[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH v7 01/42] Start documenting how postcopy works.
|
From: |
Dr. David Alan Gilbert |
|
Subject: |
Re: [Qemu-devel] [PATCH v7 01/42] Start documenting how postcopy works. |
|
Date: |
Fri, 19 Jun 2015 18:52:24 +0100 |
|
User-agent: |
Mutt/1.5.23 (2014-03-12) |
* Paolo Bonzini (address@hidden) wrote:
>
>
> On 18/06/2015 09:50, Li, Liang Z wrote:
> > Do you have any idea or plan to deal with the failure happened during
> > the postcopy phase?
> >
> > Lost the guest is too frightening for a cloud provider, we have a
> > discussion with Alibaba, they said that they can't use the postcopy
> > feature unless there is a mechanism to find the guest back.
>
> There's no solution to this problem, except for rollback to a previous
> snapshot.
Yes, and you might be able to avoid some of the pain if you COWd the
disk data on the destination until the migration was finished; that would
allow you to restart the source VM in the state prior to postcopy starting;
although the network's view of it is going to be very messy.
> To give an idea, an example of an intended usecase for postcopy is
> datacenter evacuation in 30 minutes after a tsunami alert. That's not a
> case where you care much about losing guests to network failures.
Well; you have to make a call as to what your best option is; you could
always shut the VM down and boot it up fresh in your new safe data centre.
Your preference is determined by your confidence that your VM would boot
back up safely and how long it would take and the confidence in that network
during the migration period and the pain of knowing what will happen
if you explicitly shut the VM down.
> Cloud operators can use a combination of precopy and postcopy. For
> example, I would not use postcopy for mass migration when doing
> host updates, but it can be used as a last resort before a scheduled
> downtime.
>
> For example, say you're doing a rolling update and you want it complete
> by next Sunday. 90% of the guests are shut down by the customers or can
> be migrated successfully with precopy. The others do not converge and
> their SLA does not let you throttle them to complete precopy migration.
Indeed the interface lets you do that pretty easily; since as long as you
have enabled postcopy, it starts in precopy mode and is fully recoverable
until you issue the 'migrate_start_postcopy' which might be when it's
tried 'n' times and you can see that the workload you have isn't going
to converge.
Dave
> You then tell your customers that either they shutdown and restart their
> instances before Saturday 8:00 PM, or they might be shut down forcibly.
> Then for customers who haven't rebooted you can do
> postcopy---you have alerted them that something might go wrong. So even
> though postcopy would not be a first choice, it can still help cloud
> operators.
>
> Paolo
--
Dr. David Alan Gilbert / address@hidden / Manchester, UK
- [Qemu-devel] [PATCH v7 02/42] Provide runtime Target page information, (continued)
[Qemu-devel] [PATCH v7 05/42] Add qemu_get_buffer_less_copy to avoid copies some of the time, Dr. David Alan Gilbert (git), 2015/06/16
[Qemu-devel] [PATCH v7 04/42] qemu_ram_block_from_host, Dr. David Alan Gilbert (git), 2015/06/16