 15:42:46 +00:00
|
|
|
|
2012-10-08 09:58:05 +00:00
|
|
|
return qemuDomainDefFormatXML(driver, def, flags);
|
2012-03-09 15:42:46 +00:00
|
|
|
}
|
|
|
|
|
2011-05-27 10:30:26 +00:00
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
void qemuDomainObjTaint(virQEMUDriverPtr driver,
|
2011-05-04 10:59:20 +00:00
|
|
|
virDomainObjPtr obj,
|
2014-06-01 00:22:30 +00:00
|
|
|
virDomainTaintFlags taint,
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainLogContextPtr logCtxt)
|
2011-05-04 10:59:20 +00:00
|
|
|
{
|
2011-05-05 11:48:07 +00:00
|
|
|
virErrorPtr orig_err = NULL;
|
2015-11-12 12:56:30 +00:00
|
|
|
bool closeLog = false;
|
2011-05-05 11:48:07 +00:00
|
|
|
|
2011-05-04 10:59:20 +00:00
|
|
|
if (virDomainObjTaint(obj, taint)) {
|
|
|
|
char uuidstr[VIR_UUID_STRING_BUFLEN];
|
|
|
|
virUUIDFormat(obj->def->uuid, uuidstr);
|
|
|
|
|
|
|
|
VIR_WARN("Domain id=%d name='%s' uuid=%s is tainted: %s",
|
|
|
|
obj->def->id,
|
|
|
|
obj->def->name,
|
|
|
|
uuidstr,
|
|
|
|
virDomainTaintTypeToString(taint));
|
2011-05-05 11:48:07 +00:00
|
|
|
|
|
|
|
/* We don't care about errors logging taint info, so
|
|
|
|
* preserve original error, and clear any error that
|
|
|
|
* is raised */
|
|
|
|
orig_err = virSaveLastError();
|
2015-11-12 12:56:30 +00:00
|
|
|
if (logCtxt == NULL) {
|
|
|
|
logCtxt = qemuDomainLogContextNew(driver, obj,
|
|
|
|
QEMU_DOMAIN_LOG_CONTEXT_MODE_ATTACH);
|
|
|
|
if (!logCtxt) {
|
|
|
|
if (orig_err) {
|
|
|
|
virSetError(orig_err);
|
|
|
|
virFreeError(orig_err);
|
|
|
|
}
|
|
|
|
VIR_WARN("Unable to open domainlog");
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
closeLog = true;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (qemuDomainLogContextWrite(logCtxt,
|
|
|
|
"Domain id=%d is tainted: %s\n",
|
|
|
|
obj->def->id,
|
|
|
|
virDomainTaintTypeToString(taint)) < 0)
|
2011-05-05 11:48:07 +00:00
|
|
|
virResetLastError();
|
2015-11-12 12:56:30 +00:00
|
|
|
if (closeLog)
|
|
|
|
qemuDomainLogContextFree(logCtxt);
|
2011-05-05 11:48:07 +00:00
|
|
|
if (orig_err) {
|
|
|
|
virSetError(orig_err);
|
|
|
|
virFreeError(orig_err);
|
|
|
|
}
|
2011-05-04 10:59:20 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
void qemuDomainObjCheckTaint(virQEMUDriverPtr driver,
|
2011-05-05 11:48:07 +00:00
|
|
|
virDomainObjPtr obj,
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainLogContextPtr logCtxt)
|
2011-05-04 10:59:20 +00:00
|
|
|
{
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
2014-02-04 15:42:13 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = obj->privateData;
|
2011-05-04 10:59:20 +00:00
|
|
|
|
2015-06-15 18:59:58 +00:00
|
|
|
if (virQEMUDriverIsPrivileged(driver) &&
|
2013-01-10 21:03:14 +00:00
|
|
|
(!cfg->clearEmulatorCapabilities ||
|
|
|
|
cfg->user == 0 ||
|
|
|
|
cfg->group == 0))
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_HIGH_PRIVILEGES, logCtxt);
|
2011-05-04 10:59:20 +00:00
|
|
|
|
2014-02-04 15:42:13 +00:00
|
|
|
if (priv->hookRun)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_HOOK, logCtxt);
|
2014-02-04 15:42:13 +00:00
|
|
|
|
2011-05-04 10:59:20 +00:00
|
|
|
if (obj->def->namespaceData) {
|
|
|
|
qemuDomainCmdlineDefPtr qemucmd = obj->def->namespaceData;
|
|
|
|
if (qemucmd->num_args || qemucmd->num_env)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_CUSTOM_ARGV, logCtxt);
|
2011-05-04 10:59:20 +00:00
|
|
|
}
|
|
|
|
|
2011-08-18 10:56:56 +00:00
|
|
|
if (obj->def->cpu && obj->def->cpu->mode == VIR_CPU_MODE_HOST_PASSTHROUGH)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_HOST_CPU, logCtxt);
|
2011-08-18 10:56:56 +00:00
|
|
|
|
2013-05-21 07:21:20 +00:00
|
|
|
for (i = 0; i < obj->def->ndisks; i++)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjCheckDiskTaint(driver, obj, obj->def->disks[i], logCtxt);
|
2011-05-04 10:59:20 +00:00
|
|
|
|
2014-09-09 22:51:02 +00:00
|
|
|
for (i = 0; i < obj->def->nhostdevs; i++)
|
|
|
|
qemuDomainObjCheckHostdevTaint(driver, obj, obj->def->hostdevs[i],
|
2015-11-12 12:56:30 +00:00
|
|
|
logCtxt);
|
2014-09-09 22:51:02 +00:00
|
|
|
|
2013-05-21 07:21:20 +00:00
|
|
|
for (i = 0; i < obj->def->nnets; i++)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjCheckNetTaint(driver, obj, obj->def->nets[i], logCtxt);
|
2013-01-10 21:03:14 +00:00
|
|
|
|
2015-06-26 08:59:33 +00:00
|
|
|
if (obj->def->os.dtb)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_CUSTOM_DTB, logCtxt);
|
2015-06-26 08:59:33 +00:00
|
|
|
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2011-05-04 10:59:20 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
void qemuDomainObjCheckDiskTaint(virQEMUDriverPtr driver,
|
2011-05-04 10:59:20 +00:00
|
|
|
virDomainObjPtr obj,
|
2011-05-05 11:48:07 +00:00
|
|
|
virDomainDiskDefPtr disk,
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainLogContextPtr logCtxt)
|
2011-05-04 10:59:20 +00:00
|
|
|
{
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
int format = virDomainDiskGetFormat(disk);
|
2013-01-10 21:03:14 +00:00
|
|
|
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
if ((!format || format == VIR_STORAGE_FILE_AUTO) &&
|
2013-01-10 21:03:14 +00:00
|
|
|
cfg->allowDiskFormatProbing)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_DISK_PROBING, logCtxt);
|
2012-01-31 04:52:00 +00:00
|
|
|
|
2014-09-18 17:54:18 +00:00
|
|
|
if (disk->rawio == VIR_TRISTATE_BOOL_YES)
|
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_HIGH_PRIVILEGES,
|
2015-11-12 12:56:30 +00:00
|
|
|
logCtxt);
|
2013-01-10 21:03:14 +00:00
|
|
|
|
2015-05-12 19:58:31 +00:00
|
|
|
if (disk->device == VIR_DOMAIN_DISK_DEVICE_CDROM &&
|
|
|
|
virStorageSourceGetActualType(disk->src) == VIR_STORAGE_TYPE_BLOCK &&
|
|
|
|
disk->src->path)
|
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_CDROM_PASSTHROUGH,
|
2015-11-12 12:56:30 +00:00
|
|
|
logCtxt);
|
2015-05-12 19:58:31 +00:00
|
|
|
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2011-05-04 10:59:20 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2014-09-09 22:51:02 +00:00
|
|
|
void qemuDomainObjCheckHostdevTaint(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr obj,
|
|
|
|
virDomainHostdevDefPtr hostdev,
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainLogContextPtr logCtxt)
|
2014-09-09 22:51:02 +00:00
|
|
|
{
|
|
|
|
virDomainHostdevSubsysSCSIPtr scsisrc = &hostdev->source.subsys.u.scsi;
|
|
|
|
|
|
|
|
if (hostdev->source.subsys.type == VIR_DOMAIN_HOSTDEV_SUBSYS_TYPE_SCSI &&
|
|
|
|
scsisrc->rawio == VIR_TRISTATE_BOOL_YES)
|
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_HIGH_PRIVILEGES,
|
2015-11-12 12:56:30 +00:00
|
|
|
logCtxt);
|
2014-09-09 22:51:02 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2012-11-28 16:43:10 +00:00
|
|
|
void qemuDomainObjCheckNetTaint(virQEMUDriverPtr driver,
|
2011-05-04 10:59:20 +00:00
|
|
|
virDomainObjPtr obj,
|
2011-05-05 11:48:07 +00:00
|
|
|
virDomainNetDefPtr net,
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainLogContextPtr logCtxt)
|
2011-05-04 10:59:20 +00:00
|
|
|
{
|
config: report error when script given for inappropriate interface type
This fixes https://bugzilla.redhat.com/show_bug.cgi?id=638633
Although scripts are not used by interfaces of type other than
"ethernet" in qemu, due to the fact that the parser stores the script
name in a union that is only valid when type is ethernet or bridge,
there is no way for anyone except the parser itself to catch the
problem of specifying an interface script for an inappropriate
interface type (by the time the parsed data gets back to the code that
called the parser, all evidence that a script was specified is
forgotten).
Since the parser itself should be agnostic to which type of interface
allows scripts (an example of why: a script specified for an interface
of type bridge is valid for xen domains, but not for qemu domains),
the solution here is to move the script out of the union(s) in the
DomainNetDef, always populate it when specified (regardless of
interface type), and let the driver decide whether or not it is
appropriate.
Currently the qemu, xen, libxml, and uml drivers recognize the script
parameter and do something with it (the uml driver only to report that
it isn't supported). Those drivers have been updated to log a
CONFIG_UNSUPPORTED error when a script is specified for an interface
type that's inappropriate for that particular hypervisor.
(NB: There was earlier discussion of solving this problem by adding a
VALIDATE flag to all libvirt APIs that accept XML, which would cause
the XML to be validated against the RNG files. One statement during
that discussion was that the RNG shouldn't contain hypervisor-specific
things, though, and a proper solution to this problem would require
that (again, because a script for an interface of type "bridge" is
accepted by xen, but not by qemu).
2012-01-06 17:59:47 +00:00
|
|
|
/* script is only useful for NET_TYPE_ETHERNET (qemu) and
|
|
|
|
* NET_TYPE_BRIDGE (xen), but could be (incorrectly) specified for
|
|
|
|
* any interface type. In any case, it's adding user sauce into
|
|
|
|
* the soup, so it should taint the domain.
|
|
|
|
*/
|
|
|
|
if (net->script != NULL)
|
2015-11-12 12:56:30 +00:00
|
|
|
qemuDomainObjTaint(driver, obj, VIR_DOMAIN_TAINT_SHELL_SCRIPTS, logCtxt);
|
2011-05-04 10:59:20 +00:00
|
|
|
}
|
2011-05-05 11:38:04 +00:00
|
|
|
|
|
|
|
|
2015-11-12 12:43:29 +00:00
|
|
|
qemuDomainLogContextPtr qemuDomainLogContextNew(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
qemuDomainLogContextMode mode)
|
|
|
|
{
|
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
qemuDomainLogContextPtr ctxt = NULL;
|
|
|
|
|
|
|
|
if (VIR_ALLOC(ctxt) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
VIR_DEBUG("Context new %p stdioLogD=%d", ctxt, cfg->stdioLogD);
|
2015-11-12 12:43:29 +00:00
|
|
|
ctxt->writefd = -1;
|
|
|
|
ctxt->readfd = -1;
|
|
|
|
virAtomicIntSet(&ctxt->refs, 1);
|
|
|
|
|
2015-12-03 17:20:35 +00:00
|
|
|
if (virAsprintf(&ctxt->path, "%s/%s.log", cfg->logDir, vm->def->name) < 0)
|
|
|
|
goto error;
|
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
if (cfg->stdioLogD) {
|
|
|
|
ctxt->manager = virLogManagerNew(virQEMUDriverIsPrivileged(driver));
|
|
|
|
if (!ctxt->manager)
|
|
|
|
goto error;
|
2015-11-12 12:43:29 +00:00
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
ctxt->writefd = virLogManagerDomainOpenLogFile(ctxt->manager,
|
|
|
|
"qemu",
|
|
|
|
vm->def->uuid,
|
|
|
|
vm->def->name,
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path,
|
2015-11-03 11:13:25 +00:00
|
|
|
0,
|
|
|
|
&ctxt->inode,
|
|
|
|
&ctxt->pos);
|
|
|
|
if (ctxt->writefd < 0)
|
|
|
|
goto error;
|
|
|
|
} else {
|
2015-12-03 17:20:35 +00:00
|
|
|
if ((ctxt->writefd = open(ctxt->path, O_WRONLY | O_CREAT | O_APPEND, S_IRUSR | S_IWUSR)) < 0) {
|
2015-11-03 11:13:25 +00:00
|
|
|
virReportSystemError(errno, _("failed to create logfile %s"),
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path);
|
2015-11-12 12:43:29 +00:00
|
|
|
goto error;
|
|
|
|
}
|
2015-11-03 11:13:25 +00:00
|
|
|
if (virSetCloseExec(ctxt->writefd) < 0) {
|
2015-11-12 12:43:29 +00:00
|
|
|
virReportSystemError(errno, _("failed to set close-on-exec flag on %s"),
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path);
|
2015-11-12 12:43:29 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
/* For unprivileged startup we must truncate the file since
|
|
|
|
* we can't rely on logrotate. We don't use O_TRUNC since
|
|
|
|
* it is better for SELinux policy if we truncate afterwards */
|
|
|
|
if (mode == QEMU_DOMAIN_LOG_CONTEXT_MODE_START &&
|
|
|
|
!virQEMUDriverIsPrivileged(driver) &&
|
|
|
|
ftruncate(ctxt->writefd, 0) < 0) {
|
|
|
|
virReportSystemError(errno, _("failed to truncate %s"),
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path);
|
2015-11-03 11:13:25 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (mode == QEMU_DOMAIN_LOG_CONTEXT_MODE_START) {
|
2015-12-03 17:20:35 +00:00
|
|
|
if ((ctxt->readfd = open(ctxt->path, O_RDONLY, S_IRUSR | S_IWUSR)) < 0) {
|
2015-11-03 11:13:25 +00:00
|
|
|
virReportSystemError(errno, _("failed to open logfile %s"),
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path);
|
2015-11-03 11:13:25 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
if (virSetCloseExec(ctxt->readfd) < 0) {
|
|
|
|
virReportSystemError(errno, _("failed to set close-on-exec flag on %s"),
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path);
|
2015-11-03 11:13:25 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-11-12 12:43:29 +00:00
|
|
|
if ((ctxt->pos = lseek(ctxt->writefd, 0, SEEK_END)) < 0) {
|
|
|
|
virReportSystemError(errno, _("failed to seek in log file %s"),
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path);
|
2015-11-12 12:43:29 +00:00
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-12-03 17:24:10 +00:00
|
|
|
cleanup:
|
2015-11-12 12:43:29 +00:00
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ctxt;
|
|
|
|
|
|
|
|
error:
|
|
|
|
qemuDomainLogContextFree(ctxt);
|
2015-12-03 17:24:10 +00:00
|
|
|
ctxt = NULL;
|
|
|
|
goto cleanup;
|
2015-11-12 12:43:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
int qemuDomainLogContextWrite(qemuDomainLogContextPtr ctxt,
|
|
|
|
const char *fmt, ...)
|
|
|
|
{
|
|
|
|
va_list argptr;
|
|
|
|
char *message = NULL;
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
va_start(argptr, fmt);
|
|
|
|
|
|
|
|
if (virVasprintf(&message, fmt, argptr) < 0)
|
|
|
|
goto cleanup;
|
2015-11-03 11:13:25 +00:00
|
|
|
if (!ctxt->manager &&
|
|
|
|
lseek(ctxt->writefd, 0, SEEK_END) < 0) {
|
2015-11-12 12:43:29 +00:00
|
|
|
virReportSystemError(errno, "%s",
|
2015-11-03 11:13:25 +00:00
|
|
|
_("Unable to seek to end of domain logfile"));
|
2015-11-12 12:43:29 +00:00
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
if (safewrite(ctxt->writefd, message, strlen(message)) < 0) {
|
|
|
|
virReportSystemError(errno, "%s",
|
|
|
|
_("Unable to write to domain logfile"));
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
va_end(argptr);
|
|
|
|
VIR_FREE(message);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
ssize_t qemuDomainLogContextRead(qemuDomainLogContextPtr ctxt,
|
|
|
|
char **msg)
|
|
|
|
{
|
2015-11-03 11:13:25 +00:00
|
|
|
VIR_DEBUG("Context read %p manager=%p inode=%llu pos=%llu",
|
|
|
|
ctxt, ctxt->manager,
|
|
|
|
(unsigned long long)ctxt->inode,
|
|
|
|
(unsigned long long)ctxt->pos);
|
2015-11-12 12:43:29 +00:00
|
|
|
char *buf;
|
2015-11-03 11:13:25 +00:00
|
|
|
size_t buflen;
|
|
|
|
if (ctxt->manager) {
|
|
|
|
buf = virLogManagerDomainReadLogFile(ctxt->manager,
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path,
|
2015-11-03 11:13:25 +00:00
|
|
|
ctxt->inode,
|
|
|
|
ctxt->pos,
|
|
|
|
1024 * 128,
|
|
|
|
0);
|
|
|
|
if (!buf)
|
|
|
|
return -1;
|
|
|
|
buflen = strlen(buf);
|
|
|
|
} else {
|
|
|
|
ssize_t got;
|
2015-11-12 12:43:29 +00:00
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
buflen = 1024 * 128;
|
2015-11-12 12:43:29 +00:00
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
/* Best effort jump to start of messages */
|
|
|
|
ignore_value(lseek(ctxt->readfd, ctxt->pos, SEEK_SET));
|
2015-11-12 12:43:29 +00:00
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
if (VIR_ALLOC_N(buf, buflen) < 0)
|
|
|
|
return -1;
|
2015-11-12 12:43:29 +00:00
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
got = saferead(ctxt->readfd, buf, buflen - 1);
|
|
|
|
if (got < 0) {
|
|
|
|
VIR_FREE(buf);
|
|
|
|
virReportSystemError(errno, "%s",
|
|
|
|
_("Unable to read from log file"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
buf[got] = '\0';
|
|
|
|
|
|
|
|
ignore_value(VIR_REALLOC_N_QUIET(buf, got + 1));
|
|
|
|
buflen = got;
|
|
|
|
}
|
2015-11-12 12:43:29 +00:00
|
|
|
|
|
|
|
*msg = buf;
|
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
return buflen;
|
2015-11-12 12:43:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-07 14:19:03 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainLogAppendMessage:
|
|
|
|
*
|
|
|
|
* This is a best-effort attempt to add a log message to the qemu log file
|
|
|
|
* either by using virtlogd or the legacy approach */
|
|
|
|
int
|
|
|
|
qemuDomainLogAppendMessage(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
const char *fmt,
|
|
|
|
...)
|
|
|
|
{
|
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
virLogManagerPtr manager = NULL;
|
|
|
|
va_list ap;
|
|
|
|
char *path = NULL;
|
|
|
|
int writefd = -1;
|
|
|
|
char *message = NULL;
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
va_start(ap, fmt);
|
|
|
|
|
|
|
|
if (virVasprintf(&message, fmt, ap) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
VIR_DEBUG("Append log message (vm='%s' message='%s) stdioLogD=%d",
|
|
|
|
vm->def->name, message, cfg->stdioLogD);
|
|
|
|
|
|
|
|
if (virAsprintf(&path, "%s/%s.log", cfg->logDir, vm->def->name) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (cfg->stdioLogD) {
|
|
|
|
if (!(manager = virLogManagerNew(virQEMUDriverIsPrivileged(driver))))
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (virLogManagerDomainAppendMessage(manager, "qemu", vm->def->uuid,
|
|
|
|
vm->def->name, path, message, 0) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
} else {
|
|
|
|
if ((writefd = open(path, O_WRONLY | O_CREAT | O_APPEND, S_IRUSR | S_IWUSR)) < 0) {
|
|
|
|
virReportSystemError(errno, _("failed to create logfile %s"),
|
|
|
|
path);
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (safewrite(writefd, message, strlen(message)) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
va_end(ap);
|
|
|
|
VIR_FREE(message);
|
|
|
|
VIR_FORCE_CLOSE(writefd);
|
|
|
|
virLogManagerFree(manager);
|
|
|
|
virObjectUnref(cfg);
|
|
|
|
VIR_FREE(path);
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-11-12 12:43:29 +00:00
|
|
|
int qemuDomainLogContextGetWriteFD(qemuDomainLogContextPtr ctxt)
|
|
|
|
{
|
|
|
|
return ctxt->writefd;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
void qemuDomainLogContextMarkPosition(qemuDomainLogContextPtr ctxt)
|
|
|
|
{
|
2015-11-03 11:13:25 +00:00
|
|
|
if (ctxt->manager)
|
|
|
|
virLogManagerDomainGetLogFilePosition(ctxt->manager,
|
2015-12-03 17:20:35 +00:00
|
|
|
ctxt->path,
|
2015-11-03 11:13:25 +00:00
|
|
|
0,
|
|
|
|
&ctxt->inode,
|
|
|
|
&ctxt->pos);
|
|
|
|
else
|
|
|
|
ctxt->pos = lseek(ctxt->writefd, 0, SEEK_END);
|
2015-11-12 12:43:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
void qemuDomainLogContextRef(qemuDomainLogContextPtr ctxt)
|
|
|
|
{
|
2015-11-03 11:13:25 +00:00
|
|
|
VIR_DEBUG("Context ref %p", ctxt);
|
2015-11-12 12:43:29 +00:00
|
|
|
virAtomicIntInc(&ctxt->refs);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-02-23 13:05:09 +00:00
|
|
|
virLogManagerPtr qemuDomainLogContextGetManager(qemuDomainLogContextPtr ctxt)
|
|
|
|
{
|
|
|
|
return ctxt->manager;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-11-12 12:43:29 +00:00
|
|
|
void qemuDomainLogContextFree(qemuDomainLogContextPtr ctxt)
|
|
|
|
{
|
|
|
|
bool lastRef;
|
|
|
|
|
|
|
|
if (!ctxt)
|
|
|
|
return;
|
|
|
|
|
|
|
|
lastRef = virAtomicIntDecAndTest(&ctxt->refs);
|
2015-11-03 11:13:25 +00:00
|
|
|
VIR_DEBUG("Context free %p lastref=%d", ctxt, lastRef);
|
2015-11-12 12:43:29 +00:00
|
|
|
if (!lastRef)
|
|
|
|
return;
|
|
|
|
|
2015-11-03 11:13:25 +00:00
|
|
|
virLogManagerFree(ctxt->manager);
|
2015-12-03 17:20:35 +00:00
|
|
|
VIR_FREE(ctxt->path);
|
2015-11-12 12:43:29 +00:00
|
|
|
VIR_FORCE_CLOSE(ctxt->writefd);
|
|
|
|
VIR_FORCE_CLOSE(ctxt->readfd);
|
|
|
|
VIR_FREE(ctxt);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2011-09-21 19:08:51 +00:00
|
|
|
/* Locate an appropriate 'qemu-img' binary. */
|
|
|
|
const char *
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuFindQemuImgBinary(virQEMUDriverPtr driver)
|
2011-09-21 19:08:51 +00:00
|
|
|
{
|
2013-01-23 12:19:15 +00:00
|
|
|
if (!driver->qemuImgBinary)
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
2016-04-15 21:00:40 +00:00
|
|
|
"%s", _("unable to find qemu-img"));
|
2011-09-21 19:08:51 +00:00
|
|
|
|
|
|
|
return driver->qemuImgBinary;
|
|
|
|
}
|
|
|
|
|
|
|
|
int
|
|
|
|
qemuDomainSnapshotWriteMetadata(virDomainObjPtr vm,
|
|
|
|
virDomainSnapshotObjPtr snapshot,
|
2016-02-04 22:55:05 +00:00
|
|
|
virCapsPtr caps,
|
2011-09-21 19:08:51 +00:00
|
|
|
char *snapshotDir)
|
|
|
|
{
|
|
|
|
char *newxml = NULL;
|
|
|
|
int ret = -1;
|
|
|
|
char *snapDir = NULL;
|
|
|
|
char *snapFile = NULL;
|
|
|
|
char uuidstr[VIR_UUID_STRING_BUFLEN];
|
|
|
|
|
|
|
|
virUUIDFormat(vm->def->uuid, uuidstr);
|
2014-11-18 16:44:00 +00:00
|
|
|
newxml = virDomainSnapshotDefFormat(
|
2016-02-04 22:55:05 +00:00
|
|
|
uuidstr, snapshot->def, caps,
|
2014-11-18 16:44:00 +00:00
|
|
|
virDomainDefFormatConvertXMLFlags(QEMU_DOMAIN_FORMAT_LIVE_FLAGS),
|
|
|
|
1);
|
2012-03-09 15:42:46 +00:00
|
|
|
if (newxml == NULL)
|
2011-09-21 19:08:51 +00:00
|
|
|
return -1;
|
|
|
|
|
2013-07-04 10:14:12 +00:00
|
|
|
if (virAsprintf(&snapDir, "%s/%s", snapshotDir, vm->def->name) < 0)
|
2011-09-21 19:08:51 +00:00
|
|
|
goto cleanup;
|
|
|
|
if (virFileMakePath(snapDir) < 0) {
|
|
|
|
virReportSystemError(errno, _("cannot create snapshot directory '%s'"),
|
|
|
|
snapDir);
|
|
|
|
goto cleanup;
|
|
|
|
}
|
|
|
|
|
2013-07-04 10:14:12 +00:00
|
|
|
if (virAsprintf(&snapFile, "%s/%s.xml", snapDir, snapshot->def->name) < 0)
|
2011-09-21 19:08:51 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
2012-10-29 12:15:55 +00:00
|
|
|
ret = virXMLSaveFile(snapFile, NULL, "snapshot-edit", newxml);
|
2011-09-21 19:08:51 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2011-09-21 19:08:51 +00:00
|
|
|
VIR_FREE(snapFile);
|
|
|
|
VIR_FREE(snapDir);
|
|
|
|
VIR_FREE(newxml);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* The domain is expected to be locked and inactive. Return -1 on normal
|
|
|
|
* failure, 1 if we skipped a disk due to try_all. */
|
2012-03-17 15:54:44 +00:00
|
|
|
static int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainSnapshotForEachQcow2Raw(virQEMUDriverPtr driver,
|
2012-03-17 15:54:44 +00:00
|
|
|
virDomainDefPtr def,
|
|
|
|
const char *name,
|
|
|
|
const char *op,
|
|
|
|
bool try_all,
|
|
|
|
int ndisks)
|
2011-09-21 19:08:51 +00:00
|
|
|
{
|
|
|
|
const char *qemuimgarg[] = { NULL, "snapshot", NULL, NULL, NULL, NULL };
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2011-09-21 19:08:51 +00:00
|
|
|
bool skipped = false;
|
|
|
|
|
|
|
|
qemuimgarg[0] = qemuFindQemuImgBinary(driver);
|
|
|
|
if (qemuimgarg[0] == NULL) {
|
|
|
|
/* qemuFindQemuImgBinary set the error */
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
qemuimgarg[2] = op;
|
2012-03-17 15:54:44 +00:00
|
|
|
qemuimgarg[3] = name;
|
2011-09-21 19:08:51 +00:00
|
|
|
|
2012-03-17 15:54:44 +00:00
|
|
|
for (i = 0; i < ndisks; i++) {
|
2011-09-21 19:08:51 +00:00
|
|
|
/* FIXME: we also need to handle LVM here */
|
2011-10-04 23:13:48 +00:00
|
|
|
if (def->disks[i]->device == VIR_DOMAIN_DISK_DEVICE_DISK) {
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
int format = virDomainDiskGetFormat(def->disks[i]);
|
|
|
|
|
|
|
|
if (format > 0 && format != VIR_STORAGE_FILE_QCOW2) {
|
2011-09-21 19:08:51 +00:00
|
|
|
if (try_all) {
|
|
|
|
/* Continue on even in the face of error, since other
|
|
|
|
* disks in this VM may have the same snapshot name.
|
|
|
|
*/
|
|
|
|
VIR_WARN("skipping snapshot action on %s",
|
2011-10-04 23:13:48 +00:00
|
|
|
def->disks[i]->dst);
|
2011-09-21 19:08:51 +00:00
|
|
|
skipped = true;
|
|
|
|
continue;
|
2012-03-17 15:54:44 +00:00
|
|
|
} else if (STREQ(op, "-c") && i) {
|
|
|
|
/* We must roll back partial creation by deleting
|
|
|
|
* all earlier snapshots. */
|
|
|
|
qemuDomainSnapshotForEachQcow2Raw(driver, def, name,
|
|
|
|
"-d", false, i);
|
2011-09-21 19:08:51 +00:00
|
|
|
}
|
2012-07-18 15:22:03 +00:00
|
|
|
virReportError(VIR_ERR_OPERATION_INVALID,
|
|
|
|
_("Disk device '%s' does not support"
|
|
|
|
" snapshotting"),
|
|
|
|
def->disks[i]->dst);
|
2011-09-21 19:08:51 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
qemuimgarg[4] = virDomainDiskGetSource(def->disks[i]);
|
2011-09-21 19:08:51 +00:00
|
|
|
|
|
|
|
if (virRun(qemuimgarg, NULL) < 0) {
|
|
|
|
if (try_all) {
|
|
|
|
VIR_WARN("skipping snapshot action on %s",
|
2011-10-04 23:13:48 +00:00
|
|
|
def->disks[i]->dst);
|
2011-09-21 19:08:51 +00:00
|
|
|
skipped = true;
|
|
|
|
continue;
|
2012-03-17 15:54:44 +00:00
|
|
|
} else if (STREQ(op, "-c") && i) {
|
|
|
|
/* We must roll back partial creation by deleting
|
|
|
|
* all earlier snapshots. */
|
|
|
|
qemuDomainSnapshotForEachQcow2Raw(driver, def, name,
|
|
|
|
"-d", false, i);
|
2011-09-21 19:08:51 +00:00
|
|
|
}
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return skipped ? 1 : 0;
|
|
|
|
}
|
|
|
|
|
2012-03-17 15:54:44 +00:00
|
|
|
/* The domain is expected to be locked and inactive. Return -1 on normal
|
|
|
|
* failure, 1 if we skipped a disk due to try_all. */
|
|
|
|
int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainSnapshotForEachQcow2(virQEMUDriverPtr driver,
|
2012-03-17 15:54:44 +00:00
|
|
|
virDomainObjPtr vm,
|
|
|
|
virDomainSnapshotObjPtr snap,
|
|
|
|
const char *op,
|
|
|
|
bool try_all)
|
|
|
|
{
|
|
|
|
/* Prefer action on the disks in use at the time the snapshot was
|
|
|
|
* created; but fall back to current definition if dealing with a
|
|
|
|
* snapshot created prior to libvirt 0.9.5. */
|
|
|
|
virDomainDefPtr def = snap->def->dom;
|
|
|
|
|
|
|
|
if (!def)
|
|
|
|
def = vm->def;
|
|
|
|
return qemuDomainSnapshotForEachQcow2Raw(driver, def, snap->def->name,
|
|
|
|
op, try_all, def->ndisks);
|
|
|
|
}
|
|
|
|
|
2011-09-21 19:08:51 +00:00
|
|
|
/* Discard one snapshot (or its metadata), without reparenting any children. */
|
|
|
|
int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainSnapshotDiscard(virQEMUDriverPtr driver,
|
2011-09-21 19:08:51 +00:00
|
|
|
virDomainObjPtr vm,
|
|
|
|
virDomainSnapshotObjPtr snap,
|
|
|
|
bool update_current,
|
|
|
|
bool metadata_only)
|
|
|
|
{
|
|
|
|
char *snapFile = NULL;
|
|
|
|
int ret = -1;
|
|
|
|
qemuDomainObjPrivatePtr priv;
|
|
|
|
virDomainSnapshotObjPtr parentsnap = NULL;
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
2011-09-21 19:08:51 +00:00
|
|
|
|
|
|
|
if (!metadata_only) {
|
|
|
|
if (!virDomainObjIsActive(vm)) {
|
|
|
|
/* Ignore any skipped disks */
|
|
|
|
if (qemuDomainSnapshotForEachQcow2(driver, vm, snap, "-d",
|
|
|
|
true) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
} else {
|
|
|
|
priv = vm->privateData;
|
2013-02-06 18:17:20 +00:00
|
|
|
qemuDomainObjEnterMonitor(driver, vm);
|
2011-09-21 19:08:51 +00:00
|
|
|
/* we continue on even in the face of error */
|
|
|
|
qemuMonitorDeleteSnapshot(priv->mon, snap->def->name);
|
2014-12-16 09:40:58 +00:00
|
|
|
ignore_value(qemuDomainObjExitMonitor(driver, vm));
|
2011-09-21 19:08:51 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-01-10 21:03:14 +00:00
|
|
|
if (virAsprintf(&snapFile, "%s/%s/%s.xml", cfg->snapshotDir,
|
2013-07-04 10:14:12 +00:00
|
|
|
vm->def->name, snap->def->name) < 0)
|
2011-09-21 19:08:51 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (snap == vm->current_snapshot) {
|
|
|
|
if (update_current && snap->def->parent) {
|
snapshot: make virDomainSnapshotObjList opaque
We were failing to react to allocation failure when initializing
a snapshot object list. Changing things to store a pointer
instead of a complete object adds one more possible point of
allocation failure, but at the same time, will make it easier to
react to failure now, as well as making it easier for a future
patch to split all virDomainSnapshotPtr handling into a separate
file, as I continue to add even more snapshot code.
Luckily, there was only one client outside of domain_conf.c that
was actually peeking inside the object, and a new wrapper function
was easy.
* src/conf/domain_conf.h (_virDomainObj): Use a pointer.
(virDomainSnapshotObjListInit): Rename.
(virDomainSnapshotObjListFree, virDomainSnapshotForEach): New
declarations.
(_virDomainSnapshotObjList): Move definitions...
* src/conf/domain_conf.c: ...here.
(virDomainSnapshotObjListInit, virDomainSnapshotObjListDeinit):
Rename...
(virDomainSnapshotObjListNew, virDomainSnapshotObjListFree): ...to
these.
(virDomainSnapshotForEach): New function.
(virDomainObjDispose, virDomainListPopulate): Adjust callers.
* src/qemu/qemu_domain.c (qemuDomainSnapshotDiscard)
(qemuDomainSnapshotDiscardAllMetadata): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationIsAllowed): Likewise.
* src/qemu/qemu_driver.c (qemuDomainSnapshotLoad)
(qemuDomainUndefineFlags, qemuDomainSnapshotCreateXML)
(qemuDomainSnapshotListNames, qemuDomainSnapshotNum)
(qemuDomainListAllSnapshots)
(qemuDomainSnapshotListChildrenNames)
(qemuDomainSnapshotNumChildren)
(qemuDomainSnapshotListAllChildren)
(qemuDomainSnapshotLookupByName, qemuDomainSnapshotGetParent)
(qemuDomainSnapshotGetXMLDesc, qemuDomainSnapshotIsCurrent)
(qemuDomainSnapshotHasMetadata, qemuDomainRevertToSnapshot)
(qemuDomainSnapshotDelete): Likewise.
* src/libvirt_private.syms (domain_conf.h): Export new function.
2012-08-14 06:22:39 +00:00
|
|
|
parentsnap = virDomainSnapshotFindByName(vm->snapshots,
|
2011-09-21 19:08:51 +00:00
|
|
|
snap->def->parent);
|
|
|
|
if (!parentsnap) {
|
|
|
|
VIR_WARN("missing parent snapshot matching name '%s'",
|
|
|
|
snap->def->parent);
|
|
|
|
} else {
|
|
|
|
parentsnap->def->current = true;
|
2016-02-04 22:55:05 +00:00
|
|
|
if (qemuDomainSnapshotWriteMetadata(vm, parentsnap, driver->caps,
|
2013-01-10 21:03:14 +00:00
|
|
|
cfg->snapshotDir) < 0) {
|
2011-09-21 19:08:51 +00:00
|
|
|
VIR_WARN("failed to set parent snapshot '%s' as current",
|
|
|
|
snap->def->parent);
|
|
|
|
parentsnap->def->current = false;
|
|
|
|
parentsnap = NULL;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
vm->current_snapshot = parentsnap;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (unlink(snapFile) < 0)
|
|
|
|
VIR_WARN("Failed to unlink %s", snapFile);
|
snapshot: make virDomainSnapshotObjList opaque
We were failing to react to allocation failure when initializing
a snapshot object list. Changing things to store a pointer
instead of a complete object adds one more possible point of
allocation failure, but at the same time, will make it easier to
react to failure now, as well as making it easier for a future
patch to split all virDomainSnapshotPtr handling into a separate
file, as I continue to add even more snapshot code.
Luckily, there was only one client outside of domain_conf.c that
was actually peeking inside the object, and a new wrapper function
was easy.
* src/conf/domain_conf.h (_virDomainObj): Use a pointer.
(virDomainSnapshotObjListInit): Rename.
(virDomainSnapshotObjListFree, virDomainSnapshotForEach): New
declarations.
(_virDomainSnapshotObjList): Move definitions...
* src/conf/domain_conf.c: ...here.
(virDomainSnapshotObjListInit, virDomainSnapshotObjListDeinit):
Rename...
(virDomainSnapshotObjListNew, virDomainSnapshotObjListFree): ...to
these.
(virDomainSnapshotForEach): New function.
(virDomainObjDispose, virDomainListPopulate): Adjust callers.
* src/qemu/qemu_domain.c (qemuDomainSnapshotDiscard)
(qemuDomainSnapshotDiscardAllMetadata): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationIsAllowed): Likewise.
* src/qemu/qemu_driver.c (qemuDomainSnapshotLoad)
(qemuDomainUndefineFlags, qemuDomainSnapshotCreateXML)
(qemuDomainSnapshotListNames, qemuDomainSnapshotNum)
(qemuDomainListAllSnapshots)
(qemuDomainSnapshotListChildrenNames)
(qemuDomainSnapshotNumChildren)
(qemuDomainSnapshotListAllChildren)
(qemuDomainSnapshotLookupByName, qemuDomainSnapshotGetParent)
(qemuDomainSnapshotGetXMLDesc, qemuDomainSnapshotIsCurrent)
(qemuDomainSnapshotHasMetadata, qemuDomainRevertToSnapshot)
(qemuDomainSnapshotDelete): Likewise.
* src/libvirt_private.syms (domain_conf.h): Export new function.
2012-08-14 06:22:39 +00:00
|
|
|
virDomainSnapshotObjListRemove(vm->snapshots, snap);
|
2011-09-21 19:08:51 +00:00
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2011-09-21 19:08:51 +00:00
|
|
|
VIR_FREE(snapFile);
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2011-09-21 19:08:51 +00:00
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Hash iterator callback to discard multiple snapshots. */
|
2016-02-12 09:03:50 +00:00
|
|
|
int qemuDomainSnapshotDiscardAll(void *payload,
|
|
|
|
const void *name ATTRIBUTE_UNUSED,
|
|
|
|
void *data)
|
2011-09-21 19:08:51 +00:00
|
|
|
{
|
|
|
|
virDomainSnapshotObjPtr snap = payload;
|
2012-11-28 17:29:44 +00:00
|
|
|
virQEMUSnapRemovePtr curr = data;
|
2011-09-21 19:08:51 +00:00
|
|
|
int err;
|
|
|
|
|
|
|
|
if (snap->def->current)
|
|
|
|
curr->current = true;
|
|
|
|
err = qemuDomainSnapshotDiscard(curr->driver, curr->vm, snap, false,
|
|
|
|
curr->metadata_only);
|
|
|
|
if (err && !curr->err)
|
|
|
|
curr->err = err;
|
2016-02-12 09:03:50 +00:00
|
|
|
return 0;
|
2011-09-21 19:08:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainSnapshotDiscardAllMetadata(virQEMUDriverPtr driver,
|
2011-09-21 19:08:51 +00:00
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
2012-11-28 17:29:44 +00:00
|
|
|
virQEMUSnapRemove rem;
|
2011-09-21 19:08:51 +00:00
|
|
|
|
|
|
|
rem.driver = driver;
|
|
|
|
rem.vm = vm;
|
|
|
|
rem.metadata_only = true;
|
|
|
|
rem.err = 0;
|
snapshot: make virDomainSnapshotObjList opaque
We were failing to react to allocation failure when initializing
a snapshot object list. Changing things to store a pointer
instead of a complete object adds one more possible point of
allocation failure, but at the same time, will make it easier to
react to failure now, as well as making it easier for a future
patch to split all virDomainSnapshotPtr handling into a separate
file, as I continue to add even more snapshot code.
Luckily, there was only one client outside of domain_conf.c that
was actually peeking inside the object, and a new wrapper function
was easy.
* src/conf/domain_conf.h (_virDomainObj): Use a pointer.
(virDomainSnapshotObjListInit): Rename.
(virDomainSnapshotObjListFree, virDomainSnapshotForEach): New
declarations.
(_virDomainSnapshotObjList): Move definitions...
* src/conf/domain_conf.c: ...here.
(virDomainSnapshotObjListInit, virDomainSnapshotObjListDeinit):
Rename...
(virDomainSnapshotObjListNew, virDomainSnapshotObjListFree): ...to
these.
(virDomainSnapshotForEach): New function.
(virDomainObjDispose, virDomainListPopulate): Adjust callers.
* src/qemu/qemu_domain.c (qemuDomainSnapshotDiscard)
(qemuDomainSnapshotDiscardAllMetadata): Likewise.
* src/qemu/qemu_migration.c (qemuMigrationIsAllowed): Likewise.
* src/qemu/qemu_driver.c (qemuDomainSnapshotLoad)
(qemuDomainUndefineFlags, qemuDomainSnapshotCreateXML)
(qemuDomainSnapshotListNames, qemuDomainSnapshotNum)
(qemuDomainListAllSnapshots)
(qemuDomainSnapshotListChildrenNames)
(qemuDomainSnapshotNumChildren)
(qemuDomainSnapshotListAllChildren)
(qemuDomainSnapshotLookupByName, qemuDomainSnapshotGetParent)
(qemuDomainSnapshotGetXMLDesc, qemuDomainSnapshotIsCurrent)
(qemuDomainSnapshotHasMetadata, qemuDomainRevertToSnapshot)
(qemuDomainSnapshotDelete): Likewise.
* src/libvirt_private.syms (domain_conf.h): Export new function.
2012-08-14 06:22:39 +00:00
|
|
|
virDomainSnapshotForEach(vm->snapshots, qemuDomainSnapshotDiscardAll,
|
|
|
|
&rem);
|
2011-09-21 19:08:51 +00:00
|
|
|
|
|
|
|
return rem.err;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
* The caller must hold a lock the vm.
|
2011-09-21 19:08:51 +00:00
|
|
|
*/
|
|
|
|
void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainRemoveInactive(virQEMUDriverPtr driver,
|
2011-09-21 19:08:51 +00:00
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
2014-10-30 13:38:35 +00:00
|
|
|
bool haveJob = true;
|
2011-09-21 22:08:42 +00:00
|
|
|
char *snapDir;
|
2015-09-22 13:25:00 +00:00
|
|
|
virQEMUDriverConfigPtr cfg;
|
|
|
|
|
|
|
|
if (vm->persistent) {
|
|
|
|
/* Short-circuit, we don't want to remove a persistent domain */
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
cfg = virQEMUDriverGetConfig(driver);
|
2011-09-21 22:08:42 +00:00
|
|
|
|
2014-10-30 13:38:35 +00:00
|
|
|
if (qemuDomainObjBeginJob(driver, vm, QEMU_JOB_MODIFY) < 0)
|
|
|
|
haveJob = false;
|
|
|
|
|
2011-09-21 19:08:51 +00:00
|
|
|
/* Remove any snapshot metadata prior to removing the domain */
|
|
|
|
if (qemuDomainSnapshotDiscardAllMetadata(driver, vm) < 0) {
|
|
|
|
VIR_WARN("unable to remove all snapshots for domain %s",
|
|
|
|
vm->def->name);
|
|
|
|
}
|
2013-01-10 21:03:14 +00:00
|
|
|
else if (virAsprintf(&snapDir, "%s/%s", cfg->snapshotDir,
|
2011-09-21 22:08:42 +00:00
|
|
|
vm->def->name) < 0) {
|
|
|
|
VIR_WARN("unable to remove snapshot directory %s/%s",
|
2013-01-10 21:03:14 +00:00
|
|
|
cfg->snapshotDir, vm->def->name);
|
2011-09-21 22:08:42 +00:00
|
|
|
} else {
|
|
|
|
if (rmdir(snapDir) < 0 && errno != ENOENT)
|
|
|
|
VIR_WARN("unable to remove snapshot directory %s", snapDir);
|
|
|
|
VIR_FREE(snapDir);
|
|
|
|
}
|
2015-03-30 02:40:58 +00:00
|
|
|
|
|
|
|
virObjectRef(vm);
|
|
|
|
|
2013-01-11 16:04:47 +00:00
|
|
|
virDomainObjListRemove(driver->domains, vm);
|
2015-07-15 07:07:50 +00:00
|
|
|
/*
|
|
|
|
* virDomainObjListRemove() leaves the domain unlocked so it can
|
|
|
|
* be unref'd for other drivers that depend on that, but we still
|
|
|
|
* need to reset a job and we have a reference from the API that
|
|
|
|
* called this function. So we need to lock it back. This is
|
|
|
|
* just a workaround for the qemu driver.
|
|
|
|
*
|
|
|
|
* XXX: Ideally, the global handling of domain objects and object
|
|
|
|
* lists would be refactored so we don't need hacks like
|
|
|
|
* this, but since that requires refactor of all drivers,
|
|
|
|
* it's a work for another day.
|
|
|
|
*/
|
|
|
|
virObjectLock(vm);
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2014-10-30 13:38:35 +00:00
|
|
|
|
|
|
|
if (haveJob)
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
qemuDomainObjEndJob(driver, vm);
|
2015-03-30 02:40:58 +00:00
|
|
|
|
|
|
|
virObjectUnref(vm);
|
2011-09-21 19:08:51 +00:00
|
|
|
}
|
2011-09-28 10:10:13 +00:00
|
|
|
|
|
|
|
void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainSetFakeReboot(virQEMUDriverPtr driver,
|
2011-09-28 10:10:13 +00:00
|
|
|
virDomainObjPtr vm,
|
|
|
|
bool value)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
2011-09-28 10:10:13 +00:00
|
|
|
|
|
|
|
if (priv->fakeReboot == value)
|
2013-02-01 17:04:15 +00:00
|
|
|
goto cleanup;
|
2011-09-28 10:10:13 +00:00
|
|
|
|
|
|
|
priv->fakeReboot = value;
|
|
|
|
|
2016-02-04 12:32:45 +00:00
|
|
|
if (virDomainSaveStatus(driver->xmlopt, cfg->stateDir, vm, driver->caps) < 0)
|
2011-09-28 10:10:13 +00:00
|
|
|
VIR_WARN("Failed to save status on vm %s", vm->def->name);
|
2013-01-10 21:03:14 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
2011-09-28 10:10:13 +00:00
|
|
|
}
|
2011-10-18 08:51:06 +00:00
|
|
|
|
2016-06-02 13:20:40 +00:00
|
|
|
static void
|
2013-08-07 07:11:15 +00:00
|
|
|
qemuDomainCheckRemoveOptionalDisk(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
2014-05-15 11:11:12 +00:00
|
|
|
size_t diskIndex)
|
2013-08-07 07:11:15 +00:00
|
|
|
{
|
|
|
|
char uuid[VIR_UUID_STRING_BUFLEN];
|
2013-11-22 14:38:05 +00:00
|
|
|
virObjectEventPtr event = NULL;
|
2014-05-15 11:11:12 +00:00
|
|
|
virDomainDiskDefPtr disk = vm->def->disks[diskIndex];
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
const char *src = virDomainDiskGetSource(disk);
|
2013-08-07 07:11:15 +00:00
|
|
|
|
|
|
|
virUUIDFormat(vm->def->uuid, uuid);
|
|
|
|
|
|
|
|
VIR_DEBUG("Dropping disk '%s' on domain '%s' (UUID '%s') "
|
|
|
|
"due to inaccessible source '%s'",
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
disk->dst, vm->def->name, uuid, src);
|
2013-08-07 07:11:15 +00:00
|
|
|
|
|
|
|
if (disk->device == VIR_DOMAIN_DISK_DEVICE_CDROM ||
|
|
|
|
disk->device == VIR_DOMAIN_DISK_DEVICE_FLOPPY) {
|
|
|
|
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
event = virDomainEventDiskChangeNewFromObj(vm, src, NULL,
|
2013-08-07 07:11:15 +00:00
|
|
|
disk->info.alias,
|
|
|
|
VIR_DOMAIN_EVENT_DISK_CHANGE_MISSING_ON_START);
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
ignore_value(virDomainDiskSetSource(disk, NULL));
|
2016-09-05 13:50:18 +00:00
|
|
|
/* keeping the old startup policy would be invalid for new images */
|
|
|
|
disk->startupPolicy = VIR_DOMAIN_STARTUP_POLICY_DEFAULT;
|
2013-08-07 07:11:15 +00:00
|
|
|
} else {
|
conf: use disk source accessors in qemu/
Part of a series of cleanups to use new accessor methods.
* src/qemu/qemu_conf.c (qemuCheckSharedDevice)
(qemuAddSharedDevice, qemuRemoveSharedDevice, qemuSetUnprivSGIO):
Use accessors.
* src/qemu/qemu_domain.c (qemuDomainDeviceDefPostParse)
(qemuDomainObjCheckDiskTaint, qemuDomainSnapshotForEachQcow2Raw)
(qemuDomainCheckRemoveOptionalDisk, qemuDomainCheckDiskPresence)
(qemuDiskChainCheckBroken, qemuDomainDetermineDiskChain):
Likewise.
* src/qemu/qemu_hotplug.c (qemuDomainChangeEjectableMedia)
(qemuDomainCheckEjectableMedia)
(qemuDomainAttachVirtioDiskDevice, qemuDomainAttachSCSIDisk)
(qemuDomainAttachUSBMassstorageDevice)
(qemuDomainAttachDeviceDiskLive, qemuDomainRemoveDiskDevice)
(qemuDomainDetachVirtioDiskDevice, qemuDomainDetachDiskDevice):
Likewise.
* src/qemu/qemu_migration.c (qemuMigrationStartNBDServer)
(qemuMigrationDriveMirror, qemuMigrationCancelDriveMirror)
(qemuMigrationIsSafe): Likewise.
* src/qemu/qemu_process.c (qemuProcessGetVolumeQcowPassphrase)
(qemuProcessHandleIOError, qemuProcessHandleBlockJob)
(qemuProcessInitPasswords): Likewise.
* src/qemu/qemu_driver.c (qemuDomainChangeDiskMediaLive)
(qemuDomainGetBlockInfo, qemuDiskPathToAlias): Likewise.
Signed-off-by: Eric Blake <eblake@redhat.com>
2014-03-18 19:16:47 +00:00
|
|
|
event = virDomainEventDiskChangeNewFromObj(vm, src, NULL,
|
2013-08-07 07:11:15 +00:00
|
|
|
disk->info.alias,
|
|
|
|
VIR_DOMAIN_EVENT_DISK_DROP_MISSING_ON_START);
|
2014-05-15 11:11:12 +00:00
|
|
|
virDomainDiskRemove(vm->def, diskIndex);
|
|
|
|
virDomainDiskDefFree(disk);
|
2013-08-07 07:11:15 +00:00
|
|
|
}
|
|
|
|
|
2015-07-07 13:33:53 +00:00
|
|
|
qemuDomainEventQueue(driver, event);
|
2013-08-07 07:11:15 +00:00
|
|
|
}
|
|
|
|
|
2013-07-26 12:37:21 +00:00
|
|
|
static int
|
|
|
|
qemuDomainCheckDiskStartupPolicy(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
2014-05-15 11:11:12 +00:00
|
|
|
size_t diskIndex,
|
2013-07-26 12:37:21 +00:00
|
|
|
bool cold_boot)
|
|
|
|
{
|
2014-05-15 11:11:12 +00:00
|
|
|
int startupPolicy = vm->def->disks[diskIndex]->startupPolicy;
|
2014-06-27 14:34:07 +00:00
|
|
|
int device = vm->def->disks[diskIndex]->device;
|
2013-07-26 12:37:21 +00:00
|
|
|
|
2014-06-01 00:22:29 +00:00
|
|
|
switch ((virDomainStartupPolicy) startupPolicy) {
|
2013-07-26 12:37:21 +00:00
|
|
|
case VIR_DOMAIN_STARTUP_POLICY_OPTIONAL:
|
2014-06-27 14:34:07 +00:00
|
|
|
/* Once started with an optional disk, qemu saves its section
|
|
|
|
* in the migration stream, so later, when restoring from it
|
|
|
|
* we must make sure the sections match. */
|
|
|
|
if (!cold_boot &&
|
|
|
|
device != VIR_DOMAIN_DISK_DEVICE_FLOPPY &&
|
|
|
|
device != VIR_DOMAIN_DISK_DEVICE_CDROM)
|
2016-06-02 13:20:40 +00:00
|
|
|
return -1;
|
2013-07-26 12:37:21 +00:00
|
|
|
break;
|
|
|
|
|
2016-08-01 15:52:02 +00:00
|
|
|
case VIR_DOMAIN_STARTUP_POLICY_DEFAULT:
|
2013-07-26 12:37:21 +00:00
|
|
|
case VIR_DOMAIN_STARTUP_POLICY_MANDATORY:
|
2016-06-02 13:20:40 +00:00
|
|
|
return -1;
|
2013-07-26 12:37:21 +00:00
|
|
|
|
|
|
|
case VIR_DOMAIN_STARTUP_POLICY_REQUISITE:
|
2013-07-31 07:55:05 +00:00
|
|
|
if (cold_boot)
|
2016-06-02 13:20:40 +00:00
|
|
|
return -1;
|
2013-07-26 12:37:21 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
case VIR_DOMAIN_STARTUP_POLICY_LAST:
|
|
|
|
/* this should never happen */
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2016-06-02 13:20:40 +00:00
|
|
|
qemuDomainCheckRemoveOptionalDisk(driver, vm, diskIndex);
|
2016-08-01 15:52:02 +00:00
|
|
|
virResetLastError();
|
2013-07-26 12:37:21 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2014-04-15 08:20:07 +00:00
|
|
|
|
2011-10-18 08:51:06 +00:00
|
|
|
int
|
2016-08-01 15:51:28 +00:00
|
|
|
qemuDomainCheckDiskPresence(virConnectPtr conn,
|
|
|
|
virQEMUDriverPtr driver,
|
2011-10-18 08:51:06 +00:00
|
|
|
virDomainObjPtr vm,
|
2016-08-01 15:51:28 +00:00
|
|
|
unsigned int flags)
|
2011-10-18 08:51:06 +00:00
|
|
|
{
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2016-08-01 15:51:28 +00:00
|
|
|
bool pretend = flags & VIR_QEMU_PROCESS_START_PRETEND;
|
|
|
|
bool cold_boot = flags & VIR_QEMU_PROCESS_START_COLD;
|
2011-10-18 08:51:06 +00:00
|
|
|
|
2013-07-31 07:55:05 +00:00
|
|
|
VIR_DEBUG("Checking for disk presence");
|
2013-08-07 07:11:15 +00:00
|
|
|
for (i = vm->def->ndisks; i > 0; i--) {
|
2014-05-15 11:11:12 +00:00
|
|
|
size_t idx = i - 1;
|
|
|
|
virDomainDiskDefPtr disk = vm->def->disks[idx];
|
2014-04-27 00:15:22 +00:00
|
|
|
virStorageFileFormat format = virDomainDiskGetFormat(disk);
|
2011-10-18 08:51:06 +00:00
|
|
|
|
2016-08-01 15:51:28 +00:00
|
|
|
if (virStorageTranslateDiskSourcePool(conn, vm->def->disks[idx]) < 0) {
|
|
|
|
if (pretend ||
|
|
|
|
qemuDomainCheckDiskStartupPolicy(driver, vm, idx, cold_boot) < 0)
|
|
|
|
return -1;
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (pretend)
|
|
|
|
continue;
|
|
|
|
|
2014-09-11 17:28:10 +00:00
|
|
|
if (virStorageSourceIsEmpty(disk->src))
|
2014-04-16 15:31:50 +00:00
|
|
|
continue;
|
|
|
|
|
|
|
|
/* There is no need to check the backing chain for disks
|
|
|
|
* without backing support, the fact that the file exists is
|
|
|
|
* more than enough */
|
2014-09-11 17:28:10 +00:00
|
|
|
if (virStorageSourceIsLocalStorage(disk->src) &&
|
2016-05-05 13:25:52 +00:00
|
|
|
format > VIR_STORAGE_FILE_NONE &&
|
2014-04-16 15:31:50 +00:00
|
|
|
format < VIR_STORAGE_FILE_BACKING &&
|
2014-09-11 17:28:10 +00:00
|
|
|
virFileExists(virDomainDiskGetSource(disk)))
|
2011-10-18 08:51:06 +00:00
|
|
|
continue;
|
|
|
|
|
2014-09-25 15:30:28 +00:00
|
|
|
if (qemuDomainDetermineDiskChain(driver, vm, disk, true, true) >= 0)
|
2011-10-18 08:51:06 +00:00
|
|
|
continue;
|
2013-07-31 07:55:05 +00:00
|
|
|
|
2016-08-01 15:52:02 +00:00
|
|
|
if (qemuDomainCheckDiskStartupPolicy(driver, vm, idx, cold_boot) >= 0)
|
2013-08-07 07:11:15 +00:00
|
|
|
continue;
|
2011-10-18 08:51:06 +00:00
|
|
|
|
2016-08-01 15:56:26 +00:00
|
|
|
return -1;
|
2011-10-18 08:51:06 +00:00
|
|
|
}
|
|
|
|
|
2016-08-01 15:56:26 +00:00
|
|
|
return 0;
|
2011-10-18 08:51:06 +00:00
|
|
|
}
|
2012-03-16 06:52:26 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* The vm must be locked when any of the following cleanup functions is
|
|
|
|
* called.
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainCleanupAdd(virDomainObjPtr vm,
|
|
|
|
qemuDomainCleanupCallback cb)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2012-03-16 06:52:26 +00:00
|
|
|
|
|
|
|
VIR_DEBUG("vm=%s, cb=%p", vm->def->name, cb);
|
|
|
|
|
|
|
|
for (i = 0; i < priv->ncleanupCallbacks; i++) {
|
|
|
|
if (priv->cleanupCallbacks[i] == cb)
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (VIR_RESIZE_N(priv->cleanupCallbacks,
|
|
|
|
priv->ncleanupCallbacks_max,
|
2013-07-04 10:14:12 +00:00
|
|
|
priv->ncleanupCallbacks, 1) < 0)
|
2012-03-16 06:52:26 +00:00
|
|
|
return -1;
|
|
|
|
|
|
|
|
priv->cleanupCallbacks[priv->ncleanupCallbacks++] = cb;
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
void
|
|
|
|
qemuDomainCleanupRemove(virDomainObjPtr vm,
|
|
|
|
qemuDomainCleanupCallback cb)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2012-03-16 06:52:26 +00:00
|
|
|
|
|
|
|
VIR_DEBUG("vm=%s, cb=%p", vm->def->name, cb);
|
|
|
|
|
|
|
|
for (i = 0; i < priv->ncleanupCallbacks; i++) {
|
2013-10-15 17:07:42 +00:00
|
|
|
if (priv->cleanupCallbacks[i] == cb)
|
|
|
|
VIR_DELETE_ELEMENT_INPLACE(priv->cleanupCallbacks,
|
|
|
|
i, priv->ncleanupCallbacks);
|
2012-03-16 06:52:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
VIR_SHRINK_N(priv->cleanupCallbacks,
|
|
|
|
priv->ncleanupCallbacks_max,
|
|
|
|
priv->ncleanupCallbacks_max - priv->ncleanupCallbacks);
|
|
|
|
}
|
|
|
|
|
|
|
|
void
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainCleanupRun(virQEMUDriverPtr driver,
|
2012-03-16 06:52:26 +00:00
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
size_t i;
|
2012-03-16 06:52:26 +00:00
|
|
|
|
|
|
|
VIR_DEBUG("driver=%p, vm=%s", driver, vm->def->name);
|
|
|
|
|
|
|
|
/* run cleanup callbacks in reverse order */
|
Convert 'int i' to 'size_t i' in src/qemu files
Convert the type of loop iterators named 'i', 'j', k',
'ii', 'jj', 'kk', to be 'size_t' instead of 'int' or
'unsigned int', also santizing 'ii', 'jj', 'kk' to use
the normal 'i', 'j', 'k' naming
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2013-07-08 14:09:33 +00:00
|
|
|
for (i = 0; i < priv->ncleanupCallbacks; i++) {
|
|
|
|
if (priv->cleanupCallbacks[priv->ncleanupCallbacks - (i + 1)])
|
2012-03-16 06:52:26 +00:00
|
|
|
priv->cleanupCallbacks[i](driver, vm);
|
|
|
|
}
|
|
|
|
|
|
|
|
VIR_FREE(priv->cleanupCallbacks);
|
|
|
|
priv->ncleanupCallbacks = 0;
|
|
|
|
priv->ncleanupCallbacks_max = 0;
|
|
|
|
}
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
|
2014-02-07 17:42:27 +00:00
|
|
|
static void
|
|
|
|
qemuDomainGetImageIds(virQEMUDriverConfigPtr cfg,
|
|
|
|
virDomainObjPtr vm,
|
2014-06-30 13:40:57 +00:00
|
|
|
virStorageSourcePtr src,
|
2014-02-07 17:42:27 +00:00
|
|
|
uid_t *uid, gid_t *gid)
|
|
|
|
{
|
|
|
|
virSecurityLabelDefPtr vmlabel;
|
|
|
|
virSecurityDeviceLabelDefPtr disklabel;
|
|
|
|
|
|
|
|
if (uid)
|
|
|
|
*uid = -1;
|
|
|
|
if (gid)
|
|
|
|
*gid = -1;
|
|
|
|
|
|
|
|
if (cfg) {
|
|
|
|
if (uid)
|
|
|
|
*uid = cfg->user;
|
|
|
|
|
|
|
|
if (gid)
|
|
|
|
*gid = cfg->group;
|
|
|
|
}
|
|
|
|
|
2014-06-12 08:50:43 +00:00
|
|
|
if (vm && (vmlabel = virDomainDefGetSecurityLabelDef(vm->def, "dac")) &&
|
|
|
|
vmlabel->label)
|
2014-02-07 17:42:27 +00:00
|
|
|
virParseOwnershipIds(vmlabel->label, uid, gid);
|
|
|
|
|
2014-06-30 13:40:57 +00:00
|
|
|
if ((disklabel = virStorageSourceGetSecurityLabelDef(src, "dac")) &&
|
qemuDomainGetImageIds: Skip <seclabel/> without label
It's easy to shed the daemon these days. With this XML snippet:
<disk type='file' device='disk'>
<driver name='qemu' type='raw'/>
<source file='/some/dummy/path/test.bin'>
<seclabel model='dac' relabel='no'/>
</source>
<target dev='vdb' bus='virtio'/>
<readonly/>
<address type='pci' domain='0x0000' bus='0x00' slot='0x07' function='0x0'/>
</disk>
I get the SIGSEGV when starting the domain. The thing is, when
starting a domain, we check for its disk presence. For some reason,
when determining the disk chain, we parse the <seclabel/> (don't ask
me why). However, there's no label attribute in the XML, so we end up
calling virParseOwnershipIds() over NULL string:
[Switching to Thread 0x7ffff10c4700 (LWP 30956)]
__strchr_sse42 () at ../sysdeps/x86_64/multiarch/strchr.S:136
136 ../sysdeps/x86_64/multiarch/strchr.S: No such file or directory.
(gdb) bt
#0 __strchr_sse42 () at ../sysdeps/x86_64/multiarch/strchr.S:136
#1 0x00007ffff749f800 in virParseOwnershipIds (label=0x0, uidPtr=uidPtr@entry=0x7ffff10c2df0, gidPtr=gidPtr@entry=0x7ffff10c2df4) at util/virutil.c:2115
#2 0x00007fffe929f006 in qemuDomainGetImageIds (gid=0x7ffff10c2df4, uid=0x7ffff10c2df0, disk=0x7fffe40cb000, vm=0x7fffe40a6410, cfg=0x7fffe409ae00) at qemu/qemu_domain.c:2385
#3 qemuDomainDetermineDiskChain (driver=driver@entry=0x7fffe40120e0, vm=vm@entry=0x7fffe40a6410, disk=disk@entry=0x7fffe40cb000, force=force@entry=false) at qemu/qemu_domain.c:2414
#4 0x00007fffe929f128 in qemuDomainCheckDiskPresence (driver=driver@entry=0x7fffe40120e0, vm=vm@entry=0x7fffe40a6410, cold_boot=cold_boot@entry=true) at qemu/qemu_domain.c:2250
#5 0x00007fffe92b6fc8 in qemuProcessStart (conn=conn@entry=0x7fffd4000b60, driver=driver@entry=0x7fffe40120e0, vm=vm@entry=0x7fffe40a6410, migrateFrom=migrateFrom@entry=0x0, stdin_fd=stdin_fd@entry=-1, stdin_path=stdin_path@entry=0x0, snapshot=snapshot@entry=0x0,
vmop=vmop@entry=VIR_NETDEV_VPORT_PROFILE_OP_CREATE, flags=flags@entry=1) at qemu/qemu_process.c:3813
#6 0x00007fffe93087e8 in qemuDomainObjStart (conn=0x7fffd4000b60, driver=driver@entry=0x7fffe40120e0, vm=vm@entry=0x7fffe40a6410, flags=flags@entry=0) at qemu/qemu_driver.c:6051
#7 0x00007fffe9308e32 in qemuDomainCreateWithFlags (dom=0x7fffcc000d50, flags=0) at qemu/qemu_driver.c:6105
#8 0x00007ffff753c5cc in virDomainCreate (domain=domain@entry=0x7fffcc000d50) at libvirt.c:8861
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2014-03-24 15:44:17 +00:00
|
|
|
disklabel->label)
|
2014-02-07 17:42:27 +00:00
|
|
|
virParseOwnershipIds(disklabel->label, uid, gid);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2014-06-30 13:48:45 +00:00
|
|
|
int
|
|
|
|
qemuDomainStorageFileInit(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
virStorageSourcePtr src)
|
|
|
|
{
|
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
uid_t uid;
|
|
|
|
gid_t gid;
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
qemuDomainGetImageIds(cfg, vm, src, &uid, &gid);
|
|
|
|
|
|
|
|
if (virStorageFileInitAs(src, uid, gid) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2014-12-12 16:53:33 +00:00
|
|
|
char *
|
|
|
|
qemuDomainStorageAlias(const char *device, int depth)
|
|
|
|
{
|
|
|
|
char *alias;
|
|
|
|
|
2016-06-29 17:34:00 +00:00
|
|
|
device = qemuAliasDiskDriveSkipPrefix(device);
|
2014-12-12 16:53:33 +00:00
|
|
|
|
|
|
|
if (!depth)
|
|
|
|
ignore_value(VIR_STRDUP(alias, device));
|
|
|
|
else
|
|
|
|
ignore_value(virAsprintf(&alias, "%s.%d", device, depth));
|
|
|
|
return alias;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
int
|
2012-11-28 16:43:10 +00:00
|
|
|
qemuDomainDetermineDiskChain(virQEMUDriverPtr driver,
|
2014-02-07 17:42:27 +00:00
|
|
|
virDomainObjPtr vm,
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
virDomainDiskDefPtr disk,
|
2014-09-11 16:59:32 +00:00
|
|
|
bool force_probe,
|
|
|
|
bool report_broken)
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
{
|
2013-01-10 21:03:14 +00:00
|
|
|
virQEMUDriverConfigPtr cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
int ret = 0;
|
2014-02-07 17:42:27 +00:00
|
|
|
uid_t uid;
|
|
|
|
gid_t gid;
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
|
2014-09-18 09:21:10 +00:00
|
|
|
if (virStorageSourceIsEmpty(disk->src))
|
2013-01-10 21:03:14 +00:00
|
|
|
goto cleanup;
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
|
2014-05-21 23:13:12 +00:00
|
|
|
if (disk->src->backingStore) {
|
2014-09-18 09:21:10 +00:00
|
|
|
if (force_probe)
|
2014-06-20 08:40:45 +00:00
|
|
|
virStorageSourceBackingStoreClear(disk->src);
|
2014-04-26 06:27:58 +00:00
|
|
|
else
|
2013-01-10 21:03:14 +00:00
|
|
|
goto cleanup;
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
}
|
2014-02-07 17:42:27 +00:00
|
|
|
|
2014-06-30 13:40:57 +00:00
|
|
|
qemuDomainGetImageIds(cfg, vm, disk->src, &uid, &gid);
|
2014-02-07 17:42:27 +00:00
|
|
|
|
2014-05-21 23:13:12 +00:00
|
|
|
if (virStorageFileGetMetadata(disk->src,
|
2014-04-18 12:49:54 +00:00
|
|
|
uid, gid,
|
2014-09-11 16:28:47 +00:00
|
|
|
cfg->allowDiskFormatProbing,
|
2014-09-11 16:59:32 +00:00
|
|
|
report_broken) < 0)
|
2013-01-10 21:03:14 +00:00
|
|
|
ret = -1;
|
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
2013-01-10 21:03:14 +00:00
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ret;
|
storage: cache backing chain while qemu domain is live
Technically, we should not be re-probing any file that qemu might
be currently writing to. As such, we should cache the backing
file chain prior to starting qemu. This patch adds the cache,
but does not use it until the next patch.
Ultimately, we want to also store the chain in domain XML, so that
it is remembered across libvirtd restarts, and so that the only
kosher way to modify the backing chain of an offline domain will be
through libvirt API calls, but we aren't there yet. So for now, we
merely invalidate the cache any time we do a live operation that
alters the chain (block-pull, block-commit, external disk snapshot),
as well as tear down the cache when the domain is not running.
* src/conf/domain_conf.h (_virDomainDiskDef): New field.
* src/conf/domain_conf.c (virDomainDiskDefFree): Clean new field.
* src/qemu/qemu_domain.h (qemuDomainDetermineDiskChain): New
prototype.
* src/qemu/qemu_domain.c (qemuDomainDetermineDiskChain): New
function.
* src/qemu/qemu_driver.c (qemuDomainAttachDeviceDiskLive)
(qemuDomainChangeDiskMediaLive): Pre-populate chain.
(qemuDomainSnapshotCreateSingleDiskActive): Uncache chain before
snapshot.
* src/qemu/qemu_process.c (qemuProcessHandleBlockJob): Update
chain after block pull.
2012-10-09 22:08:14 +00:00
|
|
|
}
|
2013-06-28 14:16:44 +00:00
|
|
|
|
2015-03-13 16:22:04 +00:00
|
|
|
|
2016-02-29 14:39:57 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainDiskChainElementRevoke:
|
|
|
|
*
|
|
|
|
* Revoke access to a single backing chain element. This restores the labels,
|
|
|
|
* removes cgroup ACLs for devices and removes locks.
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainDiskChainElementRevoke(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
virStorageSourcePtr elem)
|
|
|
|
{
|
|
|
|
if (virSecurityManagerRestoreImageLabel(driver->securityManager,
|
|
|
|
vm->def, elem) < 0)
|
|
|
|
VIR_WARN("Unable to restore security label on %s", NULLSTR(elem->path));
|
|
|
|
|
|
|
|
if (qemuTeardownImageCgroup(vm, elem) < 0)
|
|
|
|
VIR_WARN("Failed to teardown cgroup for disk path %s",
|
|
|
|
NULLSTR(elem->path));
|
|
|
|
|
|
|
|
if (virDomainLockImageDetach(driver->lockManager, vm, elem) < 0)
|
|
|
|
VIR_WARN("Unable to release lock on %s", NULLSTR(elem->path));
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainDiskChainElementPrepare:
|
|
|
|
*
|
|
|
|
* Allow a VM access to a single element of a disk backing chain; this helper
|
|
|
|
* ensures that the lock manager, cgroup device controller, and security manager
|
|
|
|
* labelling are all aware of each new file before it is added to a chain */
|
|
|
|
int
|
|
|
|
qemuDomainDiskChainElementPrepare(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
virStorageSourcePtr elem,
|
|
|
|
bool readonly)
|
|
|
|
{
|
|
|
|
bool was_readonly = elem->readonly;
|
|
|
|
virQEMUDriverConfigPtr cfg = NULL;
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
cfg = virQEMUDriverGetConfig(driver);
|
|
|
|
|
|
|
|
elem->readonly = readonly;
|
|
|
|
|
|
|
|
if (virDomainLockImageAttach(driver->lockManager, cfg->uri, vm, elem) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (qemuSetupImageCgroup(vm, elem) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
if (virSecurityManagerSetImageLabel(driver->securityManager, vm->def,
|
|
|
|
elem) < 0)
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
elem->readonly = was_readonly;
|
|
|
|
virObjectUnref(cfg);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-09-15 11:41:42 +00:00
|
|
|
bool
|
2016-04-06 19:00:59 +00:00
|
|
|
qemuDomainDiskSourceDiffers(virDomainDiskDefPtr disk,
|
2015-09-15 11:41:42 +00:00
|
|
|
virDomainDiskDefPtr origDisk)
|
|
|
|
{
|
|
|
|
char *diskSrc = NULL, *origDiskSrc = NULL;
|
|
|
|
bool diskEmpty, origDiskEmpty;
|
|
|
|
bool ret = true;
|
|
|
|
|
|
|
|
diskEmpty = virStorageSourceIsEmpty(disk->src);
|
|
|
|
origDiskEmpty = virStorageSourceIsEmpty(origDisk->src);
|
|
|
|
|
|
|
|
if (diskEmpty && origDiskEmpty)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
if (diskEmpty ^ origDiskEmpty)
|
|
|
|
return true;
|
|
|
|
|
2016-04-06 19:00:59 +00:00
|
|
|
/* This won't be a network storage, so no need to get the diskPriv
|
|
|
|
* in order to fetch the secret, thus NULL for param2 */
|
|
|
|
if (qemuGetDriveSourceString(disk->src, NULL, &diskSrc) < 0 ||
|
|
|
|
qemuGetDriveSourceString(origDisk->src, NULL, &origDiskSrc) < 0)
|
2015-09-15 11:41:42 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
/* So far in qemu disk sources are considered different
|
|
|
|
* if either path to disk or its format changes. */
|
|
|
|
ret = virDomainDiskGetFormat(disk) != virDomainDiskGetFormat(origDisk) ||
|
|
|
|
STRNEQ_NULLABLE(diskSrc, origDiskSrc);
|
|
|
|
cleanup:
|
|
|
|
VIR_FREE(diskSrc);
|
|
|
|
VIR_FREE(origDiskSrc);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-09-15 13:25:18 +00:00
|
|
|
/*
|
|
|
|
* Makes sure the @disk differs from @orig_disk only by the source
|
|
|
|
* path and nothing else. Fields that are being checked and the
|
|
|
|
* information whether they are nullable (may not be specified) or is
|
|
|
|
* taken from the virDomainDiskDefFormat() code.
|
|
|
|
*/
|
|
|
|
bool
|
|
|
|
qemuDomainDiskChangeSupported(virDomainDiskDefPtr disk,
|
|
|
|
virDomainDiskDefPtr orig_disk)
|
|
|
|
{
|
|
|
|
#define CHECK_EQ(field, field_name, nullable) \
|
|
|
|
do { \
|
|
|
|
if (nullable && !disk->field) \
|
|
|
|
break; \
|
|
|
|
if (disk->field != orig_disk->field) { \
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED, \
|
|
|
|
_("cannot modify field '%s' of the disk"), \
|
|
|
|
field_name); \
|
|
|
|
return false; \
|
|
|
|
} \
|
|
|
|
} while (0)
|
|
|
|
|
|
|
|
CHECK_EQ(device, "device", false);
|
2015-09-15 13:41:18 +00:00
|
|
|
CHECK_EQ(bus, "bus", false);
|
|
|
|
if (STRNEQ(disk->dst, orig_disk->dst)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("cannot modify field '%s' of the disk"),
|
2016-04-28 15:50:40 +00:00
|
|
|
"target");
|
2015-09-15 13:41:18 +00:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
CHECK_EQ(tray_status, "tray", true);
|
|
|
|
CHECK_EQ(removable, "removable", true);
|
2015-09-15 13:25:18 +00:00
|
|
|
|
|
|
|
if (disk->geometry.cylinders &&
|
|
|
|
disk->geometry.heads &&
|
|
|
|
disk->geometry.sectors) {
|
|
|
|
CHECK_EQ(geometry.cylinders, "geometry cylinders", false);
|
|
|
|
CHECK_EQ(geometry.heads, "geometry heads", false);
|
|
|
|
CHECK_EQ(geometry.sectors, "geometry sectors", false);
|
|
|
|
CHECK_EQ(geometry.trans, "BIOS-translation-modus", true);
|
|
|
|
}
|
|
|
|
|
|
|
|
CHECK_EQ(blockio.logical_block_size,
|
|
|
|
"blockio logical_block_size", false);
|
|
|
|
CHECK_EQ(blockio.physical_block_size,
|
|
|
|
"blockio physical_block_size", false);
|
|
|
|
|
|
|
|
CHECK_EQ(blkdeviotune.total_bytes_sec,
|
|
|
|
"blkdeviotune total_bytes_sec",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.read_bytes_sec,
|
|
|
|
"blkdeviotune read_bytes_sec",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.write_bytes_sec,
|
|
|
|
"blkdeviotune write_bytes_sec",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.total_iops_sec,
|
|
|
|
"blkdeviotune total_iops_sec",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.read_iops_sec,
|
|
|
|
"blkdeviotune read_iops_sec",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.write_iops_sec,
|
|
|
|
"blkdeviotune write_iops_sec",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.total_bytes_sec_max,
|
|
|
|
"blkdeviotune total_bytes_sec_max",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.read_bytes_sec_max,
|
|
|
|
"blkdeviotune read_bytes_sec_max",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.write_bytes_sec_max,
|
|
|
|
"blkdeviotune write_bytes_sec_max",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.total_iops_sec_max,
|
|
|
|
"blkdeviotune total_iops_sec_max",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.read_iops_sec_max,
|
|
|
|
"blkdeviotune read_iops_sec_max",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.write_iops_sec_max,
|
|
|
|
"blkdeviotune write_iops_sec_max",
|
|
|
|
true);
|
|
|
|
CHECK_EQ(blkdeviotune.size_iops_sec,
|
|
|
|
"blkdeviotune size_iops_sec",
|
|
|
|
true);
|
|
|
|
|
|
|
|
if (disk->serial && STRNEQ_NULLABLE(disk->serial, orig_disk->serial)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("cannot modify field '%s' of the disk"),
|
|
|
|
"serial");
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (disk->wwn && STRNEQ_NULLABLE(disk->wwn, orig_disk->wwn)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("cannot modify field '%s' of the disk"),
|
|
|
|
"wwn");
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (disk->vendor && STRNEQ_NULLABLE(disk->vendor, orig_disk->vendor)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("cannot modify field '%s' of the disk"),
|
|
|
|
"vendor");
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (disk->product && STRNEQ_NULLABLE(disk->product, orig_disk->product)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("cannot modify field '%s' of the disk"),
|
|
|
|
"product");
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2015-09-15 13:41:18 +00:00
|
|
|
CHECK_EQ(cachemode, "cache", true);
|
|
|
|
CHECK_EQ(error_policy, "error_policy", true);
|
|
|
|
CHECK_EQ(rerror_policy, "rerror_policy", true);
|
|
|
|
CHECK_EQ(iomode, "io", true);
|
|
|
|
CHECK_EQ(ioeventfd, "ioeventfd", true);
|
|
|
|
CHECK_EQ(event_idx, "event_idx", true);
|
|
|
|
CHECK_EQ(copy_on_read, "copy_on_read", true);
|
2016-04-28 15:57:33 +00:00
|
|
|
/* "snapshot" is a libvirt internal field and thus can be changed */
|
2015-09-15 15:13:01 +00:00
|
|
|
/* startupPolicy is allowed to be updated. Therefore not checked here. */
|
2015-09-15 13:41:18 +00:00
|
|
|
CHECK_EQ(transient, "transient", true);
|
2015-09-15 13:25:18 +00:00
|
|
|
CHECK_EQ(info.bootIndex, "boot order", true);
|
2015-09-15 13:41:18 +00:00
|
|
|
CHECK_EQ(rawio, "rawio", true);
|
|
|
|
CHECK_EQ(sgio, "sgio", true);
|
|
|
|
CHECK_EQ(discard, "discard", true);
|
|
|
|
CHECK_EQ(iothread, "iothread", true);
|
|
|
|
|
|
|
|
if (disk->domain_name &&
|
|
|
|
STRNEQ_NULLABLE(disk->domain_name, orig_disk->domain_name)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("cannot modify field '%s' of the disk"),
|
|
|
|
"backenddomain");
|
|
|
|
return false;
|
|
|
|
}
|
2015-09-15 13:25:18 +00:00
|
|
|
|
2016-04-28 14:45:02 +00:00
|
|
|
/* checks for fields stored in disk->src */
|
|
|
|
/* unfortunately 'readonly' and 'shared' can't be converted to tristate
|
|
|
|
* values thus we need to ignore the check if the new value is 'false' */
|
|
|
|
CHECK_EQ(src->readonly, "readonly", true);
|
|
|
|
CHECK_EQ(src->shared, "shared", true);
|
|
|
|
|
2015-09-15 13:25:18 +00:00
|
|
|
#undef CHECK_EQ
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2015-03-13 16:22:04 +00:00
|
|
|
bool
|
|
|
|
qemuDomainDiskBlockJobIsActive(virDomainDiskDefPtr disk)
|
|
|
|
{
|
2015-05-13 09:20:36 +00:00
|
|
|
qemuDomainDiskPrivatePtr diskPriv = QEMU_DOMAIN_DISK_PRIVATE(disk);
|
|
|
|
|
2015-03-13 16:22:04 +00:00
|
|
|
if (disk->mirror) {
|
|
|
|
virReportError(VIR_ERR_BLOCK_COPY_ACTIVE,
|
|
|
|
_("disk '%s' already in active block job"),
|
|
|
|
disk->dst);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2015-05-13 09:20:36 +00:00
|
|
|
if (diskPriv->blockjob) {
|
2015-03-13 16:22:04 +00:00
|
|
|
virReportError(VIR_ERR_OPERATION_UNSUPPORTED,
|
|
|
|
_("disk '%s' already in active block job"),
|
|
|
|
disk->dst);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-05-13 07:47:21 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainHasBlockjob:
|
|
|
|
* @vm: domain object
|
|
|
|
* @copy_only: Reject only block copy job
|
|
|
|
*
|
|
|
|
* Return true if @vm has at least one disk involved in a current block
|
|
|
|
* copy/commit/pull job. If @copy_only is true this returns true only if the
|
|
|
|
* disk is involved in a block copy.
|
|
|
|
* */
|
|
|
|
bool
|
|
|
|
qemuDomainHasBlockjob(virDomainObjPtr vm,
|
|
|
|
bool copy_only)
|
|
|
|
{
|
|
|
|
size_t i;
|
|
|
|
for (i = 0; i < vm->def->ndisks; i++) {
|
2015-05-13 09:20:36 +00:00
|
|
|
virDomainDiskDefPtr disk = vm->def->disks[i];
|
|
|
|
qemuDomainDiskPrivatePtr diskPriv = QEMU_DOMAIN_DISK_PRIVATE(disk);
|
|
|
|
|
|
|
|
if (!copy_only && diskPriv->blockjob)
|
2015-05-13 07:47:21 +00:00
|
|
|
return true;
|
|
|
|
|
2015-05-13 09:20:36 +00:00
|
|
|
if (disk->mirror && disk->mirrorJob == VIR_DOMAIN_BLOCK_JOB_TYPE_COPY)
|
2015-05-13 07:47:21 +00:00
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2013-07-19 13:08:29 +00:00
|
|
|
int
|
|
|
|
qemuDomainUpdateDeviceList(virQEMUDriverPtr driver,
|
2014-08-12 02:54:42 +00:00
|
|
|
virDomainObjPtr vm,
|
|
|
|
int asyncJob)
|
2013-07-19 13:08:29 +00:00
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
char **aliases;
|
2014-12-16 09:40:58 +00:00
|
|
|
int rc;
|
2013-07-19 13:08:29 +00:00
|
|
|
|
|
|
|
if (!virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_DEVICE_DEL_EVENT))
|
|
|
|
return 0;
|
|
|
|
|
2014-08-12 02:54:42 +00:00
|
|
|
if (qemuDomainObjEnterMonitorAsync(driver, vm, asyncJob) < 0)
|
|
|
|
return -1;
|
2014-12-16 09:40:58 +00:00
|
|
|
rc = qemuMonitorGetDeviceAliases(priv->mon, &aliases);
|
|
|
|
if (qemuDomainObjExitMonitor(driver, vm) < 0)
|
|
|
|
return -1;
|
|
|
|
if (rc < 0)
|
2013-07-19 13:08:29 +00:00
|
|
|
return -1;
|
|
|
|
|
|
|
|
virStringFreeList(priv->qemuDevices);
|
|
|
|
priv->qemuDevices = aliases;
|
|
|
|
return 0;
|
|
|
|
}
|
qemu: Introduce qemuDomainDefCheckABIStability
https://bugzilla.redhat.com/show_bug.cgi?id=994364
Whenever we check for ABI stability, we have new xml (e.g. provided by
user, or obtained from snapshot, whatever) which we compare to old xml
and see if ABI won't break. However, if the new xml was produced via
virDomainGetXMLDesc(..., VIR_DOMAIN_XML_MIGRATABLE) it lacks some
devices, e.g. 'pci-root' controller. Hence, the ABI stability check
fails even though it is stable. Moreover, we can't simply fix
virDomainDefCheckABIStability because removing the correct devices is
task for the driver. For instance, qemu driver wants to remove the usb
controller too, while LXC driver doesn't. That's why we need special
qemu wrapper over virDomainDefCheckABIStability which removes the
correct devices from domain XML, produces MIGRATABLE xml and calls the
check ABI stability function.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2013-10-10 08:53:56 +00:00
|
|
|
|
2015-01-19 12:21:09 +00:00
|
|
|
|
|
|
|
int
|
|
|
|
qemuDomainUpdateMemoryDeviceInfo(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
int asyncJob)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
virHashTablePtr meminfo = NULL;
|
|
|
|
int rc;
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
if (vm->def->nmems == 0)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (qemuDomainObjEnterMonitorAsync(driver, vm, asyncJob) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
rc = qemuMonitorGetMemoryDeviceInfo(priv->mon, &meminfo);
|
|
|
|
|
|
|
|
if (qemuDomainObjExitMonitor(driver, vm) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
/* if qemu doesn't support the info request, just carry on */
|
|
|
|
if (rc == -2)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (rc < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
for (i = 0; i < vm->def->nmems; i++) {
|
|
|
|
virDomainMemoryDefPtr mem = vm->def->mems[i];
|
|
|
|
qemuMonitorMemoryDeviceInfoPtr dimm;
|
|
|
|
|
|
|
|
if (!mem->info.alias)
|
|
|
|
continue;
|
|
|
|
|
|
|
|
if (!(dimm = virHashLookup(meminfo, mem->info.alias)))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
mem->info.type = VIR_DOMAIN_DEVICE_ADDRESS_TYPE_DIMM;
|
|
|
|
mem->info.addr.dimm.slot = dimm->slot;
|
|
|
|
mem->info.addr.dimm.base = dimm->address;
|
|
|
|
}
|
|
|
|
|
|
|
|
virHashFree(meminfo);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
qemu: Introduce qemuDomainDefCheckABIStability
https://bugzilla.redhat.com/show_bug.cgi?id=994364
Whenever we check for ABI stability, we have new xml (e.g. provided by
user, or obtained from snapshot, whatever) which we compare to old xml
and see if ABI won't break. However, if the new xml was produced via
virDomainGetXMLDesc(..., VIR_DOMAIN_XML_MIGRATABLE) it lacks some
devices, e.g. 'pci-root' controller. Hence, the ABI stability check
fails even though it is stable. Moreover, we can't simply fix
virDomainDefCheckABIStability because removing the correct devices is
task for the driver. For instance, qemu driver wants to remove the usb
controller too, while LXC driver doesn't. That's why we need special
qemu wrapper over virDomainDefCheckABIStability which removes the
correct devices from domain XML, produces MIGRATABLE xml and calls the
check ABI stability function.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2013-10-10 08:53:56 +00:00
|
|
|
bool
|
|
|
|
qemuDomainDefCheckABIStability(virQEMUDriverPtr driver,
|
|
|
|
virDomainDefPtr src,
|
|
|
|
virDomainDefPtr dst)
|
|
|
|
{
|
|
|
|
virDomainDefPtr migratableDefSrc = NULL;
|
|
|
|
virDomainDefPtr migratableDefDst = NULL;
|
2016-06-09 14:32:32 +00:00
|
|
|
const unsigned int flags = VIR_DOMAIN_XML_SECURE |
|
|
|
|
VIR_DOMAIN_XML_UPDATE_CPU |
|
|
|
|
VIR_DOMAIN_XML_MIGRATABLE;
|
|
|
|
const unsigned int check_flags = VIR_DOMAIN_DEF_ABI_CHECK_SKIP_VOLATILE;
|
qemu: Introduce qemuDomainDefCheckABIStability
https://bugzilla.redhat.com/show_bug.cgi?id=994364
Whenever we check for ABI stability, we have new xml (e.g. provided by
user, or obtained from snapshot, whatever) which we compare to old xml
and see if ABI won't break. However, if the new xml was produced via
virDomainGetXMLDesc(..., VIR_DOMAIN_XML_MIGRATABLE) it lacks some
devices, e.g. 'pci-root' controller. Hence, the ABI stability check
fails even though it is stable. Moreover, we can't simply fix
virDomainDefCheckABIStability because removing the correct devices is
task for the driver. For instance, qemu driver wants to remove the usb
controller too, while LXC driver doesn't. That's why we need special
qemu wrapper over virDomainDefCheckABIStability which removes the
correct devices from domain XML, produces MIGRATABLE xml and calls the
check ABI stability function.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2013-10-10 08:53:56 +00:00
|
|
|
bool ret = false;
|
|
|
|
|
|
|
|
if (!(migratableDefSrc = qemuDomainDefCopy(driver, src, flags)) ||
|
|
|
|
!(migratableDefDst = qemuDomainDefCopy(driver, dst, flags)))
|
|
|
|
goto cleanup;
|
|
|
|
|
2016-06-09 14:32:32 +00:00
|
|
|
if (!virDomainDefCheckABIStabilityFlags(migratableDefSrc,
|
|
|
|
migratableDefDst,
|
|
|
|
check_flags))
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
/* Force update any skipped values from the volatile flag */
|
|
|
|
dst->mem.cur_balloon = src->mem.cur_balloon;
|
|
|
|
|
|
|
|
ret = true;
|
qemu: Introduce qemuDomainDefCheckABIStability
https://bugzilla.redhat.com/show_bug.cgi?id=994364
Whenever we check for ABI stability, we have new xml (e.g. provided by
user, or obtained from snapshot, whatever) which we compare to old xml
and see if ABI won't break. However, if the new xml was produced via
virDomainGetXMLDesc(..., VIR_DOMAIN_XML_MIGRATABLE) it lacks some
devices, e.g. 'pci-root' controller. Hence, the ABI stability check
fails even though it is stable. Moreover, we can't simply fix
virDomainDefCheckABIStability because removing the correct devices is
task for the driver. For instance, qemu driver wants to remove the usb
controller too, while LXC driver doesn't. That's why we need special
qemu wrapper over virDomainDefCheckABIStability which removes the
correct devices from domain XML, produces MIGRATABLE xml and calls the
check ABI stability function.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2013-10-10 08:53:56 +00:00
|
|
|
|
2014-03-25 06:49:44 +00:00
|
|
|
cleanup:
|
qemu: Introduce qemuDomainDefCheckABIStability
https://bugzilla.redhat.com/show_bug.cgi?id=994364
Whenever we check for ABI stability, we have new xml (e.g. provided by
user, or obtained from snapshot, whatever) which we compare to old xml
and see if ABI won't break. However, if the new xml was produced via
virDomainGetXMLDesc(..., VIR_DOMAIN_XML_MIGRATABLE) it lacks some
devices, e.g. 'pci-root' controller. Hence, the ABI stability check
fails even though it is stable. Moreover, we can't simply fix
virDomainDefCheckABIStability because removing the correct devices is
task for the driver. For instance, qemu driver wants to remove the usb
controller too, while LXC driver doesn't. That's why we need special
qemu wrapper over virDomainDefCheckABIStability which removes the
correct devices from domain XML, produces MIGRATABLE xml and calls the
check ABI stability function.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
2013-10-10 08:53:56 +00:00
|
|
|
virDomainDefFree(migratableDefSrc);
|
|
|
|
virDomainDefFree(migratableDefDst);
|
|
|
|
return ret;
|
|
|
|
}
|
2014-02-27 10:45:13 +00:00
|
|
|
|
|
|
|
bool
|
2015-02-27 13:06:47 +00:00
|
|
|
qemuDomainAgentAvailable(virDomainObjPtr vm,
|
2014-02-27 10:45:13 +00:00
|
|
|
bool reportError)
|
|
|
|
{
|
2015-02-27 13:06:47 +00:00
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
|
2015-07-03 06:58:05 +00:00
|
|
|
if (virDomainObjGetState(vm, NULL) != VIR_DOMAIN_RUNNING) {
|
|
|
|
if (reportError) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_INVALID, "%s",
|
|
|
|
_("domain is not running"));
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
}
|
2014-02-27 10:45:13 +00:00
|
|
|
if (priv->agentError) {
|
|
|
|
if (reportError) {
|
|
|
|
virReportError(VIR_ERR_AGENT_UNRESPONSIVE, "%s",
|
|
|
|
_("QEMU guest agent is not "
|
|
|
|
"available due to an error"));
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (!priv->agent) {
|
2015-04-24 14:43:38 +00:00
|
|
|
if (qemuFindAgentConfig(vm->def)) {
|
|
|
|
if (reportError) {
|
|
|
|
virReportError(VIR_ERR_AGENT_UNRESPONSIVE, "%s",
|
|
|
|
_("QEMU guest agent is not connected"));
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
} else {
|
|
|
|
if (reportError) {
|
|
|
|
virReportError(VIR_ERR_ARGUMENT_UNSUPPORTED, "%s",
|
|
|
|
_("QEMU guest agent is not configured"));
|
|
|
|
}
|
|
|
|
return false;
|
2014-02-27 10:45:13 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
qemu: completely rework reference counting
There is one problem that causes various errors in the daemon. When
domain is waiting for a job, it is unlocked while waiting on the
condition. However, if that domain is for example transient and being
removed in another API (e.g. cancelling incoming migration), it get's
unref'd. If the first call, that was waiting, fails to get the job, it
unref's the domain object, and because it was the last reference, it
causes clearing of the whole domain object. However, when finishing the
call, the domain must be unlocked, but there is no way for the API to
know whether it was cleaned or not (unless there is some ugly temporary
variable, but let's scratch that).
The root cause is that our APIs don't ref the objects they are using and
all use the implicit reference that the object has when it is in the
domain list. That reference can be removed when the API is waiting for
a job. And because each domain doesn't do its ref'ing, it results in
the ugly checking of the return value of virObjectUnref() that we have
everywhere.
This patch changes qemuDomObjFromDomain() to ref the domain (using
virDomainObjListFindByUUIDRef()) and adds qemuDomObjEndAPI() which
should be the only function in which the return value of
virObjectUnref() is checked. This makes all reference counting
deterministic and makes the code a bit clearer.
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
2014-12-04 13:41:36 +00:00
|
|
|
|
2015-02-18 13:31:47 +00:00
|
|
|
|
2015-07-31 14:00:20 +00:00
|
|
|
static unsigned long long
|
2015-09-21 16:10:55 +00:00
|
|
|
qemuDomainGetMemorySizeAlignment(virDomainDefPtr def)
|
2015-07-31 14:00:20 +00:00
|
|
|
{
|
2015-09-21 16:10:55 +00:00
|
|
|
/* PPC requires the memory sizes to be rounded to 256MiB increments, so
|
|
|
|
* round them to the size always. */
|
|
|
|
if (ARCH_IS_PPC64(def->os.arch))
|
|
|
|
return 256 * 1024;
|
|
|
|
|
2015-07-31 14:00:20 +00:00
|
|
|
/* Align memory size. QEMU requires rounding to next 4KiB block.
|
|
|
|
* We'll take the "traditional" path and round it to 1MiB*/
|
|
|
|
|
|
|
|
return 1024;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-09-23 11:07:03 +00:00
|
|
|
static unsigned long long
|
|
|
|
qemuDomainGetMemoryModuleSizeAlignment(const virDomainDef *def,
|
|
|
|
const virDomainMemoryDef *mem ATTRIBUTE_UNUSED)
|
|
|
|
{
|
|
|
|
/* PPC requires the memory sizes to be rounded to 256MiB increments, so
|
|
|
|
* round them to the size always. */
|
|
|
|
if (ARCH_IS_PPC64(def->os.arch))
|
|
|
|
return 256 * 1024;
|
|
|
|
|
|
|
|
/* dimm memory modules require 2MiB alignment rather than the 1MiB we are
|
|
|
|
* using elsewhere. */
|
|
|
|
return 2048;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-02-18 13:31:47 +00:00
|
|
|
int
|
|
|
|
qemuDomainAlignMemorySizes(virDomainDefPtr def)
|
|
|
|
{
|
2015-12-01 13:08:37 +00:00
|
|
|
unsigned long long maxmemkb = virMemoryMaxValue(false) >> 10;
|
|
|
|
unsigned long long maxmemcapped = virMemoryMaxValue(true) >> 10;
|
2015-08-13 14:39:28 +00:00
|
|
|
unsigned long long initialmem = 0;
|
2016-06-14 09:23:23 +00:00
|
|
|
unsigned long long hotplugmem = 0;
|
2015-02-18 13:31:47 +00:00
|
|
|
unsigned long long mem;
|
2015-07-31 14:00:20 +00:00
|
|
|
unsigned long long align = qemuDomainGetMemorySizeAlignment(def);
|
2015-02-18 13:31:47 +00:00
|
|
|
size_t ncells = virDomainNumaGetNodeCount(def->numa);
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
/* align NUMA cell sizes if relevant */
|
|
|
|
for (i = 0; i < ncells; i++) {
|
2015-08-13 14:39:28 +00:00
|
|
|
mem = VIR_ROUND_UP(virDomainNumaGetNodeMemorySize(def->numa, i), align);
|
|
|
|
initialmem += mem;
|
2015-12-01 13:08:37 +00:00
|
|
|
|
|
|
|
if (mem > maxmemkb) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("memory size of NUMA node '%zu' overflowed after "
|
|
|
|
"alignment"), i);
|
|
|
|
return -1;
|
|
|
|
}
|
2015-08-13 14:39:28 +00:00
|
|
|
virDomainNumaSetNodeMemorySize(def->numa, i, mem);
|
2015-02-18 13:31:47 +00:00
|
|
|
}
|
|
|
|
|
2015-08-13 14:39:28 +00:00
|
|
|
/* align initial memory size, if NUMA is present calculate it as total of
|
|
|
|
* individual aligned NUMA node sizes */
|
|
|
|
if (initialmem == 0)
|
|
|
|
initialmem = VIR_ROUND_UP(virDomainDefGetMemoryInitial(def), align);
|
|
|
|
|
2015-12-01 13:08:37 +00:00
|
|
|
if (initialmem > maxmemcapped) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("initial memory size overflowed after alignment"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2015-07-31 14:00:20 +00:00
|
|
|
def->mem.max_memory = VIR_ROUND_UP(def->mem.max_memory, align);
|
2015-12-01 13:08:37 +00:00
|
|
|
if (def->mem.max_memory > maxmemkb) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("maximum memory size overflowed after alignment"));
|
|
|
|
return -1;
|
|
|
|
}
|
2014-10-06 12:18:37 +00:00
|
|
|
|
2015-01-09 09:40:37 +00:00
|
|
|
/* Align memory module sizes */
|
2015-09-23 11:07:03 +00:00
|
|
|
for (i = 0; i < def->nmems; i++) {
|
|
|
|
align = qemuDomainGetMemoryModuleSizeAlignment(def, def->mems[i]);
|
2015-07-31 14:00:20 +00:00
|
|
|
def->mems[i]->size = VIR_ROUND_UP(def->mems[i]->size, align);
|
2016-06-14 09:23:23 +00:00
|
|
|
hotplugmem += def->mems[i]->size;
|
2015-12-01 13:08:37 +00:00
|
|
|
|
|
|
|
if (def->mems[i]->size > maxmemkb) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("size of memory module '%zu' overflowed after "
|
|
|
|
"alignment"), i);
|
|
|
|
return -1;
|
|
|
|
}
|
2015-09-23 11:07:03 +00:00
|
|
|
}
|
2015-01-09 09:40:37 +00:00
|
|
|
|
2016-06-14 09:23:23 +00:00
|
|
|
virDomainDefSetMemoryTotal(def, initialmem + hotplugmem);
|
|
|
|
|
2015-02-18 13:31:47 +00:00
|
|
|
return 0;
|
|
|
|
}
|
2015-01-09 09:40:37 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainMemoryDeviceAlignSize:
|
|
|
|
* @mem: memory device definition object
|
|
|
|
*
|
|
|
|
* Aligns the size of the memory module as qemu enforces it. The size is updated
|
|
|
|
* inplace. Default rounding is now to 1 MiB (qemu requires rouding to page,
|
|
|
|
* size so this should be safe).
|
|
|
|
*/
|
|
|
|
void
|
2015-07-31 14:00:20 +00:00
|
|
|
qemuDomainMemoryDeviceAlignSize(virDomainDefPtr def,
|
|
|
|
virDomainMemoryDefPtr mem)
|
2015-01-09 09:40:37 +00:00
|
|
|
{
|
2015-07-31 14:00:20 +00:00
|
|
|
mem->size = VIR_ROUND_UP(mem->size, qemuDomainGetMemorySizeAlignment(def));
|
2015-01-09 09:40:37 +00:00
|
|
|
}
|
2015-03-31 15:24:50 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainGetMonitor:
|
|
|
|
* @vm: domain object
|
|
|
|
*
|
|
|
|
* Returns the monitor pointer corresponding to the domain object @vm.
|
|
|
|
*/
|
|
|
|
qemuMonitorPtr
|
|
|
|
qemuDomainGetMonitor(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
return ((qemuDomainObjPrivatePtr) vm->privateData)->mon;
|
|
|
|
}
|
2015-03-31 15:29:35 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainSupportsBlockJobs:
|
|
|
|
* @vm: domain object
|
|
|
|
* @modern: pointer to bool that returns whether modern block jobs are supported
|
|
|
|
*
|
|
|
|
* Returns -1 in case when qemu does not support block jobs at all. Otherwise
|
|
|
|
* returns 0 and optionally fills @modern to denote that modern (async) block
|
|
|
|
* jobs are supported.
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainSupportsBlockJobs(virDomainObjPtr vm,
|
|
|
|
bool *modern)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
2015-04-09 13:36:26 +00:00
|
|
|
bool asynchronous = virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_BLOCKJOB_ASYNC);
|
|
|
|
bool synchronous = virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_BLOCKJOB_SYNC);
|
2015-03-31 15:29:35 +00:00
|
|
|
|
2015-04-09 13:36:26 +00:00
|
|
|
if (!synchronous && !asynchronous) {
|
2015-03-31 15:29:35 +00:00
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("block jobs not supported with this QEMU binary"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (modern)
|
2015-04-09 13:36:26 +00:00
|
|
|
*modern = asynchronous;
|
2015-03-31 15:29:35 +00:00
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
2015-04-24 14:43:38 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuFindAgentConfig:
|
|
|
|
* @def: domain definition
|
|
|
|
*
|
|
|
|
* Returns the pointer to the channel definition that is used to access the
|
|
|
|
* guest agent if the agent is configured or NULL otherwise.
|
|
|
|
*/
|
2016-01-08 15:21:30 +00:00
|
|
|
virDomainChrDefPtr
|
2015-04-24 14:43:38 +00:00
|
|
|
qemuFindAgentConfig(virDomainDefPtr def)
|
|
|
|
{
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
for (i = 0; i < def->nchannels; i++) {
|
|
|
|
virDomainChrDefPtr channel = def->channels[i];
|
|
|
|
|
|
|
|
if (channel->targetType != VIR_DOMAIN_CHR_CHANNEL_TARGET_TYPE_VIRTIO)
|
|
|
|
continue;
|
|
|
|
|
2016-01-08 15:21:30 +00:00
|
|
|
if (STREQ_NULLABLE(channel->target.name, "org.qemu.guest_agent.0"))
|
|
|
|
return channel;
|
2015-04-24 14:43:38 +00:00
|
|
|
}
|
|
|
|
|
2016-01-08 15:21:30 +00:00
|
|
|
return NULL;
|
2015-04-24 14:43:38 +00:00
|
|
|
}
|
2015-04-28 09:21:52 +00:00
|
|
|
|
|
|
|
|
|
|
|
bool
|
|
|
|
qemuDomainMachineIsQ35(const virDomainDef *def)
|
|
|
|
{
|
|
|
|
return (STRPREFIX(def->os.machine, "pc-q35") ||
|
|
|
|
STREQ(def->os.machine, "q35"));
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
bool
|
|
|
|
qemuDomainMachineIsI440FX(const virDomainDef *def)
|
|
|
|
{
|
|
|
|
return (STREQ(def->os.machine, "pc") ||
|
|
|
|
STRPREFIX(def->os.machine, "pc-0.") ||
|
|
|
|
STRPREFIX(def->os.machine, "pc-1.") ||
|
|
|
|
STRPREFIX(def->os.machine, "pc-i440") ||
|
|
|
|
STRPREFIX(def->os.machine, "rhel"));
|
|
|
|
}
|
2015-05-27 13:51:52 +00:00
|
|
|
|
|
|
|
|
2015-06-22 13:20:55 +00:00
|
|
|
bool
|
|
|
|
qemuDomainMachineNeedsFDC(const virDomainDef *def)
|
|
|
|
{
|
|
|
|
char *p = STRSKIP(def->os.machine, "pc-q35-");
|
|
|
|
|
|
|
|
if (p) {
|
|
|
|
if (STRPREFIX(p, "1.") ||
|
|
|
|
STRPREFIX(p, "2.0") ||
|
|
|
|
STRPREFIX(p, "2.1") ||
|
|
|
|
STRPREFIX(p, "2.2") ||
|
|
|
|
STRPREFIX(p, "2.3"))
|
|
|
|
return false;
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-09-02 20:02:14 +00:00
|
|
|
bool
|
|
|
|
qemuDomainMachineIsS390CCW(const virDomainDef *def)
|
|
|
|
{
|
|
|
|
return STRPREFIX(def->os.machine, "s390-ccw");
|
|
|
|
}
|
|
|
|
|
2015-06-22 13:20:55 +00:00
|
|
|
|
2016-05-03 08:49:40 +00:00
|
|
|
bool
|
|
|
|
qemuDomainMachineIsVirt(const virDomainDef *def)
|
|
|
|
{
|
2016-06-22 16:55:37 +00:00
|
|
|
if (def->os.arch != VIR_ARCH_ARMV7L &&
|
|
|
|
def->os.arch != VIR_ARCH_AARCH64)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
if (STRNEQ(def->os.machine, "virt") &&
|
|
|
|
!STRPREFIX(def->os.machine, "virt-"))
|
|
|
|
return false;
|
|
|
|
|
|
|
|
return true;
|
2016-05-03 08:49:40 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-23 08:19:05 +00:00
|
|
|
bool
|
|
|
|
qemuDomainMachineIsPSeries(const virDomainDef *def)
|
|
|
|
{
|
|
|
|
if (!ARCH_IS_PPC64(def->os.arch))
|
|
|
|
return false;
|
|
|
|
|
|
|
|
if (STRNEQ(def->os.machine, "pseries") &&
|
|
|
|
!STRPREFIX(def->os.machine, "pseries-"))
|
|
|
|
return false;
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-10-08 05:25:32 +00:00
|
|
|
static bool
|
|
|
|
qemuCheckMemoryDimmConflict(const virDomainDef *def,
|
|
|
|
const virDomainMemoryDef *mem)
|
|
|
|
{
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
for (i = 0; i < def->nmems; i++) {
|
|
|
|
virDomainMemoryDefPtr tmp = def->mems[i];
|
|
|
|
|
|
|
|
if (tmp == mem ||
|
|
|
|
tmp->info.type != VIR_DOMAIN_DEVICE_ADDRESS_TYPE_DIMM)
|
|
|
|
continue;
|
|
|
|
|
|
|
|
if (mem->info.addr.dimm.slot == tmp->info.addr.dimm.slot) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("memory device slot '%u' is already being "
|
|
|
|
"used by another memory device"),
|
|
|
|
mem->info.addr.dimm.slot);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (mem->info.addr.dimm.base != 0 &&
|
|
|
|
mem->info.addr.dimm.base == tmp->info.addr.dimm.base) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("memory device base '0x%llx' is already being "
|
|
|
|
"used by another memory device"),
|
|
|
|
mem->info.addr.dimm.base);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
static int
|
|
|
|
qemuDomainDefValidateMemoryHotplugDevice(const virDomainMemoryDef *mem,
|
|
|
|
const virDomainDef *def)
|
|
|
|
{
|
|
|
|
switch ((virDomainMemoryModel) mem->model) {
|
|
|
|
case VIR_DOMAIN_MEMORY_MODEL_DIMM:
|
|
|
|
if (mem->info.type != VIR_DOMAIN_DEVICE_ADDRESS_TYPE_DIMM &&
|
|
|
|
mem->info.type != VIR_DOMAIN_DEVICE_ADDRESS_TYPE_NONE) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("only 'dimm' addresses are supported for the "
|
|
|
|
"pc-dimm device"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2015-10-13 17:12:23 +00:00
|
|
|
if (virDomainNumaGetNodeCount(def->numa) != 0) {
|
|
|
|
if (mem->targetNode == -1) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
2016-03-07 13:24:51 +00:00
|
|
|
_("target NUMA node needs to be specified for "
|
2015-10-13 17:12:23 +00:00
|
|
|
"memory device"));
|
|
|
|
return -1;
|
|
|
|
}
|
2015-10-07 11:52:45 +00:00
|
|
|
}
|
|
|
|
|
2015-10-08 05:25:32 +00:00
|
|
|
if (mem->info.type == VIR_DOMAIN_DEVICE_ADDRESS_TYPE_DIMM) {
|
|
|
|
if (mem->info.addr.dimm.slot >= def->mem.memory_slots) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("memory device slot '%u' exceeds slots "
|
|
|
|
"count '%u'"),
|
|
|
|
mem->info.addr.dimm.slot, def->mem.memory_slots);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (qemuCheckMemoryDimmConflict(def, mem))
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
|
|
|
|
case VIR_DOMAIN_MEMORY_MODEL_NONE:
|
|
|
|
case VIR_DOMAIN_MEMORY_MODEL_LAST:
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-10-08 04:06:15 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainDefValidateMemoryHotplug:
|
|
|
|
* @def: domain definition
|
|
|
|
* @qemuCaps: qemu capabilities object
|
|
|
|
* @mem: definition of memory device that is to be added to @def with hotplug,
|
|
|
|
* NULL in case of regular VM startup
|
|
|
|
*
|
|
|
|
* Validates that the domain definition and memory modules have valid
|
|
|
|
* configuration and are possibly able to accept @mem via hotplug if it's
|
|
|
|
* non-NULL.
|
|
|
|
*
|
|
|
|
* Returns 0 on success; -1 and a libvirt error on error.
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainDefValidateMemoryHotplug(const virDomainDef *def,
|
|
|
|
virQEMUCapsPtr qemuCaps,
|
|
|
|
const virDomainMemoryDef *mem)
|
|
|
|
{
|
|
|
|
unsigned int nmems = def->nmems;
|
|
|
|
unsigned long long hotplugSpace;
|
|
|
|
unsigned long long hotplugMemory = 0;
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
hotplugSpace = def->mem.max_memory - virDomainDefGetMemoryInitial(def);
|
|
|
|
|
|
|
|
if (mem) {
|
|
|
|
nmems++;
|
|
|
|
hotplugMemory = mem->size;
|
2015-10-08 05:25:32 +00:00
|
|
|
|
|
|
|
if (qemuDomainDefValidateMemoryHotplugDevice(mem, def) < 0)
|
|
|
|
return -1;
|
2015-10-08 04:06:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (!virDomainDefHasMemoryHotplug(def)) {
|
|
|
|
if (nmems) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("cannot use/hotplug a memory device when domain "
|
|
|
|
"'maxMemory' is not defined"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!virQEMUCapsGet(qemuCaps, QEMU_CAPS_DEVICE_PC_DIMM)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("memory hotplug isn't supported by this QEMU binary"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2015-10-13 17:12:23 +00:00
|
|
|
if (!ARCH_IS_PPC64(def->os.arch)) {
|
|
|
|
/* due to guest support, qemu would silently enable NUMA with one node
|
|
|
|
* once the memory hotplug backend is enabled. To avoid possible
|
|
|
|
* confusion we will enforce user originated numa configuration along
|
|
|
|
* with memory hotplug. */
|
|
|
|
if (virDomainNumaGetNodeCount(def->numa) == 0) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("At least one numa node has to be configured when "
|
|
|
|
"enabling memory hotplug"));
|
|
|
|
return -1;
|
|
|
|
}
|
2015-10-08 04:06:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (nmems > def->mem.memory_slots) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("memory device count '%u' exceeds slots count '%u'"),
|
|
|
|
nmems, def->mem.memory_slots);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2015-10-08 05:25:32 +00:00
|
|
|
for (i = 0; i < def->nmems; i++) {
|
2015-10-08 04:06:15 +00:00
|
|
|
hotplugMemory += def->mems[i]->size;
|
|
|
|
|
2015-10-08 05:25:32 +00:00
|
|
|
/* already existing devices don't need to be checked on hotplug */
|
|
|
|
if (!mem &&
|
|
|
|
qemuDomainDefValidateMemoryHotplugDevice(def->mems[i], def) < 0)
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2015-10-08 04:06:15 +00:00
|
|
|
if (hotplugMemory > hotplugSpace) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("memory device total size exceeds hotplug space"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-11-21 18:58:56 +00:00
|
|
|
bool
|
|
|
|
qemuDomainMachineHasBuiltinIDE(const virDomainDef *def)
|
|
|
|
{
|
|
|
|
return qemuDomainMachineIsI440FX(def) ||
|
|
|
|
STREQ(def->os.machine, "malta") ||
|
|
|
|
STREQ(def->os.machine, "sun4u") ||
|
|
|
|
STREQ(def->os.machine, "g3beige");
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-05-27 13:51:52 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainUpdateCurrentMemorySize:
|
|
|
|
*
|
|
|
|
* Updates the current balloon size from the monitor if necessary. In case when
|
|
|
|
* the balloon is not present for the domain, the function recalculates the
|
|
|
|
* maximum size to reflect possible changes.
|
|
|
|
*
|
|
|
|
* Returns 0 on success and updates vm->def->mem.cur_balloon if necessary, -1 on
|
|
|
|
* error and reports libvirt error.
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainUpdateCurrentMemorySize(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
unsigned long long balloon;
|
|
|
|
int ret = -1;
|
|
|
|
|
|
|
|
/* inactive domain doesn't need size update */
|
|
|
|
if (!virDomainObjIsActive(vm))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
/* if no balloning is available, the current size equals to the current
|
|
|
|
* full memory size */
|
2016-04-06 13:02:31 +00:00
|
|
|
if (!virDomainDefHasMemballoon(vm->def)) {
|
2016-06-15 13:34:04 +00:00
|
|
|
vm->def->mem.cur_balloon = virDomainDefGetMemoryTotal(vm->def);
|
2015-05-27 13:51:52 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* current size is always automagically updated via the event */
|
|
|
|
if (virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_BALLOON_EVENT))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
/* here we need to ask the monitor */
|
|
|
|
|
|
|
|
/* Don't delay if someone's using the monitor, just use existing most
|
|
|
|
* recent data instead */
|
|
|
|
if (qemuDomainJobAllowed(priv, QEMU_JOB_QUERY)) {
|
|
|
|
if (qemuDomainObjBeginJob(driver, vm, QEMU_JOB_QUERY) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if (!virDomainObjIsActive(vm)) {
|
|
|
|
virReportError(VIR_ERR_OPERATION_INVALID, "%s",
|
|
|
|
_("domain is not running"));
|
|
|
|
goto endjob;
|
|
|
|
}
|
|
|
|
|
|
|
|
qemuDomainObjEnterMonitor(driver, vm);
|
|
|
|
ret = qemuMonitorGetBalloonInfo(priv->mon, &balloon);
|
|
|
|
if (qemuDomainObjExitMonitor(driver, vm) < 0)
|
|
|
|
ret = -1;
|
|
|
|
|
|
|
|
endjob:
|
|
|
|
qemuDomainObjEndJob(driver, vm);
|
|
|
|
|
|
|
|
if (ret < 0)
|
|
|
|
return -1;
|
|
|
|
|
2015-06-04 11:47:02 +00:00
|
|
|
vm->def->mem.cur_balloon = balloon;
|
|
|
|
}
|
2015-05-27 13:51:52 +00:00
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
2015-11-06 14:51:33 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
2015-11-24 12:51:11 +00:00
|
|
|
* qemuDomainGetMemLockLimitBytes:
|
2015-11-06 14:51:33 +00:00
|
|
|
*
|
|
|
|
* @def: domain definition
|
|
|
|
*
|
|
|
|
* Returns the size of the memory in bytes that needs to be set as
|
2015-11-13 09:37:12 +00:00
|
|
|
* RLIMIT_MEMLOCK for the QEMU process.
|
2015-11-06 14:51:33 +00:00
|
|
|
* If a mem.hard_limit is set, then that value is preferred; otherwise, the
|
|
|
|
* value returned may depend upon the architecture or devices present.
|
|
|
|
*/
|
|
|
|
unsigned long long
|
2015-11-24 12:51:11 +00:00
|
|
|
qemuDomainGetMemLockLimitBytes(virDomainDefPtr def)
|
2015-11-06 14:51:33 +00:00
|
|
|
{
|
|
|
|
unsigned long long memKB;
|
|
|
|
|
2015-11-11 05:49:06 +00:00
|
|
|
/* prefer the hard limit */
|
|
|
|
if (virMemoryLimitIsSet(def->mem.hard_limit)) {
|
|
|
|
memKB = def->mem.hard_limit;
|
|
|
|
goto done;
|
|
|
|
}
|
|
|
|
|
2015-11-13 09:37:12 +00:00
|
|
|
if (ARCH_IS_PPC64(def->os.arch)) {
|
|
|
|
unsigned long long maxMemory;
|
|
|
|
unsigned long long memory;
|
|
|
|
unsigned long long baseLimit;
|
|
|
|
unsigned long long passthroughLimit;
|
|
|
|
size_t nPCIHostBridges;
|
|
|
|
size_t i;
|
|
|
|
bool usesVFIO = false;
|
|
|
|
|
|
|
|
/* TODO: Detect at runtime once we start using more than just
|
|
|
|
* the default PCI Host Bridge */
|
|
|
|
nPCIHostBridges = 1;
|
|
|
|
|
|
|
|
for (i = 0; i < def->nhostdevs; i++) {
|
|
|
|
virDomainHostdevDefPtr dev = def->hostdevs[i];
|
|
|
|
|
|
|
|
if (dev->mode == VIR_DOMAIN_HOSTDEV_MODE_SUBSYS &&
|
|
|
|
dev->source.subsys.type == VIR_DOMAIN_HOSTDEV_SUBSYS_TYPE_PCI &&
|
|
|
|
dev->source.subsys.u.pci.backend == VIR_DOMAIN_HOSTDEV_PCI_BACKEND_VFIO) {
|
|
|
|
usesVFIO = true;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-06-15 13:34:04 +00:00
|
|
|
memory = virDomainDefGetMemoryTotal(def);
|
2015-11-13 09:37:12 +00:00
|
|
|
|
|
|
|
if (def->mem.max_memory)
|
|
|
|
maxMemory = def->mem.max_memory;
|
|
|
|
else
|
|
|
|
maxMemory = memory;
|
|
|
|
|
|
|
|
/* baseLimit := maxMemory / 128 (a)
|
|
|
|
* + 4 MiB * #PHBs + 8 MiB (b)
|
|
|
|
*
|
|
|
|
* (a) is the hash table
|
|
|
|
*
|
|
|
|
* (b) is accounting for the 32-bit DMA window - it could be either the
|
|
|
|
* KVM accelerated TCE tables for emulated devices, or the VFIO
|
|
|
|
* userspace view. The 4 MiB per-PHB (including the default one) covers
|
|
|
|
* a 2GiB DMA window: default is 1GiB, but it's possible it'll be
|
|
|
|
* increased to help performance. The 8 MiB extra should be plenty for
|
|
|
|
* the TCE table index for any reasonable number of PHBs and several
|
|
|
|
* spapr-vlan or spapr-vscsi devices (512kB + a tiny bit each) */
|
|
|
|
baseLimit = maxMemory / 128 +
|
|
|
|
4096 * nPCIHostBridges +
|
|
|
|
8192;
|
|
|
|
|
|
|
|
/* passthroughLimit := max( 2 GiB * #PHBs, (c)
|
|
|
|
* memory (d)
|
|
|
|
* + memory * 1/512 * #PHBs + 8 MiB ) (e)
|
|
|
|
*
|
|
|
|
* (c) is the pre-DDW VFIO DMA window accounting. We're allowing 2 GiB
|
|
|
|
* rather than 1 GiB
|
|
|
|
*
|
|
|
|
* (d) is the with-DDW (and memory pre-registration and related
|
|
|
|
* features) DMA window accounting - assuming that we only account RAM
|
|
|
|
* once, even if mapped to multiple PHBs
|
|
|
|
*
|
|
|
|
* (e) is the with-DDW userspace view and overhead for the 64-bit DMA
|
|
|
|
* window. This is based a bit on expected guest behaviour, but there
|
|
|
|
* really isn't a way to completely avoid that. We assume the guest
|
|
|
|
* requests a 64-bit DMA window (per PHB) just big enough to map all
|
|
|
|
* its RAM. 4 kiB page size gives the 1/512; it will be less with 64
|
|
|
|
* kiB pages, less still if the guest is mapped with hugepages (unlike
|
|
|
|
* the default 32-bit DMA window, DDW windows can use large IOMMU
|
|
|
|
* pages). 8 MiB is for second and further level overheads, like (b) */
|
|
|
|
passthroughLimit = MAX(2 * 1024 * 1024 * nPCIHostBridges,
|
|
|
|
memory +
|
|
|
|
memory / 512 * nPCIHostBridges + 8192);
|
|
|
|
|
|
|
|
if (usesVFIO)
|
|
|
|
memKB = baseLimit + passthroughLimit;
|
|
|
|
else
|
|
|
|
memKB = baseLimit;
|
|
|
|
|
|
|
|
goto done;
|
|
|
|
}
|
|
|
|
|
2015-11-11 05:44:56 +00:00
|
|
|
/* For device passthrough using VFIO the guest memory and MMIO memory
|
|
|
|
* regions need to be locked persistent in order to allow DMA.
|
|
|
|
*
|
|
|
|
* Currently the below limit is based on assumptions about the x86 platform.
|
|
|
|
*
|
|
|
|
* The chosen value of 1GiB below originates from x86 systems where it was
|
|
|
|
* used as space reserved for the MMIO region for the whole system.
|
|
|
|
*
|
|
|
|
* On x86_64 systems the MMIO regions of the IOMMU mapped devices don't
|
|
|
|
* count towards the locked memory limit since the memory is owned by the
|
|
|
|
* device. Emulated devices though do count, but the regions are usually
|
|
|
|
* small. Although it's not guaranteed that the limit will be enough for all
|
|
|
|
* configurations it didn't pose a problem for now.
|
|
|
|
*
|
|
|
|
* http://www.redhat.com/archives/libvir-list/2015-November/msg00329.html
|
|
|
|
*
|
|
|
|
* Note that this may not be valid for all platforms.
|
|
|
|
*/
|
2016-06-15 13:34:04 +00:00
|
|
|
memKB = virDomainDefGetMemoryTotal(def) + 1024 * 1024;
|
2015-11-06 14:51:33 +00:00
|
|
|
|
2015-11-11 05:49:06 +00:00
|
|
|
done:
|
2015-11-06 14:51:33 +00:00
|
|
|
return memKB << 10;
|
|
|
|
}
|
2015-11-06 15:39:31 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @def: domain definition
|
|
|
|
*
|
2015-11-13 09:58:07 +00:00
|
|
|
* Returns true if the locked memory limit needs to be set or updated because
|
|
|
|
* of domain configuration, VFIO passthrough devices or architecture-specific
|
|
|
|
* requirements.
|
2015-11-06 15:39:31 +00:00
|
|
|
* */
|
|
|
|
bool
|
2015-11-24 12:51:11 +00:00
|
|
|
qemuDomainRequiresMemLock(virDomainDefPtr def)
|
2015-11-06 15:39:31 +00:00
|
|
|
{
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
if (def->mem.locked)
|
|
|
|
return true;
|
|
|
|
|
|
|
|
for (i = 0; i < def->nhostdevs; i++) {
|
|
|
|
virDomainHostdevDefPtr dev = def->hostdevs[i];
|
|
|
|
|
|
|
|
if (dev->mode == VIR_DOMAIN_HOSTDEV_MODE_SUBSYS &&
|
|
|
|
dev->source.subsys.type == VIR_DOMAIN_HOSTDEV_SUBSYS_TYPE_PCI &&
|
|
|
|
dev->source.subsys.u.pci.backend == VIR_DOMAIN_HOSTDEV_PCI_BACKEND_VFIO)
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2016-06-29 08:22:32 +00:00
|
|
|
/* ppc64 KVM domains need to lock some memory even when VFIO is not used */
|
|
|
|
if (ARCH_IS_PPC64(def->os.arch) && def->virtType == VIR_DOMAIN_VIRT_KVM)
|
|
|
|
return true;
|
|
|
|
|
2015-11-06 15:39:31 +00:00
|
|
|
return false;
|
|
|
|
}
|
2015-11-11 13:20:04 +00:00
|
|
|
|
2015-12-10 17:39:14 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainAdjustMaxMemLock:
|
|
|
|
* @vm: domain
|
|
|
|
*
|
|
|
|
* Adjust the memory locking limit for the QEMU process associated to @vm, in
|
|
|
|
* order to comply with VFIO or architecture requirements.
|
|
|
|
*
|
2015-12-10 18:13:58 +00:00
|
|
|
* The limit will not be changed unless doing so is needed; the first time
|
|
|
|
* the limit is changed, the original (default) limit is stored in @vm and
|
|
|
|
* that value will be restored if qemuDomainAdjustMaxMemLock() is called once
|
|
|
|
* memory locking is no longer required.
|
2015-12-10 17:39:14 +00:00
|
|
|
*
|
|
|
|
* Returns: 0 on success, <0 on failure
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainAdjustMaxMemLock(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
unsigned long long bytes = 0;
|
|
|
|
int ret = -1;
|
|
|
|
|
2015-11-24 12:51:11 +00:00
|
|
|
if (qemuDomainRequiresMemLock(vm->def)) {
|
2015-12-10 18:13:58 +00:00
|
|
|
/* If this is the first time adjusting the limit, save the current
|
|
|
|
* value so that we can restore it once memory locking is no longer
|
|
|
|
* required. Failing to obtain the current limit is not a critical
|
|
|
|
* failure, it just means we'll be unable to lower it later */
|
|
|
|
if (!vm->original_memlock) {
|
|
|
|
if (virProcessGetMaxMemLock(vm->pid, &(vm->original_memlock)) < 0)
|
|
|
|
vm->original_memlock = 0;
|
|
|
|
}
|
2015-11-24 12:51:11 +00:00
|
|
|
bytes = qemuDomainGetMemLockLimitBytes(vm->def);
|
2015-12-10 18:13:58 +00:00
|
|
|
} else {
|
|
|
|
/* Once memory locking is no longer required, we can restore the
|
|
|
|
* original, usually very low, limit */
|
|
|
|
bytes = vm->original_memlock;
|
|
|
|
vm->original_memlock = 0;
|
|
|
|
}
|
2015-12-10 17:39:14 +00:00
|
|
|
|
|
|
|
/* Trying to set the memory locking limit to zero is a no-op */
|
|
|
|
if (virProcessSetMaxMemLock(vm->pid, bytes) < 0)
|
|
|
|
goto out;
|
|
|
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
out:
|
|
|
|
return ret;
|
|
|
|
}
|
2015-11-11 13:20:04 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainHasVcpuPids:
|
|
|
|
* @vm: Domain object
|
|
|
|
*
|
|
|
|
* Returns true if we were able to successfully detect vCPU pids for the VM.
|
|
|
|
*/
|
|
|
|
bool
|
|
|
|
qemuDomainHasVcpuPids(virDomainObjPtr vm)
|
|
|
|
{
|
2016-07-01 12:56:14 +00:00
|
|
|
size_t i;
|
|
|
|
size_t maxvcpus = virDomainDefGetVcpusMax(vm->def);
|
|
|
|
virDomainVcpuDefPtr vcpu;
|
|
|
|
|
|
|
|
for (i = 0; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(vm->def, i);
|
2015-11-11 13:20:04 +00:00
|
|
|
|
2016-07-01 12:56:14 +00:00
|
|
|
if (QEMU_DOMAIN_VCPU_PRIVATE(vcpu)->tid > 0)
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
2015-11-11 13:20:04 +00:00
|
|
|
}
|
2015-11-12 15:45:12 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainGetVcpuPid:
|
|
|
|
* @vm: domain object
|
|
|
|
* @vcpu: cpu id
|
|
|
|
*
|
|
|
|
* Returns the vCPU pid. If @vcpu is offline or out of range 0 is returned.
|
|
|
|
*/
|
|
|
|
pid_t
|
|
|
|
qemuDomainGetVcpuPid(virDomainObjPtr vm,
|
2016-07-01 12:56:14 +00:00
|
|
|
unsigned int vcpuid)
|
2015-11-12 15:45:12 +00:00
|
|
|
{
|
2016-07-01 12:56:14 +00:00
|
|
|
virDomainVcpuDefPtr vcpu = virDomainDefGetVcpu(vm->def, vcpuid);
|
|
|
|
return QEMU_DOMAIN_VCPU_PRIVATE(vcpu)->tid;
|
2015-11-12 15:45:12 +00:00
|
|
|
}
|
2015-12-15 13:45:33 +00:00
|
|
|
|
|
|
|
|
2016-07-08 13:39:32 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainValidateVcpuInfo:
|
|
|
|
*
|
|
|
|
* Validates vcpu thread information. If vcpu thread IDs are reported by qemu,
|
|
|
|
* this function validates that online vcpus have thread info present and
|
|
|
|
* offline vcpus don't.
|
|
|
|
*
|
|
|
|
* Returns 0 on success -1 on error.
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainValidateVcpuInfo(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
size_t maxvcpus = virDomainDefGetVcpusMax(vm->def);
|
|
|
|
virDomainVcpuDefPtr vcpu;
|
|
|
|
qemuDomainVcpuPrivatePtr vcpupriv;
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
if (!qemuDomainHasVcpuPids(vm))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
for (i = 0; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(vm->def, i);
|
|
|
|
vcpupriv = QEMU_DOMAIN_VCPU_PRIVATE(vcpu);
|
|
|
|
|
|
|
|
if (vcpu->online && vcpupriv->tid == 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("qemu didn't report thread id for vcpu '%zu'"), i);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!vcpu->online && vcpupriv->tid != 0) {
|
|
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
|
|
_("qemu reported thread id for inactive vcpu '%zu'"),
|
|
|
|
i);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-07-31 12:05:04 +00:00
|
|
|
bool
|
|
|
|
qemuDomainSupportsNewVcpuHotplug(virDomainObjPtr vm)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
|
|
|
|
return virQEMUCapsGet(priv->qemuCaps, QEMU_CAPS_QUERY_HOTPLUGGABLE_CPUS);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-12-15 13:45:33 +00:00
|
|
|
/**
|
2016-07-19 14:00:29 +00:00
|
|
|
* qemuDomainRefreshVcpuInfo:
|
2015-12-15 13:45:33 +00:00
|
|
|
* @driver: qemu driver data
|
|
|
|
* @vm: domain object
|
|
|
|
* @asyncJob: current asynchronous job type
|
2016-08-05 12:48:27 +00:00
|
|
|
* @state: refresh vcpu state
|
2015-12-15 13:45:33 +00:00
|
|
|
*
|
2016-08-01 05:35:50 +00:00
|
|
|
* Updates vCPU information private data of @vm. Due to historical reasons this
|
|
|
|
* function returns success even if some data were not reported by qemu.
|
2015-12-15 13:45:33 +00:00
|
|
|
*
|
2016-08-05 12:48:27 +00:00
|
|
|
* If @state is true, the vcpu state is refreshed as reported by the monitor.
|
|
|
|
*
|
2016-08-01 05:35:50 +00:00
|
|
|
* Returns 0 on success and -1 on fatal error.
|
2015-12-15 13:45:33 +00:00
|
|
|
*/
|
|
|
|
int
|
2016-07-19 14:00:29 +00:00
|
|
|
qemuDomainRefreshVcpuInfo(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
2016-08-05 12:48:27 +00:00
|
|
|
int asyncJob,
|
|
|
|
bool state)
|
2015-12-15 13:45:33 +00:00
|
|
|
{
|
2016-07-01 12:56:14 +00:00
|
|
|
virDomainVcpuDefPtr vcpu;
|
2016-08-01 05:43:32 +00:00
|
|
|
qemuDomainVcpuPrivatePtr vcpupriv;
|
|
|
|
qemuMonitorCPUInfoPtr info = NULL;
|
2016-07-01 12:56:14 +00:00
|
|
|
size_t maxvcpus = virDomainDefGetVcpusMax(vm->def);
|
|
|
|
size_t i;
|
2016-07-31 12:05:04 +00:00
|
|
|
bool hotplug;
|
2016-08-01 05:43:32 +00:00
|
|
|
int rc;
|
2016-07-01 12:56:14 +00:00
|
|
|
int ret = -1;
|
2015-12-15 13:45:33 +00:00
|
|
|
|
2016-07-31 12:05:04 +00:00
|
|
|
hotplug = qemuDomainSupportsNewVcpuHotplug(vm);
|
2015-12-15 13:45:33 +00:00
|
|
|
|
|
|
|
if (qemuDomainObjEnterMonitorAsync(driver, vm, asyncJob) < 0)
|
|
|
|
return -1;
|
2016-08-01 05:43:32 +00:00
|
|
|
|
2016-07-31 12:05:04 +00:00
|
|
|
rc = qemuMonitorGetCPUInfo(qemuDomainGetMonitor(vm), &info, maxvcpus, hotplug);
|
2016-08-01 05:43:32 +00:00
|
|
|
|
2016-08-01 05:35:50 +00:00
|
|
|
if (qemuDomainObjExitMonitor(driver, vm) < 0)
|
2016-07-01 12:56:14 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
2016-08-01 05:43:32 +00:00
|
|
|
if (rc < 0)
|
2016-07-01 12:56:14 +00:00
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
for (i = 0; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(vm->def, i);
|
2016-08-01 05:43:32 +00:00
|
|
|
vcpupriv = QEMU_DOMAIN_VCPU_PRIVATE(vcpu);
|
2016-07-01 12:56:14 +00:00
|
|
|
|
2016-07-31 12:05:04 +00:00
|
|
|
/*
|
|
|
|
* Current QEMU *can* report info about host threads mapped
|
|
|
|
* to vCPUs, but it is not in a manner we can correctly
|
|
|
|
* deal with. The TCG CPU emulation does have a separate vCPU
|
|
|
|
* thread, but it runs every vCPU in that same thread. So it
|
|
|
|
* is impossible to setup different affinity per thread.
|
|
|
|
*
|
|
|
|
* What's more the 'query-cpus' command returns bizarre
|
|
|
|
* data for the threads. It gives the TCG thread for the
|
|
|
|
* vCPU 0, but for vCPUs 1-> N, it actually replies with
|
|
|
|
* the main process thread ID.
|
|
|
|
*
|
|
|
|
* The result is that when we try to set affinity for
|
|
|
|
* vCPU 1, it will actually change the affinity of the
|
|
|
|
* emulator thread :-( When you try to set affinity for
|
|
|
|
* vCPUs 2, 3.... it will fail if the affinity was
|
|
|
|
* different from vCPU 1.
|
|
|
|
*
|
|
|
|
* We *could* allow vcpu pinning with TCG, if we made the
|
|
|
|
* restriction that all vCPUs had the same mask. This would
|
|
|
|
* at least let us separate emulator from vCPUs threads, as
|
|
|
|
* we do for KVM. It would need some changes to our cgroups
|
|
|
|
* CPU layout though, and error reporting for the config
|
|
|
|
* restrictions.
|
|
|
|
*
|
|
|
|
* Just disable CPU pinning with TCG until someone wants
|
|
|
|
* to try to do this hard work.
|
|
|
|
*/
|
|
|
|
if (vm->def->virtType != VIR_DOMAIN_VIRT_QEMU)
|
|
|
|
vcpupriv->tid = info[i].tid;
|
|
|
|
|
|
|
|
vcpupriv->socket_id = info[i].socket_id;
|
|
|
|
vcpupriv->core_id = info[i].core_id;
|
|
|
|
vcpupriv->thread_id = info[i].thread_id;
|
|
|
|
vcpupriv->vcpus = info[i].vcpus;
|
|
|
|
VIR_FREE(vcpupriv->type);
|
|
|
|
VIR_STEAL_PTR(vcpupriv->type, info[i].type);
|
|
|
|
VIR_FREE(vcpupriv->alias);
|
|
|
|
VIR_STEAL_PTR(vcpupriv->alias, info[i].alias);
|
|
|
|
vcpupriv->enable_id = info[i].id;
|
2016-08-05 12:48:27 +00:00
|
|
|
|
2016-08-02 15:58:43 +00:00
|
|
|
if (hotplug && state) {
|
2016-09-13 15:56:08 +00:00
|
|
|
vcpu->online = info[i].online;
|
|
|
|
if (info[i].hotpluggable)
|
|
|
|
vcpu->hotpluggable = VIR_TRISTATE_BOOL_YES;
|
|
|
|
else
|
|
|
|
vcpu->hotpluggable = VIR_TRISTATE_BOOL_NO;
|
2016-08-02 15:58:43 +00:00
|
|
|
}
|
2015-12-15 13:45:33 +00:00
|
|
|
}
|
|
|
|
|
2016-08-01 05:35:50 +00:00
|
|
|
ret = 0;
|
2016-07-01 12:56:14 +00:00
|
|
|
|
|
|
|
cleanup:
|
2016-08-01 05:43:32 +00:00
|
|
|
qemuMonitorCPUInfoFree(info, maxvcpus);
|
2016-07-01 12:56:14 +00:00
|
|
|
return ret;
|
2015-12-15 13:45:33 +00:00
|
|
|
}
|
2016-02-15 16:44:21 +00:00
|
|
|
|
|
|
|
|
|
|
|
bool
|
|
|
|
qemuDomainSupportsNicdev(virDomainDefPtr def,
|
|
|
|
virDomainNetDefPtr net)
|
|
|
|
{
|
|
|
|
/* non-virtio ARM nics require legacy -net nic */
|
|
|
|
if (((def->os.arch == VIR_ARCH_ARMV7L) ||
|
|
|
|
(def->os.arch == VIR_ARCH_AARCH64)) &&
|
|
|
|
net->info.type != VIR_DOMAIN_DEVICE_ADDRESS_TYPE_VIRTIO_MMIO &&
|
|
|
|
net->info.type != VIR_DOMAIN_DEVICE_ADDRESS_TYPE_PCI)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
bool
|
|
|
|
qemuDomainSupportsNetdev(virDomainDefPtr def,
|
|
|
|
virQEMUCapsPtr qemuCaps,
|
|
|
|
virDomainNetDefPtr net)
|
|
|
|
{
|
2016-05-20 11:22:26 +00:00
|
|
|
if (!qemuDomainSupportsNicdev(def, net))
|
2016-02-15 16:44:21 +00:00
|
|
|
return false;
|
|
|
|
return virQEMUCapsGet(qemuCaps, QEMU_CAPS_NETDEV);
|
|
|
|
}
|
2016-02-16 15:11:34 +00:00
|
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
qemuDomainNetVLAN(virDomainNetDefPtr def)
|
|
|
|
{
|
|
|
|
return qemuDomainDeviceAliasIndex(&def->info, "net");
|
|
|
|
}
|
2016-02-26 15:29:58 +00:00
|
|
|
|
|
|
|
|
|
|
|
virDomainDiskDefPtr
|
|
|
|
qemuDomainDiskByName(virDomainDefPtr def,
|
|
|
|
const char *name)
|
|
|
|
{
|
|
|
|
virDomainDiskDefPtr ret;
|
|
|
|
|
|
|
|
if (!(ret = virDomainDiskByName(def, name, true))) {
|
|
|
|
virReportError(VIR_ERR_INVALID_ARG, "%s",
|
|
|
|
_("No device found for specified path"));
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
}
|
2016-05-02 13:26:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainDefValidateDiskLunSource:
|
|
|
|
* @src: disk source struct
|
|
|
|
*
|
|
|
|
* Validate whether the disk source is valid for disk device='lun'.
|
|
|
|
*
|
|
|
|
* Returns 0 if the configuration is valid -1 and a libvirt error if the soure
|
|
|
|
* is invalid.
|
|
|
|
*/
|
|
|
|
int
|
|
|
|
qemuDomainDefValidateDiskLunSource(const virStorageSource *src)
|
|
|
|
{
|
|
|
|
if (virStorageSourceGetActualType(src) == VIR_STORAGE_TYPE_NETWORK) {
|
|
|
|
if (src->protocol != VIR_STORAGE_NET_PROTOCOL_ISCSI) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
|
|
_("disk device='lun' is not supported "
|
|
|
|
"for protocol='%s'"),
|
|
|
|
virStorageNetProtocolTypeToString(src->protocol));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
} else if (!virStorageSourceIsBlockLocal(src)) {
|
|
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
|
|
|
|
_("disk device='lun' is only valid for block "
|
|
|
|
"type disk source"));
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
2016-03-30 14:34:17 +00:00
|
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
qemuDomainPrepareChannel(virDomainChrDefPtr channel,
|
|
|
|
const char *domainChannelTargetDir)
|
|
|
|
{
|
|
|
|
if (channel->targetType == VIR_DOMAIN_CHR_CHANNEL_TARGET_TYPE_VIRTIO &&
|
|
|
|
channel->source.type == VIR_DOMAIN_CHR_TYPE_UNIX &&
|
|
|
|
!channel->source.data.nix.path) {
|
|
|
|
if (virAsprintf(&channel->source.data.nix.path,
|
|
|
|
"%s/%s", domainChannelTargetDir,
|
|
|
|
channel->target.name ? channel->target.name
|
|
|
|
: "unknown.sock") < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
channel->source.data.nix.listen = true;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
2016-08-04 11:57:46 +00:00
|
|
|
|
|
|
|
|
2016-09-13 11:40:50 +00:00
|
|
|
int
|
|
|
|
qemuDomainPrepareShmemChardev(virDomainShmemDefPtr shmem)
|
|
|
|
{
|
|
|
|
if (!shmem->server.enabled ||
|
|
|
|
shmem->server.chr.data.nix.path)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
return virAsprintf(&shmem->server.chr.data.nix.path,
|
|
|
|
"/var/lib/libvirt/shmem-%s-sock",
|
|
|
|
shmem->name);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-08-04 11:57:46 +00:00
|
|
|
/**
|
|
|
|
* qemuDomainVcpuHotplugIsInOrder:
|
|
|
|
* @def: domain definition
|
|
|
|
*
|
|
|
|
* Returns true if online vcpus were added in order (clustered behind vcpu0
|
|
|
|
* with increasing order).
|
|
|
|
*/
|
|
|
|
bool
|
|
|
|
qemuDomainVcpuHotplugIsInOrder(virDomainDefPtr def)
|
|
|
|
{
|
|
|
|
size_t maxvcpus = virDomainDefGetVcpusMax(def);
|
|
|
|
virDomainVcpuDefPtr vcpu;
|
|
|
|
unsigned int prevorder = 0;
|
|
|
|
size_t seenonlinevcpus = 0;
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
for (i = 0; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(def, i);
|
|
|
|
|
|
|
|
if (!vcpu->online)
|
|
|
|
break;
|
|
|
|
|
|
|
|
if (vcpu->order < prevorder)
|
|
|
|
break;
|
|
|
|
|
|
|
|
if (vcpu->order > prevorder)
|
|
|
|
prevorder = vcpu->order;
|
|
|
|
|
|
|
|
seenonlinevcpus++;
|
|
|
|
}
|
|
|
|
|
|
|
|
return seenonlinevcpus == virDomainDefGetVcpus(def);
|
|
|
|
}
|
2016-08-04 12:23:25 +00:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* qemuDomainVcpuPersistOrder:
|
|
|
|
* @def: domain definition
|
|
|
|
*
|
|
|
|
* Saves the order of vcpus detected from qemu to the domain definition.
|
|
|
|
* The private data note the order only for the entry describing the
|
|
|
|
* hotpluggable entity. This function copies the order into the definition part
|
|
|
|
* of all sub entities.
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
qemuDomainVcpuPersistOrder(virDomainDefPtr def)
|
|
|
|
{
|
|
|
|
size_t maxvcpus = virDomainDefGetVcpusMax(def);
|
|
|
|
virDomainVcpuDefPtr vcpu;
|
|
|
|
qemuDomainVcpuPrivatePtr vcpupriv;
|
|
|
|
unsigned int prevorder = 0;
|
|
|
|
size_t i;
|
|
|
|
|
|
|
|
for (i = 0; i < maxvcpus; i++) {
|
|
|
|
vcpu = virDomainDefGetVcpu(def, i);
|
|
|
|
vcpupriv = QEMU_DOMAIN_VCPU_PRIVATE(vcpu);
|
|
|
|
|
|
|
|
if (!vcpu->online) {
|
|
|
|
vcpu->order = 0;
|
|
|
|
} else {
|
|
|
|
if (vcpupriv->enable_id != 0)
|
|
|
|
prevorder = vcpupriv->enable_id;
|
|
|
|
|
|
|
|
vcpu->order = prevorder;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2016-09-12 08:24:21 +00:00
|
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
qemuDomainCheckMonitor(virQEMUDriverPtr driver,
|
|
|
|
virDomainObjPtr vm,
|
|
|
|
qemuDomainAsyncJob asyncJob)
|
|
|
|
{
|
|
|
|
qemuDomainObjPrivatePtr priv = vm->privateData;
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
if (qemuDomainObjEnterMonitorAsync(driver, vm, asyncJob) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
ret = qemuMonitorCheck(priv->mon);
|
|
|
|
|
|
|
|
if (qemuDomainObjExitMonitor(driver, vm) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
}
|