|
|
#!/usr/bin/env bash |
|
|
set -Eeuo pipefail |
|
|
|
|
|
|
|
|
|
|
|
: "${HV="Y"}" |
|
|
: "${KVM:="Y"}" |
|
|
: "${VMX:="N"}" |
|
|
: "${CPU_FLAGS:=""}" |
|
|
: "${CPU_MODEL:=""}" |
|
|
|
|
|
[[ "$DEBUG" == [Yy1]* ]] && echo "Configuring KVM..." |
|
|
|
|
|
if [[ "$KVM" == [Nn]* ]]; then |
|
|
warn "KVM acceleration is disabled, this will cause the machine to run about 10 times slower!" |
|
|
else |
|
|
if [[ "${ARCH,,}" != "amd64" ]]; then |
|
|
KVM="N" |
|
|
warn "your CPU architecture is ${ARCH^^} and cannot provide KVM acceleration for x64 instructions, so the machine will run about 10 times slower." |
|
|
fi |
|
|
fi |
|
|
|
|
|
if [[ "$KVM" != [Nn]* ]]; then |
|
|
|
|
|
KVM_ERR="" |
|
|
|
|
|
if [ ! -e /dev/kvm ]; then |
|
|
KVM_ERR="(/dev/kvm is missing)" |
|
|
else |
|
|
if ! sh -c 'echo -n > /dev/kvm' &> /dev/null; then |
|
|
KVM_ERR="(/dev/kvm is unwriteable)" |
|
|
else |
|
|
flags=$(sed -ne '/^flags/s/^.*: //p' /proc/cpuinfo) |
|
|
if ! grep -qw "vmx\|svm" <<< "$flags"; then |
|
|
KVM_ERR="(not enabled in BIOS)" |
|
|
fi |
|
|
fi |
|
|
fi |
|
|
|
|
|
if [ -n "$KVM_ERR" ]; then |
|
|
KVM="N" |
|
|
if [[ "$OSTYPE" =~ ^darwin ]]; then |
|
|
warn "you are using macOS which has no KVM support, so the machine will run about 10 times slower." |
|
|
else |
|
|
kernel=$(uname -a) |
|
|
case "${kernel,,}" in |
|
|
*"microsoft"* ) |
|
|
error "Please bind '/dev/kvm' as a volume in the optional container settings when using Docker Desktop." ;; |
|
|
*"synology"* ) |
|
|
error "Please make sure that Synology VMM (Virtual Machine Manager) is installed and that '/dev/kvm' is binded to this container." ;; |
|
|
*) |
|
|
error "KVM acceleration is not available $KVM_ERR, this will cause the machine to run about 10 times slower." |
|
|
error "See the FAQ for possible causes, or disable acceleration by adding the \"KVM=N\" variable (not recommended)." ;; |
|
|
esac |
|
|
[[ "$DEBUG" != [Yy1]* ]] && exit 88 |
|
|
fi |
|
|
fi |
|
|
|
|
|
fi |
|
|
|
|
|
vendor=$(lscpu | awk '/Vendor ID/{print $3}') |
|
|
|
|
|
if [[ "$KVM" != [Nn]* ]]; then |
|
|
|
|
|
CPU_FEATURES="kvm=on,l3-cache=on,+hypervisor" |
|
|
KVM_OPTS=",accel=kvm -enable-kvm -global kvm-pit.lost_tick_policy=discard" |
|
|
|
|
|
if [ -z "$CPU_MODEL" ]; then |
|
|
CPU_MODEL="host" |
|
|
CPU_FEATURES+=",migratable=no" |
|
|
fi |
|
|
|
|
|
if [[ "$VMX" == [Nn]* && "${BOOT_MODE,,}" == "windows"* ]]; then |
|
|
|
|
|
CPU_FEATURES+=",-vmx" |
|
|
fi |
|
|
|
|
|
if [[ "$vendor" == "AuthenticAMD" ]]; then |
|
|
|
|
|
|
|
|
if grep -qw "tsc_scale" <<< "$flags"; then |
|
|
CPU_FEATURES+=",+invtsc" |
|
|
fi |
|
|
|
|
|
if [[ "${BOOT_MODE,,}" == "windows"* ]]; then |
|
|
CPU_FEATURES+=",arch_capabilities=off" |
|
|
fi |
|
|
|
|
|
else |
|
|
|
|
|
|
|
|
vmx=$(sed -ne '/^vmx flags/s/^.*: //p' /proc/cpuinfo) |
|
|
|
|
|
if grep -qw "tsc_scaling" <<< "$vmx"; then |
|
|
CPU_FEATURES+=",+invtsc" |
|
|
fi |
|
|
|
|
|
fi |
|
|
|
|
|
if [[ "${BOOT_MODE,,}" == "windows"* && "$HV" != [Nn]* ]]; then |
|
|
|
|
|
HV_FEATURES="hv_passthrough" |
|
|
|
|
|
if [[ "$vendor" == "AuthenticAMD" ]]; then |
|
|
|
|
|
|
|
|
if ! grep -qw "avic" <<< "$flags"; then |
|
|
HV_FEATURES+=",-hv-avic" |
|
|
fi |
|
|
|
|
|
HV_FEATURES+=",-hv-evmcs" |
|
|
|
|
|
else |
|
|
|
|
|
|
|
|
if ! grep -qw "apicv" <<< "$vmx"; then |
|
|
HV_FEATURES+=",-hv-apicv,-hv-evmcs" |
|
|
else |
|
|
if [[ "$CPU" == "Intel Atom "* || "$CPU" == "Intel Celeron "* || "$CPU" == "Intel Pentium "* ]]; then |
|
|
|
|
|
HV_FEATURES+=",-hv-evmcs" |
|
|
fi |
|
|
fi |
|
|
|
|
|
fi |
|
|
|
|
|
[ -n "$CPU_FEATURES" ] && CPU_FEATURES+="," |
|
|
CPU_FEATURES+="${HV_FEATURES}" |
|
|
|
|
|
fi |
|
|
|
|
|
else |
|
|
|
|
|
KVM_OPTS="" |
|
|
CPU_FEATURES="l3-cache=on,+hypervisor" |
|
|
|
|
|
if [[ "$ARCH" == "amd64" ]]; then |
|
|
KVM_OPTS=" -accel tcg,thread=multi" |
|
|
fi |
|
|
|
|
|
if [ -z "$CPU_MODEL" ]; then |
|
|
if [[ "$ARCH" == "amd64" ]]; then |
|
|
|
|
|
if [[ "${BOOT_MODE,,}" != "windows"* ]]; then |
|
|
|
|
|
CPU_MODEL="max" |
|
|
CPU_FEATURES+=",migratable=no" |
|
|
|
|
|
else |
|
|
if [[ "$vendor" == "AuthenticAMD" ]]; then |
|
|
|
|
|
|
|
|
CPU_MODEL="EPYC" |
|
|
CPU_FEATURES+=",svm=off,arch_capabilities=off,-fxsr-opt,-misalignsse,-osvw,-topoext,-nrip-save,-xsavec,check" |
|
|
|
|
|
else |
|
|
|
|
|
|
|
|
CPU_MODEL="Skylake-Client-v4" |
|
|
CPU_FEATURES+=",vmx=off,-pcid,-tsc-deadline,-invpcid,-spec-ctrl,-xsavec,-xsaves,check" |
|
|
|
|
|
fi |
|
|
fi |
|
|
|
|
|
else |
|
|
|
|
|
|
|
|
CPU_MODEL="Skylake-Client-v4" |
|
|
CPU_FEATURES+=",vmx=off,-pcid,-tsc-deadline,-invpcid,-spec-ctrl,-xsavec,-xsaves,check" |
|
|
|
|
|
fi |
|
|
fi |
|
|
|
|
|
fi |
|
|
|
|
|
if [[ "$ARGUMENTS" == *"-cpu host,"* ]]; then |
|
|
|
|
|
args="${ARGUMENTS} " |
|
|
prefix="${args/-cpu host,*/}" |
|
|
suffix="${args/*-cpu host,/}" |
|
|
param="${suffix%% *}" |
|
|
suffix="${suffix#* }" |
|
|
args="${prefix}${suffix}" |
|
|
ARGUMENTS="${args::-1}" |
|
|
|
|
|
if [ -z "$CPU_FLAGS" ]; then |
|
|
CPU_FLAGS="$param" |
|
|
else |
|
|
CPU_FLAGS+=",$param" |
|
|
fi |
|
|
|
|
|
else |
|
|
|
|
|
if [[ "$ARGUMENTS" == *"-cpu host"* ]]; then |
|
|
ARGUMENTS="${ARGUMENTS//-cpu host/}" |
|
|
fi |
|
|
|
|
|
fi |
|
|
|
|
|
if [ -z "$CPU_FLAGS" ]; then |
|
|
if [ -z "$CPU_FEATURES" ]; then |
|
|
CPU_FLAGS="$CPU_MODEL" |
|
|
else |
|
|
CPU_FLAGS="$CPU_MODEL,$CPU_FEATURES" |
|
|
fi |
|
|
else |
|
|
if [ -z "$CPU_FEATURES" ]; then |
|
|
CPU_FLAGS="$CPU_MODEL,$CPU_FLAGS" |
|
|
else |
|
|
CPU_FLAGS="$CPU_MODEL,$CPU_FEATURES,$CPU_FLAGS" |
|
|
fi |
|
|
fi |
|
|
|
|
|
return 0 |
|
|
|
