VirtualBox

Browse Source

Changeset 48297 in vbox for trunk/src/VBox/Main/src-server

Timestamp:

Sep 5, 2013 9:57:44 AM (12 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

88714

Message:

Main/Medium: redesign API level medium locking, needed conversions from MediaList to MediumLockLists in several places, forced cleanups elsewhere, too
Main/Token: introduced token objects for controlling the unlocking, will be used as a general concept in the future
Main/Snapshot: snapshot deletion needed significant cleanups as it was still using many shortcuts, directly calling the API to lock media instead of using lock lists. Now much better, and the online snapshot deletion is also a lot cleaner as it no longer passes unnecessary parameters around which are already known in the machine/snapshot code
Main/MediumLock: small improvements, now has a mode which skips locking already locked media, needed by the Snapshot code where we have overlapping lock lists and have to update the original one instead
Main/Console+Session+Machine: follow-up changes for the online snapshot merging parameter passing simplification, plus an unrelated lock order violation fix in Machine which happens only for inaccessible machines
Main/testcase: update correspondingly
doc: update SDK reference

Location:

trunk/src/VBox/Main/src-server

Files:

: 1 added
: 5 edited

MachineImpl.cpp (modified) (1 diff)
MediumImpl.cpp (modified) (41 diffs)
MediumLock.cpp (modified) (6 diffs)
SnapshotImpl.cpp (modified) (37 diffs)
TokenImpl.cpp (added)
VirtualBoxImpl.cpp (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/Main/src-server/MachineImpl.cpp

-              r48295
+              r48297
     LogFlowThisFunc(("ENTER\n"));
+    /* In some cases (medium registry related), it is necessary to be able to
+     * go through the list of all machines. Happens when an inaccessible VM
+     * has a sensible medium registry. */
+    AutoReadLock mllock(mParent->getMachinesListLockHandle() COMMA_LOCKVAL_SRC_POS);
     AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);

trunk/src/VBox/Main/src-server/MediumImpl.cpp

-              r47920
+              r48297
 #include "MediumImpl.h"
+#include "TokenImpl.h"
 #include "ProgressImpl.h"
 #include "SystemPropertiesImpl.h"
 …
               bool fMergeForward,
               Medium *aParentForTarget,
               const MediaList &aChildrenToReparent,
+              MediumLockList *aChildrenToReparent,
               Progress *aProgress,
               MediumLockList *aMediumLockList,
 …
           mfMergeForward(fMergeForward),
           mParentForTarget(aParentForTarget),
           mChildrenToReparent(aChildrenToReparent),
+          mpChildrenToReparent(aChildrenToReparent),
           mpMediumLockList(aMediumLockList),
           mTargetCaller(aTarget),
           mParentForTargetCaller(aParentForTarget),
-          mfChildrenCaller(false),
           mfKeepMediumLockList(fKeepMediumLockList)
+    {
         AssertReturnVoidStmt(aMediumLockList != NULL, mRC = E_FAIL);
-        for (MediaList::const_iterator it = mChildrenToReparent.begin();
-             it != mChildrenToReparent.end();
-             ++it)
+        {
-            HRESULT rc2 = (*it)->addCaller();
-            if (FAILED(rc2))
+            {
-                mRC = E_FAIL;
-                for (MediaList::const_iterator it2 = mChildrenToReparent.begin();
-                     it2 != it;
-                     --it2)
+                {
-                    (*it2)->releaseCaller();
+                }
-                return;
+            }
+        }
-        mfChildrenCaller = true;
+    }
 …
         if (!mfKeepMediumLockList && mpMediumLockList)
             delete mpMediumLockList;
+        if (mfChildrenCaller)
+        {
+            for (MediaList::const_iterator it = mChildrenToReparent.begin();
+                 it != mChildrenToReparent.end();
+                 ++it)
+            {
+                (*it)->releaseCaller();
+            }
+        }
+        if (mpChildrenToReparent)
+            delete mpChildrenToReparent;
+    }
     const ComObjPtr<Medium> mTarget;
     bool mfMergeForward;
     /* When mChildrenToReparent is empty then mParentForTarget is non-null.
      * In other words: they are used in different cases. */
+    /* When mpChildrenToReparent is null then mParentForTarget is non-null and
+     * vice versa. In other words: they are used in different cases. */
     const ComObjPtr<Medium> mParentForTarget;
     MediaList mChildrenToReparent;
+    MediumLockList *mpChildrenToReparent;
     MediumLockList *mpMediumLockList;
 …
     AutoCaller mTargetCaller;
     AutoCaller mParentForTargetCaller;
-    bool mfChildrenCaller;
     bool mfKeepMediumLockList;
 };
 …
+}
+/**
+ * @note @a aState may be NULL if the state value is not needed (only for
+ *       in-process calls).
+ */
+STDMETHODIMP Medium::LockRead(MediumState_T *aState)
+{
+STDMETHODIMP Medium::LockRead(IToken **aToken)
+{
+    CheckComArgNotNull(aToken);
     AutoCaller autoCaller(this);
     if (FAILED(autoCaller.rc())) return autoCaller.rc();
 …
+    }
-    /* return the current state before */
-    if (aState)
-        *aState = m->state;
     HRESULT rc = S_OK;
 …
             m->state = MediumState_LockedRead;
+            ComObjPtr<MediumLockToken> pToken;
+            rc = pToken.createObject();
+            if (SUCCEEDED(rc))
+                rc = pToken->init(this, false /* fWrite */);
+            if (FAILED(rc))
+            {
+                --m->readers;
+                if (m->readers == 0)
+                    m->state = m->preLockState;
+                return rc;
+            }
+            pToken.queryInterfaceTo(aToken);
             break;
+        }
 …
  *       in-process calls).
  */
 STDMETHODIMP Medium::UnlockRead(MediumState_T *aState)
+HRESULT Medium::unlockRead(MediumState_T *aState)
+{
     AutoCaller autoCaller(this);
 …
+}
+/**
+ * @note @a aState may be NULL if the state value is not needed (only for
+ *       in-process calls).
+ */
+STDMETHODIMP Medium::LockWrite(MediumState_T *aState)
+{
+STDMETHODIMP Medium::LockWrite(IToken **aToken)
+{
+    CheckComArgNotNull(aToken);
     AutoCaller autoCaller(this);
     if (FAILED(autoCaller.rc())) return autoCaller.rc();
 …
+    }
-    /* return the current state before */
-    if (aState)
-        *aState = m->state;
     HRESULT rc = S_OK;
 …
             LogFlowThisFunc(("Okay - prev state=%d locationFull=%s\n", m->state, getLocationFull().c_str()));
             m->state = MediumState_LockedWrite;
+            ComObjPtr<MediumLockToken> pToken;
+            rc = pToken.createObject();
+            if (SUCCEEDED(rc))
+                rc = pToken->init(this, true /* fWrite */);
+            if (FAILED(rc))
+            {
+                m->state = m->preLockState;
+                return rc;
+            }
+            pToken.queryInterfaceTo(aToken);
             break;
+        }
 …
  *       in-process calls).
  */
 STDMETHODIMP Medium::UnlockWrite(MediumState_T *aState)
+HRESULT Medium::unlockWrite(MediumState_T *aState)
+{
     AutoCaller autoCaller(this);
 …
     HRESULT rc = S_OK;
     ComObjPtr <Progress> pProgress;
+    ComObjPtr<Progress> pProgress;
     Medium::Task *pTask = NULL;
 …
     alock.release();
     ComObjPtr <Progress> pProgress;
+    ComObjPtr<Progress> pProgress;
     ULONG mediumVariantFlags = 0;
 …
     bool fMergeForward = false;
     ComObjPtr<Medium> pParentForTarget;
     MediaList childrenToReparent;
+    MediumLockList *pChildrenToReparent = NULL;
     MediumLockList *pMediumLockList = NULL;
 …
     rc = prepareMergeTo(pTarget, NULL, NULL, true, fMergeForward,
                         pParentForTarget, childrenToReparent, pMediumLockList);
+                        pParentForTarget, pChildrenToReparent, pMediumLockList);
     if (FAILED(rc)) return rc;
     ComObjPtr <Progress> pProgress;
     rc = mergeTo(pTarget, fMergeForward, pParentForTarget, childrenToReparent,
+    ComObjPtr<Progress> pProgress;
+    rc = mergeTo(pTarget, fMergeForward, pParentForTarget, pChildrenToReparent,
                  pMediumLockList, &pProgress, false /* aWait */);
     if (FAILED(rc))
         cancelMergeTo(childrenToReparent, pMediumLockList);
+        cancelMergeTo(pChildrenToReparent, pMediumLockList);
     else
         pProgress.queryInterfaceTo(aProgress);
 …
     HRESULT rc = S_OK;
     ComObjPtr <Progress> pProgress;
+    ComObjPtr<Progress> pProgress;
     Medium::Task *pTask = NULL;
 …
     HRESULT rc = S_OK;
     ComObjPtr <Progress> pProgress;
+    ComObjPtr<Progress> pProgress;
     Medium::Task *pTask = NULL;
 …
     HRESULT rc = S_OK;
     ComObjPtr <Progress> pProgress;
+    ComObjPtr<Progress> pProgress;
     Medium::Task *pTask = NULL;
 …
  * @param fMergeForward Resulting merge direction (out).
  * @param pParentForTarget New parent for target medium after merge (out).
+ * @param aChildrenToReparent List of children of the source which will have
+ *                      to be reparented to the target after merge (out).
+ * @param aChildrenToReparent Medium lock list containing all children of the
+ *                      source which will have to be reparented to the target
+ *                      after merge (out).
  * @param aMediumLockList Medium locking information (out).
+ *
 …
                                bool &fMergeForward,
                                ComObjPtr<Medium> &pParentForTarget,
                                MediaList &aChildrenToReparent,
+                               MediumLockList * &aChildrenToReparent,
                                MediumLockList * &aMediumLockList)
+{
 …
     fMergeForward = false;
     pParentForTarget.setNull();
+    aChildrenToReparent.clear();
+    Assert(aChildrenToReparent == NULL);
+    aChildrenToReparent = NULL;
     Assert(aMediumLockList == NULL);
     aMediumLockList = NULL;
 …
+        {
             /* we will need to reparent children of the source */
+            aChildrenToReparent = new MediumLockList();
             for (MediaList::const_iterator it = getChildren().begin();
                  it != getChildren().end();
 …
+            {
                 pMedium = *it;
+                if (fLockMedia)
+                {
+                    rc = pMedium->LockWrite(NULL);
+                    if (FAILED(rc))
+                        throw rc;
+                }
+                aChildrenToReparent.push_back(pMedium);
+                aChildrenToReparent->Append(pMedium, true /* fLockWrite */);
+            }
+            if (fLockMedia && aChildrenToReparent)
+            {
+                treeLock.release();
+                rc = aChildrenToReparent->Lock();
+                treeLock.acquire();
+                if (FAILED(rc))
+                    throw rc;
+            }
+        }
 …
     if (FAILED(rc))
+    {
+        delete aMediumLockList;
+        aMediumLockList = NULL;
+        if (aMediumLockList)
+        {
+            delete aMediumLockList;
+            aMediumLockList = NULL;
+        }
+        if (aChildrenToReparent)
+        {
+            delete aChildrenToReparent;
+            aChildrenToReparent = NULL;
+        }
+    }
 …
                         bool fMergeForward,
                         const ComObjPtr<Medium> &pParentForTarget,
                         const MediaList &aChildrenToReparent,
+                        MediumLockList *aChildrenToReparent,
                         MediumLockList *aMediumLockList,
                         ComObjPtr <Progress> *aProgress,
+                        ComObjPtr<Progress> *aProgress,
                         bool aWait)
+{
 …
     HRESULT rc = S_OK;
     ComObjPtr <Progress> pProgress;
+    ComObjPtr<Progress> pProgress;
     Medium::Task *pTask = NULL;
 …
  * @note Locks the media from the chain for writing.
  */
 void Medium::cancelMergeTo(const MediaList &aChildrenToReparent,
+void Medium::cancelMergeTo(MediumLockList *aChildrenToReparent,
                            MediumLockList *aMediumLockList)
+{
 …
     delete aMediumLockList;
+    /* unlock the children which had to be reparented */
+    for (MediaList::const_iterator it = aChildrenToReparent.begin();
+         it != aChildrenToReparent.end();
+         ++it)
+    {
+        const ComObjPtr<Medium> &pMedium = *it;
+        AutoWriteLock alock(pMedium COMMA_LOCKVAL_SRC_POS);
+        pMedium->UnlockWrite(NULL);
+    }
+    /* unlock the children which had to be reparented, the destructor will do
+     * the work */
+    if (aChildrenToReparent)
+        delete aChildrenToReparent;
+}
 …
  * parent.
  */
 HRESULT Medium::fixParentUuidOfChildren(const MediaList &childrenToReparent)
+HRESULT Medium::fixParentUuidOfChildren(MediumLockList *pChildrenToReparent)
+{
     Assert(!isWriteLockOnCurrentThread());
 …
+            }
+            for (MediaList::const_iterator it = childrenToReparent.begin();
+                 it != childrenToReparent.end();
+            MediumLockList::Base::iterator childrenBegin = pChildrenToReparent->GetBegin();
+            MediumLockList::Base::iterator childrenEnd = pChildrenToReparent->GetEnd();
+            for (MediumLockList::Base::iterator it = childrenBegin;
+                 it != childrenEnd;
                  ++it)
+            {
+                Medium *pMedium = it->GetMedium();
                 /* VD_OPEN_FLAGS_INFO since UUID is wrong yet */
                 vrc = VDOpen(hdd,
                              (*it)->m->strFormat.c_str(),
                              (*it)->m->strLocationFull.c_str(),
+                             pMedium->m->strFormat.c_str(),
+                             pMedium->m->strLocationFull.c_str(),
                              VD_OPEN_FLAGS_INFO | m->uOpenFlagsDef,
                              (*it)->m->vdImageIfaces);
+                             pMedium->m->vdImageIfaces);
                 if (RT_FAILURE(vrc))
                     throw vrc;
 …
                 if (RT_FAILURE(vrc))
                     throw vrc;
-                (*it)->UnlockWrite(NULL);
+            }
+        }
 …
     /* Lock the medium, which makes the behavior much more consistent */
     alock.release();
+    ComPtr<IToken> pToken;
     if (uOpenFlags & (VD_OPEN_FLAGS_READONLY | VD_OPEN_FLAGS_SHAREABLE))
         rc = LockRead(NULL);
+        rc = LockRead(pToken.asOutParam());
     else
         rc = LockWrite(NULL);
+        rc = LockWrite(pToken.asOutParam());
     if (FAILED(rc)) return rc;
     alock.acquire();
 …
         m->preLockState = MediumState_Inaccessible;
+    HRESULT rc2;
+    if (uOpenFlags & (VD_OPEN_FLAGS_READONLY | VD_OPEN_FLAGS_SHAREABLE))
+        rc2 = UnlockRead(NULL);
+    else
+        rc2 = UnlockWrite(NULL);
+    if (SUCCEEDED(rc) && FAILED(rc2))
+        rc = rc2;
+    pToken->Abandon();
+    pToken.setNull();
     if (FAILED(rc)) return rc;
 …
     if (fRepairImageZeroParentUuid)
+    {
         rc = LockWrite(NULL);
+        rc = LockWrite(pToken.asOutParam());
         if (FAILED(rc)) return rc;
 …
+        }
+        rc = UnlockWrite(NULL);
+        if (SUCCEEDED(rc) && FAILED(rc2))
+            rc = rc2;
+        pToken->Abandon();
+        pToken.setNull();
         if (FAILED(rc)) return rc;
+    }
 …
                  * which cannot be part of the container at once so
                  * add each one in there individually */
                 if (task.mChildrenToReparent.size() > 0)
+                if (task.mpChildrenToReparent)
+                {
+                    for (MediaList::const_iterator it = task.mChildrenToReparent.begin();
+                         it != task.mChildrenToReparent.end();
+                    MediumLockList::Base::iterator childrenBegin = task.mpChildrenToReparent->GetBegin();
+                    MediumLockList::Base::iterator childrenEnd = task.mpChildrenToReparent->GetEnd();
+                    for (MediumLockList::Base::iterator it = childrenBegin;
+                         it != childrenEnd;
                          ++it)
+                    {
+                        Medium *pMedium = it->GetMedium();
                         /* VD_OPEN_FLAGS_INFO since UUID is wrong yet */
                         vrc = VDOpen(hdd,
                                      (*it)->m->strFormat.c_str(),
                                      (*it)->m->strLocationFull.c_str(),
+                                     pMedium->m->strFormat.c_str(),
+                                     pMedium->m->strLocationFull.c_str(),
                                      VD_OPEN_FLAGS_INFO | m->uOpenFlagsDef,
                                      (*it)->m->vdImageIfaces);
+                                     pMedium->m->vdImageIfaces);
                         if (RT_FAILURE(vrc))
                             throw vrc;
 …
                         if (RT_FAILURE(vrc))
                             throw vrc;
-                        (*it)->UnlockWrite(NULL);
+                    }
+                }
 …
             /* reparent source's children and disconnect the deleted
              * branch at the younger end */
             if (task.mChildrenToReparent.size() > 0)
+            if (task.mpChildrenToReparent)
+            {
                 /* obey {parent,child} lock order */
                 AutoWriteLock sourceLock(this COMMA_LOCKVAL_SRC_POS);
+                for (MediaList::const_iterator it = task.mChildrenToReparent.begin();
+                     it != task.mChildrenToReparent.end();
+                     it++)
+                MediumLockList::Base::iterator childrenBegin = task.mpChildrenToReparent->GetBegin();
+                MediumLockList::Base::iterator childrenEnd = task.mpChildrenToReparent->GetEnd();
+                for (MediumLockList::Base::iterator it = childrenBegin;
+                     it != childrenEnd;
+                     ++it)
+                {
                     Medium *pMedium = *it;
+                    Medium *pMedium = it->GetMedium();
                     AutoWriteLock childLock(pMedium COMMA_LOCKVAL_SRC_POS);
 …
          * don't own the merge chain, so release it in this case. */
         if (task.isAsync())
+        {
+            Assert(task.mChildrenToReparent.size() == 0);
+            cancelMergeTo(task.mChildrenToReparent, task.mpMediumLockList);
+        }
+            cancelMergeTo(task.mpChildrenToReparent, task.mpMediumLockList);
+    }

trunk/src/VBox/Main/src-server/MediumLock.cpp

-              r45595
+              r48297
 /*
  * Copyright (C) 2010 Oracle Corporation
+ * Copyright (C) 2010-2013 Oracle Corporation
+ *
  * This file is part of VirtualBox Open Source Edition (OSE), as
 …
+}
+HRESULT MediumLock::Lock()
+bool MediumLock::IsLocked() const
+{
+    return mIsLocked;
+}
+HRESULT MediumLock::Lock(bool aIgnoreLockedMedia)
+{
     if (mIsLocked)
 …
         default:
             if (mLockWrite)
+                rc = mMedium->LockWrite(NULL);
+            {
+                if (aIgnoreLockedMedia && (   state == MediumState_LockedRead
+                                           || state == MediumState_LockedWrite))
+                    return S_OK;
+                else
+                    rc = mMedium->LockWrite(mToken.asOutParam());
+            }
             else
+                rc = mMedium->LockRead(NULL);
+            {
+                if (aIgnoreLockedMedia && state == MediumState_LockedWrite)
+                    return S_OK;
+                else
+                    rc = mMedium->LockRead(mToken.asOutParam());
+            }
+    }
     if (SUCCEEDED(rc))
 …
+{
     HRESULT rc = S_OK;
+    if (mIsLocked && !mLockSkipped)
+    {
+        if (mLockWrite)
+            rc = mMedium->UnlockWrite(NULL);
+        else
+            rc = mMedium->UnlockRead(NULL);
+    if (mIsLocked && !mLockSkipped && mToken)
+    {
+        mToken->Abandon();
+        mToken.setNull();
+    }
     mMediumCaller.attach(NULL);
 …
+}
 HRESULT MediumLockList::Lock()
+HRESULT MediumLockList::Lock(bool fSkipOverLockedMedia /* = false */)
+{
     if (mIsLocked)
 …
          it++)
+    {
         rc = it->Lock();
+        rc = it->Lock(fSkipOverLockedMedia);
         if (FAILED(rc))
+        {

trunk/src/VBox/Main/src-server/SnapshotImpl.cpp

-              r47401
+              r48297
 /**
  * Implementation for IInternalMachineControl::deleteSnapshot().
+ * Implementation for IInternalMachineControl::DeleteSnapshot().
+ *
  * Gets called from Console::DeleteSnapshot(), and that's basically the
 …
                     bool fMergeForward,
                     const ComObjPtr<Medium> &aParentForTarget,
                     const MediaList &aChildrenToReparent,
+                    MediumLockList *aChildrenToReparent,
                     bool fNeedsOnlineMerge,
+                    MediumLockList *aMediumLockList)
+                    MediumLockList *aMediumLockList,
+                    const ComPtr<IToken> &aHDLockToken)
         : mpHD(aHd),
           mpSource(aSource),
 …
           mfMergeForward(fMergeForward),
           mpParentForTarget(aParentForTarget),
           mChildrenToReparent(aChildrenToReparent),
+          mpChildrenToReparent(aChildrenToReparent),
           mfNeedsOnlineMerge(fNeedsOnlineMerge),
+          mpMediumLockList(aMediumLockList)
+          mpMediumLockList(aMediumLockList),
+          mpHDLockToken(aHDLockToken)
     {}
 …
                     bool fMergeForward,
                     const ComObjPtr<Medium> &aParentForTarget,
                     const MediaList &aChildrenToReparent,
+                    MediumLockList *aChildrenToReparent,
                     bool fNeedsOnlineMerge,
                     MediumLockList *aMediumLockList,
+                    const ComPtr<IToken> &aHDLockToken,
                     const Guid &aMachineId,
                     const Guid &aSnapshotId)
 …
           mfMergeForward(fMergeForward),
           mpParentForTarget(aParentForTarget),
           mChildrenToReparent(aChildrenToReparent),
+          mpChildrenToReparent(aChildrenToReparent),
           mfNeedsOnlineMerge(fNeedsOnlineMerge),
           mpMediumLockList(aMediumLockList),
+          mpHDLockToken(aHDLockToken),
           mMachineId(aMachineId),
           mSnapshotId(aSnapshotId)
 …
     bool mfMergeForward;
     ComObjPtr<Medium> mpParentForTarget;
     MediaList mChildrenToReparent;
+    MediumLockList *mpChildrenToReparent;
     bool mfNeedsOnlineMerge;
     MediumLockList *mpMediumLockList;
+    /** optional lock token, used only in case mpHD is not merged/deleted */
+    ComPtr<IToken> mpHDLockToken;
     /* these are for reattaching the hard disk in case of a failure: */
     Guid mMachineId;
 …
             bool fMergeForward = false;
             ComObjPtr<Medium> pParentForTarget;
             MediaList childrenToReparent;
+            MediumLockList *pChildrenToReparent = NULL;
             bool fNeedsOnlineMerge = false;
             bool fOnlineMergePossible = aTask.m_fDeleteOnline;
             MediumLockList *pMediumLockList = NULL;
             MediumLockList *pVMMALockList = NULL;
+            ComPtr<IToken> pHDLockToken;
             ComObjPtr<MediumAttachment> pOnlineMediumAttachment;
             if (fOnlineMergePossible)
 …
                                              pVMMALockList, pSource, pTarget,
                                              fMergeForward, pParentForTarget,
                                              childrenToReparent,
+                                             pChildrenToReparent,
                                              fNeedsOnlineMerge,
+                                             pMediumLockList);
+                                             pMediumLockList,
+                                             pHDLockToken);
             treeLock.acquire();
             if (FAILED(rc))
 …
                                                    fMergeForward,
                                                    pParentForTarget,
                                                    childrenToReparent,
+                                                   pChildrenToReparent,
                                                    fNeedsOnlineMerge,
                                                    pMediumLockList,
+                                                   pHDLockToken,
                                                    replaceMachineId,
                                                    replaceSnapshotId));
 …
                                                    fMergeForward,
                                                    pParentForTarget,
                                                    childrenToReparent,
+                                                   pChildrenToReparent,
                                                    fNeedsOnlineMerge,
+                                                   pMediumLockList));
+                                                   pMediumLockList,
+                                                   pHDLockToken));
+        }
 …
                 if (it->mfNeedsOnlineMerge)
+                {
+                    // Put the medium merge information (MediumDeleteRec) where
+                    // SessionMachine::FinishOnlineMergeMedium can get at it.
+                    // This callback will arrive while onlineMergeMedium is
+                    // still executing, and there can't be two tasks.
+                    mConsoleTaskData.mDeleteSnapshotInfo = (void *)&(*it);
                     // online medium merge, in the direction decided earlier
                     rc = onlineMergeMedium(it->mpOnlineMediumAttachment,
 …
                                            it->mfMergeForward,
                                            it->mpParentForTarget,
                                            it->mChildrenToReparent,
+                                           it->mpChildrenToReparent,
                                            it->mpMediumLockList,
                                            aTask.pProgress,
                                            &fNeedsSave);
+                    mConsoleTaskData.mDeleteSnapshotInfo = NULL;
+                }
                 else
 …
                                                it->mfMergeForward,
                                                it->mpParentForTarget,
                                                it->mChildrenToReparent,
+                                               it->mpChildrenToReparent,
                                                it->mpMediumLockList,
                                                &aTask.pProgress,
 …
+        {
             cancelDeleteSnapshotMedium(it->mpHD, it->mpSource,
                                        it->mChildrenToReparent,
+                                       it->mpChildrenToReparent,
                                        it->mfNeedsOnlineMerge,
                                        it->mpMediumLockList, it->mMachineId,
                                        it->mSnapshotId);
+                                       it->mpMediumLockList, it->mpHDLockToken,
+                                       it->mMachineId, it->mSnapshotId);
+        }
+    }
 …
  * @param aMergeForward Merge direction decision (out).
  * @param aParentForTarget New parent if target needs to be reparented (out).
  * @param aChildrenToReparent Children which have to be reparented to the
  *                      target (out).
+ * @param aChildrenToReparent MediumLockList with children which have to be
+ *                      reparented to the target (out).
  * @param fNeedsOnlineMerge Whether this merge needs to be done online (out).
  *                      If this is set to @a true then the @a aVMMALockList
 …
  * @param aMediumLockList Where to store the created medium lock list (may
  *                      return NULL if no real merge is necessary).
+ * @param aHDLockToken  Where to store the write lock token for aHD, in case
+ *                      it is not merged or deleted (out).
+ *
  * @note Caller must hold media tree lock for writing. This locks this object
 …
                                                     bool &aMergeForward,
                                                     ComObjPtr<Medium> &aParentForTarget,
                                                     MediaList &aChildrenToReparent,
+                                                    MediumLockList * &aChildrenToReparent,
                                                     bool &fNeedsOnlineMerge,
+                                                    MediumLockList * &aMediumLockList)
+                                                    MediumLockList * &aMediumLockList,
+                                                    ComPtr<IToken> &aHDLockToken)
+{
     Assert(!mParent->getMediaTreeLockHandle().isWriteLockOnCurrentThread());
 …
                  && type != MediumType_Readonly, E_FAIL);
+    aChildrenToReparent = NULL;
     aMediumLockList = NULL;
     fNeedsOnlineMerge = false;
 …
              * is completed */
             alock.release();
             return aHD->LockWrite(NULL);
+            return aHD->LockWrite(aHDLockToken.asOutParam());
+        }
 …
             childLock.release();
             alock.release();
             return aHD->LockWrite(NULL);
+            return aHD->LockWrite(aHDLockToken.asOutParam());
+        }
 …
+            {
                 /* we will lock the children of the source for reparenting */
+                for (MediaList::const_iterator it = aChildrenToReparent.begin();
+                     it != aChildrenToReparent.end();
+                     ++it)
+                if (aChildrenToReparent && !aChildrenToReparent->IsEmpty())
+                {
+                    ComObjPtr<Medium> pMedium = *it;
+                    AutoReadLock mediumLock(pMedium COMMA_LOCKVAL_SRC_POS);
+                    if (pMedium->getState() == MediumState_Created)
+                    /* Cannot just call aChildrenToReparent->Lock(), as one of
+                     * the children is the one under which the current state of
+                     * the VM is located, and this means it is already locked
+                     * (for reading). Note that no special unlocking is needed,
+                     * because cancelMergeTo will unlock everything locked in
+                     * its context (using the unlock on destruction), and both
+                     * cancelDeleteSnapshotMedium (in case something fails) and
+                     * FinishOnlineMergeMedium re-define the read/write lock
+                     * state of everything which the VM need, search for the
+                     * UpdateLock method calls. */
+                    childLock.release();
+                    alock.release();
+                    rc = aChildrenToReparent->Lock(true /* fSkipOverLockedMedia */);
+                    alock.acquire();
+                    childLock.acquire();
+                    MediumLockList::Base::iterator childrenToReparentBegin = aChildrenToReparent->GetBegin();
+                    MediumLockList::Base::iterator childrenToReparentEnd = aChildrenToReparent->GetEnd();
+                    for (MediumLockList::Base::iterator it = childrenToReparentBegin;
+                         it != childrenToReparentEnd;
+                         ++it)
+                    {
+                        mediumLock.release();
+                        childLock.release();
+                        alock.release();
+                        rc = pMedium->LockWrite(NULL);
+                        alock.acquire();
+                        childLock.acquire();
+                        mediumLock.acquire();
+                        if (FAILED(rc))
+                            throw rc;
+                    }
+                    else
+                    {
+                        mediumLock.release();
+                        childLock.release();
+                        alock.release();
+                        rc = aVMMALockList->Update(pMedium, true);
+                        alock.acquire();
+                        childLock.acquire();
+                        mediumLock.acquire();
+                        if (FAILED(rc))
+                        ComObjPtr<Medium> pMedium = it->GetMedium();
+                        AutoReadLock mediumLock(pMedium COMMA_LOCKVAL_SRC_POS);
+                        if (!it->IsLocked())
+                        {
                             mediumLock.release();
                             childLock.release();
                             alock.release();
                             rc = pMedium->LockWrite(NULL);
+                            rc = aVMMALockList->Update(pMedium, true);
                             alock.acquire();
                             childLock.acquire();
 …
  * @param fNeedsOnlineMerge Whether this merge needs to be done online.
  * @param aMediumLockList Medium locks to cancel.
+ * @param aHDLockToken  Optional write lock token for aHD.
  * @param aMachineId    Machine id to attach the medium to.
  * @param aSnapshotId   Snapshot id to attach the medium to.
 …
 void SessionMachine::cancelDeleteSnapshotMedium(const ComObjPtr<Medium> &aHD,
                                                 const ComObjPtr<Medium> &aSource,
                                                 const MediaList &aChildrenToReparent,
+                                                MediumLockList *aChildrenToReparent,
                                                 bool fNeedsOnlineMerge,
                                                 MediumLockList *aMediumLockList,
+                                                const ComPtr<IToken> &aHDLockToken,
                                                 const Guid &aMachineId,
                                                 const Guid &aSnapshotId)
 …
         if (aHD->getParent().isNull())
+        {
+            HRESULT rc = aHD->UnlockWrite(NULL);
+            AssertComRC(rc);
+            Assert(!aHDLockToken.isNull());
+            if (!aHDLockToken.isNull())
+            {
+                HRESULT rc = aHDLockToken->Abandon();
+                AssertComRC(rc);
+            }
+        }
         else
 …
  * @param aMergeForward Merge direction.
  * @param aParentForTarget New parent if target needs to be reparented.
  * @param aChildrenToReparent Children which have to be reparented to the
  *                      target.
+ * @param aChildrenToReparent Medium lock list with children which have to be
+ *                      reparented to the target.
  * @param aMediumLockList Where to store the created medium lock list (may
  *                      return NULL if no real merge is necessary).
 …
                                           bool fMergeForward,
                                           const ComObjPtr<Medium> &aParentForTarget,
                                           const MediaList &aChildrenToReparent,
+                                          MediumLockList *aChildrenToReparent,
                                           MediumLockList *aMediumLockList,
                                           ComObjPtr<Progress> &aProgress,
 …
                        && uTargetIdx != (unsigned)-1, E_FAIL);
-        // For forward merges, tell the VM what images need to have their
-        // parent UUID updated. This cannot be done in VBoxSVC, as opening
-        // the required parent images is not safe while the VM is running.
-        // For backward merges this will be simply an array of size 0.
-        com::SafeIfaceArray<IMedium> childrenToReparent(aChildrenToReparent);
         ComPtr<IInternalSessionControl> directControl;
+        {
 …
         rc = directControl->OnlineMergeMedium(aMediumAttachment,
                                               uSourceIdx, uTargetIdx,
-                                              aSource, aTarget,
-                                              fMergeForward, aParentForTarget,
-                                              ComSafeArrayAsInParam(childrenToReparent),
                                               aProgress);
         if (FAILED(rc))
 …
 /**
  * Implementation for IInternalMachineControl::finishOnlineMergeMedium().
+ * Implementation for IInternalMachineControl::FinishOnlineMergeMedium().
+ *
  * Gets called after the successful completion of an online merge from
 …
  * can continue with the updated state of the medium chain.
  */
+STDMETHODIMP SessionMachine::FinishOnlineMergeMedium(IMediumAttachment *aMediumAttachment,
+                                                     IMedium *aSource,
+                                                     IMedium *aTarget,
+                                                     BOOL aMergeForward,
+                                                     IMedium *aParentForTarget,
+                                                     ComSafeArrayIn(IMedium *, aChildrenToReparent))
+STDMETHODIMP SessionMachine::FinishOnlineMergeMedium()
+{
     HRESULT rc = S_OK;
+    ComObjPtr<Medium> pSource(static_cast<Medium *>(aSource));
+    ComObjPtr<Medium> pTarget(static_cast<Medium *>(aTarget));
+    ComObjPtr<Medium> pParentForTarget(static_cast<Medium *>(aParentForTarget));
+    MediumDeleteRec *pDeleteRec = (MediumDeleteRec *)mConsoleTaskData.mDeleteSnapshotInfo;
+    AssertReturn(pDeleteRec, E_FAIL);
     bool fSourceHasChildren = false;
 …
     ComObjPtr<Medium> targetChild;
     if (aMergeForward)
+    if (pDeleteRec->mfMergeForward)
+    {
         // first, unregister the target since it may become a base
         // hard disk which needs re-registration
         rc = mParent->unregisterMedium(pTarget);
+        rc = mParent->unregisterMedium(pDeleteRec->mpTarget);
         AssertComRC(rc);
         // then, reparent it and disconnect the deleted branch at
         // both ends (chain->parent() is source's parent)
         pTarget->deparent();
         pTarget->setParent(pParentForTarget);
         if (pParentForTarget)
             pSource->deparent();
+        pDeleteRec->mpTarget->deparent();
+        pDeleteRec->mpTarget->setParent(pDeleteRec->mpParentForTarget);
+        if (pDeleteRec->mpParentForTarget)
+            pDeleteRec->mpSource->deparent();
         // then, register again
         rc = mParent->registerMedium(pTarget, &pTarget, DeviceType_HardDisk);
+        rc = mParent->registerMedium(pDeleteRec->mpTarget, &pDeleteRec->mpTarget, DeviceType_HardDisk);
         AssertComRC(rc);
+    }
     else
+    {
         Assert(pTarget->getChildren().size() == 1);
         targetChild = pTarget->getChildren().front();
+        Assert(pDeleteRec->mpTarget->getChildren().size() == 1);
+        targetChild = pDeleteRec->mpTarget->getChildren().front();
         // disconnect the deleted branch at the elder end
 …
         // Update parent UUIDs of the source's children, reparent them and
         // disconnect the deleted branch at the younger end
+        com::SafeIfaceArray<IMedium> childrenToReparent(ComSafeArrayInArg(aChildrenToReparent));
+        if (childrenToReparent.size() > 0)
+        if (pDeleteRec->mpChildrenToReparent && !pDeleteRec->mpChildrenToReparent->IsEmpty())
+        {
             fSourceHasChildren = true;
 …
             // we must continue. The worst possible result is that the images
             // need manual fixing via VBoxManage to adjust the parent UUID.
+            MediaList toReparent;
+            for (size_t i = 0; i < childrenToReparent.size(); i++)
+            treeLock.release();
+            pDeleteRec->mpTarget->fixParentUuidOfChildren(pDeleteRec->mpChildrenToReparent);
+            // The childen are still write locked, unlock them now and don't
+            // rely on the destructor doing it very late.
+            pDeleteRec->mpChildrenToReparent->Unlock();
+            treeLock.acquire();
+            // obey {parent,child} lock order
+            AutoWriteLock sourceLock(pDeleteRec->mpSource COMMA_LOCKVAL_SRC_POS);
+            MediumLockList::Base::iterator childrenBegin = pDeleteRec->mpChildrenToReparent->GetBegin();
+            MediumLockList::Base::iterator childrenEnd = pDeleteRec->mpChildrenToReparent->GetEnd();
+            for (MediumLockList::Base::iterator it = childrenBegin;
+                 it != childrenEnd;
+                 ++it)
+            {
+                Medium *pMedium = static_cast<Medium *>(childrenToReparent[i]);
+                toReparent.push_back(pMedium);
+            }
+            treeLock.release();
+            pTarget->fixParentUuidOfChildren(toReparent);
+            treeLock.acquire();
+            // obey {parent,child} lock order
+            AutoWriteLock sourceLock(pSource COMMA_LOCKVAL_SRC_POS);
+            for (size_t i = 0; i < childrenToReparent.size(); i++)
+            {
+                Medium *pMedium = static_cast<Medium *>(childrenToReparent[i]);
+                Medium *pMedium = it->GetMedium();
                 AutoWriteLock childLock(pMedium COMMA_LOCKVAL_SRC_POS);
                 pMedium->deparent();  // removes pMedium from source
                 pMedium->setParent(pTarget);
+                pMedium->setParent(pDeleteRec->mpTarget);
+            }
+        }
 …
     /* unregister and uninitialize all hard disks removed by the merge */
     MediumLockList *pMediumLockList = NULL;
+    MediumAttachment *pMediumAttachment = static_cast<MediumAttachment *>(aMediumAttachment);
+    rc = mData->mSession.mLockedMedia.Get(pMediumAttachment, pMediumLockList);
+    const ComObjPtr<Medium> &pLast = aMergeForward ? pTarget : pSource;
+    rc = mData->mSession.mLockedMedia.Get(pDeleteRec->mpOnlineMediumAttachment, pMediumLockList);
+    const ComObjPtr<Medium> &pLast = pDeleteRec->mfMergeForward ? pDeleteRec->mpTarget : pDeleteRec->mpSource;
     AssertReturn(SUCCEEDED(rc) && pMediumLockList, E_FAIL);
     MediumLockList::Base::iterator lockListBegin =
 …
         /* The target and all images not merged (readonly) are skipped */
         if (   pMedium == pTarget
+        if (   pMedium == pDeleteRec->mpTarget
             || pMedium->getState() == MediumState_LockedRead)
+        {
 …
              * and therefore we cannot uninit() it (it's therefore
              * the caller's responsibility) */
             if (pMedium == aSource)
+            if (pMedium == pDeleteRec->mpSource)
+            {
                 Assert(pSource->getChildren().size() == 0);
                 Assert(pSource->getFirstMachineBackrefId() == NULL);
+                Assert(pDeleteRec->mpSource->getChildren().size() == 0);
+                Assert(pDeleteRec->mpSource->getFirstMachineBackrefId() == NULL);
+            }
 …
      * attachment, as the previously associated one (source) is now deleted.
      * Without the immediate update the VM could not continue running. */
     if (!aMergeForward && !fSourceHasChildren)
+    {
         AutoWriteLock attLock(pMediumAttachment COMMA_LOCKVAL_SRC_POS);
         pMediumAttachment->updateMedium(pTarget);
+    if (!pDeleteRec->mfMergeForward && !fSourceHasChildren)
+    {
+        AutoWriteLock attLock(pDeleteRec->mpOnlineMediumAttachment COMMA_LOCKVAL_SRC_POS);
+        pDeleteRec->mpOnlineMediumAttachment->updateMedium(pDeleteRec->mpTarget);
+    }

trunk/src/VBox/Main/src-server/VirtualBoxImpl.cpp

-              r47597
+              r48297
 /**
+ * Returns the lock handle which protects the machines list. As opposed
+ * to version 3.1 and earlier, these lists are no longer protected by the
+ * VirtualBox lock, but by this more specialized lock. Mind the locking
+ * order: always request this lock after the VirtualBox object lock but
+ * before the locks of any machine object. See AutoLock.h.
+ */
+RWLockHandle& VirtualBox::getMachinesListLockHandle()
+{
+    return m->lockMachines;
+}
+/**
  * Returns the lock handle which protects the media trees (hard disks,
  * DVDs, floppies). As opposed to version 3.1 and earlier, these lists

Note: See TracChangeset for help on using the changeset viewer.

Download in other formats:

© 2025 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette