1 package PVE
::QemuServer
;
11 use File
::Copy
qw(copy);
24 use Storable
qw(dclone);
25 use Time
::HiRes
qw(gettimeofday usleep);
29 use PVE
::Cluster
qw(cfs_register_file cfs_read_file cfs_write_file);
31 use PVE
::DataCenterConfig
;
32 use PVE
::Exception
qw(raise raise_param_exc);
33 use PVE
::Format
qw(render_duration render_bytes);
34 use PVE
::GuestHelpers
qw(safe_string_ne safe_num_ne safe_boolean_ne);
36 use PVE
::JSONSchema
qw(get_standard_option parse_property_string);
39 use PVE
::RPCEnvironment
;
43 use PVE
::Tools
qw(run_command file_read_firstline file_get_contents dir_glob_foreach get_host_arch $IPV6RE);
47 use PVE
::QemuServer
::Helpers
qw(min_version config_aware_timeout);
48 use PVE
::QemuServer
::Cloudinit
;
49 use PVE
::QemuServer
::CGroup
;
50 use PVE
::QemuServer
::CPUConfig
qw(print_cpu_device get_cpu_options);
51 use PVE
::QemuServer
::Drive
qw(is_valid_drivename drive_is_cloudinit drive_is_cdrom drive_is_read_only parse_drive print_drive);
52 use PVE
::QemuServer
::Machine
;
53 use PVE
::QemuServer
::Memory
;
54 use PVE
::QemuServer
::Monitor
qw(mon_cmd);
55 use PVE
::QemuServer
::PCI
qw(print_pci_addr print_pcie_addr print_pcie_root_port parse_hostpci);
56 use PVE
::QemuServer
::USB
qw(parse_usb_device);
60 require PVE
::Network
::SDN
::Zones
;
64 my $EDK2_FW_BASE = '/usr/share/pve-edk2-firmware/';
68 "$EDK2_FW_BASE/OVMF_CODE_4M.fd",
69 "$EDK2_FW_BASE/OVMF_VARS_4M.fd",
72 "$EDK2_FW_BASE/OVMF_CODE_4M.fd",
73 "$EDK2_FW_BASE/OVMF_VARS_4M.ms.fd",
76 "$EDK2_FW_BASE/OVMF_CODE_4M.secboot.fd",
77 "$EDK2_FW_BASE/OVMF_VARS_4M.fd",
80 "$EDK2_FW_BASE/OVMF_CODE_4M.secboot.fd",
81 "$EDK2_FW_BASE/OVMF_VARS_4M.ms.fd",
84 "$EDK2_FW_BASE/OVMF_CODE.fd",
85 "$EDK2_FW_BASE/OVMF_VARS.fd",
90 "$EDK2_FW_BASE/AAVMF_CODE.fd",
91 "$EDK2_FW_BASE/AAVMF_VARS.fd",
96 my $cpuinfo = PVE
::ProcFSTools
::read_cpuinfo
();
98 # Note about locking: we use flock on the config file protect against concurent actions.
99 # Aditionaly, we have a 'lock' setting in the config file. This can be set to 'migrate',
100 # 'backup', 'snapshot' or 'rollback'. Most actions are not allowed when such lock is set.
101 # But you can ignore this kind of lock with the --skiplock flag.
103 cfs_register_file
('/qemu-server/',
107 PVE
::JSONSchema
::register_standard_option
('pve-qm-stateuri', {
108 description
=> "Some command save/restore state from this location.",
114 PVE
::JSONSchema
::register_standard_option
('pve-qemu-machine', {
115 description
=> "Specifies the Qemu machine type.",
117 pattern
=> '(pc|pc(-i440fx)?-\d+(\.\d+)+(\+pve\d+)?(\.pxe)?|q35|pc-q35-\d+(\.\d+)+(\+pve\d+)?(\.pxe)?|virt(?:-\d+(\.\d+)+)?(\+pve\d+)?)',
124 my ($map, $source) = @_;
126 return $source if !defined($map);
128 return $map->{entries
}->{$source}
129 if $map->{entries
} && defined($map->{entries
}->{$source});
131 return $map->{default} if $map->{default};
133 # identity (fallback)
137 PVE
::JSONSchema
::register_standard_option
('pve-targetstorage', {
138 description
=> "Mapping from source to target storages. Providing only a single storage ID maps all source storages to that storage. Providing the special value '1' will map each source storage to itself.",
140 format
=> 'storagepair-list',
144 #no warnings 'redefine';
148 $nodename_cache //= PVE
::INotify
::nodename
();
149 return $nodename_cache;
156 enum
=> [qw(i6300esb ib700)],
157 description
=> "Watchdog type to emulate.",
158 default => 'i6300esb',
163 enum
=> [qw(reset shutdown poweroff pause debug none)],
164 description
=> "The action to perform if after activation the guest fails to poll the watchdog in time.",
168 PVE
::JSONSchema
::register_format
('pve-qm-watchdog', $watchdog_fmt);
172 description
=> "Enable/disable communication with a Qemu Guest Agent (QGA) running in the VM.",
177 fstrim_cloned_disks
=> {
178 description
=> "Run fstrim after moving a disk or migrating the VM.",
184 description
=> "Select the agent type",
188 enum
=> [qw(virtio isa)],
194 description
=> "Select the VGA type.",
199 enum
=> [qw(cirrus qxl qxl2 qxl3 qxl4 none serial0 serial1 serial2 serial3 std virtio vmware)],
202 description
=> "Sets the VGA memory (in MiB). Has no effect with serial display.",
214 description
=> "The size of the file in MB.",
218 pattern
=> '[a-zA-Z0-9\-]+',
220 format_description
=> 'string',
221 description
=> "The name of the file. Will be prefixed with 'pve-shm-'. Default is the VMID. Will be deleted when the VM is stopped.",
228 enum
=> [qw(ich9-intel-hda intel-hda AC97)],
229 description
=> "Configure an audio device."
233 enum
=> ['spice', 'none'],
236 description
=> "Driver backend for the audio device."
240 my $spice_enhancements_fmt = {
245 description
=> "Enable folder sharing via SPICE. Needs Spice-WebDAV daemon installed in the VM."
249 enum
=> ['off', 'all', 'filter'],
252 description
=> "Enable video streaming. Uses compression for detected video streams."
259 enum
=> ['/dev/urandom', '/dev/random', '/dev/hwrng'],
261 description
=> "The file on the host to gather entropy from. In most cases '/dev/urandom'"
262 ." should be preferred over '/dev/random' to avoid entropy-starvation issues on the"
263 ." host. Using urandom does *not* decrease security in any meaningful way, as it's"
264 ." still seeded from real entropy, and the bytes provided will most likely be mixed"
265 ." with real entropy on the guest as well. '/dev/hwrng' can be used to pass through"
266 ." a hardware RNG from the host.",
270 description
=> "Maximum bytes of entropy allowed to get injected into the guest every"
271 ." 'period' milliseconds. Prefer a lower value when using '/dev/random' as source. Use"
272 ." `0` to disable limiting (potentially dangerous!).",
275 # default is 1 KiB/s, provides enough entropy to the guest to avoid boot-starvation issues
276 # (e.g. systemd etc...) while allowing no chance of overwhelming the host, provided we're
277 # reading from /dev/urandom
282 description
=> "Every 'period' milliseconds the entropy-injection quota is reset, allowing"
283 ." the guest to retrieve another 'max_bytes' of entropy.",
293 description
=> "Specifies whether a VM will be started during system bootup.",
299 description
=> "Automatic restart after crash (currently ignored).",
304 type
=> 'string', format
=> 'pve-hotplug-features',
305 description
=> "Selectively enable hotplug features. This is a comma separated list of"
306 ." hotplug features: 'network', 'disk', 'cpu', 'memory' and 'usb'. Use '0' to disable"
307 ." hotplug completely. Using '1' as value is an alias for the default `network,disk,usb`.",
308 default => 'network,disk,usb',
313 description
=> "Allow reboot. If set to '0' the VM exit on reboot.",
319 description
=> "Lock/unlock the VM.",
320 enum
=> [qw(backup clone create migrate rollback snapshot snapshot-delete suspending suspended)],
325 description
=> "Limit of CPU usage.",
326 verbose_description
=> "Limit of CPU usage.\n\nNOTE: If the computer has 2 CPUs, it has"
327 ." total of '2' CPU time. Value '0' indicates no CPU limit.",
335 description
=> "CPU weight for a VM, will be clamped to [1, 10000] in cgroup v2.",
336 verbose_description
=> "CPU weight for a VM. Argument is used in the kernel fair scheduler."
337 ." The larger the number is, the more CPU time this VM gets. Number is relative to"
338 ." weights of all the other running VMs.",
341 default => 'cgroup v1: 1024, cgroup v2: 100',
346 description
=> "Amount of RAM for the VM in MB. This is the maximum available memory when"
347 ." you use the balloon device.",
354 description
=> "Amount of target RAM for the VM in MB. Using zero disables the ballon driver.",
360 description
=> "Amount of memory shares for auto-ballooning. The larger the number is, the"
361 ." more memory this VM gets. Number is relative to weights of all other running VMs."
362 ." Using zero disables auto-ballooning. Auto-ballooning is done by pvestatd.",
370 description
=> "Keyboard layout for VNC server. The default is read from the"
371 ."'/etc/pve/datacenter.cfg' configuration file. It should not be necessary to set it.",
372 enum
=> PVE
::Tools
::kvmkeymaplist
(),
377 type
=> 'string', format
=> 'dns-name',
378 description
=> "Set a name for the VM. Only used on the configuration web interface.",
383 description
=> "SCSI controller model",
384 enum
=> [qw(lsi lsi53c810 virtio-scsi-pci virtio-scsi-single megasas pvscsi)],
390 description
=> "Description for the VM. Shown in the web-interface VM's summary."
391 ." This is saved as comment inside the configuration file.",
392 maxLength
=> 1024 * 8,
397 enum
=> [qw(other wxp w2k w2k3 w2k8 wvista win7 win8 win10 win11 l24 l26 solaris)],
398 description
=> "Specify guest operating system.",
399 verbose_description
=> <<EODESC,
400 Specify guest operating system. This is used to enable special
401 optimization/features for specific operating systems:
404 other;; unspecified OS
405 wxp;; Microsoft Windows XP
406 w2k;; Microsoft Windows 2000
407 w2k3;; Microsoft Windows 2003
408 w2k8;; Microsoft Windows 2008
409 wvista;; Microsoft Windows Vista
410 win7;; Microsoft Windows 7
411 win8;; Microsoft Windows 8/2012/2012r2
412 win10;; Microsoft Windows 10/2016/2019
413 win11;; Microsoft Windows 11/2022
414 l24;; Linux 2.4 Kernel
415 l26;; Linux 2.6 - 5.X Kernel
416 solaris;; Solaris/OpenSolaris/OpenIndiania kernel
421 type
=> 'string', format
=> 'pve-qm-boot',
422 description
=> "Specify guest boot order. Use the 'order=' sub-property as usage with no"
423 ." key or 'legacy=' is deprecated.",
427 type
=> 'string', format
=> 'pve-qm-bootdisk',
428 description
=> "Enable booting from specified disk. Deprecated: Use 'boot: order=foo;bar' instead.",
429 pattern
=> '(ide|sata|scsi|virtio)\d+',
434 description
=> "The number of CPUs. Please use option -sockets instead.",
441 description
=> "The number of CPU sockets.",
448 description
=> "The number of cores per socket.",
455 description
=> "Enable/disable NUMA.",
461 description
=> "Enable/disable hugepages memory.",
462 enum
=> [qw(any 2 1024)],
468 description
=> "Use together with hugepages. If enabled, hugepages will not not be deleted"
469 ." after VM shutdown and can be used for subsequent starts.",
474 description
=> "Number of hotplugged vcpus.",
481 description
=> "Enable/disable ACPI.",
486 description
=> "Enable/disable communication with the Qemu Guest Agent and its properties.",
488 format
=> $agent_fmt,
493 description
=> "Enable/disable KVM hardware virtualization.",
499 description
=> "Enable/disable time drift fix.",
505 description
=> "Set the real time clock (RTC) to local time. This is enabled by default if"
506 ." the `ostype` indicates a Microsoft Windows OS.",
511 description
=> "Freeze CPU at startup (use 'c' monitor command to start execution).",
515 type
=> 'string', format
=> $vga_fmt,
516 description
=> "Configure the VGA hardware.",
517 verbose_description
=> "Configure the VGA Hardware. If you want to use high resolution"
518 ." modes (>= 1280x1024x16) you may need to increase the vga memory option. Since QEMU"
519 ." 2.9 the default VGA display type is 'std' for all OS types besides some Windows"
520 ." versions (XP and older) which use 'cirrus'. The 'qxl' option enables the SPICE"
521 ." display server. For win* OS you can select how many independent displays you want,"
522 ." Linux guests can add displays them self.\nYou can also run without any graphic card,"
523 ." using a serial device as terminal.",
527 type
=> 'string', format
=> 'pve-qm-watchdog',
528 description
=> "Create a virtual hardware watchdog device.",
529 verbose_description
=> "Create a virtual hardware watchdog device. Once enabled (by a guest"
530 ." action), the watchdog must be periodically polled by an agent inside the guest or"
531 ." else the watchdog will reset the guest (or execute the respective action specified)",
536 typetext
=> "(now | YYYY-MM-DD | YYYY-MM-DDTHH:MM:SS)",
537 description
=> "Set the initial date of the real time clock. Valid format for date are:"
538 ."'now' or '2006-06-17T16:01:21' or '2006-06-17'.",
539 pattern
=> '(now|\d{4}-\d{1,2}-\d{1,2}(T\d{1,2}:\d{1,2}:\d{1,2})?)',
542 startup
=> get_standard_option
('pve-startup-order'),
546 description
=> "Enable/disable Template.",
552 description
=> "Arbitrary arguments passed to kvm.",
553 verbose_description
=> <<EODESCR,
554 Arbitrary arguments passed to kvm, for example:
556 args: -no-reboot -no-hpet
558 NOTE: this option is for experts only.
565 description
=> "Enable/disable the USB tablet device.",
566 verbose_description
=> "Enable/disable the USB tablet device. This device is usually needed"
567 ." to allow absolute mouse positioning with VNC. Else the mouse runs out of sync with"
568 ." normal VNC clients. If you're running lots of console-only guests on one host, you"
569 ." may consider disabling this to save some context switches. This is turned off by"
570 ." default if you use spice (`qm set <vmid> --vga qxl`).",
575 description
=> "Set maximum speed (in MB/s) for migrations. Value 0 is no limit.",
579 migrate_downtime
=> {
582 description
=> "Set maximum tolerated downtime (in seconds) for migrations.",
588 type
=> 'string', format
=> 'pve-qm-ide',
589 typetext
=> '<volume>',
590 description
=> "This is an alias for option -ide2",
594 description
=> "Emulated CPU type.",
596 format
=> 'pve-vm-cpu-conf',
598 parent
=> get_standard_option
('pve-snapshot-name', {
600 description
=> "Parent snapshot name. This is used internally, and should not be modified.",
604 description
=> "Timestamp for snapshots.",
610 type
=> 'string', format
=> 'pve-volume-id',
611 description
=> "Reference to a volume which stores the VM state. This is used internally"
614 vmstatestorage
=> get_standard_option
('pve-storage-id', {
615 description
=> "Default storage for VM state volumes/files.",
618 runningmachine
=> get_standard_option
('pve-qemu-machine', {
619 description
=> "Specifies the QEMU machine type of the running vm. This is used internally"
623 description
=> "Specifies the QEMU '-cpu' parameter of the running vm. This is used"
624 ." internally for snapshots.",
627 pattern
=> $PVE::QemuServer
::CPUConfig
::qemu_cmdline_cpu_re
,
628 format_description
=> 'QEMU -cpu parameter'
630 machine
=> get_standard_option
('pve-qemu-machine'),
632 description
=> "Virtual processor architecture. Defaults to the host.",
635 enum
=> [qw(x86_64 aarch64)],
638 description
=> "Specify SMBIOS type 1 fields.",
639 type
=> 'string', format
=> 'pve-qm-smbios1',
646 description
=> "Sets the protection flag of the VM. This will disable the remove VM and"
647 ." remove disk operations.",
653 enum
=> [ qw(seabios ovmf) ],
654 description
=> "Select BIOS implementation.",
655 default => 'seabios',
659 pattern
=> '(?:[a-fA-F0-9]{8}(?:-[a-fA-F0-9]{4}){3}-[a-fA-F0-9]{12}|[01])',
660 format_description
=> 'UUID',
661 description
=> "Set VM Generation ID. Use '1' to autogenerate on create or update, pass '0'"
662 ." to disable explicitly.",
663 verbose_description
=> "The VM generation ID (vmgenid) device exposes a 128-bit integer"
664 ." value identifier to the guest OS. This allows to notify the guest operating system"
665 ." when the virtual machine is executed with a different configuration (e.g. snapshot"
666 ." execution or creation from a template). The guest operating system notices the"
667 ." change, and is then able to react as appropriate by marking its copies of"
668 ." distributed databases as dirty, re-initializing its random number generator, etc.\n"
669 ."Note that auto-creation only works when done through API/CLI create or update methods"
670 .", but not when manually editing the config file.",
671 default => "1 (autogenerated)",
676 format
=> 'pve-volume-id',
678 description
=> "Script that will be executed during various steps in the vms lifetime.",
682 format
=> $ivshmem_fmt,
683 description
=> "Inter-VM shared memory. Useful for direct communication between VMs, or to"
689 format
=> $audio_fmt,
690 description
=> "Configure a audio device, useful in combination with QXL/Spice.",
693 spice_enhancements
=> {
695 format
=> $spice_enhancements_fmt,
696 description
=> "Configure additional enhancements for SPICE.",
700 type
=> 'string', format
=> 'pve-tag-list',
701 description
=> 'Tags of the VM. This is only meta information.',
707 description
=> "Configure a VirtIO-based Random Number Generator.",
716 description
=> 'Specify a custom file containing all meta data passed to the VM via"
717 ." cloud-init. This is provider specific meaning configdrive2 and nocloud differ.',
718 format
=> 'pve-volume-id',
719 format_description
=> 'volume',
724 description
=> 'Specify a custom file containing all network data passed to the VM via'
726 format
=> 'pve-volume-id',
727 format_description
=> 'volume',
732 description
=> 'Specify a custom file containing all user data passed to the VM via'
734 format
=> 'pve-volume-id',
735 format_description
=> 'volume',
738 PVE
::JSONSchema
::register_format
('pve-qm-cicustom', $cicustom_fmt);
740 my $confdesc_cloudinit = {
744 description
=> 'Specifies the cloud-init configuration format. The default depends on the'
745 .' configured operating system type (`ostype`. We use the `nocloud` format for Linux,'
746 .' and `configdrive2` for windows.',
747 enum
=> ['configdrive2', 'nocloud', 'opennebula'],
752 description
=> "cloud-init: User name to change ssh keys and password for instead of the"
753 ." image's configured default user.",
758 description
=> 'cloud-init: Password to assign the user. Using this is generally not'
759 .' recommended. Use ssh keys instead. Also note that older cloud-init versions do not'
760 .' support hashed passwords.',
765 description
=> 'cloud-init: Specify custom files to replace the automatically generated'
767 format
=> 'pve-qm-cicustom',
772 description
=> "cloud-init: Sets DNS search domains for a container. Create will'
773 .' automatically use the setting from the host if neither searchdomain nor nameserver'
778 type
=> 'string', format
=> 'address-list',
779 description
=> "cloud-init: Sets DNS server IP address for a container. Create will'
780 .' automatically use the setting from the host if neither searchdomain nor nameserver'
786 format
=> 'urlencoded',
787 description
=> "cloud-init: Setup public SSH keys (one key per line, OpenSSH format).",
791 # what about other qemu settings ?
793 #machine => 'string',
806 ##soundhw => 'string',
808 while (my ($k, $v) = each %$confdesc) {
809 PVE
::JSONSchema
::register_standard_option
("pve-qm-$k", $v);
812 my $MAX_USB_DEVICES = 5;
814 my $MAX_SERIAL_PORTS = 4;
815 my $MAX_PARALLEL_PORTS = 3;
821 pattern
=> qr/\d+(?:-\d+)?(?:;\d+(?:-\d+)?)*/,
822 description
=> "CPUs accessing this NUMA node.",
823 format_description
=> "id[-id];...",
827 description
=> "Amount of memory this NUMA node provides.",
832 pattern
=> qr/\d+(?:-\d+)?(?:;\d+(?:-\d+)?)*/,
833 description
=> "Host NUMA nodes to use.",
834 format_description
=> "id[-id];...",
839 enum
=> [qw(preferred bind interleave)],
840 description
=> "NUMA allocation policy.",
844 PVE
::JSONSchema
::register_format
('pve-qm-numanode', $numa_fmt);
847 type
=> 'string', format
=> $numa_fmt,
848 description
=> "NUMA topology.",
850 PVE
::JSONSchema
::register_standard_option
("pve-qm-numanode", $numadesc);
852 for (my $i = 0; $i < $MAX_NUMA; $i++) {
853 $confdesc->{"numa$i"} = $numadesc;
856 my $nic_model_list = [
872 my $nic_model_list_txt = join(' ', sort @$nic_model_list);
874 my $net_fmt_bridge_descr = <<__EOD__;
875 Bridge to attach the network device to. The Proxmox VE standard bridge
878 If you do not specify a bridge, we create a kvm user (NATed) network
879 device, which provides DHCP and DNS services. The following addresses
886 The DHCP server assign addresses to the guest starting from 10.0.2.15.
890 macaddr
=> get_standard_option
('mac-addr', {
891 description
=> "MAC address. That address must be unique withing your network. This is"
892 ." automatically generated if not specified.",
896 description
=> "Network Card Model. The 'virtio' model provides the best performance with"
897 ." very low CPU overhead. If your guest does not support this driver, it is usually"
898 ." best to use 'e1000'.",
899 enum
=> $nic_model_list,
902 (map { $_ => { keyAlias
=> 'model', alias
=> 'macaddr' }} @$nic_model_list),
905 description
=> $net_fmt_bridge_descr,
906 format_description
=> 'bridge',
907 pattern
=> '[-_.\w\d]+',
912 minimum
=> 0, maximum
=> 16,
913 description
=> 'Number of packet queues to be used on the device.',
919 description
=> "Rate limit in mbps (megabytes per second) as floating point number.",
924 minimum
=> 1, maximum
=> 4094,
925 description
=> 'VLAN tag to apply to packets on this interface.',
930 pattern
=> qr/\d+(?:-\d+)?(?:;\d+(?:-\d+)?)*/,
931 description
=> 'VLAN trunks to pass through this interface.',
932 format_description
=> 'vlanid[;vlanid...]',
937 description
=> 'Whether this interface should be protected by the firewall.',
942 description
=> 'Whether this interface should be disconnected (like pulling the plug).',
947 minimum
=> 1, maximum
=> 65520,
948 description
=> "Force MTU, for VirtIO only. Set to '1' to use the bridge MTU",
955 type
=> 'string', format
=> $net_fmt,
956 description
=> "Specify network devices.",
959 PVE
::JSONSchema
::register_standard_option
("pve-qm-net", $netdesc);
964 format
=> 'pve-ipv4-config',
965 format_description
=> 'IPv4Format/CIDR',
966 description
=> 'IPv4 address in CIDR format.',
973 format_description
=> 'GatewayIPv4',
974 description
=> 'Default gateway for IPv4 traffic.',
980 format
=> 'pve-ipv6-config',
981 format_description
=> 'IPv6Format/CIDR',
982 description
=> 'IPv6 address in CIDR format.',
989 format_description
=> 'GatewayIPv6',
990 description
=> 'Default gateway for IPv6 traffic.',
995 PVE
::JSONSchema
::register_format
('pve-qm-ipconfig', $ipconfig_fmt);
998 type
=> 'string', format
=> 'pve-qm-ipconfig',
999 description
=> <<'EODESCR',
1000 cloud-init: Specify IP addresses and gateways for the corresponding interface.
1002 IP addresses use CIDR notation, gateways are optional but need an IP of the same type specified.
1004 The special string 'dhcp' can be used for IP addresses to use DHCP, in which case no explicit
1005 gateway should be provided.
1006 For IPv6 the special string 'auto' can be used to use stateless autoconfiguration. This requires
1007 cloud-init 19.4 or newer.
1009 If cloud-init is enabled and neither an IPv4 nor an IPv6 address is specified, it defaults to using
1013 PVE
::JSONSchema
::register_standard_option
("pve-qm-ipconfig", $netdesc);
1015 for (my $i = 0; $i < $MAX_NETS; $i++) {
1016 $confdesc->{"net$i"} = $netdesc;
1017 $confdesc_cloudinit->{"ipconfig$i"} = $ipconfigdesc;
1020 foreach my $key (keys %$confdesc_cloudinit) {
1021 $confdesc->{$key} = $confdesc_cloudinit->{$key};
1024 PVE
::JSONSchema
::register_format
('pve-volume-id-or-qm-path', \
&verify_volume_id_or_qm_path
);
1025 sub verify_volume_id_or_qm_path
{
1026 my ($volid, $noerr) = @_;
1028 if ($volid eq 'none' || $volid eq 'cdrom' || $volid =~ m
|^/|) {
1032 # if its neither 'none' nor 'cdrom' nor a path, check if its a volume-id
1033 $volid = eval { PVE
::JSONSchema
::check_format
('pve-volume-id', $volid, '') };
1044 type
=> 'string', format
=> 'pve-qm-usb-device',
1045 format_description
=> 'HOSTUSBDEVICE|spice',
1046 description
=> <<EODESCR,
1047 The Host USB device or port or the value 'spice'. HOSTUSBDEVICE syntax is:
1049 'bus-port(.port)*' (decimal numbers) or
1050 'vendor_id:product_id' (hexadeciaml numbers) or
1053 You can use the 'lsusb -t' command to list existing usb devices.
1055 NOTE: This option allows direct access to host hardware. So it is no longer possible to migrate such
1056 machines - use with special care.
1058 The value 'spice' can be used to add a usb redirection devices for spice.
1064 description
=> "Specifies whether if given host option is a USB3 device or port.",
1071 type
=> 'string', format
=> $usb_fmt,
1072 description
=> "Configure an USB device (n is 0 to 4).",
1074 PVE
::JSONSchema
::register_standard_option
("pve-qm-usb", $usbdesc);
1079 pattern
=> '(/dev/.+|socket)',
1080 description
=> "Create a serial device inside the VM (n is 0 to 3)",
1081 verbose_description
=> <<EODESCR,
1082 Create a serial device inside the VM (n is 0 to 3), and pass through a
1083 host serial device (i.e. /dev/ttyS0), or create a unix socket on the
1084 host side (use 'qm terminal' to open a terminal connection).
1086 NOTE: If you pass through a host serial device, it is no longer possible to migrate such machines -
1087 use with special care.
1089 CAUTION: Experimental! User reported problems with this option.
1096 pattern
=> '/dev/parport\d+|/dev/usb/lp\d+',
1097 description
=> "Map host parallel devices (n is 0 to 2).",
1098 verbose_description
=> <<EODESCR,
1099 Map host parallel devices (n is 0 to 2).
1101 NOTE: This option allows direct access to host hardware. So it is no longer possible to migrate such
1102 machines - use with special care.
1104 CAUTION: Experimental! User reported problems with this option.
1108 for (my $i = 0; $i < $MAX_PARALLEL_PORTS; $i++) {
1109 $confdesc->{"parallel$i"} = $paralleldesc;
1112 for (my $i = 0; $i < $MAX_SERIAL_PORTS; $i++) {
1113 $confdesc->{"serial$i"} = $serialdesc;
1116 for (my $i = 0; $i < $PVE::QemuServer
::PCI
::MAX_HOSTPCI_DEVICES
; $i++) {
1117 $confdesc->{"hostpci$i"} = $PVE::QemuServer
::PCI
::hostpcidesc
;
1120 for my $key (keys %{$PVE::QemuServer
::Drive
::drivedesc_hash
}) {
1121 $confdesc->{$key} = $PVE::QemuServer
::Drive
::drivedesc_hash-
>{$key};
1124 for (my $i = 0; $i < $MAX_USB_DEVICES; $i++) {
1125 $confdesc->{"usb$i"} = $usbdesc;
1133 description
=> "Boot on floppy (a), hard disk (c), CD-ROM (d), or network (n)."
1134 . " Deprecated, use 'order=' instead.",
1135 pattern
=> '[acdn]{1,4}',
1136 format_description
=> "[acdn]{1,4}",
1138 # note: this is also the fallback if boot: is not given at all
1144 format
=> 'pve-qm-bootdev-list',
1145 format_description
=> "device[;device...]",
1146 description
=> <<EODESC,
1147 The guest will attempt to boot from devices in the order they appear here.
1149 Disks, optical drives and passed-through storage USB devices will be directly
1150 booted from, NICs will load PXE, and PCIe devices will either behave like disks
1151 (e.g. NVMe) or load an option ROM (e.g. RAID controller, hardware NIC).
1153 Note that only devices in this list will be marked as bootable and thus loaded
1154 by the guest firmware (BIOS/UEFI). If you require multiple disks for booting
1155 (e.g. software-raid), you need to specify all of them here.
1157 Overrides the deprecated 'legacy=[acdn]*' value when given.
1161 PVE
::JSONSchema
::register_format
('pve-qm-boot', $boot_fmt);
1163 PVE
::JSONSchema
::register_format
('pve-qm-bootdev', \
&verify_bootdev
);
1164 sub verify_bootdev
{
1165 my ($dev, $noerr) = @_;
1167 my $special = $dev =~ m/^efidisk/ || $dev =~ m/^tpmstate/;
1168 return $dev if PVE
::QemuServer
::Drive
::is_valid_drivename
($dev) && !$special;
1172 return 0 if $dev !~ m/^$base\d+$/;
1173 return 0 if !$confdesc->{$dev};
1177 return $dev if $check->("net");
1178 return $dev if $check->("usb");
1179 return $dev if $check->("hostpci");
1182 die "invalid boot device '$dev'\n";
1185 sub print_bootorder
{
1187 return "" if !@$devs;
1188 my $data = { order
=> join(';', @$devs) };
1189 return PVE
::JSONSchema
::print_property_string
($data, $boot_fmt);
1192 my $kvm_api_version = 0;
1195 return $kvm_api_version if $kvm_api_version;
1197 open my $fh, '<', '/dev/kvm' or return;
1199 # 0xae00 => KVM_GET_API_VERSION
1200 $kvm_api_version = ioctl($fh, 0xae00, 0);
1203 return $kvm_api_version;
1206 my $kvm_user_version = {};
1209 sub kvm_user_version
{
1212 $binary //= get_command_for_arch
(get_host_arch
()); # get the native arch by default
1213 my $st = stat($binary);
1215 my $cachedmtime = $kvm_mtime->{$binary} // -1;
1216 return $kvm_user_version->{$binary} if $kvm_user_version->{$binary} &&
1217 $cachedmtime == $st->mtime;
1219 $kvm_user_version->{$binary} = 'unknown';
1220 $kvm_mtime->{$binary} = $st->mtime;
1224 if ($line =~ m/^QEMU( PC)? emulator version (\d+\.\d+(\.\d+)?)(\.\d+)?[,\s]/) {
1225 $kvm_user_version->{$binary} = $2;
1229 eval { run_command
([$binary, '--version'], outfunc
=> $code); };
1232 return $kvm_user_version->{$binary};
1235 my sub extract_version
{
1236 my ($machine_type, $version) = @_;
1237 $version = kvm_user_version
() if !defined($version);
1238 PVE
::QemuServer
::Machine
::extract_version
($machine_type, $version)
1241 sub kernel_has_vhost_net
{
1242 return -c
'/dev/vhost-net';
1247 return defined($confdesc->{$key});
1251 sub get_cdrom_path
{
1253 return $cdrom_path if $cdrom_path;
1255 return $cdrom_path = "/dev/cdrom" if -l
"/dev/cdrom";
1256 return $cdrom_path = "/dev/cdrom1" if -l
"/dev/cdrom1";
1257 return $cdrom_path = "/dev/cdrom2" if -l
"/dev/cdrom2";
1261 my ($storecfg, $vmid, $cdrom) = @_;
1263 if ($cdrom eq 'cdrom') {
1264 return get_cdrom_path
();
1265 } elsif ($cdrom eq 'none') {
1267 } elsif ($cdrom =~ m
|^/|) {
1270 return PVE
::Storage
::path
($storecfg, $cdrom);
1274 # try to convert old style file names to volume IDs
1275 sub filename_to_volume_id
{
1276 my ($vmid, $file, $media) = @_;
1278 if (!($file eq 'none' || $file eq 'cdrom' ||
1279 $file =~ m
|^/dev/.+| || $file =~ m/^([^:]+):(.+)$/)) {
1281 return if $file =~ m
|/|;
1283 if ($media && $media eq 'cdrom') {
1284 $file = "local:iso/$file";
1286 $file = "local:$vmid/$file";
1293 sub verify_media_type
{
1294 my ($opt, $vtype, $media) = @_;
1299 if ($media eq 'disk') {
1301 } elsif ($media eq 'cdrom') {
1304 die "internal error";
1307 return if ($vtype eq $etype);
1309 raise_param_exc
({ $opt => "unexpected media type ($vtype != $etype)" });
1312 sub cleanup_drive_path
{
1313 my ($opt, $storecfg, $drive) = @_;
1315 # try to convert filesystem paths to volume IDs
1317 if (($drive->{file
} !~ m/^(cdrom|none)$/) &&
1318 ($drive->{file
} !~ m
|^/dev/.+|) &&
1319 ($drive->{file
} !~ m/^([^:]+):(.+)$/) &&
1320 ($drive->{file
} !~ m/^\d+$/)) {
1321 my ($vtype, $volid) = PVE
::Storage
::path_to_volume_id
($storecfg, $drive->{file
});
1322 raise_param_exc
({ $opt => "unable to associate path '$drive->{file}' to any storage"})
1324 $drive->{media
} = 'cdrom' if !$drive->{media
} && $vtype eq 'iso';
1325 verify_media_type
($opt, $vtype, $drive->{media
});
1326 $drive->{file
} = $volid;
1329 $drive->{media
} = 'cdrom' if !$drive->{media
} && $drive->{file
} =~ m/^(cdrom|none)$/;
1332 sub parse_hotplug_features
{
1337 return $res if $data eq '0';
1339 $data = $confdesc->{hotplug
}->{default} if $data eq '1';
1341 foreach my $feature (PVE
::Tools
::split_list
($data)) {
1342 if ($feature =~ m/^(network|disk|cpu|memory|usb)$/) {
1345 die "invalid hotplug feature '$feature'\n";
1351 PVE
::JSONSchema
::register_format
('pve-hotplug-features', \
&pve_verify_hotplug_features
);
1352 sub pve_verify_hotplug_features
{
1353 my ($value, $noerr) = @_;
1355 return $value if parse_hotplug_features
($value);
1359 die "unable to parse hotplug option\n";
1363 my($fh, $noerr) = @_;
1366 my $SG_GET_VERSION_NUM = 0x2282;
1368 my $versionbuf = "\x00" x
8;
1369 my $ret = ioctl($fh, $SG_GET_VERSION_NUM, $versionbuf);
1371 die "scsi ioctl SG_GET_VERSION_NUM failoed - $!\n" if !$noerr;
1374 my $version = unpack("I", $versionbuf);
1375 if ($version < 30000) {
1376 die "scsi generic interface too old\n" if !$noerr;
1380 my $buf = "\x00" x
36;
1381 my $sensebuf = "\x00" x
8;
1382 my $cmd = pack("C x3 C x1", 0x12, 36);
1384 # see /usr/include/scsi/sg.h
1385 my $sg_io_hdr_t = "i i C C s I P P P I I i P C C C C S S i I I";
1387 my $packet = pack($sg_io_hdr_t, ord('S'), -3, length($cmd),
1388 length($sensebuf), 0, length($buf), $buf,
1389 $cmd, $sensebuf, 6000);
1391 $ret = ioctl($fh, $SG_IO, $packet);
1393 die "scsi ioctl SG_IO failed - $!\n" if !$noerr;
1397 my @res = unpack($sg_io_hdr_t, $packet);
1398 if ($res[17] || $res[18]) {
1399 die "scsi ioctl SG_IO status error - $!\n" if !$noerr;
1404 (my $byte0, my $byte1, $res->{vendor
},
1405 $res->{product
}, $res->{revision
}) = unpack("C C x6 A8 A16 A4", $buf);
1407 $res->{removable
} = $byte1 & 128 ?
1 : 0;
1408 $res->{type
} = $byte0 & 31;
1416 my $fh = IO
::File-
>new("+<$path") || return;
1417 my $res = scsi_inquiry
($fh, 1);
1423 sub print_tabletdevice_full
{
1424 my ($conf, $arch) = @_;
1426 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
1428 # we use uhci for old VMs because tablet driver was buggy in older qemu
1430 if (PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf) || $arch eq 'aarch64') {
1436 return "usb-tablet,id=tablet,bus=$usbbus.0,port=1";
1439 sub print_keyboarddevice_full
{
1440 my ($conf, $arch, $machine) = @_;
1442 return if $arch ne 'aarch64';
1444 return "usb-kbd,id=keyboard,bus=ehci.0,port=2";
1447 my sub get_drive_id
{
1449 return "$drive->{interface}$drive->{index}";
1452 sub print_drivedevice_full
{
1453 my ($storecfg, $conf, $vmid, $drive, $bridges, $arch, $machine_type) = @_;
1458 my $drive_id = get_drive_id
($drive);
1459 if ($drive->{interface
} eq 'virtio') {
1460 my $pciaddr = print_pci_addr
("$drive_id", $bridges, $arch, $machine_type);
1461 $device = "virtio-blk-pci,drive=drive-$drive_id,id=${drive_id}${pciaddr}";
1462 $device .= ",iothread=iothread-$drive_id" if $drive->{iothread
};
1463 } elsif ($drive->{interface
} eq 'scsi') {
1465 my ($maxdev, $controller, $controller_prefix) = scsihw_infos
($conf, $drive);
1466 my $unit = $drive->{index} % $maxdev;
1467 my $devicetype = 'hd';
1469 if (drive_is_cdrom
($drive)) {
1472 if ($drive->{file
} =~ m
|^/|) {
1473 $path = $drive->{file
};
1474 if (my $info = path_is_scsi
($path)) {
1475 if ($info->{type
} == 0 && $drive->{scsiblock
}) {
1476 $devicetype = 'block';
1477 } elsif ($info->{type
} == 1) { # tape
1478 $devicetype = 'generic';
1482 $path = PVE
::Storage
::path
($storecfg, $drive->{file
});
1485 # for compatibility only, we prefer scsi-hd (#2408, #2355, #2380)
1486 my $version = extract_version
($machine_type, kvm_user_version
());
1487 if ($path =~ m/^iscsi\:\/\
// &&
1488 !min_version
($version, 4, 1)) {
1489 $devicetype = 'generic';
1493 if (!$conf->{scsihw
} || $conf->{scsihw
} =~ m/^lsi/ || $conf->{scsihw
} eq 'pvscsi') {
1494 $device = "scsi-$devicetype,bus=$controller_prefix$controller.0,scsi-id=$unit";
1496 $device = "scsi-$devicetype,bus=$controller_prefix$controller.0,channel=0,scsi-id=0"
1497 .",lun=$drive->{index}";
1499 $device .= ",drive=drive-$drive_id,id=$drive_id";
1501 if ($drive->{ssd
} && ($devicetype eq 'block' || $devicetype eq 'hd')) {
1502 $device .= ",rotation_rate=1";
1504 $device .= ",wwn=$drive->{wwn}" if $drive->{wwn
};
1506 } elsif ($drive->{interface
} eq 'ide' || $drive->{interface
} eq 'sata') {
1507 my $maxdev = ($drive->{interface
} eq 'sata') ?
$PVE::QemuServer
::Drive
::MAX_SATA_DISKS
: 2;
1508 my $controller = int($drive->{index} / $maxdev);
1509 my $unit = $drive->{index} % $maxdev;
1510 my $devicetype = ($drive->{media
} && $drive->{media
} eq 'cdrom') ?
"cd" : "hd";
1512 $device = "ide-$devicetype";
1513 if ($drive->{interface
} eq 'ide') {
1514 $device .= ",bus=ide.$controller,unit=$unit";
1516 $device .= ",bus=ahci$controller.$unit";
1518 $device .= ",drive=drive-$drive_id,id=$drive_id";
1520 if ($devicetype eq 'hd') {
1521 if (my $model = $drive->{model
}) {
1522 $model = URI
::Escape
::uri_unescape
($model);
1523 $device .= ",model=$model";
1525 if ($drive->{ssd
}) {
1526 $device .= ",rotation_rate=1";
1529 $device .= ",wwn=$drive->{wwn}" if $drive->{wwn
};
1530 } elsif ($drive->{interface
} eq 'usb') {
1532 # -device ide-drive,bus=ide.1,unit=0,drive=drive-ide0-1-0,id=ide0-1-0
1534 die "unsupported interface type";
1537 $device .= ",bootindex=$drive->{bootindex}" if $drive->{bootindex
};
1539 if (my $serial = $drive->{serial
}) {
1540 $serial = URI
::Escape
::uri_unescape
($serial);
1541 $device .= ",serial=$serial";
1548 sub get_initiator_name
{
1551 my $fh = IO
::File-
>new('/etc/iscsi/initiatorname.iscsi') || return;
1552 while (defined(my $line = <$fh>)) {
1553 next if $line !~ m/^\s*InitiatorName\s*=\s*([\.\-:\w]+)/;
1562 sub print_drive_commandline_full
{
1563 my ($storecfg, $vmid, $drive, $pbs_name, $io_uring) = @_;
1566 my $volid = $drive->{file
};
1567 my $format = $drive->{format
};
1568 my $drive_id = get_drive_id
($drive);
1570 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
1571 my $scfg = $storeid ? PVE
::Storage
::storage_config
($storecfg, $storeid) : undef;
1573 if (drive_is_cdrom
($drive)) {
1574 $path = get_iso_path
($storecfg, $vmid, $volid);
1575 die "$drive_id: cannot back cdrom drive with PBS snapshot\n" if $pbs_name;
1578 $path = PVE
::Storage
::path
($storecfg, $volid);
1579 $format //= qemu_img_format
($scfg, $volname);
1586 my $is_rbd = $path =~ m/^rbd:/;
1589 my @qemu_drive_options = qw(heads secs cyls trans media cache rerror werror aio discard);
1590 foreach my $o (@qemu_drive_options) {
1591 $opts .= ",$o=$drive->{$o}" if defined($drive->{$o});
1594 # snapshot only accepts on|off
1595 if (defined($drive->{snapshot
})) {
1596 my $v = $drive->{snapshot
} ?
'on' : 'off';
1597 $opts .= ",snapshot=$v";
1600 if (defined($drive->{ro
})) { # ro maps to QEMUs `readonly`, which accepts `on` or `off` only
1601 $opts .= ",readonly=" . ($drive->{ro
} ?
'on' : 'off');
1604 foreach my $type (['', '-total'], [_rd
=> '-read'], [_wr
=> '-write']) {
1605 my ($dir, $qmpname) = @$type;
1606 if (my $v = $drive->{"mbps$dir"}) {
1607 $opts .= ",throttling.bps$qmpname=".int($v*1024*1024);
1609 if (my $v = $drive->{"mbps${dir}_max"}) {
1610 $opts .= ",throttling.bps$qmpname-max=".int($v*1024*1024);
1612 if (my $v = $drive->{"bps${dir}_max_length"}) {
1613 $opts .= ",throttling.bps$qmpname-max-length=$v";
1615 if (my $v = $drive->{"iops${dir}"}) {
1616 $opts .= ",throttling.iops$qmpname=$v";
1618 if (my $v = $drive->{"iops${dir}_max"}) {
1619 $opts .= ",throttling.iops$qmpname-max=$v";
1621 if (my $v = $drive->{"iops${dir}_max_length"}) {
1622 $opts .= ",throttling.iops$qmpname-max-length=$v";
1627 $format = "rbd" if $is_rbd;
1628 die "$drive_id: Proxmox Backup Server backed drive cannot auto-detect the format\n"
1630 $opts .= ",format=alloc-track,file.driver=$format";
1632 $opts .= ",format=$format";
1635 my $cache_direct = 0;
1637 if (my $cache = $drive->{cache
}) {
1638 $cache_direct = $cache =~ /^(?:off|none|directsync)$/;
1639 } elsif (!drive_is_cdrom
($drive) && !($scfg && $scfg->{type
} eq 'btrfs' && !$scfg->{nocow
})) {
1640 $opts .= ",cache=none";
1644 # io_uring with cache mode writeback or writethrough on krbd will hang...
1645 my $rbd_no_io_uring = $scfg && $scfg->{type
} eq 'rbd' && $scfg->{krbd
} && !$cache_direct;
1647 # io_uring with cache mode writeback or writethrough on LVM will hang, without cache only
1648 # sometimes, just plain disable...
1649 my $lvm_no_io_uring = $scfg && $scfg->{type
} eq 'lvm';
1651 if (!$drive->{aio
}) {
1652 if ($io_uring && !$rbd_no_io_uring && !$lvm_no_io_uring) {
1653 # io_uring supports all cache modes
1654 $opts .= ",aio=io_uring";
1656 # aio native works only with O_DIRECT
1658 $opts .= ",aio=native";
1660 $opts .= ",aio=threads";
1665 if (!drive_is_cdrom
($drive)) {
1667 if (defined($drive->{detect_zeroes
}) && !$drive->{detect_zeroes
}) {
1668 $detectzeroes = 'off';
1669 } elsif ($drive->{discard
}) {
1670 $detectzeroes = $drive->{discard
} eq 'on' ?
'unmap' : 'on';
1672 # This used to be our default with discard not being specified:
1673 $detectzeroes = 'on';
1676 # note: 'detect-zeroes' works per blockdev and we want it to persist
1677 # after the alloc-track is removed, so put it on 'file' directly
1678 my $dz_param = $pbs_name ?
"file.detect-zeroes" : "detect-zeroes";
1679 $opts .= ",$dz_param=$detectzeroes" if $detectzeroes;
1683 $opts .= ",backing=$pbs_name";
1684 $opts .= ",auto-remove=on";
1687 # my $file_param = $pbs_name ? "file.file.filename" : "file";
1688 my $file_param = "file";
1690 # non-rbd drivers require the underlying file to be a seperate block
1691 # node, so add a second .file indirection
1692 $file_param .= ".file" if !$is_rbd;
1693 $file_param .= ".filename";
1695 my $pathinfo = $path ?
"$file_param=$path," : '';
1697 return "${pathinfo}if=none,id=drive-$drive->{interface}$drive->{index}$opts";
1700 sub print_pbs_blockdev
{
1701 my ($pbs_conf, $pbs_name) = @_;
1702 my $blockdev = "driver=pbs,node-name=$pbs_name,read-only=on";
1703 $blockdev .= ",repository=$pbs_conf->{repository}";
1704 $blockdev .= ",snapshot=$pbs_conf->{snapshot}";
1705 $blockdev .= ",archive=$pbs_conf->{archive}";
1706 $blockdev .= ",keyfile=$pbs_conf->{keyfile}" if $pbs_conf->{keyfile
};
1710 sub print_netdevice_full
{
1711 my ($vmid, $conf, $net, $netid, $bridges, $use_old_bios_files, $arch, $machine_type) = @_;
1713 my $device = $net->{model
};
1714 if ($net->{model
} eq 'virtio') {
1715 $device = 'virtio-net-pci';
1718 my $pciaddr = print_pci_addr
("$netid", $bridges, $arch, $machine_type);
1719 my $tmpstr = "$device,mac=$net->{macaddr},netdev=$netid$pciaddr,id=$netid";
1720 if ($net->{queues
} && $net->{queues
} > 1 && $net->{model
} eq 'virtio'){
1721 # Consider we have N queues, the number of vectors needed is 2 * N + 2, i.e., one per in
1722 # and out of each queue plus one config interrupt and control vector queue
1723 my $vectors = $net->{queues
} * 2 + 2;
1724 $tmpstr .= ",vectors=$vectors,mq=on";
1726 $tmpstr .= ",bootindex=$net->{bootindex}" if $net->{bootindex
} ;
1728 if (my $mtu = $net->{mtu
}) {
1729 if ($net->{model
} eq 'virtio' && $net->{bridge
}) {
1730 my $bridge_mtu = PVE
::Network
::read_bridge_mtu
($net->{bridge
});
1733 } elsif ($mtu < 576) {
1734 die "netdev $netid: MTU '$mtu' is smaller than the IP minimum MTU '576'\n";
1735 } elsif ($mtu > $bridge_mtu) {
1736 die "netdev $netid: MTU '$mtu' is bigger than the bridge MTU '$bridge_mtu'\n";
1738 $tmpstr .= ",host_mtu=$mtu";
1740 warn "WARN: netdev $netid: ignoring MTU '$mtu', not using VirtIO or no bridge configured.\n";
1744 if ($use_old_bios_files) {
1746 if ($device eq 'virtio-net-pci') {
1747 $romfile = 'pxe-virtio.rom';
1748 } elsif ($device eq 'e1000') {
1749 $romfile = 'pxe-e1000.rom';
1750 } elsif ($device eq 'e1000e') {
1751 $romfile = 'pxe-e1000e.rom';
1752 } elsif ($device eq 'ne2k') {
1753 $romfile = 'pxe-ne2k_pci.rom';
1754 } elsif ($device eq 'pcnet') {
1755 $romfile = 'pxe-pcnet.rom';
1756 } elsif ($device eq 'rtl8139') {
1757 $romfile = 'pxe-rtl8139.rom';
1759 $tmpstr .= ",romfile=$romfile" if $romfile;
1765 sub print_netdev_full
{
1766 my ($vmid, $conf, $arch, $net, $netid, $hotplug) = @_;
1769 if ($netid =~ m/^net(\d+)$/) {
1773 die "got strange net id '$i'\n" if $i >= ${MAX_NETS
};
1775 my $ifname = "tap${vmid}i$i";
1777 # kvm uses TUNSETIFF ioctl, and that limits ifname length
1778 die "interface name '$ifname' is too long (max 15 character)\n"
1779 if length($ifname) >= 16;
1781 my $vhostparam = '';
1782 if (is_native
($arch)) {
1783 $vhostparam = ',vhost=on' if kernel_has_vhost_net
() && $net->{model
} eq 'virtio';
1786 my $vmname = $conf->{name
} || "vm$vmid";
1789 my $script = $hotplug ?
"pve-bridge-hotplug" : "pve-bridge";
1791 if ($net->{bridge
}) {
1792 $netdev = "type=tap,id=$netid,ifname=${ifname},script=/var/lib/qemu-server/$script"
1793 .",downscript=/var/lib/qemu-server/pve-bridgedown$vhostparam";
1795 $netdev = "type=user,id=$netid,hostname=$vmname";
1798 $netdev .= ",queues=$net->{queues}" if ($net->{queues
} && $net->{model
} eq 'virtio');
1804 'cirrus' => 'cirrus-vga',
1806 'vmware' => 'vmware-svga',
1807 'virtio' => 'virtio-vga',
1810 sub print_vga_device
{
1811 my ($conf, $vga, $arch, $machine_version, $machine, $id, $qxlnum, $bridges) = @_;
1813 my $type = $vga_map->{$vga->{type
}};
1814 if ($arch eq 'aarch64' && defined($type) && $type eq 'virtio-vga') {
1815 $type = 'virtio-gpu';
1817 my $vgamem_mb = $vga->{memory
};
1819 my $max_outputs = '';
1821 $type = $id ?
'qxl' : 'qxl-vga';
1823 if (!$conf->{ostype
} || $conf->{ostype
} =~ m/^(?:l\d\d)|(?:other)$/) {
1824 # set max outputs so linux can have up to 4 qxl displays with one device
1825 if (min_version
($machine_version, 4, 1)) {
1826 $max_outputs = ",max_outputs=4";
1831 die "no devicetype for $vga->{type}\n" if !$type;
1835 if ($vga->{type
} eq 'virtio') {
1836 my $bytes = PVE
::Tools
::convert_size
($vgamem_mb, "mb" => "b");
1837 $memory = ",max_hostmem=$bytes";
1839 # from https://www.spice-space.org/multiple-monitors.html
1840 $memory = ",vgamem_mb=$vga->{memory}";
1841 my $ram = $vgamem_mb * 4;
1842 my $vram = $vgamem_mb * 2;
1843 $memory .= ",ram_size_mb=$ram,vram_size_mb=$vram";
1845 $memory = ",vgamem_mb=$vga->{memory}";
1847 } elsif ($qxlnum && $id) {
1848 $memory = ",ram_size=67108864,vram_size=33554432";
1852 if ($type eq 'VGA' && windows_version
($conf->{ostype
})) {
1853 $edidoff=",edid=off" if (!defined($conf->{bios
}) || $conf->{bios
} ne 'ovmf');
1856 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
1857 my $vgaid = "vga" . ($id // '');
1859 if ($q35 && $vgaid eq 'vga') {
1860 # the first display uses pcie.0 bus on q35 machines
1861 $pciaddr = print_pcie_addr
($vgaid, $bridges, $arch, $machine);
1863 $pciaddr = print_pci_addr
($vgaid, $bridges, $arch, $machine);
1866 return "$type,id=${vgaid}${memory}${max_outputs}${pciaddr}${edidoff}";
1869 sub parse_number_sets
{
1872 foreach my $part (split(/;/, $set)) {
1873 if ($part =~ /^\s*(\d+)(?:-(\d+))?\s*$/) {
1874 die "invalid range: $part ($2 < $1)\n" if defined($2) && $2 < $1;
1875 push @$res, [ $1, $2 ];
1877 die "invalid range: $part\n";
1886 my $res = parse_property_string
($numa_fmt, $data);
1887 $res->{cpus
} = parse_number_sets
($res->{cpus
}) if defined($res->{cpus
});
1888 $res->{hostnodes
} = parse_number_sets
($res->{hostnodes
}) if defined($res->{hostnodes
});
1892 # netX: e1000=XX:XX:XX:XX:XX:XX,bridge=vmbr0,rate=<mbps>
1896 my $res = eval { parse_property_string
($net_fmt, $data) };
1901 if (!defined($res->{macaddr
})) {
1902 my $dc = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
1903 $res->{macaddr
} = PVE
::Tools
::random_ether_addr
($dc->{mac_prefix
});
1908 # ipconfigX ip=cidr,gw=ip,ip6=cidr,gw6=ip
1909 sub parse_ipconfig
{
1912 my $res = eval { parse_property_string
($ipconfig_fmt, $data) };
1918 if ($res->{gw
} && !$res->{ip
}) {
1919 warn 'gateway specified without specifying an IP address';
1922 if ($res->{gw6
} && !$res->{ip6
}) {
1923 warn 'IPv6 gateway specified without specifying an IPv6 address';
1926 if ($res->{gw
} && $res->{ip
} eq 'dhcp') {
1927 warn 'gateway specified together with DHCP';
1930 if ($res->{gw6
} && $res->{ip6
} !~ /^$IPV6RE/) {
1932 warn "IPv6 gateway specified together with $res->{ip6} address";
1936 if (!$res->{ip
} && !$res->{ip6
}) {
1937 return { ip
=> 'dhcp', ip6
=> 'dhcp' };
1946 return PVE
::JSONSchema
::print_property_string
($net, $net_fmt);
1949 sub add_random_macs
{
1950 my ($settings) = @_;
1952 foreach my $opt (keys %$settings) {
1953 next if $opt !~ m/^net(\d+)$/;
1954 my $net = parse_net
($settings->{$opt});
1956 $settings->{$opt} = print_net
($net);
1960 sub vm_is_volid_owner
{
1961 my ($storecfg, $vmid, $volid) = @_;
1963 if ($volid !~ m
|^/|) {
1965 eval { ($path, $owner) = PVE
::Storage
::path
($storecfg, $volid); };
1966 if ($owner && ($owner == $vmid)) {
1974 sub vmconfig_register_unused_drive
{
1975 my ($storecfg, $vmid, $conf, $drive) = @_;
1977 if (drive_is_cloudinit
($drive)) {
1978 eval { PVE
::Storage
::vdisk_free
($storecfg, $drive->{file
}) };
1980 } elsif (!drive_is_cdrom
($drive)) {
1981 my $volid = $drive->{file
};
1982 if (vm_is_volid_owner
($storecfg, $vmid, $volid)) {
1983 PVE
::QemuConfig-
>add_unused_volume($conf, $volid, $vmid);
1988 # smbios: [manufacturer=str][,product=str][,version=str][,serial=str][,uuid=uuid][,sku=str][,family=str][,base64=bool]
1992 pattern
=> '[a-fA-F0-9]{8}(?:-[a-fA-F0-9]{4}){3}-[a-fA-F0-9]{12}',
1993 format_description
=> 'UUID',
1994 description
=> "Set SMBIOS1 UUID.",
1999 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
2000 format_description
=> 'Base64 encoded string',
2001 description
=> "Set SMBIOS1 version.",
2006 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
2007 format_description
=> 'Base64 encoded string',
2008 description
=> "Set SMBIOS1 serial number.",
2013 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
2014 format_description
=> 'Base64 encoded string',
2015 description
=> "Set SMBIOS1 manufacturer.",
2020 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
2021 format_description
=> 'Base64 encoded string',
2022 description
=> "Set SMBIOS1 product ID.",
2027 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
2028 format_description
=> 'Base64 encoded string',
2029 description
=> "Set SMBIOS1 SKU string.",
2034 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
2035 format_description
=> 'Base64 encoded string',
2036 description
=> "Set SMBIOS1 family string.",
2041 description
=> 'Flag to indicate that the SMBIOS values are base64 encoded',
2049 my $res = eval { parse_property_string
($smbios1_fmt, $data) };
2056 return PVE
::JSONSchema
::print_property_string
($smbios1, $smbios1_fmt);
2059 PVE
::JSONSchema
::register_format
('pve-qm-smbios1', $smbios1_fmt);
2061 sub parse_watchdog
{
2066 my $res = eval { parse_property_string
($watchdog_fmt, $value) };
2071 sub parse_guest_agent
{
2074 return {} if !defined($conf->{agent
});
2076 my $res = eval { parse_property_string
($agent_fmt, $conf->{agent
}) };
2079 # if the agent is disabled ignore the other potentially set properties
2080 return {} if !$res->{enabled
};
2085 my ($conf, $key) = @_;
2086 return undef if !defined($conf->{agent
});
2088 my $agent = parse_guest_agent
($conf);
2089 return $agent->{$key};
2095 return {} if !$value;
2096 my $res = eval { parse_property_string
($vga_fmt, $value) };
2106 my $res = eval { parse_property_string
($rng_fmt, $value) };
2111 PVE
::JSONSchema
::register_format
('pve-qm-usb-device', \
&verify_usb_device
);
2112 sub verify_usb_device
{
2113 my ($value, $noerr) = @_;
2115 return $value if parse_usb_device
($value);
2119 die "unable to parse usb device\n";
2122 # add JSON properties for create and set function
2123 sub json_config_properties
{
2126 my $skip_json_config_opts = {
2130 runningmachine
=> 1,
2134 foreach my $opt (keys %$confdesc) {
2135 next if $skip_json_config_opts->{$opt};
2136 $prop->{$opt} = $confdesc->{$opt};
2142 # return copy of $confdesc_cloudinit to generate documentation
2143 sub cloudinit_config_properties
{
2145 return dclone
($confdesc_cloudinit);
2149 my ($key, $value) = @_;
2151 die "unknown setting '$key'\n" if !$confdesc->{$key};
2153 my $type = $confdesc->{$key}->{type
};
2155 if (!defined($value)) {
2156 die "got undefined value\n";
2159 if ($value =~ m/[\n\r]/) {
2160 die "property contains a line feed\n";
2163 if ($type eq 'boolean') {
2164 return 1 if ($value eq '1') || ($value =~ m/^(on|yes|true)$/i);
2165 return 0 if ($value eq '0') || ($value =~ m/^(off|no|false)$/i);
2166 die "type check ('boolean') failed - got '$value'\n";
2167 } elsif ($type eq 'integer') {
2168 return int($1) if $value =~ m/^(\d+)$/;
2169 die "type check ('integer') failed - got '$value'\n";
2170 } elsif ($type eq 'number') {
2171 return $value if $value =~ m/^(\d+)(\.\d+)?$/;
2172 die "type check ('number') failed - got '$value'\n";
2173 } elsif ($type eq 'string') {
2174 if (my $fmt = $confdesc->{$key}->{format
}) {
2175 PVE
::JSONSchema
::check_format
($fmt, $value);
2178 $value =~ s/^\"(.*)\"$/$1/;
2181 die "internal error"
2186 my ($storecfg, $vmid, $skiplock, $replacement_conf, $purge_unreferenced) = @_;
2188 my $conf = PVE
::QemuConfig-
>load_config($vmid);
2190 PVE
::QemuConfig-
>check_lock($conf) if !$skiplock;
2192 if ($conf->{template
}) {
2193 # check if any base image is still used by a linked clone
2194 PVE
::QemuConfig-
>foreach_volume_full($conf, { include_unused
=> 1 }, sub {
2195 my ($ds, $drive) = @_;
2196 return if drive_is_cdrom
($drive);
2198 my $volid = $drive->{file
};
2199 return if !$volid || $volid =~ m
|^/|;
2201 die "base volume '$volid' is still in use by linked cloned\n"
2202 if PVE
::Storage
::volume_is_base_and_used
($storecfg, $volid);
2208 my $remove_owned_drive = sub {
2209 my ($ds, $drive) = @_;
2210 return if drive_is_cdrom
($drive, 1);
2212 my $volid = $drive->{file
};
2213 return if !$volid || $volid =~ m
|^/|;
2214 return if $volids->{$volid};
2216 my ($path, $owner) = PVE
::Storage
::path
($storecfg, $volid);
2217 return if !$path || !$owner || ($owner != $vmid);
2219 $volids->{$volid} = 1;
2220 eval { PVE
::Storage
::vdisk_free
($storecfg, $volid) };
2221 warn "Could not remove disk '$volid', check manually: $@" if $@;
2224 # only remove disks owned by this VM (referenced in the config)
2225 my $include_opts = {
2226 include_unused
=> 1,
2227 extra_keys
=> ['vmstate'],
2229 PVE
::QemuConfig-
>foreach_volume_full($conf, $include_opts, $remove_owned_drive);
2231 for my $snap (values %{$conf->{snapshots
}}) {
2232 next if !defined($snap->{vmstate
});
2233 my $drive = PVE
::QemuConfig-
>parse_volume('vmstate', $snap->{vmstate
}, 1);
2234 next if !defined($drive);
2235 $remove_owned_drive->('vmstate', $drive);
2238 PVE
::QemuConfig-
>foreach_volume_full($conf->{pending
}, $include_opts, $remove_owned_drive);
2240 if ($purge_unreferenced) { # also remove unreferenced disk
2241 my $vmdisks = PVE
::Storage
::vdisk_list
($storecfg, undef, $vmid, undef, 'images');
2242 PVE
::Storage
::foreach_volid
($vmdisks, sub {
2243 my ($volid, $sid, $volname, $d) = @_;
2244 eval { PVE
::Storage
::vdisk_free
($storecfg, $volid) };
2249 if (defined $replacement_conf) {
2250 PVE
::QemuConfig-
>write_config($vmid, $replacement_conf);
2252 PVE
::QemuConfig-
>destroy_config($vmid);
2256 sub parse_vm_config
{
2257 my ($filename, $raw) = @_;
2259 return if !defined($raw);
2262 digest
=> Digest
::SHA
::sha1_hex
($raw),
2267 $filename =~ m
|/qemu-server/(\d
+)\
.conf
$|
2268 || die "got strange filename '$filename'";
2276 my @lines = split(/\n/, $raw);
2277 foreach my $line (@lines) {
2278 next if $line =~ m/^\s*$/;
2280 if ($line =~ m/^\[PENDING\]\s*$/i) {
2281 $section = 'pending';
2282 if (defined($descr)) {
2284 $conf->{description
} = $descr;
2287 $conf = $res->{$section} = {};
2290 } elsif ($line =~ m/^\[([a-z][a-z0-9_\-]+)\]\s*$/i) {
2292 if (defined($descr)) {
2294 $conf->{description
} = $descr;
2297 $conf = $res->{snapshots
}->{$section} = {};
2301 if ($line =~ m/^\#(.*)\s*$/) {
2302 $descr = '' if !defined($descr);
2303 $descr .= PVE
::Tools
::decode_text
($1) . "\n";
2307 if ($line =~ m/^(description):\s*(.*\S)\s*$/) {
2308 $descr = '' if !defined($descr);
2309 $descr .= PVE
::Tools
::decode_text
($2);
2310 } elsif ($line =~ m/snapstate:\s*(prepare|delete)\s*$/) {
2311 $conf->{snapstate
} = $1;
2312 } elsif ($line =~ m/^(args):\s*(.*\S)\s*$/) {
2315 $conf->{$key} = $value;
2316 } elsif ($line =~ m/^delete:\s*(.*\S)\s*$/) {
2318 if ($section eq 'pending') {
2319 $conf->{delete} = $value; # we parse this later
2321 warn "vm $vmid - propertry 'delete' is only allowed in [PENDING]\n";
2323 } elsif ($line =~ m/^([a-z][a-z_]*\d*):\s*(.+?)\s*$/) {
2326 eval { $value = check_type
($key, $value); };
2328 warn "vm $vmid - unable to parse value of '$key' - $@";
2330 $key = 'ide2' if $key eq 'cdrom';
2331 my $fmt = $confdesc->{$key}->{format
};
2332 if ($fmt && $fmt =~ /^pve-qm-(?:ide|scsi|virtio|sata)$/) {
2333 my $v = parse_drive
($key, $value);
2334 if (my $volid = filename_to_volume_id
($vmid, $v->{file
}, $v->{media
})) {
2335 $v->{file
} = $volid;
2336 $value = print_drive
($v);
2338 warn "vm $vmid - unable to parse value of '$key'\n";
2343 $conf->{$key} = $value;
2346 warn "vm $vmid - unable to parse config: $line\n";
2350 if (defined($descr)) {
2352 $conf->{description
} = $descr;
2354 delete $res->{snapstate
}; # just to be sure
2359 sub write_vm_config
{
2360 my ($filename, $conf) = @_;
2362 delete $conf->{snapstate
}; # just to be sure
2364 if ($conf->{cdrom
}) {
2365 die "option ide2 conflicts with cdrom\n" if $conf->{ide2
};
2366 $conf->{ide2
} = $conf->{cdrom
};
2367 delete $conf->{cdrom
};
2370 # we do not use 'smp' any longer
2371 if ($conf->{sockets
}) {
2372 delete $conf->{smp
};
2373 } elsif ($conf->{smp
}) {
2374 $conf->{sockets
} = $conf->{smp
};
2375 delete $conf->{cores
};
2376 delete $conf->{smp
};
2379 my $used_volids = {};
2381 my $cleanup_config = sub {
2382 my ($cref, $pending, $snapname) = @_;
2384 foreach my $key (keys %$cref) {
2385 next if $key eq 'digest' || $key eq 'description' || $key eq 'snapshots' ||
2386 $key eq 'snapstate' || $key eq 'pending';
2387 my $value = $cref->{$key};
2388 if ($key eq 'delete') {
2389 die "propertry 'delete' is only allowed in [PENDING]\n"
2391 # fixme: check syntax?
2394 eval { $value = check_type
($key, $value); };
2395 die "unable to parse value of '$key' - $@" if $@;
2397 $cref->{$key} = $value;
2399 if (!$snapname && is_valid_drivename
($key)) {
2400 my $drive = parse_drive
($key, $value);
2401 $used_volids->{$drive->{file
}} = 1 if $drive && $drive->{file
};
2406 &$cleanup_config($conf);
2408 &$cleanup_config($conf->{pending
}, 1);
2410 foreach my $snapname (keys %{$conf->{snapshots
}}) {
2411 die "internal error: snapshot name '$snapname' is forbidden" if lc($snapname) eq 'pending';
2412 &$cleanup_config($conf->{snapshots
}->{$snapname}, undef, $snapname);
2415 # remove 'unusedX' settings if we re-add a volume
2416 foreach my $key (keys %$conf) {
2417 my $value = $conf->{$key};
2418 if ($key =~ m/^unused/ && $used_volids->{$value}) {
2419 delete $conf->{$key};
2423 my $generate_raw_config = sub {
2424 my ($conf, $pending) = @_;
2428 # add description as comment to top of file
2429 if (defined(my $descr = $conf->{description
})) {
2431 foreach my $cl (split(/\n/, $descr)) {
2432 $raw .= '#' . PVE
::Tools
::encode_text
($cl) . "\n";
2435 $raw .= "#\n" if $pending;
2439 foreach my $key (sort keys %$conf) {
2440 next if $key =~ /^(digest|description|pending|snapshots)$/;
2441 $raw .= "$key: $conf->{$key}\n";
2446 my $raw = &$generate_raw_config($conf);
2448 if (scalar(keys %{$conf->{pending
}})){
2449 $raw .= "\n[PENDING]\n";
2450 $raw .= &$generate_raw_config($conf->{pending
}, 1);
2453 foreach my $snapname (sort keys %{$conf->{snapshots
}}) {
2454 $raw .= "\n[$snapname]\n";
2455 $raw .= &$generate_raw_config($conf->{snapshots
}->{$snapname});
2465 # we use static defaults from our JSON schema configuration
2466 foreach my $key (keys %$confdesc) {
2467 if (defined(my $default = $confdesc->{$key}->{default})) {
2468 $res->{$key} = $default;
2476 my $vmlist = PVE
::Cluster
::get_vmlist
();
2478 return $res if !$vmlist || !$vmlist->{ids
};
2479 my $ids = $vmlist->{ids
};
2480 my $nodename = nodename
();
2482 foreach my $vmid (keys %$ids) {
2483 my $d = $ids->{$vmid};
2484 next if !$d->{node
} || $d->{node
} ne $nodename;
2485 next if !$d->{type
} || $d->{type
} ne 'qemu';
2486 $res->{$vmid}->{exists} = 1;
2491 # test if VM uses local resources (to prevent migration)
2492 sub check_local_resources
{
2493 my ($conf, $noerr) = @_;
2497 push @loc_res, "hostusb" if $conf->{hostusb
}; # old syntax
2498 push @loc_res, "hostpci" if $conf->{hostpci
}; # old syntax
2500 push @loc_res, "ivshmem" if $conf->{ivshmem
};
2502 foreach my $k (keys %$conf) {
2503 next if $k =~ m/^usb/ && ($conf->{$k} =~ m/^spice(?![^,])/);
2504 # sockets are safe: they will recreated be on the target side post-migrate
2505 next if $k =~ m/^serial/ && ($conf->{$k} eq 'socket');
2506 push @loc_res, $k if $k =~ m/^(usb|hostpci|serial|parallel)\d+$/;
2509 die "VM uses local resources\n" if scalar @loc_res && !$noerr;
2514 # check if used storages are available on all nodes (use by migrate)
2515 sub check_storage_availability
{
2516 my ($storecfg, $conf, $node) = @_;
2518 PVE
::QemuConfig-
>foreach_volume($conf, sub {
2519 my ($ds, $drive) = @_;
2521 my $volid = $drive->{file
};
2524 my ($sid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
2527 # check if storage is available on both nodes
2528 my $scfg = PVE
::Storage
::storage_check_enabled
($storecfg, $sid);
2529 PVE
::Storage
::storage_check_enabled
($storecfg, $sid, $node);
2531 my ($vtype) = PVE
::Storage
::parse_volname
($storecfg, $volid);
2533 die "$volid: content type '$vtype' is not available on storage '$sid'\n"
2534 if !$scfg->{content
}->{$vtype};
2538 # list nodes where all VM images are available (used by has_feature API)
2540 my ($conf, $storecfg) = @_;
2542 my $nodelist = PVE
::Cluster
::get_nodelist
();
2543 my $nodehash = { map { $_ => 1 } @$nodelist };
2544 my $nodename = nodename
();
2546 PVE
::QemuConfig-
>foreach_volume($conf, sub {
2547 my ($ds, $drive) = @_;
2549 my $volid = $drive->{file
};
2552 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
2554 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
2555 if ($scfg->{disable
}) {
2557 } elsif (my $avail = $scfg->{nodes
}) {
2558 foreach my $node (keys %$nodehash) {
2559 delete $nodehash->{$node} if !$avail->{$node};
2561 } elsif (!$scfg->{shared
}) {
2562 foreach my $node (keys %$nodehash) {
2563 delete $nodehash->{$node} if $node ne $nodename
2572 sub check_local_storage_availability
{
2573 my ($conf, $storecfg) = @_;
2575 my $nodelist = PVE
::Cluster
::get_nodelist
();
2576 my $nodehash = { map { $_ => {} } @$nodelist };
2578 PVE
::QemuConfig-
>foreach_volume($conf, sub {
2579 my ($ds, $drive) = @_;
2581 my $volid = $drive->{file
};
2584 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
2586 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
2588 if ($scfg->{disable
}) {
2589 foreach my $node (keys %$nodehash) {
2590 $nodehash->{$node}->{unavailable_storages
}->{$storeid} = 1;
2592 } elsif (my $avail = $scfg->{nodes
}) {
2593 foreach my $node (keys %$nodehash) {
2594 if (!$avail->{$node}) {
2595 $nodehash->{$node}->{unavailable_storages
}->{$storeid} = 1;
2602 foreach my $node (values %$nodehash) {
2603 if (my $unavail = $node->{unavailable_storages
}) {
2604 $node->{unavailable_storages
} = [ sort keys %$unavail ];
2611 # Compat only, use assert_config_exists_on_node and vm_running_locally where possible
2613 my ($vmid, $nocheck, $node) = @_;
2615 PVE
::QemuConfig
::assert_config_exists_on_node
($vmid, $node) if !$nocheck;
2616 return PVE
::QemuServer
::Helpers
::vm_running_locally
($vmid);
2621 my $vzlist = config_list
();
2623 my $fd = IO
::Dir-
>new($PVE::QemuServer
::Helpers
::var_run_tmpdir
) || return $vzlist;
2625 while (defined(my $de = $fd->read)) {
2626 next if $de !~ m/^(\d+)\.pid$/;
2628 next if !defined($vzlist->{$vmid});
2629 if (my $pid = check_running
($vmid)) {
2630 $vzlist->{$vmid}->{pid
} = $pid;
2637 our $vmstatus_return_properties = {
2638 vmid
=> get_standard_option
('pve-vmid'),
2640 description
=> "Qemu process status.",
2642 enum
=> ['stopped', 'running'],
2645 description
=> "Maximum memory in bytes.",
2648 renderer
=> 'bytes',
2651 description
=> "Root disk size in bytes.",
2654 renderer
=> 'bytes',
2657 description
=> "VM name.",
2662 description
=> "Qemu QMP agent status.",
2667 description
=> "PID of running qemu process.",
2672 description
=> "Uptime.",
2675 renderer
=> 'duration',
2678 description
=> "Maximum usable CPUs.",
2683 description
=> "The current config lock, if any.",
2688 description
=> "The current configured tags, if any",
2692 'running-machine' => {
2693 description
=> "The currently running machine type (if running).",
2698 description
=> "The currently running QEMU version (if running).",
2704 my $last_proc_pid_stat;
2706 # get VM status information
2707 # This must be fast and should not block ($full == false)
2708 # We only query KVM using QMP if $full == true (this can be slow)
2710 my ($opt_vmid, $full) = @_;
2714 my $storecfg = PVE
::Storage
::config
();
2716 my $list = vzlist
();
2717 my $defaults = load_defaults
();
2719 my ($uptime) = PVE
::ProcFSTools
::read_proc_uptime
(1);
2721 my $cpucount = $cpuinfo->{cpus
} || 1;
2723 foreach my $vmid (keys %$list) {
2724 next if $opt_vmid && ($vmid ne $opt_vmid);
2726 my $conf = PVE
::QemuConfig-
>load_config($vmid);
2728 my $d = { vmid
=> int($vmid) };
2729 $d->{pid
} = int($list->{$vmid}->{pid
}) if $list->{$vmid}->{pid
};
2731 # fixme: better status?
2732 $d->{status
} = $list->{$vmid}->{pid
} ?
'running' : 'stopped';
2734 my $size = PVE
::QemuServer
::Drive
::bootdisk_size
($storecfg, $conf);
2735 if (defined($size)) {
2736 $d->{disk
} = 0; # no info available
2737 $d->{maxdisk
} = $size;
2743 $d->{cpus
} = ($conf->{sockets
} || $defaults->{sockets
})
2744 * ($conf->{cores
} || $defaults->{cores
});
2745 $d->{cpus
} = $cpucount if $d->{cpus
} > $cpucount;
2746 $d->{cpus
} = $conf->{vcpus
} if $conf->{vcpus
};
2748 $d->{name
} = $conf->{name
} || "VM $vmid";
2749 $d->{maxmem
} = $conf->{memory
} ?
$conf->{memory
}*(1024*1024)
2750 : $defaults->{memory
}*(1024*1024);
2752 if ($conf->{balloon
}) {
2753 $d->{balloon_min
} = $conf->{balloon
}*(1024*1024);
2754 $d->{shares
} = defined($conf->{shares
}) ?
$conf->{shares
}
2755 : $defaults->{shares
};
2766 $d->{diskwrite
} = 0;
2768 $d->{template
} = 1 if PVE
::QemuConfig-
>is_template($conf);
2770 $d->{serial
} = 1 if conf_has_serial
($conf);
2771 $d->{lock} = $conf->{lock} if $conf->{lock};
2772 $d->{tags
} = $conf->{tags
} if defined($conf->{tags
});
2777 my $netdev = PVE
::ProcFSTools
::read_proc_net_dev
();
2778 foreach my $dev (keys %$netdev) {
2779 next if $dev !~ m/^tap([1-9]\d*)i/;
2781 my $d = $res->{$vmid};
2784 $d->{netout
} += $netdev->{$dev}->{receive
};
2785 $d->{netin
} += $netdev->{$dev}->{transmit
};
2788 $d->{nics
}->{$dev}->{netout
} = int($netdev->{$dev}->{receive
});
2789 $d->{nics
}->{$dev}->{netin
} = int($netdev->{$dev}->{transmit
});
2794 my $ctime = gettimeofday
;
2796 foreach my $vmid (keys %$list) {
2798 my $d = $res->{$vmid};
2799 my $pid = $d->{pid
};
2802 my $pstat = PVE
::ProcFSTools
::read_proc_pid_stat
($pid);
2803 next if !$pstat; # not running
2805 my $used = $pstat->{utime} + $pstat->{stime
};
2807 $d->{uptime
} = int(($uptime - $pstat->{starttime
})/$cpuinfo->{user_hz
});
2809 if ($pstat->{vsize
}) {
2810 $d->{mem
} = int(($pstat->{rss
}/$pstat->{vsize
})*$d->{maxmem
});
2813 my $old = $last_proc_pid_stat->{$pid};
2815 $last_proc_pid_stat->{$pid} = {
2823 my $dtime = ($ctime - $old->{time}) * $cpucount * $cpuinfo->{user_hz
};
2825 if ($dtime > 1000) {
2826 my $dutime = $used - $old->{used
};
2828 $d->{cpu
} = (($dutime/$dtime)* $cpucount) / $d->{cpus
};
2829 $last_proc_pid_stat->{$pid} = {
2835 $d->{cpu
} = $old->{cpu
};
2839 return $res if !$full;
2841 my $qmpclient = PVE
::QMPClient-
>new();
2843 my $ballooncb = sub {
2844 my ($vmid, $resp) = @_;
2846 my $info = $resp->{'return'};
2847 return if !$info->{max_mem
};
2849 my $d = $res->{$vmid};
2851 # use memory assigned to VM
2852 $d->{maxmem
} = $info->{max_mem
};
2853 $d->{balloon
} = $info->{actual
};
2855 if (defined($info->{total_mem
}) && defined($info->{free_mem
})) {
2856 $d->{mem
} = $info->{total_mem
} - $info->{free_mem
};
2857 $d->{freemem
} = $info->{free_mem
};
2860 $d->{ballooninfo
} = $info;
2863 my $blockstatscb = sub {
2864 my ($vmid, $resp) = @_;
2865 my $data = $resp->{'return'} || [];
2866 my $totalrdbytes = 0;
2867 my $totalwrbytes = 0;
2869 for my $blockstat (@$data) {
2870 $totalrdbytes = $totalrdbytes + $blockstat->{stats
}->{rd_bytes
};
2871 $totalwrbytes = $totalwrbytes + $blockstat->{stats
}->{wr_bytes
};
2873 $blockstat->{device
} =~ s/drive-//;
2874 $res->{$vmid}->{blockstat
}->{$blockstat->{device
}} = $blockstat->{stats
};
2876 $res->{$vmid}->{diskread
} = $totalrdbytes;
2877 $res->{$vmid}->{diskwrite
} = $totalwrbytes;
2880 my $machinecb = sub {
2881 my ($vmid, $resp) = @_;
2882 my $data = $resp->{'return'} || [];
2884 $res->{$vmid}->{'running-machine'} =
2885 PVE
::QemuServer
::Machine
::current_from_query_machines
($data);
2888 my $versioncb = sub {
2889 my ($vmid, $resp) = @_;
2890 my $data = $resp->{'return'} // {};
2891 my $version = 'unknown';
2893 if (my $v = $data->{qemu
}) {
2894 $version = $v->{major
} . "." . $v->{minor
} . "." . $v->{micro
};
2897 $res->{$vmid}->{'running-qemu'} = $version;
2900 my $statuscb = sub {
2901 my ($vmid, $resp) = @_;
2903 $qmpclient->queue_cmd($vmid, $blockstatscb, 'query-blockstats');
2904 $qmpclient->queue_cmd($vmid, $machinecb, 'query-machines');
2905 $qmpclient->queue_cmd($vmid, $versioncb, 'query-version');
2906 # this fails if ballon driver is not loaded, so this must be
2907 # the last commnand (following command are aborted if this fails).
2908 $qmpclient->queue_cmd($vmid, $ballooncb, 'query-balloon');
2910 my $status = 'unknown';
2911 if (!defined($status = $resp->{'return'}->{status
})) {
2912 warn "unable to get VM status\n";
2916 $res->{$vmid}->{qmpstatus
} = $resp->{'return'}->{status
};
2919 foreach my $vmid (keys %$list) {
2920 next if $opt_vmid && ($vmid ne $opt_vmid);
2921 next if !$res->{$vmid}->{pid
}; # not running
2922 $qmpclient->queue_cmd($vmid, $statuscb, 'query-status');
2925 $qmpclient->queue_execute(undef, 2);
2927 foreach my $vmid (keys %$list) {
2928 next if $opt_vmid && ($vmid ne $opt_vmid);
2929 next if !$res->{$vmid}->{pid
}; #not running
2931 # we can't use the $qmpclient since it might have already aborted on
2932 # 'query-balloon', but this might also fail for older versions...
2933 my $qemu_support = eval { mon_cmd
($vmid, "query-proxmox-support") };
2934 $res->{$vmid}->{'proxmox-support'} = $qemu_support // {};
2937 foreach my $vmid (keys %$list) {
2938 next if $opt_vmid && ($vmid ne $opt_vmid);
2939 $res->{$vmid}->{qmpstatus
} = $res->{$vmid}->{status
} if !$res->{$vmid}->{qmpstatus
};
2945 sub conf_has_serial
{
2948 for (my $i = 0; $i < $MAX_SERIAL_PORTS; $i++) {
2949 if ($conf->{"serial$i"}) {
2957 sub conf_has_audio
{
2958 my ($conf, $id) = @_;
2961 my $audio = $conf->{"audio$id"};
2962 return if !defined($audio);
2964 my $audioproperties = parse_property_string
($audio_fmt, $audio);
2965 my $audiodriver = $audioproperties->{driver
} // 'spice';
2968 dev
=> $audioproperties->{device
},
2969 dev_id
=> "audiodev$id",
2970 backend
=> $audiodriver,
2971 backend_id
=> "$audiodriver-backend${id}",
2976 my ($audio, $audiopciaddr, $machine_version) = @_;
2980 my $id = $audio->{dev_id
};
2982 if (min_version
($machine_version, 4, 2)) {
2983 $audiodev = ",audiodev=$audio->{backend_id}";
2986 if ($audio->{dev
} eq 'AC97') {
2987 push @$devs, '-device', "AC97,id=${id}${audiopciaddr}$audiodev";
2988 } elsif ($audio->{dev
} =~ /intel\-hda$/) {
2989 push @$devs, '-device', "$audio->{dev},id=${id}${audiopciaddr}";
2990 push @$devs, '-device', "hda-micro,id=${id}-codec0,bus=${id}.0,cad=0$audiodev";
2991 push @$devs, '-device', "hda-duplex,id=${id}-codec1,bus=${id}.0,cad=1$audiodev";
2993 die "unkown audio device '$audio->{dev}', implement me!";
2996 push @$devs, '-audiodev', "$audio->{backend},id=$audio->{backend_id}";
3004 socket => "/var/run/qemu-server/$vmid.swtpm",
3005 pid
=> "/var/run/qemu-server/$vmid.swtpm.pid",
3009 sub add_tpm_device
{
3010 my ($vmid, $devices, $conf) = @_;
3012 return if !$conf->{tpmstate0
};
3014 my $paths = get_tpm_paths
($vmid);
3016 push @$devices, "-chardev", "socket,id=tpmchar,path=$paths->{socket}";
3017 push @$devices, "-tpmdev", "emulator,id=tpmdev,chardev=tpmchar";
3018 push @$devices, "-device", "tpm-tis,tpmdev=tpmdev";
3022 my ($storecfg, $vmid, $tpmdrive, $migration) = @_;
3024 return if !$tpmdrive;
3027 my $tpm = parse_drive
("tpmstate0", $tpmdrive);
3028 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($tpm->{file
}, 1);
3030 $state = PVE
::Storage
::map_volume
($storecfg, $tpm->{file
});
3032 $state = $tpm->{file
};
3035 my $paths = get_tpm_paths
($vmid);
3037 # during migration, we will get state from remote
3040 # run swtpm_setup to create a new TPM state if it doesn't exist yet
3047 "--create-platform-cert",
3050 "/etc/swtpm_setup.conf", # do not use XDG configs
3052 "0", # force creation as root, error if not possible
3053 "--not-overwrite", # ignore existing state, do not modify
3056 push @$setup_cmd, "--tpm2" if $tpm->{version
} eq 'v2.0';
3057 # TPM 2.0 supports ECC crypto, use if possible
3058 push @$setup_cmd, "--ecc" if $tpm->{version
} eq 'v2.0';
3060 run_command
($setup_cmd, outfunc
=> sub {
3061 print "swtpm_setup: $1\n";
3065 my $emulator_cmd = [
3069 "backend-uri=file://$state,mode=0600",
3071 "type=unixio,path=$paths->{socket},mode=0600",
3073 "file=$paths->{pid}",
3074 "--terminate", # terminate on QEMU disconnect
3077 push @$emulator_cmd, "--tpm2" if $tpm->{version
} eq 'v2.0';
3078 run_command
($emulator_cmd, outfunc
=> sub { print $1; });
3080 my $tries = 100; # swtpm may take a bit to start before daemonizing, wait up to 5s for pid
3081 while (! -e
$paths->{pid
}) {
3082 die "failed to start swtpm: pid file '$paths->{pid}' wasn't created.\n" if --$tries == 0;
3086 # return untainted PID of swtpm daemon so it can be killed on error
3087 file_read_firstline
($paths->{pid
}) =~ m/(\d+)/;
3091 sub vga_conf_has_spice
{
3094 my $vgaconf = parse_vga
($vga);
3095 my $vgatype = $vgaconf->{type
};
3096 return 0 if !$vgatype || $vgatype !~ m/^qxl([234])?$/;
3103 return get_host_arch
() eq $arch;
3108 return $conf->{arch
} // get_host_arch
();
3111 my $default_machines = {
3116 sub get_installed_machine_version
{
3117 my ($kvmversion) = @_;
3118 $kvmversion = kvm_user_version
() if !defined($kvmversion);
3119 $kvmversion =~ m/^(\d+\.\d+)/;
3123 sub windows_get_pinned_machine_version
{
3124 my ($machine, $base_version, $kvmversion) = @_;
3126 my $pin_version = $base_version;
3127 if (!defined($base_version) ||
3128 !PVE
::QemuServer
::Machine
::can_run_pve_machine_version
($base_version, $kvmversion)
3130 $pin_version = get_installed_machine_version
($kvmversion);
3132 if (!$machine || $machine eq 'pc') {
3133 $machine = "pc-i440fx-$pin_version";
3134 } elsif ($machine eq 'q35') {
3135 $machine = "pc-q35-$pin_version";
3136 } elsif ($machine eq 'virt') {
3137 $machine = "virt-$pin_version";
3139 warn "unknown machine type '$machine', not touching that!\n";
3145 sub get_vm_machine
{
3146 my ($conf, $forcemachine, $arch, $add_pve_version, $kvmversion) = @_;
3148 my $machine = $forcemachine || $conf->{machine
};
3150 if (!$machine || $machine =~ m/^(?:pc|q35|virt)$/) {
3151 $kvmversion //= kvm_user_version
();
3152 # we must pin Windows VMs without a specific version to 5.1, as 5.2 fixed a bug in ACPI
3153 # layout which confuses windows quite a bit and may result in various regressions..
3154 # see: https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg08484.html
3155 if (windows_version
($conf->{ostype
})) {
3156 $machine = windows_get_pinned_machine_version
($machine, '5.1', $kvmversion);
3159 $machine ||= $default_machines->{$arch};
3160 if ($add_pve_version) {
3161 my $pvever = PVE
::QemuServer
::Machine
::get_pve_version
($kvmversion);
3162 $machine .= "+pve$pvever";
3166 if ($add_pve_version && $machine !~ m/\+pve\d+?(?:\.pxe)?$/) {
3167 my $is_pxe = $machine =~ m/^(.*?)\.pxe$/;
3168 $machine = $1 if $is_pxe;
3170 # for version-pinned machines that do not include a pve-version (e.g.
3171 # pc-q35-4.1), we assume 0 to keep them stable in case we bump
3172 $machine .= '+pve0';
3174 $machine .= '.pxe' if $is_pxe;
3180 sub get_ovmf_files
($$$) {
3181 my ($arch, $efidisk, $smm) = @_;
3183 my $types = $OVMF->{$arch}
3184 or die "no OVMF images known for architecture '$arch'\n";
3186 my $type = 'default';
3187 if (defined($efidisk->{efitype
}) && $efidisk->{efitype
} eq '4m') {
3188 $type = $smm ?
"4m" : "4m-no-smm";
3189 $type .= '-ms' if $efidisk->{'pre-enrolled-keys'};
3192 return $types->{$type}->@*;
3196 aarch64
=> '/usr/bin/qemu-system-aarch64',
3197 x86_64
=> '/usr/bin/qemu-system-x86_64',
3199 sub get_command_for_arch
($) {
3201 return '/usr/bin/kvm' if is_native
($arch);
3203 my $cmd = $Arch2Qemu->{$arch}
3204 or die "don't know how to emulate architecture '$arch'\n";
3208 # To use query_supported_cpu_flags and query_understood_cpu_flags to get flags
3209 # to use in a QEMU command line (-cpu element), first array_intersect the result
3210 # of query_supported_ with query_understood_. This is necessary because:
3212 # a) query_understood_ returns flags the host cannot use and
3213 # b) query_supported_ (rather the QMP call) doesn't actually return CPU
3214 # flags, but CPU settings - with most of them being flags. Those settings
3215 # (and some flags, curiously) cannot be specified as a "-cpu" argument.
3217 # query_supported_ needs to start up to 2 temporary VMs and is therefore rather
3218 # expensive. If you need the value returned from this, you can get it much
3219 # cheaper from pmxcfs using PVE::Cluster::get_node_kv('cpuflags-$accel') with
3220 # $accel being 'kvm' or 'tcg'.
3222 # pvestatd calls this function on startup and whenever the QEMU/KVM version
3223 # changes, automatically populating pmxcfs.
3225 # Returns: { kvm => [ flagX, flagY, ... ], tcg => [ flag1, flag2, ... ] }
3226 # since kvm and tcg machines support different flags
3228 sub query_supported_cpu_flags
{
3231 $arch //= get_host_arch
();
3232 my $default_machine = $default_machines->{$arch};
3236 # FIXME: Once this is merged, the code below should work for ARM as well:
3237 # https://lists.nongnu.org/archive/html/qemu-devel/2019-06/msg04947.html
3238 die "QEMU/KVM cannot detect CPU flags on ARM (aarch64)\n" if
3241 my $kvm_supported = defined(kvm_version
());
3242 my $qemu_cmd = get_command_for_arch
($arch);
3244 my $pidfile = PVE
::QemuServer
::Helpers
::pidfile_name
($fakevmid);
3246 # Start a temporary (frozen) VM with vmid -1 to allow sending a QMP command
3247 my $query_supported_run_qemu = sub {
3253 '-machine', $default_machine,
3255 '-chardev', "socket,id=qmp,path=/var/run/qemu-server/$fakevmid.qmp,server=on,wait=off",
3256 '-mon', 'chardev=qmp,mode=control',
3257 '-pidfile', $pidfile,
3262 push @$cmd, '-accel', 'tcg';
3265 my $rc = run_command
($cmd, noerr
=> 1, quiet
=> 0);
3266 die "QEMU flag querying VM exited with code " . $rc if $rc;
3269 my $cmd_result = mon_cmd
(
3271 'query-cpu-model-expansion',
3273 model
=> { name
=> 'host' }
3276 my $props = $cmd_result->{model
}->{props
};
3277 foreach my $prop (keys %$props) {
3278 next if $props->{$prop} ne '1';
3279 # QEMU returns some flags multiple times, with '_', '.' or '-'
3280 # (e.g. lahf_lm and lahf-lm; sse4.2, sse4-2 and sse4_2; ...).
3281 # We only keep those with underscores, to match /proc/cpuinfo
3282 $prop =~ s/\.|-/_/g;
3283 $flags->{$prop} = 1;
3288 # force stop with 10 sec timeout and 'nocheck', always stop, even if QMP failed
3289 vm_stop
(undef, $fakevmid, 1, 1, 10, 0, 1);
3293 return [ sort keys %$flags ];
3296 # We need to query QEMU twice, since KVM and TCG have different supported flags
3297 PVE
::QemuConfig-
>lock_config($fakevmid, sub {
3298 $flags->{tcg
} = eval { $query_supported_run_qemu->(0) };
3299 warn "warning: failed querying supported tcg flags: $@\n" if $@;
3301 if ($kvm_supported) {
3302 $flags->{kvm
} = eval { $query_supported_run_qemu->(1) };
3303 warn "warning: failed querying supported kvm flags: $@\n" if $@;
3310 # Understood CPU flags are written to a file at 'pve-qemu' compile time
3311 my $understood_cpu_flag_dir = "/usr/share/kvm";
3312 sub query_understood_cpu_flags
{
3313 my $arch = get_host_arch
();
3314 my $filepath = "$understood_cpu_flag_dir/recognized-CPUID-flags-$arch";
3316 die "Cannot query understood QEMU CPU flags for architecture: $arch (file not found)\n"
3319 my $raw = file_get_contents
($filepath);
3320 $raw =~ s/^\s+|\s+$//g;
3321 my @flags = split(/\s+/, $raw);
3326 my sub get_cpuunits
{
3328 return $conf->{cpuunits
} // (PVE
::CGroup
::cgroup_mode
() == 2 ?
100 : 1024);
3330 sub config_to_command
{
3331 my ($storecfg, $vmid, $conf, $defaults, $forcemachine, $forcecpu,
3335 my ($globalFlags, $machineFlags, $rtcFlags) = ([], [], []);
3338 my $ostype = $conf->{ostype
};
3339 my $winversion = windows_version
($ostype);
3340 my $kvm = $conf->{kvm
};
3341 my $nodename = nodename
();
3343 my $arch = get_vm_arch
($conf);
3344 my $kvm_binary = get_command_for_arch
($arch);
3345 my $kvmver = kvm_user_version
($kvm_binary);
3347 if (!$kvmver || $kvmver !~ m/^(\d+)\.(\d+)/ || $1 < 3) {
3348 $kvmver //= "undefined";
3349 die "Detected old QEMU binary ('$kvmver', at least 3.0 is required)\n";
3352 my $add_pve_version = min_version
($kvmver, 4, 1);
3354 my $machine_type = get_vm_machine
($conf, $forcemachine, $arch, $add_pve_version);
3355 my $machine_version = extract_version
($machine_type, $kvmver);
3356 $kvm //= 1 if is_native
($arch);
3358 $machine_version =~ m/(\d+)\.(\d+)/;
3359 my ($machine_major, $machine_minor) = ($1, $2);
3361 if ($kvmver =~ m/^\d+\.\d+\.(\d+)/ && $1 >= 90) {
3362 warn "warning: Installed QEMU version ($kvmver) is a release candidate, ignoring version checks\n";
3363 } elsif (!min_version
($kvmver, $machine_major, $machine_minor)) {
3364 die "Installed QEMU version '$kvmver' is too old to run machine type '$machine_type',"
3365 ." please upgrade node '$nodename'\n"
3366 } elsif (!PVE
::QemuServer
::Machine
::can_run_pve_machine_version
($machine_version, $kvmver)) {
3367 my $max_pve_version = PVE
::QemuServer
::Machine
::get_pve_version
($machine_version);
3368 die "Installed qemu-server (max feature level for $machine_major.$machine_minor is"
3369 ." pve$max_pve_version) is too old to run machine type '$machine_type', please upgrade"
3370 ." node '$nodename'\n";
3373 # if a specific +pve version is required for a feature, use $version_guard
3374 # instead of min_version to allow machines to be run with the minimum
3376 my $required_pve_version = 0;
3377 my $version_guard = sub {
3378 my ($major, $minor, $pve) = @_;
3379 return 0 if !min_version
($machine_version, $major, $minor, $pve);
3380 my $max_pve = PVE
::QemuServer
::Machine
::get_pve_version
("$major.$minor");
3381 return 1 if min_version
($machine_version, $major, $minor, $max_pve+1);
3382 $required_pve_version = $pve if $pve && $pve > $required_pve_version;
3386 if ($kvm && !defined kvm_version
()) {
3387 die "KVM virtualisation configured, but not available. Either disable in VM configuration"
3388 ." or enable in BIOS.\n";
3391 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
3392 my $hotplug_features = parse_hotplug_features
(defined($conf->{hotplug
}) ?
$conf->{hotplug
} : '1');
3393 my $use_old_bios_files = undef;
3394 ($use_old_bios_files, $machine_type) = qemu_use_old_bios_files
($machine_type);
3396 my $cpuunits = get_cpuunits
($conf);
3398 push @$cmd, $kvm_binary;
3400 push @$cmd, '-id', $vmid;
3402 my $vmname = $conf->{name
} || "vm$vmid";
3404 push @$cmd, '-name', $vmname;
3406 push @$cmd, '-no-shutdown';
3410 my $qmpsocket = PVE
::QemuServer
::Helpers
::qmp_socket
($vmid);
3411 push @$cmd, '-chardev', "socket,id=qmp,path=$qmpsocket,server=on,wait=off";
3412 push @$cmd, '-mon', "chardev=qmp,mode=control";
3414 if (min_version
($machine_version, 2, 12)) {
3415 push @$cmd, '-chardev', "socket,id=qmp-event,path=/var/run/qmeventd.sock,reconnect=5";
3416 push @$cmd, '-mon', "chardev=qmp-event,mode=control";
3419 push @$cmd, '-pidfile' , PVE
::QemuServer
::Helpers
::pidfile_name
($vmid);
3421 push @$cmd, '-daemonize';
3423 if ($conf->{smbios1
}) {
3424 my $smbios_conf = parse_smbios1
($conf->{smbios1
});
3425 if ($smbios_conf->{base64
}) {
3426 # Do not pass base64 flag to qemu
3427 delete $smbios_conf->{base64
};
3428 my $smbios_string = "";
3429 foreach my $key (keys %$smbios_conf) {
3431 if ($key eq "uuid") {
3432 $value = $smbios_conf->{uuid
}
3434 $value = decode_base64
($smbios_conf->{$key});
3436 # qemu accepts any binary data, only commas need escaping by double comma
3438 $smbios_string .= "," . $key . "=" . $value if $value;
3440 push @$cmd, '-smbios', "type=1" . $smbios_string;
3442 push @$cmd, '-smbios', "type=1,$conf->{smbios1}";
3446 if ($conf->{bios
} && $conf->{bios
} eq 'ovmf') {
3448 if (my $efidisk = $conf->{efidisk0
}) {
3449 $d = parse_drive
('efidisk0', $efidisk);
3452 my ($ovmf_code, $ovmf_vars) = get_ovmf_files
($arch, $d, $q35);
3453 die "uefi base image '$ovmf_code' not found\n" if ! -f
$ovmf_code;
3455 my ($path, $format);
3456 my $read_only_str = '';
3458 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($d->{file
}, 1);
3459 $format = $d->{format
};
3461 $path = PVE
::Storage
::path
($storecfg, $d->{file
});
3462 if (!defined($format)) {
3463 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
3464 $format = qemu_img_format
($scfg, $volname);
3468 die "efidisk format must be specified\n"
3469 if !defined($format);
3472 $read_only_str = ',readonly=on' if drive_is_read_only
($conf, $d);
3474 warn "no efidisk configured! Using temporary efivars disk.\n";
3475 $path = "/tmp/$vmid-ovmf.fd";
3476 PVE
::Tools
::file_copy
($ovmf_vars, $path, -s
$ovmf_vars);
3482 if ($format eq 'raw' && $version_guard->(4, 1, 2)) {
3483 $size_str = ",size=" . (-s
$ovmf_vars);
3486 # SPI flash does lots of read-modify-write OPs, without writeback this gets really slow #3329
3488 if ($path =~ m/^rbd:/) {
3489 $cache = ',cache=writeback';
3490 $path .= ':rbd_cache_policy=writeback'; # avoid write-around, we *need* to cache writes too
3493 push @$cmd, '-drive', "if=pflash,unit=0,format=raw,readonly=on,file=$ovmf_code";
3494 push @$cmd, '-drive', "if=pflash,unit=1$cache,format=$format,id=drive-efidisk0$size_str,file=${path}${read_only_str}";
3497 if ($q35) { # tell QEMU to load q35 config early
3498 # we use different pcie-port hardware for qemu >= 4.0 for passthrough
3499 if (min_version
($machine_version, 4, 0)) {
3500 push @$devices, '-readconfig', '/usr/share/qemu-server/pve-q35-4.0.cfg';
3502 push @$devices, '-readconfig', '/usr/share/qemu-server/pve-q35.cfg';
3506 if ($conf->{vmgenid
}) {
3507 push @$devices, '-device', 'vmgenid,guid='.$conf->{vmgenid
};
3510 # add usb controllers
3511 my @usbcontrollers = PVE
::QemuServer
::USB
::get_usb_controllers
(
3512 $conf, $bridges, $arch, $machine_type, $usbdesc->{format
}, $MAX_USB_DEVICES);
3513 push @$devices, @usbcontrollers if @usbcontrollers;
3514 my $vga = parse_vga
($conf->{vga
});
3516 my $qxlnum = vga_conf_has_spice
($conf->{vga
});
3517 $vga->{type
} = 'qxl' if $qxlnum;
3519 if (!$vga->{type
}) {
3520 if ($arch eq 'aarch64') {
3521 $vga->{type
} = 'virtio';
3522 } elsif (min_version
($machine_version, 2, 9)) {
3523 $vga->{type
} = (!$winversion || $winversion >= 6) ?
'std' : 'cirrus';
3525 $vga->{type
} = ($winversion >= 6) ?
'std' : 'cirrus';
3529 # enable absolute mouse coordinates (needed by vnc)
3530 my $tablet = $conf->{tablet
};
3531 if (!defined($tablet)) {
3532 $tablet = $defaults->{tablet
};
3533 $tablet = 0 if $qxlnum; # disable for spice because it is not needed
3534 $tablet = 0 if $vga->{type
} =~ m/^serial\d+$/; # disable if we use serial terminal (no vga card)
3538 push @$devices, '-device', print_tabletdevice_full
($conf, $arch) if $tablet;
3539 my $kbd = print_keyboarddevice_full
($conf, $arch);
3540 push @$devices, '-device', $kbd if defined($kbd);
3543 my $bootorder = device_bootorder
($conf);
3545 # host pci device passthrough
3546 my ($kvm_off, $gpu_passthrough, $legacy_igd) = PVE
::QemuServer
::PCI
::print_hostpci_devices
(
3547 $vmid, $conf, $devices, $vga, $winversion, $q35, $bridges, $arch, $machine_type, $bootorder);
3550 my $usb_dev_features = {};
3551 $usb_dev_features->{spice_usb3
} = 1 if min_version
($machine_version, 4, 0);
3553 my @usbdevices = PVE
::QemuServer
::USB
::get_usb_devices
(
3554 $conf, $usbdesc->{format
}, $MAX_USB_DEVICES, $usb_dev_features, $bootorder);
3555 push @$devices, @usbdevices if @usbdevices;
3558 for (my $i = 0; $i < $MAX_SERIAL_PORTS; $i++) {
3559 my $path = $conf->{"serial$i"} or next;
3560 if ($path eq 'socket') {
3561 my $socket = "/var/run/qemu-server/${vmid}.serial$i";
3562 push @$devices, '-chardev', "socket,id=serial$i,path=$socket,server=on,wait=off";
3563 # On aarch64, serial0 is the UART device. Qemu only allows
3564 # connecting UART devices via the '-serial' command line, as
3565 # the device has a fixed slot on the hardware...
3566 if ($arch eq 'aarch64' && $i == 0) {
3567 push @$devices, '-serial', "chardev:serial$i";
3569 push @$devices, '-device', "isa-serial,chardev=serial$i";
3572 die "no such serial device\n" if ! -c
$path;
3573 push @$devices, '-chardev', "tty,id=serial$i,path=$path";
3574 push @$devices, '-device', "isa-serial,chardev=serial$i";
3579 for (my $i = 0; $i < $MAX_PARALLEL_PORTS; $i++) {
3580 if (my $path = $conf->{"parallel$i"}) {
3581 die "no such parallel device\n" if ! -c
$path;
3582 my $devtype = $path =~ m!^/dev/usb/lp! ?
'tty' : 'parport';
3583 push @$devices, '-chardev', "$devtype,id=parallel$i,path=$path";
3584 push @$devices, '-device', "isa-parallel,chardev=parallel$i";
3588 if (min_version
($machine_version, 4, 0) && (my $audio = conf_has_audio
($conf))) {
3589 my $audiopciaddr = print_pci_addr
("audio0", $bridges, $arch, $machine_type);
3590 my $audio_devs = audio_devs
($audio, $audiopciaddr, $machine_version);
3591 push @$devices, @$audio_devs;
3594 add_tpm_device
($vmid, $devices, $conf);
3597 $sockets = $conf->{smp
} if $conf->{smp
}; # old style - no longer iused
3598 $sockets = $conf->{sockets
} if $conf->{sockets
};
3600 my $cores = $conf->{cores
} || 1;
3602 my $maxcpus = $sockets * $cores;
3604 my $vcpus = $conf->{vcpus
} ?
$conf->{vcpus
} : $maxcpus;
3606 my $allowed_vcpus = $cpuinfo->{cpus
};
3608 die "MAX $allowed_vcpus vcpus allowed per VM on this node\n" if ($allowed_vcpus < $maxcpus);
3610 if ($hotplug_features->{cpu
} && min_version
($machine_version, 2, 7)) {
3611 push @$cmd, '-smp', "1,sockets=$sockets,cores=$cores,maxcpus=$maxcpus";
3612 for (my $i = 2; $i <= $vcpus; $i++) {
3613 my $cpustr = print_cpu_device
($conf,$i);
3614 push @$cmd, '-device', $cpustr;
3619 push @$cmd, '-smp', "$vcpus,sockets=$sockets,cores=$cores,maxcpus=$maxcpus";
3621 push @$cmd, '-nodefaults';
3623 push @$cmd, '-boot', "menu=on,strict=on,reboot-timeout=1000,splash=/usr/share/qemu-server/bootsplash.jpg";
3625 push @$cmd, '-no-acpi' if defined($conf->{acpi
}) && $conf->{acpi
} == 0;
3627 push @$cmd, '-no-reboot' if defined($conf->{reboot
}) && $conf->{reboot
} == 0;
3629 if ($vga->{type
} && $vga->{type
} !~ m/^serial\d+$/ && $vga->{type
} ne 'none'){
3630 push @$devices, '-device', print_vga_device
(
3631 $conf, $vga, $arch, $machine_version, $machine_type, undef, $qxlnum, $bridges);
3632 my $socket = PVE
::QemuServer
::Helpers
::vnc_socket
($vmid);
3633 push @$cmd, '-vnc', "unix:$socket,password=on";
3635 push @$cmd, '-vga', 'none' if $vga->{type
} eq 'none';
3636 push @$cmd, '-nographic';
3640 my $tdf = defined($conf->{tdf
}) ?
$conf->{tdf
} : $defaults->{tdf
};
3641 my $useLocaltime = $conf->{localtime};
3643 if ($winversion >= 5) { # windows
3644 $useLocaltime = 1 if !defined($conf->{localtime});
3646 # use time drift fix when acpi is enabled
3647 if (!(defined($conf->{acpi
}) && $conf->{acpi
} == 0)) {
3648 $tdf = 1 if !defined($conf->{tdf
});
3652 if ($winversion >= 6) {
3653 push @$globalFlags, 'kvm-pit.lost_tick_policy=discard';
3654 push @$cmd, '-no-hpet';
3657 push @$rtcFlags, 'driftfix=slew' if $tdf;
3659 if ($conf->{startdate
} && $conf->{startdate
} ne 'now') {
3660 push @$rtcFlags, "base=$conf->{startdate}";
3661 } elsif ($useLocaltime) {
3662 push @$rtcFlags, 'base=localtime';
3666 push @$cmd, '-cpu', $forcecpu;
3668 push @$cmd, get_cpu_options
($conf, $arch, $kvm, $kvm_off, $machine_version, $winversion, $gpu_passthrough);
3671 PVE
::QemuServer
::Memory
::config
($conf, $vmid, $sockets, $cores, $defaults, $hotplug_features, $cmd);
3673 push @$cmd, '-S' if $conf->{freeze
};
3675 push @$cmd, '-k', $conf->{keyboard
} if defined($conf->{keyboard
});
3677 my $guest_agent = parse_guest_agent
($conf);
3679 if ($guest_agent->{enabled
}) {
3680 my $qgasocket = PVE
::QemuServer
::Helpers
::qmp_socket
($vmid, 1);
3681 push @$devices, '-chardev', "socket,path=$qgasocket,server=on,wait=off,id=qga0";
3683 if (!$guest_agent->{type
} || $guest_agent->{type
} eq 'virtio') {
3684 my $pciaddr = print_pci_addr
("qga0", $bridges, $arch, $machine_type);
3685 push @$devices, '-device', "virtio-serial,id=qga0$pciaddr";
3686 push @$devices, '-device', 'virtserialport,chardev=qga0,name=org.qemu.guest_agent.0';
3687 } elsif ($guest_agent->{type
} eq 'isa') {
3688 push @$devices, '-device', "isa-serial,chardev=qga0";
3692 my $rng = $conf->{rng0
} ? parse_rng
($conf->{rng0
}) : undef;
3693 if ($rng && $version_guard->(4, 1, 2)) {
3694 check_rng_source
($rng->{source
});
3696 my $max_bytes = $rng->{max_bytes
} // $rng_fmt->{max_bytes
}->{default};
3697 my $period = $rng->{period
} // $rng_fmt->{period
}->{default};
3698 my $limiter_str = "";
3700 $limiter_str = ",max-bytes=$max_bytes,period=$period";
3703 my $rng_addr = print_pci_addr
("rng0", $bridges, $arch, $machine_type);
3704 push @$devices, '-object', "rng-random,filename=$rng->{source},id=rng0";
3705 push @$devices, '-device', "virtio-rng-pci,rng=rng0$limiter_str$rng_addr";
3713 for (my $i = 1; $i < $qxlnum; $i++){
3714 push @$devices, '-device', print_vga_device
(
3715 $conf, $vga, $arch, $machine_version, $machine_type, $i, $qxlnum, $bridges);
3718 # assume other OS works like Linux
3719 my ($ram, $vram) = ("134217728", "67108864");
3720 if ($vga->{memory
}) {
3721 $ram = PVE
::Tools
::convert_size
($qxlnum*4*$vga->{memory
}, 'mb' => 'b');
3722 $vram = PVE
::Tools
::convert_size
($qxlnum*2*$vga->{memory
}, 'mb' => 'b');
3724 push @$cmd, '-global', "qxl-vga.ram_size=$ram";
3725 push @$cmd, '-global', "qxl-vga.vram_size=$vram";
3729 my $pciaddr = print_pci_addr
("spice", $bridges, $arch, $machine_type);
3731 my $pfamily = PVE
::Tools
::get_host_address_family
($nodename);
3732 my @nodeaddrs = PVE
::Tools
::getaddrinfo_all
('localhost', family
=> $pfamily);
3733 die "failed to get an ip address of type $pfamily for 'localhost'\n" if !@nodeaddrs;
3735 push @$devices, '-device', "virtio-serial,id=spice$pciaddr";
3736 push @$devices, '-chardev', "spicevmc,id=vdagent,name=vdagent";
3737 push @$devices, '-device', "virtserialport,chardev=vdagent,name=com.redhat.spice.0";
3739 my $localhost = PVE
::Network
::addr_to_ip
($nodeaddrs[0]->{addr
});
3740 $spice_port = PVE
::Tools
::next_spice_port
($pfamily, $localhost);
3742 my $spice_enhancement_str = $conf->{spice_enhancements
} // '';
3743 my $spice_enhancement = parse_property_string
($spice_enhancements_fmt, $spice_enhancement_str);
3744 if ($spice_enhancement->{foldersharing
}) {
3745 push @$devices, '-chardev', "spiceport,id=foldershare,name=org.spice-space.webdav.0";
3746 push @$devices, '-device', "virtserialport,chardev=foldershare,name=org.spice-space.webdav.0";
3749 my $spice_opts = "tls-port=${spice_port},addr=$localhost,tls-ciphers=HIGH,seamless-migration=on";
3750 $spice_opts .= ",streaming-video=$spice_enhancement->{videostreaming}"
3751 if $spice_enhancement->{videostreaming
};
3753 push @$devices, '-spice', "$spice_opts";
3756 # enable balloon by default, unless explicitly disabled
3757 if (!defined($conf->{balloon
}) || $conf->{balloon
}) {
3758 my $pciaddr = print_pci_addr
("balloon0", $bridges, $arch, $machine_type);
3759 push @$devices, '-device', "virtio-balloon-pci,id=balloon0$pciaddr";
3762 if ($conf->{watchdog
}) {
3763 my $wdopts = parse_watchdog
($conf->{watchdog
});
3764 my $pciaddr = print_pci_addr
("watchdog", $bridges, $arch, $machine_type);
3765 my $watchdog = $wdopts->{model
} || 'i6300esb';
3766 push @$devices, '-device', "$watchdog$pciaddr";
3767 push @$devices, '-watchdog-action', $wdopts->{action
} if $wdopts->{action
};
3771 my $scsicontroller = {};
3772 my $ahcicontroller = {};
3773 my $scsihw = defined($conf->{scsihw
}) ?
$conf->{scsihw
} : $defaults->{scsihw
};
3775 # Add iscsi initiator name if available
3776 if (my $initiator = get_initiator_name
()) {
3777 push @$devices, '-iscsi', "initiator-name=$initiator";
3780 PVE
::QemuConfig-
>foreach_volume($conf, sub {
3781 my ($ds, $drive) = @_;
3783 if (PVE
::Storage
::parse_volume_id
($drive->{file
}, 1)) {
3784 check_volume_storage_type
($storecfg, $drive->{file
});
3785 push @$vollist, $drive->{file
};
3788 # ignore efidisk here, already added in bios/fw handling code above
3789 return if $drive->{interface
} eq 'efidisk';
3791 return if $drive->{interface
} eq 'tpmstate';
3793 $use_virtio = 1 if $ds =~ m/^virtio/;
3795 $drive->{bootindex
} = $bootorder->{$ds} if $bootorder->{$ds};
3797 if ($drive->{interface
} eq 'virtio'){
3798 push @$cmd, '-object', "iothread,id=iothread-$ds" if $drive->{iothread
};
3801 if ($drive->{interface
} eq 'scsi') {
3803 my ($maxdev, $controller, $controller_prefix) = scsihw_infos
($conf, $drive);
3805 die "scsi$drive->{index}: machine version 4.1~pve2 or higher is required to use more than 14 SCSI disks\n"
3806 if $drive->{index} > 13 && !&$version_guard(4, 1, 2);
3808 my $pciaddr = print_pci_addr
("$controller_prefix$controller", $bridges, $arch, $machine_type);
3809 my $scsihw_type = $scsihw =~ m/^virtio-scsi-single/ ?
"virtio-scsi-pci" : $scsihw;
3812 if($conf->{scsihw
} && $conf->{scsihw
} eq "virtio-scsi-single" && $drive->{iothread
}){
3813 $iothread .= ",iothread=iothread-$controller_prefix$controller";
3814 push @$cmd, '-object', "iothread,id=iothread-$controller_prefix$controller";
3815 } elsif ($drive->{iothread
}) {
3816 warn "iothread is only valid with virtio disk or virtio-scsi-single controller, ignoring\n";
3820 if($conf->{scsihw
} && $conf->{scsihw
} eq "virtio-scsi-single" && $drive->{queues
}){
3821 $queues = ",num_queues=$drive->{queues}";
3824 push @$devices, '-device', "$scsihw_type,id=$controller_prefix$controller$pciaddr$iothread$queues"
3825 if !$scsicontroller->{$controller};
3826 $scsicontroller->{$controller}=1;
3829 if ($drive->{interface
} eq 'sata') {
3830 my $controller = int($drive->{index} / $PVE::QemuServer
::Drive
::MAX_SATA_DISKS
);
3831 my $pciaddr = print_pci_addr
("ahci$controller", $bridges, $arch, $machine_type);
3832 push @$devices, '-device', "ahci,id=ahci$controller,multifunction=on$pciaddr"
3833 if !$ahcicontroller->{$controller};
3834 $ahcicontroller->{$controller}=1;
3837 my $pbs_conf = $pbs_backing->{$ds};
3838 my $pbs_name = undef;
3840 $pbs_name = "drive-$ds-pbs";
3841 push @$devices, '-blockdev', print_pbs_blockdev
($pbs_conf, $pbs_name);
3844 my $drive_cmd = print_drive_commandline_full
(
3845 $storecfg, $vmid, $drive, $pbs_name, min_version
($kvmver, 6, 0));
3847 # extra protection for templates, but SATA and IDE don't support it..
3848 $drive_cmd .= ',readonly=on' if drive_is_read_only
($conf, $drive);
3850 push @$devices, '-drive',$drive_cmd;
3851 push @$devices, '-device', print_drivedevice_full
(
3852 $storecfg, $conf, $vmid, $drive, $bridges, $arch, $machine_type);
3855 for (my $i = 0; $i < $MAX_NETS; $i++) {
3856 my $netname = "net$i";
3858 next if !$conf->{$netname};
3859 my $d = parse_net
($conf->{$netname});
3862 $use_virtio = 1 if $d->{model
} eq 'virtio';
3864 $d->{bootindex
} = $bootorder->{$netname} if $bootorder->{$netname};
3866 my $netdevfull = print_netdev_full
($vmid, $conf, $arch, $d, $netname);
3867 push @$devices, '-netdev', $netdevfull;
3869 my $netdevicefull = print_netdevice_full
(
3870 $vmid, $conf, $d, $netname, $bridges, $use_old_bios_files, $arch, $machine_type);
3872 push @$devices, '-device', $netdevicefull;
3875 if ($conf->{ivshmem
}) {
3876 my $ivshmem = parse_property_string
($ivshmem_fmt, $conf->{ivshmem
});
3880 $bus = print_pcie_addr
("ivshmem");
3882 $bus = print_pci_addr
("ivshmem", $bridges, $arch, $machine_type);
3885 my $ivshmem_name = $ivshmem->{name
} // $vmid;
3886 my $path = '/dev/shm/pve-shm-' . $ivshmem_name;
3888 push @$devices, '-device', "ivshmem-plain,memdev=ivshmem$bus,";
3889 push @$devices, '-object', "memory-backend-file,id=ivshmem,share=on,mem-path=$path"
3890 .",size=$ivshmem->{size}M";
3893 # pci.4 is nested in pci.1
3894 $bridges->{1} = 1 if $bridges->{4};
3896 if (!$q35) { # add pci bridges
3897 if (min_version
($machine_version, 2, 3)) {
3901 $bridges->{3} = 1 if $scsihw =~ m/^virtio-scsi-single/;
3904 for my $k (sort {$b cmp $a} keys %$bridges) {
3905 next if $q35 && $k < 4; # q35.cfg already includes bridges up to 3
3908 if ($k == 2 && $legacy_igd) {
3911 my $pciaddr = print_pci_addr
("pci.$k_name", undef, $arch, $machine_type);
3912 my $devstr = "pci-bridge,id=pci.$k,chassis_nr=$k$pciaddr";
3914 if ($q35) { # add after -readconfig pve-q35.cfg
3915 splice @$devices, 2, 0, '-device', $devstr;
3917 unshift @$devices, '-device', $devstr if $k > 0;
3922 push @$machineFlags, 'accel=tcg';
3925 my $machine_type_min = $machine_type;
3926 if ($add_pve_version) {
3927 $machine_type_min =~ s/\+pve\d+$//;
3928 $machine_type_min .= "+pve$required_pve_version";
3930 push @$machineFlags, "type=${machine_type_min}";
3932 push @$cmd, @$devices;
3933 push @$cmd, '-rtc', join(',', @$rtcFlags) if scalar(@$rtcFlags);
3934 push @$cmd, '-machine', join(',', @$machineFlags) if scalar(@$machineFlags);
3935 push @$cmd, '-global', join(',', @$globalFlags) if scalar(@$globalFlags);
3937 if (my $vmstate = $conf->{vmstate
}) {
3938 my $statepath = PVE
::Storage
::path
($storecfg, $vmstate);
3939 push @$vollist, $vmstate;
3940 push @$cmd, '-loadstate', $statepath;
3941 print "activating and using '$vmstate' as vmstate\n";
3944 if (PVE
::QemuConfig-
>is_template($conf)) {
3945 # needed to workaround base volumes being read-only
3946 push @$cmd, '-snapshot';
3950 if ($conf->{args
}) {
3951 my $aa = PVE
::Tools
::split_args
($conf->{args
});
3955 return wantarray ?
($cmd, $vollist, $spice_port) : $cmd;
3958 sub check_rng_source
{
3961 # mostly relevant for /dev/hwrng, but doesn't hurt to check others too
3962 die "cannot create VirtIO RNG device: source file '$source' doesn't exist\n"
3965 my $rng_current = '/sys/devices/virtual/misc/hw_random/rng_current';
3966 if ($source eq '/dev/hwrng' && file_read_firstline
($rng_current) eq 'none') {
3967 # Needs to abort, otherwise QEMU crashes on first rng access. Note that rng_current cannot
3968 # be changed to 'none' manually, so once the VM is past this point, it's no longer an issue.
3969 die "Cannot start VM with passed-through RNG device: '/dev/hwrng' exists, but"
3970 ." '$rng_current' is set to 'none'. Ensure that a compatible hardware-RNG is attached"
3978 my $res = mon_cmd
($vmid, 'query-spice');
3980 return $res->{'tls-port'} || $res->{'port'} || die "no spice port\n";
3983 sub vm_devices_list
{
3986 my $res = mon_cmd
($vmid, 'query-pci');
3987 my $devices_to_check = [];
3989 foreach my $pcibus (@$res) {
3990 push @$devices_to_check, @{$pcibus->{devices
}},
3993 while (@$devices_to_check) {
3995 for my $d (@$devices_to_check) {
3996 $devices->{$d->{'qdev_id'}} = 1 if $d->{'qdev_id'};
3997 next if !$d->{'pci_bridge'};
3999 $devices->{$d->{'qdev_id'}} += scalar(@{$d->{'pci_bridge'}->{devices
}});
4000 push @$to_check, @{$d->{'pci_bridge'}->{devices
}};
4002 $devices_to_check = $to_check;
4005 my $resblock = mon_cmd
($vmid, 'query-block');
4006 foreach my $block (@$resblock) {
4007 if($block->{device
} =~ m/^drive-(\S+)/){
4012 my $resmice = mon_cmd
($vmid, 'query-mice');
4013 foreach my $mice (@$resmice) {
4014 if ($mice->{name
} eq 'QEMU HID Tablet') {
4015 $devices->{tablet
} = 1;
4020 # for usb devices there is no query-usb
4021 # but we can iterate over the entries in
4022 # qom-list path=/machine/peripheral
4023 my $resperipheral = mon_cmd
($vmid, 'qom-list', path
=> '/machine/peripheral');
4024 foreach my $per (@$resperipheral) {
4025 if ($per->{name
} =~ m/^usb\d+$/) {
4026 $devices->{$per->{name
}} = 1;
4034 my ($storecfg, $conf, $vmid, $deviceid, $device, $arch, $machine_type) = @_;
4036 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
4038 my $devices_list = vm_devices_list
($vmid);
4039 return 1 if defined($devices_list->{$deviceid});
4041 # add PCI bridge if we need it for the device
4042 qemu_add_pci_bridge
($storecfg, $conf, $vmid, $deviceid, $arch, $machine_type);
4044 if ($deviceid eq 'tablet') {
4045 qemu_deviceadd
($vmid, print_tabletdevice_full
($conf, $arch));
4046 } elsif ($deviceid eq 'keyboard') {
4047 qemu_deviceadd
($vmid, print_keyboarddevice_full
($conf, $arch));
4048 } elsif ($deviceid =~ m/^usb(\d+)$/) {
4049 die "usb hotplug currently not reliable\n";
4050 # since we can't reliably hot unplug all added usb devices and usb
4051 # passthrough breaks live migration we disable usb hotplugging for now
4052 #qemu_deviceadd($vmid, PVE::QemuServer::USB::print_usbdevice_full($conf, $deviceid, $device));
4053 } elsif ($deviceid =~ m/^(virtio)(\d+)$/) {
4054 qemu_iothread_add
($vmid, $deviceid, $device);
4056 qemu_driveadd
($storecfg, $vmid, $device);
4057 my $devicefull = print_drivedevice_full
($storecfg, $conf, $vmid, $device, undef, $arch, $machine_type);
4059 qemu_deviceadd
($vmid, $devicefull);
4060 eval { qemu_deviceaddverify
($vmid, $deviceid); };
4062 eval { qemu_drivedel
($vmid, $deviceid); };
4066 } elsif ($deviceid =~ m/^(virtioscsi|scsihw)(\d+)$/) {
4067 my $scsihw = defined($conf->{scsihw
}) ?
$conf->{scsihw
} : "lsi";
4068 my $pciaddr = print_pci_addr
($deviceid, undef, $arch, $machine_type);
4069 my $scsihw_type = $scsihw eq 'virtio-scsi-single' ?
"virtio-scsi-pci" : $scsihw;
4071 my $devicefull = "$scsihw_type,id=$deviceid$pciaddr";
4073 if($deviceid =~ m/^virtioscsi(\d+)$/ && $device->{iothread
}) {
4074 qemu_iothread_add
($vmid, $deviceid, $device);
4075 $devicefull .= ",iothread=iothread-$deviceid";
4078 if($deviceid =~ m/^virtioscsi(\d+)$/ && $device->{queues
}) {
4079 $devicefull .= ",num_queues=$device->{queues}";
4082 qemu_deviceadd
($vmid, $devicefull);
4083 qemu_deviceaddverify
($vmid, $deviceid);
4084 } elsif ($deviceid =~ m/^(scsi)(\d+)$/) {
4085 qemu_findorcreatescsihw
($storecfg,$conf, $vmid, $device, $arch, $machine_type);
4086 qemu_driveadd
($storecfg, $vmid, $device);
4088 my $devicefull = print_drivedevice_full
($storecfg, $conf, $vmid, $device, undef, $arch, $machine_type);
4089 eval { qemu_deviceadd
($vmid, $devicefull); };
4091 eval { qemu_drivedel
($vmid, $deviceid); };
4095 } elsif ($deviceid =~ m/^(net)(\d+)$/) {
4096 return if !qemu_netdevadd
($vmid, $conf, $arch, $device, $deviceid);
4098 my $machine_type = PVE
::QemuServer
::Machine
::qemu_machine_pxe
($vmid, $conf);
4099 my $use_old_bios_files = undef;
4100 ($use_old_bios_files, $machine_type) = qemu_use_old_bios_files
($machine_type);
4102 my $netdevicefull = print_netdevice_full
(
4103 $vmid, $conf, $device, $deviceid, undef, $use_old_bios_files, $arch, $machine_type);
4104 qemu_deviceadd
($vmid, $netdevicefull);
4106 qemu_deviceaddverify
($vmid, $deviceid);
4107 qemu_set_link_status
($vmid, $deviceid, !$device->{link_down
});
4110 eval { qemu_netdevdel
($vmid, $deviceid); };
4114 } elsif (!$q35 && $deviceid =~ m/^(pci\.)(\d+)$/) {
4116 my $pciaddr = print_pci_addr
($deviceid, undef, $arch, $machine_type);
4117 my $devicefull = "pci-bridge,id=pci.$bridgeid,chassis_nr=$bridgeid$pciaddr";
4119 qemu_deviceadd
($vmid, $devicefull);
4120 qemu_deviceaddverify
($vmid, $deviceid);
4122 die "can't hotplug device '$deviceid'\n";
4128 # fixme: this should raise exceptions on error!
4129 sub vm_deviceunplug
{
4130 my ($vmid, $conf, $deviceid) = @_;
4132 my $devices_list = vm_devices_list
($vmid);
4133 return 1 if !defined($devices_list->{$deviceid});
4135 my $bootdisks = PVE
::QemuServer
::Drive
::get_bootdisks
($conf);
4136 die "can't unplug bootdisk '$deviceid'\n" if grep {$_ eq $deviceid} @$bootdisks;
4138 if ($deviceid eq 'tablet' || $deviceid eq 'keyboard') {
4139 qemu_devicedel
($vmid, $deviceid);
4140 } elsif ($deviceid =~ m/^usb\d+$/) {
4141 die "usb hotplug currently not reliable\n";
4142 # when unplugging usb devices this way, there may be remaining usb
4143 # controllers/hubs so we disable it for now
4144 #qemu_devicedel($vmid, $deviceid);
4145 #qemu_devicedelverify($vmid, $deviceid);
4146 } elsif ($deviceid =~ m/^(virtio)(\d+)$/) {
4147 my $device = parse_drive
($deviceid, $conf->{$deviceid});
4149 qemu_devicedel
($vmid, $deviceid);
4150 qemu_devicedelverify
($vmid, $deviceid);
4151 qemu_drivedel
($vmid, $deviceid);
4152 qemu_iothread_del
($vmid, $deviceid, $device);
4153 } elsif ($deviceid =~ m/^(virtioscsi|scsihw)(\d+)$/) {
4154 qemu_devicedel
($vmid, $deviceid);
4155 qemu_devicedelverify
($vmid, $deviceid);
4156 } elsif ($deviceid =~ m/^(scsi)(\d+)$/) {
4157 my $device = parse_drive
($deviceid, $conf->{$deviceid});
4159 qemu_devicedel
($vmid, $deviceid);
4160 qemu_drivedel
($vmid, $deviceid);
4161 qemu_deletescsihw
($conf, $vmid, $deviceid);
4163 qemu_iothread_del
($vmid, "virtioscsi$device->{index}", $device)
4164 if $conf->{scsihw
} && ($conf->{scsihw
} eq 'virtio-scsi-single');
4165 } elsif ($deviceid =~ m/^(net)(\d+)$/) {
4166 qemu_devicedel
($vmid, $deviceid);
4167 qemu_devicedelverify
($vmid, $deviceid);
4168 qemu_netdevdel
($vmid, $deviceid);
4170 die "can't unplug device '$deviceid'\n";
4176 sub qemu_deviceadd
{
4177 my ($vmid, $devicefull) = @_;
4179 $devicefull = "driver=".$devicefull;
4180 my %options = split(/[=,]/, $devicefull);
4182 mon_cmd
($vmid, "device_add" , %options);
4185 sub qemu_devicedel
{
4186 my ($vmid, $deviceid) = @_;
4188 my $ret = mon_cmd
($vmid, "device_del", id
=> $deviceid);
4191 sub qemu_iothread_add
{
4192 my ($vmid, $deviceid, $device) = @_;
4194 if ($device->{iothread
}) {
4195 my $iothreads = vm_iothreads_list
($vmid);
4196 qemu_objectadd
($vmid, "iothread-$deviceid", "iothread") if !$iothreads->{"iothread-$deviceid"};
4200 sub qemu_iothread_del
{
4201 my ($vmid, $deviceid, $device) = @_;
4203 if ($device->{iothread
}) {
4204 my $iothreads = vm_iothreads_list
($vmid);
4205 qemu_objectdel
($vmid, "iothread-$deviceid") if $iothreads->{"iothread-$deviceid"};
4209 sub qemu_objectadd
{
4210 my ($vmid, $objectid, $qomtype) = @_;
4212 mon_cmd
($vmid, "object-add", id
=> $objectid, "qom-type" => $qomtype);
4217 sub qemu_objectdel
{
4218 my ($vmid, $objectid) = @_;
4220 mon_cmd
($vmid, "object-del", id
=> $objectid);
4226 my ($storecfg, $vmid, $device) = @_;
4228 my $kvmver = get_running_qemu_version
($vmid);
4229 my $io_uring = min_version
($kvmver, 6, 0);
4230 my $drive = print_drive_commandline_full
($storecfg, $vmid, $device, undef, $io_uring);
4231 $drive =~ s/\\/\\\\/g;
4232 my $ret = PVE
::QemuServer
::Monitor
::hmp_cmd
($vmid, "drive_add auto \"$drive\"");
4234 # If the command succeeds qemu prints: "OK
"
4235 return 1 if $ret =~ m/OK/s;
4237 die "adding drive failed
: $ret\n";
4241 my ($vmid, $deviceid) = @_;
4243 my $ret = PVE::QemuServer::Monitor::hmp_cmd($vmid, "drive_del drive-
$deviceid");
4246 return 1 if $ret eq "";
4248 # NB: device not found errors mean the drive was auto-deleted and we ignore the error
4249 return 1 if $ret =~ m/Device \'.*?\' not found/s;
4251 die "deleting drive
$deviceid failed
: $ret\n";
4254 sub qemu_deviceaddverify {
4255 my ($vmid, $deviceid) = @_;
4257 for (my $i = 0; $i <= 5; $i++) {
4258 my $devices_list = vm_devices_list($vmid);
4259 return 1 if defined($devices_list->{$deviceid});
4263 die "error on hotplug device
'$deviceid'\n";
4267 sub qemu_devicedelverify {
4268 my ($vmid, $deviceid) = @_;
4270 # need to verify that the device is correctly removed as device_del
4271 # is async and empty return is not reliable
4273 for (my $i = 0; $i <= 5; $i++) {
4274 my $devices_list = vm_devices_list($vmid);
4275 return 1 if !defined($devices_list->{$deviceid});
4279 die "error on hot-unplugging device
'$deviceid'\n";
4282 sub qemu_findorcreatescsihw {
4283 my ($storecfg, $conf, $vmid, $device, $arch, $machine_type) = @_;
4285 my ($maxdev, $controller, $controller_prefix) = scsihw_infos($conf, $device);
4287 my $scsihwid="$controller_prefix$controller";
4288 my $devices_list = vm_devices_list($vmid);
4290 if (!defined($devices_list->{$scsihwid})) {
4291 vm_deviceplug($storecfg, $conf, $vmid, $scsihwid, $device, $arch, $machine_type);
4297 sub qemu_deletescsihw {
4298 my ($conf, $vmid, $opt) = @_;
4300 my $device = parse_drive($opt, $conf->{$opt});
4302 if ($conf->{scsihw} && ($conf->{scsihw} eq 'virtio-scsi-single')) {
4303 vm_deviceunplug($vmid, $conf, "virtioscsi
$device->{index}");
4307 my ($maxdev, $controller, $controller_prefix) = scsihw_infos($conf, $device);
4309 my $devices_list = vm_devices_list($vmid);
4310 foreach my $opt (keys %{$devices_list}) {
4311 if (is_valid_drivename($opt)) {
4312 my $drive = parse_drive($opt, $conf->{$opt});
4313 if ($drive->{interface} eq 'scsi' && $drive->{index} < (($maxdev-1)*($controller+1))) {
4319 my $scsihwid="scsihw
$controller";
4321 vm_deviceunplug($vmid, $conf, $scsihwid);
4326 sub qemu_add_pci_bridge {
4327 my ($storecfg, $conf, $vmid, $device, $arch, $machine_type) = @_;
4333 print_pci_addr($device, $bridges, $arch, $machine_type);
4335 while (my ($k, $v) = each %$bridges) {
4338 return 1 if !defined($bridgeid) || $bridgeid < 1;
4340 my $bridge = "pci
.$bridgeid";
4341 my $devices_list = vm_devices_list($vmid);
4343 if (!defined($devices_list->{$bridge})) {
4344 vm_deviceplug($storecfg, $conf, $vmid, $bridge, $arch, $machine_type);
4350 sub qemu_set_link_status {
4351 my ($vmid, $device, $up) = @_;
4353 mon_cmd($vmid, "set_link
", name => $device,
4354 up => $up ? JSON::true : JSON::false);
4357 sub qemu_netdevadd {
4358 my ($vmid, $conf, $arch, $device, $deviceid) = @_;
4360 my $netdev = print_netdev_full($vmid, $conf, $arch, $device, $deviceid, 1);
4361 my %options = split(/[=,]/, $netdev);
4363 if (defined(my $vhost = $options{vhost})) {
4364 $options{vhost} = JSON::boolean(PVE::JSONSchema::parse_boolean($vhost));
4367 if (defined(my $queues = $options{queues})) {
4368 $options{queues} = $queues + 0;
4371 mon_cmd($vmid, "netdev_add
", %options);
4375 sub qemu_netdevdel {
4376 my ($vmid, $deviceid) = @_;
4378 mon_cmd($vmid, "netdev_del
", id => $deviceid);
4381 sub qemu_usb_hotplug {
4382 my ($storecfg, $conf, $vmid, $deviceid, $device, $arch, $machine_type) = @_;
4386 # remove the old one first
4387 vm_deviceunplug($vmid, $conf, $deviceid);
4389 # check if xhci controller is necessary and available
4390 if ($device->{usb3}) {
4392 my $devicelist = vm_devices_list($vmid);
4394 if (!$devicelist->{xhci}) {
4395 my $pciaddr = print_pci_addr("xhci
", undef, $arch, $machine_type);
4396 qemu_deviceadd($vmid, "nec-usb-xhci
,id
=xhci
$pciaddr");
4399 my $d = parse_usb_device($device->{host});
4400 $d->{usb3} = $device->{usb3};
4403 vm_deviceplug($storecfg, $conf, $vmid, $deviceid, $d, $arch, $machine_type);
4406 sub qemu_cpu_hotplug {
4407 my ($vmid, $conf, $vcpus) = @_;
4409 my $machine_type = PVE::QemuServer::Machine::get_current_qemu_machine($vmid);
4412 $sockets = $conf->{smp} if $conf->{smp}; # old style - no longer iused
4413 $sockets = $conf->{sockets} if $conf->{sockets};
4414 my $cores = $conf->{cores} || 1;
4415 my $maxcpus = $sockets * $cores;
4417 $vcpus = $maxcpus if !$vcpus;
4419 die "you can
't add more vcpus than maxcpus\n"
4420 if $vcpus > $maxcpus;
4422 my $currentvcpus = $conf->{vcpus} || $maxcpus;
4424 if ($vcpus < $currentvcpus) {
4426 if (PVE::QemuServer::Machine::machine_version($machine_type, 2, 7)) {
4428 for (my $i = $currentvcpus; $i > $vcpus; $i--) {
4429 qemu_devicedel($vmid, "cpu$i");
4431 my $currentrunningvcpus = undef;
4433 $currentrunningvcpus = mon_cmd($vmid, "query-cpus-fast");
4434 last if scalar(@{$currentrunningvcpus}) == $i-1;
4435 raise_param_exc({ vcpus => "error unplugging cpu$i" }) if $retry > 5;
4439 #update conf after each succesfull cpu unplug
4440 $conf->{vcpus} = scalar(@{$currentrunningvcpus});
4441 PVE::QemuConfig->write_config($vmid, $conf);
4444 die "cpu hot-unplugging requires qemu version 2.7 or higher\n";
4450 my $currentrunningvcpus = mon_cmd($vmid, "query-cpus-fast");
4451 die "vcpus in running vm does not match its configuration\n"
4452 if scalar(@{$currentrunningvcpus}) != $currentvcpus;
4454 if (PVE::QemuServer::Machine::machine_version($machine_type, 2, 7)) {
4456 for (my $i = $currentvcpus+1; $i <= $vcpus; $i++) {
4457 my $cpustr = print_cpu_device($conf, $i);
4458 qemu_deviceadd($vmid, $cpustr);
4461 my $currentrunningvcpus = undef;
4463 $currentrunningvcpus = mon_cmd($vmid, "query-cpus-fast");
4464 last if scalar(@{$currentrunningvcpus}) == $i;
4465 raise_param_exc({ vcpus => "error hotplugging cpu$i" }) if $retry > 10;
4469 #update conf after each succesfull cpu hotplug
4470 $conf->{vcpus} = scalar(@{$currentrunningvcpus});
4471 PVE::QemuConfig->write_config($vmid, $conf);
4475 for (my $i = $currentvcpus; $i < $vcpus; $i++) {
4476 mon_cmd($vmid, "cpu-add", id => int($i));
4481 sub qemu_block_set_io_throttle {
4482 my ($vmid, $deviceid,
4483 $bps, $bps_rd, $bps_wr, $iops, $iops_rd, $iops_wr,
4484 $bps_max, $bps_rd_max, $bps_wr_max, $iops_max, $iops_rd_max, $iops_wr_max,
4485 $bps_max_length, $bps_rd_max_length, $bps_wr_max_length,
4486 $iops_max_length, $iops_rd_max_length, $iops_wr_max_length) = @_;
4488 return if !check_running($vmid) ;
4490 mon_cmd($vmid, "block_set_io_throttle", device => $deviceid,
4492 bps_rd => int($bps_rd),
4493 bps_wr => int($bps_wr),
4495 iops_rd => int($iops_rd),
4496 iops_wr => int($iops_wr),
4497 bps_max => int($bps_max),
4498 bps_rd_max => int($bps_rd_max),
4499 bps_wr_max => int($bps_wr_max),
4500 iops_max => int($iops_max),
4501 iops_rd_max => int($iops_rd_max),
4502 iops_wr_max => int($iops_wr_max),
4503 bps_max_length => int($bps_max_length),
4504 bps_rd_max_length => int($bps_rd_max_length),
4505 bps_wr_max_length => int($bps_wr_max_length),
4506 iops_max_length => int($iops_max_length),
4507 iops_rd_max_length => int($iops_rd_max_length),
4508 iops_wr_max_length => int($iops_wr_max_length),
4513 sub qemu_block_resize {
4514 my ($vmid, $deviceid, $storecfg, $volid, $size) = @_;
4516 my $running = check_running($vmid);
4518 $size = 0 if !PVE::Storage::volume_resize($storecfg, $volid, $size, $running);
4520 return if !$running;
4522 my $padding = (1024 - $size % 1024) % 1024;
4523 $size = $size + $padding;
4528 device => $deviceid,
4534 sub qemu_volume_snapshot {
4535 my ($vmid, $deviceid, $storecfg, $volid, $snap) = @_;
4537 my $running = check_running($vmid);
4539 if ($running && do_snapshots_with_qemu($storecfg, $volid, $deviceid)) {
4540 mon_cmd($vmid, 'blockdev-snapshot-internal-sync
', device => $deviceid, name => $snap);
4542 PVE::Storage::volume_snapshot($storecfg, $volid, $snap);
4546 sub qemu_volume_snapshot_delete {
4547 my ($vmid, $deviceid, $storecfg, $volid, $snap) = @_;
4549 my $running = check_running($vmid);
4554 my $conf = PVE::QemuConfig->load_config($vmid);
4555 PVE::QemuConfig->foreach_volume($conf, sub {
4556 my ($ds, $drive) = @_;
4557 $running = 1 if $drive->{file} eq $volid;
4561 if ($running && do_snapshots_with_qemu($storecfg, $volid, $deviceid)) {
4562 mon_cmd($vmid, 'blockdev-snapshot-delete-internal-sync
', device => $deviceid, name => $snap);
4564 PVE::Storage::volume_snapshot_delete($storecfg, $volid, $snap, $running);
4568 sub set_migration_caps {
4569 my ($vmid, $savevm) = @_;
4571 my $qemu_support = eval { mon_cmd($vmid, "query-proxmox-support") };
4573 my $bitmap_prop = $savevm ? 'pbs-dirty-bitmap-savevm
' : 'pbs-dirty-bitmap-migration
';
4574 my $dirty_bitmaps = $qemu_support->{$bitmap_prop} ? 1 : 0;
4579 "auto-converge" => 1,
4581 "x-rdma-pin-all" => 0,
4584 "dirty-bitmaps" => $dirty_bitmaps,
4587 my $supported_capabilities = mon_cmd($vmid, "query-migrate-capabilities");
4589 for my $supported_capability (@$supported_capabilities) {
4591 capability => $supported_capability->{capability},
4592 state => $enabled_cap->{$supported_capability->{capability}} ? JSON::true : JSON::false,
4596 mon_cmd($vmid, "migrate-set-capabilities", capabilities => $cap_ref);
4600 my ($conf, $func, @param) = @_;
4604 my $test_volid = sub {
4605 my ($key, $drive, $snapname) = @_;
4607 my $volid = $drive->{file};
4610 $volhash->{$volid}->{cdrom} //= 1;
4611 $volhash->{$volid}->{cdrom} = 0 if !drive_is_cdrom($drive);
4613 my $replicate = $drive->{replicate} // 1;
4614 $volhash->{$volid}->{replicate} //= 0;
4615 $volhash->{$volid}->{replicate} = 1 if $replicate;
4617 $volhash->{$volid}->{shared} //= 0;
4618 $volhash->{$volid}->{shared} = 1 if $drive->{shared};
4620 $volhash->{$volid}->{referenced_in_config} //= 0;
4621 $volhash->{$volid}->{referenced_in_config} = 1 if !defined($snapname);
4623 $volhash->{$volid}->{referenced_in_snapshot}->{$snapname} = 1
4624 if defined($snapname);
4626 my $size = $drive->{size};
4627 $volhash->{$volid}->{size} //= $size if $size;
4629 $volhash->{$volid}->{is_vmstate} //= 0;
4630 $volhash->{$volid}->{is_vmstate} = 1 if $key eq 'vmstate
';
4632 $volhash->{$volid}->{is_tpmstate} //= 0;
4633 $volhash->{$volid}->{is_tpmstate} = 1 if $key eq 'tpmstate0
';
4635 $volhash->{$volid}->{is_unused} //= 0;
4636 $volhash->{$volid}->{is_unused} = 1 if $key =~ /^unused\d+$/;
4638 $volhash->{$volid}->{drivename} = $key if is_valid_drivename($key);
4641 my $include_opts = {
4642 extra_keys => ['vmstate
'],
4643 include_unused => 1,
4646 PVE::QemuConfig->foreach_volume_full($conf, $include_opts, $test_volid);
4647 foreach my $snapname (keys %{$conf->{snapshots}}) {
4648 my $snap = $conf->{snapshots}->{$snapname};
4649 PVE::QemuConfig->foreach_volume_full($snap, $include_opts, $test_volid, $snapname);
4652 foreach my $volid (keys %$volhash) {
4653 &$func($volid, $volhash->{$volid}, @param);
4657 my $fast_plug_option = {
4665 'vmstatestorage
' => 1,
4670 # hotplug changes in [PENDING]
4671 # $selection hash can be used to only apply specified options, for
4672 # example: { cores => 1 } (only apply changed 'cores
')
4673 # $errors ref is used to return error messages
4674 sub vmconfig_hotplug_pending {
4675 my ($vmid, $conf, $storecfg, $selection, $errors) = @_;
4677 my $defaults = load_defaults();
4678 my $arch = get_vm_arch($conf);
4679 my $machine_type = get_vm_machine($conf, undef, $arch);
4681 # commit values which do not have any impact on running VM first
4682 # Note: those option cannot raise errors, we we do not care about
4683 # $selection and always apply them.
4685 my $add_error = sub {
4686 my ($opt, $msg) = @_;
4687 $errors->{$opt} = "hotplug problem - $msg";
4691 foreach my $opt (keys %{$conf->{pending}}) { # add/change
4692 if ($fast_plug_option->{$opt}) {
4693 $conf->{$opt} = $conf->{pending}->{$opt};
4694 delete $conf->{pending}->{$opt};
4700 PVE::QemuConfig->write_config($vmid, $conf);
4703 my $hotplug_features = parse_hotplug_features(defined($conf->{hotplug}) ? $conf->{hotplug} : '1');
4705 my $cgroup = PVE::QemuServer::CGroup->new($vmid);
4706 my $pending_delete_hash = PVE::QemuConfig->parse_pending_delete($conf->{pending}->{delete});
4707 foreach my $opt (sort keys %$pending_delete_hash) {
4708 next if $selection && !$selection->{$opt};
4709 my $force = $pending_delete_hash->{$opt}->{force};
4711 if ($opt eq 'hotplug
') {
4712 die "skip\n" if ($conf->{hotplug} =~ /memory/);
4713 } elsif ($opt eq 'tablet
') {
4714 die "skip\n" if !$hotplug_features->{usb};
4715 if ($defaults->{tablet}) {
4716 vm_deviceplug($storecfg, $conf, $vmid, 'tablet
', $arch, $machine_type);
4717 vm_deviceplug($storecfg, $conf, $vmid, 'keyboard
', $arch, $machine_type)
4718 if $arch eq 'aarch64
';
4720 vm_deviceunplug($vmid, $conf, 'tablet
');
4721 vm_deviceunplug($vmid, $conf, 'keyboard
') if $arch eq 'aarch64
';
4723 } elsif ($opt =~ m/^usb\d+/) {
4725 # since we cannot reliably hot unplug usb devices we are disabling it
4726 #die "skip\n" if !$hotplug_features->{usb} || $conf->{$opt} =~ m/spice/i;
4727 #vm_deviceunplug($vmid, $conf, $opt);
4728 } elsif ($opt eq 'vcpus
') {
4729 die "skip\n" if !$hotplug_features->{cpu};
4730 qemu_cpu_hotplug($vmid, $conf, undef);
4731 } elsif ($opt eq 'balloon
') {
4732 # enable balloon device is not hotpluggable
4733 die "skip\n" if defined($conf->{balloon}) && $conf->{balloon} == 0;
4734 # here we reset the ballooning value to memory
4735 my $balloon = $conf->{memory} || $defaults->{memory};
4736 mon_cmd($vmid, "balloon", value => $balloon*1024*1024);
4737 } elsif ($fast_plug_option->{$opt}) {
4739 } elsif ($opt =~ m/^net(\d+)$/) {
4740 die "skip\n" if !$hotplug_features->{network};
4741 vm_deviceunplug($vmid, $conf, $opt);
4742 } elsif (is_valid_drivename($opt)) {
4743 die "skip\n" if !$hotplug_features->{disk} || $opt =~ m/(ide|sata)(\d+)/;
4744 vm_deviceunplug($vmid, $conf, $opt);
4745 vmconfig_delete_or_detach_drive($vmid, $storecfg, $conf, $opt, $force);
4746 } elsif ($opt =~ m/^memory$/) {
4747 die "skip\n" if !$hotplug_features->{memory};
4748 PVE::QemuServer::Memory::qemu_memory_hotplug($vmid, $conf, $defaults, $opt);
4749 } elsif ($opt eq 'cpuunits
') {
4750 $cgroup->change_cpu_shares(undef, 1024);
4751 } elsif ($opt eq 'cpulimit
') {
4752 $cgroup->change_cpu_quota(undef, undef); # reset, cgroup module can better decide values
4758 &$add_error($opt, $err) if $err ne "skip\n";
4760 delete $conf->{$opt};
4761 PVE::QemuConfig->remove_from_pending_delete($conf, $opt);
4765 my ($apply_pending_cloudinit, $apply_pending_cloudinit_done);
4766 $apply_pending_cloudinit = sub {
4767 return if $apply_pending_cloudinit_done; # once is enough
4768 $apply_pending_cloudinit_done = 1; # once is enough
4770 my ($key, $value) = @_;
4772 my @cloudinit_opts = keys %$confdesc_cloudinit;
4773 foreach my $opt (keys %{$conf->{pending}}) {
4774 next if !grep { $_ eq $opt } @cloudinit_opts;
4775 $conf->{$opt} = delete $conf->{pending}->{$opt};
4778 my $pending_delete_hash = PVE::QemuConfig->parse_pending_delete($conf->{pending}->{delete});
4779 foreach my $opt (sort keys %$pending_delete_hash) {
4780 next if !grep { $_ eq $opt } @cloudinit_opts;
4781 PVE::QemuConfig->remove_from_pending_delete($conf, $opt);
4782 delete $conf->{$opt};
4785 my $new_conf = { %$conf };
4786 $new_conf->{$key} = $value;
4787 PVE::QemuServer::Cloudinit::generate_cloudinitconfig($new_conf, $vmid);
4790 foreach my $opt (keys %{$conf->{pending}}) {
4791 next if $selection && !$selection->{$opt};
4792 my $value = $conf->{pending}->{$opt};
4794 if ($opt eq 'hotplug
') {
4795 die "skip\n" if ($value =~ /memory/) || ($value !~ /memory/ && $conf->{hotplug} =~ /memory/);
4796 } elsif ($opt eq 'tablet
') {
4797 die "skip\n" if !$hotplug_features->{usb};
4799 vm_deviceplug($storecfg, $conf, $vmid, 'tablet
', $arch, $machine_type);
4800 vm_deviceplug($storecfg, $conf, $vmid, 'keyboard
', $arch, $machine_type)
4801 if $arch eq 'aarch64
';
4802 } elsif ($value == 0) {
4803 vm_deviceunplug($vmid, $conf, 'tablet
');
4804 vm_deviceunplug($vmid, $conf, 'keyboard
') if $arch eq 'aarch64
';
4806 } elsif ($opt =~ m/^usb\d+$/) {
4808 # since we cannot reliably hot unplug usb devices we disable it for now
4809 #die "skip\n" if !$hotplug_features->{usb} || $value =~ m/spice/i;
4810 #my $d = eval { parse_property_string($usbdesc->{format}, $value) };
4811 #die "skip\n" if !$d;
4812 #qemu_usb_hotplug($storecfg, $conf, $vmid, $opt, $d, $arch, $machine_type);
4813 } elsif ($opt eq 'vcpus
') {
4814 die "skip\n" if !$hotplug_features->{cpu};
4815 qemu_cpu_hotplug($vmid, $conf, $value);
4816 } elsif ($opt eq 'balloon
') {
4817 # enable/disable balloning device is not hotpluggable
4818 my $old_balloon_enabled = !!(!defined($conf->{balloon}) || $conf->{balloon});
4819 my $new_balloon_enabled = !!(!defined($conf->{pending}->{balloon}) || $conf->{pending}->{balloon});
4820 die "skip\n" if $old_balloon_enabled != $new_balloon_enabled;
4822 # allow manual ballooning if shares is set to zero
4823 if ((defined($conf->{shares}) && ($conf->{shares} == 0))) {
4824 my $balloon = $conf->{pending}->{balloon} || $conf->{memory} || $defaults->{memory};
4825 mon_cmd($vmid, "balloon", value => $balloon*1024*1024);
4827 } elsif ($opt =~ m/^net(\d+)$/) {
4828 # some changes can be done without hotplug
4829 vmconfig_update_net($storecfg, $conf, $hotplug_features->{network},
4830 $vmid, $opt, $value, $arch, $machine_type);
4831 } elsif (is_valid_drivename($opt)) {
4832 die "skip\n" if $opt eq 'efidisk0
' || $opt eq 'tpmstate0
';
4833 # some changes can be done without hotplug
4834 my $drive = parse_drive($opt, $value);
4835 if (drive_is_cloudinit($drive)) {
4836 &$apply_pending_cloudinit($opt, $value);
4838 vmconfig_update_disk($storecfg, $conf, $hotplug_features->{disk},
4839 $vmid, $opt, $value, $arch, $machine_type);
4840 } elsif ($opt =~ m/^memory$/) { #dimms
4841 die "skip\n" if !$hotplug_features->{memory};
4842 $value = PVE::QemuServer::Memory::qemu_memory_hotplug($vmid, $conf, $defaults, $opt, $value);
4843 } elsif ($opt eq 'cpuunits
') {
4844 $cgroup->change_cpu_shares($conf->{pending}->{$opt}, 1024);
4845 } elsif ($opt eq 'cpulimit
') {
4846 my $cpulimit = $conf->{pending}->{$opt} == 0 ? -1 : int($conf->{pending}->{$opt} * 100000);
4847 $cgroup->change_cpu_quota($cpulimit, 100000);
4849 die "skip\n"; # skip non-hot-pluggable options
4853 &$add_error($opt, $err) if $err ne "skip\n";
4855 $conf->{$opt} = $value;
4856 delete $conf->{pending}->{$opt};
4860 PVE::QemuConfig->write_config($vmid, $conf);
4863 sub try_deallocate_drive {
4864 my ($storecfg, $vmid, $conf, $key, $drive, $rpcenv, $authuser, $force) = @_;
4866 if (($force || $key =~ /^unused/) && !drive_is_cdrom($drive, 1)) {
4867 my $volid = $drive->{file};
4868 if (vm_is_volid_owner($storecfg, $vmid, $volid)) {
4869 my $sid = PVE::Storage::parse_volume_id($volid);
4870 $rpcenv->check($authuser, "/storage/$sid", ['Datastore
.AllocateSpace
']);
4872 # check if the disk is really unused
4873 die "unable to delete '$volid' - volume is still in use (snapshot?)\n"
4874 if PVE::QemuServer::Drive::is_volume_in_use($storecfg, $conf, $key, $volid);
4875 PVE::Storage::vdisk_free($storecfg, $volid);
4878 # If vm is not owner of this disk remove from config
4886 sub vmconfig_delete_or_detach_drive {
4887 my ($vmid, $storecfg, $conf, $opt, $force) = @_;
4889 my $drive = parse_drive($opt, $conf->{$opt});
4891 my $rpcenv = PVE::RPCEnvironment::get();
4892 my $authuser = $rpcenv->get_user();
4895 $rpcenv->check_vm_perm($authuser, $vmid, undef, ['VM
.Config
.Disk
']);
4896 try_deallocate_drive($storecfg, $vmid, $conf, $opt, $drive, $rpcenv, $authuser, $force);
4898 vmconfig_register_unused_drive($storecfg, $vmid, $conf, $drive);
4904 sub vmconfig_apply_pending {
4905 my ($vmid, $conf, $storecfg, $errors) = @_;
4907 my $add_apply_error = sub {
4908 my ($opt, $msg) = @_;
4909 my $err_msg = "unable to apply pending change $opt : $msg";
4910 $errors->{$opt} = $err_msg;
4916 my $pending_delete_hash = PVE::QemuConfig->parse_pending_delete($conf->{pending}->{delete});
4917 foreach my $opt (sort keys %$pending_delete_hash) {
4918 my $force = $pending_delete_hash->{$opt}->{force};
4920 if ($opt =~ m/^unused/) {
4921 die "internal error";
4922 } elsif (defined($conf->{$opt}) && is_valid_drivename($opt)) {
4923 vmconfig_delete_or_detach_drive($vmid, $storecfg, $conf, $opt, $force);
4927 $add_apply_error->($opt, $err);
4929 PVE::QemuConfig->remove_from_pending_delete($conf, $opt);
4930 delete $conf->{$opt};
4934 PVE::QemuConfig->cleanup_pending($conf);
4936 foreach my $opt (keys %{$conf->{pending}}) { # add/change
4937 next if $opt eq 'delete'; # just to be sure
4939 if (defined($conf->{$opt}) && is_valid_drivename($opt)) {
4940 vmconfig_register_unused_drive($storecfg, $vmid, $conf, parse_drive($opt, $conf->{$opt}))
4944 $add_apply_error->($opt, $err);
4946 $conf->{$opt} = delete $conf->{pending}->{$opt};
4950 # write all changes at once to avoid unnecessary i/o
4951 PVE::QemuConfig->write_config($vmid, $conf);
4954 sub vmconfig_update_net {
4955 my ($storecfg, $conf, $hotplug, $vmid, $opt, $value, $arch, $machine_type) = @_;
4957 my $newnet = parse_net($value);
4959 if ($conf->{$opt}) {
4960 my $oldnet = parse_net($conf->{$opt});
4962 if (safe_string_ne($oldnet->{model}, $newnet->{model}) ||
4963 safe_string_ne($oldnet->{macaddr}, $newnet->{macaddr}) ||
4964 safe_num_ne($oldnet->{queues}, $newnet->{queues}) ||
4965 !($newnet->{bridge} && $oldnet->{bridge})) { # bridge/nat mode change
4967 # for non online change, we try to hot-unplug
4968 die "skip\n" if !$hotplug;
4969 vm_deviceunplug($vmid, $conf, $opt);
4972 die "internal error" if $opt !~ m/net(\d+)/;
4973 my $iface = "tap${vmid}i$1";
4975 if (safe_string_ne($oldnet->{bridge}, $newnet->{bridge}) ||
4976 safe_num_ne($oldnet->{tag}, $newnet->{tag}) ||
4977 safe_string_ne($oldnet->{trunks}, $newnet->{trunks}) ||
4978 safe_num_ne($oldnet->{firewall}, $newnet->{firewall})) {
4979 PVE::Network::tap_unplug($iface);
4982 PVE::Network::SDN::Zones::tap_plug($iface, $newnet->{bridge}, $newnet->{tag}, $newnet->{firewall}, $newnet->{trunks}, $newnet->{rate});
4984 PVE::Network::tap_plug($iface, $newnet->{bridge}, $newnet->{tag}, $newnet->{firewall}, $newnet->{trunks}, $newnet->{rate});
4986 } elsif (safe_num_ne($oldnet->{rate}, $newnet->{rate})) {
4987 # Rate can be applied on its own but any change above needs to
4988 # include the rate in tap_plug since OVS resets everything.
4989 PVE::Network::tap_rate_limit($iface, $newnet->{rate});
4992 if (safe_string_ne($oldnet->{link_down}, $newnet->{link_down})) {
4993 qemu_set_link_status($vmid, $opt, !$newnet->{link_down});
5001 vm_deviceplug($storecfg, $conf, $vmid, $opt, $newnet, $arch, $machine_type);
5007 sub vmconfig_update_disk {
5008 my ($storecfg, $conf, $hotplug, $vmid, $opt, $value, $arch, $machine_type) = @_;
5010 my $drive = parse_drive($opt, $value);
5012 if ($conf->{$opt} && (my $old_drive = parse_drive($opt, $conf->{$opt}))) {
5013 my $media = $drive->{media} || 'disk
';
5014 my $oldmedia = $old_drive->{media} || 'disk
';
5015 die "unable to change media type\n" if $media ne $oldmedia;
5017 if (!drive_is_cdrom($old_drive)) {
5019 if ($drive->{file} ne $old_drive->{file}) {
5021 die "skip\n" if !$hotplug;
5023 # unplug and register as unused
5024 vm_deviceunplug($vmid, $conf, $opt);
5025 vmconfig_register_unused_drive($storecfg, $vmid, $conf, $old_drive)
5028 # update existing disk
5030 # skip non hotpluggable value
5031 if (safe_string_ne($drive->{discard}, $old_drive->{discard}) ||
5032 safe_string_ne($drive->{iothread}, $old_drive->{iothread}) ||
5033 safe_string_ne($drive->{queues}, $old_drive->{queues}) ||
5034 safe_string_ne($drive->{cache}, $old_drive->{cache}) ||
5035 safe_string_ne($drive->{ssd}, $old_drive->{ssd})) {
5040 if (safe_num_ne($drive->{mbps}, $old_drive->{mbps}) ||
5041 safe_num_ne($drive->{mbps_rd}, $old_drive->{mbps_rd}) ||
5042 safe_num_ne($drive->{mbps_wr}, $old_drive->{mbps_wr}) ||
5043 safe_num_ne($drive->{iops}, $old_drive->{iops}) ||
5044 safe_num_ne($drive->{iops_rd}, $old_drive->{iops_rd}) ||
5045 safe_num_ne($drive->{iops_wr}, $old_drive->{iops_wr}) ||
5046 safe_num_ne($drive->{mbps_max}, $old_drive->{mbps_max}) ||
5047 safe_num_ne($drive->{mbps_rd_max}, $old_drive->{mbps_rd_max}) ||
5048 safe_num_ne($drive->{mbps_wr_max}, $old_drive->{mbps_wr_max}) ||
5049 safe_num_ne($drive->{iops_max}, $old_drive->{iops_max}) ||
5050 safe_num_ne($drive->{iops_rd_max}, $old_drive->{iops_rd_max}) ||
5051 safe_num_ne($drive->{iops_wr_max}, $old_drive->{iops_wr_max}) ||
5052 safe_num_ne($drive->{bps_max_length}, $old_drive->{bps_max_length}) ||
5053 safe_num_ne($drive->{bps_rd_max_length}, $old_drive->{bps_rd_max_length}) ||
5054 safe_num_ne($drive->{bps_wr_max_length}, $old_drive->{bps_wr_max_length}) ||
5055 safe_num_ne($drive->{iops_max_length}, $old_drive->{iops_max_length}) ||
5056 safe_num_ne($drive->{iops_rd_max_length}, $old_drive->{iops_rd_max_length}) ||
5057 safe_num_ne($drive->{iops_wr_max_length}, $old_drive->{iops_wr_max_length})) {
5059 qemu_block_set_io_throttle(
5061 ($drive->{mbps} || 0)*1024*1024,
5062 ($drive->{mbps_rd} || 0)*1024*1024,
5063 ($drive->{mbps_wr} || 0)*1024*1024,
5064 $drive->{iops} || 0,
5065 $drive->{iops_rd} || 0,
5066 $drive->{iops_wr} || 0,
5067 ($drive->{mbps_max} || 0)*1024*1024,
5068 ($drive->{mbps_rd_max} || 0)*1024*1024,
5069 ($drive->{mbps_wr_max} || 0)*1024*1024,
5070 $drive->{iops_max} || 0,
5071 $drive->{iops_rd_max} || 0,
5072 $drive->{iops_wr_max} || 0,
5073 $drive->{bps_max_length} || 1,
5074 $drive->{bps_rd_max_length} || 1,
5075 $drive->{bps_wr_max_length} || 1,
5076 $drive->{iops_max_length} || 1,
5077 $drive->{iops_rd_max_length} || 1,
5078 $drive->{iops_wr_max_length} || 1,
5088 if ($drive->{file} eq 'none
') {
5089 mon_cmd($vmid, "eject", force => JSON::true, id => "$opt");
5090 if (drive_is_cloudinit($old_drive)) {
5091 vmconfig_register_unused_drive($storecfg, $vmid, $conf, $old_drive);
5094 my $path = get_iso_path($storecfg, $vmid, $drive->{file});
5096 # force eject if locked
5097 mon_cmd($vmid, "eject", force => JSON::true, id => "$opt");
5100 mon_cmd($vmid, "blockdev-change-medium",
5101 id => "$opt", filename => "$path");
5109 die "skip\n" if !$hotplug || $opt =~ m/(ide|sata)(\d+)/;
5111 PVE::Storage::activate_volumes($storecfg, [$drive->{file}]) if $drive->{file} !~ m|^/dev/.+|;
5112 vm_deviceplug($storecfg, $conf, $vmid, $opt, $drive, $arch, $machine_type);
5115 # called in locked context by incoming migration
5116 sub vm_migrate_get_nbd_disks {
5117 my ($storecfg, $conf, $replicated_volumes) = @_;
5119 my $local_volumes = {};
5120 PVE::QemuConfig->foreach_volume($conf, sub {
5121 my ($ds, $drive) = @_;
5123 return if drive_is_cdrom($drive);
5125 my $volid = $drive->{file};
5129 my ($storeid, $volname) = PVE::Storage::parse_volume_id($volid);
5131 my $scfg = PVE::Storage::storage_config($storecfg, $storeid);
5132 return if $scfg->{shared};
5134 # replicated disks re-use existing state via bitmap
5135 my $use_existing = $replicated_volumes->{$volid} ? 1 : 0;
5136 $local_volumes->{$ds} = [$volid, $storeid, $volname, $drive, $use_existing];
5138 return $local_volumes;
5141 # called in locked context by incoming migration
5142 sub vm_migrate_alloc_nbd_disks {
5143 my ($storecfg, $vmid, $source_volumes, $storagemap) = @_;
5148 foreach my $opt (sort keys %$source_volumes) {
5149 my ($volid, $storeid, $volname, $drive, $use_existing) = @{$source_volumes->{$opt}};
5151 if ($use_existing) {
5152 $nbd->{$opt}->{drivestr} = print_drive($drive);
5153 $nbd->{$opt}->{volid} = $volid;
5154 $nbd->{$opt}->{replicated} = 1;
5158 # If a remote storage is specified and the format of the original
5159 # volume is not available there, fall back to the default format.
5160 # Otherwise use the same format as the original.
5161 if (!$storagemap->{identity}) {
5162 $storeid = map_storage($storagemap, $storeid);
5163 my ($defFormat, $validFormats) = PVE::Storage::storage_default_format($storecfg, $storeid);
5164 my $scfg = PVE::Storage::storage_config($storecfg, $storeid);
5165 my $fileFormat = qemu_img_format($scfg, $volname);
5166 $format = (grep {$fileFormat eq $_} @{$validFormats}) ? $fileFormat : $defFormat;
5168 my $scfg = PVE::Storage::storage_config($storecfg, $storeid);
5169 $format = qemu_img_format($scfg, $volname);
5172 my $size = $drive->{size} / 1024;
5173 my $newvolid = PVE::Storage::vdisk_alloc($storecfg, $storeid, $vmid, $format, undef, $size);
5174 my $newdrive = $drive;
5175 $newdrive->{format} = $format;
5176 $newdrive->{file} = $newvolid;
5177 my $drivestr = print_drive($newdrive);
5178 $nbd->{$opt}->{drivestr} = $drivestr;
5179 $nbd->{$opt}->{volid} = $newvolid;
5185 # see vm_start_nolock for parameters, additionally:
5187 # storagemap = parsed storage map for allocating NBD disks
5189 my ($storecfg, $vmid, $params, $migrate_opts) = @_;
5191 return PVE::QemuConfig->lock_config($vmid, sub {
5192 my $conf = PVE::QemuConfig->load_config($vmid, $migrate_opts->{migratedfrom});
5194 die "you can't start a vm
if it
's a template\n"
5195 if !$params->{skiptemplate} && PVE::QemuConfig->is_template($conf);
5197 my $has_suspended_lock = PVE::QemuConfig->has_lock($conf, 'suspended
');
5198 my $has_backup_lock = PVE::QemuConfig->has_lock($conf, 'backup
');
5200 my $running = check_running($vmid, undef, $migrate_opts->{migratedfrom});
5202 if ($has_backup_lock && $running) {
5203 # a backup is currently running, attempt to start the guest in the
5204 # existing QEMU instance
5205 return vm_resume($vmid);
5208 PVE::QemuConfig->check_lock($conf)
5209 if !($params->{skiplock} || $has_suspended_lock);
5211 $params->{resume} = $has_suspended_lock || defined($conf->{vmstate});
5213 die "VM $vmid already running\n" if $running;
5215 if (my $storagemap = $migrate_opts->{storagemap}) {
5216 my $replicated = $migrate_opts->{replicated_volumes};
5217 my $disks = vm_migrate_get_nbd_disks($storecfg, $conf, $replicated);
5218 $migrate_opts->{nbd} = vm_migrate_alloc_nbd_disks($storecfg, $vmid, $disks, $storagemap);
5220 foreach my $opt (keys %{$migrate_opts->{nbd}}) {
5221 $conf->{$opt} = $migrate_opts->{nbd}->{$opt}->{drivestr};
5225 return vm_start_nolock($storecfg, $vmid, $conf, $params, $migrate_opts);
5231 # statefile => 'tcp
', 'unix
' for migration or path/volid for RAM state
5232 # skiplock => 0/1, skip checking for config lock
5233 # skiptemplate => 0/1, skip checking whether VM is template
5234 # forcemachine => to force Qemu machine (rollback/migration)
5235 # forcecpu => a QEMU '-cpu
' argument string to override get_cpu_options
5236 # timeout => in seconds
5237 # paused => start VM in paused state (backup)
5238 # resume => resume from hibernation
5249 # nbd => volumes for NBD exports (vm_migrate_alloc_nbd_disks)
5250 # migratedfrom => source node
5251 # spice_ticket => used for spice migration, passed via tunnel/stdin
5252 # network => CIDR of migration network
5253 # type => secure/insecure - tunnel over encrypted connection or plain-text
5254 # nbd_proto_version => int, 0 for TCP, 1 for UNIX
5255 # replicated_volumes = which volids should be re-used with bitmaps for nbd migration
5256 sub vm_start_nolock {
5257 my ($storecfg, $vmid, $conf, $params, $migrate_opts) = @_;
5259 my $statefile = $params->{statefile};
5260 my $resume = $params->{resume};
5262 my $migratedfrom = $migrate_opts->{migratedfrom};
5263 my $migration_type = $migrate_opts->{type};
5267 # clean up leftover reboot request files
5268 eval { clear_reboot_request($vmid); };
5271 if (!$statefile && scalar(keys %{$conf->{pending}})) {
5272 vmconfig_apply_pending($vmid, $conf, $storecfg);
5273 $conf = PVE::QemuConfig->load_config($vmid); # update/reload
5276 # don't regenerate the ISO
if the VM
is started as part of a live migration
5277 # this way we can reuse the old ISO with the correct config
5278 PVE
::QemuServer
::Cloudinit
::generate_cloudinitconfig
($conf, $vmid) if !$migratedfrom;
5280 my $defaults = load_defaults
();
5282 # set environment variable useful inside network script
5283 $ENV{PVE_MIGRATED_FROM
} = $migratedfrom if $migratedfrom;
5285 PVE
::GuestHelpers
::exec_hookscript
($conf, $vmid, 'pre-start', 1);
5287 my $forcemachine = $params->{forcemachine
};
5288 my $forcecpu = $params->{forcecpu
};
5290 # enforce machine and CPU type on suspended vm to ensure HW compatibility
5291 $forcemachine = $conf->{runningmachine
};
5292 $forcecpu = $conf->{runningcpu
};
5293 print "Resuming suspended VM\n";
5296 my ($cmd, $vollist, $spice_port) = config_to_command
($storecfg, $vmid,
5297 $conf, $defaults, $forcemachine, $forcecpu, $params->{'pbs-backing'});
5300 my $get_migration_ip = sub {
5301 my ($nodename) = @_;
5303 return $migration_ip if defined($migration_ip);
5305 my $cidr = $migrate_opts->{network
};
5307 if (!defined($cidr)) {
5308 my $dc_conf = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
5309 $cidr = $dc_conf->{migration
}->{network
};
5312 if (defined($cidr)) {
5313 my $ips = PVE
::Network
::get_local_ip_from_cidr
($cidr);
5315 die "could not get IP: no address configured on local " .
5316 "node for network '$cidr'\n" if scalar(@$ips) == 0;
5318 die "could not get IP: multiple addresses configured on local " .
5319 "node for network '$cidr'\n" if scalar(@$ips) > 1;
5321 $migration_ip = @$ips[0];
5324 $migration_ip = PVE
::Cluster
::remote_node_ip
($nodename, 1)
5325 if !defined($migration_ip);
5327 return $migration_ip;
5332 if ($statefile eq 'tcp') {
5333 my $localip = "localhost";
5334 my $datacenterconf = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
5335 my $nodename = nodename
();
5337 if (!defined($migration_type)) {
5338 if (defined($datacenterconf->{migration
}->{type
})) {
5339 $migration_type = $datacenterconf->{migration
}->{type
};
5341 $migration_type = 'secure';
5345 if ($migration_type eq 'insecure') {
5346 $localip = $get_migration_ip->($nodename);
5347 $localip = "[$localip]" if Net
::IP
::ip_is_ipv6
($localip);
5350 my $pfamily = PVE
::Tools
::get_host_address_family
($nodename);
5351 my $migrate_port = PVE
::Tools
::next_migrate_port
($pfamily);
5352 $migrate_uri = "tcp:${localip}:${migrate_port}";
5353 push @$cmd, '-incoming', $migrate_uri;
5356 } elsif ($statefile eq 'unix') {
5357 # should be default for secure migrations as a ssh TCP forward
5358 # tunnel is not deterministic reliable ready and fails regurarly
5359 # to set up in time, so use UNIX socket forwards
5360 my $socket_addr = "/run/qemu-server/$vmid.migrate";
5361 unlink $socket_addr;
5363 $migrate_uri = "unix:$socket_addr";
5365 push @$cmd, '-incoming', $migrate_uri;
5368 } elsif (-e
$statefile) {
5369 push @$cmd, '-loadstate', $statefile;
5371 my $statepath = PVE
::Storage
::path
($storecfg, $statefile);
5372 push @$vollist, $statefile;
5373 push @$cmd, '-loadstate', $statepath;
5375 } elsif ($params->{paused
}) {
5379 my $start_timeout = $params->{timeout
} // config_aware_timeout
($conf, $resume);
5381 my $pci_devices = {}; # host pci devices
5382 for (my $i = 0; $i < $PVE::QemuServer
::PCI
::MAX_HOSTPCI_DEVICES
; $i++) {
5383 my $dev = $conf->{"hostpci$i"} or next;
5384 $pci_devices->{$i} = parse_hostpci
($dev);
5387 my $pci_id_list = [ map { $_->{id
} } map { $_->{pciid
}->@* } values $pci_devices->%* ];
5388 # reserve all PCI IDs before actually doing anything with them
5389 PVE
::QemuServer
::PCI
::reserve_pci_usage
($pci_id_list, $vmid, $start_timeout);
5392 for my $id (sort keys %$pci_devices) {
5393 my $d = $pci_devices->{$id};
5394 for my $dev ($d->{pciid
}->@*) {
5395 PVE
::QemuServer
::PCI
::prepare_pci_device
($vmid, $dev->{id
}, $id, $d->{mdev
});
5400 eval { PVE
::QemuServer
::PCI
::remove_pci_reservation
($pci_id_list) };
5405 PVE
::Storage
::activate_volumes
($storecfg, $vollist);
5408 run_command
(['/bin/systemctl', 'stop', "$vmid.scope"], outfunc
=> sub{}, errfunc
=> sub{});
5410 # Issues with the above 'stop' not being fully completed are extremely rare, a very low
5411 # timeout should be more than enough here...
5412 PVE
::Systemd
::wait_for_unit_removed
("$vmid.scope", 5);
5414 my $cpuunits = get_cpuunits
($conf);
5417 timeout
=> $statefile ?
undef : $start_timeout,
5422 # when migrating, prefix QEMU output so other side can pick up any
5423 # errors that might occur and show the user
5424 if ($migratedfrom) {
5425 $run_params{quiet
} = 1;
5426 $run_params{logfunc
} = sub { print "QEMU: $_[0]\n" };
5429 my %systemd_properties = (
5430 Slice
=> 'qemu.slice',
5431 KillMode
=> 'process',
5433 TimeoutStopUSec
=> ULONG_MAX
, # infinity
5436 if (PVE
::CGroup
::cgroup_mode
() == 2) {
5437 $cpuunits = 10000 if $cpuunits >= 10000; # else we get an error
5438 $systemd_properties{CPUWeight
} = $cpuunits;
5440 $systemd_properties{CPUShares
} = $cpuunits;
5443 if (my $cpulimit = $conf->{cpulimit
}) {
5444 $systemd_properties{CPUQuota
} = int($cpulimit * 100);
5446 $systemd_properties{timeout
} = 10 if $statefile; # setting up the scope shoul be quick
5448 my $run_qemu = sub {
5449 PVE
::Tools
::run_fork
sub {
5450 PVE
::Systemd
::enter_systemd_scope
($vmid, "Proxmox VE VM $vmid", %systemd_properties);
5453 if (my $tpm = $conf->{tpmstate0
}) {
5454 # start the TPM emulator so QEMU can connect on start
5455 $tpmpid = start_swtpm
($storecfg, $vmid, $tpm, $migratedfrom);
5458 my $exitcode = run_command
($cmd, %run_params);
5461 warn "stopping swtpm instance (pid $tpmpid) due to QEMU startup error\n";
5462 kill 'TERM', $tpmpid;
5464 die "QEMU exited with code $exitcode\n";
5469 if ($conf->{hugepages
}) {
5472 my $hugepages_topology = PVE
::QemuServer
::Memory
::hugepages_topology
($conf);
5473 my $hugepages_host_topology = PVE
::QemuServer
::Memory
::hugepages_host_topology
();
5475 PVE
::QemuServer
::Memory
::hugepages_mount
();
5476 PVE
::QemuServer
::Memory
::hugepages_allocate
($hugepages_topology, $hugepages_host_topology);
5478 eval { $run_qemu->() };
5480 PVE
::QemuServer
::Memory
::hugepages_reset
($hugepages_host_topology)
5481 if !$conf->{keephugepages
};
5485 PVE
::QemuServer
::Memory
::hugepages_pre_deallocate
($hugepages_topology)
5486 if !$conf->{keephugepages
};
5488 eval { PVE
::QemuServer
::Memory
::hugepages_update_locked
($code); };
5491 eval { $run_qemu->() };
5495 # deactivate volumes if start fails
5496 eval { PVE
::Storage
::deactivate_volumes
($storecfg, $vollist); };
5497 eval { PVE
::QemuServer
::PCI
::remove_pci_reservation
($pci_id_list) };
5499 die "start failed: $err";
5502 # re-reserve all PCI IDs now that we can know the actual VM PID
5503 my $pid = PVE
::QemuServer
::Helpers
::vm_running_locally
($vmid);
5504 eval { PVE
::QemuServer
::PCI
::reserve_pci_usage
($pci_id_list, $vmid, undef, $pid) };
5507 print "migration listens on $migrate_uri\n" if $migrate_uri;
5508 $res->{migrate_uri
} = $migrate_uri;
5510 if ($statefile && $statefile ne 'tcp' && $statefile ne 'unix') {
5511 eval { mon_cmd
($vmid, "cont"); };
5515 #start nbd server for storage migration
5516 if (my $nbd = $migrate_opts->{nbd
}) {
5517 my $nbd_protocol_version = $migrate_opts->{nbd_proto_version
} // 0;
5519 my $migrate_storage_uri;
5520 # nbd_protocol_version > 0 for unix socket support
5521 if ($nbd_protocol_version > 0 && $migration_type eq 'secure') {
5522 my $socket_path = "/run/qemu-server/$vmid\_nbd.migrate";
5523 mon_cmd
($vmid, "nbd-server-start", addr
=> { type
=> 'unix', data
=> { path
=> $socket_path } } );
5524 $migrate_storage_uri = "nbd:unix:$socket_path";
5526 my $nodename = nodename
();
5527 my $localip = $get_migration_ip->($nodename);
5528 my $pfamily = PVE
::Tools
::get_host_address_family
($nodename);
5529 my $storage_migrate_port = PVE
::Tools
::next_migrate_port
($pfamily);
5531 mon_cmd
($vmid, "nbd-server-start", addr
=> {
5534 host
=> "${localip}",
5535 port
=> "${storage_migrate_port}",
5538 $localip = "[$localip]" if Net
::IP
::ip_is_ipv6
($localip);
5539 $migrate_storage_uri = "nbd:${localip}:${storage_migrate_port}";
5542 $res->{migrate_storage_uri
} = $migrate_storage_uri;
5544 foreach my $opt (sort keys %$nbd) {
5545 my $drivestr = $nbd->{$opt}->{drivestr
};
5546 my $volid = $nbd->{$opt}->{volid
};
5547 mon_cmd
($vmid, "nbd-server-add", device
=> "drive-$opt", writable
=> JSON
::true
);
5548 my $nbd_uri = "$migrate_storage_uri:exportname=drive-$opt";
5549 print "storage migration listens on $nbd_uri volume:$drivestr\n";
5550 print "re-using replicated volume: $opt - $volid\n"
5551 if $nbd->{$opt}->{replicated
};
5553 $res->{drives
}->{$opt} = $nbd->{$opt};
5554 $res->{drives
}->{$opt}->{nbd_uri
} = $nbd_uri;
5558 if ($migratedfrom) {
5560 set_migration_caps
($vmid);
5565 print "spice listens on port $spice_port\n";
5566 $res->{spice_port
} = $spice_port;
5567 if ($migrate_opts->{spice_ticket
}) {
5568 mon_cmd
($vmid, "set_password", protocol
=> 'spice', password
=>
5569 $migrate_opts->{spice_ticket
});
5570 mon_cmd
($vmid, "expire_password", protocol
=> 'spice', time => "+30");
5575 mon_cmd
($vmid, "balloon", value
=> $conf->{balloon
}*1024*1024)
5576 if !$statefile && $conf->{balloon
};
5578 foreach my $opt (keys %$conf) {
5579 next if $opt !~ m/^net\d+$/;
5580 my $nicconf = parse_net
($conf->{$opt});
5581 qemu_set_link_status
($vmid, $opt, 0) if $nicconf->{link_down
};
5585 mon_cmd
($vmid, 'qom-set',
5586 path
=> "machine/peripheral/balloon0",
5587 property
=> "guest-stats-polling-interval",
5588 value
=> 2) if (!defined($conf->{balloon
}) || $conf->{balloon
});
5591 print "Resumed VM, removing state\n";
5592 if (my $vmstate = $conf->{vmstate
}) {
5593 PVE
::Storage
::deactivate_volumes
($storecfg, [$vmstate]);
5594 PVE
::Storage
::vdisk_free
($storecfg, $vmstate);
5596 delete $conf->@{qw(lock vmstate runningmachine runningcpu)};
5597 PVE
::QemuConfig-
>write_config($vmid, $conf);
5600 PVE
::GuestHelpers
::exec_hookscript
($conf, $vmid, 'post-start');
5605 sub vm_commandline
{
5606 my ($storecfg, $vmid, $snapname) = @_;
5608 my $conf = PVE
::QemuConfig-
>load_config($vmid);
5613 my $snapshot = $conf->{snapshots
}->{$snapname};
5614 die "snapshot '$snapname' does not exist\n" if !defined($snapshot);
5616 # check for machine or CPU overrides in snapshot
5617 $forcemachine = $snapshot->{runningmachine
};
5618 $forcecpu = $snapshot->{runningcpu
};
5620 $snapshot->{digest
} = $conf->{digest
}; # keep file digest for API
5625 my $defaults = load_defaults
();
5627 my $cmd = config_to_command
($storecfg, $vmid, $conf, $defaults,
5628 $forcemachine, $forcecpu);
5630 return PVE
::Tools
::cmd2string
($cmd);
5634 my ($vmid, $skiplock) = @_;
5636 PVE
::QemuConfig-
>lock_config($vmid, sub {
5638 my $conf = PVE
::QemuConfig-
>load_config($vmid);
5640 PVE
::QemuConfig-
>check_lock($conf) if !$skiplock;
5642 mon_cmd
($vmid, "system_reset");
5646 sub get_vm_volumes
{
5650 foreach_volid
($conf, sub {
5651 my ($volid, $attr) = @_;
5653 return if $volid =~ m
|^/|;
5655 my ($sid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
5658 push @$vollist, $volid;
5664 sub vm_stop_cleanup
{
5665 my ($storecfg, $vmid, $conf, $keepActive, $apply_pending_changes) = @_;
5670 my $vollist = get_vm_volumes
($conf);
5671 PVE
::Storage
::deactivate_volumes
($storecfg, $vollist);
5673 if (my $tpmdrive = $conf->{tpmstate0
}) {
5674 my $tpm = parse_drive
("tpmstate0", $tpmdrive);
5675 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($tpm->{file
}, 1);
5677 PVE
::Storage
::unmap_volume
($storecfg, $tpm->{file
});
5682 foreach my $ext (qw(mon qmp pid vnc qga)) {
5683 unlink "/var/run/qemu-server/${vmid}.$ext";
5686 if ($conf->{ivshmem
}) {
5687 my $ivshmem = parse_property_string
($ivshmem_fmt, $conf->{ivshmem
});
5688 # just delete it for now, VMs which have this already open do not
5689 # are affected, but new VMs will get a separated one. If this
5690 # becomes an issue we either add some sort of ref-counting or just
5691 # add a "don't delete on stop" flag to the ivshmem format.
5692 unlink '/dev/shm/pve-shm-' . ($ivshmem->{name
} // $vmid);
5696 foreach my $key (keys %$conf) {
5697 next if $key !~ m/^hostpci(\d+)$/;
5698 my $hostpciindex = $1;
5699 my $d = parse_hostpci
($conf->{$key});
5700 my $uuid = PVE
::SysFSTools
::generate_mdev_uuid
($vmid, $hostpciindex);
5702 foreach my $pci (@{$d->{pciid
}}) {
5703 my $pciid = $pci->{id
};
5704 push @$ids, $pci->{id
};
5705 PVE
::SysFSTools
::pci_cleanup_mdev_device
($pciid, $uuid);
5708 PVE
::QemuServer
::PCI
::remove_pci_reservation
($ids);
5710 vmconfig_apply_pending
($vmid, $conf, $storecfg) if $apply_pending_changes;
5712 warn $@ if $@; # avoid errors - just warn
5715 # call only in locked context
5717 my ($storecfg, $vmid, $skiplock, $nocheck, $timeout, $shutdown, $force, $keepActive) = @_;
5719 my $pid = check_running
($vmid, $nocheck);
5724 $conf = PVE
::QemuConfig-
>load_config($vmid);
5725 PVE
::QemuConfig-
>check_lock($conf) if !$skiplock;
5726 if (!defined($timeout) && $shutdown && $conf->{startup
}) {
5727 my $opts = PVE
::JSONSchema
::pve_parse_startup_order
($conf->{startup
});
5728 $timeout = $opts->{down
} if $opts->{down
};
5730 PVE
::GuestHelpers
::exec_hookscript
($conf, $vmid, 'pre-stop');
5735 if (defined($conf) && get_qga_key
($conf, 'enabled')) {
5736 mon_cmd
($vmid, "guest-shutdown", timeout
=> $timeout);
5738 mon_cmd
($vmid, "system_powerdown");
5741 mon_cmd
($vmid, "quit");
5747 $timeout = 60 if !defined($timeout);
5750 while (($count < $timeout) && check_running
($vmid, $nocheck)) {
5755 if ($count >= $timeout) {
5757 warn "VM still running - terminating now with SIGTERM\n";
5760 die "VM quit/powerdown failed - got timeout\n";
5763 vm_stop_cleanup
($storecfg, $vmid, $conf, $keepActive, 1) if $conf;
5767 if (!check_running
($vmid, $nocheck)) {
5768 warn "Unexpected: VM shutdown command failed, but VM not running anymore..\n";
5772 warn "VM quit/powerdown failed - terminating now with SIGTERM\n";
5775 die "VM quit/powerdown failed\n";
5783 while (($count < $timeout) && check_running
($vmid, $nocheck)) {
5788 if ($count >= $timeout) {
5789 warn "VM still running - terminating now with SIGKILL\n";
5794 vm_stop_cleanup
($storecfg, $vmid, $conf, $keepActive, 1) if $conf;
5797 # Note: use $nocheck to skip tests if VM configuration file exists.
5798 # We need that when migration VMs to other nodes (files already moved)
5799 # Note: we set $keepActive in vzdump stop mode - volumes need to stay active
5801 my ($storecfg, $vmid, $skiplock, $nocheck, $timeout, $shutdown, $force, $keepActive, $migratedfrom) = @_;
5803 $force = 1 if !defined($force) && !$shutdown;
5806 my $pid = check_running
($vmid, $nocheck, $migratedfrom);
5807 kill 15, $pid if $pid;
5808 my $conf = PVE
::QemuConfig-
>load_config($vmid, $migratedfrom);
5809 vm_stop_cleanup
($storecfg, $vmid, $conf, $keepActive, 0);
5813 PVE
::QemuConfig-
>lock_config($vmid, sub {
5814 _do_vm_stop
($storecfg, $vmid, $skiplock, $nocheck, $timeout, $shutdown, $force, $keepActive);
5819 my ($vmid, $timeout) = @_;
5821 PVE
::QemuConfig-
>lock_config($vmid, sub {
5824 # only reboot if running, as qmeventd starts it again on a stop event
5825 return if !check_running
($vmid);
5827 create_reboot_request
($vmid);
5829 my $storecfg = PVE
::Storage
::config
();
5830 _do_vm_stop
($storecfg, $vmid, undef, undef, $timeout, 1);
5834 # avoid that the next normal shutdown will be confused for a reboot
5835 clear_reboot_request
($vmid);
5841 # note: if using the statestorage parameter, the caller has to check privileges
5843 my ($vmid, $skiplock, $includestate, $statestorage) = @_;
5850 PVE
::QemuConfig-
>lock_config($vmid, sub {
5852 $conf = PVE
::QemuConfig-
>load_config($vmid);
5854 my $is_backing_up = PVE
::QemuConfig-
>has_lock($conf, 'backup');
5855 PVE
::QemuConfig-
>check_lock($conf)
5856 if !($skiplock || $is_backing_up);
5858 die "cannot suspend to disk during backup\n"
5859 if $is_backing_up && $includestate;
5861 if ($includestate) {
5862 $conf->{lock} = 'suspending';
5863 my $date = strftime
("%Y-%m-%d", localtime(time()));
5864 $storecfg = PVE
::Storage
::config
();
5865 if (!$statestorage) {
5866 $statestorage = find_vmstate_storage
($conf, $storecfg);
5867 # check permissions for the storage
5868 my $rpcenv = PVE
::RPCEnvironment
::get
();
5869 if ($rpcenv->{type
} ne 'cli') {
5870 my $authuser = $rpcenv->get_user();
5871 $rpcenv->check($authuser, "/storage/$statestorage", ['Datastore.AllocateSpace']);
5876 $vmstate = PVE
::QemuConfig-
>__snapshot_save_vmstate(
5877 $vmid, $conf, "suspend-$date", $storecfg, $statestorage, 1);
5878 $path = PVE
::Storage
::path
($storecfg, $vmstate);
5879 PVE
::QemuConfig-
>write_config($vmid, $conf);
5881 mon_cmd
($vmid, "stop");
5885 if ($includestate) {
5887 PVE
::Storage
::activate_volumes
($storecfg, [$vmstate]);
5890 set_migration_caps
($vmid, 1);
5891 mon_cmd
($vmid, "savevm-start", statefile
=> $path);
5893 my $state = mon_cmd
($vmid, "query-savevm");
5894 if (!$state->{status
}) {
5895 die "savevm not active\n";
5896 } elsif ($state->{status
} eq 'active') {
5899 } elsif ($state->{status
} eq 'completed') {
5900 print "State saved, quitting\n";
5902 } elsif ($state->{status
} eq 'failed' && $state->{error
}) {
5903 die "query-savevm failed with error '$state->{error}'\n"
5905 die "query-savevm returned status '$state->{status}'\n";
5911 PVE
::QemuConfig-
>lock_config($vmid, sub {
5912 $conf = PVE
::QemuConfig-
>load_config($vmid);
5914 # cleanup, but leave suspending lock, to indicate something went wrong
5916 mon_cmd
($vmid, "savevm-end");
5917 PVE
::Storage
::deactivate_volumes
($storecfg, [$vmstate]);
5918 PVE
::Storage
::vdisk_free
($storecfg, $vmstate);
5919 delete $conf->@{qw(vmstate runningmachine runningcpu)};
5920 PVE
::QemuConfig-
>write_config($vmid, $conf);
5926 die "lock changed unexpectedly\n"
5927 if !PVE
::QemuConfig-
>has_lock($conf, 'suspending');
5929 mon_cmd
($vmid, "quit");
5930 $conf->{lock} = 'suspended';
5931 PVE
::QemuConfig-
>write_config($vmid, $conf);
5937 my ($vmid, $skiplock, $nocheck) = @_;
5939 PVE
::QemuConfig-
>lock_config($vmid, sub {
5940 my $res = mon_cmd
($vmid, 'query-status');
5941 my $resume_cmd = 'cont';
5944 if ($res->{status
}) {
5945 return if $res->{status
} eq 'running'; # job done, go home
5946 $resume_cmd = 'system_wakeup' if $res->{status
} eq 'suspended';
5947 $reset = 1 if $res->{status
} eq 'shutdown';
5952 my $conf = PVE
::QemuConfig-
>load_config($vmid);
5954 PVE
::QemuConfig-
>check_lock($conf)
5955 if !($skiplock || PVE
::QemuConfig-
>has_lock($conf, 'backup'));
5959 # required if a VM shuts down during a backup and we get a resume
5960 # request before the backup finishes for example
5961 mon_cmd
($vmid, "system_reset");
5963 mon_cmd
($vmid, $resume_cmd);
5968 my ($vmid, $skiplock, $key) = @_;
5970 PVE
::QemuConfig-
>lock_config($vmid, sub {
5972 my $conf = PVE
::QemuConfig-
>load_config($vmid);
5974 # there is no qmp command, so we use the human monitor command
5975 my $res = PVE
::QemuServer
::Monitor
::hmp_cmd
($vmid, "sendkey $key");
5976 die $res if $res ne '';
5980 # vzdump restore implementaion
5982 sub tar_archive_read_firstfile
{
5983 my $archive = shift;
5985 die "ERROR: file '$archive' does not exist\n" if ! -f
$archive;
5987 # try to detect archive type first
5988 my $pid = open (my $fh, '-|', 'tar', 'tf', $archive) ||
5989 die "unable to open file '$archive'\n";
5990 my $firstfile = <$fh>;
5994 die "ERROR: archive contaions no data\n" if !$firstfile;
6000 sub tar_restore_cleanup
{
6001 my ($storecfg, $statfile) = @_;
6003 print STDERR
"starting cleanup\n";
6005 if (my $fd = IO
::File-
>new($statfile, "r")) {
6006 while (defined(my $line = <$fd>)) {
6007 if ($line =~ m/vzdump:([^\s:]*):(\S+)$/) {
6010 if ($volid =~ m
|^/|) {
6011 unlink $volid || die 'unlink failed\n';
6013 PVE
::Storage
::vdisk_free
($storecfg, $volid);
6015 print STDERR
"temporary volume '$volid' sucessfuly removed\n";
6017 print STDERR
"unable to cleanup '$volid' - $@" if $@;
6019 print STDERR
"unable to parse line in statfile - $line";
6026 sub restore_file_archive
{
6027 my ($archive, $vmid, $user, $opts) = @_;
6029 return restore_vma_archive
($archive, $vmid, $user, $opts)
6032 my $info = PVE
::Storage
::archive_info
($archive);
6033 my $format = $opts->{format
} // $info->{format
};
6034 my $comp = $info->{compression
};
6036 # try to detect archive format
6037 if ($format eq 'tar') {
6038 return restore_tar_archive
($archive, $vmid, $user, $opts);
6040 return restore_vma_archive
($archive, $vmid, $user, $opts, $comp);
6044 # hepler to remove disks that will not be used after restore
6045 my $restore_cleanup_oldconf = sub {
6046 my ($storecfg, $vmid, $oldconf, $virtdev_hash) = @_;
6048 PVE
::QemuConfig-
>foreach_volume($oldconf, sub {
6049 my ($ds, $drive) = @_;
6051 return if drive_is_cdrom
($drive, 1);
6053 my $volid = $drive->{file
};
6054 return if !$volid || $volid =~ m
|^/|;
6056 my ($path, $owner) = PVE
::Storage
::path
($storecfg, $volid);
6057 return if !$path || !$owner || ($owner != $vmid);
6059 # Note: only delete disk we want to restore
6060 # other volumes will become unused
6061 if ($virtdev_hash->{$ds}) {
6062 eval { PVE
::Storage
::vdisk_free
($storecfg, $volid); };
6069 # delete vmstate files, after the restore we have no snapshots anymore
6070 foreach my $snapname (keys %{$oldconf->{snapshots
}}) {
6071 my $snap = $oldconf->{snapshots
}->{$snapname};
6072 if ($snap->{vmstate
}) {
6073 eval { PVE
::Storage
::vdisk_free
($storecfg, $snap->{vmstate
}); };
6081 # Helper to parse vzdump backup device hints
6083 # $rpcenv: Environment, used to ckeck storage permissions
6084 # $user: User ID, to check storage permissions
6085 # $storecfg: Storage configuration
6086 # $fh: the file handle for reading the configuration
6087 # $devinfo: should contain device sizes for all backu-up'ed devices
6088 # $options: backup options (pool, default storage)
6090 # Return: $virtdev_hash, updates $devinfo (add devname, virtdev, format, storeid)
6091 my $parse_backup_hints = sub {
6092 my ($rpcenv, $user, $storecfg, $fh, $devinfo, $options) = @_;
6094 my $virtdev_hash = {};
6096 while (defined(my $line = <$fh>)) {
6097 if ($line =~ m/^\#qmdump\#map:(\S+):(\S+):(\S*):(\S*):$/) {
6098 my ($virtdev, $devname, $storeid, $format) = ($1, $2, $3, $4);
6099 die "archive does not contain data for drive '$virtdev'\n"
6100 if !$devinfo->{$devname};
6102 if (defined($options->{storage
})) {
6103 $storeid = $options->{storage
} || 'local';
6104 } elsif (!$storeid) {
6107 $format = 'raw' if !$format;
6108 $devinfo->{$devname}->{devname
} = $devname;
6109 $devinfo->{$devname}->{virtdev
} = $virtdev;
6110 $devinfo->{$devname}->{format
} = $format;
6111 $devinfo->{$devname}->{storeid
} = $storeid;
6113 # check permission on storage
6114 my $pool = $options->{pool
}; # todo: do we need that?
6115 if ($user ne 'root@pam') {
6116 $rpcenv->check($user, "/storage/$storeid", ['Datastore.AllocateSpace']);
6119 $virtdev_hash->{$virtdev} = $devinfo->{$devname};
6120 } elsif ($line =~ m/^((?:ide|sata|scsi)\d+):\s*(.*)\s*$/) {
6122 my $drive = parse_drive
($virtdev, $2);
6123 if (drive_is_cloudinit
($drive)) {
6124 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($drive->{file
});
6125 $storeid = $options->{storage
} if defined ($options->{storage
});
6126 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6127 my $format = qemu_img_format
($scfg, $volname); # has 'raw' fallback
6129 $virtdev_hash->{$virtdev} = {
6131 storeid
=> $storeid,
6132 size
=> PVE
::QemuServer
::Cloudinit
::CLOUDINIT_DISK_SIZE
,
6139 return $virtdev_hash;
6142 # Helper to allocate and activate all volumes required for a restore
6144 # $storecfg: Storage configuration
6145 # $virtdev_hash: as returned by parse_backup_hints()
6147 # Returns: { $virtdev => $volid }
6148 my $restore_allocate_devices = sub {
6149 my ($storecfg, $virtdev_hash, $vmid) = @_;
6152 foreach my $virtdev (sort keys %$virtdev_hash) {
6153 my $d = $virtdev_hash->{$virtdev};
6154 my $alloc_size = int(($d->{size
} + 1024 - 1)/1024);
6155 my $storeid = $d->{storeid
};
6156 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6158 # test if requested format is supported
6159 my ($defFormat, $validFormats) = PVE
::Storage
::storage_default_format
($storecfg, $storeid);
6160 my $supported = grep { $_ eq $d->{format
} } @$validFormats;
6161 $d->{format
} = $defFormat if !$supported;
6164 if ($d->{is_cloudinit
}) {
6165 $name = "vm-$vmid-cloudinit";
6166 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6167 if ($scfg->{path
}) {
6168 $name .= ".$d->{format}";
6172 my $volid = PVE
::Storage
::vdisk_alloc
(
6173 $storecfg, $storeid, $vmid, $d->{format
}, $name, $alloc_size);
6175 print STDERR
"new volume ID is '$volid'\n";
6176 $d->{volid
} = $volid;
6178 PVE
::Storage
::activate_volumes
($storecfg, [$volid]);
6180 $map->{$virtdev} = $volid;
6186 sub restore_update_config_line
{
6187 my ($cookie, $map, $line, $unique) = @_;
6189 return '' if $line =~ m/^\#qmdump\#/;
6190 return '' if $line =~ m/^\#vzdump\#/;
6191 return '' if $line =~ m/^lock:/;
6192 return '' if $line =~ m/^unused\d+:/;
6193 return '' if $line =~ m/^parent:/;
6197 my $dc = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
6198 if (($line =~ m/^(vlan(\d+)):\s*(\S+)\s*$/)) {
6199 # try to convert old 1.X settings
6200 my ($id, $ind, $ethcfg) = ($1, $2, $3);
6201 foreach my $devconfig (PVE
::Tools
::split_list
($ethcfg)) {
6202 my ($model, $macaddr) = split(/\=/, $devconfig);
6203 $macaddr = PVE
::Tools
::random_ether_addr
($dc->{mac_prefix
}) if !$macaddr || $unique;
6206 bridge
=> "vmbr$ind",
6207 macaddr
=> $macaddr,
6209 my $netstr = print_net
($net);
6211 $res .= "net$cookie->{netcount}: $netstr\n";
6212 $cookie->{netcount
}++;
6214 } elsif (($line =~ m/^(net\d+):\s*(\S+)\s*$/) && $unique) {
6215 my ($id, $netstr) = ($1, $2);
6216 my $net = parse_net
($netstr);
6217 $net->{macaddr
} = PVE
::Tools
::random_ether_addr
($dc->{mac_prefix
}) if $net->{macaddr
};
6218 $netstr = print_net
($net);
6219 $res .= "$id: $netstr\n";
6220 } elsif ($line =~ m/^((ide|scsi|virtio|sata|efidisk|tpmstate)\d+):\s*(\S+)\s*$/) {
6223 my $di = parse_drive
($virtdev, $value);
6224 if (defined($di->{backup
}) && !$di->{backup
}) {
6226 } elsif ($map->{$virtdev}) {
6227 delete $di->{format
}; # format can change on restore
6228 $di->{file
} = $map->{$virtdev};
6229 $value = print_drive
($di);
6230 $res .= "$virtdev: $value\n";
6234 } elsif (($line =~ m/^vmgenid: (.*)/)) {
6236 if ($vmgenid ne '0') {
6237 # always generate a new vmgenid if there was a valid one setup
6238 $vmgenid = generate_uuid
();
6240 $res .= "vmgenid: $vmgenid\n";
6241 } elsif (($line =~ m/^(smbios1: )(.*)/) && $unique) {
6242 my ($uuid, $uuid_str);
6243 UUID
::generate
($uuid);
6244 UUID
::unparse
($uuid, $uuid_str);
6245 my $smbios1 = parse_smbios1
($2);
6246 $smbios1->{uuid
} = $uuid_str;
6247 $res .= $1.print_smbios1
($smbios1)."\n";
6255 my $restore_deactivate_volumes = sub {
6256 my ($storecfg, $devinfo) = @_;
6259 foreach my $devname (keys %$devinfo) {
6260 my $volid = $devinfo->{$devname}->{volid
};
6261 push @$vollist, $volid if $volid;
6264 PVE
::Storage
::deactivate_volumes
($storecfg, $vollist);
6267 my $restore_destroy_volumes = sub {
6268 my ($storecfg, $devinfo) = @_;
6270 foreach my $devname (keys %$devinfo) {
6271 my $volid = $devinfo->{$devname}->{volid
};
6274 if ($volid =~ m
|^/|) {
6275 unlink $volid || die 'unlink failed\n';
6277 PVE
::Storage
::vdisk_free
($storecfg, $volid);
6279 print STDERR
"temporary volume '$volid' sucessfuly removed\n";
6281 print STDERR
"unable to cleanup '$volid' - $@" if $@;
6286 my ($cfg, $vmid) = @_;
6288 my $info = PVE
::Storage
::vdisk_list
($cfg, undef, $vmid, undef, 'images');
6290 my $volid_hash = {};
6291 foreach my $storeid (keys %$info) {
6292 foreach my $item (@{$info->{$storeid}}) {
6293 next if !($item->{volid
} && $item->{size
});
6294 $item->{path
} = PVE
::Storage
::path
($cfg, $item->{volid
});
6295 $volid_hash->{$item->{volid
}} = $item;
6302 sub update_disk_config
{
6303 my ($vmid, $conf, $volid_hash) = @_;
6306 my $prefix = "VM $vmid";
6308 # used and unused disks
6309 my $referenced = {};
6311 # Note: it is allowed to define multiple storages with same path (alias), so
6312 # we need to check both 'volid' and real 'path' (two different volid can point
6313 # to the same path).
6315 my $referencedpath = {};
6318 PVE
::QemuConfig-
>foreach_volume($conf, sub {
6319 my ($opt, $drive) = @_;
6321 my $volid = $drive->{file
};
6323 my $volume = $volid_hash->{$volid};
6325 # mark volid as "in-use" for next step
6326 $referenced->{$volid} = 1;
6327 if ($volume && (my $path = $volume->{path
})) {
6328 $referencedpath->{$path} = 1;
6331 return if drive_is_cdrom
($drive);
6334 my ($updated, $msg) = PVE
::QemuServer
::Drive
::update_disksize
($drive, $volume->{size
});
6335 if (defined($updated)) {
6337 $conf->{$opt} = print_drive
($updated);
6338 print "$prefix ($opt): $msg\n";
6342 # remove 'unusedX' entry if volume is used
6343 PVE
::QemuConfig-
>foreach_unused_volume($conf, sub {
6344 my ($opt, $drive) = @_;
6346 my $volid = $drive->{file
};
6350 $path = $volid_hash->{$volid}->{path
} if $volid_hash->{$volid};
6351 if ($referenced->{$volid} || ($path && $referencedpath->{$path})) {
6352 print "$prefix remove entry '$opt', its volume '$volid' is in use\n";
6354 delete $conf->{$opt};
6357 $referenced->{$volid} = 1;
6358 $referencedpath->{$path} = 1 if $path;
6361 foreach my $volid (sort keys %$volid_hash) {
6362 next if $volid =~ m/vm-$vmid-state-/;
6363 next if $referenced->{$volid};
6364 my $path = $volid_hash->{$volid}->{path
};
6365 next if !$path; # just to be sure
6366 next if $referencedpath->{$path};
6368 my $key = PVE
::QemuConfig-
>add_unused_volume($conf, $volid);
6369 print "$prefix add unreferenced volume '$volid' as '$key' to config\n";
6370 $referencedpath->{$path} = 1; # avoid to add more than once (aliases)
6377 my ($vmid, $nolock, $dryrun) = @_;
6379 my $cfg = PVE
::Storage
::config
();
6381 print "rescan volumes...\n";
6382 my $volid_hash = scan_volids
($cfg, $vmid);
6384 my $updatefn = sub {
6387 my $conf = PVE
::QemuConfig-
>load_config($vmid);
6389 PVE
::QemuConfig-
>check_lock($conf);
6392 foreach my $volid (keys %$volid_hash) {
6393 my $info = $volid_hash->{$volid};
6394 $vm_volids->{$volid} = $info if $info->{vmid
} && $info->{vmid
} == $vmid;
6397 my $changes = update_disk_config
($vmid, $conf, $vm_volids);
6399 PVE
::QemuConfig-
>write_config($vmid, $conf) if $changes && !$dryrun;
6402 if (defined($vmid)) {
6406 PVE
::QemuConfig-
>lock_config($vmid, $updatefn, $vmid);
6409 my $vmlist = config_list
();
6410 foreach my $vmid (keys %$vmlist) {
6414 PVE
::QemuConfig-
>lock_config($vmid, $updatefn, $vmid);
6420 sub restore_proxmox_backup_archive
{
6421 my ($archive, $vmid, $user, $options) = @_;
6423 my $storecfg = PVE
::Storage
::config
();
6425 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($archive);
6426 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6428 my $fingerprint = $scfg->{fingerprint
};
6429 my $keyfile = PVE
::Storage
::PBSPlugin
::pbs_encryption_key_file_name
($storecfg, $storeid);
6431 my $repo = PVE
::PBSClient
::get_repository
($scfg);
6433 # This is only used for `pbs-restore` and the QEMU PBS driver (live-restore)
6434 my $password = PVE
::Storage
::PBSPlugin
::pbs_get_password
($scfg, $storeid);
6435 local $ENV{PBS_PASSWORD
} = $password;
6436 local $ENV{PBS_FINGERPRINT
} = $fingerprint if defined($fingerprint);
6438 my ($vtype, $pbs_backup_name, undef, undef, undef, undef, $format) =
6439 PVE
::Storage
::parse_volname
($storecfg, $archive);
6441 die "got unexpected vtype '$vtype'\n" if $vtype ne 'backup';
6443 die "got unexpected backup format '$format'\n" if $format ne 'pbs-vm';
6445 my $tmpdir = "/var/tmp/vzdumptmp$$";
6449 my $conffile = PVE
::QemuConfig-
>config_file($vmid);
6450 # disable interrupts (always do cleanups)
6454 local $SIG{HUP
} = sub { print STDERR
"got interrupt - ignored\n"; };
6456 # Note: $oldconf is undef if VM does not exists
6457 my $cfs_path = PVE
::QemuConfig-
>cfs_config_path($vmid);
6458 my $oldconf = PVE
::Cluster
::cfs_read_file
($cfs_path);
6459 my $new_conf_raw = '';
6461 my $rpcenv = PVE
::RPCEnvironment
::get
();
6470 local $SIG{PIPE
} = sub { die "interrupted by signal\n"; };
6472 my $cfgfn = "$tmpdir/qemu-server.conf";
6473 my $firewall_config_fn = "$tmpdir/fw.conf";
6474 my $index_fn = "$tmpdir/index.json";
6476 my $cmd = "restore";
6478 my $param = [$pbs_backup_name, "index.json", $index_fn];
6479 PVE
::Storage
::PBSPlugin
::run_raw_client_cmd
($scfg, $storeid, $cmd, $param);
6480 my $index = PVE
::Tools
::file_get_contents
($index_fn);
6481 $index = decode_json
($index);
6483 # print Dumper($index);
6484 foreach my $info (@{$index->{files
}}) {
6485 if ($info->{filename
} =~ m/^(drive-\S+).img.fidx$/) {
6487 if ($info->{size
} =~ m/^(\d+)$/) { # untaint size
6488 $devinfo->{$devname}->{size
} = $1;
6490 die "unable to parse file size in 'index.json' - got '$info->{size}'\n";
6495 my $is_qemu_server_backup = scalar(
6496 grep { $_->{filename
} eq 'qemu-server.conf.blob' } @{$index->{files
}}
6498 if (!$is_qemu_server_backup) {
6499 die "backup does not look like a qemu-server backup (missing 'qemu-server.conf' file)\n";
6501 my $has_firewall_config = scalar(grep { $_->{filename
} eq 'fw.conf.blob' } @{$index->{files
}});
6503 $param = [$pbs_backup_name, "qemu-server.conf", $cfgfn];
6504 PVE
::Storage
::PBSPlugin
::run_raw_client_cmd
($scfg, $storeid, $cmd, $param);
6506 if ($has_firewall_config) {
6507 $param = [$pbs_backup_name, "fw.conf", $firewall_config_fn];
6508 PVE
::Storage
::PBSPlugin
::run_raw_client_cmd
($scfg, $storeid, $cmd, $param);
6510 my $pve_firewall_dir = '/etc/pve/firewall';
6511 mkdir $pve_firewall_dir; # make sure the dir exists
6512 PVE
::Tools
::file_copy
($firewall_config_fn, "${pve_firewall_dir}/$vmid.fw");
6515 my $fh = IO
::File-
>new($cfgfn, "r") ||
6516 die "unable to read qemu-server.conf - $!\n";
6518 my $virtdev_hash = $parse_backup_hints->($rpcenv, $user, $storecfg, $fh, $devinfo, $options);
6520 # fixme: rate limit?
6522 # create empty/temp config
6523 PVE
::Tools
::file_set_contents
($conffile, "memory: 128\nlock: create");
6525 $restore_cleanup_oldconf->($storecfg, $vmid, $oldconf, $virtdev_hash) if $oldconf;
6528 my $map = $restore_allocate_devices->($storecfg, $virtdev_hash, $vmid);
6530 foreach my $virtdev (sort keys %$virtdev_hash) {
6531 my $d = $virtdev_hash->{$virtdev};
6532 next if $d->{is_cloudinit
}; # no need to restore cloudinit
6534 # this fails if storage is unavailable
6535 my $volid = $d->{volid
};
6536 my $path = PVE
::Storage
::path
($storecfg, $volid);
6538 # for live-restore we only want to preload the efidisk and TPM state
6539 next if $options->{live
} && $virtdev ne 'efidisk0' && $virtdev ne 'tpmstate0';
6541 my $pbs_restore_cmd = [
6542 '/usr/bin/pbs-restore',
6543 '--repository', $repo,
6545 "$d->{devname}.img.fidx",
6550 push @$pbs_restore_cmd, '--format', $d->{format
} if $d->{format
};
6551 push @$pbs_restore_cmd, '--keyfile', $keyfile if -e
$keyfile;
6553 if (PVE
::Storage
::volume_has_feature
($storecfg, 'sparseinit', $volid)) {
6554 push @$pbs_restore_cmd, '--skip-zero';
6557 my $dbg_cmdstring = PVE
::Tools
::cmd2string
($pbs_restore_cmd);
6558 print "restore proxmox backup image: $dbg_cmdstring\n";
6559 run_command
($pbs_restore_cmd);
6562 $fh->seek(0, 0) || die "seek failed - $!\n";
6564 my $cookie = { netcount
=> 0 };
6565 while (defined(my $line = <$fh>)) {
6566 $new_conf_raw .= restore_update_config_line
(
6578 if ($err || !$options->{live
}) {
6579 $restore_deactivate_volumes->($storecfg, $devinfo);
6585 $restore_destroy_volumes->($storecfg, $devinfo);
6589 if ($options->{live
}) {
6590 # keep lock during live-restore
6591 $new_conf_raw .= "\nlock: create";
6594 PVE
::Tools
::file_set_contents
($conffile, $new_conf_raw);
6596 PVE
::Cluster
::cfs_update
(); # make sure we read new file
6598 eval { rescan
($vmid, 1); };
6601 PVE
::AccessControl
::add_vm_to_pool
($vmid, $options->{pool
}) if $options->{pool
};
6603 if ($options->{live
}) {
6609 local $SIG{PIPE
} = sub { die "got signal ($!) - abort\n"; };
6611 my $conf = PVE
::QemuConfig-
>load_config($vmid);
6612 die "cannot do live-restore for template\n" if PVE
::QemuConfig-
>is_template($conf);
6614 # these special drives are already restored before start
6615 delete $devinfo->{'drive-efidisk0'};
6616 delete $devinfo->{'drive-tpmstate0-backup'};
6617 pbs_live_restore
($vmid, $conf, $storecfg, $devinfo, $repo, $keyfile, $pbs_backup_name);
6619 PVE
::QemuConfig-
>remove_lock($vmid, "create");
6623 sub pbs_live_restore
{
6624 my ($vmid, $conf, $storecfg, $restored_disks, $repo, $keyfile, $snap) = @_;
6626 print "starting VM for live-restore\n";
6627 print "repository: '$repo', snapshot: '$snap'\n";
6629 my $pbs_backing = {};
6630 for my $ds (keys %$restored_disks) {
6631 $ds =~ m/^drive-(.*)$/;
6633 $pbs_backing->{$confname} = {
6634 repository
=> $repo,
6636 archive
=> "$ds.img.fidx",
6638 $pbs_backing->{$confname}->{keyfile
} = $keyfile if -e
$keyfile;
6640 my $drive = parse_drive
($confname, $conf->{$confname});
6641 print "restoring '$ds' to '$drive->{file}'\n";
6644 my $drives_streamed = 0;
6646 # make sure HA doesn't interrupt our restore by stopping the VM
6647 if (PVE
::HA
::Config
::vm_is_ha_managed
($vmid)) {
6648 run_command
(['ha-manager', 'set', "vm:$vmid", '--state', 'started']);
6651 # start VM with backing chain pointing to PBS backup, environment vars for PBS driver
6652 # in QEMU (PBS_PASSWORD and PBS_FINGERPRINT) are already set by our caller
6653 vm_start_nolock
($storecfg, $vmid, $conf, {paused
=> 1, 'pbs-backing' => $pbs_backing}, {});
6655 my $qmeventd_fd = register_qmeventd_handle
($vmid);
6657 # begin streaming, i.e. data copy from PBS to target disk for every vol,
6658 # this will effectively collapse the backing image chain consisting of
6659 # [target <- alloc-track -> PBS snapshot] to just [target] (alloc-track
6660 # removes itself once all backing images vanish with 'auto-remove=on')
6662 for my $ds (sort keys %$restored_disks) {
6663 my $job_id = "restore-$ds";
6664 mon_cmd
($vmid, 'block-stream',
6665 'job-id' => $job_id,
6668 $jobs->{$job_id} = {};
6671 mon_cmd
($vmid, 'cont');
6672 qemu_drive_mirror_monitor
($vmid, undef, $jobs, 'auto', 0, 'stream');
6674 print "restore-drive jobs finished successfully, removing all tracking block devices"
6675 ." to disconnect from Proxmox Backup Server\n";
6677 for my $ds (sort keys %$restored_disks) {
6678 mon_cmd
($vmid, 'blockdev-del', 'node-name' => "$ds-pbs");
6681 close($qmeventd_fd);
6687 warn "An error occured during live-restore: $err\n";
6688 _do_vm_stop
($storecfg, $vmid, 1, 1, 10, 0, 1);
6689 die "live-restore failed\n";
6693 sub restore_vma_archive
{
6694 my ($archive, $vmid, $user, $opts, $comp) = @_;
6696 my $readfrom = $archive;
6698 my $cfg = PVE
::Storage
::config
();
6700 my $bwlimit = $opts->{bwlimit
};
6702 my $dbg_cmdstring = '';
6703 my $add_pipe = sub {
6705 push @$commands, $cmd;
6706 $dbg_cmdstring .= ' | ' if length($dbg_cmdstring);
6707 $dbg_cmdstring .= PVE
::Tools
::cmd2string
($cmd);
6712 if ($archive eq '-') {
6715 # If we use a backup from a PVE defined storage we also consider that
6716 # storage's rate limit:
6717 my (undef, $volid) = PVE
::Storage
::path_to_volume_id
($cfg, $archive);
6718 if (defined($volid)) {
6719 my ($sid, undef) = PVE
::Storage
::parse_volume_id
($volid);
6720 my $readlimit = PVE
::Storage
::get_bandwidth_limit
('restore', [$sid], $bwlimit);
6722 print STDERR
"applying read rate limit: $readlimit\n";
6723 my $cstream = ['cstream', '-t', $readlimit*1024, '--', $readfrom];
6724 $add_pipe->($cstream);
6730 my $info = PVE
::Storage
::decompressor_info
('vma', $comp);
6731 my $cmd = $info->{decompressor
};
6732 push @$cmd, $readfrom;
6736 my $tmpdir = "/var/tmp/vzdumptmp$$";
6739 # disable interrupts (always do cleanups)
6743 local $SIG{HUP
} = sub { warn "got interrupt - ignored\n"; };
6745 my $mapfifo = "/var/tmp/vzdumptmp$$.fifo";
6746 POSIX
::mkfifo
($mapfifo, 0600);
6748 my $openfifo = sub { open($fifofh, '>', $mapfifo) or die $! };
6750 $add_pipe->(['vma', 'extract', '-v', '-r', $mapfifo, $readfrom, $tmpdir]);
6757 my $rpcenv = PVE
::RPCEnvironment
::get
();
6759 my $conffile = PVE
::QemuConfig-
>config_file($vmid);
6761 # Note: $oldconf is undef if VM does not exist
6762 my $cfs_path = PVE
::QemuConfig-
>cfs_config_path($vmid);
6763 my $oldconf = PVE
::Cluster
::cfs_read_file
($cfs_path);
6764 my $new_conf_raw = '';
6768 my $print_devmap = sub {
6769 my $cfgfn = "$tmpdir/qemu-server.conf";
6771 # we can read the config - that is already extracted
6772 my $fh = IO
::File-
>new($cfgfn, "r") ||
6773 die "unable to read qemu-server.conf - $!\n";
6775 my $fwcfgfn = "$tmpdir/qemu-server.fw";
6777 my $pve_firewall_dir = '/etc/pve/firewall';
6778 mkdir $pve_firewall_dir; # make sure the dir exists
6779 PVE
::Tools
::file_copy
($fwcfgfn, "${pve_firewall_dir}/$vmid.fw");
6782 my $virtdev_hash = $parse_backup_hints->($rpcenv, $user, $cfg, $fh, $devinfo, $opts);
6784 foreach my $info (values %{$virtdev_hash}) {
6785 my $storeid = $info->{storeid
};
6786 next if defined($storage_limits{$storeid});
6788 my $limit = PVE
::Storage
::get_bandwidth_limit
('restore', [$storeid], $bwlimit) // 0;
6789 print STDERR
"rate limit for storage $storeid: $limit KiB/s\n" if $limit;
6790 $storage_limits{$storeid} = $limit * 1024;
6793 foreach my $devname (keys %$devinfo) {
6794 die "found no device mapping information for device '$devname'\n"
6795 if !$devinfo->{$devname}->{virtdev
};
6798 # create empty/temp config
6800 PVE
::Tools
::file_set_contents
($conffile, "memory: 128\n");
6801 $restore_cleanup_oldconf->($cfg, $vmid, $oldconf, $virtdev_hash);
6805 my $map = $restore_allocate_devices->($cfg, $virtdev_hash, $vmid);
6807 # print restore information to $fifofh
6808 foreach my $virtdev (sort keys %$virtdev_hash) {
6809 my $d = $virtdev_hash->{$virtdev};
6810 next if $d->{is_cloudinit
}; # no need to restore cloudinit
6812 my $storeid = $d->{storeid
};
6813 my $volid = $d->{volid
};
6816 if (my $limit = $storage_limits{$storeid}) {
6817 $map_opts .= "throttling.bps=$limit:throttling.group=$storeid:";
6820 my $write_zeros = 1;
6821 if (PVE
::Storage
::volume_has_feature
($cfg, 'sparseinit', $volid)) {
6825 my $path = PVE
::Storage
::path
($cfg, $volid);
6827 print $fifofh "${map_opts}format=$d->{format}:${write_zeros}:$d->{devname}=$path\n";
6829 print "map '$d->{devname}' to '$path' (write zeros = ${write_zeros})\n";
6832 $fh->seek(0, 0) || die "seek failed - $!\n";
6834 my $cookie = { netcount
=> 0 };
6835 while (defined(my $line = <$fh>)) {
6836 $new_conf_raw .= restore_update_config_line
(
6853 local $SIG{PIPE
} = sub { die "interrupted by signal\n"; };
6854 local $SIG{ALRM
} = sub { die "got timeout\n"; };
6856 $oldtimeout = alarm($timeout);
6863 if ($line =~ m/^DEV:\sdev_id=(\d+)\ssize:\s(\d+)\sdevname:\s(\S+)$/) {
6864 my ($dev_id, $size, $devname) = ($1, $2, $3);
6865 $devinfo->{$devname} = { size
=> $size, dev_id
=> $dev_id };
6866 } elsif ($line =~ m/^CTIME: /) {
6867 # we correctly received the vma config, so we can disable
6868 # the timeout now for disk allocation (set to 10 minutes, so
6869 # that we always timeout if something goes wrong)
6872 print $fifofh "done\n";
6873 my $tmp = $oldtimeout || 0;
6874 $oldtimeout = undef;
6881 print "restore vma archive: $dbg_cmdstring\n";
6882 run_command
($commands, input
=> $input, outfunc
=> $parser, afterfork
=> $openfifo);
6886 alarm($oldtimeout) if $oldtimeout;
6888 $restore_deactivate_volumes->($cfg, $devinfo);
6890 close($fifofh) if $fifofh;
6895 $restore_destroy_volumes->($cfg, $devinfo);
6899 PVE
::Tools
::file_set_contents
($conffile, $new_conf_raw);
6901 PVE
::Cluster
::cfs_update
(); # make sure we read new file
6903 eval { rescan
($vmid, 1); };
6906 PVE
::AccessControl
::add_vm_to_pool
($vmid, $opts->{pool
}) if $opts->{pool
};
6909 sub restore_tar_archive
{
6910 my ($archive, $vmid, $user, $opts) = @_;
6912 if ($archive ne '-') {
6913 my $firstfile = tar_archive_read_firstfile
($archive);
6914 die "ERROR: file '$archive' does not look like a QemuServer vzdump backup\n"
6915 if $firstfile ne 'qemu-server.conf';
6918 my $storecfg = PVE
::Storage
::config
();
6920 # avoid zombie disks when restoring over an existing VM -> cleanup first
6921 # pass keep_empty_config=1 to keep the config (thus VMID) reserved for us
6922 # skiplock=1 because qmrestore has set the 'create' lock itself already
6923 my $vmcfgfn = PVE
::QemuConfig-
>config_file($vmid);
6924 destroy_vm
($storecfg, $vmid, 1, { lock => 'restore' }) if -f
$vmcfgfn;
6926 my $tocmd = "/usr/lib/qemu-server/qmextract";
6928 $tocmd .= " --storage " . PVE
::Tools
::shellquote
($opts->{storage
}) if $opts->{storage
};
6929 $tocmd .= " --pool " . PVE
::Tools
::shellquote
($opts->{pool
}) if $opts->{pool
};
6930 $tocmd .= ' --prealloc' if $opts->{prealloc
};
6931 $tocmd .= ' --info' if $opts->{info
};
6933 # tar option "xf" does not autodetect compression when read from STDIN,
6934 # so we pipe to zcat
6935 my $cmd = "zcat -f|tar xf " . PVE
::Tools
::shellquote
($archive) . " " .
6936 PVE
::Tools
::shellquote
("--to-command=$tocmd");
6938 my $tmpdir = "/var/tmp/vzdumptmp$$";
6941 local $ENV{VZDUMP_TMPDIR
} = $tmpdir;
6942 local $ENV{VZDUMP_VMID
} = $vmid;
6943 local $ENV{VZDUMP_USER
} = $user;
6945 my $conffile = PVE
::QemuConfig-
>config_file($vmid);
6946 my $new_conf_raw = '';
6948 # disable interrupts (always do cleanups)
6952 local $SIG{HUP
} = sub { print STDERR
"got interrupt - ignored\n"; };
6960 local $SIG{PIPE
} = sub { die "interrupted by signal\n"; };
6962 if ($archive eq '-') {
6963 print "extracting archive from STDIN\n";
6964 run_command
($cmd, input
=> "<&STDIN");
6966 print "extracting archive '$archive'\n";
6970 return if $opts->{info
};
6974 my $statfile = "$tmpdir/qmrestore.stat";
6975 if (my $fd = IO
::File-
>new($statfile, "r")) {
6976 while (defined (my $line = <$fd>)) {
6977 if ($line =~ m/vzdump:([^\s:]*):(\S+)$/) {
6978 $map->{$1} = $2 if $1;
6980 print STDERR
"unable to parse line in statfile - $line\n";
6986 my $confsrc = "$tmpdir/qemu-server.conf";
6988 my $srcfd = IO
::File-
>new($confsrc, "r") || die "unable to open file '$confsrc'\n";
6990 my $cookie = { netcount
=> 0 };
6991 while (defined (my $line = <$srcfd>)) {
6992 $new_conf_raw .= restore_update_config_line
(
7003 tar_restore_cleanup
($storecfg, "$tmpdir/qmrestore.stat") if !$opts->{info
};
7009 PVE
::Tools
::file_set_contents
($conffile, $new_conf_raw);
7011 PVE
::Cluster
::cfs_update
(); # make sure we read new file
7013 eval { rescan
($vmid, 1); };
7017 sub foreach_storage_used_by_vm
{
7018 my ($conf, $func) = @_;
7022 PVE
::QemuConfig-
>foreach_volume($conf, sub {
7023 my ($ds, $drive) = @_;
7024 return if drive_is_cdrom
($drive);
7026 my $volid = $drive->{file
};
7028 my ($sid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
7029 $sidhash->{$sid} = $sid if $sid;
7032 foreach my $sid (sort keys %$sidhash) {
7037 my $qemu_snap_storage = {
7040 sub do_snapshots_with_qemu
{
7041 my ($storecfg, $volid, $deviceid) = @_;
7043 return if $deviceid =~ m/tpmstate0/;
7045 my $storage_name = PVE
::Storage
::parse_volume_id
($volid);
7046 my $scfg = $storecfg->{ids
}->{$storage_name};
7047 die "could not find storage '$storage_name'\n" if !defined($scfg);
7049 if ($qemu_snap_storage->{$scfg->{type
}} && !$scfg->{krbd
}){
7053 if ($volid =~ m/\.(qcow2|qed)$/){
7060 sub qga_check_running
{
7061 my ($vmid, $nowarn) = @_;
7063 eval { mon_cmd
($vmid, "guest-ping", timeout
=> 3); };
7065 warn "Qemu Guest Agent is not running - $@" if !$nowarn;
7071 sub template_create
{
7072 my ($vmid, $conf, $disk) = @_;
7074 my $storecfg = PVE
::Storage
::config
();
7076 PVE
::QemuConfig-
>foreach_volume($conf, sub {
7077 my ($ds, $drive) = @_;
7079 return if drive_is_cdrom
($drive);
7080 return if $disk && $ds ne $disk;
7082 my $volid = $drive->{file
};
7083 return if !PVE
::Storage
::volume_has_feature
($storecfg, 'template', $volid);
7085 my $voliddst = PVE
::Storage
::vdisk_create_base
($storecfg, $volid);
7086 $drive->{file
} = $voliddst;
7087 $conf->{$ds} = print_drive
($drive);
7088 PVE
::QemuConfig-
>write_config($vmid, $conf);
7092 sub convert_iscsi_path
{
7095 if ($path =~ m
|^iscsi
://([^/]+)/([^/]+)/(.+)$|) {
7100 my $initiator_name = get_initiator_name
();
7102 return "file.driver=iscsi,file.transport=tcp,file.initiator-name=$initiator_name,".
7103 "file.portal=$portal,file.target=$target,file.lun=$lun,driver=raw";
7106 die "cannot convert iscsi path '$path', unkown format\n";
7109 sub qemu_img_convert
{
7110 my ($src_volid, $dst_volid, $size, $snapname, $is_zero_initialized) = @_;
7112 my $storecfg = PVE
::Storage
::config
();
7113 my ($src_storeid, $src_volname) = PVE
::Storage
::parse_volume_id
($src_volid, 1);
7114 my ($dst_storeid, $dst_volname) = PVE
::Storage
::parse_volume_id
($dst_volid, 1);
7116 die "destination '$dst_volid' is not a valid volid form qemu-img convert\n" if !$dst_storeid;
7120 my $src_is_iscsi = 0;
7124 PVE
::Storage
::activate_volumes
($storecfg, [$src_volid], $snapname);
7125 my $src_scfg = PVE
::Storage
::storage_config
($storecfg, $src_storeid);
7126 $src_format = qemu_img_format
($src_scfg, $src_volname);
7127 $src_path = PVE
::Storage
::path
($storecfg, $src_volid, $snapname);
7128 $src_is_iscsi = ($src_path =~ m
|^iscsi
://|);
7129 $cachemode = 'none' if $src_scfg->{type
} eq 'zfspool';
7130 } elsif (-f
$src_volid) {
7131 $src_path = $src_volid;
7132 if ($src_path =~ m/\.($PVE::QemuServer::Drive::QEMU_FORMAT_RE)$/) {
7137 die "source '$src_volid' is not a valid volid nor path for qemu-img convert\n" if !$src_path;
7139 my $dst_scfg = PVE
::Storage
::storage_config
($storecfg, $dst_storeid);
7140 my $dst_format = qemu_img_format
($dst_scfg, $dst_volname);
7141 my $dst_path = PVE
::Storage
::path
($storecfg, $dst_volid);
7142 my $dst_is_iscsi = ($dst_path =~ m
|^iscsi
://|);
7145 push @$cmd, '/usr/bin/qemu-img', 'convert', '-p', '-n';
7146 push @$cmd, '-l', "snapshot.name=$snapname"
7147 if $snapname && $src_format && $src_format eq "qcow2";
7148 push @$cmd, '-t', 'none' if $dst_scfg->{type
} eq 'zfspool';
7149 push @$cmd, '-T', $cachemode if defined($cachemode);
7151 if ($src_is_iscsi) {
7152 push @$cmd, '--image-opts';
7153 $src_path = convert_iscsi_path
($src_path);
7154 } elsif ($src_format) {
7155 push @$cmd, '-f', $src_format;
7158 if ($dst_is_iscsi) {
7159 push @$cmd, '--target-image-opts';
7160 $dst_path = convert_iscsi_path
($dst_path);
7162 push @$cmd, '-O', $dst_format;
7165 push @$cmd, $src_path;
7167 if (!$dst_is_iscsi && $is_zero_initialized) {
7168 push @$cmd, "zeroinit:$dst_path";
7170 push @$cmd, $dst_path;
7175 if($line =~ m/\((\S+)\/100\
%\)/){
7177 my $transferred = int($size * $percent / 100);
7178 my $total_h = render_bytes
($size, 1);
7179 my $transferred_h = render_bytes
($transferred, 1);
7181 print "transferred $transferred_h of $total_h ($percent%)\n";
7186 eval { run_command
($cmd, timeout
=> undef, outfunc
=> $parser); };
7188 die "copy failed: $err" if $err;
7191 sub qemu_img_format
{
7192 my ($scfg, $volname) = @_;
7194 if ($scfg->{path
} && $volname =~ m/\.($PVE::QemuServer::Drive::QEMU_FORMAT_RE)$/) {
7201 sub qemu_drive_mirror
{
7202 my ($vmid, $drive, $dst_volid, $vmiddst, $is_zero_initialized, $jobs, $completion, $qga, $bwlimit, $src_bitmap) = @_;
7204 $jobs = {} if !$jobs;
7208 $jobs->{"drive-$drive"} = {};
7210 if ($dst_volid =~ /^nbd:/) {
7211 $qemu_target = $dst_volid;
7214 my $storecfg = PVE
::Storage
::config
();
7215 my ($dst_storeid, $dst_volname) = PVE
::Storage
::parse_volume_id
($dst_volid);
7217 my $dst_scfg = PVE
::Storage
::storage_config
($storecfg, $dst_storeid);
7219 $format = qemu_img_format
($dst_scfg, $dst_volname);
7221 my $dst_path = PVE
::Storage
::path
($storecfg, $dst_volid);
7223 $qemu_target = $is_zero_initialized ?
"zeroinit:$dst_path" : $dst_path;
7226 my $opts = { timeout
=> 10, device
=> "drive-$drive", mode
=> "existing", sync
=> "full", target
=> $qemu_target };
7227 $opts->{format
} = $format if $format;
7229 if (defined($src_bitmap)) {
7230 $opts->{sync
} = 'incremental';
7231 $opts->{bitmap
} = $src_bitmap;
7232 print "drive mirror re-using dirty bitmap '$src_bitmap'\n";
7235 if (defined($bwlimit)) {
7236 $opts->{speed
} = $bwlimit * 1024;
7237 print "drive mirror is starting for drive-$drive with bandwidth limit: ${bwlimit} KB/s\n";
7239 print "drive mirror is starting for drive-$drive\n";
7242 # if a job already runs for this device we get an error, catch it for cleanup
7243 eval { mon_cmd
($vmid, "drive-mirror", %$opts); };
7245 eval { PVE
::QemuServer
::qemu_blockjobs_cancel
($vmid, $jobs) };
7247 die "mirroring error: $err\n";
7250 qemu_drive_mirror_monitor
($vmid, $vmiddst, $jobs, $completion, $qga);
7253 # $completion can be either
7254 # 'complete': wait until all jobs are ready, block-job-complete them (default)
7255 # 'cancel': wait until all jobs are ready, block-job-cancel them
7256 # 'skip': wait until all jobs are ready, return with block jobs in ready state
7257 # 'auto': wait until all jobs disappear, only use for jobs which complete automatically
7258 sub qemu_drive_mirror_monitor
{
7259 my ($vmid, $vmiddst, $jobs, $completion, $qga, $op) = @_;
7261 $completion //= 'complete';
7265 my $err_complete = 0;
7267 my $starttime = time ();
7269 die "block job ('$op') timed out\n" if $err_complete > 300;
7271 my $stats = mon_cmd
($vmid, "query-block-jobs");
7274 my $running_jobs = {};
7275 for my $stat (@$stats) {
7276 next if $stat->{type
} ne $op;
7277 $running_jobs->{$stat->{device
}} = $stat;
7280 my $readycounter = 0;
7282 for my $job_id (sort keys %$jobs) {
7283 my $job = $running_jobs->{$job_id};
7285 my $vanished = !defined($job);
7286 my $complete = defined($jobs->{$job_id}->{complete
}) && $vanished;
7287 if($complete || ($vanished && $completion eq 'auto')) {
7288 print "$job_id: $op-job finished\n";
7289 delete $jobs->{$job_id};
7293 die "$job_id: '$op' has been cancelled\n" if !defined($job);
7295 my $busy = $job->{busy
};
7296 my $ready = $job->{ready
};
7297 if (my $total = $job->{len
}) {
7298 my $transferred = $job->{offset
} || 0;
7299 my $remaining = $total - $transferred;
7300 my $percent = sprintf "%.2f", ($transferred * 100 / $total);
7302 my $duration = $ctime - $starttime;
7303 my $total_h = render_bytes
($total, 1);
7304 my $transferred_h = render_bytes
($transferred, 1);
7306 my $status = sprintf(
7307 "transferred $transferred_h of $total_h ($percent%%) in %s",
7308 render_duration
($duration),
7313 $status .= ", still busy"; # shouldn't even happen? but mirror is weird
7315 $status .= ", ready";
7318 print "$job_id: $status\n" if !$jobs->{$job_id}->{ready
};
7319 $jobs->{$job_id}->{ready
} = $ready;
7322 $readycounter++ if $job->{ready
};
7325 last if scalar(keys %$jobs) == 0;
7327 if ($readycounter == scalar(keys %$jobs)) {
7328 print "all '$op' jobs are ready\n";
7330 # do the complete later (or has already been done)
7331 last if $completion eq 'skip' || $completion eq 'auto';
7333 if ($vmiddst && $vmiddst != $vmid) {
7334 my $agent_running = $qga && qga_check_running
($vmid);
7335 if ($agent_running) {
7336 print "freeze filesystem\n";
7337 eval { mon_cmd
($vmid, "guest-fsfreeze-freeze"); };
7339 print "suspend vm\n";
7340 eval { PVE
::QemuServer
::vm_suspend
($vmid, 1); };
7343 # if we clone a disk for a new target vm, we don't switch the disk
7344 PVE
::QemuServer
::qemu_blockjobs_cancel
($vmid, $jobs);
7346 if ($agent_running) {
7347 print "unfreeze filesystem\n";
7348 eval { mon_cmd
($vmid, "guest-fsfreeze-thaw"); };
7350 print "resume vm\n";
7351 eval { PVE
::QemuServer
::vm_resume
($vmid, 1, 1); };
7357 for my $job_id (sort keys %$jobs) {
7358 # try to switch the disk if source and destination are on the same guest
7359 print "$job_id: Completing block job_id...\n";
7362 if ($completion eq 'complete') {
7363 $op = 'block-job-complete';
7364 } elsif ($completion eq 'cancel') {
7365 $op = 'block-job-cancel';
7367 die "invalid completion value: $completion\n";
7369 eval { mon_cmd
($vmid, $op, device
=> $job_id) };
7370 if ($@ =~ m/cannot be completed/) {
7371 print "$job_id: block job cannot be completed, trying again.\n";
7374 print "$job_id: Completed successfully.\n";
7375 $jobs->{$job_id}->{complete
} = 1;
7386 eval { PVE
::QemuServer
::qemu_blockjobs_cancel
($vmid, $jobs) };
7387 die "block job ($op) error: $err";
7391 sub qemu_blockjobs_cancel
{
7392 my ($vmid, $jobs) = @_;
7394 foreach my $job (keys %$jobs) {
7395 print "$job: Cancelling block job\n";
7396 eval { mon_cmd
($vmid, "block-job-cancel", device
=> $job); };
7397 $jobs->{$job}->{cancel
} = 1;
7401 my $stats = mon_cmd
($vmid, "query-block-jobs");
7403 my $running_jobs = {};
7404 foreach my $stat (@$stats) {
7405 $running_jobs->{$stat->{device
}} = $stat;
7408 foreach my $job (keys %$jobs) {
7410 if (defined($jobs->{$job}->{cancel
}) && !defined($running_jobs->{$job})) {
7411 print "$job: Done.\n";
7412 delete $jobs->{$job};
7416 last if scalar(keys %$jobs) == 0;
7423 my ($storecfg, $vmid, $running, $drivename, $drive, $snapname,
7424 $newvmid, $storage, $format, $full, $newvollist, $jobs, $completion, $qga, $bwlimit, $conf) = @_;
7429 print "create linked clone of drive $drivename ($drive->{file})\n";
7430 $newvolid = PVE
::Storage
::vdisk_clone
($storecfg, $drive->{file
}, $newvmid, $snapname);
7431 push @$newvollist, $newvolid;
7434 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($drive->{file
});
7435 $storeid = $storage if $storage;
7437 my $dst_format = resolve_dst_disk_format
($storecfg, $storeid, $volname, $format);
7439 print "create full clone of drive $drivename ($drive->{file})\n";
7442 if (drive_is_cloudinit
($drive)) {
7443 $name = "vm-$newvmid-cloudinit";
7444 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
7445 if ($scfg->{path
}) {
7446 $name .= ".$dst_format";
7449 $size = PVE
::QemuServer
::Cloudinit
::CLOUDINIT_DISK_SIZE
;
7450 } elsif ($drivename eq 'efidisk0') {
7451 $size = get_efivars_size
($conf);
7452 } elsif ($drivename eq 'tpmstate0') {
7453 $size = PVE
::QemuServer
::Drive
::TPMSTATE_DISK_SIZE
;
7455 ($size) = PVE
::Storage
::volume_size_info
($storecfg, $drive->{file
}, 10);
7457 $newvolid = PVE
::Storage
::vdisk_alloc
(
7458 $storecfg, $storeid, $newvmid, $dst_format, $name, ($size/1024)
7460 push @$newvollist, $newvolid;
7462 PVE
::Storage
::activate_volumes
($storecfg, [$newvolid]);
7464 if (drive_is_cloudinit
($drive)) {
7465 # when cloning multiple disks (e.g. during clone_vm) it might be the last disk
7466 # if this is the case, we have to complete any block-jobs still there from
7467 # previous drive-mirrors
7468 if (($completion eq 'complete') && (scalar(keys %$jobs) > 0)) {
7469 qemu_drive_mirror_monitor
($vmid, $newvmid, $jobs, $completion, $qga);
7474 my $sparseinit = PVE
::Storage
::volume_has_feature
($storecfg, 'sparseinit', $newvolid);
7475 if (!$running || $snapname) {
7476 # TODO: handle bwlimits
7477 if ($drivename eq 'efidisk0') {
7478 # the relevant data on the efidisk may be smaller than the source
7479 # e.g. on RBD/ZFS, so we use dd to copy only the amount
7480 # that is given by the OVMF_VARS.fd
7481 my $src_path = PVE
::Storage
::path
($storecfg, $drive->{file
});
7482 my $dst_path = PVE
::Storage
::path
($storecfg, $newvolid);
7484 # better for Ceph if block size is not too small, see bug #3324
7487 run_command
(['qemu-img', 'dd', '-n', '-O', $dst_format, "bs=$bs", "osize=$size",
7488 "if=$src_path", "of=$dst_path"]);
7490 qemu_img_convert
($drive->{file
}, $newvolid, $size, $snapname, $sparseinit);
7494 die "cannot move TPM state while VM is running\n" if $drivename eq 'tpmstate0';
7496 my $kvmver = get_running_qemu_version
($vmid);
7497 if (!min_version
($kvmver, 2, 7)) {
7498 die "drive-mirror with iothread requires qemu version 2.7 or higher\n"
7499 if $drive->{iothread
};
7502 qemu_drive_mirror
($vmid, $drivename, $newvolid, $newvmid, $sparseinit, $jobs,
7503 $completion, $qga, $bwlimit);
7508 my ($size) = eval { PVE
::Storage
::volume_size_info
($storecfg, $newvolid, 10) };
7511 $disk->{format
} = undef;
7512 $disk->{file
} = $newvolid;
7513 $disk->{size
} = $size if defined($size);
7518 sub get_running_qemu_version
{
7520 my $res = mon_cmd
($vmid, "query-version");
7521 return "$res->{qemu}->{major}.$res->{qemu}->{minor}";
7524 sub qemu_use_old_bios_files
{
7525 my ($machine_type) = @_;
7527 return if !$machine_type;
7529 my $use_old_bios_files = undef;
7531 if ($machine_type =~ m/^(\S+)\.pxe$/) {
7533 $use_old_bios_files = 1;
7535 my $version = extract_version
($machine_type, kvm_user_version
());
7536 # Note: kvm version < 2.4 use non-efi pxe files, and have problems when we
7537 # load new efi bios files on migration. So this hack is required to allow
7538 # live migration from qemu-2.2 to qemu-2.4, which is sometimes used when
7539 # updrading from proxmox-ve-3.X to proxmox-ve 4.0
7540 $use_old_bios_files = !min_version
($version, 2, 4);
7543 return ($use_old_bios_files, $machine_type);
7546 sub get_efivars_size
{
7548 my $arch = get_vm_arch
($conf);
7549 my $efidisk = $conf->{efidisk0
} ? parse_drive
('efidisk0', $conf->{efidisk0
}) : undef;
7550 my $smm = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
7551 my (undef, $ovmf_vars) = get_ovmf_files
($arch, $efidisk, $smm);
7552 die "uefi vars image '$ovmf_vars' not found\n" if ! -f
$ovmf_vars;
7553 return -s
$ovmf_vars;
7556 sub update_efidisk_size
{
7559 return if !defined($conf->{efidisk0
});
7561 my $disk = PVE
::QemuServer
::parse_drive
('efidisk0', $conf->{efidisk0
});
7562 $disk->{size
} = get_efivars_size
($conf);
7563 $conf->{efidisk0
} = print_drive
($disk);
7568 sub update_tpmstate_size
{
7571 my $disk = PVE
::QemuServer
::parse_drive
('tpmstate0', $conf->{tpmstate0
});
7572 $disk->{size
} = PVE
::QemuServer
::Drive
::TPMSTATE_DISK_SIZE
;
7573 $conf->{tpmstate0
} = print_drive
($disk);
7576 sub create_efidisk
($$$$$$$) {
7577 my ($storecfg, $storeid, $vmid, $fmt, $arch, $efidisk, $smm) = @_;
7579 my (undef, $ovmf_vars) = get_ovmf_files
($arch, $efidisk, $smm);
7580 die "EFI vars default image not found\n" if ! -f
$ovmf_vars;
7582 my $vars_size_b = -s
$ovmf_vars;
7583 my $vars_size = PVE
::Tools
::convert_size
($vars_size_b, 'b' => 'kb');
7584 my $volid = PVE
::Storage
::vdisk_alloc
($storecfg, $storeid, $vmid, $fmt, undef, $vars_size);
7585 PVE
::Storage
::activate_volumes
($storecfg, [$volid]);
7587 qemu_img_convert
($ovmf_vars, $volid, $vars_size_b, undef, 0);
7588 my ($size) = PVE
::Storage
::volume_size_info
($storecfg, $volid, 3);
7590 return ($volid, $size/1024);
7593 sub vm_iothreads_list
{
7596 my $res = mon_cmd
($vmid, 'query-iothreads');
7599 foreach my $iothread (@$res) {
7600 $iothreads->{ $iothread->{id
} } = $iothread->{"thread-id"};
7607 my ($conf, $drive) = @_;
7611 if (!$conf->{scsihw
} || ($conf->{scsihw
} =~ m/^lsi/)) {
7613 } elsif ($conf->{scsihw
} && ($conf->{scsihw
} eq 'virtio-scsi-single')) {
7619 my $controller = int($drive->{index} / $maxdev);
7620 my $controller_prefix = ($conf->{scsihw
} && $conf->{scsihw
} eq 'virtio-scsi-single')
7624 return ($maxdev, $controller, $controller_prefix);
7627 sub windows_version
{
7630 return 0 if !$ostype;
7634 if($ostype eq 'wxp' || $ostype eq 'w2k3' || $ostype eq 'w2k') {
7636 } elsif($ostype eq 'w2k8' || $ostype eq 'wvista') {
7638 } elsif ($ostype =~ m/^win(\d+)$/) {
7645 sub resolve_dst_disk_format
{
7646 my ($storecfg, $storeid, $src_volname, $format) = @_;
7647 my ($defFormat, $validFormats) = PVE
::Storage
::storage_default_format
($storecfg, $storeid);
7650 # if no target format is specified, use the source disk format as hint
7652 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
7653 $format = qemu_img_format
($scfg, $src_volname);
7659 # test if requested format is supported - else use default
7660 my $supported = grep { $_ eq $format } @$validFormats;
7661 $format = $defFormat if !$supported;
7665 # NOTE: if this logic changes, please update docs & possibly gui logic
7666 sub find_vmstate_storage
{
7667 my ($conf, $storecfg) = @_;
7669 # first, return storage from conf if set
7670 return $conf->{vmstatestorage
} if $conf->{vmstatestorage
};
7672 my ($target, $shared, $local);
7674 foreach_storage_used_by_vm
($conf, sub {
7676 my $scfg = PVE
::Storage
::storage_config
($storecfg, $sid);
7677 my $dst = $scfg->{shared
} ? \
$shared : \
$local;
7678 $$dst = $sid if !$$dst || $scfg->{path
}; # prefer file based storage
7681 # second, use shared storage where VM has at least one disk
7682 # third, use local storage where VM has at least one disk
7683 # fall back to local storage
7684 $target = $shared // $local // 'local';
7690 my ($uuid, $uuid_str);
7691 UUID
::generate
($uuid);
7692 UUID
::unparse
($uuid, $uuid_str);
7696 sub generate_smbios1_uuid
{
7697 return "uuid=".generate_uuid
();
7703 mon_cmd
($vmid, 'nbd-server-stop');
7706 sub create_reboot_request
{
7708 open(my $fh, '>', "/run/qemu-server/$vmid.reboot")
7709 or die "failed to create reboot trigger file: $!\n";
7713 sub clear_reboot_request
{
7715 my $path = "/run/qemu-server/$vmid.reboot";
7718 $res = unlink($path);
7719 die "could not remove reboot request for $vmid: $!"
7720 if !$res && $! != POSIX
::ENOENT
;
7725 sub bootorder_from_legacy
{
7726 my ($conf, $bootcfg) = @_;
7728 my $boot = $bootcfg->{legacy
} || $boot_fmt->{legacy
}->{default};
7729 my $bootindex_hash = {};
7731 foreach my $o (split(//, $boot)) {
7732 $bootindex_hash->{$o} = $i*100;
7738 PVE
::QemuConfig-
>foreach_volume($conf, sub {
7739 my ($ds, $drive) = @_;
7741 if (drive_is_cdrom
($drive, 1)) {
7742 if ($bootindex_hash->{d
}) {
7743 $bootorder->{$ds} = $bootindex_hash->{d
};
7744 $bootindex_hash->{d
} += 1;
7746 } elsif ($bootindex_hash->{c
}) {
7747 $bootorder->{$ds} = $bootindex_hash->{c
}
7748 if $conf->{bootdisk
} && $conf->{bootdisk
} eq $ds;
7749 $bootindex_hash->{c
} += 1;
7753 if ($bootindex_hash->{n
}) {
7754 for (my $i = 0; $i < $MAX_NETS; $i++) {
7755 my $netname = "net$i";
7756 next if !$conf->{$netname};
7757 $bootorder->{$netname} = $bootindex_hash->{n
};
7758 $bootindex_hash->{n
} += 1;
7765 # Generate default device list for 'boot: order=' property. Matches legacy
7766 # default boot order, but with explicit device names. This is important, since
7767 # the fallback for when neither 'order' nor the old format is specified relies
7768 # on 'bootorder_from_legacy' above, and it would be confusing if this diverges.
7769 sub get_default_bootdevices
{
7775 my $first = PVE
::QemuServer
::Drive
::resolve_first_disk
($conf, 0);
7776 push @ret, $first if $first;
7779 $first = PVE
::QemuServer
::Drive
::resolve_first_disk
($conf, 1);
7780 push @ret, $first if $first;
7783 for (my $i = 0; $i < $MAX_NETS; $i++) {
7784 my $netname = "net$i";
7785 next if !$conf->{$netname};
7786 push @ret, $netname;
7793 sub device_bootorder
{
7796 return bootorder_from_legacy
($conf) if !defined($conf->{boot
});
7798 my $boot = parse_property_string
($boot_fmt, $conf->{boot
});
7801 if (!defined($boot) || $boot->{legacy
}) {
7802 $bootorder = bootorder_from_legacy
($conf, $boot);
7803 } elsif ($boot->{order
}) {
7804 my $i = 100; # start at 100 to allow user to insert devices before us with -args
7805 for my $dev (PVE
::Tools
::split_list
($boot->{order
})) {
7806 $bootorder->{$dev} = $i++;
7813 sub register_qmeventd_handle
{
7817 my $peer = "/var/run/qmeventd.sock";
7822 $fh = IO
::Socket
::UNIX-
>new(Peer
=> $peer, Blocking
=> 0, Timeout
=> 1);
7824 if ($! != EINTR
&& $! != EAGAIN
) {
7825 die "unable to connect to qmeventd socket (vmid: $vmid) - $!\n";
7828 die "unable to connect to qmeventd socket (vmid: $vmid) - timeout "
7829 . "after $count retries\n";
7834 # send handshake to mark VM as backing up
7835 print $fh to_json
({vzdump
=> {vmid
=> "$vmid"}});
7837 # return handle to be closed later when inhibit is no longer required
7841 # bash completion helper
7843 sub complete_backup_archives
{
7844 my ($cmdname, $pname, $cvalue) = @_;
7846 my $cfg = PVE
::Storage
::config
();
7850 if ($cvalue =~ m/^([^:]+):/) {
7854 my $data = PVE
::Storage
::template_list
($cfg, $storeid, 'backup');
7857 foreach my $id (keys %$data) {
7858 foreach my $item (@{$data->{$id}}) {
7859 next if $item->{format
} !~ m/^vma\.(${\PVE::Storage::Plugin::COMPRESSOR_RE})$/;
7860 push @$res, $item->{volid
} if defined($item->{volid
});
7867 my $complete_vmid_full = sub {
7870 my $idlist = vmstatus
();
7874 foreach my $id (keys %$idlist) {
7875 my $d = $idlist->{$id};
7876 if (defined($running)) {
7877 next if $d->{template
};
7878 next if $running && $d->{status
} ne 'running';
7879 next if !$running && $d->{status
} eq 'running';
7888 return &$complete_vmid_full();
7891 sub complete_vmid_stopped
{
7892 return &$complete_vmid_full(0);
7895 sub complete_vmid_running
{
7896 return &$complete_vmid_full(1);
7899 sub complete_storage
{
7901 my $cfg = PVE
::Storage
::config
();
7902 my $ids = $cfg->{ids
};
7905 foreach my $sid (keys %$ids) {
7906 next if !PVE
::Storage
::storage_check_enabled
($cfg, $sid, undef, 1);
7907 next if !$ids->{$sid}->{content
}->{images
};
7914 sub complete_migration_storage
{
7915 my ($cmd, $param, $current_value, $all_args) = @_;
7917 my $targetnode = @$all_args[1];
7919 my $cfg = PVE
::Storage
::config
();
7920 my $ids = $cfg->{ids
};
7923 foreach my $sid (keys %$ids) {
7924 next if !PVE
::Storage
::storage_check_enabled
($cfg, $sid, $targetnode, 1);
7925 next if !$ids->{$sid}->{content
}->{images
};
7934 my $qmpstatus = eval {
7935 PVE
::QemuConfig
::assert_config_exists_on_node
($vmid);
7936 mon_cmd
($vmid, "query-status");
7939 return $qmpstatus && $qmpstatus->{status
} eq "paused";
7942 sub check_volume_storage_type
{
7943 my ($storecfg, $vol) = @_;
7945 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($vol);
7946 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
7947 my ($vtype) = PVE
::Storage
::parse_volname
($storecfg, $vol);
7949 die "storage '$storeid' does not support content-type '$vtype'\n"
7950 if !$scfg->{content
}->{$vtype};
projects / qemu-server.git / blob