1 package PVE
::QemuServer
;
11 use File
::Copy
qw(copy);
22 use List
::Util
qw(first);
25 use Storable
qw(dclone);
26 use Time
::HiRes
qw(gettimeofday usleep);
30 use PVE
::Cluster
qw(cfs_register_file cfs_read_file cfs_write_file);
33 use PVE
::DataCenterConfig
;
34 use PVE
::Exception
qw(raise raise_param_exc);
35 use PVE
::Format
qw(render_duration render_bytes);
36 use PVE
::GuestHelpers
qw(safe_string_ne safe_num_ne safe_boolean_ne);
37 use PVE
::Mapping
::PCI
;
38 use PVE
::Mapping
::USB
;
40 use PVE
::JSONSchema
qw(get_standard_option parse_property_string);
43 use PVE
::RESTEnvironment
qw(log_warn);
44 use PVE
::RPCEnvironment
;
48 use PVE
::Tools
qw(run_command file_read_firstline file_get_contents dir_glob_foreach get_host_arch $IPV6RE);
52 use PVE
::QemuServer
::Helpers
qw(config_aware_timeout min_version windows_version);
53 use PVE
::QemuServer
::Cloudinit
;
54 use PVE
::QemuServer
::CGroup
;
55 use PVE
::QemuServer
::CPUConfig
qw(print_cpu_device get_cpu_options get_cpu_bitness is_native_arch);
56 use PVE
::QemuServer
::Drive
qw(is_valid_drivename drive_is_cloudinit drive_is_cdrom drive_is_read_only parse_drive print_drive);
57 use PVE
::QemuServer
::Machine
;
58 use PVE
::QemuServer
::Memory
qw(get_current_memory);
59 use PVE
::QemuServer
::Monitor
qw(mon_cmd);
60 use PVE
::QemuServer
::PCI
qw(print_pci_addr print_pcie_addr print_pcie_root_port parse_hostpci);
61 use PVE
::QemuServer
::QMPHelpers
qw(qemu_deviceadd qemu_devicedel qemu_objectadd qemu_objectdel);
62 use PVE
::QemuServer
::USB
;
66 require PVE
::Network
::SDN
::Zones
;
67 require PVE
::Network
::SDN
::Vnets
;
71 my $EDK2_FW_BASE = '/usr/share/pve-edk2-firmware/';
75 "$EDK2_FW_BASE/OVMF_CODE_4M.fd",
76 "$EDK2_FW_BASE/OVMF_VARS_4M.fd",
79 "$EDK2_FW_BASE/OVMF_CODE_4M.fd",
80 "$EDK2_FW_BASE/OVMF_VARS_4M.ms.fd",
83 "$EDK2_FW_BASE/OVMF_CODE_4M.secboot.fd",
84 "$EDK2_FW_BASE/OVMF_VARS_4M.fd",
87 "$EDK2_FW_BASE/OVMF_CODE_4M.secboot.fd",
88 "$EDK2_FW_BASE/OVMF_VARS_4M.ms.fd",
90 # FIXME: These are legacy 2MB-sized images that modern OVMF doesn't supports to build
91 # anymore. how can we deperacate this sanely without breaking existing instances, or using
92 # older backups and snapshot?
94 "$EDK2_FW_BASE/OVMF_CODE.fd",
95 "$EDK2_FW_BASE/OVMF_VARS.fd",
100 "$EDK2_FW_BASE/AAVMF_CODE.fd",
101 "$EDK2_FW_BASE/AAVMF_VARS.fd",
106 my $cpuinfo = PVE
::ProcFSTools
::read_cpuinfo
();
108 # Note about locking: we use flock on the config file protect against concurent actions.
109 # Aditionaly, we have a 'lock' setting in the config file. This can be set to 'migrate',
110 # 'backup', 'snapshot' or 'rollback'. Most actions are not allowed when such lock is set.
111 # But you can ignore this kind of lock with the --skiplock flag.
119 PVE
::JSONSchema
::register_standard_option
('pve-qm-stateuri', {
120 description
=> "Some command save/restore state from this location.",
126 PVE
::JSONSchema
::register_standard_option
('pve-qemu-machine', {
127 description
=> "Specifies the QEMU machine type.",
129 pattern
=> '(pc|pc(-i440fx)?-\d+(\.\d+)+(\+pve\d+)?(\.pxe)?|q35|pc-q35-\d+(\.\d+)+(\+pve\d+)?(\.pxe)?|virt(?:-\d+(\.\d+)+)?(\+pve\d+)?)',
134 # FIXME: remove in favor of just using the INotify one, it's cached there exactly the same way
137 $nodename_cache //= PVE
::INotify
::nodename
();
138 return $nodename_cache;
145 enum
=> [qw(i6300esb ib700)],
146 description
=> "Watchdog type to emulate.",
147 default => 'i6300esb',
152 enum
=> [qw(reset shutdown poweroff pause debug none)],
153 description
=> "The action to perform if after activation the guest fails to poll the watchdog in time.",
157 PVE
::JSONSchema
::register_format
('pve-qm-watchdog', $watchdog_fmt);
161 description
=> "Enable/disable communication with a QEMU Guest Agent (QGA) running in the VM.",
166 fstrim_cloned_disks
=> {
167 description
=> "Run fstrim after moving a disk or migrating the VM.",
172 'freeze-fs-on-backup' => {
173 description
=> "Freeze/thaw guest filesystems on backup for consistency.",
179 description
=> "Select the agent type",
183 enum
=> [qw(virtio isa)],
189 description
=> "Select the VGA type.",
194 enum
=> [qw(cirrus qxl qxl2 qxl3 qxl4 none serial0 serial1 serial2 serial3 std virtio virtio-gl vmware)],
197 description
=> "Sets the VGA memory (in MiB). Has no effect with serial display.",
204 description
=> 'Enable a specific clipboard. If not set, depending on the display type the'
205 .' SPICE one will be added. Migration with VNC clipboard is not yet supported!',
216 description
=> "The size of the file in MB.",
220 pattern
=> '[a-zA-Z0-9\-]+',
222 format_description
=> 'string',
223 description
=> "The name of the file. Will be prefixed with 'pve-shm-'. Default is the VMID. Will be deleted when the VM is stopped.",
230 enum
=> [qw(ich9-intel-hda intel-hda AC97)],
231 description
=> "Configure an audio device."
235 enum
=> ['spice', 'none'],
238 description
=> "Driver backend for the audio device."
242 my $spice_enhancements_fmt = {
247 description
=> "Enable folder sharing via SPICE. Needs Spice-WebDAV daemon installed in the VM."
251 enum
=> ['off', 'all', 'filter'],
254 description
=> "Enable video streaming. Uses compression for detected video streams."
261 enum
=> ['/dev/urandom', '/dev/random', '/dev/hwrng'],
263 description
=> "The file on the host to gather entropy from. In most cases '/dev/urandom'"
264 ." should be preferred over '/dev/random' to avoid entropy-starvation issues on the"
265 ." host. Using urandom does *not* decrease security in any meaningful way, as it's"
266 ." still seeded from real entropy, and the bytes provided will most likely be mixed"
267 ." with real entropy on the guest as well. '/dev/hwrng' can be used to pass through"
268 ." a hardware RNG from the host.",
272 description
=> "Maximum bytes of entropy allowed to get injected into the guest every"
273 ." 'period' milliseconds. Prefer a lower value when using '/dev/random' as source. Use"
274 ." `0` to disable limiting (potentially dangerous!).",
277 # default is 1 KiB/s, provides enough entropy to the guest to avoid boot-starvation issues
278 # (e.g. systemd etc...) while allowing no chance of overwhelming the host, provided we're
279 # reading from /dev/urandom
284 description
=> "Every 'period' milliseconds the entropy-injection quota is reset, allowing"
285 ." the guest to retrieve another 'max_bytes' of entropy.",
291 my $meta_info_fmt = {
294 description
=> "The guest creation timestamp as UNIX epoch time",
300 description
=> "The QEMU (machine) version from the time this VM was created.",
301 pattern
=> '\d+(\.\d+)+',
310 description
=> "Specifies whether a VM will be started during system bootup.",
316 description
=> "Automatic restart after crash (currently ignored).",
321 type
=> 'string', format
=> 'pve-hotplug-features',
322 description
=> "Selectively enable hotplug features. This is a comma separated list of"
323 ." hotplug features: 'network', 'disk', 'cpu', 'memory', 'usb' and 'cloudinit'. Use '0' to disable"
324 ." hotplug completely. Using '1' as value is an alias for the default `network,disk,usb`."
325 ." USB hotplugging is possible for guests with machine version >= 7.1 and ostype l26 or"
327 default => 'network,disk,usb',
332 description
=> "Allow reboot. If set to '0' the VM exit on reboot.",
338 description
=> "Lock/unlock the VM.",
339 enum
=> [qw(backup clone create migrate rollback snapshot snapshot-delete suspending suspended)],
344 description
=> "Limit of CPU usage.",
345 verbose_description
=> "Limit of CPU usage.\n\nNOTE: If the computer has 2 CPUs, it has"
346 ." total of '2' CPU time. Value '0' indicates no CPU limit.",
354 description
=> "CPU weight for a VM, will be clamped to [1, 10000] in cgroup v2.",
355 verbose_description
=> "CPU weight for a VM. Argument is used in the kernel fair scheduler."
356 ." The larger the number is, the more CPU time this VM gets. Number is relative to"
357 ." weights of all the other running VMs.",
360 default => 'cgroup v1: 1024, cgroup v2: 100',
365 description
=> "Memory properties.",
366 format
=> $PVE::QemuServer
::Memory
::memory_fmt
371 description
=> "Amount of target RAM for the VM in MiB. Using zero disables the ballon driver.",
377 description
=> "Amount of memory shares for auto-ballooning. The larger the number is, the"
378 ." more memory this VM gets. Number is relative to weights of all other running VMs."
379 ." Using zero disables auto-ballooning. Auto-ballooning is done by pvestatd.",
387 description
=> "Keyboard layout for VNC server. This option is generally not required and"
388 ." is often better handled from within the guest OS.",
389 enum
=> PVE
::Tools
::kvmkeymaplist
(),
394 type
=> 'string', format
=> 'dns-name',
395 description
=> "Set a name for the VM. Only used on the configuration web interface.",
400 description
=> "SCSI controller model",
401 enum
=> [qw(lsi lsi53c810 virtio-scsi-pci virtio-scsi-single megasas pvscsi)],
407 description
=> "Description for the VM. Shown in the web-interface VM's summary."
408 ." This is saved as comment inside the configuration file.",
409 maxLength
=> 1024 * 8,
414 enum
=> [qw(other wxp w2k w2k3 w2k8 wvista win7 win8 win10 win11 l24 l26 solaris)],
415 description
=> "Specify guest operating system.",
416 verbose_description
=> <<EODESC,
417 Specify guest operating system. This is used to enable special
418 optimization/features for specific operating systems:
421 other;; unspecified OS
422 wxp;; Microsoft Windows XP
423 w2k;; Microsoft Windows 2000
424 w2k3;; Microsoft Windows 2003
425 w2k8;; Microsoft Windows 2008
426 wvista;; Microsoft Windows Vista
427 win7;; Microsoft Windows 7
428 win8;; Microsoft Windows 8/2012/2012r2
429 win10;; Microsoft Windows 10/2016/2019
430 win11;; Microsoft Windows 11/2022
431 l24;; Linux 2.4 Kernel
432 l26;; Linux 2.6 - 6.X Kernel
433 solaris;; Solaris/OpenSolaris/OpenIndiania kernel
438 type
=> 'string', format
=> 'pve-qm-boot',
439 description
=> "Specify guest boot order. Use the 'order=' sub-property as usage with no"
440 ." key or 'legacy=' is deprecated.",
444 type
=> 'string', format
=> 'pve-qm-bootdisk',
445 description
=> "Enable booting from specified disk. Deprecated: Use 'boot: order=foo;bar' instead.",
446 pattern
=> '(ide|sata|scsi|virtio)\d+',
451 description
=> "The number of CPUs. Please use option -sockets instead.",
458 description
=> "The number of CPU sockets.",
465 description
=> "The number of cores per socket.",
472 description
=> "Enable/disable NUMA.",
478 description
=> "Enable/disable hugepages memory.",
479 enum
=> [qw(any 2 1024)],
485 description
=> "Use together with hugepages. If enabled, hugepages will not not be deleted"
486 ." after VM shutdown and can be used for subsequent starts.",
491 description
=> "Number of hotplugged vcpus.",
498 description
=> "Enable/disable ACPI.",
503 description
=> "Enable/disable communication with the QEMU Guest Agent and its properties.",
505 format
=> $agent_fmt,
510 description
=> "Enable/disable KVM hardware virtualization.",
516 description
=> "Enable/disable time drift fix.",
522 description
=> "Set the real time clock (RTC) to local time. This is enabled by default if"
523 ." the `ostype` indicates a Microsoft Windows OS.",
528 description
=> "Freeze CPU at startup (use 'c' monitor command to start execution).",
532 type
=> 'string', format
=> $vga_fmt,
533 description
=> "Configure the VGA hardware.",
534 verbose_description
=> "Configure the VGA Hardware. If you want to use high resolution"
535 ." modes (>= 1280x1024x16) you may need to increase the vga memory option. Since QEMU"
536 ." 2.9 the default VGA display type is 'std' for all OS types besides some Windows"
537 ." versions (XP and older) which use 'cirrus'. The 'qxl' option enables the SPICE"
538 ." display server. For win* OS you can select how many independent displays you want,"
539 ." Linux guests can add displays them self.\nYou can also run without any graphic card,"
540 ." using a serial device as terminal.",
544 type
=> 'string', format
=> 'pve-qm-watchdog',
545 description
=> "Create a virtual hardware watchdog device.",
546 verbose_description
=> "Create a virtual hardware watchdog device. Once enabled (by a guest"
547 ." action), the watchdog must be periodically polled by an agent inside the guest or"
548 ." else the watchdog will reset the guest (or execute the respective action specified)",
553 typetext
=> "(now | YYYY-MM-DD | YYYY-MM-DDTHH:MM:SS)",
554 description
=> "Set the initial date of the real time clock. Valid format for date are:"
555 ."'now' or '2006-06-17T16:01:21' or '2006-06-17'.",
556 pattern
=> '(now|\d{4}-\d{1,2}-\d{1,2}(T\d{1,2}:\d{1,2}:\d{1,2})?)',
559 startup
=> get_standard_option
('pve-startup-order'),
563 description
=> "Enable/disable Template.",
569 description
=> "Arbitrary arguments passed to kvm.",
570 verbose_description
=> <<EODESCR,
571 Arbitrary arguments passed to kvm, for example:
573 args: -no-reboot -smbios 'type=0,vendor=FOO'
575 NOTE: this option is for experts only.
582 description
=> "Enable/disable the USB tablet device.",
583 verbose_description
=> "Enable/disable the USB tablet device. This device is usually needed"
584 ." to allow absolute mouse positioning with VNC. Else the mouse runs out of sync with"
585 ." normal VNC clients. If you're running lots of console-only guests on one host, you"
586 ." may consider disabling this to save some context switches. This is turned off by"
587 ." default if you use spice (`qm set <vmid> --vga qxl`).",
592 description
=> "Set maximum speed (in MB/s) for migrations. Value 0 is no limit.",
596 migrate_downtime
=> {
599 description
=> "Set maximum tolerated downtime (in seconds) for migrations.",
605 type
=> 'string', format
=> 'pve-qm-ide',
606 typetext
=> '<volume>',
607 description
=> "This is an alias for option -ide2",
611 description
=> "Emulated CPU type.",
613 format
=> 'pve-vm-cpu-conf',
615 parent
=> get_standard_option
('pve-snapshot-name', {
617 description
=> "Parent snapshot name. This is used internally, and should not be modified.",
621 description
=> "Timestamp for snapshots.",
627 type
=> 'string', format
=> 'pve-volume-id',
628 description
=> "Reference to a volume which stores the VM state. This is used internally"
631 vmstatestorage
=> get_standard_option
('pve-storage-id', {
632 description
=> "Default storage for VM state volumes/files.",
635 runningmachine
=> get_standard_option
('pve-qemu-machine', {
636 description
=> "Specifies the QEMU machine type of the running vm. This is used internally"
640 description
=> "Specifies the QEMU '-cpu' parameter of the running vm. This is used"
641 ." internally for snapshots.",
644 pattern
=> $PVE::QemuServer
::CPUConfig
::qemu_cmdline_cpu_re
,
645 format_description
=> 'QEMU -cpu parameter'
647 machine
=> get_standard_option
('pve-qemu-machine'),
649 description
=> "Virtual processor architecture. Defaults to the host.",
652 enum
=> [qw(x86_64 aarch64)],
655 description
=> "Specify SMBIOS type 1 fields.",
656 type
=> 'string', format
=> 'pve-qm-smbios1',
663 description
=> "Sets the protection flag of the VM. This will disable the remove VM and"
664 ." remove disk operations.",
670 enum
=> [ qw(seabios ovmf) ],
671 description
=> "Select BIOS implementation.",
672 default => 'seabios',
676 pattern
=> '(?:[a-fA-F0-9]{8}(?:-[a-fA-F0-9]{4}){3}-[a-fA-F0-9]{12}|[01])',
677 format_description
=> 'UUID',
678 description
=> "Set VM Generation ID. Use '1' to autogenerate on create or update, pass '0'"
679 ." to disable explicitly.",
680 verbose_description
=> "The VM generation ID (vmgenid) device exposes a 128-bit integer"
681 ." value identifier to the guest OS. This allows to notify the guest operating system"
682 ." when the virtual machine is executed with a different configuration (e.g. snapshot"
683 ." execution or creation from a template). The guest operating system notices the"
684 ." change, and is then able to react as appropriate by marking its copies of"
685 ." distributed databases as dirty, re-initializing its random number generator, etc.\n"
686 ."Note that auto-creation only works when done through API/CLI create or update methods"
687 .", but not when manually editing the config file.",
688 default => "1 (autogenerated)",
693 format
=> 'pve-volume-id',
695 description
=> "Script that will be executed during various steps in the vms lifetime.",
699 format
=> $ivshmem_fmt,
700 description
=> "Inter-VM shared memory. Useful for direct communication between VMs, or to"
706 format
=> $audio_fmt,
707 description
=> "Configure a audio device, useful in combination with QXL/Spice.",
710 spice_enhancements
=> {
712 format
=> $spice_enhancements_fmt,
713 description
=> "Configure additional enhancements for SPICE.",
717 type
=> 'string', format
=> 'pve-tag-list',
718 description
=> 'Tags of the VM. This is only meta information.',
724 description
=> "Configure a VirtIO-based Random Number Generator.",
729 format
=> $meta_info_fmt,
730 description
=> "Some (read-only) meta-information about this guest.",
734 type
=> 'string', format
=> 'pve-cpuset',
735 description
=> "List of host cores used to execute guest processes, for example: 0,5,8-11",
744 description
=> 'Specify a custom file containing all meta data passed to the VM via"
745 ." cloud-init. This is provider specific meaning configdrive2 and nocloud differ.',
746 format
=> 'pve-volume-id',
747 format_description
=> 'volume',
752 description
=> 'To pass a custom file containing all network data to the VM via cloud-init.',
753 format
=> 'pve-volume-id',
754 format_description
=> 'volume',
759 description
=> 'To pass a custom file containing all user data to the VM via cloud-init.',
760 format
=> 'pve-volume-id',
761 format_description
=> 'volume',
766 description
=> 'To pass a custom file containing all vendor data to the VM via cloud-init.',
767 format
=> 'pve-volume-id',
768 format_description
=> 'volume',
771 PVE
::JSONSchema
::register_format
('pve-qm-cicustom', $cicustom_fmt);
773 # any new option might need to be added to $cloudinitoptions in PVE::API2::Qemu
774 my $confdesc_cloudinit = {
778 description
=> 'Specifies the cloud-init configuration format. The default depends on the'
779 .' configured operating system type (`ostype`. We use the `nocloud` format for Linux,'
780 .' and `configdrive2` for windows.',
781 enum
=> ['configdrive2', 'nocloud', 'opennebula'],
786 description
=> "cloud-init: User name to change ssh keys and password for instead of the"
787 ." image's configured default user.",
792 description
=> 'cloud-init: Password to assign the user. Using this is generally not'
793 .' recommended. Use ssh keys instead. Also note that older cloud-init versions do not'
794 .' support hashed passwords.',
799 description
=> 'cloud-init: do an automatic package upgrade after the first boot.',
805 description
=> 'cloud-init: Specify custom files to replace the automatically generated'
807 format
=> 'pve-qm-cicustom',
812 description
=> 'cloud-init: Sets DNS search domains for a container. Create will'
813 .' automatically use the setting from the host if neither searchdomain nor nameserver'
818 type
=> 'string', format
=> 'address-list',
819 description
=> 'cloud-init: Sets DNS server IP address for a container. Create will'
820 .' automatically use the setting from the host if neither searchdomain nor nameserver'
826 format
=> 'urlencoded',
827 description
=> "cloud-init: Setup public SSH keys (one key per line, OpenSSH format).",
831 # what about other qemu settings ?
833 #machine => 'string',
846 ##soundhw => 'string',
848 while (my ($k, $v) = each %$confdesc) {
849 PVE
::JSONSchema
::register_standard_option
("pve-qm-$k", $v);
853 my $MAX_SERIAL_PORTS = 4;
854 my $MAX_PARALLEL_PORTS = 3;
856 for (my $i = 0; $i < $PVE::QemuServer
::Memory
::MAX_NUMA
; $i++) {
857 $confdesc->{"numa$i"} = $PVE::QemuServer
::Memory
::numadesc
;
860 my $nic_model_list = [
876 my $nic_model_list_txt = join(' ', sort @$nic_model_list);
878 my $net_fmt_bridge_descr = <<__EOD__;
879 Bridge to attach the network device to. The Proxmox VE standard bridge
882 If you do not specify a bridge, we create a kvm user (NATed) network
883 device, which provides DHCP and DNS services. The following addresses
890 The DHCP server assign addresses to the guest starting from 10.0.2.15.
894 macaddr
=> get_standard_option
('mac-addr', {
895 description
=> "MAC address. That address must be unique withing your network. This is"
896 ." automatically generated if not specified.",
900 description
=> "Network Card Model. The 'virtio' model provides the best performance with"
901 ." very low CPU overhead. If your guest does not support this driver, it is usually"
902 ." best to use 'e1000'.",
903 enum
=> $nic_model_list,
906 (map { $_ => { keyAlias
=> 'model', alias
=> 'macaddr' }} @$nic_model_list),
907 bridge
=> get_standard_option
('pve-bridge-id', {
908 description
=> $net_fmt_bridge_descr,
913 minimum
=> 0, maximum
=> 64,
914 description
=> 'Number of packet queues to be used on the device.',
920 description
=> "Rate limit in mbps (megabytes per second) as floating point number.",
925 minimum
=> 1, maximum
=> 4094,
926 description
=> 'VLAN tag to apply to packets on this interface.',
931 pattern
=> qr/\d+(?:-\d+)?(?:;\d+(?:-\d+)?)*/,
932 description
=> 'VLAN trunks to pass through this interface.',
933 format_description
=> 'vlanid[;vlanid...]',
938 description
=> 'Whether this interface should be protected by the firewall.',
943 description
=> 'Whether this interface should be disconnected (like pulling the plug).',
948 minimum
=> 1, maximum
=> 65520,
949 description
=> "Force MTU, for VirtIO only. Set to '1' to use the bridge MTU",
956 type
=> 'string', format
=> $net_fmt,
957 description
=> "Specify network devices.",
960 PVE
::JSONSchema
::register_standard_option
("pve-qm-net", $netdesc);
965 format
=> 'pve-ipv4-config',
966 format_description
=> 'IPv4Format/CIDR',
967 description
=> 'IPv4 address in CIDR format.',
974 format_description
=> 'GatewayIPv4',
975 description
=> 'Default gateway for IPv4 traffic.',
981 format
=> 'pve-ipv6-config',
982 format_description
=> 'IPv6Format/CIDR',
983 description
=> 'IPv6 address in CIDR format.',
990 format_description
=> 'GatewayIPv6',
991 description
=> 'Default gateway for IPv6 traffic.',
996 PVE
::JSONSchema
::register_format
('pve-qm-ipconfig', $ipconfig_fmt);
999 type
=> 'string', format
=> 'pve-qm-ipconfig',
1000 description
=> <<'EODESCR',
1001 cloud-init: Specify IP addresses and gateways for the corresponding interface.
1003 IP addresses use CIDR notation, gateways are optional but need an IP of the same type specified.
1005 The special string 'dhcp' can be used for IP addresses to use DHCP, in which case no explicit
1006 gateway should be provided.
1007 For IPv6 the special string 'auto' can be used to use stateless autoconfiguration. This requires
1008 cloud-init 19.4 or newer.
1010 If cloud-init is enabled and neither an IPv4 nor an IPv6 address is specified, it defaults to using
1014 PVE
::JSONSchema
::register_standard_option
("pve-qm-ipconfig", $netdesc);
1016 for (my $i = 0; $i < $MAX_NETS; $i++) {
1017 $confdesc->{"net$i"} = $netdesc;
1018 $confdesc_cloudinit->{"ipconfig$i"} = $ipconfigdesc;
1021 foreach my $key (keys %$confdesc_cloudinit) {
1022 $confdesc->{$key} = $confdesc_cloudinit->{$key};
1025 PVE
::JSONSchema
::register_format
('pve-cpuset', \
&pve_verify_cpuset
);
1026 sub pve_verify_cpuset
{
1027 my ($set_text, $noerr) = @_;
1029 my ($count, $members) = eval { PVE
::CpuSet
::parse_cpuset
($set_text) };
1033 die "unable to parse cpuset option\n";
1036 return PVE
::CpuSet-
>new($members)->short_string();
1039 PVE
::JSONSchema
::register_format
('pve-volume-id-or-qm-path', \
&verify_volume_id_or_qm_path
);
1040 sub verify_volume_id_or_qm_path
{
1041 my ($volid, $noerr) = @_;
1043 return $volid if $volid eq 'none' || $volid eq 'cdrom';
1045 return verify_volume_id_or_absolute_path
($volid, $noerr);
1048 PVE
::JSONSchema
::register_format
('pve-volume-id-or-absolute-path', \
&verify_volume_id_or_absolute_path
);
1049 sub verify_volume_id_or_absolute_path
{
1050 my ($volid, $noerr) = @_;
1052 return $volid if $volid =~ m
|^/|;
1054 $volid = eval { PVE
::JSONSchema
::check_format
('pve-volume-id', $volid, '') };
1065 pattern
=> '(/dev/.+|socket)',
1066 description
=> "Create a serial device inside the VM (n is 0 to 3)",
1067 verbose_description
=> <<EODESCR,
1068 Create a serial device inside the VM (n is 0 to 3), and pass through a
1069 host serial device (i.e. /dev/ttyS0), or create a unix socket on the
1070 host side (use 'qm terminal' to open a terminal connection).
1072 NOTE: If you pass through a host serial device, it is no longer possible to migrate such machines -
1073 use with special care.
1075 CAUTION: Experimental! User reported problems with this option.
1082 pattern
=> '/dev/parport\d+|/dev/usb/lp\d+',
1083 description
=> "Map host parallel devices (n is 0 to 2).",
1084 verbose_description
=> <<EODESCR,
1085 Map host parallel devices (n is 0 to 2).
1087 NOTE: This option allows direct access to host hardware. So it is no longer possible to migrate such
1088 machines - use with special care.
1090 CAUTION: Experimental! User reported problems with this option.
1094 for (my $i = 0; $i < $MAX_PARALLEL_PORTS; $i++) {
1095 $confdesc->{"parallel$i"} = $paralleldesc;
1098 for (my $i = 0; $i < $MAX_SERIAL_PORTS; $i++) {
1099 $confdesc->{"serial$i"} = $serialdesc;
1102 for (my $i = 0; $i < $PVE::QemuServer
::PCI
::MAX_HOSTPCI_DEVICES
; $i++) {
1103 $confdesc->{"hostpci$i"} = $PVE::QemuServer
::PCI
::hostpcidesc
;
1106 for my $key (keys %{$PVE::QemuServer
::Drive
::drivedesc_hash
}) {
1107 $confdesc->{$key} = $PVE::QemuServer
::Drive
::drivedesc_hash-
>{$key};
1110 for (my $i = 0; $i < $PVE::QemuServer
::USB
::MAX_USB_DEVICES
; $i++) {
1111 $confdesc->{"usb$i"} = $PVE::QemuServer
::USB
::usbdesc
;
1119 description
=> "Boot on floppy (a), hard disk (c), CD-ROM (d), or network (n)."
1120 . " Deprecated, use 'order=' instead.",
1121 pattern
=> '[acdn]{1,4}',
1122 format_description
=> "[acdn]{1,4}",
1124 # note: this is also the fallback if boot: is not given at all
1130 format
=> 'pve-qm-bootdev-list',
1131 format_description
=> "device[;device...]",
1132 description
=> <<EODESC,
1133 The guest will attempt to boot from devices in the order they appear here.
1135 Disks, optical drives and passed-through storage USB devices will be directly
1136 booted from, NICs will load PXE, and PCIe devices will either behave like disks
1137 (e.g. NVMe) or load an option ROM (e.g. RAID controller, hardware NIC).
1139 Note that only devices in this list will be marked as bootable and thus loaded
1140 by the guest firmware (BIOS/UEFI). If you require multiple disks for booting
1141 (e.g. software-raid), you need to specify all of them here.
1143 Overrides the deprecated 'legacy=[acdn]*' value when given.
1147 PVE
::JSONSchema
::register_format
('pve-qm-boot', $boot_fmt);
1149 PVE
::JSONSchema
::register_format
('pve-qm-bootdev', \
&verify_bootdev
);
1150 sub verify_bootdev
{
1151 my ($dev, $noerr) = @_;
1153 my $special = $dev =~ m/^efidisk/ || $dev =~ m/^tpmstate/;
1154 return $dev if PVE
::QemuServer
::Drive
::is_valid_drivename
($dev) && !$special;
1158 return 0 if $dev !~ m/^$base\d+$/;
1159 return 0 if !$confdesc->{$dev};
1163 return $dev if $check->("net");
1164 return $dev if $check->("usb");
1165 return $dev if $check->("hostpci");
1168 die "invalid boot device '$dev'\n";
1171 sub print_bootorder
{
1173 return "" if !@$devs;
1174 my $data = { order
=> join(';', @$devs) };
1175 return PVE
::JSONSchema
::print_property_string
($data, $boot_fmt);
1178 my $kvm_api_version = 0;
1181 return $kvm_api_version if $kvm_api_version;
1183 open my $fh, '<', '/dev/kvm' or return;
1185 # 0xae00 => KVM_GET_API_VERSION
1186 $kvm_api_version = ioctl($fh, 0xae00, 0);
1189 return $kvm_api_version;
1192 my $kvm_user_version = {};
1195 sub kvm_user_version
{
1198 $binary //= get_command_for_arch
(get_host_arch
()); # get the native arch by default
1199 my $st = stat($binary);
1201 my $cachedmtime = $kvm_mtime->{$binary} // -1;
1202 return $kvm_user_version->{$binary} if $kvm_user_version->{$binary} &&
1203 $cachedmtime == $st->mtime;
1205 $kvm_user_version->{$binary} = 'unknown';
1206 $kvm_mtime->{$binary} = $st->mtime;
1210 if ($line =~ m/^QEMU( PC)? emulator version (\d+\.\d+(\.\d+)?)(\.\d+)?[,\s]/) {
1211 $kvm_user_version->{$binary} = $2;
1215 eval { run_command
([$binary, '--version'], outfunc
=> $code); };
1218 return $kvm_user_version->{$binary};
1221 my sub extract_version
{
1222 my ($machine_type, $version) = @_;
1223 $version = kvm_user_version
() if !defined($version);
1224 return PVE
::QemuServer
::Machine
::extract_version
($machine_type, $version)
1227 sub kernel_has_vhost_net
{
1228 return -c
'/dev/vhost-net';
1233 return defined($confdesc->{$key});
1237 sub get_cdrom_path
{
1239 return $cdrom_path if defined($cdrom_path);
1241 $cdrom_path = first
{ -l
$_ } map { "/dev/cdrom$_" } ('', '1', '2');
1243 if (!defined($cdrom_path)) {
1244 log_warn
("no physical CD-ROM available, ignoring");
1252 my ($storecfg, $vmid, $cdrom) = @_;
1254 if ($cdrom eq 'cdrom') {
1255 return get_cdrom_path
();
1256 } elsif ($cdrom eq 'none') {
1258 } elsif ($cdrom =~ m
|^/|) {
1261 return PVE
::Storage
::path
($storecfg, $cdrom);
1265 # try to convert old style file names to volume IDs
1266 sub filename_to_volume_id
{
1267 my ($vmid, $file, $media) = @_;
1269 if (!($file eq 'none' || $file eq 'cdrom' ||
1270 $file =~ m
|^/dev/.+| || $file =~ m/^([^:]+):(.+)$/)) {
1272 return if $file =~ m
|/|;
1274 if ($media && $media eq 'cdrom') {
1275 $file = "local:iso/$file";
1277 $file = "local:$vmid/$file";
1284 sub verify_media_type
{
1285 my ($opt, $vtype, $media) = @_;
1290 if ($media eq 'disk') {
1292 } elsif ($media eq 'cdrom') {
1295 die "internal error";
1298 return if ($vtype eq $etype);
1300 raise_param_exc
({ $opt => "unexpected media type ($vtype != $etype)" });
1303 sub cleanup_drive_path
{
1304 my ($opt, $storecfg, $drive) = @_;
1306 # try to convert filesystem paths to volume IDs
1308 if (($drive->{file
} !~ m/^(cdrom|none)$/) &&
1309 ($drive->{file
} !~ m
|^/dev/.+|) &&
1310 ($drive->{file
} !~ m/^([^:]+):(.+)$/) &&
1311 ($drive->{file
} !~ m/^\d+$/)) {
1312 my ($vtype, $volid) = PVE
::Storage
::path_to_volume_id
($storecfg, $drive->{file
});
1313 raise_param_exc
({ $opt => "unable to associate path '$drive->{file}' to any storage"})
1315 $drive->{media
} = 'cdrom' if !$drive->{media
} && $vtype eq 'iso';
1316 verify_media_type
($opt, $vtype, $drive->{media
});
1317 $drive->{file
} = $volid;
1320 $drive->{media
} = 'cdrom' if !$drive->{media
} && $drive->{file
} =~ m/^(cdrom|none)$/;
1323 sub parse_hotplug_features
{
1328 return $res if $data eq '0';
1330 $data = $confdesc->{hotplug
}->{default} if $data eq '1';
1332 foreach my $feature (PVE
::Tools
::split_list
($data)) {
1333 if ($feature =~ m/^(network|disk|cpu|memory|usb|cloudinit)$/) {
1336 die "invalid hotplug feature '$feature'\n";
1342 PVE
::JSONSchema
::register_format
('pve-hotplug-features', \
&pve_verify_hotplug_features
);
1343 sub pve_verify_hotplug_features
{
1344 my ($value, $noerr) = @_;
1346 return $value if parse_hotplug_features
($value);
1350 die "unable to parse hotplug option\n";
1353 sub assert_clipboard_config
{
1356 my $clipboard_regex = qr/^(std|cirrus|vmware|virtio|qxl)/;
1360 && $vga->{'clipboard'} eq 'vnc'
1362 && $vga->{type
} !~ $clipboard_regex
1364 die "vga type $vga->{type} is not compatible with VNC clipboard\n";
1368 sub print_tabletdevice_full
{
1369 my ($conf, $arch) = @_;
1371 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
1373 # we use uhci for old VMs because tablet driver was buggy in older qemu
1375 if ($q35 || $arch eq 'aarch64') {
1381 return "usb-tablet,id=tablet,bus=$usbbus.0,port=1";
1384 sub print_keyboarddevice_full
{
1385 my ($conf, $arch) = @_;
1387 return if $arch ne 'aarch64';
1389 return "usb-kbd,id=keyboard,bus=ehci.0,port=2";
1392 my sub get_drive_id
{
1394 return "$drive->{interface}$drive->{index}";
1397 sub print_drivedevice_full
{
1398 my ($storecfg, $conf, $vmid, $drive, $bridges, $arch, $machine_type) = @_;
1403 my $drive_id = get_drive_id
($drive);
1404 if ($drive->{interface
} eq 'virtio') {
1405 my $pciaddr = print_pci_addr
("$drive_id", $bridges, $arch, $machine_type);
1406 $device = "virtio-blk-pci,drive=drive-$drive_id,id=${drive_id}${pciaddr}";
1407 $device .= ",iothread=iothread-$drive_id" if $drive->{iothread
};
1408 } elsif ($drive->{interface
} eq 'scsi') {
1410 my ($maxdev, $controller, $controller_prefix) = scsihw_infos
($conf, $drive);
1411 my $unit = $drive->{index} % $maxdev;
1413 my $machine_version = extract_version
($machine_type, kvm_user_version
());
1414 my $devicetype = PVE
::QemuServer
::Drive
::get_scsi_devicetype
(
1415 $drive, $storecfg, $machine_version);
1417 if (!$conf->{scsihw
} || $conf->{scsihw
} =~ m/^lsi/ || $conf->{scsihw
} eq 'pvscsi') {
1418 $device = "scsi-$devicetype,bus=$controller_prefix$controller.0,scsi-id=$unit";
1420 $device = "scsi-$devicetype,bus=$controller_prefix$controller.0,channel=0,scsi-id=0"
1421 .",lun=$drive->{index}";
1423 $device .= ",drive=drive-$drive_id,id=$drive_id";
1425 if ($drive->{ssd
} && ($devicetype eq 'block' || $devicetype eq 'hd')) {
1426 $device .= ",rotation_rate=1";
1428 $device .= ",wwn=$drive->{wwn}" if $drive->{wwn
};
1430 # only scsi-hd and scsi-cd support passing vendor and product information
1431 if ($devicetype eq 'hd' || $devicetype eq 'cd') {
1432 if (my $vendor = $drive->{vendor
}) {
1433 $device .= ",vendor=$vendor";
1435 if (my $product = $drive->{product
}) {
1436 $device .= ",product=$product";
1440 } elsif ($drive->{interface
} eq 'ide' || $drive->{interface
} eq 'sata') {
1441 my $maxdev = ($drive->{interface
} eq 'sata') ?
$PVE::QemuServer
::Drive
::MAX_SATA_DISKS
: 2;
1442 my $controller = int($drive->{index} / $maxdev);
1443 my $unit = $drive->{index} % $maxdev;
1445 # machine type q35 only supports unit=0 for IDE rather than 2 units. This wasn't handled
1446 # correctly before, so e.g. index=2 was mapped to controller=1,unit=0 rather than
1447 # controller=2,unit=0. Note that odd indices never worked, as they would be mapped to
1448 # unit=1, so to keep backwards compat for migration, it suffices to keep even ones as they
1449 # were before. Move odd ones up by 2 where they don't clash.
1450 if (PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf) && $drive->{interface
} eq 'ide') {
1451 $controller += 2 * ($unit % 2);
1455 my $devicetype = ($drive->{media
} && $drive->{media
} eq 'cdrom') ?
"cd" : "hd";
1457 $device = "ide-$devicetype";
1458 if ($drive->{interface
} eq 'ide') {
1459 $device .= ",bus=ide.$controller,unit=$unit";
1461 $device .= ",bus=ahci$controller.$unit";
1463 $device .= ",drive=drive-$drive_id,id=$drive_id";
1465 if ($devicetype eq 'hd') {
1466 if (my $model = $drive->{model
}) {
1467 $model = URI
::Escape
::uri_unescape
($model);
1468 $device .= ",model=$model";
1470 if ($drive->{ssd
}) {
1471 $device .= ",rotation_rate=1";
1474 $device .= ",wwn=$drive->{wwn}" if $drive->{wwn
};
1475 } elsif ($drive->{interface
} eq 'usb') {
1477 # -device ide-drive,bus=ide.1,unit=0,drive=drive-ide0-1-0,id=ide0-1-0
1479 die "unsupported interface type";
1482 $device .= ",bootindex=$drive->{bootindex}" if $drive->{bootindex
};
1484 if (my $serial = $drive->{serial
}) {
1485 $serial = URI
::Escape
::uri_unescape
($serial);
1486 $device .= ",serial=$serial";
1493 sub get_initiator_name
{
1496 my $fh = IO
::File-
>new('/etc/iscsi/initiatorname.iscsi') || return;
1497 while (defined(my $line = <$fh>)) {
1498 next if $line !~ m/^\s*InitiatorName\s*=\s*([\.\-:\w]+)/;
1507 my sub storage_allows_io_uring_default
{
1508 my ($scfg, $cache_direct) = @_;
1510 # io_uring with cache mode writeback or writethrough on krbd will hang...
1511 return if $scfg && $scfg->{type
} eq 'rbd' && $scfg->{krbd
} && !$cache_direct;
1513 # io_uring with cache mode writeback or writethrough on LVM will hang, without cache only
1514 # sometimes, just plain disable...
1515 return if $scfg && $scfg->{type
} eq 'lvm';
1517 # io_uring causes problems when used with CIFS since kernel 5.15
1518 # Some discussion: https://www.spinics.net/lists/linux-cifs/msg26734.html
1519 return if $scfg && $scfg->{type
} eq 'cifs';
1524 my sub drive_uses_cache_direct
{
1525 my ($drive, $scfg) = @_;
1527 my $cache_direct = 0;
1529 if (my $cache = $drive->{cache
}) {
1530 $cache_direct = $cache =~ /^(?:off|none|directsync)$/;
1531 } elsif (!drive_is_cdrom
($drive) && !($scfg && $scfg->{type
} eq 'btrfs' && !$scfg->{nocow
})) {
1535 return $cache_direct;
1538 sub print_drive_commandline_full
{
1539 my ($storecfg, $vmid, $drive, $pbs_name, $io_uring) = @_;
1542 my $volid = $drive->{file
};
1543 my $format = $drive->{format
};
1544 my $drive_id = get_drive_id
($drive);
1546 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
1547 my $scfg = $storeid ? PVE
::Storage
::storage_config
($storecfg, $storeid) : undef;
1549 if (drive_is_cdrom
($drive)) {
1550 $path = get_iso_path
($storecfg, $vmid, $volid);
1551 die "$drive_id: cannot back cdrom drive with PBS snapshot\n" if $pbs_name;
1554 $path = PVE
::Storage
::path
($storecfg, $volid);
1555 $format //= qemu_img_format
($scfg, $volname);
1562 my $is_rbd = $path =~ m/^rbd:/;
1565 my @qemu_drive_options = qw(heads secs cyls trans media cache rerror werror aio discard);
1566 foreach my $o (@qemu_drive_options) {
1567 $opts .= ",$o=$drive->{$o}" if defined($drive->{$o});
1570 # snapshot only accepts on|off
1571 if (defined($drive->{snapshot
})) {
1572 my $v = $drive->{snapshot
} ?
'on' : 'off';
1573 $opts .= ",snapshot=$v";
1576 if (defined($drive->{ro
})) { # ro maps to QEMUs `readonly`, which accepts `on` or `off` only
1577 $opts .= ",readonly=" . ($drive->{ro
} ?
'on' : 'off');
1580 foreach my $type (['', '-total'], [_rd
=> '-read'], [_wr
=> '-write']) {
1581 my ($dir, $qmpname) = @$type;
1582 if (my $v = $drive->{"mbps$dir"}) {
1583 $opts .= ",throttling.bps$qmpname=".int($v*1024*1024);
1585 if (my $v = $drive->{"mbps${dir}_max"}) {
1586 $opts .= ",throttling.bps$qmpname-max=".int($v*1024*1024);
1588 if (my $v = $drive->{"bps${dir}_max_length"}) {
1589 $opts .= ",throttling.bps$qmpname-max-length=$v";
1591 if (my $v = $drive->{"iops${dir}"}) {
1592 $opts .= ",throttling.iops$qmpname=$v";
1594 if (my $v = $drive->{"iops${dir}_max"}) {
1595 $opts .= ",throttling.iops$qmpname-max=$v";
1597 if (my $v = $drive->{"iops${dir}_max_length"}) {
1598 $opts .= ",throttling.iops$qmpname-max-length=$v";
1603 $format = "rbd" if $is_rbd;
1604 die "$drive_id: Proxmox Backup Server backed drive cannot auto-detect the format\n"
1606 $opts .= ",format=alloc-track,file.driver=$format";
1608 $opts .= ",format=$format";
1611 my $cache_direct = drive_uses_cache_direct
($drive, $scfg);
1613 $opts .= ",cache=none" if !$drive->{cache
} && $cache_direct;
1615 if (!$drive->{aio
}) {
1616 if ($io_uring && storage_allows_io_uring_default
($scfg, $cache_direct)) {
1617 # io_uring supports all cache modes
1618 $opts .= ",aio=io_uring";
1620 # aio native works only with O_DIRECT
1622 $opts .= ",aio=native";
1624 $opts .= ",aio=threads";
1629 if (!drive_is_cdrom
($drive)) {
1631 if (defined($drive->{detect_zeroes
}) && !$drive->{detect_zeroes
}) {
1632 $detectzeroes = 'off';
1633 } elsif ($drive->{discard
}) {
1634 $detectzeroes = $drive->{discard
} eq 'on' ?
'unmap' : 'on';
1636 # This used to be our default with discard not being specified:
1637 $detectzeroes = 'on';
1640 # note: 'detect-zeroes' works per blockdev and we want it to persist
1641 # after the alloc-track is removed, so put it on 'file' directly
1642 my $dz_param = $pbs_name ?
"file.detect-zeroes" : "detect-zeroes";
1643 $opts .= ",$dz_param=$detectzeroes" if $detectzeroes;
1647 $opts .= ",backing=$pbs_name";
1648 $opts .= ",auto-remove=on";
1651 # my $file_param = $pbs_name ? "file.file.filename" : "file";
1652 my $file_param = "file";
1654 # non-rbd drivers require the underlying file to be a seperate block
1655 # node, so add a second .file indirection
1656 $file_param .= ".file" if !$is_rbd;
1657 $file_param .= ".filename";
1659 my $pathinfo = $path ?
"$file_param=$path," : '';
1661 return "${pathinfo}if=none,id=drive-$drive->{interface}$drive->{index}$opts";
1664 sub print_pbs_blockdev
{
1665 my ($pbs_conf, $pbs_name) = @_;
1666 my $blockdev = "driver=pbs,node-name=$pbs_name,read-only=on";
1667 $blockdev .= ",repository=$pbs_conf->{repository}";
1668 $blockdev .= ",namespace=$pbs_conf->{namespace}" if $pbs_conf->{namespace
};
1669 $blockdev .= ",snapshot=$pbs_conf->{snapshot}";
1670 $blockdev .= ",archive=$pbs_conf->{archive}";
1671 $blockdev .= ",keyfile=$pbs_conf->{keyfile}" if $pbs_conf->{keyfile
};
1675 sub print_netdevice_full
{
1676 my ($vmid, $conf, $net, $netid, $bridges, $use_old_bios_files, $arch, $machine_type, $machine_version) = @_;
1678 my $device = $net->{model
};
1679 if ($net->{model
} eq 'virtio') {
1680 $device = 'virtio-net-pci';
1683 my $pciaddr = print_pci_addr
("$netid", $bridges, $arch, $machine_type);
1684 my $tmpstr = "$device,mac=$net->{macaddr},netdev=$netid$pciaddr,id=$netid";
1685 if ($net->{queues
} && $net->{queues
} > 1 && $net->{model
} eq 'virtio'){
1686 # Consider we have N queues, the number of vectors needed is 2 * N + 2, i.e., one per in
1687 # and out of each queue plus one config interrupt and control vector queue
1688 my $vectors = $net->{queues
} * 2 + 2;
1689 $tmpstr .= ",vectors=$vectors,mq=on";
1690 if (min_version
($machine_version, 7, 1)) {
1691 $tmpstr .= ",packed=on";
1695 if (min_version
($machine_version, 7, 1) && $net->{model
} eq 'virtio'){
1696 $tmpstr .= ",rx_queue_size=1024,tx_queue_size=256";
1699 $tmpstr .= ",bootindex=$net->{bootindex}" if $net->{bootindex
} ;
1701 if (my $mtu = $net->{mtu
}) {
1702 if ($net->{model
} eq 'virtio' && $net->{bridge
}) {
1703 my $bridge_mtu = PVE
::Network
::read_bridge_mtu
($net->{bridge
});
1706 } elsif ($mtu < 576) {
1707 die "netdev $netid: MTU '$mtu' is smaller than the IP minimum MTU '576'\n";
1708 } elsif ($mtu > $bridge_mtu) {
1709 die "netdev $netid: MTU '$mtu' is bigger than the bridge MTU '$bridge_mtu'\n";
1711 $tmpstr .= ",host_mtu=$mtu";
1713 warn "WARN: netdev $netid: ignoring MTU '$mtu', not using VirtIO or no bridge configured.\n";
1717 if ($use_old_bios_files) {
1719 if ($device eq 'virtio-net-pci') {
1720 $romfile = 'pxe-virtio.rom';
1721 } elsif ($device eq 'e1000') {
1722 $romfile = 'pxe-e1000.rom';
1723 } elsif ($device eq 'e1000e') {
1724 $romfile = 'pxe-e1000e.rom';
1725 } elsif ($device eq 'ne2k') {
1726 $romfile = 'pxe-ne2k_pci.rom';
1727 } elsif ($device eq 'pcnet') {
1728 $romfile = 'pxe-pcnet.rom';
1729 } elsif ($device eq 'rtl8139') {
1730 $romfile = 'pxe-rtl8139.rom';
1732 $tmpstr .= ",romfile=$romfile" if $romfile;
1738 sub print_netdev_full
{
1739 my ($vmid, $conf, $arch, $net, $netid, $hotplug) = @_;
1742 if ($netid =~ m/^net(\d+)$/) {
1746 die "got strange net id '$i'\n" if $i >= ${MAX_NETS
};
1748 my $ifname = "tap${vmid}i$i";
1750 # kvm uses TUNSETIFF ioctl, and that limits ifname length
1751 die "interface name '$ifname' is too long (max 15 character)\n"
1752 if length($ifname) >= 16;
1754 my $vhostparam = '';
1755 if (is_native_arch
($arch)) {
1756 $vhostparam = ',vhost=on' if kernel_has_vhost_net
() && $net->{model
} eq 'virtio';
1759 my $vmname = $conf->{name
} || "vm$vmid";
1762 my $script = $hotplug ?
"pve-bridge-hotplug" : "pve-bridge";
1764 if ($net->{bridge
}) {
1765 $netdev = "type=tap,id=$netid,ifname=${ifname},script=/var/lib/qemu-server/$script"
1766 .",downscript=/var/lib/qemu-server/pve-bridgedown$vhostparam";
1768 $netdev = "type=user,id=$netid,hostname=$vmname";
1771 $netdev .= ",queues=$net->{queues}" if ($net->{queues
} && $net->{model
} eq 'virtio');
1777 'cirrus' => 'cirrus-vga',
1779 'vmware' => 'vmware-svga',
1780 'virtio' => 'virtio-vga',
1781 'virtio-gl' => 'virtio-vga-gl',
1784 sub print_vga_device
{
1785 my ($conf, $vga, $arch, $machine_version, $machine, $id, $qxlnum, $bridges) = @_;
1787 my $type = $vga_map->{$vga->{type
}};
1788 if ($arch eq 'aarch64' && defined($type) && $type eq 'virtio-vga') {
1789 $type = 'virtio-gpu';
1791 my $vgamem_mb = $vga->{memory
};
1793 my $max_outputs = '';
1795 $type = $id ?
'qxl' : 'qxl-vga';
1797 if (!$conf->{ostype
} || $conf->{ostype
} =~ m/^(?:l\d\d)|(?:other)$/) {
1798 # set max outputs so linux can have up to 4 qxl displays with one device
1799 if (min_version
($machine_version, 4, 1)) {
1800 $max_outputs = ",max_outputs=4";
1805 die "no devicetype for $vga->{type}\n" if !$type;
1809 if ($vga->{type
} =~ /^virtio/) {
1810 my $bytes = PVE
::Tools
::convert_size
($vgamem_mb, "mb" => "b");
1811 $memory = ",max_hostmem=$bytes";
1813 # from https://www.spice-space.org/multiple-monitors.html
1814 $memory = ",vgamem_mb=$vga->{memory}";
1815 my $ram = $vgamem_mb * 4;
1816 my $vram = $vgamem_mb * 2;
1817 $memory .= ",ram_size_mb=$ram,vram_size_mb=$vram";
1819 $memory = ",vgamem_mb=$vga->{memory}";
1821 } elsif ($qxlnum && $id) {
1822 $memory = ",ram_size=67108864,vram_size=33554432";
1826 if ($type eq 'VGA' && windows_version
($conf->{ostype
})) {
1827 $edidoff=",edid=off" if (!defined($conf->{bios
}) || $conf->{bios
} ne 'ovmf');
1830 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
1831 my $vgaid = "vga" . ($id // '');
1833 if ($q35 && $vgaid eq 'vga') {
1834 # the first display uses pcie.0 bus on q35 machines
1835 $pciaddr = print_pcie_addr
($vgaid, $bridges, $arch, $machine);
1837 $pciaddr = print_pci_addr
($vgaid, $bridges, $arch, $machine);
1840 if ($vga->{type
} eq 'virtio-gl') {
1841 my $base = '/usr/lib/x86_64-linux-gnu/lib';
1842 die "missing libraries for '$vga->{type}' detected! Please install 'libgl1' and 'libegl1'\n"
1843 if !-e
"${base}EGL.so.1" || !-e
"${base}GL.so.1";
1845 die "no DRM render node detected (/dev/dri/renderD*), no GPU? - needed for '$vga->{type}' display\n"
1846 if !PVE
::Tools
::dir_glob_regex
('/dev/dri/', "renderD.*");
1849 return "$type,id=${vgaid}${memory}${max_outputs}${pciaddr}${edidoff}";
1852 # netX: e1000=XX:XX:XX:XX:XX:XX,bridge=vmbr0,rate=<mbps>
1854 my ($data, $disable_mac_autogen) = @_;
1856 my $res = eval { parse_property_string
($net_fmt, $data) };
1861 if (!defined($res->{macaddr
}) && !$disable_mac_autogen) {
1862 my $dc = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
1863 $res->{macaddr
} = PVE
::Tools
::random_ether_addr
($dc->{mac_prefix
});
1868 # ipconfigX ip=cidr,gw=ip,ip6=cidr,gw6=ip
1869 sub parse_ipconfig
{
1872 my $res = eval { parse_property_string
($ipconfig_fmt, $data) };
1878 if ($res->{gw
} && !$res->{ip
}) {
1879 warn 'gateway specified without specifying an IP address';
1882 if ($res->{gw6
} && !$res->{ip6
}) {
1883 warn 'IPv6 gateway specified without specifying an IPv6 address';
1886 if ($res->{gw
} && $res->{ip
} eq 'dhcp') {
1887 warn 'gateway specified together with DHCP';
1890 if ($res->{gw6
} && $res->{ip6
} !~ /^$IPV6RE/) {
1892 warn "IPv6 gateway specified together with $res->{ip6} address";
1896 if (!$res->{ip
} && !$res->{ip6
}) {
1897 return { ip
=> 'dhcp', ip6
=> 'dhcp' };
1906 return PVE
::JSONSchema
::print_property_string
($net, $net_fmt);
1909 sub add_random_macs
{
1910 my ($settings) = @_;
1912 foreach my $opt (keys %$settings) {
1913 next if $opt !~ m/^net(\d+)$/;
1914 my $net = parse_net
($settings->{$opt});
1916 $settings->{$opt} = print_net
($net);
1920 sub vm_is_volid_owner
{
1921 my ($storecfg, $vmid, $volid) = @_;
1923 if ($volid !~ m
|^/|) {
1925 eval { ($path, $owner) = PVE
::Storage
::path
($storecfg, $volid); };
1926 if ($owner && ($owner == $vmid)) {
1934 sub vmconfig_register_unused_drive
{
1935 my ($storecfg, $vmid, $conf, $drive) = @_;
1937 if (drive_is_cloudinit
($drive)) {
1938 eval { PVE
::Storage
::vdisk_free
($storecfg, $drive->{file
}) };
1940 delete $conf->{cloudinit
};
1941 } elsif (!drive_is_cdrom
($drive)) {
1942 my $volid = $drive->{file
};
1943 if (vm_is_volid_owner
($storecfg, $vmid, $volid)) {
1944 PVE
::QemuConfig-
>add_unused_volume($conf, $volid, $vmid);
1949 # smbios: [manufacturer=str][,product=str][,version=str][,serial=str][,uuid=uuid][,sku=str][,family=str][,base64=bool]
1953 pattern
=> '[a-fA-F0-9]{8}(?:-[a-fA-F0-9]{4}){3}-[a-fA-F0-9]{12}',
1954 format_description
=> 'UUID',
1955 description
=> "Set SMBIOS1 UUID.",
1960 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
1961 format_description
=> 'Base64 encoded string',
1962 description
=> "Set SMBIOS1 version.",
1967 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
1968 format_description
=> 'Base64 encoded string',
1969 description
=> "Set SMBIOS1 serial number.",
1974 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
1975 format_description
=> 'Base64 encoded string',
1976 description
=> "Set SMBIOS1 manufacturer.",
1981 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
1982 format_description
=> 'Base64 encoded string',
1983 description
=> "Set SMBIOS1 product ID.",
1988 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
1989 format_description
=> 'Base64 encoded string',
1990 description
=> "Set SMBIOS1 SKU string.",
1995 pattern
=> '[A-Za-z0-9+\/]+={0,2}',
1996 format_description
=> 'Base64 encoded string',
1997 description
=> "Set SMBIOS1 family string.",
2002 description
=> 'Flag to indicate that the SMBIOS values are base64 encoded',
2010 my $res = eval { parse_property_string
($smbios1_fmt, $data) };
2017 return PVE
::JSONSchema
::print_property_string
($smbios1, $smbios1_fmt);
2020 PVE
::JSONSchema
::register_format
('pve-qm-smbios1', $smbios1_fmt);
2022 sub parse_watchdog
{
2027 my $res = eval { parse_property_string
($watchdog_fmt, $value) };
2032 sub parse_guest_agent
{
2035 return {} if !defined($conf->{agent
});
2037 my $res = eval { parse_property_string
($agent_fmt, $conf->{agent
}) };
2040 # if the agent is disabled ignore the other potentially set properties
2041 return {} if !$res->{enabled
};
2046 my ($conf, $key) = @_;
2047 return undef if !defined($conf->{agent
});
2049 my $agent = parse_guest_agent
($conf);
2050 return $agent->{$key};
2056 return {} if !$value;
2057 my $res = eval { parse_property_string
($vga_fmt, $value) };
2067 my $res = eval { parse_property_string
($rng_fmt, $value) };
2072 sub parse_meta_info
{
2077 my $res = eval { parse_property_string
($meta_info_fmt, $value) };
2082 sub new_meta_info_string
{
2083 my () = @_; # for now do not allow to override any value
2085 return PVE
::JSONSchema
::print_property_string
(
2087 'creation-qemu' => kvm_user_version
(),
2088 ctime
=> "". int(time()),
2094 sub qemu_created_version_fixups
{
2095 my ($conf, $forcemachine, $kvmver) = @_;
2097 my $meta = parse_meta_info
($conf->{meta
}) // {};
2098 my $forced_vers = PVE
::QemuServer
::Machine
::extract_version
($forcemachine);
2100 # check if we need to apply some handling for VMs that always use the latest machine version but
2101 # had a machine version transition happen that affected HW such that, e.g., an OS config change
2102 # would be required (we do not want to pin machine version for non-windows OS type)
2104 (!defined($conf->{machine
}) || $conf->{machine
} =~ m/^(?:pc|q35|virt)$/) # non-versioned machine
2105 && (!defined($meta->{'creation-qemu'}) || !min_version
($meta->{'creation-qemu'}, 6, 1)) # created before 6.1
2106 && (!$forced_vers || min_version
($forced_vers, 6, 1)) # handle snapshot-rollback/migrations
2107 && min_version
($kvmver, 6, 1) # only need to apply the change since 6.1
2109 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
2110 if ($q35 && $conf->{ostype
} && $conf->{ostype
} eq 'l26') {
2111 # this changed to default-on in Q 6.1 for q35 machines, it will mess with PCI slot view
2112 # and thus with the predictable interface naming of systemd
2113 return ['-global', 'ICH9-LPC.acpi-pci-hotplug-with-bridge-support=off'];
2119 # add JSON properties for create and set function
2120 sub json_config_properties
{
2121 my ($prop, $with_disk_alloc) = @_;
2123 my $skip_json_config_opts = {
2127 runningmachine
=> 1,
2132 foreach my $opt (keys %$confdesc) {
2133 next if $skip_json_config_opts->{$opt};
2135 if ($with_disk_alloc && is_valid_drivename
($opt)) {
2136 $prop->{$opt} = $PVE::QemuServer
::Drive
::drivedesc_hash_with_alloc-
>{$opt};
2138 $prop->{$opt} = $confdesc->{$opt};
2145 # Properties that we can read from an OVF file
2146 sub json_ovf_properties
{
2149 for my $device (PVE
::QemuServer
::Drive
::valid_drive_names
()) {
2150 $prop->{$device} = {
2152 format
=> 'pve-volume-id-or-absolute-path',
2153 description
=> "Disk image that gets imported to $device",
2160 description
=> "The number of CPU cores.",
2165 description
=> "Amount of RAM for the VM in MB.",
2170 description
=> "Name of the VM.",
2177 # return copy of $confdesc_cloudinit to generate documentation
2178 sub cloudinit_config_properties
{
2180 return dclone
($confdesc_cloudinit);
2183 sub cloudinit_pending_properties
{
2185 map { $_ => 1 } keys $confdesc_cloudinit->%*,
2188 $p->{"net$_"} = 1 for 0..($MAX_NETS-1);
2193 my ($key, $value) = @_;
2195 die "unknown setting '$key'\n" if !$confdesc->{$key};
2197 my $type = $confdesc->{$key}->{type
};
2199 if (!defined($value)) {
2200 die "got undefined value\n";
2203 if ($value =~ m/[\n\r]/) {
2204 die "property contains a line feed\n";
2207 if ($type eq 'boolean') {
2208 return 1 if ($value eq '1') || ($value =~ m/^(on|yes|true)$/i);
2209 return 0 if ($value eq '0') || ($value =~ m/^(off|no|false)$/i);
2210 die "type check ('boolean') failed - got '$value'\n";
2211 } elsif ($type eq 'integer') {
2212 return int($1) if $value =~ m/^(\d+)$/;
2213 die "type check ('integer') failed - got '$value'\n";
2214 } elsif ($type eq 'number') {
2215 return $value if $value =~ m/^(\d+)(\.\d+)?$/;
2216 die "type check ('number') failed - got '$value'\n";
2217 } elsif ($type eq 'string') {
2218 if (my $fmt = $confdesc->{$key}->{format
}) {
2219 PVE
::JSONSchema
::check_format
($fmt, $value);
2222 $value =~ s/^\"(.*)\"$/$1/;
2225 die "internal error"
2230 my ($storecfg, $vmid, $skiplock, $replacement_conf, $purge_unreferenced) = @_;
2232 my $conf = PVE
::QemuConfig-
>load_config($vmid);
2234 if (!$skiplock && !PVE
::QemuConfig-
>has_lock($conf, 'suspended')) {
2235 PVE
::QemuConfig-
>check_lock($conf);
2238 if ($conf->{template
}) {
2239 # check if any base image is still used by a linked clone
2240 PVE
::QemuConfig-
>foreach_volume_full($conf, { include_unused
=> 1 }, sub {
2241 my ($ds, $drive) = @_;
2242 return if drive_is_cdrom
($drive);
2244 my $volid = $drive->{file
};
2245 return if !$volid || $volid =~ m
|^/|;
2247 die "base volume '$volid' is still in use by linked cloned\n"
2248 if PVE
::Storage
::volume_is_base_and_used
($storecfg, $volid);
2254 my $remove_owned_drive = sub {
2255 my ($ds, $drive) = @_;
2256 return if drive_is_cdrom
($drive, 1);
2258 my $volid = $drive->{file
};
2259 return if !$volid || $volid =~ m
|^/|;
2260 return if $volids->{$volid};
2262 my ($path, $owner) = PVE
::Storage
::path
($storecfg, $volid);
2263 return if !$path || !$owner || ($owner != $vmid);
2265 $volids->{$volid} = 1;
2266 eval { PVE
::Storage
::vdisk_free
($storecfg, $volid) };
2267 warn "Could not remove disk '$volid', check manually: $@" if $@;
2270 # only remove disks owned by this VM (referenced in the config)
2271 my $include_opts = {
2272 include_unused
=> 1,
2273 extra_keys
=> ['vmstate'],
2275 PVE
::QemuConfig-
>foreach_volume_full($conf, $include_opts, $remove_owned_drive);
2277 for my $snap (values %{$conf->{snapshots
}}) {
2278 next if !defined($snap->{vmstate
});
2279 my $drive = PVE
::QemuConfig-
>parse_volume('vmstate', $snap->{vmstate
}, 1);
2280 next if !defined($drive);
2281 $remove_owned_drive->('vmstate', $drive);
2284 PVE
::QemuConfig-
>foreach_volume_full($conf->{pending
}, $include_opts, $remove_owned_drive);
2286 if ($purge_unreferenced) { # also remove unreferenced disk
2287 my $vmdisks = PVE
::Storage
::vdisk_list
($storecfg, undef, $vmid, undef, 'images');
2288 PVE
::Storage
::foreach_volid
($vmdisks, sub {
2289 my ($volid, $sid, $volname, $d) = @_;
2290 eval { PVE
::Storage
::vdisk_free
($storecfg, $volid) };
2295 eval { delete_ifaces_ipams_ips
($conf, $vmid)};
2298 if (defined $replacement_conf) {
2299 PVE
::QemuConfig-
>write_config($vmid, $replacement_conf);
2301 PVE
::QemuConfig-
>destroy_config($vmid);
2305 sub parse_vm_config
{
2306 my ($filename, $raw, $strict) = @_;
2308 return if !defined($raw);
2311 digest
=> Digest
::SHA
::sha1_hex
($raw),
2317 my $handle_error = sub {
2327 $filename =~ m
|/qemu-server/(\d
+)\
.conf
$|
2328 || die "got strange filename '$filename'";
2334 my $finish_description = sub {
2335 if (defined($descr)) {
2337 $conf->{description
} = $descr;
2343 my @lines = split(/\n/, $raw);
2344 foreach my $line (@lines) {
2345 next if $line =~ m/^\s*$/;
2347 if ($line =~ m/^\[PENDING\]\s*$/i) {
2348 $section = 'pending';
2349 $finish_description->();
2350 $conf = $res->{$section} = {};
2352 } elsif ($line =~ m/^\[special:cloudinit\]\s*$/i) {
2353 $section = 'cloudinit';
2354 $finish_description->();
2355 $conf = $res->{$section} = {};
2358 } elsif ($line =~ m/^\[([a-z][a-z0-9_\-]+)\]\s*$/i) {
2360 $finish_description->();
2361 $conf = $res->{snapshots
}->{$section} = {};
2365 if ($line =~ m/^\#(.*)$/) {
2366 $descr = '' if !defined($descr);
2367 $descr .= PVE
::Tools
::decode_text
($1) . "\n";
2371 if ($line =~ m/^(description):\s*(.*\S)\s*$/) {
2372 $descr = '' if !defined($descr);
2373 $descr .= PVE
::Tools
::decode_text
($2);
2374 } elsif ($line =~ m/snapstate:\s*(prepare|delete)\s*$/) {
2375 $conf->{snapstate
} = $1;
2376 } elsif ($line =~ m/^(args):\s*(.*\S)\s*$/) {
2379 $conf->{$key} = $value;
2380 } elsif ($line =~ m/^delete:\s*(.*\S)\s*$/) {
2382 if ($section eq 'pending') {
2383 $conf->{delete} = $value; # we parse this later
2385 $handle_error->("vm $vmid - property 'delete' is only allowed in [PENDING]\n");
2387 } elsif ($line =~ m/^([a-z][a-z_]*\d*):\s*(.+?)\s*$/) {
2390 if ($section eq 'cloudinit') {
2391 # ignore validation only used for informative purpose
2392 $conf->{$key} = $value;
2395 eval { $value = check_type
($key, $value); };
2397 $handle_error->("vm $vmid - unable to parse value of '$key' - $@");
2399 $key = 'ide2' if $key eq 'cdrom';
2400 my $fmt = $confdesc->{$key}->{format
};
2401 if ($fmt && $fmt =~ /^pve-qm-(?:ide|scsi|virtio|sata)$/) {
2402 my $v = parse_drive
($key, $value);
2403 if (my $volid = filename_to_volume_id
($vmid, $v->{file
}, $v->{media
})) {
2404 $v->{file
} = $volid;
2405 $value = print_drive
($v);
2407 $handle_error->("vm $vmid - unable to parse value of '$key'\n");
2412 $conf->{$key} = $value;
2415 $handle_error->("vm $vmid - unable to parse config: $line\n");
2419 $finish_description->();
2420 delete $res->{snapstate
}; # just to be sure
2425 sub write_vm_config
{
2426 my ($filename, $conf) = @_;
2428 delete $conf->{snapstate
}; # just to be sure
2430 if ($conf->{cdrom
}) {
2431 die "option ide2 conflicts with cdrom\n" if $conf->{ide2
};
2432 $conf->{ide2
} = $conf->{cdrom
};
2433 delete $conf->{cdrom
};
2436 # we do not use 'smp' any longer
2437 if ($conf->{sockets
}) {
2438 delete $conf->{smp
};
2439 } elsif ($conf->{smp
}) {
2440 $conf->{sockets
} = $conf->{smp
};
2441 delete $conf->{cores
};
2442 delete $conf->{smp
};
2445 my $used_volids = {};
2447 my $cleanup_config = sub {
2448 my ($cref, $pending, $snapname) = @_;
2450 foreach my $key (keys %$cref) {
2451 next if $key eq 'digest' || $key eq 'description' || $key eq 'snapshots' ||
2452 $key eq 'snapstate' || $key eq 'pending' || $key eq 'cloudinit';
2453 my $value = $cref->{$key};
2454 if ($key eq 'delete') {
2455 die "propertry 'delete' is only allowed in [PENDING]\n"
2457 # fixme: check syntax?
2460 eval { $value = check_type
($key, $value); };
2461 die "unable to parse value of '$key' - $@" if $@;
2463 $cref->{$key} = $value;
2465 if (!$snapname && is_valid_drivename
($key)) {
2466 my $drive = parse_drive
($key, $value);
2467 $used_volids->{$drive->{file
}} = 1 if $drive && $drive->{file
};
2472 &$cleanup_config($conf);
2474 &$cleanup_config($conf->{pending
}, 1);
2476 foreach my $snapname (keys %{$conf->{snapshots
}}) {
2477 die "internal error: snapshot name '$snapname' is forbidden" if lc($snapname) eq 'pending';
2478 &$cleanup_config($conf->{snapshots
}->{$snapname}, undef, $snapname);
2481 # remove 'unusedX' settings if we re-add a volume
2482 foreach my $key (keys %$conf) {
2483 my $value = $conf->{$key};
2484 if ($key =~ m/^unused/ && $used_volids->{$value}) {
2485 delete $conf->{$key};
2489 my $generate_raw_config = sub {
2490 my ($conf, $pending) = @_;
2494 # add description as comment to top of file
2495 if (defined(my $descr = $conf->{description
})) {
2497 foreach my $cl (split(/\n/, $descr)) {
2498 $raw .= '#' . PVE
::Tools
::encode_text
($cl) . "\n";
2501 $raw .= "#\n" if $pending;
2505 foreach my $key (sort keys %$conf) {
2506 next if $key =~ /^(digest|description|pending|cloudinit|snapshots)$/;
2507 $raw .= "$key: $conf->{$key}\n";
2512 my $raw = &$generate_raw_config($conf);
2514 if (scalar(keys %{$conf->{pending
}})){
2515 $raw .= "\n[PENDING]\n";
2516 $raw .= &$generate_raw_config($conf->{pending
}, 1);
2519 if (scalar(keys %{$conf->{cloudinit
}}) && PVE
::QemuConfig-
>has_cloudinit($conf)){
2520 $raw .= "\n[special:cloudinit]\n";
2521 $raw .= &$generate_raw_config($conf->{cloudinit
});
2524 foreach my $snapname (sort keys %{$conf->{snapshots
}}) {
2525 $raw .= "\n[$snapname]\n";
2526 $raw .= &$generate_raw_config($conf->{snapshots
}->{$snapname});
2536 # we use static defaults from our JSON schema configuration
2537 foreach my $key (keys %$confdesc) {
2538 if (defined(my $default = $confdesc->{$key}->{default})) {
2539 $res->{$key} = $default;
2547 my $vmlist = PVE
::Cluster
::get_vmlist
();
2549 return $res if !$vmlist || !$vmlist->{ids
};
2550 my $ids = $vmlist->{ids
};
2551 my $nodename = nodename
();
2553 foreach my $vmid (keys %$ids) {
2554 my $d = $ids->{$vmid};
2555 next if !$d->{node
} || $d->{node
} ne $nodename;
2556 next if !$d->{type
} || $d->{type
} ne 'qemu';
2557 $res->{$vmid}->{exists} = 1;
2562 # test if VM uses local resources (to prevent migration)
2563 sub check_local_resources
{
2564 my ($conf, $noerr) = @_;
2567 my $mapped_res = [];
2569 my $nodelist = PVE
::Cluster
::get_nodelist
();
2570 my $pci_map = PVE
::Mapping
::PCI
::config
();
2571 my $usb_map = PVE
::Mapping
::USB
::config
();
2573 my $missing_mappings_by_node = { map { $_ => [] } @$nodelist };
2575 my $add_missing_mapping = sub {
2576 my ($type, $key, $id) = @_;
2577 for my $node (@$nodelist) {
2579 if ($type eq 'pci') {
2580 $entry = PVE
::Mapping
::PCI
::get_node_mapping
($pci_map, $id, $node);
2581 } elsif ($type eq 'usb') {
2582 $entry = PVE
::Mapping
::USB
::get_node_mapping
($usb_map, $id, $node);
2584 if (!scalar($entry->@*)) {
2585 push @{$missing_mappings_by_node->{$node}}, $key;
2590 push @loc_res, "hostusb" if $conf->{hostusb
}; # old syntax
2591 push @loc_res, "hostpci" if $conf->{hostpci
}; # old syntax
2593 push @loc_res, "ivshmem" if $conf->{ivshmem
};
2595 foreach my $k (keys %$conf) {
2596 if ($k =~ m/^usb/) {
2597 my $entry = parse_property_string
('pve-qm-usb', $conf->{$k});
2598 next if $entry->{host
} =~ m/^spice$/i;
2599 if ($entry->{mapping
}) {
2600 $add_missing_mapping->('usb', $k, $entry->{mapping
});
2601 push @$mapped_res, $k;
2604 if ($k =~ m/^hostpci/) {
2605 my $entry = parse_property_string
('pve-qm-hostpci', $conf->{$k});
2606 if ($entry->{mapping
}) {
2607 $add_missing_mapping->('pci', $k, $entry->{mapping
});
2608 push @$mapped_res, $k;
2611 # sockets are safe: they will recreated be on the target side post-migrate
2612 next if $k =~ m/^serial/ && ($conf->{$k} eq 'socket');
2613 push @loc_res, $k if $k =~ m/^(usb|hostpci|serial|parallel)\d+$/;
2616 die "VM uses local resources\n" if scalar @loc_res && !$noerr;
2618 return wantarray ?
(\
@loc_res, $mapped_res, $missing_mappings_by_node) : \
@loc_res;
2621 # check if used storages are available on all nodes (use by migrate)
2622 sub check_storage_availability
{
2623 my ($storecfg, $conf, $node) = @_;
2625 PVE
::QemuConfig-
>foreach_volume($conf, sub {
2626 my ($ds, $drive) = @_;
2628 my $volid = $drive->{file
};
2631 my ($sid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
2634 # check if storage is available on both nodes
2635 my $scfg = PVE
::Storage
::storage_check_enabled
($storecfg, $sid);
2636 PVE
::Storage
::storage_check_enabled
($storecfg, $sid, $node);
2638 my ($vtype) = PVE
::Storage
::parse_volname
($storecfg, $volid);
2640 die "$volid: content type '$vtype' is not available on storage '$sid'\n"
2641 if !$scfg->{content
}->{$vtype};
2645 # list nodes where all VM images are available (used by has_feature API)
2647 my ($conf, $storecfg) = @_;
2649 my $nodelist = PVE
::Cluster
::get_nodelist
();
2650 my $nodehash = { map { $_ => 1 } @$nodelist };
2651 my $nodename = nodename
();
2653 PVE
::QemuConfig-
>foreach_volume($conf, sub {
2654 my ($ds, $drive) = @_;
2656 my $volid = $drive->{file
};
2659 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
2661 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
2662 if ($scfg->{disable
}) {
2664 } elsif (my $avail = $scfg->{nodes
}) {
2665 foreach my $node (keys %$nodehash) {
2666 delete $nodehash->{$node} if !$avail->{$node};
2668 } elsif (!$scfg->{shared
}) {
2669 foreach my $node (keys %$nodehash) {
2670 delete $nodehash->{$node} if $node ne $nodename
2679 sub check_local_storage_availability
{
2680 my ($conf, $storecfg) = @_;
2682 my $nodelist = PVE
::Cluster
::get_nodelist
();
2683 my $nodehash = { map { $_ => {} } @$nodelist };
2685 PVE
::QemuConfig-
>foreach_volume($conf, sub {
2686 my ($ds, $drive) = @_;
2688 my $volid = $drive->{file
};
2691 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
2693 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
2695 if ($scfg->{disable
}) {
2696 foreach my $node (keys %$nodehash) {
2697 $nodehash->{$node}->{unavailable_storages
}->{$storeid} = 1;
2699 } elsif (my $avail = $scfg->{nodes
}) {
2700 foreach my $node (keys %$nodehash) {
2701 if (!$avail->{$node}) {
2702 $nodehash->{$node}->{unavailable_storages
}->{$storeid} = 1;
2709 foreach my $node (values %$nodehash) {
2710 if (my $unavail = $node->{unavailable_storages
}) {
2711 $node->{unavailable_storages
} = [ sort keys %$unavail ];
2718 # Compat only, use assert_config_exists_on_node and vm_running_locally where possible
2720 my ($vmid, $nocheck, $node) = @_;
2722 # $nocheck is set when called during a migration, in which case the config
2723 # file might still or already reside on the *other* node
2724 # - because rename has already happened, and current node is source
2725 # - because rename hasn't happened yet, and current node is target
2726 # - because rename has happened, current node is target, but hasn't yet
2728 PVE
::QemuConfig
::assert_config_exists_on_node
($vmid, $node) if !$nocheck;
2729 return PVE
::QemuServer
::Helpers
::vm_running_locally
($vmid);
2734 my $vzlist = config_list
();
2736 my $fd = IO
::Dir-
>new($PVE::QemuServer
::Helpers
::var_run_tmpdir
) || return $vzlist;
2738 while (defined(my $de = $fd->read)) {
2739 next if $de !~ m/^(\d+)\.pid$/;
2741 next if !defined($vzlist->{$vmid});
2742 if (my $pid = check_running
($vmid)) {
2743 $vzlist->{$vmid}->{pid
} = $pid;
2750 our $vmstatus_return_properties = {
2751 vmid
=> get_standard_option
('pve-vmid'),
2753 description
=> "QEMU process status.",
2755 enum
=> ['stopped', 'running'],
2758 description
=> "Maximum memory in bytes.",
2761 renderer
=> 'bytes',
2764 description
=> "Root disk size in bytes.",
2767 renderer
=> 'bytes',
2770 description
=> "VM name.",
2775 description
=> "VM run state from the 'query-status' QMP monitor command.",
2780 description
=> "PID of running qemu process.",
2785 description
=> "Uptime.",
2788 renderer
=> 'duration',
2791 description
=> "Maximum usable CPUs.",
2796 description
=> "The current config lock, if any.",
2801 description
=> "The current configured tags, if any",
2805 'running-machine' => {
2806 description
=> "The currently running machine type (if running).",
2811 description
=> "The currently running QEMU version (if running).",
2817 my $last_proc_pid_stat;
2819 # get VM status information
2820 # This must be fast and should not block ($full == false)
2821 # We only query KVM using QMP if $full == true (this can be slow)
2823 my ($opt_vmid, $full) = @_;
2827 my $storecfg = PVE
::Storage
::config
();
2829 my $list = vzlist
();
2830 my $defaults = load_defaults
();
2832 my ($uptime) = PVE
::ProcFSTools
::read_proc_uptime
(1);
2834 my $cpucount = $cpuinfo->{cpus
} || 1;
2836 foreach my $vmid (keys %$list) {
2837 next if $opt_vmid && ($vmid ne $opt_vmid);
2839 my $conf = PVE
::QemuConfig-
>load_config($vmid);
2841 my $d = { vmid
=> int($vmid) };
2842 $d->{pid
} = int($list->{$vmid}->{pid
}) if $list->{$vmid}->{pid
};
2844 # fixme: better status?
2845 $d->{status
} = $list->{$vmid}->{pid
} ?
'running' : 'stopped';
2847 my $size = PVE
::QemuServer
::Drive
::bootdisk_size
($storecfg, $conf);
2848 if (defined($size)) {
2849 $d->{disk
} = 0; # no info available
2850 $d->{maxdisk
} = $size;
2856 $d->{cpus
} = ($conf->{sockets
} || $defaults->{sockets
})
2857 * ($conf->{cores
} || $defaults->{cores
});
2858 $d->{cpus
} = $cpucount if $d->{cpus
} > $cpucount;
2859 $d->{cpus
} = $conf->{vcpus
} if $conf->{vcpus
};
2861 $d->{name
} = $conf->{name
} || "VM $vmid";
2862 $d->{maxmem
} = get_current_memory
($conf->{memory
})*(1024*1024);
2864 if ($conf->{balloon
}) {
2865 $d->{balloon_min
} = $conf->{balloon
}*(1024*1024);
2866 $d->{shares
} = defined($conf->{shares
}) ?
$conf->{shares
}
2867 : $defaults->{shares
};
2878 $d->{diskwrite
} = 0;
2880 $d->{template
} = 1 if PVE
::QemuConfig-
>is_template($conf);
2882 $d->{serial
} = 1 if conf_has_serial
($conf);
2883 $d->{lock} = $conf->{lock} if $conf->{lock};
2884 $d->{tags
} = $conf->{tags
} if defined($conf->{tags
});
2889 my $netdev = PVE
::ProcFSTools
::read_proc_net_dev
();
2890 foreach my $dev (keys %$netdev) {
2891 next if $dev !~ m/^tap([1-9]\d*)i/;
2893 my $d = $res->{$vmid};
2896 $d->{netout
} += $netdev->{$dev}->{receive
};
2897 $d->{netin
} += $netdev->{$dev}->{transmit
};
2900 $d->{nics
}->{$dev}->{netout
} = int($netdev->{$dev}->{receive
});
2901 $d->{nics
}->{$dev}->{netin
} = int($netdev->{$dev}->{transmit
});
2906 my $ctime = gettimeofday
;
2908 foreach my $vmid (keys %$list) {
2910 my $d = $res->{$vmid};
2911 my $pid = $d->{pid
};
2914 my $pstat = PVE
::ProcFSTools
::read_proc_pid_stat
($pid);
2915 next if !$pstat; # not running
2917 my $used = $pstat->{utime} + $pstat->{stime
};
2919 $d->{uptime
} = int(($uptime - $pstat->{starttime
})/$cpuinfo->{user_hz
});
2921 if ($pstat->{vsize
}) {
2922 $d->{mem
} = int(($pstat->{rss
}/$pstat->{vsize
})*$d->{maxmem
});
2925 my $old = $last_proc_pid_stat->{$pid};
2927 $last_proc_pid_stat->{$pid} = {
2935 my $dtime = ($ctime - $old->{time}) * $cpucount * $cpuinfo->{user_hz
};
2937 if ($dtime > 1000) {
2938 my $dutime = $used - $old->{used
};
2940 $d->{cpu
} = (($dutime/$dtime)* $cpucount) / $d->{cpus
};
2941 $last_proc_pid_stat->{$pid} = {
2947 $d->{cpu
} = $old->{cpu
};
2951 return $res if !$full;
2953 my $qmpclient = PVE
::QMPClient-
>new();
2955 my $ballooncb = sub {
2956 my ($vmid, $resp) = @_;
2958 my $info = $resp->{'return'};
2959 return if !$info->{max_mem
};
2961 my $d = $res->{$vmid};
2963 # use memory assigned to VM
2964 $d->{maxmem
} = $info->{max_mem
};
2965 $d->{balloon
} = $info->{actual
};
2967 if (defined($info->{total_mem
}) && defined($info->{free_mem
})) {
2968 $d->{mem
} = $info->{total_mem
} - $info->{free_mem
};
2969 $d->{freemem
} = $info->{free_mem
};
2972 $d->{ballooninfo
} = $info;
2975 my $blockstatscb = sub {
2976 my ($vmid, $resp) = @_;
2977 my $data = $resp->{'return'} || [];
2978 my $totalrdbytes = 0;
2979 my $totalwrbytes = 0;
2981 for my $blockstat (@$data) {
2982 $totalrdbytes = $totalrdbytes + $blockstat->{stats
}->{rd_bytes
};
2983 $totalwrbytes = $totalwrbytes + $blockstat->{stats
}->{wr_bytes
};
2985 $blockstat->{device
} =~ s/drive-//;
2986 $res->{$vmid}->{blockstat
}->{$blockstat->{device
}} = $blockstat->{stats
};
2988 $res->{$vmid}->{diskread
} = $totalrdbytes;
2989 $res->{$vmid}->{diskwrite
} = $totalwrbytes;
2992 my $machinecb = sub {
2993 my ($vmid, $resp) = @_;
2994 my $data = $resp->{'return'} || [];
2996 $res->{$vmid}->{'running-machine'} =
2997 PVE
::QemuServer
::Machine
::current_from_query_machines
($data);
3000 my $versioncb = sub {
3001 my ($vmid, $resp) = @_;
3002 my $data = $resp->{'return'} // {};
3003 my $version = 'unknown';
3005 if (my $v = $data->{qemu
}) {
3006 $version = $v->{major
} . "." . $v->{minor
} . "." . $v->{micro
};
3009 $res->{$vmid}->{'running-qemu'} = $version;
3012 my $statuscb = sub {
3013 my ($vmid, $resp) = @_;
3015 $qmpclient->queue_cmd($vmid, $blockstatscb, 'query-blockstats');
3016 $qmpclient->queue_cmd($vmid, $machinecb, 'query-machines');
3017 $qmpclient->queue_cmd($vmid, $versioncb, 'query-version');
3018 # this fails if ballon driver is not loaded, so this must be
3019 # the last commnand (following command are aborted if this fails).
3020 $qmpclient->queue_cmd($vmid, $ballooncb, 'query-balloon');
3022 my $status = 'unknown';
3023 if (!defined($status = $resp->{'return'}->{status
})) {
3024 warn "unable to get VM status\n";
3028 $res->{$vmid}->{qmpstatus
} = $resp->{'return'}->{status
};
3031 foreach my $vmid (keys %$list) {
3032 next if $opt_vmid && ($vmid ne $opt_vmid);
3033 next if !$res->{$vmid}->{pid
}; # not running
3034 $qmpclient->queue_cmd($vmid, $statuscb, 'query-status');
3037 $qmpclient->queue_execute(undef, 2);
3039 foreach my $vmid (keys %$list) {
3040 next if $opt_vmid && ($vmid ne $opt_vmid);
3041 next if !$res->{$vmid}->{pid
}; #not running
3043 # we can't use the $qmpclient since it might have already aborted on
3044 # 'query-balloon', but this might also fail for older versions...
3045 my $qemu_support = eval { mon_cmd
($vmid, "query-proxmox-support") };
3046 $res->{$vmid}->{'proxmox-support'} = $qemu_support // {};
3049 foreach my $vmid (keys %$list) {
3050 next if $opt_vmid && ($vmid ne $opt_vmid);
3051 $res->{$vmid}->{qmpstatus
} = $res->{$vmid}->{status
} if !$res->{$vmid}->{qmpstatus
};
3057 sub conf_has_serial
{
3060 for (my $i = 0; $i < $MAX_SERIAL_PORTS; $i++) {
3061 if ($conf->{"serial$i"}) {
3069 sub conf_has_audio
{
3070 my ($conf, $id) = @_;
3073 my $audio = $conf->{"audio$id"};
3074 return if !defined($audio);
3076 my $audioproperties = parse_property_string
($audio_fmt, $audio);
3077 my $audiodriver = $audioproperties->{driver
} // 'spice';
3080 dev
=> $audioproperties->{device
},
3081 dev_id
=> "audiodev$id",
3082 backend
=> $audiodriver,
3083 backend_id
=> "$audiodriver-backend${id}",
3088 my ($audio, $audiopciaddr, $machine_version) = @_;
3092 my $id = $audio->{dev_id
};
3094 if (min_version
($machine_version, 4, 2)) {
3095 $audiodev = ",audiodev=$audio->{backend_id}";
3098 if ($audio->{dev
} eq 'AC97') {
3099 push @$devs, '-device', "AC97,id=${id}${audiopciaddr}$audiodev";
3100 } elsif ($audio->{dev
} =~ /intel\-hda$/) {
3101 push @$devs, '-device', "$audio->{dev},id=${id}${audiopciaddr}";
3102 push @$devs, '-device', "hda-micro,id=${id}-codec0,bus=${id}.0,cad=0$audiodev";
3103 push @$devs, '-device', "hda-duplex,id=${id}-codec1,bus=${id}.0,cad=1$audiodev";
3105 die "unkown audio device '$audio->{dev}', implement me!";
3108 push @$devs, '-audiodev', "$audio->{backend},id=$audio->{backend_id}";
3116 socket => "/var/run/qemu-server/$vmid.swtpm",
3117 pid
=> "/var/run/qemu-server/$vmid.swtpm.pid",
3121 sub add_tpm_device
{
3122 my ($vmid, $devices, $conf) = @_;
3124 return if !$conf->{tpmstate0
};
3126 my $paths = get_tpm_paths
($vmid);
3128 push @$devices, "-chardev", "socket,id=tpmchar,path=$paths->{socket}";
3129 push @$devices, "-tpmdev", "emulator,id=tpmdev,chardev=tpmchar";
3130 push @$devices, "-device", "tpm-tis,tpmdev=tpmdev";
3134 my ($storecfg, $vmid, $tpmdrive, $migration) = @_;
3136 return if !$tpmdrive;
3139 my $tpm = parse_drive
("tpmstate0", $tpmdrive);
3140 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($tpm->{file
}, 1);
3142 $state = PVE
::Storage
::map_volume
($storecfg, $tpm->{file
});
3144 $state = $tpm->{file
};
3147 my $paths = get_tpm_paths
($vmid);
3149 # during migration, we will get state from remote
3152 # run swtpm_setup to create a new TPM state if it doesn't exist yet
3159 "--create-platform-cert",
3162 "/etc/swtpm_setup.conf", # do not use XDG configs
3164 "0", # force creation as root, error if not possible
3165 "--not-overwrite", # ignore existing state, do not modify
3168 push @$setup_cmd, "--tpm2" if $tpm->{version
} eq 'v2.0';
3169 # TPM 2.0 supports ECC crypto, use if possible
3170 push @$setup_cmd, "--ecc" if $tpm->{version
} eq 'v2.0';
3172 run_command
($setup_cmd, outfunc
=> sub {
3173 print "swtpm_setup: $1\n";
3177 # Used to distinguish different invocations in the log.
3178 my $log_prefix = "[id=" . int(time()) . "] ";
3180 my $emulator_cmd = [
3184 "backend-uri=file://$state,mode=0600",
3186 "type=unixio,path=$paths->{socket},mode=0600",
3188 "file=$paths->{pid}",
3189 "--terminate", # terminate on QEMU disconnect
3192 "file=/run/qemu-server/$vmid-swtpm.log,level=1,prefix=$log_prefix",
3194 push @$emulator_cmd, "--tpm2" if $tpm->{version
} eq 'v2.0';
3195 run_command
($emulator_cmd, outfunc
=> sub { print $1; });
3197 my $tries = 100; # swtpm may take a bit to start before daemonizing, wait up to 5s for pid
3198 while (! -e
$paths->{pid
}) {
3199 die "failed to start swtpm: pid file '$paths->{pid}' wasn't created.\n" if --$tries == 0;
3203 # return untainted PID of swtpm daemon so it can be killed on error
3204 file_read_firstline
($paths->{pid
}) =~ m/(\d+)/;
3208 sub vga_conf_has_spice
{
3211 my $vgaconf = parse_vga
($vga);
3212 my $vgatype = $vgaconf->{type
};
3213 return 0 if !$vgatype || $vgatype !~ m/^qxl([234])?$/;
3220 return $conf->{arch
} // get_host_arch
();
3223 my $default_machines = {
3228 sub get_installed_machine_version
{
3229 my ($kvmversion) = @_;
3230 $kvmversion = kvm_user_version
() if !defined($kvmversion);
3231 $kvmversion =~ m/^(\d+\.\d+)/;
3235 sub windows_get_pinned_machine_version
{
3236 my ($machine, $base_version, $kvmversion) = @_;
3238 my $pin_version = $base_version;
3239 if (!defined($base_version) ||
3240 !PVE
::QemuServer
::Machine
::can_run_pve_machine_version
($base_version, $kvmversion)
3242 $pin_version = get_installed_machine_version
($kvmversion);
3244 if (!$machine || $machine eq 'pc') {
3245 $machine = "pc-i440fx-$pin_version";
3246 } elsif ($machine eq 'q35') {
3247 $machine = "pc-q35-$pin_version";
3248 } elsif ($machine eq 'virt') {
3249 $machine = "virt-$pin_version";
3251 warn "unknown machine type '$machine', not touching that!\n";
3257 sub get_vm_machine
{
3258 my ($conf, $forcemachine, $arch, $add_pve_version, $kvmversion) = @_;
3260 my $machine = $forcemachine || $conf->{machine
};
3262 if (!$machine || $machine =~ m/^(?:pc|q35|virt)$/) {
3263 $kvmversion //= kvm_user_version
();
3264 # we must pin Windows VMs without a specific version to 5.1, as 5.2 fixed a bug in ACPI
3265 # layout which confuses windows quite a bit and may result in various regressions..
3266 # see: https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg08484.html
3267 if (windows_version
($conf->{ostype
})) {
3268 $machine = windows_get_pinned_machine_version
($machine, '5.1', $kvmversion);
3271 $machine ||= $default_machines->{$arch};
3272 if ($add_pve_version) {
3273 my $pvever = PVE
::QemuServer
::Machine
::get_pve_version
($kvmversion);
3274 $machine .= "+pve$pvever";
3278 if ($add_pve_version && $machine !~ m/\+pve\d+?(?:\.pxe)?$/) {
3279 my $is_pxe = $machine =~ m/^(.*?)\.pxe$/;
3280 $machine = $1 if $is_pxe;
3282 # for version-pinned machines that do not include a pve-version (e.g.
3283 # pc-q35-4.1), we assume 0 to keep them stable in case we bump
3284 $machine .= '+pve0';
3286 $machine .= '.pxe' if $is_pxe;
3292 sub get_ovmf_files
($$$) {
3293 my ($arch, $efidisk, $smm) = @_;
3295 my $types = $OVMF->{$arch}
3296 or die "no OVMF images known for architecture '$arch'\n";
3298 my $type = 'default';
3299 if ($arch eq 'x86_64') {
3300 if (defined($efidisk->{efitype
}) && $efidisk->{efitype
} eq '4m') {
3301 $type = $smm ?
"4m" : "4m-no-smm";
3302 $type .= '-ms' if $efidisk->{'pre-enrolled-keys'};
3304 # TODO: log_warn about use of legacy images for x86_64 with Promxox VE 9
3308 my ($ovmf_code, $ovmf_vars) = $types->{$type}->@*;
3309 die "EFI base image '$ovmf_code' not found\n" if ! -f
$ovmf_code;
3310 die "EFI vars image '$ovmf_vars' not found\n" if ! -f
$ovmf_vars;
3312 return ($ovmf_code, $ovmf_vars);
3316 aarch64
=> '/usr/bin/qemu-system-aarch64',
3317 x86_64
=> '/usr/bin/qemu-system-x86_64',
3319 sub get_command_for_arch
($) {
3321 return '/usr/bin/kvm' if is_native_arch
($arch);
3323 my $cmd = $Arch2Qemu->{$arch}
3324 or die "don't know how to emulate architecture '$arch'\n";
3328 # To use query_supported_cpu_flags and query_understood_cpu_flags to get flags
3329 # to use in a QEMU command line (-cpu element), first array_intersect the result
3330 # of query_supported_ with query_understood_. This is necessary because:
3332 # a) query_understood_ returns flags the host cannot use and
3333 # b) query_supported_ (rather the QMP call) doesn't actually return CPU
3334 # flags, but CPU settings - with most of them being flags. Those settings
3335 # (and some flags, curiously) cannot be specified as a "-cpu" argument.
3337 # query_supported_ needs to start up to 2 temporary VMs and is therefore rather
3338 # expensive. If you need the value returned from this, you can get it much
3339 # cheaper from pmxcfs using PVE::Cluster::get_node_kv('cpuflags-$accel') with
3340 # $accel being 'kvm' or 'tcg'.
3342 # pvestatd calls this function on startup and whenever the QEMU/KVM version
3343 # changes, automatically populating pmxcfs.
3345 # Returns: { kvm => [ flagX, flagY, ... ], tcg => [ flag1, flag2, ... ] }
3346 # since kvm and tcg machines support different flags
3348 sub query_supported_cpu_flags
{
3351 $arch //= get_host_arch
();
3352 my $default_machine = $default_machines->{$arch};
3356 # FIXME: Once this is merged, the code below should work for ARM as well:
3357 # https://lists.nongnu.org/archive/html/qemu-devel/2019-06/msg04947.html
3358 die "QEMU/KVM cannot detect CPU flags on ARM (aarch64)\n" if
3361 my $kvm_supported = defined(kvm_version
());
3362 my $qemu_cmd = get_command_for_arch
($arch);
3364 my $pidfile = PVE
::QemuServer
::Helpers
::pidfile_name
($fakevmid);
3366 # Start a temporary (frozen) VM with vmid -1 to allow sending a QMP command
3367 my $query_supported_run_qemu = sub {
3373 '-machine', $default_machine,
3375 '-chardev', "socket,id=qmp,path=/var/run/qemu-server/$fakevmid.qmp,server=on,wait=off",
3376 '-mon', 'chardev=qmp,mode=control',
3377 '-pidfile', $pidfile,
3382 push @$cmd, '-accel', 'tcg';
3385 my $rc = run_command
($cmd, noerr
=> 1, quiet
=> 0);
3386 die "QEMU flag querying VM exited with code " . $rc if $rc;
3389 my $cmd_result = mon_cmd
(
3391 'query-cpu-model-expansion',
3393 model
=> { name
=> 'host' }
3396 my $props = $cmd_result->{model
}->{props
};
3397 foreach my $prop (keys %$props) {
3398 next if $props->{$prop} ne '1';
3399 # QEMU returns some flags multiple times, with '_', '.' or '-'
3400 # (e.g. lahf_lm and lahf-lm; sse4.2, sse4-2 and sse4_2; ...).
3401 # We only keep those with underscores, to match /proc/cpuinfo
3402 $prop =~ s/\.|-/_/g;
3403 $flags->{$prop} = 1;
3408 # force stop with 10 sec timeout and 'nocheck', always stop, even if QMP failed
3409 vm_stop
(undef, $fakevmid, 1, 1, 10, 0, 1);
3413 return [ sort keys %$flags ];
3416 # We need to query QEMU twice, since KVM and TCG have different supported flags
3417 PVE
::QemuConfig-
>lock_config($fakevmid, sub {
3418 $flags->{tcg
} = eval { $query_supported_run_qemu->(0) };
3419 warn "warning: failed querying supported tcg flags: $@\n" if $@;
3421 if ($kvm_supported) {
3422 $flags->{kvm
} = eval { $query_supported_run_qemu->(1) };
3423 warn "warning: failed querying supported kvm flags: $@\n" if $@;
3430 # Understood CPU flags are written to a file at 'pve-qemu' compile time
3431 my $understood_cpu_flag_dir = "/usr/share/kvm";
3432 sub query_understood_cpu_flags
{
3433 my $arch = get_host_arch
();
3434 my $filepath = "$understood_cpu_flag_dir/recognized-CPUID-flags-$arch";
3436 die "Cannot query understood QEMU CPU flags for architecture: $arch (file not found)\n"
3439 my $raw = file_get_contents
($filepath);
3440 $raw =~ s/^\s+|\s+$//g;
3441 my @flags = split(/\s+/, $raw);
3446 # Since commit 277d33454f77ec1d1e0bc04e37621e4dd2424b67 in pve-qemu, smm is not off by default
3447 # anymore. But smm=off seems to be required when using SeaBIOS and serial display.
3448 my sub should_disable_smm
{
3449 my ($conf, $vga, $machine) = @_;
3451 return if $machine =~ m/^virt/; # there is no smm flag that could be disabled
3453 return (!defined($conf->{bios
}) || $conf->{bios
} eq 'seabios') &&
3454 $vga->{type
} && $vga->{type
} =~ m/^(serial\d+|none)$/;
3457 my sub print_ovmf_drive_commandlines
{
3458 my ($conf, $storecfg, $vmid, $arch, $q35, $version_guard) = @_;
3460 my $d = $conf->{efidisk0
} ? parse_drive
('efidisk0', $conf->{efidisk0
}) : undef;
3462 my ($ovmf_code, $ovmf_vars) = get_ovmf_files
($arch, $d, $q35);
3464 my $var_drive_str = "if=pflash,unit=1,id=drive-efidisk0";
3466 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($d->{file
}, 1);
3467 my ($path, $format) = $d->@{'file', 'format'};
3469 $path = PVE
::Storage
::path
($storecfg, $d->{file
});
3470 if (!defined($format)) {
3471 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
3472 $format = qemu_img_format
($scfg, $volname);
3474 } elsif (!defined($format)) {
3475 die "efidisk format must be specified\n";
3477 # SPI flash does lots of read-modify-write OPs, without writeback this gets really slow #3329
3478 if ($path =~ m/^rbd:/) {
3479 $var_drive_str .= ',cache=writeback';
3480 $path .= ':rbd_cache_policy=writeback'; # avoid write-around, we *need* to cache writes too
3482 $var_drive_str .= ",format=$format,file=$path";
3484 $var_drive_str .= ",size=" . (-s
$ovmf_vars) if $format eq 'raw' && $version_guard->(4, 1, 2);
3485 $var_drive_str .= ',readonly=on' if drive_is_read_only
($conf, $d);
3487 log_warn
("no efidisk configured! Using temporary efivars disk.");
3488 my $path = "/tmp/$vmid-ovmf.fd";
3489 PVE
::Tools
::file_copy
($ovmf_vars, $path, -s
$ovmf_vars);
3490 $var_drive_str .= ",format=raw,file=$path";
3491 $var_drive_str .= ",size=" . (-s
$ovmf_vars) if $version_guard->(4, 1, 2);
3494 return ("if=pflash,unit=0,format=raw,readonly=on,file=$ovmf_code", $var_drive_str);
3497 sub config_to_command
{
3498 my ($storecfg, $vmid, $conf, $defaults, $forcemachine, $forcecpu,
3501 my ($globalFlags, $machineFlags, $rtcFlags) = ([], [], []);
3504 my $ostype = $conf->{ostype
};
3505 my $winversion = windows_version
($ostype);
3506 my $kvm = $conf->{kvm
};
3507 my $nodename = nodename
();
3509 my $arch = get_vm_arch
($conf);
3510 my $kvm_binary = get_command_for_arch
($arch);
3511 my $kvmver = kvm_user_version
($kvm_binary);
3513 if (!$kvmver || $kvmver !~ m/^(\d+)\.(\d+)/ || $1 < 3) {
3514 $kvmver //= "undefined";
3515 die "Detected old QEMU binary ('$kvmver', at least 3.0 is required)\n";
3518 my $add_pve_version = min_version
($kvmver, 4, 1);
3520 my $machine_type = get_vm_machine
($conf, $forcemachine, $arch, $add_pve_version);
3521 my $machine_version = extract_version
($machine_type, $kvmver);
3522 $kvm //= 1 if is_native_arch
($arch);
3524 $machine_version =~ m/(\d+)\.(\d+)/;
3525 my ($machine_major, $machine_minor) = ($1, $2);
3527 if ($kvmver =~ m/^\d+\.\d+\.(\d+)/ && $1 >= 90) {
3528 warn "warning: Installed QEMU version ($kvmver) is a release candidate, ignoring version checks\n";
3529 } elsif (!min_version
($kvmver, $machine_major, $machine_minor)) {
3530 die "Installed QEMU version '$kvmver' is too old to run machine type '$machine_type',"
3531 ." please upgrade node '$nodename'\n"
3532 } elsif (!PVE
::QemuServer
::Machine
::can_run_pve_machine_version
($machine_version, $kvmver)) {
3533 my $max_pve_version = PVE
::QemuServer
::Machine
::get_pve_version
($machine_version);
3534 die "Installed qemu-server (max feature level for $machine_major.$machine_minor is"
3535 ." pve$max_pve_version) is too old to run machine type '$machine_type', please upgrade"
3536 ." node '$nodename'\n";
3539 # if a specific +pve version is required for a feature, use $version_guard
3540 # instead of min_version to allow machines to be run with the minimum
3542 my $required_pve_version = 0;
3543 my $version_guard = sub {
3544 my ($major, $minor, $pve) = @_;
3545 return 0 if !min_version
($machine_version, $major, $minor, $pve);
3546 my $max_pve = PVE
::QemuServer
::Machine
::get_pve_version
("$major.$minor");
3547 return 1 if min_version
($machine_version, $major, $minor, $max_pve+1);
3548 $required_pve_version = $pve if $pve && $pve > $required_pve_version;
3552 if ($kvm && !defined kvm_version
()) {
3553 die "KVM virtualisation configured, but not available. Either disable in VM configuration"
3554 ." or enable in BIOS.\n";
3557 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
3558 my $hotplug_features = parse_hotplug_features
(defined($conf->{hotplug
}) ?
$conf->{hotplug
} : '1');
3559 my $use_old_bios_files = undef;
3560 ($use_old_bios_files, $machine_type) = qemu_use_old_bios_files
($machine_type);
3563 if ($conf->{affinity
}) {
3564 push @$cmd, '/usr/bin/taskset', '--cpu-list', '--all-tasks', $conf->{affinity
};
3567 push @$cmd, $kvm_binary;
3569 push @$cmd, '-id', $vmid;
3571 my $vmname = $conf->{name
} || "vm$vmid";
3573 push @$cmd, '-name', "$vmname,debug-threads=on";
3575 push @$cmd, '-no-shutdown';
3579 my $qmpsocket = PVE
::QemuServer
::Helpers
::qmp_socket
($vmid);
3580 push @$cmd, '-chardev', "socket,id=qmp,path=$qmpsocket,server=on,wait=off";
3581 push @$cmd, '-mon', "chardev=qmp,mode=control";
3583 if (min_version
($machine_version, 2, 12)) {
3584 push @$cmd, '-chardev', "socket,id=qmp-event,path=/var/run/qmeventd.sock,reconnect=5";
3585 push @$cmd, '-mon', "chardev=qmp-event,mode=control";
3588 push @$cmd, '-pidfile' , PVE
::QemuServer
::Helpers
::pidfile_name
($vmid);
3590 push @$cmd, '-daemonize';
3592 if ($conf->{smbios1
}) {
3593 my $smbios_conf = parse_smbios1
($conf->{smbios1
});
3594 if ($smbios_conf->{base64
}) {
3595 # Do not pass base64 flag to qemu
3596 delete $smbios_conf->{base64
};
3597 my $smbios_string = "";
3598 foreach my $key (keys %$smbios_conf) {
3600 if ($key eq "uuid") {
3601 $value = $smbios_conf->{uuid
}
3603 $value = decode_base64
($smbios_conf->{$key});
3605 # qemu accepts any binary data, only commas need escaping by double comma
3607 $smbios_string .= "," . $key . "=" . $value if $value;
3609 push @$cmd, '-smbios', "type=1" . $smbios_string;
3611 push @$cmd, '-smbios', "type=1,$conf->{smbios1}";
3615 if ($conf->{bios
} && $conf->{bios
} eq 'ovmf') {
3616 die "OVMF (UEFI) BIOS is not supported on 32-bit CPU types\n"
3617 if !$forcecpu && get_cpu_bitness
($conf->{cpu
}, $arch) == 32;
3619 my ($code_drive_str, $var_drive_str) =
3620 print_ovmf_drive_commandlines
($conf, $storecfg, $vmid, $arch, $q35, $version_guard);
3621 push $cmd->@*, '-drive', $code_drive_str;
3622 push $cmd->@*, '-drive', $var_drive_str;
3625 if ($q35) { # tell QEMU to load q35 config early
3626 # we use different pcie-port hardware for qemu >= 4.0 for passthrough
3627 if (min_version
($machine_version, 4, 0)) {
3628 push @$devices, '-readconfig', '/usr/share/qemu-server/pve-q35-4.0.cfg';
3630 push @$devices, '-readconfig', '/usr/share/qemu-server/pve-q35.cfg';
3634 if (defined(my $fixups = qemu_created_version_fixups
($conf, $forcemachine, $kvmver))) {
3635 push @$cmd, $fixups->@*;
3638 if ($conf->{vmgenid
}) {
3639 push @$devices, '-device', 'vmgenid,guid='.$conf->{vmgenid
};
3642 # add usb controllers
3643 my @usbcontrollers = PVE
::QemuServer
::USB
::get_usb_controllers
(
3644 $conf, $bridges, $arch, $machine_type, $machine_version);
3645 push @$devices, @usbcontrollers if @usbcontrollers;
3646 my $vga = parse_vga
($conf->{vga
});
3648 my $qxlnum = vga_conf_has_spice
($conf->{vga
});
3649 $vga->{type
} = 'qxl' if $qxlnum;
3651 if (!$vga->{type
}) {
3652 if ($arch eq 'aarch64') {
3653 $vga->{type
} = 'virtio';
3654 } elsif (min_version
($machine_version, 2, 9)) {
3655 $vga->{type
} = (!$winversion || $winversion >= 6) ?
'std' : 'cirrus';
3657 $vga->{type
} = ($winversion >= 6) ?
'std' : 'cirrus';
3661 # enable absolute mouse coordinates (needed by vnc)
3662 my $tablet = $conf->{tablet
};
3663 if (!defined($tablet)) {
3664 $tablet = $defaults->{tablet
};
3665 $tablet = 0 if $qxlnum; # disable for spice because it is not needed
3666 $tablet = 0 if $vga->{type
} =~ m/^serial\d+$/; # disable if we use serial terminal (no vga card)
3670 push @$devices, '-device', print_tabletdevice_full
($conf, $arch) if $tablet;
3671 my $kbd = print_keyboarddevice_full
($conf, $arch);
3672 push @$devices, '-device', $kbd if defined($kbd);
3675 my $bootorder = device_bootorder
($conf);
3677 # host pci device passthrough
3678 my ($kvm_off, $gpu_passthrough, $legacy_igd, $pci_devices) = PVE
::QemuServer
::PCI
::print_hostpci_devices
(
3679 $vmid, $conf, $devices, $vga, $winversion, $bridges, $arch, $machine_type, $bootorder);
3682 my $usb_dev_features = {};
3683 $usb_dev_features->{spice_usb3
} = 1 if min_version
($machine_version, 4, 0);
3685 my @usbdevices = PVE
::QemuServer
::USB
::get_usb_devices
(
3686 $conf, $usb_dev_features, $bootorder, $machine_version);
3687 push @$devices, @usbdevices if @usbdevices;
3690 for (my $i = 0; $i < $MAX_SERIAL_PORTS; $i++) {
3691 my $path = $conf->{"serial$i"} or next;
3692 if ($path eq 'socket') {
3693 my $socket = "/var/run/qemu-server/${vmid}.serial$i";
3694 push @$devices, '-chardev', "socket,id=serial$i,path=$socket,server=on,wait=off";
3695 # On aarch64, serial0 is the UART device. QEMU only allows
3696 # connecting UART devices via the '-serial' command line, as
3697 # the device has a fixed slot on the hardware...
3698 if ($arch eq 'aarch64' && $i == 0) {
3699 push @$devices, '-serial', "chardev:serial$i";
3701 push @$devices, '-device', "isa-serial,chardev=serial$i";
3704 die "no such serial device\n" if ! -c
$path;
3705 push @$devices, '-chardev', "serial,id=serial$i,path=$path";
3706 push @$devices, '-device', "isa-serial,chardev=serial$i";
3711 for (my $i = 0; $i < $MAX_PARALLEL_PORTS; $i++) {
3712 if (my $path = $conf->{"parallel$i"}) {
3713 die "no such parallel device\n" if ! -c
$path;
3714 my $devtype = $path =~ m!^/dev/usb/lp! ?
'serial' : 'parallel';
3715 push @$devices, '-chardev', "$devtype,id=parallel$i,path=$path";
3716 push @$devices, '-device', "isa-parallel,chardev=parallel$i";
3720 if (min_version
($machine_version, 4, 0) && (my $audio = conf_has_audio
($conf))) {
3721 my $audiopciaddr = print_pci_addr
("audio0", $bridges, $arch, $machine_type);
3722 my $audio_devs = audio_devs
($audio, $audiopciaddr, $machine_version);
3723 push @$devices, @$audio_devs;
3726 # Add a TPM only if the VM is not a template,
3727 # to support backing up template VMs even if the TPM disk is write-protected.
3728 add_tpm_device
($vmid, $devices, $conf) if (!PVE
::QemuConfig-
>is_template($conf));
3731 $sockets = $conf->{smp
} if $conf->{smp
}; # old style - no longer iused
3732 $sockets = $conf->{sockets
} if $conf->{sockets
};
3734 my $cores = $conf->{cores
} || 1;
3736 my $maxcpus = $sockets * $cores;
3738 my $vcpus = $conf->{vcpus
} ?
$conf->{vcpus
} : $maxcpus;
3740 my $allowed_vcpus = $cpuinfo->{cpus
};
3742 die "MAX $allowed_vcpus vcpus allowed per VM on this node\n" if ($allowed_vcpus < $maxcpus);
3744 if ($hotplug_features->{cpu
} && min_version
($machine_version, 2, 7)) {
3745 push @$cmd, '-smp', "1,sockets=$sockets,cores=$cores,maxcpus=$maxcpus";
3746 for (my $i = 2; $i <= $vcpus; $i++) {
3747 my $cpustr = print_cpu_device
($conf, $arch, $i);
3748 push @$cmd, '-device', $cpustr;
3753 push @$cmd, '-smp', "$vcpus,sockets=$sockets,cores=$cores,maxcpus=$maxcpus";
3755 push @$cmd, '-nodefaults';
3757 push @$cmd, '-boot', "menu=on,strict=on,reboot-timeout=1000,splash=/usr/share/qemu-server/bootsplash.jpg";
3759 push $machineFlags->@*, 'acpi=off' if defined($conf->{acpi
}) && $conf->{acpi
} == 0;
3761 push @$cmd, '-no-reboot' if defined($conf->{reboot
}) && $conf->{reboot
} == 0;
3763 if ($vga->{type
} && $vga->{type
} !~ m/^serial\d+$/ && $vga->{type
} ne 'none'){
3764 push @$devices, '-device', print_vga_device
(
3765 $conf, $vga, $arch, $machine_version, $machine_type, undef, $qxlnum, $bridges);
3767 push @$cmd, '-display', 'egl-headless,gl=core' if $vga->{type
} eq 'virtio-gl'; # VIRGL
3769 my $socket = PVE
::QemuServer
::Helpers
::vnc_socket
($vmid);
3770 push @$cmd, '-vnc', "unix:$socket,password=on";
3772 push @$cmd, '-vga', 'none' if $vga->{type
} eq 'none';
3773 push @$cmd, '-nographic';
3777 my $tdf = defined($conf->{tdf
}) ?
$conf->{tdf
} : $defaults->{tdf
};
3778 my $useLocaltime = $conf->{localtime};
3780 if ($winversion >= 5) { # windows
3781 $useLocaltime = 1 if !defined($conf->{localtime});
3783 # use time drift fix when acpi is enabled
3784 if (!(defined($conf->{acpi
}) && $conf->{acpi
} == 0)) {
3785 $tdf = 1 if !defined($conf->{tdf
});
3789 if ($winversion >= 6) {
3790 push @$globalFlags, 'kvm-pit.lost_tick_policy=discard';
3791 push @$machineFlags, 'hpet=off';
3794 push @$rtcFlags, 'driftfix=slew' if $tdf;
3796 if ($conf->{startdate
} && $conf->{startdate
} ne 'now') {
3797 push @$rtcFlags, "base=$conf->{startdate}";
3798 } elsif ($useLocaltime) {
3799 push @$rtcFlags, 'base=localtime';
3803 push @$cmd, '-cpu', $forcecpu;
3805 push @$cmd, get_cpu_options
($conf, $arch, $kvm, $kvm_off, $machine_version, $winversion, $gpu_passthrough);
3808 PVE
::QemuServer
::Memory
::config
(
3809 $conf, $vmid, $sockets, $cores, $hotplug_features->{memory
}, $cmd);
3811 push @$cmd, '-S' if $conf->{freeze
};
3813 push @$cmd, '-k', $conf->{keyboard
} if defined($conf->{keyboard
});
3815 my $guest_agent = parse_guest_agent
($conf);
3817 if ($guest_agent->{enabled
}) {
3818 my $qgasocket = PVE
::QemuServer
::Helpers
::qmp_socket
($vmid, 1);
3819 push @$devices, '-chardev', "socket,path=$qgasocket,server=on,wait=off,id=qga0";
3821 if (!$guest_agent->{type
} || $guest_agent->{type
} eq 'virtio') {
3822 my $pciaddr = print_pci_addr
("qga0", $bridges, $arch, $machine_type);
3823 push @$devices, '-device', "virtio-serial,id=qga0$pciaddr";
3824 push @$devices, '-device', 'virtserialport,chardev=qga0,name=org.qemu.guest_agent.0';
3825 } elsif ($guest_agent->{type
} eq 'isa') {
3826 push @$devices, '-device', "isa-serial,chardev=qga0";
3830 my $rng = $conf->{rng0
} ? parse_rng
($conf->{rng0
}) : undef;
3831 if ($rng && $version_guard->(4, 1, 2)) {
3832 check_rng_source
($rng->{source
});
3834 my $max_bytes = $rng->{max_bytes
} // $rng_fmt->{max_bytes
}->{default};
3835 my $period = $rng->{period
} // $rng_fmt->{period
}->{default};
3836 my $limiter_str = "";
3838 $limiter_str = ",max-bytes=$max_bytes,period=$period";
3841 my $rng_addr = print_pci_addr
("rng0", $bridges, $arch, $machine_type);
3842 push @$devices, '-object', "rng-random,filename=$rng->{source},id=rng0";
3843 push @$devices, '-device', "virtio-rng-pci,rng=rng0$limiter_str$rng_addr";
3848 assert_clipboard_config
($vga);
3849 my $is_spice = $qxlnum || $vga->{type
} =~ /^virtio/;
3851 if ($is_spice || ($vga->{'clipboard'} && $vga->{'clipboard'} eq 'vnc')) {
3854 for (my $i = 1; $i < $qxlnum; $i++){
3855 push @$devices, '-device', print_vga_device
(
3856 $conf, $vga, $arch, $machine_version, $machine_type, $i, $qxlnum, $bridges);
3859 # assume other OS works like Linux
3860 my ($ram, $vram) = ("134217728", "67108864");
3861 if ($vga->{memory
}) {
3862 $ram = PVE
::Tools
::convert_size
($qxlnum*4*$vga->{memory
}, 'mb' => 'b');
3863 $vram = PVE
::Tools
::convert_size
($qxlnum*2*$vga->{memory
}, 'mb' => 'b');
3865 push @$cmd, '-global', "qxl-vga.ram_size=$ram";
3866 push @$cmd, '-global', "qxl-vga.vram_size=$vram";
3870 my $pciaddr = print_pci_addr
("spice", $bridges, $arch, $machine_type);
3872 push @$devices, '-device', "virtio-serial,id=spice$pciaddr";
3873 if ($vga->{'clipboard'} && $vga->{'clipboard'} eq 'vnc') {
3874 push @$devices, '-chardev', 'qemu-vdagent,id=vdagent,name=vdagent,clipboard=on';
3876 push @$devices, '-chardev', 'spicevmc,id=vdagent,name=vdagent';
3878 push @$devices, '-device', "virtserialport,chardev=vdagent,name=com.redhat.spice.0";
3881 my $pfamily = PVE
::Tools
::get_host_address_family
($nodename);
3882 my @nodeaddrs = PVE
::Tools
::getaddrinfo_all
('localhost', family
=> $pfamily);
3883 die "failed to get an ip address of type $pfamily for 'localhost'\n" if !@nodeaddrs;
3885 my $localhost = PVE
::Network
::addr_to_ip
($nodeaddrs[0]->{addr
});
3886 $spice_port = PVE
::Tools
::next_spice_port
($pfamily, $localhost);
3888 my $spice_enhancement_str = $conf->{spice_enhancements
} // '';
3889 my $spice_enhancement = parse_property_string
($spice_enhancements_fmt, $spice_enhancement_str);
3890 if ($spice_enhancement->{foldersharing
}) {
3891 push @$devices, '-chardev', "spiceport,id=foldershare,name=org.spice-space.webdav.0";
3892 push @$devices, '-device', "virtserialport,chardev=foldershare,name=org.spice-space.webdav.0";
3895 my $spice_opts = "tls-port=${spice_port},addr=$localhost,tls-ciphers=HIGH,seamless-migration=on";
3896 $spice_opts .= ",streaming-video=$spice_enhancement->{videostreaming}"
3897 if $spice_enhancement->{videostreaming
};
3898 push @$devices, '-spice', "$spice_opts";
3902 # enable balloon by default, unless explicitly disabled
3903 if (!defined($conf->{balloon
}) || $conf->{balloon
}) {
3904 my $pciaddr = print_pci_addr
("balloon0", $bridges, $arch, $machine_type);
3905 my $ballooncmd = "virtio-balloon-pci,id=balloon0$pciaddr";
3906 $ballooncmd .= ",free-page-reporting=on" if min_version
($machine_version, 6, 2);
3907 push @$devices, '-device', $ballooncmd;
3910 if ($conf->{watchdog
}) {
3911 my $wdopts = parse_watchdog
($conf->{watchdog
});
3912 my $pciaddr = print_pci_addr
("watchdog", $bridges, $arch, $machine_type);
3913 my $watchdog = $wdopts->{model
} || 'i6300esb';
3914 push @$devices, '-device', "$watchdog$pciaddr";
3915 push @$devices, '-watchdog-action', $wdopts->{action
} if $wdopts->{action
};
3919 my $scsicontroller = {};
3920 my $ahcicontroller = {};
3921 my $scsihw = defined($conf->{scsihw
}) ?
$conf->{scsihw
} : $defaults->{scsihw
};
3923 # Add iscsi initiator name if available
3924 if (my $initiator = get_initiator_name
()) {
3925 push @$devices, '-iscsi', "initiator-name=$initiator";
3928 PVE
::QemuConfig-
>foreach_volume($conf, sub {
3929 my ($ds, $drive) = @_;
3931 if (PVE
::Storage
::parse_volume_id
($drive->{file
}, 1)) {
3932 check_volume_storage_type
($storecfg, $drive->{file
});
3933 push @$vollist, $drive->{file
};
3936 # ignore efidisk here, already added in bios/fw handling code above
3937 return if $drive->{interface
} eq 'efidisk';
3939 return if $drive->{interface
} eq 'tpmstate';
3941 $use_virtio = 1 if $ds =~ m/^virtio/;
3943 $drive->{bootindex
} = $bootorder->{$ds} if $bootorder->{$ds};
3945 if ($drive->{interface
} eq 'virtio'){
3946 push @$cmd, '-object', "iothread,id=iothread-$ds" if $drive->{iothread
};
3949 if ($drive->{interface
} eq 'scsi') {
3951 my ($maxdev, $controller, $controller_prefix) = scsihw_infos
($conf, $drive);
3953 die "scsi$drive->{index}: machine version 4.1~pve2 or higher is required to use more than 14 SCSI disks\n"
3954 if $drive->{index} > 13 && !&$version_guard(4, 1, 2);
3956 my $pciaddr = print_pci_addr
("$controller_prefix$controller", $bridges, $arch, $machine_type);
3957 my $scsihw_type = $scsihw =~ m/^virtio-scsi-single/ ?
"virtio-scsi-pci" : $scsihw;
3960 if($conf->{scsihw
} && $conf->{scsihw
} eq "virtio-scsi-single" && $drive->{iothread
}){
3961 $iothread .= ",iothread=iothread-$controller_prefix$controller";
3962 push @$cmd, '-object', "iothread,id=iothread-$controller_prefix$controller";
3963 } elsif ($drive->{iothread
}) {
3965 "iothread is only valid with virtio disk or virtio-scsi-single controller, ignoring\n"
3970 if($conf->{scsihw
} && $conf->{scsihw
} eq "virtio-scsi-single" && $drive->{queues
}){
3971 $queues = ",num_queues=$drive->{queues}";
3974 push @$devices, '-device', "$scsihw_type,id=$controller_prefix$controller$pciaddr$iothread$queues"
3975 if !$scsicontroller->{$controller};
3976 $scsicontroller->{$controller}=1;
3979 if ($drive->{interface
} eq 'sata') {
3980 my $controller = int($drive->{index} / $PVE::QemuServer
::Drive
::MAX_SATA_DISKS
);
3981 my $pciaddr = print_pci_addr
("ahci$controller", $bridges, $arch, $machine_type);
3982 push @$devices, '-device', "ahci,id=ahci$controller,multifunction=on$pciaddr"
3983 if !$ahcicontroller->{$controller};
3984 $ahcicontroller->{$controller}=1;
3987 my $pbs_conf = $pbs_backing->{$ds};
3988 my $pbs_name = undef;
3990 $pbs_name = "drive-$ds-pbs";
3991 push @$devices, '-blockdev', print_pbs_blockdev
($pbs_conf, $pbs_name);
3994 my $drive_cmd = print_drive_commandline_full
(
3995 $storecfg, $vmid, $drive, $pbs_name, min_version
($kvmver, 6, 0));
3997 # extra protection for templates, but SATA and IDE don't support it..
3998 $drive_cmd .= ',readonly=on' if drive_is_read_only
($conf, $drive);
4000 push @$devices, '-drive',$drive_cmd;
4001 push @$devices, '-device', print_drivedevice_full
(
4002 $storecfg, $conf, $vmid, $drive, $bridges, $arch, $machine_type);
4005 for (my $i = 0; $i < $MAX_NETS; $i++) {
4006 my $netname = "net$i";
4008 next if !$conf->{$netname};
4009 my $d = parse_net
($conf->{$netname});
4011 # save the MAC addr here (could be auto-gen. in some odd setups) for FDB registering later?
4013 $use_virtio = 1 if $d->{model
} eq 'virtio';
4015 $d->{bootindex
} = $bootorder->{$netname} if $bootorder->{$netname};
4017 my $netdevfull = print_netdev_full
($vmid, $conf, $arch, $d, $netname);
4018 push @$devices, '-netdev', $netdevfull;
4020 my $netdevicefull = print_netdevice_full
(
4021 $vmid, $conf, $d, $netname, $bridges, $use_old_bios_files, $arch, $machine_type, $machine_version);
4023 push @$devices, '-device', $netdevicefull;
4026 if ($conf->{ivshmem
}) {
4027 my $ivshmem = parse_property_string
($ivshmem_fmt, $conf->{ivshmem
});
4031 $bus = print_pcie_addr
("ivshmem");
4033 $bus = print_pci_addr
("ivshmem", $bridges, $arch, $machine_type);
4036 my $ivshmem_name = $ivshmem->{name
} // $vmid;
4037 my $path = '/dev/shm/pve-shm-' . $ivshmem_name;
4039 push @$devices, '-device', "ivshmem-plain,memdev=ivshmem$bus,";
4040 push @$devices, '-object', "memory-backend-file,id=ivshmem,share=on,mem-path=$path"
4041 .",size=$ivshmem->{size}M";
4044 # pci.4 is nested in pci.1
4045 $bridges->{1} = 1 if $bridges->{4};
4047 if (!$q35) { # add pci bridges
4048 if (min_version
($machine_version, 2, 3)) {
4052 $bridges->{3} = 1 if $scsihw =~ m/^virtio-scsi-single/;
4055 for my $k (sort {$b cmp $a} keys %$bridges) {
4056 next if $q35 && $k < 4; # q35.cfg already includes bridges up to 3
4059 if ($k == 2 && $legacy_igd) {
4062 my $pciaddr = print_pci_addr
("pci.$k_name", undef, $arch, $machine_type);
4063 my $devstr = "pci-bridge,id=pci.$k,chassis_nr=$k$pciaddr";
4065 if ($q35) { # add after -readconfig pve-q35.cfg
4066 splice @$devices, 2, 0, '-device', $devstr;
4068 unshift @$devices, '-device', $devstr if $k > 0;
4073 push @$machineFlags, 'accel=tcg';
4076 push @$machineFlags, 'smm=off' if should_disable_smm
($conf, $vga, $machine_type);
4078 my $machine_type_min = $machine_type;
4079 if ($add_pve_version) {
4080 $machine_type_min =~ s/\+pve\d+$//;
4081 $machine_type_min .= "+pve$required_pve_version";
4083 push @$machineFlags, "type=${machine_type_min}";
4085 push @$cmd, @$devices;
4086 push @$cmd, '-rtc', join(',', @$rtcFlags) if scalar(@$rtcFlags);
4087 push @$cmd, '-machine', join(',', @$machineFlags) if scalar(@$machineFlags);
4088 push @$cmd, '-global', join(',', @$globalFlags) if scalar(@$globalFlags);
4090 if (my $vmstate = $conf->{vmstate
}) {
4091 my $statepath = PVE
::Storage
::path
($storecfg, $vmstate);
4092 push @$vollist, $vmstate;
4093 push @$cmd, '-loadstate', $statepath;
4094 print "activating and using '$vmstate' as vmstate\n";
4097 if (PVE
::QemuConfig-
>is_template($conf)) {
4098 # needed to workaround base volumes being read-only
4099 push @$cmd, '-snapshot';
4103 if ($conf->{args
}) {
4104 my $aa = PVE
::Tools
::split_args
($conf->{args
});
4108 return wantarray ?
($cmd, $vollist, $spice_port, $pci_devices) : $cmd;
4111 sub check_rng_source
{
4114 # mostly relevant for /dev/hwrng, but doesn't hurt to check others too
4115 die "cannot create VirtIO RNG device: source file '$source' doesn't exist\n"
4118 my $rng_current = '/sys/devices/virtual/misc/hw_random/rng_current';
4119 if ($source eq '/dev/hwrng' && file_read_firstline
($rng_current) eq 'none') {
4120 # Needs to abort, otherwise QEMU crashes on first rng access. Note that rng_current cannot
4121 # be changed to 'none' manually, so once the VM is past this point, it's no longer an issue.
4122 die "Cannot start VM with passed-through RNG device: '/dev/hwrng' exists, but"
4123 ." '$rng_current' is set to 'none'. Ensure that a compatible hardware-RNG is attached"
4131 my $res = mon_cmd
($vmid, 'query-spice');
4133 return $res->{'tls-port'} || $res->{'port'} || die "no spice port\n";
4136 sub vm_devices_list
{
4139 my $res = mon_cmd
($vmid, 'query-pci');
4140 my $devices_to_check = [];
4142 foreach my $pcibus (@$res) {
4143 push @$devices_to_check, @{$pcibus->{devices
}},
4146 while (@$devices_to_check) {
4148 for my $d (@$devices_to_check) {
4149 $devices->{$d->{'qdev_id'}} = 1 if $d->{'qdev_id'};
4150 next if !$d->{'pci_bridge'} || !$d->{'pci_bridge'}->{devices
};
4152 $devices->{$d->{'qdev_id'}} += scalar(@{$d->{'pci_bridge'}->{devices
}});
4153 push @$to_check, @{$d->{'pci_bridge'}->{devices
}};
4155 $devices_to_check = $to_check;
4158 my $resblock = mon_cmd
($vmid, 'query-block');
4159 foreach my $block (@$resblock) {
4160 if($block->{device
} =~ m/^drive-(\S+)/){
4165 my $resmice = mon_cmd
($vmid, 'query-mice');
4166 foreach my $mice (@$resmice) {
4167 if ($mice->{name
} eq 'QEMU HID Tablet') {
4168 $devices->{tablet
} = 1;
4173 # for usb devices there is no query-usb
4174 # but we can iterate over the entries in
4175 # qom-list path=/machine/peripheral
4176 my $resperipheral = mon_cmd
($vmid, 'qom-list', path
=> '/machine/peripheral');
4177 foreach my $per (@$resperipheral) {
4178 if ($per->{name
} =~ m/^usb(?:redirdev)?\d+$/) {
4179 $devices->{$per->{name
}} = 1;
4187 my ($storecfg, $conf, $vmid, $deviceid, $device, $arch, $machine_type) = @_;
4189 my $q35 = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
4191 my $devices_list = vm_devices_list
($vmid);
4192 return 1 if defined($devices_list->{$deviceid});
4194 # add PCI bridge if we need it for the device
4195 qemu_add_pci_bridge
($storecfg, $conf, $vmid, $deviceid, $arch, $machine_type);
4197 if ($deviceid eq 'tablet') {
4198 qemu_deviceadd
($vmid, print_tabletdevice_full
($conf, $arch));
4199 } elsif ($deviceid eq 'keyboard') {
4200 qemu_deviceadd
($vmid, print_keyboarddevice_full
($conf, $arch));
4201 } elsif ($deviceid =~ m/^usbredirdev(\d+)$/) {
4203 qemu_spice_usbredir_chardev_add
($vmid, "usbredirchardev$id");
4204 qemu_deviceadd
($vmid, PVE
::QemuServer
::USB
::print_spice_usbdevice
($id, "xhci", $id + 1));
4205 } elsif ($deviceid =~ m/^usb(\d+)$/) {
4206 qemu_deviceadd
($vmid, PVE
::QemuServer
::USB
::print_usbdevice_full
($conf, $deviceid, $device, {}, $1 + 1));
4207 } elsif ($deviceid =~ m/^(virtio)(\d+)$/) {
4208 qemu_iothread_add
($vmid, $deviceid, $device);
4210 qemu_driveadd
($storecfg, $vmid, $device);
4211 my $devicefull = print_drivedevice_full
($storecfg, $conf, $vmid, $device, undef, $arch, $machine_type);
4213 qemu_deviceadd
($vmid, $devicefull);
4214 eval { qemu_deviceaddverify
($vmid, $deviceid); };
4216 eval { qemu_drivedel
($vmid, $deviceid); };
4220 } elsif ($deviceid =~ m/^(virtioscsi|scsihw)(\d+)$/) {
4221 my $scsihw = defined($conf->{scsihw
}) ?
$conf->{scsihw
} : "lsi";
4222 my $pciaddr = print_pci_addr
($deviceid, undef, $arch, $machine_type);
4223 my $scsihw_type = $scsihw eq 'virtio-scsi-single' ?
"virtio-scsi-pci" : $scsihw;
4225 my $devicefull = "$scsihw_type,id=$deviceid$pciaddr";
4227 if($deviceid =~ m/^virtioscsi(\d+)$/ && $device->{iothread
}) {
4228 qemu_iothread_add
($vmid, $deviceid, $device);
4229 $devicefull .= ",iothread=iothread-$deviceid";
4232 if($deviceid =~ m/^virtioscsi(\d+)$/ && $device->{queues
}) {
4233 $devicefull .= ",num_queues=$device->{queues}";
4236 qemu_deviceadd
($vmid, $devicefull);
4237 qemu_deviceaddverify
($vmid, $deviceid);
4238 } elsif ($deviceid =~ m/^(scsi)(\d+)$/) {
4239 qemu_findorcreatescsihw
($storecfg,$conf, $vmid, $device, $arch, $machine_type);
4240 qemu_driveadd
($storecfg, $vmid, $device);
4242 my $devicefull = print_drivedevice_full
($storecfg, $conf, $vmid, $device, undef, $arch, $machine_type);
4243 eval { qemu_deviceadd
($vmid, $devicefull); };
4245 eval { qemu_drivedel
($vmid, $deviceid); };
4249 } elsif ($deviceid =~ m/^(net)(\d+)$/) {
4250 return if !qemu_netdevadd
($vmid, $conf, $arch, $device, $deviceid);
4252 my $machine_type = PVE
::QemuServer
::Machine
::qemu_machine_pxe
($vmid, $conf);
4253 my $machine_version = PVE
::QemuServer
::Machine
::extract_version
($machine_type);
4254 my $use_old_bios_files = undef;
4255 ($use_old_bios_files, $machine_type) = qemu_use_old_bios_files
($machine_type);
4257 my $netdevicefull = print_netdevice_full
(
4258 $vmid, $conf, $device, $deviceid, undef, $use_old_bios_files, $arch, $machine_type, $machine_version);
4259 qemu_deviceadd
($vmid, $netdevicefull);
4261 qemu_deviceaddverify
($vmid, $deviceid);
4262 qemu_set_link_status
($vmid, $deviceid, !$device->{link_down
});
4265 eval { qemu_netdevdel
($vmid, $deviceid); };
4269 } elsif (!$q35 && $deviceid =~ m/^(pci\.)(\d+)$/) {
4271 my $pciaddr = print_pci_addr
($deviceid, undef, $arch, $machine_type);
4272 my $devicefull = "pci-bridge,id=pci.$bridgeid,chassis_nr=$bridgeid$pciaddr";
4274 qemu_deviceadd
($vmid, $devicefull);
4275 qemu_deviceaddverify
($vmid, $deviceid);
4277 die "can't hotplug device '$deviceid'\n";
4283 # fixme: this should raise exceptions on error!
4284 sub vm_deviceunplug
{
4285 my ($vmid, $conf, $deviceid) = @_;
4287 my $devices_list = vm_devices_list
($vmid);
4288 return 1 if !defined($devices_list->{$deviceid});
4290 my $bootdisks = PVE
::QemuServer
::Drive
::get_bootdisks
($conf);
4291 die "can't unplug bootdisk '$deviceid'\n" if grep {$_ eq $deviceid} @$bootdisks;
4293 if ($deviceid eq 'tablet' || $deviceid eq 'keyboard' || $deviceid eq 'xhci') {
4294 qemu_devicedel
($vmid, $deviceid);
4295 } elsif ($deviceid =~ m/^usbredirdev\d+$/) {
4296 qemu_devicedel
($vmid, $deviceid);
4297 qemu_devicedelverify
($vmid, $deviceid);
4298 } elsif ($deviceid =~ m/^usb\d+$/) {
4299 qemu_devicedel
($vmid, $deviceid);
4300 qemu_devicedelverify
($vmid, $deviceid);
4301 } elsif ($deviceid =~ m/^(virtio)(\d+)$/) {
4302 my $device = parse_drive
($deviceid, $conf->{$deviceid});
4304 qemu_devicedel
($vmid, $deviceid);
4305 qemu_devicedelverify
($vmid, $deviceid);
4306 qemu_drivedel
($vmid, $deviceid);
4307 qemu_iothread_del
($vmid, $deviceid, $device);
4308 } elsif ($deviceid =~ m/^(virtioscsi|scsihw)(\d+)$/) {
4309 qemu_devicedel
($vmid, $deviceid);
4310 qemu_devicedelverify
($vmid, $deviceid);
4311 } elsif ($deviceid =~ m/^(scsi)(\d+)$/) {
4312 my $device = parse_drive
($deviceid, $conf->{$deviceid});
4314 qemu_devicedel
($vmid, $deviceid);
4315 qemu_devicedelverify
($vmid, $deviceid);
4316 qemu_drivedel
($vmid, $deviceid);
4317 qemu_deletescsihw
($conf, $vmid, $deviceid);
4319 qemu_iothread_del
($vmid, "virtioscsi$device->{index}", $device)
4320 if $conf->{scsihw
} && ($conf->{scsihw
} eq 'virtio-scsi-single');
4321 } elsif ($deviceid =~ m/^(net)(\d+)$/) {
4322 qemu_devicedel
($vmid, $deviceid);
4323 qemu_devicedelverify
($vmid, $deviceid);
4324 qemu_netdevdel
($vmid, $deviceid);
4326 die "can't unplug device '$deviceid'\n";
4332 sub qemu_spice_usbredir_chardev_add
{
4333 my ($vmid, $id) = @_;
4335 mon_cmd
($vmid, "chardev-add" , (
4346 sub qemu_iothread_add
{
4347 my ($vmid, $deviceid, $device) = @_;
4349 if ($device->{iothread
}) {
4350 my $iothreads = vm_iothreads_list
($vmid);
4351 qemu_objectadd
($vmid, "iothread-$deviceid", "iothread") if !$iothreads->{"iothread-$deviceid"};
4355 sub qemu_iothread_del
{
4356 my ($vmid, $deviceid, $device) = @_;
4358 if ($device->{iothread
}) {
4359 my $iothreads = vm_iothreads_list
($vmid);
4360 qemu_objectdel
($vmid, "iothread-$deviceid") if $iothreads->{"iothread-$deviceid"};
4365 my ($storecfg, $vmid, $device) = @_;
4367 my $kvmver = get_running_qemu_version
($vmid);
4368 my $io_uring = min_version
($kvmver, 6, 0);
4369 my $drive = print_drive_commandline_full
($storecfg, $vmid, $device, undef, $io_uring);
4370 $drive =~ s/\\/\\\\/g;
4371 my $ret = PVE
::QemuServer
::Monitor
::hmp_cmd
($vmid, "drive_add auto \"$drive\"");
4373 # If the command succeeds qemu prints: "OK
"
4374 return 1 if $ret =~ m/OK/s;
4376 die "adding drive failed
: $ret\n";
4380 my ($vmid, $deviceid) = @_;
4382 my $ret = PVE::QemuServer::Monitor::hmp_cmd($vmid, "drive_del drive-
$deviceid");
4385 return 1 if $ret eq "";
4387 # NB: device not found errors mean the drive was auto-deleted and we ignore the error
4388 return 1 if $ret =~ m/Device \'.*?\' not found/s;
4390 die "deleting drive
$deviceid failed
: $ret\n";
4393 sub qemu_deviceaddverify {
4394 my ($vmid, $deviceid) = @_;
4396 for (my $i = 0; $i <= 5; $i++) {
4397 my $devices_list = vm_devices_list($vmid);
4398 return 1 if defined($devices_list->{$deviceid});
4402 die "error on hotplug device
'$deviceid'\n";
4406 sub qemu_devicedelverify {
4407 my ($vmid, $deviceid) = @_;
4409 # need to verify that the device is correctly removed as device_del
4410 # is async and empty return is not reliable
4412 for (my $i = 0; $i <= 5; $i++) {
4413 my $devices_list = vm_devices_list($vmid);
4414 return 1 if !defined($devices_list->{$deviceid});
4418 die "error on hot-unplugging device
'$deviceid'\n";
4421 sub qemu_findorcreatescsihw {
4422 my ($storecfg, $conf, $vmid, $device, $arch, $machine_type) = @_;
4424 my ($maxdev, $controller, $controller_prefix) = scsihw_infos($conf, $device);
4426 my $scsihwid="$controller_prefix$controller";
4427 my $devices_list = vm_devices_list($vmid);
4429 if (!defined($devices_list->{$scsihwid})) {
4430 vm_deviceplug($storecfg, $conf, $vmid, $scsihwid, $device, $arch, $machine_type);
4436 sub qemu_deletescsihw {
4437 my ($conf, $vmid, $opt) = @_;
4439 my $device = parse_drive($opt, $conf->{$opt});
4441 if ($conf->{scsihw} && ($conf->{scsihw} eq 'virtio-scsi-single')) {
4442 vm_deviceunplug($vmid, $conf, "virtioscsi
$device->{index}");
4446 my ($maxdev, $controller, $controller_prefix) = scsihw_infos($conf, $device);
4448 my $devices_list = vm_devices_list($vmid);
4449 foreach my $opt (keys %{$devices_list}) {
4450 if (is_valid_drivename($opt)) {
4451 my $drive = parse_drive($opt, $conf->{$opt});
4452 if ($drive->{interface} eq 'scsi' && $drive->{index} < (($maxdev-1)*($controller+1))) {
4458 my $scsihwid="scsihw
$controller";
4460 vm_deviceunplug($vmid, $conf, $scsihwid);
4465 sub qemu_add_pci_bridge {
4466 my ($storecfg, $conf, $vmid, $device, $arch, $machine_type) = @_;
4472 print_pci_addr($device, $bridges, $arch, $machine_type);
4474 while (my ($k, $v) = each %$bridges) {
4477 return 1 if !defined($bridgeid) || $bridgeid < 1;
4479 my $bridge = "pci
.$bridgeid";
4480 my $devices_list = vm_devices_list($vmid);
4482 if (!defined($devices_list->{$bridge})) {
4483 vm_deviceplug($storecfg, $conf, $vmid, $bridge, $arch, $machine_type);
4489 sub qemu_set_link_status {
4490 my ($vmid, $device, $up) = @_;
4492 mon_cmd($vmid, "set_link
", name => $device,
4493 up => $up ? JSON::true : JSON::false);
4496 sub qemu_netdevadd {
4497 my ($vmid, $conf, $arch, $device, $deviceid) = @_;
4499 my $netdev = print_netdev_full($vmid, $conf, $arch, $device, $deviceid, 1);
4500 my %options = split(/[=,]/, $netdev);
4502 if (defined(my $vhost = $options{vhost})) {
4503 $options{vhost} = JSON::boolean(PVE::JSONSchema::parse_boolean($vhost));
4506 if (defined(my $queues = $options{queues})) {
4507 $options{queues} = $queues + 0;
4510 mon_cmd($vmid, "netdev_add
", %options);
4514 sub qemu_netdevdel {
4515 my ($vmid, $deviceid) = @_;
4517 mon_cmd($vmid, "netdev_del
", id => $deviceid);
4520 sub qemu_usb_hotplug {
4521 my ($storecfg, $conf, $vmid, $deviceid, $device, $arch, $machine_type) = @_;
4525 # remove the old one first
4526 vm_deviceunplug($vmid, $conf, $deviceid);
4528 # check if xhci controller is necessary and available
4529 my $devicelist = vm_devices_list($vmid);
4531 if (!$devicelist->{xhci}) {
4532 my $pciaddr = print_pci_addr("xhci
", undef, $arch, $machine_type);
4533 qemu_deviceadd($vmid, PVE::QemuServer::USB::print_qemu_xhci_controller($pciaddr));
4537 vm_deviceplug($storecfg, $conf, $vmid, $deviceid, $device, $arch, $machine_type);
4540 sub qemu_cpu_hotplug {
4541 my ($vmid, $conf, $vcpus) = @_;
4543 my $machine_type = PVE::QemuServer::Machine::get_current_qemu_machine($vmid);
4546 $sockets = $conf->{smp} if $conf->{smp}; # old style - no longer iused
4547 $sockets = $conf->{sockets} if $conf->{sockets};
4548 my $cores = $conf->{cores} || 1;
4549 my $maxcpus = $sockets * $cores;
4551 $vcpus = $maxcpus if !$vcpus;
4553 die "you can
't add more vcpus than maxcpus\n"
4554 if $vcpus > $maxcpus;
4556 my $currentvcpus = $conf->{vcpus} || $maxcpus;
4558 if ($vcpus < $currentvcpus) {
4560 if (PVE::QemuServer::Machine::machine_version($machine_type, 2, 7)) {
4562 for (my $i = $currentvcpus; $i > $vcpus; $i--) {
4563 qemu_devicedel($vmid, "cpu$i");
4565 my $currentrunningvcpus = undef;
4567 $currentrunningvcpus = mon_cmd($vmid, "query-cpus-fast");
4568 last if scalar(@{$currentrunningvcpus}) == $i-1;
4569 raise_param_exc({ vcpus => "error unplugging cpu$i" }) if $retry > 5;
4573 #update conf after each succesfull cpu unplug
4574 $conf->{vcpus} = scalar(@{$currentrunningvcpus});
4575 PVE::QemuConfig->write_config($vmid, $conf);
4578 die "cpu hot-unplugging requires qemu version 2.7 or higher\n";
4584 my $currentrunningvcpus = mon_cmd($vmid, "query-cpus-fast");
4585 die "vcpus in running vm does not match its configuration\n"
4586 if scalar(@{$currentrunningvcpus}) != $currentvcpus;
4588 if (PVE::QemuServer::Machine::machine_version($machine_type, 2, 7)) {
4589 my $arch = get_vm_arch($conf);
4591 for (my $i = $currentvcpus+1; $i <= $vcpus; $i++) {
4592 my $cpustr = print_cpu_device($conf, $arch, $i);
4593 qemu_deviceadd($vmid, $cpustr);
4596 my $currentrunningvcpus = undef;
4598 $currentrunningvcpus = mon_cmd($vmid, "query-cpus-fast");
4599 last if scalar(@{$currentrunningvcpus}) == $i;
4600 raise_param_exc({ vcpus => "error hotplugging cpu$i" }) if $retry > 10;
4604 #update conf after each succesfull cpu hotplug
4605 $conf->{vcpus} = scalar(@{$currentrunningvcpus});
4606 PVE::QemuConfig->write_config($vmid, $conf);
4610 for (my $i = $currentvcpus; $i < $vcpus; $i++) {
4611 mon_cmd($vmid, "cpu-add", id => int($i));
4616 sub qemu_block_set_io_throttle {
4617 my ($vmid, $deviceid,
4618 $bps, $bps_rd, $bps_wr, $iops, $iops_rd, $iops_wr,
4619 $bps_max, $bps_rd_max, $bps_wr_max, $iops_max, $iops_rd_max, $iops_wr_max,
4620 $bps_max_length, $bps_rd_max_length, $bps_wr_max_length,
4621 $iops_max_length, $iops_rd_max_length, $iops_wr_max_length) = @_;
4623 return if !check_running($vmid) ;
4625 mon_cmd($vmid, "block_set_io_throttle", device => $deviceid,
4627 bps_rd => int($bps_rd),
4628 bps_wr => int($bps_wr),
4630 iops_rd => int($iops_rd),
4631 iops_wr => int($iops_wr),
4632 bps_max => int($bps_max),
4633 bps_rd_max => int($bps_rd_max),
4634 bps_wr_max => int($bps_wr_max),
4635 iops_max => int($iops_max),
4636 iops_rd_max => int($iops_rd_max),
4637 iops_wr_max => int($iops_wr_max),
4638 bps_max_length => int($bps_max_length),
4639 bps_rd_max_length => int($bps_rd_max_length),
4640 bps_wr_max_length => int($bps_wr_max_length),
4641 iops_max_length => int($iops_max_length),
4642 iops_rd_max_length => int($iops_rd_max_length),
4643 iops_wr_max_length => int($iops_wr_max_length),
4648 sub qemu_block_resize {
4649 my ($vmid, $deviceid, $storecfg, $volid, $size) = @_;
4651 my $running = check_running($vmid);
4653 PVE::Storage::volume_resize($storecfg, $volid, $size, $running);
4655 return if !$running;
4657 my $padding = (1024 - $size % 1024) % 1024;
4658 $size = $size + $padding;
4663 device => $deviceid,
4669 sub qemu_volume_snapshot {
4670 my ($vmid, $deviceid, $storecfg, $volid, $snap) = @_;
4672 my $running = check_running($vmid);
4674 if ($running && do_snapshots_with_qemu($storecfg, $volid, $deviceid)) {
4675 mon_cmd($vmid, 'blockdev-snapshot-internal-sync
', device => $deviceid, name => $snap);
4677 PVE::Storage::volume_snapshot($storecfg, $volid, $snap);
4681 sub qemu_volume_snapshot_delete {
4682 my ($vmid, $storecfg, $volid, $snap) = @_;
4684 my $running = check_running($vmid);
4685 my $attached_deviceid;
4688 my $conf = PVE::QemuConfig->load_config($vmid);
4689 PVE::QemuConfig->foreach_volume($conf, sub {
4690 my ($ds, $drive) = @_;
4691 $attached_deviceid = "drive-$ds" if $drive->{file} eq $volid;
4695 if ($attached_deviceid && do_snapshots_with_qemu($storecfg, $volid, $attached_deviceid)) {
4698 'blockdev-snapshot-delete-internal-sync
',
4699 device => $attached_deviceid,
4703 PVE::Storage::volume_snapshot_delete(
4704 $storecfg, $volid, $snap, $attached_deviceid ? 1 : undef);
4708 sub set_migration_caps {
4709 my ($vmid, $savevm) = @_;
4711 my $qemu_support = eval { mon_cmd($vmid, "query-proxmox-support") };
4713 my $bitmap_prop = $savevm ? 'pbs-dirty-bitmap-savevm
' : 'pbs-dirty-bitmap-migration
';
4714 my $dirty_bitmaps = $qemu_support->{$bitmap_prop} ? 1 : 0;
4719 "auto-converge" => 1,
4721 "x-rdma-pin-all" => 0,
4724 "dirty-bitmaps" => $dirty_bitmaps,
4727 my $supported_capabilities = mon_cmd($vmid, "query-migrate-capabilities");
4729 for my $supported_capability (@$supported_capabilities) {
4731 capability => $supported_capability->{capability},
4732 state => $enabled_cap->{$supported_capability->{capability}} ? JSON::true : JSON::false,
4736 mon_cmd($vmid, "migrate-set-capabilities", capabilities => $cap_ref);
4740 my ($conf, $func, @param) = @_;
4744 my $test_volid = sub {
4745 my ($key, $drive, $snapname, $pending) = @_;
4747 my $volid = $drive->{file};
4750 $volhash->{$volid}->{cdrom} //= 1;
4751 $volhash->{$volid}->{cdrom} = 0 if !drive_is_cdrom($drive);
4753 my $replicate = $drive->{replicate} // 1;
4754 $volhash->{$volid}->{replicate} //= 0;
4755 $volhash->{$volid}->{replicate} = 1 if $replicate;
4757 $volhash->{$volid}->{shared} //= 0;
4758 $volhash->{$volid}->{shared} = 1 if $drive->{shared};
4760 $volhash->{$volid}->{is_unused} //= 0;
4761 $volhash->{$volid}->{is_unused} = 1 if $key =~ /^unused\d+$/;
4763 $volhash->{$volid}->{is_attached} //= 0;
4764 $volhash->{$volid}->{is_attached} = 1
4765 if !$volhash->{$volid}->{is_unused} && !defined($snapname) && !$pending;
4767 $volhash->{$volid}->{referenced_in_snapshot}->{$snapname} = 1
4768 if defined($snapname);
4770 $volhash->{$volid}->{referenced_in_pending} = 1 if $pending;
4772 my $size = $drive->{size};
4773 $volhash->{$volid}->{size} //= $size if $size;
4775 $volhash->{$volid}->{is_vmstate} //= 0;
4776 $volhash->{$volid}->{is_vmstate} = 1 if $key eq 'vmstate
';
4778 $volhash->{$volid}->{is_tpmstate} //= 0;
4779 $volhash->{$volid}->{is_tpmstate} = 1 if $key eq 'tpmstate0
';
4781 $volhash->{$volid}->{drivename} = $key if is_valid_drivename($key);
4784 my $include_opts = {
4785 extra_keys => ['vmstate
'],
4786 include_unused => 1,
4789 PVE::QemuConfig->foreach_volume_full($conf, $include_opts, $test_volid);
4791 PVE::QemuConfig->foreach_volume_full($conf->{pending}, $include_opts, $test_volid, undef, 1)
4792 if defined($conf->{pending}) && $conf->{pending}->%*;
4794 foreach my $snapname (keys %{$conf->{snapshots}}) {
4795 my $snap = $conf->{snapshots}->{$snapname};
4796 PVE::QemuConfig->foreach_volume_full($snap, $include_opts, $test_volid, $snapname);
4799 foreach my $volid (keys %$volhash) {
4800 &$func($volid, $volhash->{$volid}, @param);
4804 my $fast_plug_option = {
4808 'migrate_downtime
' => 1,
4809 'migrate_speed
' => 1,
4816 'vmstatestorage
' => 1,
4819 for my $opt (keys %$confdesc_cloudinit) {
4820 $fast_plug_option->{$opt} = 1;
4823 # hotplug changes in [PENDING]
4824 # $selection hash can be used to only apply specified options, for
4825 # example: { cores => 1 } (only apply changed 'cores
')
4826 # $errors ref is used to return error messages
4827 sub vmconfig_hotplug_pending {
4828 my ($vmid, $conf, $storecfg, $selection, $errors) = @_;
4830 my $defaults = load_defaults();
4831 my $arch = get_vm_arch($conf);
4832 my $machine_type = get_vm_machine($conf, undef, $arch);
4834 # commit values which do not have any impact on running VM first
4835 # Note: those option cannot raise errors, we we do not care about
4836 # $selection and always apply them.
4838 my $add_error = sub {
4839 my ($opt, $msg) = @_;
4840 $errors->{$opt} = "hotplug problem - $msg";
4843 my $cloudinit_pending_properties = PVE::QemuServer::cloudinit_pending_properties();
4845 my $cloudinit_record_changed = sub {
4846 my ($conf, $opt, $old, $new) = @_;
4847 return if !$cloudinit_pending_properties->{$opt};
4849 my $ci = ($conf->{cloudinit} //= {});
4851 my $recorded = $ci->{$opt};
4852 my %added = map { $_ => 1 } PVE::Tools::split_list(delete($ci->{added}) // '');
4854 if (defined($new)) {
4855 if (defined($old)) {
4856 # an existing value is being modified
4857 if (defined($recorded)) {
4858 # the value was already not in sync
4859 if ($new eq $recorded) {
4860 # a value is being reverted to the cloud-init state:
4862 delete $added{$opt};
4864 # the value was changed multiple times, do nothing
4866 } elsif ($added{$opt}) {
4867 # the value had been marked as added and is being changed, do nothing
4869 # the value is new, record it:
4873 # a new value is being added
4874 if (defined($recorded)) {
4875 # it was already not in sync
4876 if ($new eq $recorded) {
4877 # a value is being reverted to the cloud-init state:
4879 delete $added{$opt};
4881 # the value had temporarily been removed, do nothing
4883 } elsif ($added{$opt}) {
4884 # the value had been marked as added already, do nothing
4886 # the value is new, add it
4890 } elsif (!defined($old)) {
4891 # a non-existent value is being removed? ignore...
4893 # a value is being deleted
4894 if (defined($recorded)) {
4895 # a value was already recorded, just keep it
4896 } elsif ($added{$opt}) {
4897 # the value was marked as added, remove it
4898 delete $added{$opt};
4900 # a previously unrecorded value is being removed, record the old value:
4905 my $added = join(',', sort keys %added);
4906 $ci->{added} = $added if length($added);
4910 foreach my $opt (keys %{$conf->{pending}}) { # add/change
4911 if ($fast_plug_option->{$opt}) {
4912 my $new = delete $conf->{pending}->{$opt};
4913 $cloudinit_record_changed->($conf, $opt, $conf->{$opt}, $new);
4914 $conf->{$opt} = $new;
4920 PVE::QemuConfig->write_config($vmid, $conf);
4923 my $ostype = $conf->{ostype};
4924 my $version = extract_version($machine_type, get_running_qemu_version($vmid));
4925 my $hotplug_features = parse_hotplug_features(defined($conf->{hotplug}) ? $conf->{hotplug} : '1');
4926 my $usb_hotplug = $hotplug_features->{usb}
4927 && min_version($version, 7, 1)
4928 && defined($ostype) && ($ostype eq 'l26
' || windows_version($ostype) > 7);
4930 my $cgroup = PVE::QemuServer::CGroup->new($vmid);
4931 my $pending_delete_hash = PVE::QemuConfig->parse_pending_delete($conf->{pending}->{delete});
4933 foreach my $opt (sort keys %$pending_delete_hash) {
4934 next if $selection && !$selection->{$opt};
4935 my $force = $pending_delete_hash->{$opt}->{force};
4937 if ($opt eq 'hotplug
') {
4938 die "skip\n" if ($conf->{hotplug} =~ /(cpu|memory)/);
4939 } elsif ($opt eq 'tablet
') {
4940 die "skip\n" if !$hotplug_features->{usb};
4941 if ($defaults->{tablet}) {
4942 vm_deviceplug($storecfg, $conf, $vmid, 'tablet
', $arch, $machine_type);
4943 vm_deviceplug($storecfg, $conf, $vmid, 'keyboard
', $arch, $machine_type)
4944 if $arch eq 'aarch64
';
4946 vm_deviceunplug($vmid, $conf, 'tablet
');
4947 vm_deviceunplug($vmid, $conf, 'keyboard
') if $arch eq 'aarch64
';
4949 } elsif ($opt =~ m/^usb(\d+)$/) {
4951 die "skip\n" if !$usb_hotplug;
4952 vm_deviceunplug($vmid, $conf, "usbredirdev$index"); # if it's a spice port
4953 vm_deviceunplug
($vmid, $conf, $opt);
4954 } elsif ($opt eq 'vcpus') {
4955 die "skip\n" if !$hotplug_features->{cpu
};
4956 qemu_cpu_hotplug
($vmid, $conf, undef);
4957 } elsif ($opt eq 'balloon') {
4958 # enable balloon device is not hotpluggable
4959 die "skip\n" if defined($conf->{balloon
}) && $conf->{balloon
} == 0;
4960 # here we reset the ballooning value to memory
4961 my $balloon = get_current_memory
($conf->{memory
});
4962 mon_cmd
($vmid, "balloon", value
=> $balloon*1024*1024);
4963 } elsif ($fast_plug_option->{$opt}) {
4965 } elsif ($opt =~ m/^net(\d+)$/) {
4966 die "skip\n" if !$hotplug_features->{network
};
4967 vm_deviceunplug
($vmid, $conf, $opt);
4969 my $net = PVE
::QemuServer
::parse_net
($conf->{$opt});
4970 PVE
::Network
::SDN
::Vnets
::del_ips_from_mac
($net->{bridge
}, $net->{macaddr
}, $conf->{name
});
4972 } elsif (is_valid_drivename
($opt)) {
4973 die "skip\n" if !$hotplug_features->{disk
} || $opt =~ m/(ide|sata)(\d+)/;
4974 vm_deviceunplug
($vmid, $conf, $opt);
4975 vmconfig_delete_or_detach_drive
($vmid, $storecfg, $conf, $opt, $force);
4976 } elsif ($opt =~ m/^memory$/) {
4977 die "skip\n" if !$hotplug_features->{memory
};
4978 PVE
::QemuServer
::Memory
::qemu_memory_hotplug
($vmid, $conf);
4979 } elsif ($opt eq 'cpuunits') {
4980 $cgroup->change_cpu_shares(undef);
4981 } elsif ($opt eq 'cpulimit') {
4982 $cgroup->change_cpu_quota(undef, undef); # reset, cgroup module can better decide values
4988 &$add_error($opt, $err) if $err ne "skip\n";
4990 my $old = delete $conf->{$opt};
4991 $cloudinit_record_changed->($conf, $opt, $old, undef);
4992 PVE
::QemuConfig-
>remove_from_pending_delete($conf, $opt);
4997 foreach my $opt (keys %{$conf->{pending
}}) {
4998 next if $selection && !$selection->{$opt};
4999 my $value = $conf->{pending
}->{$opt};
5001 if ($opt eq 'hotplug') {
5002 die "skip\n" if ($value =~ /memory/) || ($value !~ /memory/ && $conf->{hotplug
} =~ /memory/);
5003 die "skip\n" if ($value =~ /cpu/) || ($value !~ /cpu/ && $conf->{hotplug
} =~ /cpu/);
5004 } elsif ($opt eq 'tablet') {
5005 die "skip\n" if !$hotplug_features->{usb
};
5007 vm_deviceplug
($storecfg, $conf, $vmid, 'tablet', $arch, $machine_type);
5008 vm_deviceplug
($storecfg, $conf, $vmid, 'keyboard', $arch, $machine_type)
5009 if $arch eq 'aarch64';
5010 } elsif ($value == 0) {
5011 vm_deviceunplug
($vmid, $conf, 'tablet');
5012 vm_deviceunplug
($vmid, $conf, 'keyboard') if $arch eq 'aarch64';
5014 } elsif ($opt =~ m/^usb(\d+)$/) {
5016 die "skip\n" if !$usb_hotplug;
5017 my $d = eval { parse_property_string
('pve-qm-usb', $value) };
5019 if ($d->{host
} =~ m/^spice$/i) {
5020 $id = "usbredirdev$index";
5022 qemu_usb_hotplug
($storecfg, $conf, $vmid, $id, $d, $arch, $machine_type);
5023 } elsif ($opt eq 'vcpus') {
5024 die "skip\n" if !$hotplug_features->{cpu
};
5025 qemu_cpu_hotplug
($vmid, $conf, $value);
5026 } elsif ($opt eq 'balloon') {
5027 # enable/disable balloning device is not hotpluggable
5028 my $old_balloon_enabled = !!(!defined($conf->{balloon
}) || $conf->{balloon
});
5029 my $new_balloon_enabled = !!(!defined($conf->{pending
}->{balloon
}) || $conf->{pending
}->{balloon
});
5030 die "skip\n" if $old_balloon_enabled != $new_balloon_enabled;
5032 # allow manual ballooning if shares is set to zero
5033 if ((defined($conf->{shares
}) && ($conf->{shares
} == 0))) {
5034 my $memory = get_current_memory
($conf->{memory
});
5035 my $balloon = $conf->{pending
}->{balloon
} || $memory;
5036 mon_cmd
($vmid, "balloon", value
=> $balloon*1024*1024);
5038 } elsif ($opt =~ m/^net(\d+)$/) {
5039 # some changes can be done without hotplug
5040 vmconfig_update_net
($storecfg, $conf, $hotplug_features->{network
},
5041 $vmid, $opt, $value, $arch, $machine_type);
5042 } elsif (is_valid_drivename
($opt)) {
5043 die "skip\n" if $opt eq 'efidisk0' || $opt eq 'tpmstate0';
5044 # some changes can be done without hotplug
5045 my $drive = parse_drive
($opt, $value);
5046 if (drive_is_cloudinit
($drive)) {
5047 $cloudinit_opt = [$opt, $drive];
5048 # apply all the other changes first, then generate the cloudinit disk
5051 vmconfig_update_disk
($storecfg, $conf, $hotplug_features->{disk
},
5052 $vmid, $opt, $value, $arch, $machine_type);
5053 } elsif ($opt =~ m/^memory$/) { #dimms
5054 die "skip\n" if !$hotplug_features->{memory
};
5055 $value = PVE
::QemuServer
::Memory
::qemu_memory_hotplug
($vmid, $conf, $value);
5056 } elsif ($opt eq 'cpuunits') {
5057 my $new_cpuunits = PVE
::CGroup
::clamp_cpu_shares
($conf->{pending
}->{$opt}); #clamp
5058 $cgroup->change_cpu_shares($new_cpuunits);
5059 } elsif ($opt eq 'cpulimit') {
5060 my $cpulimit = $conf->{pending
}->{$opt} == 0 ?
-1 : int($conf->{pending
}->{$opt} * 100000);
5061 $cgroup->change_cpu_quota($cpulimit, 100000);
5062 } elsif ($opt eq 'agent') {
5063 vmconfig_update_agent
($conf, $opt, $value);
5065 die "skip\n"; # skip non-hot-pluggable options
5069 &$add_error($opt, $err) if $err ne "skip\n";
5071 $cloudinit_record_changed->($conf, $opt, $conf->{$opt}, $value);
5072 $conf->{$opt} = $value;
5073 delete $conf->{pending
}->{$opt};
5077 if (defined($cloudinit_opt)) {
5078 my ($opt, $drive) = @$cloudinit_opt;
5079 my $value = $conf->{pending
}->{$opt};
5081 my $temp = {%$conf, $opt => $value};
5082 PVE
::QemuServer
::Cloudinit
::apply_cloudinit_config
($temp, $vmid);
5083 vmconfig_update_disk
($storecfg, $conf, $hotplug_features->{disk
},
5084 $vmid, $opt, $value, $arch, $machine_type);
5087 &$add_error($opt, $err) if $err ne "skip\n";
5089 $conf->{$opt} = $value;
5090 delete $conf->{pending
}->{$opt};
5094 # unplug xhci controller if no usb device is left
5097 for (my $i = 0; $i < $PVE::QemuServer
::USB
::MAX_USB_DEVICES
; $i++) {
5098 next if !defined($conf->{"usb$i"});
5103 vm_deviceunplug
($vmid, $conf, 'xhci');
5107 PVE
::QemuConfig-
>write_config($vmid, $conf);
5109 if ($hotplug_features->{cloudinit
} && PVE
::QemuServer
::Cloudinit
::has_changes
($conf)) {
5110 PVE
::QemuServer
::vmconfig_update_cloudinit_drive
($storecfg, $conf, $vmid);
5114 sub try_deallocate_drive
{
5115 my ($storecfg, $vmid, $conf, $key, $drive, $rpcenv, $authuser, $force) = @_;
5117 if (($force || $key =~ /^unused/) && !drive_is_cdrom
($drive, 1)) {
5118 my $volid = $drive->{file
};
5119 if (vm_is_volid_owner
($storecfg, $vmid, $volid)) {
5120 my $sid = PVE
::Storage
::parse_volume_id
($volid);
5121 $rpcenv->check($authuser, "/storage/$sid", ['Datastore.AllocateSpace']);
5123 # check if the disk is really unused
5124 die "unable to delete '$volid' - volume is still in use (snapshot?)\n"
5125 if PVE
::QemuServer
::Drive
::is_volume_in_use
($storecfg, $conf, $key, $volid);
5126 PVE
::Storage
::vdisk_free
($storecfg, $volid);
5129 # If vm is not owner of this disk remove from config
5137 sub vmconfig_delete_or_detach_drive
{
5138 my ($vmid, $storecfg, $conf, $opt, $force) = @_;
5140 my $drive = parse_drive
($opt, $conf->{$opt});
5142 my $rpcenv = PVE
::RPCEnvironment
::get
();
5143 my $authuser = $rpcenv->get_user();
5146 $rpcenv->check_vm_perm($authuser, $vmid, undef, ['VM.Config.Disk']);
5147 try_deallocate_drive
($storecfg, $vmid, $conf, $opt, $drive, $rpcenv, $authuser, $force);
5149 vmconfig_register_unused_drive
($storecfg, $vmid, $conf, $drive);
5155 sub vmconfig_apply_pending
{
5156 my ($vmid, $conf, $storecfg, $errors, $skip_cloud_init) = @_;
5158 return if !scalar(keys %{$conf->{pending
}});
5160 my $add_apply_error = sub {
5161 my ($opt, $msg) = @_;
5162 my $err_msg = "unable to apply pending change $opt : $msg";
5163 $errors->{$opt} = $err_msg;
5169 my $pending_delete_hash = PVE
::QemuConfig-
>parse_pending_delete($conf->{pending
}->{delete});
5170 foreach my $opt (sort keys %$pending_delete_hash) {
5171 my $force = $pending_delete_hash->{$opt}->{force
};
5173 if ($opt =~ m/^unused/) {
5174 die "internal error";
5175 } elsif (defined($conf->{$opt}) && is_valid_drivename
($opt)) {
5176 vmconfig_delete_or_detach_drive
($vmid, $storecfg, $conf, $opt, $force);
5177 } elsif (defined($conf->{$opt}) && $opt =~ m/^net\d+$/) {
5179 my $net = PVE
::QemuServer
::parse_net
($conf->{$opt});
5180 eval { PVE
::Network
::SDN
::Vnets
::del_ips_from_mac
($net->{bridge
}, $net->{macaddr
}, $conf->{name
}) };
5186 $add_apply_error->($opt, $err);
5188 PVE
::QemuConfig-
>remove_from_pending_delete($conf, $opt);
5189 delete $conf->{$opt};
5193 PVE
::QemuConfig-
>cleanup_pending($conf);
5195 my $generate_cloudinit = $skip_cloud_init ?
0 : undef;
5197 foreach my $opt (keys %{$conf->{pending
}}) { # add/change
5198 next if $opt eq 'delete'; # just to be sure
5200 if (defined($conf->{$opt}) && is_valid_drivename
($opt)) {
5201 vmconfig_register_unused_drive
($storecfg, $vmid, $conf, parse_drive
($opt, $conf->{$opt}))
5202 } elsif (defined($conf->{pending
}->{$opt}) && $opt =~ m/^net\d+$/) {
5204 my $new_net = PVE
::QemuServer
::parse_net
($conf->{pending
}->{$opt});
5206 my $old_net = PVE
::QemuServer
::parse_net
($conf->{$opt});
5208 if ($old_net->{bridge
} ne $new_net->{bridge
} ||
5209 $old_net->{macaddr
} ne $new_net->{macaddr
}) {
5210 PVE
::Network
::SDN
::Vnets
::del_ips_from_mac
($old_net->{bridge
}, $old_net->{macaddr
}, $conf->{name
});
5213 #fixme: reuse ip if mac change && same bridge
5214 PVE
::Network
::SDN
::Vnets
::add_next_free_cidr
($new_net->{bridge
}, $conf->{name
}, $new_net->{macaddr
}, $vmid, undef, 1);
5219 $add_apply_error->($opt, $err);
5222 if (is_valid_drivename
($opt)) {
5223 my $drive = parse_drive
($opt, $conf->{pending
}->{$opt});
5224 $generate_cloudinit //= 1 if drive_is_cloudinit
($drive);
5227 $conf->{$opt} = delete $conf->{pending
}->{$opt};
5231 # write all changes at once to avoid unnecessary i/o
5232 PVE
::QemuConfig-
>write_config($vmid, $conf);
5233 if ($generate_cloudinit) {
5234 if (PVE
::QemuServer
::Cloudinit
::apply_cloudinit_config
($conf, $vmid)) {
5235 # After successful generation and if there were changes to be applied, update the
5236 # config to drop the {cloudinit} entry.
5237 PVE
::QemuConfig-
>write_config($vmid, $conf);
5242 sub vmconfig_update_net
{
5243 my ($storecfg, $conf, $hotplug, $vmid, $opt, $value, $arch, $machine_type) = @_;
5245 my $newnet = parse_net
($value);
5247 if ($conf->{$opt}) {
5248 my $oldnet = parse_net
($conf->{$opt});
5250 if (safe_string_ne
($oldnet->{model
}, $newnet->{model
}) ||
5251 safe_string_ne
($oldnet->{macaddr
}, $newnet->{macaddr
}) ||
5252 safe_num_ne
($oldnet->{queues
}, $newnet->{queues
}) ||
5253 safe_num_ne
($oldnet->{mtu
}, $newnet->{mtu
}) ||
5254 !($newnet->{bridge
} && $oldnet->{bridge
})) { # bridge/nat mode change
5256 # for non online change, we try to hot-unplug
5257 die "skip\n" if !$hotplug;
5258 vm_deviceunplug
($vmid, $conf, $opt);
5261 PVE
::Network
::SDN
::Vnets
::del_ips_from_mac
($oldnet->{bridge
}, $oldnet->{macaddr
}, $conf->{name
});
5266 die "internal error" if $opt !~ m/net(\d+)/;
5267 my $iface = "tap${vmid}i$1";
5269 if (safe_string_ne
($oldnet->{bridge
}, $newnet->{bridge
}) ||
5270 safe_num_ne
($oldnet->{tag
}, $newnet->{tag
}) ||
5271 safe_string_ne
($oldnet->{trunks
}, $newnet->{trunks
}) ||
5272 safe_num_ne
($oldnet->{firewall
}, $newnet->{firewall
})) {
5273 PVE
::Network
::tap_unplug
($iface);
5275 #set link_down in guest if bridge or vlan change to notify guest (dhcp renew for example)
5276 if (safe_string_ne
($oldnet->{bridge
}, $newnet->{bridge
}) ||
5277 safe_num_ne
($oldnet->{tag
}, $newnet->{tag
})) {
5278 qemu_set_link_status
($vmid, $opt, 0);
5281 if (safe_string_ne
($oldnet->{bridge
}, $newnet->{bridge
})) {
5283 PVE
::Network
::SDN
::Vnets
::del_ips_from_mac
($oldnet->{bridge
}, $oldnet->{macaddr
}, $conf->{name
});
5284 PVE
::Network
::SDN
::Vnets
::add_next_free_cidr
($newnet->{bridge
}, $conf->{name
}, $newnet->{macaddr
}, $vmid, undef, 1);
5289 PVE
::Network
::SDN
::Zones
::tap_plug
($iface, $newnet->{bridge
}, $newnet->{tag
}, $newnet->{firewall
}, $newnet->{trunks
}, $newnet->{rate
});
5291 PVE
::Network
::tap_plug
($iface, $newnet->{bridge
}, $newnet->{tag
}, $newnet->{firewall
}, $newnet->{trunks
}, $newnet->{rate
});
5294 #set link_up in guest if bridge or vlan change to notify guest (dhcp renew for example)
5295 if (safe_string_ne
($oldnet->{bridge
}, $newnet->{bridge
}) ||
5296 safe_num_ne
($oldnet->{tag
}, $newnet->{tag
})) {
5297 qemu_set_link_status
($vmid, $opt, 1);
5300 } elsif (safe_num_ne
($oldnet->{rate
}, $newnet->{rate
})) {
5301 # Rate can be applied on its own but any change above needs to
5302 # include the rate in tap_plug since OVS resets everything.
5303 PVE
::Network
::tap_rate_limit
($iface, $newnet->{rate
});
5306 if (safe_string_ne
($oldnet->{link_down
}, $newnet->{link_down
})) {
5307 qemu_set_link_status
($vmid, $opt, !$newnet->{link_down
});
5316 PVE
::Network
::SDN
::Vnets
::add_next_free_cidr
($newnet->{bridge
}, $conf->{name
}, $newnet->{macaddr
}, $vmid, undef, 1);
5317 PVE
::Network
::SDN
::Vnets
::add_dhcp_mapping
($newnet->{bridge
}, $newnet->{macaddr
}, $vmid, $conf->{name
});
5319 vm_deviceplug
($storecfg, $conf, $vmid, $opt, $newnet, $arch, $machine_type);
5325 sub vmconfig_update_agent
{
5326 my ($conf, $opt, $value) = @_;
5328 die "skip\n" if !$conf->{$opt};
5330 my $hotplug_options = { fstrim_cloned_disks
=> 1 };
5332 my $old_agent = parse_guest_agent
($conf);
5333 my $agent = parse_guest_agent
({$opt => $value});
5335 for my $option (keys %$agent) { # added/changed options
5336 next if defined($hotplug_options->{$option});
5337 die "skip\n" if safe_string_ne
($agent->{$option}, $old_agent->{$option});
5340 for my $option (keys %$old_agent) { # removed options
5341 next if defined($hotplug_options->{$option});
5342 die "skip\n" if safe_string_ne
($old_agent->{$option}, $agent->{$option});
5345 return; # either no actual change (e.g., format string reordered) or just hotpluggable changes
5348 sub vmconfig_update_disk
{
5349 my ($storecfg, $conf, $hotplug, $vmid, $opt, $value, $arch, $machine_type) = @_;
5351 my $drive = parse_drive
($opt, $value);
5353 if ($conf->{$opt} && (my $old_drive = parse_drive
($opt, $conf->{$opt}))) {
5354 my $media = $drive->{media
} || 'disk';
5355 my $oldmedia = $old_drive->{media
} || 'disk';
5356 die "unable to change media type\n" if $media ne $oldmedia;
5358 if (!drive_is_cdrom
($old_drive)) {
5360 if ($drive->{file
} ne $old_drive->{file
}) {
5362 die "skip\n" if !$hotplug;
5364 # unplug and register as unused
5365 vm_deviceunplug
($vmid, $conf, $opt);
5366 vmconfig_register_unused_drive
($storecfg, $vmid, $conf, $old_drive)
5369 # update existing disk
5371 # skip non hotpluggable value
5372 if (safe_string_ne
($drive->{aio
}, $old_drive->{aio
}) ||
5373 safe_string_ne
($drive->{discard
}, $old_drive->{discard
}) ||
5374 safe_string_ne
($drive->{iothread
}, $old_drive->{iothread
}) ||
5375 safe_string_ne
($drive->{queues
}, $old_drive->{queues
}) ||
5376 safe_string_ne
($drive->{product
}, $old_drive->{product
}) ||
5377 safe_string_ne
($drive->{cache
}, $old_drive->{cache
}) ||
5378 safe_string_ne
($drive->{ssd
}, $old_drive->{ssd
}) ||
5379 safe_string_ne
($drive->{vendor
}, $old_drive->{vendor
}) ||
5380 safe_string_ne
($drive->{ro
}, $old_drive->{ro
})) {
5385 if (safe_num_ne
($drive->{mbps
}, $old_drive->{mbps
}) ||
5386 safe_num_ne
($drive->{mbps_rd
}, $old_drive->{mbps_rd
}) ||
5387 safe_num_ne
($drive->{mbps_wr
}, $old_drive->{mbps_wr
}) ||
5388 safe_num_ne
($drive->{iops
}, $old_drive->{iops
}) ||
5389 safe_num_ne
($drive->{iops_rd
}, $old_drive->{iops_rd
}) ||
5390 safe_num_ne
($drive->{iops_wr
}, $old_drive->{iops_wr
}) ||
5391 safe_num_ne
($drive->{mbps_max
}, $old_drive->{mbps_max
}) ||
5392 safe_num_ne
($drive->{mbps_rd_max
}, $old_drive->{mbps_rd_max
}) ||
5393 safe_num_ne
($drive->{mbps_wr_max
}, $old_drive->{mbps_wr_max
}) ||
5394 safe_num_ne
($drive->{iops_max
}, $old_drive->{iops_max
}) ||
5395 safe_num_ne
($drive->{iops_rd_max
}, $old_drive->{iops_rd_max
}) ||
5396 safe_num_ne
($drive->{iops_wr_max
}, $old_drive->{iops_wr_max
}) ||
5397 safe_num_ne
($drive->{bps_max_length
}, $old_drive->{bps_max_length
}) ||
5398 safe_num_ne
($drive->{bps_rd_max_length
}, $old_drive->{bps_rd_max_length
}) ||
5399 safe_num_ne
($drive->{bps_wr_max_length
}, $old_drive->{bps_wr_max_length
}) ||
5400 safe_num_ne
($drive->{iops_max_length
}, $old_drive->{iops_max_length
}) ||
5401 safe_num_ne
($drive->{iops_rd_max_length
}, $old_drive->{iops_rd_max_length
}) ||
5402 safe_num_ne
($drive->{iops_wr_max_length
}, $old_drive->{iops_wr_max_length
})) {
5404 qemu_block_set_io_throttle
(
5406 ($drive->{mbps
} || 0)*1024*1024,
5407 ($drive->{mbps_rd
} || 0)*1024*1024,
5408 ($drive->{mbps_wr
} || 0)*1024*1024,
5409 $drive->{iops
} || 0,
5410 $drive->{iops_rd
} || 0,
5411 $drive->{iops_wr
} || 0,
5412 ($drive->{mbps_max
} || 0)*1024*1024,
5413 ($drive->{mbps_rd_max
} || 0)*1024*1024,
5414 ($drive->{mbps_wr_max
} || 0)*1024*1024,
5415 $drive->{iops_max
} || 0,
5416 $drive->{iops_rd_max
} || 0,
5417 $drive->{iops_wr_max
} || 0,
5418 $drive->{bps_max_length
} || 1,
5419 $drive->{bps_rd_max_length
} || 1,
5420 $drive->{bps_wr_max_length
} || 1,
5421 $drive->{iops_max_length
} || 1,
5422 $drive->{iops_rd_max_length
} || 1,
5423 $drive->{iops_wr_max_length
} || 1,
5433 if ($drive->{file
} eq 'none') {
5434 mon_cmd
($vmid, "eject", force
=> JSON
::true
, id
=> "$opt");
5435 if (drive_is_cloudinit
($old_drive)) {
5436 vmconfig_register_unused_drive
($storecfg, $vmid, $conf, $old_drive);
5439 my $path = get_iso_path
($storecfg, $vmid, $drive->{file
});
5441 # force eject if locked
5442 mon_cmd
($vmid, "eject", force
=> JSON
::true
, id
=> "$opt");
5445 mon_cmd
($vmid, "blockdev-change-medium",
5446 id
=> "$opt", filename
=> "$path");
5454 die "skip\n" if !$hotplug || $opt =~ m/(ide|sata)(\d+)/;
5456 PVE
::Storage
::activate_volumes
($storecfg, [$drive->{file
}]) if $drive->{file
} !~ m
|^/dev/.+|;
5457 vm_deviceplug
($storecfg, $conf, $vmid, $opt, $drive, $arch, $machine_type);
5460 sub vmconfig_update_cloudinit_drive
{
5461 my ($storecfg, $conf, $vmid) = @_;
5463 my $cloudinit_ds = undef;
5464 my $cloudinit_drive = undef;
5466 PVE
::QemuConfig-
>foreach_volume($conf, sub {
5467 my ($ds, $drive) = @_;
5468 if (PVE
::QemuServer
::drive_is_cloudinit
($drive)) {
5469 $cloudinit_ds = $ds;
5470 $cloudinit_drive = $drive;
5474 return if !$cloudinit_drive;
5476 if (PVE
::QemuServer
::Cloudinit
::apply_cloudinit_config
($conf, $vmid)) {
5477 PVE
::QemuConfig-
>write_config($vmid, $conf);
5480 my $running = PVE
::QemuServer
::check_running
($vmid);
5483 my $path = PVE
::Storage
::path
($storecfg, $cloudinit_drive->{file
});
5485 mon_cmd
($vmid, "eject", force
=> JSON
::true
, id
=> "$cloudinit_ds");
5486 mon_cmd
($vmid, "blockdev-change-medium", id
=> "$cloudinit_ds", filename
=> "$path");
5491 # called in locked context by incoming migration
5492 sub vm_migrate_get_nbd_disks
{
5493 my ($storecfg, $conf, $replicated_volumes) = @_;
5495 my $local_volumes = {};
5496 PVE
::QemuConfig-
>foreach_volume($conf, sub {
5497 my ($ds, $drive) = @_;
5499 return if drive_is_cdrom
($drive);
5500 return if $ds eq 'tpmstate0';
5502 my $volid = $drive->{file
};
5506 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($volid);
5508 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
5509 return if $scfg->{shared
};
5511 my $format = qemu_img_format
($scfg, $volname);
5513 # replicated disks re-use existing state via bitmap
5514 my $use_existing = $replicated_volumes->{$volid} ?
1 : 0;
5515 $local_volumes->{$ds} = [$volid, $storeid, $drive, $use_existing, $format];
5517 return $local_volumes;
5520 # called in locked context by incoming migration
5521 sub vm_migrate_alloc_nbd_disks
{
5522 my ($storecfg, $vmid, $source_volumes, $storagemap) = @_;
5525 foreach my $opt (sort keys %$source_volumes) {
5526 my ($volid, $storeid, $drive, $use_existing, $format) = @{$source_volumes->{$opt}};
5528 if ($use_existing) {
5529 $nbd->{$opt}->{drivestr
} = print_drive
($drive);
5530 $nbd->{$opt}->{volid
} = $volid;
5531 $nbd->{$opt}->{replicated
} = 1;
5535 $storeid = PVE
::JSONSchema
::map_id
($storagemap, $storeid);
5537 # order of precedence, filtered by whether storage supports it:
5538 # 1. explicit requested format
5539 # 2. default format of storage
5540 my ($defFormat, $validFormats) = PVE
::Storage
::storage_default_format
($storecfg, $storeid);
5541 $format = $defFormat if !$format || !grep { $format eq $_ } $validFormats->@*;
5543 my $size = $drive->{size
} / 1024;
5544 my $newvolid = PVE
::Storage
::vdisk_alloc
($storecfg, $storeid, $vmid, $format, undef, $size);
5545 my $newdrive = $drive;
5546 $newdrive->{format
} = $format;
5547 $newdrive->{file
} = $newvolid;
5548 my $drivestr = print_drive
($newdrive);
5549 $nbd->{$opt}->{drivestr
} = $drivestr;
5550 $nbd->{$opt}->{volid
} = $newvolid;
5556 # see vm_start_nolock for parameters, additionally:
5558 # storagemap = parsed storage map for allocating NBD disks
5560 my ($storecfg, $vmid, $params, $migrate_opts) = @_;
5562 return PVE
::QemuConfig-
>lock_config($vmid, sub {
5563 my $conf = PVE
::QemuConfig-
>load_config($vmid, $migrate_opts->{migratedfrom
});
5565 die "you can't start a vm if it's a template\n"
5566 if !$params->{skiptemplate
} && PVE
::QemuConfig-
>is_template($conf);
5568 my $has_suspended_lock = PVE
::QemuConfig-
>has_lock($conf, 'suspended');
5569 my $has_backup_lock = PVE
::QemuConfig-
>has_lock($conf, 'backup');
5571 my $running = check_running
($vmid, undef, $migrate_opts->{migratedfrom
});
5573 if ($has_backup_lock && $running) {
5574 # a backup is currently running, attempt to start the guest in the
5575 # existing QEMU instance
5576 return vm_resume
($vmid);
5579 PVE
::QemuConfig-
>check_lock($conf)
5580 if !($params->{skiplock
} || $has_suspended_lock);
5582 $params->{resume
} = $has_suspended_lock || defined($conf->{vmstate
});
5584 die "VM $vmid already running\n" if $running;
5586 if (my $storagemap = $migrate_opts->{storagemap
}) {
5587 my $replicated = $migrate_opts->{replicated_volumes
};
5588 my $disks = vm_migrate_get_nbd_disks
($storecfg, $conf, $replicated);
5589 $migrate_opts->{nbd
} = vm_migrate_alloc_nbd_disks
($storecfg, $vmid, $disks, $storagemap);
5591 foreach my $opt (keys %{$migrate_opts->{nbd
}}) {
5592 $conf->{$opt} = $migrate_opts->{nbd
}->{$opt}->{drivestr
};
5596 return vm_start_nolock
($storecfg, $vmid, $conf, $params, $migrate_opts);
5602 # statefile => 'tcp', 'unix' for migration or path/volid for RAM state
5603 # skiplock => 0/1, skip checking for config lock
5604 # skiptemplate => 0/1, skip checking whether VM is template
5605 # forcemachine => to force QEMU machine (rollback/migration)
5606 # forcecpu => a QEMU '-cpu' argument string to override get_cpu_options
5607 # timeout => in seconds
5608 # paused => start VM in paused state (backup)
5609 # resume => resume from hibernation
5620 # nbd => volumes for NBD exports (vm_migrate_alloc_nbd_disks)
5621 # migratedfrom => source node
5622 # spice_ticket => used for spice migration, passed via tunnel/stdin
5623 # network => CIDR of migration network
5624 # type => secure/insecure - tunnel over encrypted connection or plain-text
5625 # nbd_proto_version => int, 0 for TCP, 1 for UNIX
5626 # replicated_volumes => which volids should be re-used with bitmaps for nbd migration
5627 # offline_volumes => new volids of offline migrated disks like tpmstate and cloudinit, not yet
5628 # contained in config
5629 sub vm_start_nolock
{
5630 my ($storecfg, $vmid, $conf, $params, $migrate_opts) = @_;
5632 my $statefile = $params->{statefile
};
5633 my $resume = $params->{resume
};
5635 my $migratedfrom = $migrate_opts->{migratedfrom
};
5636 my $migration_type = $migrate_opts->{type
};
5640 # clean up leftover reboot request files
5641 eval { clear_reboot_request
($vmid); };
5644 if (!$statefile && scalar(keys %{$conf->{pending
}})) {
5645 vmconfig_apply_pending
($vmid, $conf, $storecfg);
5646 $conf = PVE
::QemuConfig-
>load_config($vmid); # update/reload
5649 # don't regenerate the ISO if the VM is started as part of a live migration
5650 # this way we can reuse the old ISO with the correct config
5651 if (!$migratedfrom) {
5652 if (PVE
::QemuServer
::Cloudinit
::apply_cloudinit_config
($conf, $vmid)) {
5653 # FIXME: apply_cloudinit_config updates $conf in this case, and it would only drop
5654 # $conf->{cloudinit}, so we could just not do this?
5655 # But we do it above, so for now let's be consistent.
5656 $conf = PVE
::QemuConfig-
>load_config($vmid); # update/reload
5660 # override offline migrated volumes, conf is out of date still
5661 if (my $offline_volumes = $migrate_opts->{offline_volumes
}) {
5662 for my $key (sort keys $offline_volumes->%*) {
5663 my $parsed = parse_drive
($key, $conf->{$key});
5664 $parsed->{file
} = $offline_volumes->{$key};
5665 $conf->{$key} = print_drive
($parsed);
5669 my $defaults = load_defaults
();
5671 # set environment variable useful inside network script
5672 # for remote migration the config is available on the target node!
5673 if (!$migrate_opts->{remote_node
}) {
5674 $ENV{PVE_MIGRATED_FROM
} = $migratedfrom;
5677 PVE
::GuestHelpers
::exec_hookscript
($conf, $vmid, 'pre-start', 1);
5679 my $forcemachine = $params->{forcemachine
};
5680 my $forcecpu = $params->{forcecpu
};
5682 # enforce machine and CPU type on suspended vm to ensure HW compatibility
5683 $forcemachine = $conf->{runningmachine
};
5684 $forcecpu = $conf->{runningcpu
};
5685 print "Resuming suspended VM\n";
5688 my ($cmd, $vollist, $spice_port, $pci_devices) = config_to_command
($storecfg, $vmid,
5689 $conf, $defaults, $forcemachine, $forcecpu, $params->{'pbs-backing'});
5692 my $get_migration_ip = sub {
5693 my ($nodename) = @_;
5695 return $migration_ip if defined($migration_ip);
5697 my $cidr = $migrate_opts->{network
};
5699 if (!defined($cidr)) {
5700 my $dc_conf = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
5701 $cidr = $dc_conf->{migration
}->{network
};
5704 if (defined($cidr)) {
5705 my $ips = PVE
::Network
::get_local_ip_from_cidr
($cidr);
5707 die "could not get IP: no address configured on local " .
5708 "node for network '$cidr'\n" if scalar(@$ips) == 0;
5710 die "could not get IP: multiple addresses configured on local " .
5711 "node for network '$cidr'\n" if scalar(@$ips) > 1;
5713 $migration_ip = @$ips[0];
5716 $migration_ip = PVE
::Cluster
::remote_node_ip
($nodename, 1)
5717 if !defined($migration_ip);
5719 return $migration_ip;
5723 if ($statefile eq 'tcp') {
5724 my $migrate = $res->{migrate
} = { proto
=> 'tcp' };
5725 $migrate->{addr
} = "localhost";
5726 my $datacenterconf = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
5727 my $nodename = nodename
();
5729 if (!defined($migration_type)) {
5730 if (defined($datacenterconf->{migration
}->{type
})) {
5731 $migration_type = $datacenterconf->{migration
}->{type
};
5733 $migration_type = 'secure';
5737 if ($migration_type eq 'insecure') {
5738 $migrate->{addr
} = $get_migration_ip->($nodename);
5739 $migrate->{addr
} = "[$migrate->{addr}]" if Net
::IP
::ip_is_ipv6
($migrate->{addr
});
5742 # see #4501: port reservation should be done close to usage - tell QEMU where to listen
5744 push @$cmd, '-incoming', 'defer';
5747 } elsif ($statefile eq 'unix') {
5748 # should be default for secure migrations as a ssh TCP forward
5749 # tunnel is not deterministic reliable ready and fails regurarly
5750 # to set up in time, so use UNIX socket forwards
5751 my $migrate = $res->{migrate
} = { proto
=> 'unix' };
5752 $migrate->{addr
} = "/run/qemu-server/$vmid.migrate";
5753 unlink $migrate->{addr
};
5755 $migrate->{uri
} = "unix:$migrate->{addr}";
5756 push @$cmd, '-incoming', $migrate->{uri
};
5759 } elsif (-e
$statefile) {
5760 push @$cmd, '-loadstate', $statefile;
5762 my $statepath = PVE
::Storage
::path
($storecfg, $statefile);
5763 push @$vollist, $statefile;
5764 push @$cmd, '-loadstate', $statepath;
5766 } elsif ($params->{paused
}) {
5770 my $memory = get_current_memory
($conf->{memory
});
5771 my $start_timeout = $params->{timeout
} // config_aware_timeout
($conf, $memory, $resume);
5773 my $pci_reserve_list = [];
5774 for my $device (values $pci_devices->%*) {
5775 next if $device->{mdev
}; # we don't reserve for mdev devices
5776 push $pci_reserve_list->@*, map { $_->{id
} } $device->{ids
}->@*;
5779 # reserve all PCI IDs before actually doing anything with them
5780 PVE
::QemuServer
::PCI
::reserve_pci_usage
($pci_reserve_list, $vmid, $start_timeout);
5784 for my $id (sort keys %$pci_devices) {
5785 my $d = $pci_devices->{$id};
5786 my ($index) = ($id =~ m/^hostpci(\d+)$/);
5789 for my $dev ($d->{ids
}->@*) {
5790 my $info = eval { PVE
::QemuServer
::PCI
::prepare_pci_device
($vmid, $dev->{id
}, $index, $d->{mdev
}) };
5793 $chosen_mdev = $info;
5794 last if $chosen_mdev; # if successful, we're done
5800 next if !$d->{mdev
};
5801 die "could not create mediated device\n" if !defined($chosen_mdev);
5803 # nvidia grid needs the uuid of the mdev as qemu parameter
5804 if (!defined($uuid) && $chosen_mdev->{vendor
} =~ m/^(0x)?10de$/) {
5805 if (defined($conf->{smbios1
})) {
5806 my $smbios_conf = parse_smbios1
($conf->{smbios1
});
5807 $uuid = $smbios_conf->{uuid
} if defined($smbios_conf->{uuid
});
5809 $uuid = PVE
::QemuServer
::PCI
::generate_mdev_uuid
($vmid, $index) if !defined($uuid);
5812 push @$cmd, '-uuid', $uuid if defined($uuid);
5815 eval { cleanup_pci_devices
($vmid, $conf) };
5820 PVE
::Storage
::activate_volumes
($storecfg, $vollist);
5823 my %silence_std_outs = (outfunc
=> sub {}, errfunc
=> sub {});
5824 eval { run_command
(['/bin/systemctl', 'reset-failed', "$vmid.scope"], %silence_std_outs) };
5825 eval { run_command
(['/bin/systemctl', 'stop', "$vmid.scope"], %silence_std_outs) };
5826 # Issues with the above 'stop' not being fully completed are extremely rare, a very low
5827 # timeout should be more than enough here...
5828 PVE
::Systemd
::wait_for_unit_removed
("$vmid.scope", 20);
5830 my $cpuunits = PVE
::CGroup
::clamp_cpu_shares
($conf->{cpuunits
});
5833 timeout
=> $statefile ?
undef : $start_timeout,
5838 # when migrating, prefix QEMU output so other side can pick up any
5839 # errors that might occur and show the user
5840 if ($migratedfrom) {
5841 $run_params{quiet
} = 1;
5842 $run_params{logfunc
} = sub { print "QEMU: $_[0]\n" };
5845 my %systemd_properties = (
5846 Slice
=> 'qemu.slice',
5847 KillMode
=> 'process',
5849 TimeoutStopUSec
=> ULONG_MAX
, # infinity
5852 if (PVE
::CGroup
::cgroup_mode
() == 2) {
5853 $systemd_properties{CPUWeight
} = $cpuunits;
5855 $systemd_properties{CPUShares
} = $cpuunits;
5858 if (my $cpulimit = $conf->{cpulimit
}) {
5859 $systemd_properties{CPUQuota
} = int($cpulimit * 100);
5861 $systemd_properties{timeout
} = 10 if $statefile; # setting up the scope shoul be quick
5863 my $run_qemu = sub {
5864 PVE
::Tools
::run_fork
sub {
5865 PVE
::Systemd
::enter_systemd_scope
($vmid, "Proxmox VE VM $vmid", %systemd_properties);
5868 if ((my $tpm = $conf->{tpmstate0
}) && !PVE
::QemuConfig-
>is_template($conf)) {
5869 # start the TPM emulator so QEMU can connect on start
5870 $tpmpid = start_swtpm
($storecfg, $vmid, $tpm, $migratedfrom);
5873 my $exitcode = run_command
($cmd, %run_params);
5876 warn "stopping swtpm instance (pid $tpmpid) due to QEMU startup error\n";
5877 kill 'TERM', $tpmpid;
5879 die "QEMU exited with code $exitcode\n";
5884 if ($conf->{hugepages
}) {
5887 my $hotplug_features =
5888 parse_hotplug_features
(defined($conf->{hotplug
}) ?
$conf->{hotplug
} : '1');
5889 my $hugepages_topology =
5890 PVE
::QemuServer
::Memory
::hugepages_topology
($conf, $hotplug_features->{memory
});
5892 my $hugepages_host_topology = PVE
::QemuServer
::Memory
::hugepages_host_topology
();
5894 PVE
::QemuServer
::Memory
::hugepages_mount
();
5895 PVE
::QemuServer
::Memory
::hugepages_allocate
($hugepages_topology, $hugepages_host_topology);
5897 eval { $run_qemu->() };
5899 PVE
::QemuServer
::Memory
::hugepages_reset
($hugepages_host_topology)
5900 if !$conf->{keephugepages
};
5904 PVE
::QemuServer
::Memory
::hugepages_pre_deallocate
($hugepages_topology)
5905 if !$conf->{keephugepages
};
5907 eval { PVE
::QemuServer
::Memory
::hugepages_update_locked
($code); };
5910 eval { $run_qemu->() };
5914 # deactivate volumes if start fails
5915 eval { PVE
::Storage
::deactivate_volumes
($storecfg, $vollist); };
5917 eval { cleanup_pci_devices
($vmid, $conf) };
5920 die "start failed: $err";
5923 # re-reserve all PCI IDs now that we can know the actual VM PID
5924 my $pid = PVE
::QemuServer
::Helpers
::vm_running_locally
($vmid);
5925 eval { PVE
::QemuServer
::PCI
::reserve_pci_usage
($pci_reserve_list, $vmid, undef, $pid) };
5928 if (defined(my $migrate = $res->{migrate
})) {
5929 if ($migrate->{proto
} eq 'tcp') {
5930 my $nodename = nodename
();
5931 my $pfamily = PVE
::Tools
::get_host_address_family
($nodename);
5932 $migrate->{port
} = PVE
::Tools
::next_migrate_port
($pfamily);
5933 $migrate->{uri
} = "tcp:$migrate->{addr}:$migrate->{port}";
5934 mon_cmd
($vmid, "migrate-incoming", uri
=> $migrate->{uri
});
5936 print "migration listens on $migrate->{uri}\n";
5937 } elsif ($statefile) {
5938 eval { mon_cmd
($vmid, "cont"); };
5942 #start nbd server for storage migration
5943 if (my $nbd = $migrate_opts->{nbd
}) {
5944 my $nbd_protocol_version = $migrate_opts->{nbd_proto_version
} // 0;
5946 my $migrate_storage_uri;
5947 # nbd_protocol_version > 0 for unix socket support
5948 if ($nbd_protocol_version > 0 && ($migration_type eq 'secure' || $migration_type eq 'websocket')) {
5949 my $socket_path = "/run/qemu-server/$vmid\_nbd.migrate";
5950 mon_cmd
($vmid, "nbd-server-start", addr
=> { type
=> 'unix', data
=> { path
=> $socket_path } } );
5951 $migrate_storage_uri = "nbd:unix:$socket_path";
5952 $res->{migrate
}->{unix_sockets
} = [$socket_path];
5954 my $nodename = nodename
();
5955 my $localip = $get_migration_ip->($nodename);
5956 my $pfamily = PVE
::Tools
::get_host_address_family
($nodename);
5957 my $storage_migrate_port = PVE
::Tools
::next_migrate_port
($pfamily);
5959 mon_cmd
($vmid, "nbd-server-start", addr
=> {
5962 host
=> "${localip}",
5963 port
=> "${storage_migrate_port}",
5966 $localip = "[$localip]" if Net
::IP
::ip_is_ipv6
($localip);
5967 $migrate_storage_uri = "nbd:${localip}:${storage_migrate_port}";
5970 my $block_info = mon_cmd
($vmid, "query-block");
5971 $block_info = { map { $_->{device
} => $_ } $block_info->@* };
5973 foreach my $opt (sort keys %$nbd) {
5974 my $drivestr = $nbd->{$opt}->{drivestr
};
5975 my $volid = $nbd->{$opt}->{volid
};
5977 my $block_node = $block_info->{"drive-$opt"}->{inserted
}->{'node-name'};
5983 'node-name' => $block_node,
5984 writable
=> JSON
::true
,
5986 name
=> "drive-$opt", # NBD export name
5989 my $nbd_uri = "$migrate_storage_uri:exportname=drive-$opt";
5990 print "storage migration listens on $nbd_uri volume:$drivestr\n";
5991 print "re-using replicated volume: $opt - $volid\n"
5992 if $nbd->{$opt}->{replicated
};
5994 $res->{drives
}->{$opt} = $nbd->{$opt};
5995 $res->{drives
}->{$opt}->{nbd_uri
} = $nbd_uri;
5999 if ($migratedfrom) {
6001 set_migration_caps
($vmid);
6006 print "spice listens on port $spice_port\n";
6007 $res->{spice_port
} = $spice_port;
6008 if ($migrate_opts->{spice_ticket
}) {
6009 mon_cmd
($vmid, "set_password", protocol
=> 'spice', password
=>
6010 $migrate_opts->{spice_ticket
});
6011 mon_cmd
($vmid, "expire_password", protocol
=> 'spice', time => "+30");
6016 mon_cmd
($vmid, "balloon", value
=> $conf->{balloon
}*1024*1024)
6017 if !$statefile && $conf->{balloon
};
6019 foreach my $opt (keys %$conf) {
6020 next if $opt !~ m/^net\d+$/;
6021 my $nicconf = parse_net
($conf->{$opt});
6022 qemu_set_link_status
($vmid, $opt, 0) if $nicconf->{link_down
};
6024 add_nets_bridge_fdb
($conf, $vmid);
6027 if (!defined($conf->{balloon
}) || $conf->{balloon
}) {
6032 path
=> "machine/peripheral/balloon0",
6033 property
=> "guest-stats-polling-interval",
6037 log_warn
("could not set polling interval for ballooning - $@") if $@;
6041 print "Resumed VM, removing state\n";
6042 if (my $vmstate = $conf->{vmstate
}) {
6043 PVE
::Storage
::deactivate_volumes
($storecfg, [$vmstate]);
6044 PVE
::Storage
::vdisk_free
($storecfg, $vmstate);
6046 delete $conf->@{qw(lock vmstate runningmachine runningcpu)};
6047 PVE
::QemuConfig-
>write_config($vmid, $conf);
6050 PVE
::GuestHelpers
::exec_hookscript
($conf, $vmid, 'post-start');
6052 my ($current_machine, $is_deprecated) =
6053 PVE
::QemuServer
::Machine
::get_current_qemu_machine
($vmid);
6054 if ($is_deprecated) {
6056 "current machine version '$current_machine' is deprecated - see the documentation and ".
6057 "change to a newer one",
6064 sub vm_commandline
{
6065 my ($storecfg, $vmid, $snapname) = @_;
6067 my $conf = PVE
::QemuConfig-
>load_config($vmid);
6069 my ($forcemachine, $forcecpu);
6071 my $snapshot = $conf->{snapshots
}->{$snapname};
6072 die "snapshot '$snapname' does not exist\n" if !defined($snapshot);
6074 # check for machine or CPU overrides in snapshot
6075 $forcemachine = $snapshot->{runningmachine
};
6076 $forcecpu = $snapshot->{runningcpu
};
6078 $snapshot->{digest
} = $conf->{digest
}; # keep file digest for API
6083 my $defaults = load_defaults
();
6085 my $cmd = config_to_command
($storecfg, $vmid, $conf, $defaults, $forcemachine, $forcecpu);
6087 return PVE
::Tools
::cmd2string
($cmd);
6091 my ($vmid, $skiplock) = @_;
6093 PVE
::QemuConfig-
>lock_config($vmid, sub {
6095 my $conf = PVE
::QemuConfig-
>load_config($vmid);
6097 PVE
::QemuConfig-
>check_lock($conf) if !$skiplock;
6099 mon_cmd
($vmid, "system_reset");
6103 sub get_vm_volumes
{
6107 foreach_volid
($conf, sub {
6108 my ($volid, $attr) = @_;
6110 return if $volid =~ m
|^/|;
6112 my ($sid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
6115 push @$vollist, $volid;
6121 sub cleanup_pci_devices
{
6122 my ($vmid, $conf) = @_;
6124 foreach my $key (keys %$conf) {
6125 next if $key !~ m/^hostpci(\d+)$/;
6126 my $hostpciindex = $1;
6127 my $uuid = PVE
::SysFSTools
::generate_mdev_uuid
($vmid, $hostpciindex);
6128 my $d = parse_hostpci
($conf->{$key});
6130 # NOTE: avoid PVE::SysFSTools::pci_cleanup_mdev_device as it requires PCI ID and we
6131 # don't want to break ABI just for this two liner
6132 my $dev_sysfs_dir = "/sys/bus/mdev/devices/$uuid";
6134 # some nvidia vgpu driver versions want to clean the mdevs up themselves, and error
6135 # out when we do it first. so wait for up to 10 seconds and then try it manually
6136 if ($d->{ids
}->[0]->[0]->{vendor
} =~ m/^(0x)?10de$/ && -e
$dev_sysfs_dir) {
6138 while (-e
$dev_sysfs_dir && $count < 10) {
6142 print "waited $count seconds for mediated device driver finishing clean up\n";
6145 if (-e
$dev_sysfs_dir) {
6146 print "actively clean up mediated device with UUID $uuid\n";
6147 PVE
::SysFSTools
::file_write
("$dev_sysfs_dir/remove", "1");
6151 PVE
::QemuServer
::PCI
::remove_pci_reservation
($vmid);
6154 sub vm_stop_cleanup
{
6155 my ($storecfg, $vmid, $conf, $keepActive, $apply_pending_changes) = @_;
6160 my $vollist = get_vm_volumes
($conf);
6161 PVE
::Storage
::deactivate_volumes
($storecfg, $vollist);
6163 if (my $tpmdrive = $conf->{tpmstate0
}) {
6164 my $tpm = parse_drive
("tpmstate0", $tpmdrive);
6165 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($tpm->{file
}, 1);
6167 PVE
::Storage
::unmap_volume
($storecfg, $tpm->{file
});
6172 foreach my $ext (qw(mon qmp pid vnc qga)) {
6173 unlink "/var/run/qemu-server/${vmid}.$ext";
6176 if ($conf->{ivshmem
}) {
6177 my $ivshmem = parse_property_string
($ivshmem_fmt, $conf->{ivshmem
});
6178 # just delete it for now, VMs which have this already open do not
6179 # are affected, but new VMs will get a separated one. If this
6180 # becomes an issue we either add some sort of ref-counting or just
6181 # add a "don't delete on stop" flag to the ivshmem format.
6182 unlink '/dev/shm/pve-shm-' . ($ivshmem->{name
} // $vmid);
6185 cleanup_pci_devices
($vmid, $conf);
6187 vmconfig_apply_pending
($vmid, $conf, $storecfg) if $apply_pending_changes;
6189 warn $@ if $@; # avoid errors - just warn
6192 # call only in locked context
6194 my ($storecfg, $vmid, $skiplock, $nocheck, $timeout, $shutdown, $force, $keepActive) = @_;
6196 my $pid = check_running
($vmid, $nocheck);
6201 $conf = PVE
::QemuConfig-
>load_config($vmid);
6202 PVE
::QemuConfig-
>check_lock($conf) if !$skiplock;
6203 if (!defined($timeout) && $shutdown && $conf->{startup
}) {
6204 my $opts = PVE
::JSONSchema
::pve_parse_startup_order
($conf->{startup
});
6205 $timeout = $opts->{down
} if $opts->{down
};
6207 PVE
::GuestHelpers
::exec_hookscript
($conf, $vmid, 'pre-stop');
6212 if (defined($conf) && get_qga_key
($conf, 'enabled')) {
6213 mon_cmd
($vmid, "guest-shutdown", timeout
=> $timeout);
6215 mon_cmd
($vmid, "system_powerdown");
6218 mon_cmd
($vmid, "quit");
6224 $timeout = 60 if !defined($timeout);
6227 while (($count < $timeout) && check_running
($vmid, $nocheck)) {
6232 if ($count >= $timeout) {
6234 warn "VM still running - terminating now with SIGTERM\n";
6237 die "VM quit/powerdown failed - got timeout\n";
6240 vm_stop_cleanup
($storecfg, $vmid, $conf, $keepActive, 1) if $conf;
6244 if (!check_running
($vmid, $nocheck)) {
6245 warn "Unexpected: VM shutdown command failed, but VM not running anymore..\n";
6249 warn "VM quit/powerdown failed - terminating now with SIGTERM\n";
6252 die "VM quit/powerdown failed\n";
6260 while (($count < $timeout) && check_running
($vmid, $nocheck)) {
6265 if ($count >= $timeout) {
6266 warn "VM still running - terminating now with SIGKILL\n";
6271 vm_stop_cleanup
($storecfg, $vmid, $conf, $keepActive, 1) if $conf;
6274 # Note: use $nocheck to skip tests if VM configuration file exists.
6275 # We need that when migration VMs to other nodes (files already moved)
6276 # Note: we set $keepActive in vzdump stop mode - volumes need to stay active
6278 my ($storecfg, $vmid, $skiplock, $nocheck, $timeout, $shutdown, $force, $keepActive, $migratedfrom) = @_;
6280 $force = 1 if !defined($force) && !$shutdown;
6283 my $pid = check_running
($vmid, $nocheck, $migratedfrom);
6284 kill 15, $pid if $pid;
6285 my $conf = PVE
::QemuConfig-
>load_config($vmid, $migratedfrom);
6286 vm_stop_cleanup
($storecfg, $vmid, $conf, $keepActive, 0);
6290 PVE
::QemuConfig-
>lock_config($vmid, sub {
6291 _do_vm_stop
($storecfg, $vmid, $skiplock, $nocheck, $timeout, $shutdown, $force, $keepActive);
6296 my ($vmid, $timeout) = @_;
6298 PVE
::QemuConfig-
>lock_config($vmid, sub {
6301 # only reboot if running, as qmeventd starts it again on a stop event
6302 return if !check_running
($vmid);
6304 create_reboot_request
($vmid);
6306 my $storecfg = PVE
::Storage
::config
();
6307 _do_vm_stop
($storecfg, $vmid, undef, undef, $timeout, 1);
6311 # avoid that the next normal shutdown will be confused for a reboot
6312 clear_reboot_request
($vmid);
6318 # note: if using the statestorage parameter, the caller has to check privileges
6320 my ($vmid, $skiplock, $includestate, $statestorage) = @_;
6327 PVE
::QemuConfig-
>lock_config($vmid, sub {
6329 $conf = PVE
::QemuConfig-
>load_config($vmid);
6331 my $is_backing_up = PVE
::QemuConfig-
>has_lock($conf, 'backup');
6332 PVE
::QemuConfig-
>check_lock($conf)
6333 if !($skiplock || $is_backing_up);
6335 die "cannot suspend to disk during backup\n"
6336 if $is_backing_up && $includestate;
6338 if ($includestate) {
6339 $conf->{lock} = 'suspending';
6340 my $date = strftime
("%Y-%m-%d", localtime(time()));
6341 $storecfg = PVE
::Storage
::config
();
6342 if (!$statestorage) {
6343 $statestorage = find_vmstate_storage
($conf, $storecfg);
6344 # check permissions for the storage
6345 my $rpcenv = PVE
::RPCEnvironment
::get
();
6346 if ($rpcenv->{type
} ne 'cli') {
6347 my $authuser = $rpcenv->get_user();
6348 $rpcenv->check($authuser, "/storage/$statestorage", ['Datastore.AllocateSpace']);
6353 $vmstate = PVE
::QemuConfig-
>__snapshot_save_vmstate(
6354 $vmid, $conf, "suspend-$date", $storecfg, $statestorage, 1);
6355 $path = PVE
::Storage
::path
($storecfg, $vmstate);
6356 PVE
::QemuConfig-
>write_config($vmid, $conf);
6358 mon_cmd
($vmid, "stop");
6362 if ($includestate) {
6364 PVE
::Storage
::activate_volumes
($storecfg, [$vmstate]);
6367 set_migration_caps
($vmid, 1);
6368 mon_cmd
($vmid, "savevm-start", statefile
=> $path);
6370 my $state = mon_cmd
($vmid, "query-savevm");
6371 if (!$state->{status
}) {
6372 die "savevm not active\n";
6373 } elsif ($state->{status
} eq 'active') {
6376 } elsif ($state->{status
} eq 'completed') {
6377 print "State saved, quitting\n";
6379 } elsif ($state->{status
} eq 'failed' && $state->{error
}) {
6380 die "query-savevm failed with error '$state->{error}'\n"
6382 die "query-savevm returned status '$state->{status}'\n";
6388 PVE
::QemuConfig-
>lock_config($vmid, sub {
6389 $conf = PVE
::QemuConfig-
>load_config($vmid);
6391 # cleanup, but leave suspending lock, to indicate something went wrong
6393 mon_cmd
($vmid, "savevm-end");
6394 PVE
::Storage
::deactivate_volumes
($storecfg, [$vmstate]);
6395 PVE
::Storage
::vdisk_free
($storecfg, $vmstate);
6396 delete $conf->@{qw(vmstate runningmachine runningcpu)};
6397 PVE
::QemuConfig-
>write_config($vmid, $conf);
6403 die "lock changed unexpectedly\n"
6404 if !PVE
::QemuConfig-
>has_lock($conf, 'suspending');
6406 mon_cmd
($vmid, "quit");
6407 $conf->{lock} = 'suspended';
6408 PVE
::QemuConfig-
>write_config($vmid, $conf);
6413 # $nocheck is set when called as part of a migration - in this context the
6414 # location of the config file (source or target node) is not deterministic,
6415 # since migration cannot wait for pmxcfs to process the rename
6417 my ($vmid, $skiplock, $nocheck) = @_;
6419 PVE
::QemuConfig-
>lock_config($vmid, sub {
6420 my $res = mon_cmd
($vmid, 'query-status');
6421 my $resume_cmd = 'cont';
6425 $conf = eval { PVE
::QemuConfig-
>load_config($vmid) }; # try on target node
6427 my $vmlist = PVE
::Cluster
::get_vmlist
();
6428 if (exists($vmlist->{ids
}->{$vmid})) {
6429 my $node = $vmlist->{ids
}->{$vmid}->{node
};
6430 $conf = eval { PVE
::QemuConfig-
>load_config($vmid, $node) }; # try on source node
6433 PVE
::Cluster
::cfs_update
(); # vmlist was wrong, invalidate cache
6434 $conf = PVE
::QemuConfig-
>load_config($vmid); # last try on target node again
6438 $conf = PVE
::QemuConfig-
>load_config($vmid);
6441 if ($res->{status
}) {
6442 return if $res->{status
} eq 'running'; # job done, go home
6443 $resume_cmd = 'system_wakeup' if $res->{status
} eq 'suspended';
6444 $reset = 1 if $res->{status
} eq 'shutdown';
6448 PVE
::QemuConfig-
>check_lock($conf)
6449 if !($skiplock || PVE
::QemuConfig-
>has_lock($conf, 'backup'));
6453 # required if a VM shuts down during a backup and we get a resume
6454 # request before the backup finishes for example
6455 mon_cmd
($vmid, "system_reset");
6458 add_nets_bridge_fdb
($conf, $vmid) if $resume_cmd eq 'cont';
6460 mon_cmd
($vmid, $resume_cmd);
6465 my ($vmid, $skiplock, $key) = @_;
6467 PVE
::QemuConfig-
>lock_config($vmid, sub {
6469 my $conf = PVE
::QemuConfig-
>load_config($vmid);
6471 # there is no qmp command, so we use the human monitor command
6472 my $res = PVE
::QemuServer
::Monitor
::hmp_cmd
($vmid, "sendkey $key");
6473 die $res if $res ne '';
6477 sub check_bridge_access
{
6478 my ($rpcenv, $authuser, $conf) = @_;
6480 return 1 if $authuser eq 'root@pam';
6482 for my $opt (sort keys $conf->%*) {
6483 next if $opt !~ m/^net\d+$/;
6484 my $net = parse_net
($conf->{$opt});
6485 my ($bridge, $tag, $trunks) = $net->@{'bridge', 'tag', 'trunks'};
6486 PVE
::GuestHelpers
::check_vnet_access
($rpcenv, $authuser, $bridge, $tag, $trunks);
6491 sub check_mapping_access
{
6492 my ($rpcenv, $user, $conf) = @_;
6494 for my $opt (keys $conf->%*) {
6495 if ($opt =~ m/^usb\d+$/) {
6496 my $device = PVE
::JSONSchema
::parse_property_string
('pve-qm-usb', $conf->{$opt});
6497 if (my $host = $device->{host
}) {
6498 die "only root can set '$opt' config for real devices\n"
6499 if $host !~ m/^spice$/i && $user ne 'root@pam';
6500 } elsif ($device->{mapping
}) {
6501 $rpcenv->check_full($user, "/mapping/usb/$device->{mapping}", ['Mapping.Use']);
6503 die "either 'host' or 'mapping' must be set.\n";
6505 } elsif ($opt =~ m/^hostpci\d+$/) {
6506 my $device = PVE
::JSONSchema
::parse_property_string
('pve-qm-hostpci', $conf->{$opt});
6507 if ($device->{host
}) {
6508 die "only root can set '$opt' config for non-mapped devices\n" if $user ne 'root@pam';
6509 } elsif ($device->{mapping
}) {
6510 $rpcenv->check_full($user, "/mapping/pci/$device->{mapping}", ['Mapping.Use']);
6512 die "either 'host' or 'mapping' must be set.\n";
6518 sub check_restore_permissions
{
6519 my ($rpcenv, $user, $conf) = @_;
6521 check_bridge_access
($rpcenv, $user, $conf);
6522 check_mapping_access
($rpcenv, $user, $conf);
6524 # vzdump restore implementaion
6526 sub tar_archive_read_firstfile
{
6527 my $archive = shift;
6529 die "ERROR: file '$archive' does not exist\n" if ! -f
$archive;
6531 # try to detect archive type first
6532 my $pid = open (my $fh, '-|', 'tar', 'tf', $archive) ||
6533 die "unable to open file '$archive'\n";
6534 my $firstfile = <$fh>;
6538 die "ERROR: archive contaions no data\n" if !$firstfile;
6544 sub tar_restore_cleanup
{
6545 my ($storecfg, $statfile) = @_;
6547 print STDERR
"starting cleanup\n";
6549 if (my $fd = IO
::File-
>new($statfile, "r")) {
6550 while (defined(my $line = <$fd>)) {
6551 if ($line =~ m/vzdump:([^\s:]*):(\S+)$/) {
6554 if ($volid =~ m
|^/|) {
6555 unlink $volid || die 'unlink failed\n';
6557 PVE
::Storage
::vdisk_free
($storecfg, $volid);
6559 print STDERR
"temporary volume '$volid' sucessfuly removed\n";
6561 print STDERR
"unable to cleanup '$volid' - $@" if $@;
6563 print STDERR
"unable to parse line in statfile - $line";
6570 sub restore_file_archive
{
6571 my ($archive, $vmid, $user, $opts) = @_;
6573 return restore_vma_archive
($archive, $vmid, $user, $opts)
6576 my $info = PVE
::Storage
::archive_info
($archive);
6577 my $format = $opts->{format
} // $info->{format
};
6578 my $comp = $info->{compression
};
6580 # try to detect archive format
6581 if ($format eq 'tar') {
6582 return restore_tar_archive
($archive, $vmid, $user, $opts);
6584 return restore_vma_archive
($archive, $vmid, $user, $opts, $comp);
6588 # hepler to remove disks that will not be used after restore
6589 my $restore_cleanup_oldconf = sub {
6590 my ($storecfg, $vmid, $oldconf, $virtdev_hash) = @_;
6592 my $kept_disks = {};
6594 PVE
::QemuConfig-
>foreach_volume($oldconf, sub {
6595 my ($ds, $drive) = @_;
6597 return if drive_is_cdrom
($drive, 1);
6599 my $volid = $drive->{file
};
6600 return if !$volid || $volid =~ m
|^/|;
6602 my ($path, $owner) = PVE
::Storage
::path
($storecfg, $volid);
6603 return if !$path || !$owner || ($owner != $vmid);
6605 # Note: only delete disk we want to restore
6606 # other volumes will become unused
6607 if ($virtdev_hash->{$ds}) {
6608 eval { PVE
::Storage
::vdisk_free
($storecfg, $volid); };
6613 $kept_disks->{$volid} = 1;
6617 # after the restore we have no snapshots anymore
6618 for my $snapname (keys $oldconf->{snapshots
}->%*) {
6619 my $snap = $oldconf->{snapshots
}->{$snapname};
6620 if ($snap->{vmstate
}) {
6621 eval { PVE
::Storage
::vdisk_free
($storecfg, $snap->{vmstate
}); };
6627 for my $volid (keys $kept_disks->%*) {
6628 eval { PVE
::Storage
::volume_snapshot_delete
($storecfg, $volid, $snapname); };
6634 # Helper to parse vzdump backup device hints
6636 # $rpcenv: Environment, used to ckeck storage permissions
6637 # $user: User ID, to check storage permissions
6638 # $storecfg: Storage configuration
6639 # $fh: the file handle for reading the configuration
6640 # $devinfo: should contain device sizes for all backu-up'ed devices
6641 # $options: backup options (pool, default storage)
6643 # Return: $virtdev_hash, updates $devinfo (add devname, virtdev, format, storeid)
6644 my $parse_backup_hints = sub {
6645 my ($rpcenv, $user, $storecfg, $fh, $devinfo, $options) = @_;
6647 my $check_storage = sub { # assert if an image can be allocate
6648 my ($storeid, $scfg) = @_;
6649 die "Content type 'images' is not available on storage '$storeid'\n"
6650 if !$scfg->{content
}->{images
};
6651 $rpcenv->check($user, "/storage/$storeid", ['Datastore.AllocateSpace'])
6652 if $user ne 'root@pam';
6655 my $virtdev_hash = {};
6656 while (defined(my $line = <$fh>)) {
6657 if ($line =~ m/^\#qmdump\#map:(\S+):(\S+):(\S*):(\S*):$/) {
6658 my ($virtdev, $devname, $storeid, $format) = ($1, $2, $3, $4);
6659 die "archive does not contain data for drive '$virtdev'\n"
6660 if !$devinfo->{$devname};
6662 if (defined($options->{storage
})) {
6663 $storeid = $options->{storage
} || 'local';
6664 } elsif (!$storeid) {
6667 $format = 'raw' if !$format;
6668 $devinfo->{$devname}->{devname
} = $devname;
6669 $devinfo->{$devname}->{virtdev
} = $virtdev;
6670 $devinfo->{$devname}->{format
} = $format;
6671 $devinfo->{$devname}->{storeid
} = $storeid;
6673 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6674 $check_storage->($storeid, $scfg); # permission and content type check
6676 $virtdev_hash->{$virtdev} = $devinfo->{$devname};
6677 } elsif ($line =~ m/^((?:ide|sata|scsi)\d+):\s*(.*)\s*$/) {
6679 my $drive = parse_drive
($virtdev, $2);
6681 if (drive_is_cloudinit
($drive)) {
6682 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($drive->{file
});
6683 $storeid = $options->{storage
} if defined ($options->{storage
});
6684 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6685 my $format = qemu_img_format
($scfg, $volname); # has 'raw' fallback
6687 $check_storage->($storeid, $scfg); # permission and content type check
6689 $virtdev_hash->{$virtdev} = {
6691 storeid
=> $storeid,
6692 size
=> PVE
::QemuServer
::Cloudinit
::CLOUDINIT_DISK_SIZE
,
6699 return $virtdev_hash;
6702 # Helper to allocate and activate all volumes required for a restore
6704 # $storecfg: Storage configuration
6705 # $virtdev_hash: as returned by parse_backup_hints()
6707 # Returns: { $virtdev => $volid }
6708 my $restore_allocate_devices = sub {
6709 my ($storecfg, $virtdev_hash, $vmid) = @_;
6712 foreach my $virtdev (sort keys %$virtdev_hash) {
6713 my $d = $virtdev_hash->{$virtdev};
6714 my $alloc_size = int(($d->{size
} + 1024 - 1)/1024);
6715 my $storeid = $d->{storeid
};
6716 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6718 # test if requested format is supported
6719 my ($defFormat, $validFormats) = PVE
::Storage
::storage_default_format
($storecfg, $storeid);
6720 my $supported = grep { $_ eq $d->{format
} } @$validFormats;
6721 $d->{format
} = $defFormat if !$supported;
6724 if ($d->{is_cloudinit
}) {
6725 $name = "vm-$vmid-cloudinit";
6726 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6727 if ($scfg->{path
}) {
6728 $name .= ".$d->{format}";
6732 my $volid = PVE
::Storage
::vdisk_alloc
(
6733 $storecfg, $storeid, $vmid, $d->{format
}, $name, $alloc_size);
6735 print STDERR
"new volume ID is '$volid'\n";
6736 $d->{volid
} = $volid;
6738 PVE
::Storage
::activate_volumes
($storecfg, [$volid]);
6740 $map->{$virtdev} = $volid;
6746 sub restore_update_config_line
{
6747 my ($cookie, $map, $line, $unique) = @_;
6749 return '' if $line =~ m/^\#qmdump\#/;
6750 return '' if $line =~ m/^\#vzdump\#/;
6751 return '' if $line =~ m/^lock:/;
6752 return '' if $line =~ m/^unused\d+:/;
6753 return '' if $line =~ m/^parent:/;
6757 my $dc = PVE
::Cluster
::cfs_read_file
('datacenter.cfg');
6758 if (($line =~ m/^(vlan(\d+)):\s*(\S+)\s*$/)) {
6759 # try to convert old 1.X settings
6760 my ($id, $ind, $ethcfg) = ($1, $2, $3);
6761 foreach my $devconfig (PVE
::Tools
::split_list
($ethcfg)) {
6762 my ($model, $macaddr) = split(/\=/, $devconfig);
6763 $macaddr = PVE
::Tools
::random_ether_addr
($dc->{mac_prefix
}) if !$macaddr || $unique;
6766 bridge
=> "vmbr$ind",
6767 macaddr
=> $macaddr,
6769 my $netstr = print_net
($net);
6771 $res .= "net$cookie->{netcount}: $netstr\n";
6772 $cookie->{netcount
}++;
6774 } elsif (($line =~ m/^(net\d+):\s*(\S+)\s*$/) && $unique) {
6775 my ($id, $netstr) = ($1, $2);
6776 my $net = parse_net
($netstr);
6777 $net->{macaddr
} = PVE
::Tools
::random_ether_addr
($dc->{mac_prefix
}) if $net->{macaddr
};
6778 $netstr = print_net
($net);
6779 $res .= "$id: $netstr\n";
6780 } elsif ($line =~ m/^((ide|scsi|virtio|sata|efidisk|tpmstate)\d+):\s*(\S+)\s*$/) {
6783 my $di = parse_drive
($virtdev, $value);
6784 if (defined($di->{backup
}) && !$di->{backup
}) {
6786 } elsif ($map->{$virtdev}) {
6787 delete $di->{format
}; # format can change on restore
6788 $di->{file
} = $map->{$virtdev};
6789 $value = print_drive
($di);
6790 $res .= "$virtdev: $value\n";
6794 } elsif (($line =~ m/^vmgenid: (.*)/)) {
6796 if ($vmgenid ne '0') {
6797 # always generate a new vmgenid if there was a valid one setup
6798 $vmgenid = generate_uuid
();
6800 $res .= "vmgenid: $vmgenid\n";
6801 } elsif (($line =~ m/^(smbios1: )(.*)/) && $unique) {
6802 my ($uuid, $uuid_str);
6803 UUID
::generate
($uuid);
6804 UUID
::unparse
($uuid, $uuid_str);
6805 my $smbios1 = parse_smbios1
($2);
6806 $smbios1->{uuid
} = $uuid_str;
6807 $res .= $1.print_smbios1
($smbios1)."\n";
6815 my $restore_deactivate_volumes = sub {
6816 my ($storecfg, $virtdev_hash) = @_;
6819 for my $dev (values $virtdev_hash->%*) {
6820 push $vollist->@*, $dev->{volid
} if $dev->{volid
};
6823 eval { PVE
::Storage
::deactivate_volumes
($storecfg, $vollist); };
6824 print STDERR
$@ if $@;
6827 my $restore_destroy_volumes = sub {
6828 my ($storecfg, $virtdev_hash) = @_;
6830 for my $dev (values $virtdev_hash->%*) {
6831 my $volid = $dev->{volid
} or next;
6833 PVE
::Storage
::vdisk_free
($storecfg, $volid);
6834 print STDERR
"temporary volume '$volid' sucessfuly removed\n";
6836 print STDERR
"unable to cleanup '$volid' - $@" if $@;
6840 sub restore_merge_config
{
6841 my ($filename, $backup_conf_raw, $override_conf) = @_;
6843 my $backup_conf = parse_vm_config
($filename, $backup_conf_raw);
6844 for my $key (keys $override_conf->%*) {
6845 $backup_conf->{$key} = $override_conf->{$key};
6848 return $backup_conf;
6852 my ($cfg, $vmid) = @_;
6854 my $info = PVE
::Storage
::vdisk_list
($cfg, undef, $vmid, undef, 'images');
6856 my $volid_hash = {};
6857 foreach my $storeid (keys %$info) {
6858 foreach my $item (@{$info->{$storeid}}) {
6859 next if !($item->{volid
} && $item->{size
});
6860 $item->{path
} = PVE
::Storage
::path
($cfg, $item->{volid
});
6861 $volid_hash->{$item->{volid
}} = $item;
6868 sub update_disk_config
{
6869 my ($vmid, $conf, $volid_hash) = @_;
6872 my $prefix = "VM $vmid";
6874 # used and unused disks
6875 my $referenced = {};
6877 # Note: it is allowed to define multiple storages with same path (alias), so
6878 # we need to check both 'volid' and real 'path' (two different volid can point
6879 # to the same path).
6881 my $referencedpath = {};
6884 PVE
::QemuConfig-
>foreach_volume($conf, sub {
6885 my ($opt, $drive) = @_;
6887 my $volid = $drive->{file
};
6889 my $volume = $volid_hash->{$volid};
6891 # mark volid as "in-use" for next step
6892 $referenced->{$volid} = 1;
6893 if ($volume && (my $path = $volume->{path
})) {
6894 $referencedpath->{$path} = 1;
6897 return if drive_is_cdrom
($drive);
6900 my ($updated, $msg) = PVE
::QemuServer
::Drive
::update_disksize
($drive, $volume->{size
});
6901 if (defined($updated)) {
6903 $conf->{$opt} = print_drive
($updated);
6904 print "$prefix ($opt): $msg\n";
6908 # remove 'unusedX' entry if volume is used
6909 PVE
::QemuConfig-
>foreach_unused_volume($conf, sub {
6910 my ($opt, $drive) = @_;
6912 my $volid = $drive->{file
};
6916 $path = $volid_hash->{$volid}->{path
} if $volid_hash->{$volid};
6917 if ($referenced->{$volid} || ($path && $referencedpath->{$path})) {
6918 print "$prefix remove entry '$opt', its volume '$volid' is in use\n";
6920 delete $conf->{$opt};
6923 $referenced->{$volid} = 1;
6924 $referencedpath->{$path} = 1 if $path;
6927 foreach my $volid (sort keys %$volid_hash) {
6928 next if $volid =~ m/vm-$vmid-state-/;
6929 next if $referenced->{$volid};
6930 my $path = $volid_hash->{$volid}->{path
};
6931 next if !$path; # just to be sure
6932 next if $referencedpath->{$path};
6934 my $key = PVE
::QemuConfig-
>add_unused_volume($conf, $volid);
6935 print "$prefix add unreferenced volume '$volid' as '$key' to config\n";
6936 $referencedpath->{$path} = 1; # avoid to add more than once (aliases)
6943 my ($vmid, $nolock, $dryrun) = @_;
6945 my $cfg = PVE
::Storage
::config
();
6947 print "rescan volumes...\n";
6948 my $volid_hash = scan_volids
($cfg, $vmid);
6950 my $updatefn = sub {
6953 my $conf = PVE
::QemuConfig-
>load_config($vmid);
6955 PVE
::QemuConfig-
>check_lock($conf);
6958 foreach my $volid (keys %$volid_hash) {
6959 my $info = $volid_hash->{$volid};
6960 $vm_volids->{$volid} = $info if $info->{vmid
} && $info->{vmid
} == $vmid;
6963 my $changes = update_disk_config
($vmid, $conf, $vm_volids);
6965 PVE
::QemuConfig-
>write_config($vmid, $conf) if $changes && !$dryrun;
6968 if (defined($vmid)) {
6972 PVE
::QemuConfig-
>lock_config($vmid, $updatefn, $vmid);
6975 my $vmlist = config_list
();
6976 foreach my $vmid (keys %$vmlist) {
6980 PVE
::QemuConfig-
>lock_config($vmid, $updatefn, $vmid);
6986 sub restore_proxmox_backup_archive
{
6987 my ($archive, $vmid, $user, $options) = @_;
6989 my $storecfg = PVE
::Storage
::config
();
6991 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($archive);
6992 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
6994 my $fingerprint = $scfg->{fingerprint
};
6995 my $keyfile = PVE
::Storage
::PBSPlugin
::pbs_encryption_key_file_name
($storecfg, $storeid);
6997 my $repo = PVE
::PBSClient
::get_repository
($scfg);
6998 my $namespace = $scfg->{namespace
};
7000 # This is only used for `pbs-restore` and the QEMU PBS driver (live-restore)
7001 my $password = PVE
::Storage
::PBSPlugin
::pbs_get_password
($scfg, $storeid);
7002 local $ENV{PBS_PASSWORD
} = $password;
7003 local $ENV{PBS_FINGERPRINT
} = $fingerprint if defined($fingerprint);
7005 my ($vtype, $pbs_backup_name, undef, undef, undef, undef, $format) =
7006 PVE
::Storage
::parse_volname
($storecfg, $archive);
7008 die "got unexpected vtype '$vtype'\n" if $vtype ne 'backup';
7010 die "got unexpected backup format '$format'\n" if $format ne 'pbs-vm';
7012 my $tmpdir = "/var/tmp/vzdumptmp$$";
7016 my $conffile = PVE
::QemuConfig-
>config_file($vmid);
7017 # disable interrupts (always do cleanups)
7021 local $SIG{HUP
} = sub { print STDERR
"got interrupt - ignored\n"; };
7023 # Note: $oldconf is undef if VM does not exists
7024 my $cfs_path = PVE
::QemuConfig-
>cfs_config_path($vmid);
7025 my $oldconf = PVE
::Cluster
::cfs_read_file
($cfs_path);
7026 my $new_conf_raw = '';
7028 my $rpcenv = PVE
::RPCEnvironment
::get
();
7029 my $devinfo = {}; # info about drives included in backup
7030 my $virtdev_hash = {}; # info about allocated drives
7038 local $SIG{PIPE
} = sub { die "interrupted by signal\n"; };
7040 my $cfgfn = "$tmpdir/qemu-server.conf";
7041 my $firewall_config_fn = "$tmpdir/fw.conf";
7042 my $index_fn = "$tmpdir/index.json";
7044 my $cmd = "restore";
7046 my $param = [$pbs_backup_name, "index.json", $index_fn];
7047 PVE
::Storage
::PBSPlugin
::run_raw_client_cmd
($scfg, $storeid, $cmd, $param);
7048 my $index = PVE
::Tools
::file_get_contents
($index_fn);
7049 $index = decode_json
($index);
7051 foreach my $info (@{$index->{files
}}) {
7052 if ($info->{filename
} =~ m/^(drive-\S+).img.fidx$/) {
7054 if ($info->{size
} =~ m/^(\d+)$/) { # untaint size
7055 $devinfo->{$devname}->{size
} = $1;
7057 die "unable to parse file size in 'index.json' - got '$info->{size}'\n";
7062 my $is_qemu_server_backup = scalar(
7063 grep { $_->{filename
} eq 'qemu-server.conf.blob' } @{$index->{files
}}
7065 if (!$is_qemu_server_backup) {
7066 die "backup does not look like a qemu-server backup (missing 'qemu-server.conf' file)\n";
7068 my $has_firewall_config = scalar(grep { $_->{filename
} eq 'fw.conf.blob' } @{$index->{files
}});
7070 $param = [$pbs_backup_name, "qemu-server.conf", $cfgfn];
7071 PVE
::Storage
::PBSPlugin
::run_raw_client_cmd
($scfg, $storeid, $cmd, $param);
7073 if ($has_firewall_config) {
7074 $param = [$pbs_backup_name, "fw.conf", $firewall_config_fn];
7075 PVE
::Storage
::PBSPlugin
::run_raw_client_cmd
($scfg, $storeid, $cmd, $param);
7077 my $pve_firewall_dir = '/etc/pve/firewall';
7078 mkdir $pve_firewall_dir; # make sure the dir exists
7079 PVE
::Tools
::file_copy
($firewall_config_fn, "${pve_firewall_dir}/$vmid.fw");
7082 my $fh = IO
::File-
>new($cfgfn, "r") ||
7083 die "unable to read qemu-server.conf - $!\n";
7085 $virtdev_hash = $parse_backup_hints->($rpcenv, $user, $storecfg, $fh, $devinfo, $options);
7087 # fixme: rate limit?
7089 # create empty/temp config
7090 PVE
::Tools
::file_set_contents
($conffile, "memory: 128\nlock: create");
7092 $restore_cleanup_oldconf->($storecfg, $vmid, $oldconf, $virtdev_hash) if $oldconf;
7095 my $map = $restore_allocate_devices->($storecfg, $virtdev_hash, $vmid);
7097 foreach my $virtdev (sort keys %$virtdev_hash) {
7098 my $d = $virtdev_hash->{$virtdev};
7099 next if $d->{is_cloudinit
}; # no need to restore cloudinit
7101 # this fails if storage is unavailable
7102 my $volid = $d->{volid
};
7103 my $path = PVE
::Storage
::path
($storecfg, $volid);
7105 # for live-restore we only want to preload the efidisk and TPM state
7106 next if $options->{live
} && $virtdev ne 'efidisk0' && $virtdev ne 'tpmstate0';
7109 if (defined(my $ns = $scfg->{namespace
})) {
7110 @ns_arg = ('--ns', $ns);
7113 my $pbs_restore_cmd = [
7114 '/usr/bin/pbs-restore',
7115 '--repository', $repo,
7118 "$d->{devname}.img.fidx",
7123 push @$pbs_restore_cmd, '--format', $d->{format
} if $d->{format
};
7124 push @$pbs_restore_cmd, '--keyfile', $keyfile if -e
$keyfile;
7126 if (PVE
::Storage
::volume_has_feature
($storecfg, 'sparseinit', $volid)) {
7127 push @$pbs_restore_cmd, '--skip-zero';
7130 my $dbg_cmdstring = PVE
::Tools
::cmd2string
($pbs_restore_cmd);
7131 print "restore proxmox backup image: $dbg_cmdstring\n";
7132 run_command
($pbs_restore_cmd);
7135 $fh->seek(0, 0) || die "seek failed - $!\n";
7137 my $cookie = { netcount
=> 0 };
7138 while (defined(my $line = <$fh>)) {
7139 $new_conf_raw .= restore_update_config_line
(
7151 if ($err || !$options->{live
}) {
7152 $restore_deactivate_volumes->($storecfg, $virtdev_hash);
7158 $restore_destroy_volumes->($storecfg, $virtdev_hash);
7162 if ($options->{live
}) {
7163 # keep lock during live-restore
7164 $new_conf_raw .= "\nlock: create";
7167 my $new_conf = restore_merge_config
($conffile, $new_conf_raw, $options->{override_conf
});
7168 check_restore_permissions
($rpcenv, $user, $new_conf);
7169 PVE
::QemuConfig-
>write_config($vmid, $new_conf);
7171 eval { rescan
($vmid, 1); };
7174 PVE
::AccessControl
::add_vm_to_pool
($vmid, $options->{pool
}) if $options->{pool
};
7176 if ($options->{live
}) {
7182 local $SIG{PIPE
} = sub { die "got signal ($!) - abort\n"; };
7184 my $conf = PVE
::QemuConfig-
>load_config($vmid);
7185 die "cannot do live-restore for template\n" if PVE
::QemuConfig-
>is_template($conf);
7187 # these special drives are already restored before start
7188 delete $devinfo->{'drive-efidisk0'};
7189 delete $devinfo->{'drive-tpmstate0-backup'};
7193 keyfile
=> $keyfile,
7194 snapshot
=> $pbs_backup_name,
7195 namespace
=> $namespace,
7197 pbs_live_restore
($vmid, $conf, $storecfg, $devinfo, $pbs_opts);
7199 PVE
::QemuConfig-
>remove_lock($vmid, "create");
7203 sub pbs_live_restore
{
7204 my ($vmid, $conf, $storecfg, $restored_disks, $opts) = @_;
7206 print "starting VM for live-restore\n";
7207 print "repository: '$opts->{repo}', snapshot: '$opts->{snapshot}'\n";
7209 my $pbs_backing = {};
7210 for my $ds (keys %$restored_disks) {
7211 $ds =~ m/^drive-(.*)$/;
7213 $pbs_backing->{$confname} = {
7214 repository
=> $opts->{repo
},
7215 snapshot
=> $opts->{snapshot
},
7216 archive
=> "$ds.img.fidx",
7218 $pbs_backing->{$confname}->{keyfile
} = $opts->{keyfile
} if -e
$opts->{keyfile
};
7219 $pbs_backing->{$confname}->{namespace
} = $opts->{namespace
} if defined($opts->{namespace
});
7221 my $drive = parse_drive
($confname, $conf->{$confname});
7222 print "restoring '$ds' to '$drive->{file}'\n";
7225 my $drives_streamed = 0;
7227 # make sure HA doesn't interrupt our restore by stopping the VM
7228 if (PVE
::HA
::Config
::vm_is_ha_managed
($vmid)) {
7229 run_command
(['ha-manager', 'set', "vm:$vmid", '--state', 'started']);
7232 # start VM with backing chain pointing to PBS backup, environment vars for PBS driver
7233 # in QEMU (PBS_PASSWORD and PBS_FINGERPRINT) are already set by our caller
7234 vm_start_nolock
($storecfg, $vmid, $conf, {paused
=> 1, 'pbs-backing' => $pbs_backing}, {});
7236 my $qmeventd_fd = register_qmeventd_handle
($vmid);
7238 # begin streaming, i.e. data copy from PBS to target disk for every vol,
7239 # this will effectively collapse the backing image chain consisting of
7240 # [target <- alloc-track -> PBS snapshot] to just [target] (alloc-track
7241 # removes itself once all backing images vanish with 'auto-remove=on')
7243 for my $ds (sort keys %$restored_disks) {
7244 my $job_id = "restore-$ds";
7245 mon_cmd
($vmid, 'block-stream',
7246 'job-id' => $job_id,
7249 $jobs->{$job_id} = {};
7252 mon_cmd
($vmid, 'cont');
7253 qemu_drive_mirror_monitor
($vmid, undef, $jobs, 'auto', 0, 'stream');
7255 print "restore-drive jobs finished successfully, removing all tracking block devices"
7256 ." to disconnect from Proxmox Backup Server\n";
7258 for my $ds (sort keys %$restored_disks) {
7259 mon_cmd
($vmid, 'blockdev-del', 'node-name' => "$ds-pbs");
7262 close($qmeventd_fd);
7268 warn "An error occurred during live-restore: $err\n";
7269 _do_vm_stop
($storecfg, $vmid, 1, 1, 10, 0, 1);
7270 die "live-restore failed\n";
7274 sub restore_vma_archive
{
7275 my ($archive, $vmid, $user, $opts, $comp) = @_;
7277 my $readfrom = $archive;
7279 my $cfg = PVE
::Storage
::config
();
7281 my $bwlimit = $opts->{bwlimit
};
7283 my $dbg_cmdstring = '';
7284 my $add_pipe = sub {
7286 push @$commands, $cmd;
7287 $dbg_cmdstring .= ' | ' if length($dbg_cmdstring);
7288 $dbg_cmdstring .= PVE
::Tools
::cmd2string
($cmd);
7293 if ($archive eq '-') {
7296 # If we use a backup from a PVE defined storage we also consider that
7297 # storage's rate limit:
7298 my (undef, $volid) = PVE
::Storage
::path_to_volume_id
($cfg, $archive);
7299 if (defined($volid)) {
7300 my ($sid, undef) = PVE
::Storage
::parse_volume_id
($volid);
7301 my $readlimit = PVE
::Storage
::get_bandwidth_limit
('restore', [$sid], $bwlimit);
7303 print STDERR
"applying read rate limit: $readlimit\n";
7304 my $cstream = ['cstream', '-t', $readlimit*1024, '--', $readfrom];
7305 $add_pipe->($cstream);
7311 my $info = PVE
::Storage
::decompressor_info
('vma', $comp);
7312 my $cmd = $info->{decompressor
};
7313 push @$cmd, $readfrom;
7317 my $tmpdir = "/var/tmp/vzdumptmp$$";
7320 # disable interrupts (always do cleanups)
7324 local $SIG{HUP
} = sub { warn "got interrupt - ignored\n"; };
7326 my $mapfifo = "/var/tmp/vzdumptmp$$.fifo";
7327 POSIX
::mkfifo
($mapfifo, 0600);
7329 my $openfifo = sub { open($fifofh, '>', $mapfifo) or die $! };
7331 $add_pipe->(['vma', 'extract', '-v', '-r', $mapfifo, $readfrom, $tmpdir]);
7333 my $devinfo = {}; # info about drives included in backup
7334 my $virtdev_hash = {}; # info about allocated drives
7336 my $rpcenv = PVE
::RPCEnvironment
::get
();
7338 my $conffile = PVE
::QemuConfig-
>config_file($vmid);
7340 # Note: $oldconf is undef if VM does not exist
7341 my $cfs_path = PVE
::QemuConfig-
>cfs_config_path($vmid);
7342 my $oldconf = PVE
::Cluster
::cfs_read_file
($cfs_path);
7343 my $new_conf_raw = '';
7347 my $print_devmap = sub {
7348 my $cfgfn = "$tmpdir/qemu-server.conf";
7350 # we can read the config - that is already extracted
7351 my $fh = IO
::File-
>new($cfgfn, "r") ||
7352 die "unable to read qemu-server.conf - $!\n";
7354 my $fwcfgfn = "$tmpdir/qemu-server.fw";
7356 my $pve_firewall_dir = '/etc/pve/firewall';
7357 mkdir $pve_firewall_dir; # make sure the dir exists
7358 PVE
::Tools
::file_copy
($fwcfgfn, "${pve_firewall_dir}/$vmid.fw");
7361 $virtdev_hash = $parse_backup_hints->($rpcenv, $user, $cfg, $fh, $devinfo, $opts);
7363 foreach my $info (values %{$virtdev_hash}) {
7364 my $storeid = $info->{storeid
};
7365 next if defined($storage_limits{$storeid});
7367 my $limit = PVE
::Storage
::get_bandwidth_limit
('restore', [$storeid], $bwlimit) // 0;
7368 print STDERR
"rate limit for storage $storeid: $limit KiB/s\n" if $limit;
7369 $storage_limits{$storeid} = $limit * 1024;
7372 foreach my $devname (keys %$devinfo) {
7373 die "found no device mapping information for device '$devname'\n"
7374 if !$devinfo->{$devname}->{virtdev
};
7377 # create empty/temp config
7379 PVE
::Tools
::file_set_contents
($conffile, "memory: 128\n");
7380 $restore_cleanup_oldconf->($cfg, $vmid, $oldconf, $virtdev_hash);
7384 my $map = $restore_allocate_devices->($cfg, $virtdev_hash, $vmid);
7386 # print restore information to $fifofh
7387 foreach my $virtdev (sort keys %$virtdev_hash) {
7388 my $d = $virtdev_hash->{$virtdev};
7389 next if $d->{is_cloudinit
}; # no need to restore cloudinit
7391 my $storeid = $d->{storeid
};
7392 my $volid = $d->{volid
};
7395 if (my $limit = $storage_limits{$storeid}) {
7396 $map_opts .= "throttling.bps=$limit:throttling.group=$storeid:";
7399 my $write_zeros = 1;
7400 if (PVE
::Storage
::volume_has_feature
($cfg, 'sparseinit', $volid)) {
7404 my $path = PVE
::Storage
::path
($cfg, $volid);
7406 print $fifofh "${map_opts}format=$d->{format}:${write_zeros}:$d->{devname}=$path\n";
7408 print "map '$d->{devname}' to '$path' (write zeros = ${write_zeros})\n";
7411 $fh->seek(0, 0) || die "seek failed - $!\n";
7413 my $cookie = { netcount
=> 0 };
7414 while (defined(my $line = <$fh>)) {
7415 $new_conf_raw .= restore_update_config_line
(
7434 local $SIG{PIPE
} = sub { die "interrupted by signal\n"; };
7435 local $SIG{ALRM
} = sub { die "got timeout\n"; };
7437 $oldtimeout = alarm(5); # for reading the VMA header - might hang with a corrupted one
7444 if ($line =~ m/^DEV:\sdev_id=(\d+)\ssize:\s(\d+)\sdevname:\s(\S+)$/) {
7445 my ($dev_id, $size, $devname) = ($1, $2, $3);
7446 $devinfo->{$devname} = { size
=> $size, dev_id
=> $dev_id };
7447 } elsif ($line =~ m/^CTIME: /) {
7448 # we correctly received the vma config, so we can disable
7449 # the timeout now for disk allocation
7450 alarm($oldtimeout || 0);
7451 $oldtimeout = undef;
7453 print $fifofh "done\n";
7459 print "restore vma archive: $dbg_cmdstring\n";
7460 run_command
($commands, input
=> $input, outfunc
=> $parser, afterfork
=> $openfifo);
7464 alarm($oldtimeout) if $oldtimeout;
7466 $restore_deactivate_volumes->($cfg, $virtdev_hash);
7468 close($fifofh) if $fifofh;
7473 $restore_destroy_volumes->($cfg, $virtdev_hash);
7477 my $new_conf = restore_merge_config
($conffile, $new_conf_raw, $opts->{override_conf
});
7478 check_restore_permissions
($rpcenv, $user, $new_conf);
7479 PVE
::QemuConfig-
>write_config($vmid, $new_conf);
7481 eval { rescan
($vmid, 1); };
7484 PVE
::AccessControl
::add_vm_to_pool
($vmid, $opts->{pool
}) if $opts->{pool
};
7487 sub restore_tar_archive
{
7488 my ($archive, $vmid, $user, $opts) = @_;
7490 if (scalar(keys $opts->{override_conf
}->%*) > 0) {
7491 my $keystring = join(' ', keys $opts->{override_conf
}->%*);
7492 die "cannot pass along options ($keystring) when restoring from tar archive\n";
7495 if ($archive ne '-') {
7496 my $firstfile = tar_archive_read_firstfile
($archive);
7497 die "ERROR: file '$archive' does not look like a QemuServer vzdump backup\n"
7498 if $firstfile ne 'qemu-server.conf';
7501 my $storecfg = PVE
::Storage
::config
();
7503 # avoid zombie disks when restoring over an existing VM -> cleanup first
7504 # pass keep_empty_config=1 to keep the config (thus VMID) reserved for us
7505 # skiplock=1 because qmrestore has set the 'create' lock itself already
7506 my $vmcfgfn = PVE
::QemuConfig-
>config_file($vmid);
7507 destroy_vm
($storecfg, $vmid, 1, { lock => 'restore' }) if -f
$vmcfgfn;
7509 my $tocmd = "/usr/lib/qemu-server/qmextract";
7511 $tocmd .= " --storage " . PVE
::Tools
::shellquote
($opts->{storage
}) if $opts->{storage
};
7512 $tocmd .= " --pool " . PVE
::Tools
::shellquote
($opts->{pool
}) if $opts->{pool
};
7513 $tocmd .= ' --prealloc' if $opts->{prealloc
};
7514 $tocmd .= ' --info' if $opts->{info
};
7516 # tar option "xf" does not autodetect compression when read from STDIN,
7517 # so we pipe to zcat
7518 my $cmd = "zcat -f|tar xf " . PVE
::Tools
::shellquote
($archive) . " " .
7519 PVE
::Tools
::shellquote
("--to-command=$tocmd");
7521 my $tmpdir = "/var/tmp/vzdumptmp$$";
7524 local $ENV{VZDUMP_TMPDIR
} = $tmpdir;
7525 local $ENV{VZDUMP_VMID
} = $vmid;
7526 local $ENV{VZDUMP_USER
} = $user;
7528 my $conffile = PVE
::QemuConfig-
>config_file($vmid);
7529 my $new_conf_raw = '';
7531 # disable interrupts (always do cleanups)
7535 local $SIG{HUP
} = sub { print STDERR
"got interrupt - ignored\n"; };
7543 local $SIG{PIPE
} = sub { die "interrupted by signal\n"; };
7545 if ($archive eq '-') {
7546 print "extracting archive from STDIN\n";
7547 run_command
($cmd, input
=> "<&STDIN");
7549 print "extracting archive '$archive'\n";
7553 return if $opts->{info
};
7557 my $statfile = "$tmpdir/qmrestore.stat";
7558 if (my $fd = IO
::File-
>new($statfile, "r")) {
7559 while (defined (my $line = <$fd>)) {
7560 if ($line =~ m/vzdump:([^\s:]*):(\S+)$/) {
7561 $map->{$1} = $2 if $1;
7563 print STDERR
"unable to parse line in statfile - $line\n";
7569 my $confsrc = "$tmpdir/qemu-server.conf";
7571 my $srcfd = IO
::File-
>new($confsrc, "r") || die "unable to open file '$confsrc'\n";
7573 my $cookie = { netcount
=> 0 };
7574 while (defined (my $line = <$srcfd>)) {
7575 $new_conf_raw .= restore_update_config_line
(
7586 tar_restore_cleanup
($storecfg, "$tmpdir/qmrestore.stat") if !$opts->{info
};
7592 PVE
::Tools
::file_set_contents
($conffile, $new_conf_raw);
7594 PVE
::Cluster
::cfs_update
(); # make sure we read new file
7596 eval { rescan
($vmid, 1); };
7600 sub foreach_storage_used_by_vm
{
7601 my ($conf, $func) = @_;
7605 PVE
::QemuConfig-
>foreach_volume($conf, sub {
7606 my ($ds, $drive) = @_;
7607 return if drive_is_cdrom
($drive);
7609 my $volid = $drive->{file
};
7611 my ($sid, $volname) = PVE
::Storage
::parse_volume_id
($volid, 1);
7612 $sidhash->{$sid} = $sid if $sid;
7615 foreach my $sid (sort keys %$sidhash) {
7620 my $qemu_snap_storage = {
7623 sub do_snapshots_with_qemu
{
7624 my ($storecfg, $volid, $deviceid) = @_;
7626 return if $deviceid =~ m/tpmstate0/;
7628 my $storage_name = PVE
::Storage
::parse_volume_id
($volid);
7629 my $scfg = $storecfg->{ids
}->{$storage_name};
7630 die "could not find storage '$storage_name'\n" if !defined($scfg);
7632 if ($qemu_snap_storage->{$scfg->{type
}} && !$scfg->{krbd
}){
7636 if ($volid =~ m/\.(qcow2|qed)$/){
7643 sub qga_check_running
{
7644 my ($vmid, $nowarn) = @_;
7646 eval { mon_cmd
($vmid, "guest-ping", timeout
=> 3); };
7648 warn "QEMU Guest Agent is not running - $@" if !$nowarn;
7654 sub template_create
{
7655 my ($vmid, $conf, $disk) = @_;
7657 my $storecfg = PVE
::Storage
::config
();
7659 PVE
::QemuConfig-
>foreach_volume($conf, sub {
7660 my ($ds, $drive) = @_;
7662 return if drive_is_cdrom
($drive);
7663 return if $disk && $ds ne $disk;
7665 my $volid = $drive->{file
};
7666 return if !PVE
::Storage
::volume_has_feature
($storecfg, 'template', $volid);
7668 my $voliddst = PVE
::Storage
::vdisk_create_base
($storecfg, $volid);
7669 $drive->{file
} = $voliddst;
7670 $conf->{$ds} = print_drive
($drive);
7671 PVE
::QemuConfig-
>write_config($vmid, $conf);
7675 sub convert_iscsi_path
{
7678 if ($path =~ m
|^iscsi
://([^/]+)/([^/]+)/(.+)$|) {
7683 my $initiator_name = get_initiator_name
();
7685 return "file.driver=iscsi,file.transport=tcp,file.initiator-name=$initiator_name,".
7686 "file.portal=$portal,file.target=$target,file.lun=$lun,driver=raw";
7689 die "cannot convert iscsi path '$path', unkown format\n";
7692 sub qemu_img_convert
{
7693 my ($src_volid, $dst_volid, $size, $snapname, $is_zero_initialized, $bwlimit) = @_;
7695 my $storecfg = PVE
::Storage
::config
();
7696 my ($src_storeid, $src_volname) = PVE
::Storage
::parse_volume_id
($src_volid, 1);
7697 my ($dst_storeid, $dst_volname) = PVE
::Storage
::parse_volume_id
($dst_volid, 1);
7699 die "destination '$dst_volid' is not a valid volid form qemu-img convert\n" if !$dst_storeid;
7703 my $src_is_iscsi = 0;
7707 PVE
::Storage
::activate_volumes
($storecfg, [$src_volid], $snapname);
7708 my $src_scfg = PVE
::Storage
::storage_config
($storecfg, $src_storeid);
7709 $src_format = qemu_img_format
($src_scfg, $src_volname);
7710 $src_path = PVE
::Storage
::path
($storecfg, $src_volid, $snapname);
7711 $src_is_iscsi = ($src_path =~ m
|^iscsi
://|);
7712 $cachemode = 'none' if $src_scfg->{type
} eq 'zfspool';
7713 } elsif (-f
$src_volid || -b
$src_volid) {
7714 $src_path = $src_volid;
7715 if ($src_path =~ m/\.($PVE::QemuServer::Drive::QEMU_FORMAT_RE)$/) {
7720 die "source '$src_volid' is not a valid volid nor path for qemu-img convert\n" if !$src_path;
7722 my $dst_scfg = PVE
::Storage
::storage_config
($storecfg, $dst_storeid);
7723 my $dst_format = qemu_img_format
($dst_scfg, $dst_volname);
7724 my $dst_path = PVE
::Storage
::path
($storecfg, $dst_volid);
7725 my $dst_is_iscsi = ($dst_path =~ m
|^iscsi
://|);
7728 push @$cmd, '/usr/bin/qemu-img', 'convert', '-p', '-n';
7729 push @$cmd, '-l', "snapshot.name=$snapname"
7730 if $snapname && $src_format && $src_format eq "qcow2";
7731 push @$cmd, '-t', 'none' if $dst_scfg->{type
} eq 'zfspool';
7732 push @$cmd, '-T', $cachemode if defined($cachemode);
7733 push @$cmd, '-r', "${bwlimit}K" if defined($bwlimit);
7735 if ($src_is_iscsi) {
7736 push @$cmd, '--image-opts';
7737 $src_path = convert_iscsi_path
($src_path);
7738 } elsif ($src_format) {
7739 push @$cmd, '-f', $src_format;
7742 if ($dst_is_iscsi) {
7743 push @$cmd, '--target-image-opts';
7744 $dst_path = convert_iscsi_path
($dst_path);
7746 push @$cmd, '-O', $dst_format;
7749 push @$cmd, $src_path;
7751 if (!$dst_is_iscsi && $is_zero_initialized) {
7752 push @$cmd, "zeroinit:$dst_path";
7754 push @$cmd, $dst_path;
7759 if($line =~ m/\((\S+)\/100\
%\)/){
7761 my $transferred = int($size * $percent / 100);
7762 my $total_h = render_bytes
($size, 1);
7763 my $transferred_h = render_bytes
($transferred, 1);
7765 print "transferred $transferred_h of $total_h ($percent%)\n";
7770 eval { run_command
($cmd, timeout
=> undef, outfunc
=> $parser); };
7772 die "copy failed: $err" if $err;
7775 sub qemu_img_format
{
7776 my ($scfg, $volname) = @_;
7778 if ($scfg->{path
} && $volname =~ m/\.($PVE::QemuServer::Drive::QEMU_FORMAT_RE)$/) {
7785 sub qemu_drive_mirror
{
7786 my ($vmid, $drive, $dst_volid, $vmiddst, $is_zero_initialized, $jobs, $completion, $qga, $bwlimit, $src_bitmap) = @_;
7788 $jobs = {} if !$jobs;
7792 $jobs->{"drive-$drive"} = {};
7794 if ($dst_volid =~ /^nbd:/) {
7795 $qemu_target = $dst_volid;
7798 my $storecfg = PVE
::Storage
::config
();
7799 my ($dst_storeid, $dst_volname) = PVE
::Storage
::parse_volume_id
($dst_volid);
7801 my $dst_scfg = PVE
::Storage
::storage_config
($storecfg, $dst_storeid);
7803 $format = qemu_img_format
($dst_scfg, $dst_volname);
7805 my $dst_path = PVE
::Storage
::path
($storecfg, $dst_volid);
7807 $qemu_target = $is_zero_initialized ?
"zeroinit:$dst_path" : $dst_path;
7810 my $opts = { timeout
=> 10, device
=> "drive-$drive", mode
=> "existing", sync
=> "full", target
=> $qemu_target };
7811 $opts->{format
} = $format if $format;
7813 if (defined($src_bitmap)) {
7814 $opts->{sync
} = 'incremental';
7815 $opts->{bitmap
} = $src_bitmap;
7816 print "drive mirror re-using dirty bitmap '$src_bitmap'\n";
7819 if (defined($bwlimit)) {
7820 $opts->{speed
} = $bwlimit * 1024;
7821 print "drive mirror is starting for drive-$drive with bandwidth limit: ${bwlimit} KB/s\n";
7823 print "drive mirror is starting for drive-$drive\n";
7826 # if a job already runs for this device we get an error, catch it for cleanup
7827 eval { mon_cmd
($vmid, "drive-mirror", %$opts); };
7829 eval { PVE
::QemuServer
::qemu_blockjobs_cancel
($vmid, $jobs) };
7831 die "mirroring error: $err\n";
7834 qemu_drive_mirror_monitor
($vmid, $vmiddst, $jobs, $completion, $qga);
7837 # $completion can be either
7838 # 'complete': wait until all jobs are ready, block-job-complete them (default)
7839 # 'cancel': wait until all jobs are ready, block-job-cancel them
7840 # 'skip': wait until all jobs are ready, return with block jobs in ready state
7841 # 'auto': wait until all jobs disappear, only use for jobs which complete automatically
7842 sub qemu_drive_mirror_monitor
{
7843 my ($vmid, $vmiddst, $jobs, $completion, $qga, $op) = @_;
7845 $completion //= 'complete';
7849 my $err_complete = 0;
7851 my $starttime = time ();
7853 die "block job ('$op') timed out\n" if $err_complete > 300;
7855 my $stats = mon_cmd
($vmid, "query-block-jobs");
7858 my $running_jobs = {};
7859 for my $stat (@$stats) {
7860 next if $stat->{type
} ne $op;
7861 $running_jobs->{$stat->{device
}} = $stat;
7864 my $readycounter = 0;
7866 for my $job_id (sort keys %$jobs) {
7867 my $job = $running_jobs->{$job_id};
7869 my $vanished = !defined($job);
7870 my $complete = defined($jobs->{$job_id}->{complete
}) && $vanished;
7871 if($complete || ($vanished && $completion eq 'auto')) {
7872 print "$job_id: $op-job finished\n";
7873 delete $jobs->{$job_id};
7877 die "$job_id: '$op' has been cancelled\n" if !defined($job);
7879 my $busy = $job->{busy
};
7880 my $ready = $job->{ready
};
7881 if (my $total = $job->{len
}) {
7882 my $transferred = $job->{offset
} || 0;
7883 my $remaining = $total - $transferred;
7884 my $percent = sprintf "%.2f", ($transferred * 100 / $total);
7886 my $duration = $ctime - $starttime;
7887 my $total_h = render_bytes
($total, 1);
7888 my $transferred_h = render_bytes
($transferred, 1);
7890 my $status = sprintf(
7891 "transferred $transferred_h of $total_h ($percent%%) in %s",
7892 render_duration
($duration),
7897 $status .= ", still busy"; # shouldn't even happen? but mirror is weird
7899 $status .= ", ready";
7902 print "$job_id: $status\n" if !$jobs->{$job_id}->{ready
};
7903 $jobs->{$job_id}->{ready
} = $ready;
7906 $readycounter++ if $job->{ready
};
7909 last if scalar(keys %$jobs) == 0;
7911 if ($readycounter == scalar(keys %$jobs)) {
7912 print "all '$op' jobs are ready\n";
7914 # do the complete later (or has already been done)
7915 last if $completion eq 'skip' || $completion eq 'auto';
7917 if ($vmiddst && $vmiddst != $vmid) {
7918 my $agent_running = $qga && qga_check_running
($vmid);
7919 if ($agent_running) {
7920 print "freeze filesystem\n";
7921 eval { mon_cmd
($vmid, "guest-fsfreeze-freeze"); };
7924 print "suspend vm\n";
7925 eval { PVE
::QemuServer
::vm_suspend
($vmid, 1); };
7929 # if we clone a disk for a new target vm, we don't switch the disk
7930 PVE
::QemuServer
::qemu_blockjobs_cancel
($vmid, $jobs);
7932 if ($agent_running) {
7933 print "unfreeze filesystem\n";
7934 eval { mon_cmd
($vmid, "guest-fsfreeze-thaw"); };
7937 print "resume vm\n";
7938 eval { PVE
::QemuServer
::vm_resume
($vmid, 1, 1); };
7945 for my $job_id (sort keys %$jobs) {
7946 # try to switch the disk if source and destination are on the same guest
7947 print "$job_id: Completing block job_id...\n";
7950 if ($completion eq 'complete') {
7951 $op = 'block-job-complete';
7952 } elsif ($completion eq 'cancel') {
7953 $op = 'block-job-cancel';
7955 die "invalid completion value: $completion\n";
7957 eval { mon_cmd
($vmid, $op, device
=> $job_id) };
7958 if ($@ =~ m/cannot be completed/) {
7959 print "$job_id: block job cannot be completed, trying again.\n";
7962 print "$job_id: Completed successfully.\n";
7963 $jobs->{$job_id}->{complete
} = 1;
7974 eval { PVE
::QemuServer
::qemu_blockjobs_cancel
($vmid, $jobs) };
7975 die "block job ($op) error: $err";
7979 sub qemu_blockjobs_cancel
{
7980 my ($vmid, $jobs) = @_;
7982 foreach my $job (keys %$jobs) {
7983 print "$job: Cancelling block job\n";
7984 eval { mon_cmd
($vmid, "block-job-cancel", device
=> $job); };
7985 $jobs->{$job}->{cancel
} = 1;
7989 my $stats = mon_cmd
($vmid, "query-block-jobs");
7991 my $running_jobs = {};
7992 foreach my $stat (@$stats) {
7993 $running_jobs->{$stat->{device
}} = $stat;
7996 foreach my $job (keys %$jobs) {
7998 if (defined($jobs->{$job}->{cancel
}) && !defined($running_jobs->{$job})) {
7999 print "$job: Done.\n";
8000 delete $jobs->{$job};
8004 last if scalar(keys %$jobs) == 0;
8010 # Check for bug #4525: drive-mirror will open the target drive with the same aio setting as the
8011 # source, but some storages have problems with io_uring, sometimes even leading to crashes.
8012 my sub clone_disk_check_io_uring
{
8013 my ($src_drive, $storecfg, $src_storeid, $dst_storeid, $use_drive_mirror) = @_;
8015 return if !$use_drive_mirror;
8017 # Don't complain when not changing storage.
8018 # Assume if it works for the source, it'll work for the target too.
8019 return if $src_storeid eq $dst_storeid;
8021 my $src_scfg = PVE
::Storage
::storage_config
($storecfg, $src_storeid);
8022 my $dst_scfg = PVE
::Storage
::storage_config
($storecfg, $dst_storeid);
8024 my $cache_direct = drive_uses_cache_direct
($src_drive);
8026 my $src_uses_io_uring;
8027 if ($src_drive->{aio
}) {
8028 $src_uses_io_uring = $src_drive->{aio
} eq 'io_uring';
8030 $src_uses_io_uring = storage_allows_io_uring_default
($src_scfg, $cache_direct);
8033 die "target storage is known to cause issues with aio=io_uring (used by current drive)\n"
8034 if $src_uses_io_uring && !storage_allows_io_uring_default
($dst_scfg, $cache_direct);
8038 my ($storecfg, $source, $dest, $full, $newvollist, $jobs, $completion, $qga, $bwlimit) = @_;
8040 my ($vmid, $running) = $source->@{qw(vmid running)};
8041 my ($src_drivename, $drive, $snapname) = $source->@{qw(drivename drive snapname)};
8043 my ($newvmid, $dst_drivename, $efisize) = $dest->@{qw(vmid drivename efisize)};
8044 my ($storage, $format) = $dest->@{qw(storage format)};
8046 my $use_drive_mirror = $full && $running && $src_drivename && !$snapname;
8048 if ($src_drivename && $dst_drivename && $src_drivename ne $dst_drivename) {
8049 die "cloning from/to EFI disk requires EFI disk\n"
8050 if $src_drivename eq 'efidisk0' || $dst_drivename eq 'efidisk0';
8051 die "cloning from/to TPM state requires TPM state\n"
8052 if $src_drivename eq 'tpmstate0' || $dst_drivename eq 'tpmstate0';
8054 # This would lead to two device nodes in QEMU pointing to the same backing image!
8055 die "cannot change drive name when cloning disk from/to the same VM\n"
8056 if $use_drive_mirror && $vmid == $newvmid;
8059 die "cannot move TPM state while VM is running\n"
8060 if $use_drive_mirror && $src_drivename eq 'tpmstate0';
8064 print "create " . ($full ?
'full' : 'linked') . " clone of drive ";
8065 print "$src_drivename " if $src_drivename;
8066 print "($drive->{file})\n";
8069 $newvolid = PVE
::Storage
::vdisk_clone
($storecfg, $drive->{file
}, $newvmid, $snapname);
8070 push @$newvollist, $newvolid;
8072 my ($src_storeid, $volname) = PVE
::Storage
::parse_volume_id
($drive->{file
});
8073 my $storeid = $storage || $src_storeid;
8075 my $dst_format = resolve_dst_disk_format
($storecfg, $storeid, $volname, $format);
8079 if (drive_is_cloudinit
($drive)) {
8080 $name = "vm-$newvmid-cloudinit";
8081 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
8082 if ($scfg->{path
}) {
8083 $name .= ".$dst_format";
8086 $size = PVE
::QemuServer
::Cloudinit
::CLOUDINIT_DISK_SIZE
;
8087 } elsif ($dst_drivename eq 'efidisk0') {
8088 $size = $efisize or die "internal error - need to specify EFI disk size\n";
8089 } elsif ($dst_drivename eq 'tpmstate0') {
8090 $dst_format = 'raw';
8091 $size = PVE
::QemuServer
::Drive
::TPMSTATE_DISK_SIZE
;
8093 clone_disk_check_io_uring
($drive, $storecfg, $src_storeid, $storeid, $use_drive_mirror);
8095 $size = PVE
::Storage
::volume_size_info
($storecfg, $drive->{file
}, 10);
8097 $newvolid = PVE
::Storage
::vdisk_alloc
(
8098 $storecfg, $storeid, $newvmid, $dst_format, $name, ($size/1024)
8100 push @$newvollist, $newvolid;
8102 PVE
::Storage
::activate_volumes
($storecfg, [$newvolid]);
8104 if (drive_is_cloudinit
($drive)) {
8105 # when cloning multiple disks (e.g. during clone_vm) it might be the last disk
8106 # if this is the case, we have to complete any block-jobs still there from
8107 # previous drive-mirrors
8108 if (($completion eq 'complete') && (scalar(keys %$jobs) > 0)) {
8109 qemu_drive_mirror_monitor
($vmid, $newvmid, $jobs, $completion, $qga);
8114 my $sparseinit = PVE
::Storage
::volume_has_feature
($storecfg, 'sparseinit', $newvolid);
8115 if ($use_drive_mirror) {
8116 qemu_drive_mirror
($vmid, $src_drivename, $newvolid, $newvmid, $sparseinit, $jobs,
8117 $completion, $qga, $bwlimit);
8119 if ($dst_drivename eq 'efidisk0') {
8120 # the relevant data on the efidisk may be smaller than the source
8121 # e.g. on RBD/ZFS, so we use dd to copy only the amount
8122 # that is given by the OVMF_VARS.fd
8123 my $src_path = PVE
::Storage
::path
($storecfg, $drive->{file
}, $snapname);
8124 my $dst_path = PVE
::Storage
::path
($storecfg, $newvolid);
8126 my $src_format = (PVE
::Storage
::parse_volname
($storecfg, $drive->{file
}))[6];
8128 # better for Ceph if block size is not too small, see bug #3324
8131 my $cmd = ['qemu-img', 'dd', '-n', '-O', $dst_format];
8133 if ($src_format eq 'qcow2' && $snapname) {
8134 die "cannot clone qcow2 EFI disk snapshot - requires QEMU >= 6.2\n"
8135 if !min_version
(kvm_user_version
(), 6, 2);
8136 push $cmd->@*, '-l', $snapname;
8138 push $cmd->@*, "bs=$bs", "osize=$size", "if=$src_path", "of=$dst_path";
8141 qemu_img_convert
($drive->{file
}, $newvolid, $size, $snapname, $sparseinit, $bwlimit);
8147 my $size = eval { PVE
::Storage
::volume_size_info
($storecfg, $newvolid, 10) };
8149 my $disk = dclone
($drive);
8150 delete $disk->{format
};
8151 $disk->{file
} = $newvolid;
8152 $disk->{size
} = $size if defined($size);
8157 sub get_running_qemu_version
{
8159 my $res = mon_cmd
($vmid, "query-version");
8160 return "$res->{qemu}->{major}.$res->{qemu}->{minor}";
8163 sub qemu_use_old_bios_files
{
8164 my ($machine_type) = @_;
8166 return if !$machine_type;
8168 my $use_old_bios_files = undef;
8170 if ($machine_type =~ m/^(\S+)\.pxe$/) {
8172 $use_old_bios_files = 1;
8174 my $version = extract_version
($machine_type, kvm_user_version
());
8175 # Note: kvm version < 2.4 use non-efi pxe files, and have problems when we
8176 # load new efi bios files on migration. So this hack is required to allow
8177 # live migration from qemu-2.2 to qemu-2.4, which is sometimes used when
8178 # updrading from proxmox-ve-3.X to proxmox-ve 4.0
8179 $use_old_bios_files = !min_version
($version, 2, 4);
8182 return ($use_old_bios_files, $machine_type);
8185 sub get_efivars_size
{
8186 my ($conf, $efidisk) = @_;
8188 my $arch = get_vm_arch
($conf);
8189 $efidisk //= $conf->{efidisk0
} ? parse_drive
('efidisk0', $conf->{efidisk0
}) : undef;
8190 my $smm = PVE
::QemuServer
::Machine
::machine_type_is_q35
($conf);
8191 my (undef, $ovmf_vars) = get_ovmf_files
($arch, $efidisk, $smm);
8192 return -s
$ovmf_vars;
8195 sub update_efidisk_size
{
8198 return if !defined($conf->{efidisk0
});
8200 my $disk = PVE
::QemuServer
::parse_drive
('efidisk0', $conf->{efidisk0
});
8201 $disk->{size
} = get_efivars_size
($conf);
8202 $conf->{efidisk0
} = print_drive
($disk);
8207 sub update_tpmstate_size
{
8210 my $disk = PVE
::QemuServer
::parse_drive
('tpmstate0', $conf->{tpmstate0
});
8211 $disk->{size
} = PVE
::QemuServer
::Drive
::TPMSTATE_DISK_SIZE
;
8212 $conf->{tpmstate0
} = print_drive
($disk);
8215 sub create_efidisk
($$$$$$$) {
8216 my ($storecfg, $storeid, $vmid, $fmt, $arch, $efidisk, $smm) = @_;
8218 my (undef, $ovmf_vars) = get_ovmf_files
($arch, $efidisk, $smm);
8220 my $vars_size_b = -s
$ovmf_vars;
8221 my $vars_size = PVE
::Tools
::convert_size
($vars_size_b, 'b' => 'kb');
8222 my $volid = PVE
::Storage
::vdisk_alloc
($storecfg, $storeid, $vmid, $fmt, undef, $vars_size);
8223 PVE
::Storage
::activate_volumes
($storecfg, [$volid]);
8225 qemu_img_convert
($ovmf_vars, $volid, $vars_size_b, undef, 0);
8226 my $size = PVE
::Storage
::volume_size_info
($storecfg, $volid, 3);
8228 return ($volid, $size/1024);
8231 sub vm_iothreads_list
{
8234 my $res = mon_cmd
($vmid, 'query-iothreads');
8237 foreach my $iothread (@$res) {
8238 $iothreads->{ $iothread->{id
} } = $iothread->{"thread-id"};
8245 my ($conf, $drive) = @_;
8249 if (!$conf->{scsihw
} || ($conf->{scsihw
} =~ m/^lsi/)) {
8251 } elsif ($conf->{scsihw
} && ($conf->{scsihw
} eq 'virtio-scsi-single')) {
8257 my $controller = int($drive->{index} / $maxdev);
8258 my $controller_prefix = ($conf->{scsihw
} && $conf->{scsihw
} eq 'virtio-scsi-single')
8262 return ($maxdev, $controller, $controller_prefix);
8265 sub resolve_dst_disk_format
{
8266 my ($storecfg, $storeid, $src_volname, $format) = @_;
8267 my ($defFormat, $validFormats) = PVE
::Storage
::storage_default_format
($storecfg, $storeid);
8270 # if no target format is specified, use the source disk format as hint
8272 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
8273 $format = qemu_img_format
($scfg, $src_volname);
8279 # test if requested format is supported - else use default
8280 my $supported = grep { $_ eq $format } @$validFormats;
8281 $format = $defFormat if !$supported;
8285 # NOTE: if this logic changes, please update docs & possibly gui logic
8286 sub find_vmstate_storage
{
8287 my ($conf, $storecfg) = @_;
8289 # first, return storage from conf if set
8290 return $conf->{vmstatestorage
} if $conf->{vmstatestorage
};
8292 my ($target, $shared, $local);
8294 foreach_storage_used_by_vm
($conf, sub {
8296 my $scfg = PVE
::Storage
::storage_config
($storecfg, $sid);
8297 my $dst = $scfg->{shared
} ? \
$shared : \
$local;
8298 $$dst = $sid if !$$dst || $scfg->{path
}; # prefer file based storage
8301 # second, use shared storage where VM has at least one disk
8302 # third, use local storage where VM has at least one disk
8303 # fall back to local storage
8304 $target = $shared // $local // 'local';
8310 my ($uuid, $uuid_str);
8311 UUID
::generate
($uuid);
8312 UUID
::unparse
($uuid, $uuid_str);
8316 sub generate_smbios1_uuid
{
8317 return "uuid=".generate_uuid
();
8323 mon_cmd
($vmid, 'nbd-server-stop', timeout
=> 25);
8326 sub create_reboot_request
{
8328 open(my $fh, '>', "/run/qemu-server/$vmid.reboot")
8329 or die "failed to create reboot trigger file: $!\n";
8333 sub clear_reboot_request
{
8335 my $path = "/run/qemu-server/$vmid.reboot";
8338 $res = unlink($path);
8339 die "could not remove reboot request for $vmid: $!"
8340 if !$res && $! != POSIX
::ENOENT
;
8345 sub bootorder_from_legacy
{
8346 my ($conf, $bootcfg) = @_;
8348 my $boot = $bootcfg->{legacy
} || $boot_fmt->{legacy
}->{default};
8349 my $bootindex_hash = {};
8351 foreach my $o (split(//, $boot)) {
8352 $bootindex_hash->{$o} = $i*100;
8358 PVE
::QemuConfig-
>foreach_volume($conf, sub {
8359 my ($ds, $drive) = @_;
8361 if (drive_is_cdrom
($drive, 1)) {
8362 if ($bootindex_hash->{d
}) {
8363 $bootorder->{$ds} = $bootindex_hash->{d
};
8364 $bootindex_hash->{d
} += 1;
8366 } elsif ($bootindex_hash->{c
}) {
8367 $bootorder->{$ds} = $bootindex_hash->{c
}
8368 if $conf->{bootdisk
} && $conf->{bootdisk
} eq $ds;
8369 $bootindex_hash->{c
} += 1;
8373 if ($bootindex_hash->{n
}) {
8374 for (my $i = 0; $i < $MAX_NETS; $i++) {
8375 my $netname = "net$i";
8376 next if !$conf->{$netname};
8377 $bootorder->{$netname} = $bootindex_hash->{n
};
8378 $bootindex_hash->{n
} += 1;
8385 # Generate default device list for 'boot: order=' property. Matches legacy
8386 # default boot order, but with explicit device names. This is important, since
8387 # the fallback for when neither 'order' nor the old format is specified relies
8388 # on 'bootorder_from_legacy' above, and it would be confusing if this diverges.
8389 sub get_default_bootdevices
{
8395 my $first = PVE
::QemuServer
::Drive
::resolve_first_disk
($conf, 0);
8396 push @ret, $first if $first;
8399 $first = PVE
::QemuServer
::Drive
::resolve_first_disk
($conf, 1);
8400 push @ret, $first if $first;
8403 for (my $i = 0; $i < $MAX_NETS; $i++) {
8404 my $netname = "net$i";
8405 next if !$conf->{$netname};
8406 push @ret, $netname;
8413 sub device_bootorder
{
8416 return bootorder_from_legacy
($conf) if !defined($conf->{boot
});
8418 my $boot = parse_property_string
($boot_fmt, $conf->{boot
});
8421 if (!defined($boot) || $boot->{legacy
}) {
8422 $bootorder = bootorder_from_legacy
($conf, $boot);
8423 } elsif ($boot->{order
}) {
8424 my $i = 100; # start at 100 to allow user to insert devices before us with -args
8425 for my $dev (PVE
::Tools
::split_list
($boot->{order
})) {
8426 $bootorder->{$dev} = $i++;
8433 sub register_qmeventd_handle
{
8437 my $peer = "/var/run/qmeventd.sock";
8442 $fh = IO
::Socket
::UNIX-
>new(Peer
=> $peer, Blocking
=> 0, Timeout
=> 1);
8444 if ($! != EINTR
&& $! != EAGAIN
) {
8445 die "unable to connect to qmeventd socket (vmid: $vmid) - $!\n";
8448 die "unable to connect to qmeventd socket (vmid: $vmid) - timeout "
8449 . "after $count retries\n";
8454 # send handshake to mark VM as backing up
8455 print $fh to_json
({vzdump
=> {vmid
=> "$vmid"}});
8457 # return handle to be closed later when inhibit is no longer required
8461 # bash completion helper
8463 sub complete_backup_archives
{
8464 my ($cmdname, $pname, $cvalue) = @_;
8466 my $cfg = PVE
::Storage
::config
();
8470 if ($cvalue =~ m/^([^:]+):/) {
8474 my $data = PVE
::Storage
::template_list
($cfg, $storeid, 'backup');
8477 foreach my $id (keys %$data) {
8478 foreach my $item (@{$data->{$id}}) {
8479 next if $item->{format
} !~ m/^vma\.(${\PVE::Storage::Plugin::COMPRESSOR_RE})$/;
8480 push @$res, $item->{volid
} if defined($item->{volid
});
8487 my $complete_vmid_full = sub {
8490 my $idlist = vmstatus
();
8494 foreach my $id (keys %$idlist) {
8495 my $d = $idlist->{$id};
8496 if (defined($running)) {
8497 next if $d->{template
};
8498 next if $running && $d->{status
} ne 'running';
8499 next if !$running && $d->{status
} eq 'running';
8508 return &$complete_vmid_full();
8511 sub complete_vmid_stopped
{
8512 return &$complete_vmid_full(0);
8515 sub complete_vmid_running
{
8516 return &$complete_vmid_full(1);
8519 sub complete_storage
{
8521 my $cfg = PVE
::Storage
::config
();
8522 my $ids = $cfg->{ids
};
8525 foreach my $sid (keys %$ids) {
8526 next if !PVE
::Storage
::storage_check_enabled
($cfg, $sid, undef, 1);
8527 next if !$ids->{$sid}->{content
}->{images
};
8534 sub complete_migration_storage
{
8535 my ($cmd, $param, $current_value, $all_args) = @_;
8537 my $targetnode = @$all_args[1];
8539 my $cfg = PVE
::Storage
::config
();
8540 my $ids = $cfg->{ids
};
8543 foreach my $sid (keys %$ids) {
8544 next if !PVE
::Storage
::storage_check_enabled
($cfg, $sid, $targetnode, 1);
8545 next if !$ids->{$sid}->{content
}->{images
};
8553 my ($vmid, $include_suspended) = @_;
8554 my $qmpstatus = eval {
8555 PVE
::QemuConfig
::assert_config_exists_on_node
($vmid);
8556 mon_cmd
($vmid, "query-status");
8559 return $qmpstatus && (
8560 $qmpstatus->{status
} eq "paused" ||
8561 $qmpstatus->{status
} eq "prelaunch" ||
8562 ($include_suspended && $qmpstatus->{status
} eq "suspended")
8566 sub check_volume_storage_type
{
8567 my ($storecfg, $vol) = @_;
8569 my ($storeid, $volname) = PVE
::Storage
::parse_volume_id
($vol);
8570 my $scfg = PVE
::Storage
::storage_config
($storecfg, $storeid);
8571 my ($vtype) = PVE
::Storage
::parse_volname
($storecfg, $vol);
8573 die "storage '$storeid' does not support content-type '$vtype'\n"
8574 if !$scfg->{content
}->{$vtype};
8579 sub add_nets_bridge_fdb
{
8580 my ($conf, $vmid) = @_;
8582 for my $opt (keys %$conf) {
8583 next if $opt !~ m/^net(\d+)$/;
8584 my $iface = "tap${vmid}i$1";
8585 # NOTE: expect setups with learning off to *not* use auto-random-generation of MAC on start
8586 my $net = parse_net
($conf->{$opt}, 1) or next;
8588 my $mac = $net->{macaddr
};
8590 log_warn
("MAC learning disabled, but vNIC '$iface' has no static MAC to add to forwarding DB!")
8591 if !file_read_firstline
("/sys/class/net/$iface/brport/learning");
8595 my $bridge = $net->{bridge
};
8597 log_warn
("Interface '$iface' not attached to any bridge.");
8601 PVE
::Network
::SDN
::Zones
::add_bridge_fdb
($iface, $mac, $bridge);
8602 } elsif (-d
"/sys/class/net/$bridge/bridge") { # avoid fdb management with OVS for now
8603 PVE
::Network
::add_bridge_fdb
($iface, $mac);
8608 sub del_nets_bridge_fdb
{
8609 my ($conf, $vmid) = @_;
8611 for my $opt (keys %$conf) {
8612 next if $opt !~ m/^net(\d+)$/;
8613 my $iface = "tap${vmid}i$1";
8615 my $net = parse_net
($conf->{$opt}) or next;
8616 my $mac = $net->{macaddr
} or next;
8618 my $bridge = $net->{bridge
};
8620 PVE
::Network
::SDN
::Zones
::del_bridge_fdb
($iface, $mac, $bridge);
8621 } elsif (-d
"/sys/class/net/$bridge/bridge") { # avoid fdb management with OVS for now
8622 PVE
::Network
::del_bridge_fdb
($iface, $mac);
8627 sub create_ifaces_ipams_ips
{
8628 my ($conf, $vmid) = @_;
8630 return if !$have_sdn;
8632 foreach my $opt (keys %$conf) {
8633 if ($opt =~ m/^net(\d+)$/) {
8634 my $value = $conf->{$opt};
8635 my $net = PVE
::QemuServer
::parse_net
($value);
8636 eval { PVE
::Network
::SDN
::Vnets
::add_next_free_cidr
($net->{bridge
}, $conf->{name
}, $net->{macaddr
}, $vmid, undef, 1) };
8642 sub delete_ifaces_ipams_ips
{
8643 my ($conf, $vmid) = @_;
8645 return if !$have_sdn;
8647 foreach my $opt (keys %$conf) {
8648 if ($opt =~ m/^net(\d+)$/) {
8649 my $net = PVE
::QemuServer
::parse_net
($conf->{$opt});
8650 eval { PVE
::Network
::SDN
::Vnets
::del_ips_from_mac
($net->{bridge
}, $net->{macaddr
}, $conf->{name
}) };
projects / qemu-server.git / blob