package PVE::Replication; use warnings; use strict; use Data::Dumper; use JSON; use Time::HiRes qw(gettimeofday tv_interval); use POSIX qw(strftime); use PVE::INotify; use PVE::ProcFSTools; use PVE::Tools; use PVE::Cluster; use PVE::DataCenterConfig; use PVE::Storage; use PVE::GuestHelpers; use PVE::ReplicationConfig; use PVE::ReplicationState; use PVE::SSHInfo; # regression tests should overwrite this sub get_log_time { return strftime("%F %H:%M:%S", localtime); } # Find common base replication snapshot, available on local and remote side. # Note: this also removes stale replication snapshots sub find_common_replication_snapshot { my ($ssh_info, $jobid, $vmid, $storecfg, $volumes, $storeid_list, $last_sync, $guest_conf, $logfunc) = @_; my $parent_snapname = $guest_conf->{parent}; my $conf_snapshots = $guest_conf->{snapshots}; my $last_sync_snapname = PVE::ReplicationState::replication_snapshot_name($jobid, $last_sync); my $local_snapshots = prepare($storecfg, $volumes, $jobid, $last_sync, $parent_snapname, $logfunc); # prepare remote side my $remote_snapshots = remote_prepare_local_job( $ssh_info, $jobid, $vmid, $volumes, $storeid_list, $last_sync, $parent_snapname, 0, $logfunc, ); my $base_snapshots = {}; my @missing_snapshots = (); foreach my $volid (@$volumes) { my $local_info = $local_snapshots->{$volid}; my $remote_info = $remote_snapshots->{$volid}; if (defined($local_info) && defined($remote_info)) { my $common_snapshot = sub { my ($snap) = @_; return 0 if !$local_info->{$snap} || !$remote_info->{$snap}; # Check for ID if remote side supports it already. return $local_info->{$snap}->{id} eq $remote_info->{$snap}->{id} if ref($remote_info->{$snap}) eq 'HASH'; return 1; }; if ($common_snapshot->($last_sync_snapname)) { $base_snapshots->{$volid} = $last_sync_snapname; } elsif (defined($parent_snapname) && $common_snapshot->($parent_snapname)) { $base_snapshots->{$volid} = $parent_snapname; } else { my $most_recent = [0, undef]; for my $snapshot (keys $local_info->%*) { next if !$common_snapshot->($snapshot); next if !$conf_snapshots->{$snapshot} && !is_replication_snapshot($snapshot); my $timestamp = $local_info->{$snapshot}->{timestamp}; $most_recent = [$timestamp, $snapshot] if $timestamp > $most_recent->[0]; } if ($most_recent->[1]) { $base_snapshots->{$volid} = $most_recent->[1]; next; } push @missing_snapshots, $volid if !defined($base_snapshots->{$volid}); } } } if (scalar(@missing_snapshots) > 0) { # There exist volumes without common base snapshot on the remote side. # Trying to (do a full) sync won't work, so die early with a clean error. my $volume_string = join(',', @missing_snapshots); die "No common base snapshot on volume(s) $volume_string\nPlease remove the problematic " . "volume(s) from the replication target or delete and re-create the whole job $jobid\n"; } return ($base_snapshots, $local_snapshots, $last_sync_snapname); } sub remote_prepare_local_job { my ($ssh_info, $jobid, $vmid, $volumes, $storeid_list, $last_sync, $parent_snapname, $force, $logfunc) = @_; my $ssh_cmd = PVE::SSHInfo::ssh_info_to_command($ssh_info); my $cmd = [@$ssh_cmd, '--', 'pvesr', 'prepare-local-job', $jobid]; push @$cmd, '--scan', join(',', @$storeid_list) if scalar(@$storeid_list); push @$cmd, @$volumes if scalar(@$volumes); push @$cmd, '--last_sync', $last_sync; push @$cmd, '--parent_snapname', $parent_snapname if $parent_snapname; push @$cmd, '--force' if $force; my $remote_snapshots; my $parser = sub { my $line = shift; $remote_snapshots = JSON::decode_json($line); }; my $logger = sub { my $line = shift; chomp $line; $logfunc->("(remote_prepare_local_job) $line"); }; PVE::Tools::run_command($cmd, outfunc => $parser, errfunc => $logger); die "prepare remote node failed - no result\n" if !defined($remote_snapshots); return $remote_snapshots; } sub remote_finalize_local_job { my ($ssh_info, $jobid, $vmid, $volumes, $last_sync, $logfunc) = @_; my $ssh_cmd = PVE::SSHInfo::ssh_info_to_command($ssh_info); my $cmd = [@$ssh_cmd, '--', 'pvesr', 'finalize-local-job', $jobid, @$volumes, '--last_sync', $last_sync]; my $logger = sub { my $line = shift; chomp $line; $logfunc->("(remote_finalize_local_job) $line"); }; PVE::Tools::run_command($cmd, outfunc => $logger, errfunc => $logger); } # Finds all local snapshots and removes replication snapshots not matching $last_sync after checking # that it is present. Use last_sync=0 (or undef) to prevent removal (useful if VM was stolen). Use # last_sync=1 to remove all replication snapshots (limited to job if specified). sub prepare { my ($storecfg, $volids, $jobid, $last_sync, $parent_snapname, $logfunc) = @_; $last_sync //= 0; my ($prefix, $snapname); if (defined($jobid)) { ($prefix, $snapname) = PVE::ReplicationState::replication_snapshot_name($jobid, $last_sync); } else { $prefix = '__replicate_'; } my $local_snapshots = {}; my $cleaned_replicated_volumes = {}; foreach my $volid (@$volids) { $local_snapshots->{$volid} = {}; my $info = PVE::Storage::volume_snapshot_info($storecfg, $volid); my $removal_ok = !defined($snapname) || $info->{$snapname}; $removal_ok = 0 if $last_sync == 0; # last_sync=0 if the VM was stolen, don't remove! $removal_ok = 1 if $last_sync == 1; # last_sync=1 is a special value used to remove all # check if it's a replication snapshot with the same $prefix but not the $last_sync one my $potentially_stale = sub { my ($snap) = @_; return 0 if defined($snapname) && $snap eq $snapname; return 0 if defined($parent_snapname) && $snap eq $parent_snapname; return $snap =~ m/^\Q$prefix\E/; }; $logfunc->("expected snapshot $snapname not present for $volid, not removing others") if !$removal_ok && $last_sync > 1 && grep { $potentially_stale->($_) } keys $info->%*; for my $snap (keys $info->%*) { if ($potentially_stale->($snap) && $removal_ok) { $logfunc->("delete stale replication snapshot '$snap' on $volid"); eval { PVE::Storage::volume_snapshot_delete($storecfg, $volid, $snap); $cleaned_replicated_volumes->{$volid} = 1; }; # If deleting the snapshot fails, we can not be sure if it was due to an error or a timeout. # The likelihood that the delete has worked out is high at a timeout. # If it really fails, it will try to remove on the next run. if (my $err = $@) { # warn is for syslog/journal. warn $err; # logfunc will written in replication log. $logfunc->("delete stale replication snapshot error: $err"); } } else { $local_snapshots->{$volid}->{$snap} = $info->{$snap}; } } } return wantarray ? ($local_snapshots, $cleaned_replicated_volumes) : $local_snapshots; } sub replicate_volume { my ($ssh_info, $storecfg, $volid, $base_snapshot, $sync_snapname, $rate, $insecure, $logfunc) = @_; my ($storeid, $volname) = PVE::Storage::parse_volume_id($volid); my $ratelimit_bps = $rate ? int(1000000 * $rate) : undef; my $opts = { 'target_volname' => $volname, 'base_snapshot' => $base_snapshot, 'snapshot' => $sync_snapname, 'ratelimit_bps' => $ratelimit_bps, 'insecure' => $insecure, 'with_snapshots' => 1, }; PVE::Storage::storage_migrate($storecfg, $volid, $ssh_info, $storeid, $opts, $logfunc); } sub replicate { my ($guest_class, $jobcfg, $state, $start_time, $logfunc) = @_; my $local_node = PVE::INotify::nodename(); die "not implemented - internal error" if $jobcfg->{type} ne 'local'; my $dc_conf = PVE::Cluster::cfs_read_file('datacenter.cfg'); my $migration_network; my $migration_type = 'secure'; if (my $mc = $dc_conf->{migration}) { $migration_network = $mc->{network}; $migration_type = $mc->{type} if defined($mc->{type}); } my $jobid = $jobcfg->{id}; my $storecfg = PVE::Storage::config(); my $last_sync = $state->{last_sync}; die "start time before last sync ($start_time <= $last_sync) - abort sync\n" if $start_time <= $last_sync; my $vmid = $jobcfg->{guest}; my $conf = $guest_class->load_config($vmid); my ($running, $freezefs) = $guest_class->__snapshot_check_freeze_needed($vmid, $conf, 0); my $volumes = $guest_class->get_replicatable_volumes($storecfg, $vmid, $conf, defined($jobcfg->{remove_job})); my $sorted_volids = [ sort keys %$volumes ]; $running //= 0; # to avoid undef warnings from logfunc my $guest_name = $guest_class->guest_type() . ' ' . $vmid; $logfunc->("guest => $guest_name, running => $running"); $logfunc->("volumes => " . join(',', @$sorted_volids)); # filter out left-over non-existing/removed storages - avoids error on target $state->{storeid_list} = [ grep { $storecfg->{ids}->{$_} } $state->{storeid_list}->@* ]; if (my $remove_job = $jobcfg->{remove_job}) { $logfunc->("start job removal - mode '${remove_job}'"); if ($remove_job eq 'full' && $jobcfg->{target} ne $local_node) { # remove all remote volumes my @store_list = map { (PVE::Storage::parse_volume_id($_))[0] } @$sorted_volids; push @store_list, @{$state->{storeid_list}}; my %hash = map { $_ => 1 } @store_list; my $ssh_info = PVE::SSHInfo::get_ssh_info($jobcfg->{target}); remote_prepare_local_job($ssh_info, $jobid, $vmid, [], [ keys %hash ], 1, undef, 1, $logfunc); } # remove all local replication snapshots (lastsync => 0) prepare($storecfg, $sorted_volids, $jobid, 1, undef, $logfunc); PVE::ReplicationConfig::delete_job($jobid); # update config $logfunc->("job removed"); return undef; } my $ssh_info = PVE::SSHInfo::get_ssh_info($jobcfg->{target}, $migration_network); my ($base_snapshots, $local_snapshots, $last_sync_snapname) = find_common_replication_snapshot( $ssh_info, $jobid, $vmid, $storecfg, $sorted_volids, $state->{storeid_list}, $last_sync, $conf, $logfunc); my $storeid_hash = {}; foreach my $volid (@$sorted_volids) { my ($storeid) = PVE::Storage::parse_volume_id($volid); $storeid_hash->{$storeid} = 1; } $state->{storeid_list} = [ sort keys %$storeid_hash ]; # freeze filesystem for data consistency if ($freezefs) { $logfunc->("freeze guest filesystem"); $guest_class->__snapshot_freeze($vmid, 0); } # make snapshot of all volumes my $sync_snapname = PVE::ReplicationState::replication_snapshot_name($jobid, $start_time); my $replicate_snapshots = {}; eval { foreach my $volid (@$sorted_volids) { $logfunc->("create snapshot '${sync_snapname}' on $volid"); PVE::Storage::volume_snapshot($storecfg, $volid, $sync_snapname); $replicate_snapshots->{$volid}->{$sync_snapname} = 1; } }; my $err = $@; # thaw immediately if ($freezefs) { $logfunc->("thaw guest filesystem"); $guest_class->__snapshot_freeze($vmid, 1); } my $cleanup_local_snapshots = sub { my ($volid_hash, $snapname) = @_; foreach my $volid (sort keys %$volid_hash) { next if !$volid_hash->{$volid}->{$snapname}; $logfunc->("delete previous replication snapshot '$snapname' on $volid"); eval { PVE::Storage::volume_snapshot_delete($storecfg, $volid, $snapname); }; warn $@ if $@; } }; if ($err) { $cleanup_local_snapshots->($replicate_snapshots, $sync_snapname); # try to cleanup die $err; } eval { my $rate = $jobcfg->{rate}; my $insecure = $migration_type eq 'insecure'; $logfunc->("using $migration_type transmission, rate limit: " . ($rate ? "$rate MByte/s" : "none")); foreach my $volid (@$sorted_volids) { my $base_snapname; if (defined($base_snapname = $base_snapshots->{$volid})) { $logfunc->("incremental sync '$volid' ($base_snapname => $sync_snapname)"); } else { $logfunc->("full sync '$volid' ($sync_snapname)"); } replicate_volume($ssh_info, $storecfg, $volid, $base_snapname, $sync_snapname, $rate, $insecure, $logfunc); } }; if ($err = $@) { $cleanup_local_snapshots->($replicate_snapshots, $sync_snapname); # try to cleanup # we do not cleanup the remote side here - this is done in # next run of prepare_local_job die $err; } # Ensure that new sync is recorded before removing old replication snapshots. PVE::ReplicationState::record_sync_end($jobcfg, $state, $start_time); # remove old snapshots because they are no longer needed $cleanup_local_snapshots->($local_snapshots, $last_sync_snapname); eval { remote_finalize_local_job($ssh_info, $jobid, $vmid, $sorted_volids, $start_time, $logfunc); }; # old snapshots will removed by next run from prepare_local_job. if ($err = $@) { # warn is for syslog/journal. warn $err; # logfunc will written in replication log. $logfunc->("delete stale replication snapshot error: $err"); } return $volumes; } my $run_replication_nolock = sub { my ($guest_class, $jobcfg, $iteration, $start_time, $logfunc, $verbose) = @_; my $jobid = $jobcfg->{id}; my $volumes; # we normally write errors into the state file, # but we also catch unexpected errors and log them to syslog # (for examply when there are problems writing the state file) my $state = PVE::ReplicationState::read_job_state($jobcfg); PVE::ReplicationState::record_job_start($jobcfg, $state, $start_time, $iteration); my $t0 = [gettimeofday]; mkdir $PVE::ReplicationState::replicate_logdir; my $logfile = PVE::ReplicationState::job_logfile_name($jobid); open(my $logfd, '>', $logfile) || die "unable to open replication log '$logfile' - $!\n"; my $logfunc_wrapper = sub { my ($msg) = @_; my $ctime = get_log_time(); print $logfd "$ctime $jobid: $msg\n"; if ($logfunc) { if ($verbose) { $logfunc->("$ctime $jobid: $msg"); } else { $logfunc->($msg); } } }; $logfunc_wrapper->("start replication job"); eval { $volumes = replicate($guest_class, $jobcfg, $state, $start_time, $logfunc_wrapper); }; my $err = $@; if ($err) { my $msg = "end replication job with error: $err"; chomp $msg; $logfunc_wrapper->($msg); } else { $logfunc_wrapper->("end replication job"); } PVE::ReplicationState::record_job_end($jobcfg, $state, $start_time, tv_interval($t0), $err); close($logfd); die $err if $err; return $volumes; }; sub run_replication { my ($guest_class, $jobcfg, $iteration, $start_time, $logfunc, $verbose) = @_; my $volumes; my $timeout = 2; # do not wait too long - we repeat periodically anyways $volumes = PVE::GuestHelpers::guest_migration_lock( $jobcfg->{guest}, $timeout, $run_replication_nolock, $guest_class, $jobcfg, $iteration, $start_time, $logfunc, $verbose); return $volumes; } sub is_replication_snapshot { my ($snapshot_name, $jobid) = @_; if (defined($jobid)) { return $snapshot_name =~ m/^__replicate_\Q$jobid\E/ ? 1 : 0; } return $snapshot_name =~ m/^__replicate_/ ? 1 : 0; } 1;