mirror of
https://github.com/qemu/qemu.git
synced 2026-04-05 22:00:58 +00:00
f098c32db4
Replaying even trivial s390x kernels hangs, because:
- cpu_post_load() fires the TOD timer immediately.
- s390_tod_load() schedules work for firing the TOD timer.
- If rr loop sees work and then timer, we get one timer expiration.
- If rr loop sees timer and then work, we get two timer expirations.
- Record and replay may diverge due to this race.
- In this particular case divergence makes replay loop spin: it sees that
TOD timer has expired, but cannot invoke its callback, because there
is no recorded CHECKPOINT_CLOCK_VIRTUAL.
- The order in which rr loop sees work and timer depends on whether
and when rr loop wakes up during load_snapshot().
- rr loop may wake up after the main thread kicks the CPU and drops
the BQL, which may happen if it calls, e.g., qemu_cond_wait_bql().
Firing TOD timer twice is duplicate work, but it was introduced
intentionally in commit 7c12f710ba ("s390x/tcg: rearm the CKC timer
during migration") in order to avoid dependency on migration order.
The key culprits here are timers that are armed ready expired. They
break the ordering between timers and CPU work, because they are not
constrained by instruction execution, thus introducing non-determinism
and record-replay divergence.
Fix by converting such timer callbacks to CPU work. Also add TOD clock
updates to the save path, mirroring the load path, in order to have the
same CHECKPOINT_CLOCK_VIRTUAL during recording and replaying.
Link: https://lore.kernel.org/qemu-devel/20251128133949.181828-1-thuth@redhat.com/
Signed-off-by: Ilya Leoshkevich <iii@linux.ibm.com>
Tested-by: Thomas Huth <thuth@redhat.com>
Message-ID: <20251201215514.1751994-1-iii@linux.ibm.com>
[thuth: Add SPDX license identifiers to the new stubs files]
Signed-off-by: Thomas Huth <thuth@redhat.com>
145 lines
3.5 KiB
C
145 lines
3.5 KiB
C
/*
|
|
* TOD (Time Of Day) clock
|
|
*
|
|
* Copyright 2018 Red Hat, Inc.
|
|
* Author(s): David Hildenbrand <david@redhat.com>
|
|
*
|
|
* This work is licensed under the terms of the GNU GPL, version 2 or later.
|
|
* See the COPYING file in the top-level directory.
|
|
*/
|
|
|
|
#include "qemu/osdep.h"
|
|
#include "hw/s390x/tod.h"
|
|
#include "qapi/error.h"
|
|
#include "qemu/error-report.h"
|
|
#include "qemu/module.h"
|
|
#include "system/kvm.h"
|
|
#include "system/tcg.h"
|
|
#include "system/qtest.h"
|
|
#include "migration/qemu-file-types.h"
|
|
#include "migration/register.h"
|
|
|
|
void s390_init_tod(void)
|
|
{
|
|
Object *obj;
|
|
|
|
if (kvm_enabled()) {
|
|
obj = object_new(TYPE_KVM_S390_TOD);
|
|
} else if (tcg_enabled()) {
|
|
obj = object_new(TYPE_QEMU_S390_TOD);
|
|
} else if (qtest_enabled()) {
|
|
return;
|
|
} else {
|
|
error_report("current accelerator not handled in s390_init_tod!");
|
|
abort();
|
|
}
|
|
object_property_add_child(qdev_get_machine(), TYPE_S390_TOD, obj);
|
|
object_unref(obj);
|
|
|
|
qdev_realize(DEVICE(obj), NULL, &error_fatal);
|
|
}
|
|
|
|
S390TODState *s390_get_todstate(void)
|
|
{
|
|
static S390TODState *ts;
|
|
|
|
if (!ts) {
|
|
ts = S390_TOD(object_resolve_path_type("", TYPE_S390_TOD, NULL));
|
|
}
|
|
|
|
return ts;
|
|
}
|
|
|
|
#define S390_TOD_CLOCK_VALUE_MISSING 0x00
|
|
#define S390_TOD_CLOCK_VALUE_PRESENT 0x01
|
|
|
|
static void s390_tod_save(QEMUFile *f, void *opaque)
|
|
{
|
|
S390TODState *td = opaque;
|
|
S390TODClass *tdc = S390_TOD_GET_CLASS(td);
|
|
Error *err = NULL;
|
|
S390TOD tod;
|
|
|
|
tdc->get(td, &tod, &err);
|
|
if (err) {
|
|
warn_report_err(err);
|
|
error_printf("Guest clock will not be migrated "
|
|
"which could cause the guest to hang.");
|
|
qemu_put_byte(f, S390_TOD_CLOCK_VALUE_MISSING);
|
|
return;
|
|
}
|
|
|
|
qemu_put_byte(f, S390_TOD_CLOCK_VALUE_PRESENT);
|
|
qemu_put_byte(f, tod.high);
|
|
qemu_put_be64(f, tod.low);
|
|
|
|
tdc->set(td, &tod, &err);
|
|
if (err) {
|
|
warn_report_err(err);
|
|
}
|
|
}
|
|
|
|
static int s390_tod_load(QEMUFile *f, void *opaque, int version_id)
|
|
{
|
|
S390TODState *td = opaque;
|
|
S390TODClass *tdc = S390_TOD_GET_CLASS(td);
|
|
Error *err = NULL;
|
|
S390TOD tod;
|
|
|
|
if (qemu_get_byte(f) == S390_TOD_CLOCK_VALUE_MISSING) {
|
|
warn_report("Guest clock was not migrated. This could "
|
|
"cause the guest to hang.");
|
|
return 0;
|
|
}
|
|
|
|
tod.high = qemu_get_byte(f);
|
|
tod.low = qemu_get_be64(f);
|
|
|
|
tdc->set(td, &tod, &err);
|
|
if (err) {
|
|
error_report_err(err);
|
|
return -1;
|
|
}
|
|
return 0;
|
|
}
|
|
|
|
static SaveVMHandlers savevm_tod = {
|
|
.save_state = s390_tod_save,
|
|
.load_state = s390_tod_load,
|
|
};
|
|
|
|
static void s390_tod_realize(DeviceState *dev, Error **errp)
|
|
{
|
|
S390TODState *td = S390_TOD(dev);
|
|
|
|
/* Legacy migration interface */
|
|
register_savevm_live("todclock", 0, 1, &savevm_tod, td);
|
|
}
|
|
|
|
static void s390_tod_class_init(ObjectClass *oc, const void *data)
|
|
{
|
|
DeviceClass *dc = DEVICE_CLASS(oc);
|
|
|
|
dc->desc = "TOD (Time Of Day) Clock";
|
|
dc->realize = s390_tod_realize;
|
|
set_bit(DEVICE_CATEGORY_MISC, dc->categories);
|
|
|
|
/* We only have one TOD clock in the system attached to the machine */
|
|
dc->user_creatable = false;
|
|
}
|
|
|
|
static const TypeInfo s390_tod_info = {
|
|
.name = TYPE_S390_TOD,
|
|
.parent = TYPE_DEVICE,
|
|
.instance_size = sizeof(S390TODState),
|
|
.class_init = s390_tod_class_init,
|
|
.class_size = sizeof(S390TODClass),
|
|
.abstract = true,
|
|
};
|
|
|
|
static void register_types(void)
|
|
{
|
|
type_register_static(&s390_tod_info);
|
|
}
|
|
type_init(register_types);
|