------------------------------------------------------------------- Thu Sep 18 06:17:34 UTC 2025 - Dario Faggioli - Jump from 1.9.8 to 1.15.1 - Update to version 1.15.1: * unixgram: Make fd non-blocking - Update to version 1.15.0: * clippy: Fix clippy uninlined_format_args * build: Bump virtio-bindings to v0.2.6 * nitro: Fix typos * fdt: Gate aarch64 fdt behind a module * README: add libkrun logo * net: support multiple network interfaces * Enable libkrun on RISC-V 64-bit architecture * Add AUTHORS file and update authors in metadata * nitro: Remove vsock proxying + documentation additions * Devices: clean up interrupt sending code * Move/vendor the krun-sys crate in this repository + new version of the crate * Add preliminary Intel TDX support [v2] * init.c: only use KRUN_EXIT_CODE_IOCTL if root is really virtiofs * Introduce an API for hooking up GPU display (callbacks) * rustc: Fix mismatched_lifetime_syntaxes * aarch64: Expose pointer authentication to guests * Add support for EDID display information * Simplify booting from block devices * net: implement a backend for tap devices * KRUN_* environment variables should be preserved when a custom kernel cmdline is configured * Implement a ENOMEM workaround for our integration tests * libkrun: on legacy interface delay net creation * console: avoid logging error on ENOTTY * init: translate unicode strings into ascii - Update to version 1.14.0: * Tweak the Makefile to decouple EFI and GPU features * Update rust-vmm/kvm dependencies * Preliminary support for AWS Nitro Enclaves * misc: Use align module form vmm-sys-util * vmm: fix worker thread panic * Fix main breakage * Fix the library install name and path * arch: aarch64: Provide initrd_size to arch_memory_regions - Update to version 1.13.0: * examples: Fix connect_to_passt function by @mtjhrc in #336 * Introduce a new krun_init_log() API by @mtjhrc in #326 * Remove orphaned source files which are never used by @mtjhrc in #337 * hvf: mask SME in ID_AA64PFR1_EL1 by @slp in #338 * arch/aarch64: replace offset__of with a safe macro by @slp in #339 * vmm: bump kbs-types and drop tee-sev by @slp in #340 - update to version 1.12.0: * Add support for userspace IOAPIC * include: Add #ifndef header guards * Update KVM dependencies * tee/snp: Update SEV-SNP APIs, use KVM guest_memfd * Fix clippy warnings * Implement the ability to record the exit code from the entrypoint in userspace * hvf: Add API to verify Nested Virt is supported * arch_gen: add Cargo edition * Consolidate worker threads - Update to version 1.11.0: * fix krunkit typo in README * Drop bare SEV in favor of SEV-ES * devices/console: Fix a bug which would cause libkrun to hang on exit * demote WARN log to DEBUG * Connect to gvproxy socket * Fix incremental builds using make * Fix clippy warnings * tee: Remove legacy AMD-SEV module * libkrun.pc.in: add libs and cflags directories * Introduce an E2E testing framework * init: escape json strings * Remove vendor-ed imago crate * CODEOWNERS: add jakecorrenti * upgrade imago to 0.1.4 * Support loading external kernels * libkrun: avoid failing when libkrunfw is missing * vsock: TCP test + fix a bug leading to an error in TCP connect call in guest * Remove amd-sev specific cmdline * ci: add integration tests * libkrun: fix shutdown_efd for efi flavor * libkrun/macos: only spawn helper thread with a gpu * ci: consolidate tests on github runners * Added new functions: krun_setuid, krun_setgid * Revert "vsock: Fix TCP connection bug" and implement a different approach * Generalize interrupt controllers and implement support for the in-kernel GICv3 in HVF * Implement support for HVF Nested Virtualization * Another round of clippy fixes and deprecated unit tests * devices: set CacheType::Unsafe for macOS raw disks * libkrun: stop using patchelf - Update to version 1.10.0: * Add support for Qcow2 disk images * Fix Code Quality failure * hvf: ensure vcpus run in the right thread * Emulate GICv3 on macos * virtio/fs: Check capabilities & act accordingly * net: Allow creating vsocks in listen mode. * Adopt latest clippy suggestions * Add pipewire cross domain channel type. * Don't use SO_REUSEPORT with UNIX sockets ------------------------------------------------------------------- Mon Nov 18 23:58:38 UTC 2024 - jfehlig@suse.com - Update to version 1.9.8: * Bump version to 1.9.8 * Update rust-vmm deps * Bump version to 1.9.7 * vmm: update sev crates to latest version * chroot_vm: fix argument types * Bump version to 1.9.6 * vmm/amdsnp: Remove deprecated as_slice() for guest memory * vmm/amdsnp: Set SMT bit in guest policy * Add X11 cross domain channel type. * rutabaga: cross_domain: Handle Host->Guest dmabufs correctly * rutabaga: cross_domain: Clean up resource item logic * vmm: Create an export table and pass it to the FS and GPU code. * gpu: Plumb through export_table into cross_domain * virtio/fs: Add support for exporting FDs to other subsystems * rutabaga: cross_domain: Signal host-initiated EOF * rutabaga: cross_domain: Fix EPOLLRDHUP logic * device_manager: Keep SHM region order * virtio/fs/linux: Fix redundant close() * virtio/fs/linux: Fix xattrs on symlinks (leak fix) * virtio/fs/linux: Fix xattrs on symlinks * virtio, krun: Name all the worker threads * Bump version to 1.9.5 * init: support other locations for krun_config * virtio/fs/linux: announce submounts * Add krun_add_disk() method; deprecate set_*_disk * Drop outdated comment * Drop deadcode * Drop unused is_disk_root field * README: update for virtio-block on non-SEV * devices/legacy: use pl011 for earlycon in aarch64 * libkrun: use unwrap_or while grabbing mac address * virtio/fs/macos: drop dead code * virtio/queue: use inspect instead of map * CODEOWNERS: remove myself * libkrun: (gpu/fs) introduce variants set shm size * virtio/fs/macos: implement DAX support * virtio/fs: plumb SHM region into worker * arch: implement SHM region management * vmm: unify create_guest_memory * vmm/vstate/linux: remove broken kvm_context test * clippy: minor fixes in docs * virtio/fs/macos: announce submounts * virtio/fs: add FUSE ATTR_SUBMOUNT support * virtio/fs/macos: decouple host-guest inodes * Bump version to 1.9.4 * Update kbs-types dependency to 0.7.0 * Make linter happy * Remove contention on the gic * virtiofs: fallocate: should enlarge but not shrink the file * Bump version to 1.9.3 * vmm: Fix the nomodule kernel parameter * console: avoid using the raw ioctl for TIOCGWINSZ * virtio/fs: translate raw errors in server.rs * Various minor fixes for rust 1.79.0 * edk2: update KRUN_EFI binary * hvf: support ARM PSCI SYSTEM_OFF * gpu: use resource_map() for mapping BOs * rutabaga: add support for virgl's resource_map2 * Bump version to 1.9.2 * Update kvm-bindings and kvm-ioctls deps * vmm: drop unused code for boot time logging * rutabaga: cross_domain: Fix EINTR handling * Bump version to 1.9.1 * virtio/fs: Fix corrupted dirents due to trailing garbage * init: tell the kernel to reap our children for us * builder: only enable TSI if there are no netdevs * Add SMBIOS OEM Strings support (aarch64 only) * Add SMBIOS internal crate * Add edk2 firmware with SMBIOS support (aarch64) ------------------------------------------------------------------- Mon Jun 03 08:46:39 UTC 2024 - dfaggioli@suse.com - Update to version 1.9.0: * console: send a resize event on PORT_READY by @slp in #179 * Fix another batch of new clippy warnings by @slp in #182 * Fix constness when taking an array of string pointers by @teohhanhui in #181 * Fix new lints in Rust 1.78 by @teohhanhui in #184 * Use the correct documentation comment style recognized by clang by @teohhanhui in #183 * virtio/snd: import virtio-snd from vhost-user-sound by @slp in #186 - Changes from 1.8.1: * VirtIO optimizations - Changes from 1.8.0: * Implement stdin/stdout/stderr redirection support using multiport virtio-console * devices/legacy: import PL011 for aarch64 * init: accept arguments from the "args" Field * Fix various minor issues on macOS and add a CI workflow for this OS * Add Matej Hrica (mtjhrc) to CODEOWNERS * Implement an EFI flavor * Implement krun_add_vsock_port() and UnixProxy for guest communication with host UNIX sockets. * Implement the infrastructure to support sending shut down signals to the guest * lib: allow having multiple virtio-fs devices * devices/net: allow configuring a custom MAC * Import SECURITY_CTX support from virtiofsd * Makefile: fix EFI library naming * virtio/net: implement gvproxy backend * macos/eventfd: ignore EAGAIN on write * Import rutabaga_gfx+virtio_gpu from crosvm * devices/vsock/unix: implement update_peer_credit * devices/console: implement an empty port input * Extend virtio-gpu to support Venus on macOS * libkrun: Extend API to redirect console to file * virtio/fs/macos: overhaul to use macos inodes ------------------------------------------------------------------- Thu May 30 14:14:56 UTC 2024 - dfaggioli@suse.com - Update to version 1.7.2: * Fix aarch64 build by adapting to changes in kvm-ioctl - Changes from 1.7.1 * Update kbs-types version to 0.5 and release 1.7.1 ------------------------------------------------------------------- Thu May 30 13:38:30 UTC 2024 - dfaggioli@suse.com - Update to version 1.7.0: * SNP Attestation * Read TEE config from the end of the block device * De-vendorize kbs-types * Remove libfdt dependency * init: place SEV behind build-time conditional * devices/fs: fix reading the end of init.krun * init: don't build init.c on SEV flavor * Prepare to support libkrunfw 4.x * init: Report an error when execution of the user binary fails * virtio-net implementation using passt * Make krun_set_vm_config use the same argument type for num_vcpus as ... * Update sev crate to 1.2.0 * virtio net bugfixes and performance improvement * Makefile: De-couple KBS init sources from SEV-SNP * Update rust-vmm deps and bump version for upcoming release - Changes from 1.5.1 * Fix CI clippy * Add a pkgconf file * examples: Fix error handling of krun_create_ctx * VSOCK: fix reaper timeout * Fix typo in README.md * macos: implement host->guest time sync * Bump version to v1.5.1 - Changes from 1.5.0 * devices: update lru dep to 0.9 * Introduce the krun_set_data_disk API. ------------------------------------------------------------------- Thu May 30 13:30:22 UTC 2024 - Dario Faggioli - The vendored tarball already contains the config these days, so don't mess with that in the spec file ------------------------------------------------------------------- Thu Jan 19 08:01:48 UTC 2023 - fcrozat@suse.com - Update to version 1.4.10: * Bump version to v1.4.10 * Update kvm-ioctls to 0.12.0 * init: Fix parsing of Env in JSON - Drop new-kvm-ioctl.patch, merged upstream. ------------------------------------------------------------------- Mon Jan 16 09:37:08 UTC 2023 - fcrozat@suse.com - Update to version 1.4.9: * Remove unnecessary casts * init: do a case-insensitive check for JSON fields * Fix kernel command line for non-TEE targets * snp: measure regions rqequired by FW and PSP * snp: refactor code to add_region * cargo: Update to sev 1.0.0 * Add CODEOWNERS file * examples: Add snp-config-noattest TEE config * vmm/tee: Merge amd-sev and amd-snp modules * vmm/resources: kbs_types behind tee flag * tee: Make TeeConfig required * vmm: Remove aarch64 config on amdsev function * vmm/linux/tee: Add amd-snp module * vmm/linux: Introduce tee module for TEE-specificities * amdsev: Replace manual ioctls for sev library APIs * cargo: Point "sev" to upstream git repo ------------------------------------------------------------------- Mon Dec 05 13:14:11 UTC 2022 - dmueller@suse.com - Update to version 1.4.8: * Bump version to v1.4.8 * macos: fix mapped volumes initialization * Bump version to v1.4.6 * sev: fix a new clippy error * fs: fix new clippy issue in descriptor_utils * macos: init: register rosetta in binfmt_misc * macos: map Rosetta directory if present * macos: implement the ioctl Rosetta needs - add new-kvm-ioctl.patch ------------------------------------------------------------------- Mon Dec 5 08:44:44 UTC 2022 - Dirk Müller - add proper split-provides - add cargo_audit ------------------------------------------------------------------- Thu Nov 03 13:16:17 UTC 2022 - predivan@mts.rs - Update to version 1.4.6: * Bump version to v1.4.6 * fs/macos: Fix some clippy warnings * hvf: write reg on sysreg trap * Bump version to v1.4.5 * sev: Don't use a static initrd size * sev: Update to the final KBS attestation protocol * vsock: Fix signal logic in Muxer * examples/Makefile: Remove launch-tee binary on make clean ------------------------------------------------------------------- Thu Sep 29 23:42:09 UTC 2022 - Dario Faggioli - Switch to a "proper library" packaging layout. Downstreams (namely, crun) are now able to cope with this. So do it, and get rid of a lot of RPM lint warnings and errors! - Make it easier to turn on/off building the SEV-enabled library * Patches dropped: not-set-soname-as-it-is-plugin.patch ------------------------------------------------------------------- Thu Sep 29 09:01:33 UTC 2022 - Dario Faggioli - Build the SEV version first, so we don't overwrite the non-SEV enabled plugin with the SEV one. ------------------------------------------------------------------- Wed Sep 28 16:45:10 UTC 2022 - dfaggioli@suse.com - Update to version 1.4.4: * Bump version to v1.4.4 * fs/macos: drop value mutability in read/write * fs/macos: avoid deadlock in open_inode * fs/macos: Fix path replacing on rename dir * Bump version to v1.4.3 * devices/fs: Drop mutability from FileReadWriteAtVolatile * fs/macos: keep track of unlinked files * devices: add missing fence in Queue * Replace mpsc with crossbeam-channel * Bump version to v1.4.2 * init: override kernel's HOME and TERM envs * init: ensure "/dev" is properly mounted * init: set a default hostname if no env is present * Makefile: drop library dependency on install * sev: temporarily vendorize kbs-types * sev: replace ureq with curl * Bump version to v1.4.1 * clippy: Derive Eq in addition of PartialEq * macos: fix symlink ownership and mode attrs * Makefile: force creation of symlinks on install * sev: inform the user about progress * sev: extend TEE config and override VmConfig * Bump version to v1.4.0 * sev: write zero page and include in measurement * sev: adopt the tentative KBS attestation protocol * sev: update sev crate to 0.3 * sev: drop reqwest dependency * sev: replace attestation_url with tee_config_file * Bump version to v1.3.0 * init: be permissive with non-ASCII bytes * init: add support for Entrypoint * init: deal with missing "/dev" * init: don't override existing env vars * libkrun: add krun_set_env() * sev: don't rely on cmdline_secret size and unlink * libkrun: remove KRUN_INIT and KRUN_WORKDIR defaults * init: Add cmdline_secret and config file support * Bump version to v1.2.3 * macos: use upstream buildah xattr key * macos: honor flag enabling/disabling xattr * README.md: add known users and contact sections ------------------------------------------------------------------- Wed Aug 3 09:01:53 UTC 2022 - Dario Faggioli - Reconcile spec file and package content (reference .xz and get rid of .zst) ------------------------------------------------------------------- Fri Jul 29 11:12:32 UTC 2022 - fcrozat@suse.com - Update to version 1.2.2: * Bump version to v1.2.2 * vsock: remove stray println ------------------------------------------------------------------- Wed Jun 22 07:36:02 UTC 2022 - dfaggioli@suse.com - Run services and update vendored dependencies - Update to version 1.2.1: * Bump vm-memory dependency from 0.7.0 to 0.8.0 - Update to version to 1.2.0: * Disable virtio-fs DAX + Fixes a bug triggered when using openSUSE images * vsock: defer TSI proxy removal ------------------------------------------------------------------- Fri Jun 17 14:23:15 UTC 2022 - dfaggioli@suse.com - Update to version 1.1.0: * vsock: restore lost port mapping feature * vsock: translate errno to macOS to Linux * vsock: use MSG_NOSIGNAL to avoid SIGPIPE * vsock: update to nix 0.24.1 * vsock: make accept() and explicit operation - Update to version to v1.0.0 * Update README.md * CI: run clippy tests with amd-sev feature too * Implement virtio-rng device * vmm: disable test_get_supported_cpuid * sev: use a different name when building with SEV * sev: switch to upstream kvm-bindings/ioctls * Makefile: add versioning to the output library * arch/aarch64: remove dependency on device_tree * libkrun: remove unneeded "cc" dependency - Update to version to 0.2.0 * Replace old vsock with TSIv2's vsock * macos: operate directly on kqueue in epoll * utils: Allow Epoll to be cloned * Replace "logger" crate with env_logger+log - Patches added: * not-set-soname-as-it-is-plugin.patch ------------------------------------------------------------------- Fri May 27 12:23:06 UTC 2022 - dfaggioli@suse.com - Automatic update of vendored dependencies - Update to version 0.1.8. - (From upstream) Bump version to 0.1.8. We're about to introduce some breaking changes that will lead us to 0.2.0, so let's release a version now so people can get the latest clean ups without jumping all the way into 0.2. - Some changes: * utils: drop unused functionality * CI: fail on clippy warnings * cpuid/logger: remove "fn main" in doctests * Use vm-memory from crates.io * Remove unneeded extern declarations * libkrun: fix clippy warnings * libkrun: set Rust Edition to 2021 * vmm: fix clippy warnings * vmm: set Rust Edition to 2021 * kernel: fix clippy warnings * kernel: set Rust Edition to 2021 * logger: fix clippy warnings * logger: update code to Rust 2021 * polly: fix clippy warnings * polly: set Rust Edition to 2021 * utils: fix clippy warnings * utils: set Rust Edition to 2021 * devices: fix clippy warnings * devices: set Rust Edition to 2021 * cpuid: fix clippy warnings * cpuid: update code to Rust 2021 * arch: fix clippy warnings * arch: update code to Rust 2021 * SEV: Ensure space for BIOS is always reserved * SEV: Implement support for SEV-ES * SEV: Increase the RAM of the examples to 2 GiB * SEV: Add the SEV flag to the Makefiles * SEV: Add a couple of examples fro libkrun-SEV * SEV: Automatically detect AMD CPU model * SEV: Implement support for Remote Attestation * SEV: Teach init how to open a LUKS volume * SEV: Add support for initramfs * SEV: Import virtio-block support from Firecraker * SEV: Initial plain SEV support * SEV: Configure MTRR MSR * SEV: Load qboot into the reset vector * CI: use default Cargo features on tests ------------------------------------------------------------------- Fri Aug 6 13:28:37 UTC 2021 - Frederic Crozat - Don't try follow library policy, libkrun is a plugin. ------------------------------------------------------------------- Fri Mar 19 02:14:29 UTC 2021 - Dario Faggioli - enable only the arch-es that we know are supported (x86_64 and Arm64) - build fails with old versions of cargo. Set a minimum version ------------------------------------------------------------------- Fri Mar 19 00:52:32 UTC 2021 - Dario Faggioli - fixup the obscpio files for 0.1.7 ------------------------------------------------------------------- Fri Mar 19 00:36:40 UTC 2021 - dfaggioli@suse.com - Update to version 0.1.7: * libkrun: Bump version to 0.1.7 * devices/fs: fix listxattr on macOS * libkrun: Bump version to 0.1.6 * vmm: Add "no-kvmapf" to the kernel command line * libkrun: Bump version to 0.1.5 * libkrun: Put env vars values between quotes * init: Fix format warning in printf() * init: Compile with -Wall * Makefile: Have init.c as a prerequisite of init * init: Fix the perror() messages ------------------------------------------------------------------- Fri Mar 19 00:17:49 UTC 2021 - Dario Faggioli - there's no libkrunfw for i586 so exclude it here as well ------------------------------------------------------------------- Sat Feb 27 04:40:58 UTC 2021 - Dario Faggioli - Set all services to disabled ------------------------------------------------------------------- Thu Feb 18 07:54:29 UTC 2021 - dmacvicar@suse.com - Update to version v0.1.4: * libkrun: Put env vars values between quotes * init: Fix format warning in printf() * init: Compile with -Wall * Makefile: Have init.c as a prerequisite of init * init: Fix the perror() messages * examples: Introduce the "rootfs" make target * README: Mention the C Library static on requirements * libkrun: Fix type of arguments mapped_volumes and port_map * libkrun: Add support for setting RLIMITs in the guests * README.md: Add instructions for building under macOS ------------------------------------------------------------------- Thu Feb 18 00:01:04 UTC 2021 - Duncan Mac-Vicar - Initial package for 0.1.4 Based on Fedora package from Sergio Lopez