libvirt

mirror of https://gitlab.com/libvirt/libvirt.git synced 2024-08-06 08:53:48 +00:00

Libvirt provides a portable, long term stable C API for managing the virtualization technologies provided by many operating systems. It includes support for QEMU, KVM, Xen, LXC, bhyve, Virtuozzo, VMware vCenter and ESX, VMware Desktop, Hyper-V, VirtualBox and the POWER Hypervisor.

Go to file

Stefan Berger 4435f3c477 nwfilter: resolve deadlock between VM ops and filter update This is from a bug report and conversation on IRC where Soren reported that while a filter update is occurring on one or more VMs (due to a rule having been edited for example), a deadlock can occur when a VM referencing a filter is started. The problem is caused by the two locking sequences of qemu driver, qemu domain, filter # for the VM start operation filter, qemu_driver, qemu_domain # for the filter update operation that obviously don't lock in the same order. The problem is the 2nd lock sequence. Here the qemu_driver lock is being grabbed in qemu_driver:qemudVMFilterRebuild() The following solution is based on the idea of trying to re-arrange the 2nd sequence of locks as follows: qemu_driver, filter, qemu_driver, qemu_domain and making the qemu driver recursively lockable so that a second lock can occur, this would then lead to the following net-locking sequence qemu_driver, filter, qemu_domain where the 2nd qemu_driver lock has been ( logically ) eliminated. The 2nd part of the idea is that the sequence of locks (filter, qemu_domain) and (qemu_domain, filter) becomes interchangeable if all code paths where filter AND qemu_domain are locked have a preceding qemu_domain lock that basically blocks their concurrent execution So, the following code paths exist towards qemu_driver:qemudVMFilterRebuild where we now want to put a qemu_driver lock in front of the filter lock. -> nwfilterUndefine() [ locks the filter ] -> virNWFilterTestUnassignDef() -> virNWFilterTriggerVMFilterRebuild() -> qemudVMFilterRebuild() -> nwfilterDefine() -> virNWFilterPoolAssignDef() [ locks the filter ] -> virNWFilterTriggerVMFilterRebuild() -> qemudVMFilterRebuild() -> nwfilterDriverReload() -> virNWFilterPoolLoadAllConfigs() ->virNWFilterPoolObjLoad() -> virNWFilterPoolAssignDef() [ locks the filter ] -> virNWFilterTriggerVMFilterRebuild() -> qemudVMFilterRebuild() -> nwfilterDriverStartup() -> virNWFilterPoolLoadAllConfigs() ->virNWFilterPoolObjLoad() -> virNWFilterPoolAssignDef() [ locks the filter ] -> virNWFilterTriggerVMFilterRebuild() -> qemudVMFilterRebuild() Qemu is not the only driver using the nwfilter driver, but also the UML driver calls into it. Therefore qemuVMFilterRebuild() can be exchanged with umlVMFilterRebuild() along with the driver lock of qemu_driver that can now be a uml_driver. Further, since UML and Qemu domains can be running on the same machine, the triggering of a rebuild of the filter can touch both types of drivers and their domains. In the patch below I am now extending each nwfilter callback driver with functions for locking and unlocking the (VM) driver (UML, QEMU) and introduce new functions for locking all registered callback drivers and unlocking them. Then I am distributing the lock-all-cbdrivers/unlock-all-cbdrivers call into the above call paths. The last shown callpath starting with nwfilterDriverStart() is problematic since it is initialize before the Qemu and UML drives are and thus a lock in the path would result in a NULL pointer attempted to be locked -- the call to virNWFilterTriggerVMFilterRebuild() is never called, so we never lock either the qemu_driver or the uml_driver in that path. Therefore, only the first 3 paths now receive calls to lock and unlock all callback drivers. Now that the locks are distributed where it matters I can remove the qemu_driver and uml_driver lock from qemudVMFilterRebuild() and umlVMFilterRebuild() and not requiring the recursive locks. For now I want to put this out as an RFC patch. I have tested it by 'stretching' the critical section after the define/undefine functions each lock the filter so I can (easily) concurrently execute another VM operation (suspend,start). That code is in this patch and if you want you can de-activate it. It seems to work ok and operations are being blocked while the update is being done. I still also want to verify the other assumption above that locking filter and qemu_domain always has a preceding qemu_driver lock.		2010-10-13 10:33:26 -04:00
.gnulib@2bb63bfb25	build: require pkg-config for bootstrap	2010-10-05 13:54:39 -06:00
build-aux	build: update gnulib	2010-03-26 19:16:37 +01:00
daemon	Remote protocol implementation of virDomainSet/GetMemoryParameters	2010-10-12 19:26:10 +02:00
docs	Fixes for documentation extraction	2010-10-13 13:50:07 +02:00
examples	build: fix example build on MacOS X	2010-09-30 11:34:00 -06:00
include	Fixes for documentation extraction	2010-10-13 13:50:07 +02:00
m4	build: restore operation of bit-rotted 'make cov'	2010-07-29 13:41:25 -06:00
po	Libvirt release 0.8.4	2010-09-10 17:24:36 +02:00
proxy	build: fix up some compiler flags	2010-05-17 09:12:42 -06:00
python	Fix several minor problems introduced by the memtune series	2010-10-12 21:24:11 +02:00
src	nwfilter: resolve deadlock between VM ops and filter update	2010-10-13 10:33:26 -04:00
tests	Implement support for virtio plan9fs filesystem passthrough in QEMU	2010-10-13 12:04:50 +01:00
tools	virsh: update comment about parsing	2010-10-13 07:52:33 -06:00
.gitignore	build: restore operation of bit-rotted 'make cov'	2010-07-29 13:41:25 -06:00
.gitmodules	make .gnulib a submodule	2009-07-08 16:17:51 +02:00
.mailmap	maint: update an email address preference	2010-08-10 08:13:22 -06:00
.x-sc_avoid_ctype_macros	exempt gnulib from ctype-macros prohibition	2008-10-28 17:36:31 +00:00
.x-sc_avoid_if_before_free	avoid a "make syntax-check" failure	2009-07-09 20:00:37 +02:00
.x-sc_avoid_write	Fully asynchronous monitor I/O processing	2009-11-10 13:27:18 +00:00
.x-sc_m4_quote_check	syntax-check: enable more checks	2009-02-03 13:08:36 +00:00
.x-sc_prohibit_always_true_header_tests	build: update gnulib	2010-05-06 14:35:38 -06:00
.x-sc_prohibit_asprintf	add .x-sc_prohibit_asprintf	2008-12-23 13:40:42 +00:00
.x-sc_prohibit_gethostby	Various syntax-check fixes.	2009-10-26 10:34:05 +01:00
.x-sc_prohibit_gethostname	Add a new syntax-check rule for gethostname.	2009-10-26 10:34:27 +01:00
.x-sc_prohibit_gettext_noop	build: fix syntax-check problems	2010-04-12 16:43:05 -06:00
.x-sc_prohibit_have_config_h	maint: sync from coreutils	2009-01-29 18:06:19 +00:00
.x-sc_prohibit_HAVE_MBRTOWC	maint: sync from coreutils	2009-01-29 18:06:19 +00:00
.x-sc_prohibit_nonreentrant	Tighten up nonreentrant syntax-check.	2009-10-26 10:33:42 +01:00
.x-sc_prohibit_readlink	Add a rule to check for uses of readlink.	2010-01-22 09:42:35 -05:00
.x-sc_prohibit_strcmp	exempt gnulib/ from "make syntax-check" strcmp prohibition	2008-05-14 21:18:27 +00:00
.x-sc_prohibit_strcmp_and_strncmp	Ignore docs/ directory for strcmp() syntax check	2009-11-23 11:58:13 +00:00
.x-sc_prohibit_strncpy	Avoid checking against strncpy in virsh.c	2010-10-12 19:26:10 +02:00
.x-sc_prohibit_test_minus_ao	build: fix syntax-check problems	2010-04-12 16:43:05 -06:00
.x-sc_prohibit_VIR_ERR_NO_MEMORY	Various syntax-check fixes.	2009-10-26 10:34:05 +01:00
.x-sc_require_config_h	Various syntax-check fixes.	2009-10-26 10:34:05 +01:00
.x-sc_require_config_h_first	Misc syntax-check fixes	2009-09-21 14:41:47 +01:00
.x-sc_trailing_blank	build: exempt *.ico files from the trailing blank check	2008-10-16 13:28:07 +00:00
.x-sc_unmarked_diagnostics	build: import latest gnulib	2010-04-02 10:18:55 -06:00
acinclude.m4	maint: turn on gcc logical-op checking	2010-07-28 15:25:36 +02:00
AUTHORS	virsh: better support double quote	2010-10-13 07:52:32 -06:00
autobuild.sh	autobuild.sh: avoid bashism	2010-06-04 10:03:52 -06:00
autogen.sh	build: require pkg-config for bootstrap	2010-10-05 13:54:39 -06:00
bootstrap	build: require pkg-config for bootstrap	2010-10-05 13:54:39 -06:00
bootstrap.conf	build: require pkg-config for bootstrap	2010-10-05 13:54:39 -06:00
cfg.mk	Avoid unnecessary bootstrap runs in VPATH builds	2010-08-11 09:20:26 +02:00
ChangeLog-old	generate ChangeLog from git logs into distribution tarball	2009-07-08 16:17:51 +02:00
configure.ac	configure: disable network and storage-fs drivers on mac os x	2010-10-06 00:29:58 +11:00
COPYING.LIB	remove all trailing blank lines	2009-07-16 15:06:42 +02:00
HACKING	docs: hacking: explain why using curly braces well is important	2010-05-04 15:41:21 +02:00
libvirt.pc.in	* libvirt.pc.in: applied patch from Daniel Berrange to fix --cflags	2006-03-24 13:18:12 +00:00
libvirt.spec.in	Libvirt release 0.8.4	2010-09-10 17:24:36 +02:00
Makefile.am	build: restore operation of bit-rotted 'make cov'	2010-07-29 13:41:25 -06:00
Makefile.nonreentrant	syntax-check: enable prohibit_nonreentrant	2009-02-05 16:28:41 +00:00
mingw32-libvirt.spec.in	mingw: match recent changes in spec file	2010-09-07 11:17:13 -06:00
README	Correct typos in the documentation (Atsushi SAKAI)	2008-01-24 10:15:13 +00:00
README-hacking	maint: relax git minimum version	2010-02-24 14:29:27 -05:00
TODO	Remove all trailing blanks; turn on the rule to detect them.	2008-02-05 19:27:37 +00:00

README

         LibVirt : simple API for virtualization

  Libvirt is a C toolkit to interact with the virtualization capabilities
of recent versions of Linux (and other OSes). It is free software
available under the GNU Lesser General Public License. Virtualization of
the Linux Operating System means the ability to run multiple instances of
Operating Systems concurrently on a single hardware system where the basic
resources are driven by a Linux instance. The library aim at providing
long term stable C API initially for the Xen paravirtualization but
should be able to integrate other virtualization mechanisms if needed.

Daniel Veillard <veillard@redhat.com>