Commit Graph

334 Commits

Author SHA256 Message Date
James Fehlig
063e1ec7ae - Add CAP_SYS_PACCT capability to libvirtd AppArmor profile
bnc#817407

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=345
2014-01-22 17:05:10 +00:00
James Fehlig
629e5aaef7 - Fix build on code 11
- Fix rpmlint warning

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=344
2014-01-21 01:24:00 +00:00
James Fehlig
db81eba56f - Following the upstream pattern, introduce the
daemon-config-network subpackage to handle defining the default
  network
  bnc#859041

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=343
2014-01-21 00:43:47 +00:00
James Fehlig
0e53c763a0 - Update to libvirt 1.2.1
- CVE-2014-0028, CVE-2014-1447, CVE-2013-6458, CVE-2013-6457,
    CVE-2013-6436
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Dropped upstream patches: 5e397d9c-test-fix-dbus-crash.patch,
    78af457e-fix-virnettlscontexttest.patch,
    9faf3f29-LXC-memtune.patch, f8c1cb90-CVE-2013-6436.patch,
    libxl-hvm-nic.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=342
2014-01-17 19:45:49 +00:00
James Fehlig
5ad9c78897 - Ignore 'make check' on older, code 11 base
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=340
2013-12-27 00:03:47 +00:00
James Fehlig
8b2f36a3ed Accepting request 212280 from home:cbosdonnat:branches:Virtualization
Reenabled make check. Still failing for 11.4... but it's really old, isn't it?

OBS-URL: https://build.opensuse.org/request/show/212280
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=339
2013-12-26 23:59:17 +00:00
James Fehlig
57d3b850ee - Remove dependency on pm-utils from libvirt-client
bnc#856381

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=338
2013-12-20 20:31:00 +00:00
James Fehlig
7ea60c0a28 - CVE-2013-6436: Fix crashes in lxc memtune code, one of which
results in DoS
  f8c1cb90-CVE-2013-6436.patch, 9faf3f29-LXC-memtune.patch
  bnc#854486

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=337
2013-12-20 16:25:32 +00:00
James Fehlig
387203a948 - More adjustments to the spec file to fix package dependency
issues
  bnc#848918

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=336
2013-12-06 22:50:19 +00:00
James Fehlig
c5c21c4a37 Add missing changelog entry about building with numad support
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=335
2013-12-06 22:49:19 +00:00
James Fehlig
bfc56c3413 - Update to libvirt 1.2.0
- Add support for gluster pool
  - Separation of python binding
  - vbox: add support for 4.3 APIs
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Updated and renamed clone.patch to ia64-clone.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=334
2013-12-06 18:39:18 +00:00
James Fehlig
68aa91d2e5 - Link with same versions of libnl used by netcontrol to prevent
crashing libvirtd on start

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=333
2013-12-04 21:31:09 +00:00
James Fehlig
e48979ae7d - Add '/etc/sasl2' to libvirt-client file list to fix Factory build
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=332
2013-12-04 17:44:31 +00:00
James Fehlig
9521d83020 - Fix starting of libvirtd when NetworkManager is enabled
Modified libvirt-suse-netcontrol.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=331
2013-11-27 03:04:08 +00:00
James Fehlig
c521110742 - Allow execution of libvirt hook scripts in /etc/libvirt/hooks/
in libvirtd AppArmor profile

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=330
2013-11-26 21:52:18 +00:00
James Fehlig
a58c0b5ccc - Update to libvirt 1.1.4
- Add support for AArch64 architecture
  - Various improvements on test code and test driver
  - Don't link virt-login-shell against libvirt.so
  - Close all non-stdio FDs in virt-login-shell
  - Only allow 'stderr' log output when running setuid
  - Fix perms for virConnectDomainXML{To,From}Native
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: e7f400a1-CVE-2013-4296.patch,
    2dba0323-CVE-2013-4297.patch, db7a5688-CVE-2013-4311.patch,
    e65667c0-CVE-2013-4311.patch, 922b7fda-CVE-2013-4311.patch,
    e4697b92-CVE-2013-4311.patch, 8294aa0c-CVE-2013-4399.patch,
    484cc321-fix-spice-migration.patch,
    79552754-libvirtd-chardev-crash.patch,
    57687fd6-CVE-2013-4401.patch, ae53e5d1-CVE-2013-4400.patch,
    8c3586ea-CVE-2013-4400.patch, b7fcc799a-CVE-2013-4400.patch,
    3e2f27e1-CVE-2013-4400.patch, 5a0ea4b7-CVE-2013-4400.patch,
    843bdb2f-CVE-2013-4400.patch,
    bd773e74-lxc-terminate-machine.patch,
    e350826c-python-fix-fd-passing.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=329
2013-11-20 20:02:26 +00:00
James Fehlig
26dd4e5d14 - Allow execution of Xen binaries in /usr/lib{,64}/xen/bin in
libvirtd AppArmor profile
  bnc#849524

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=328
2013-11-19 21:25:55 +00:00
James Fehlig
9049faae46 - Require libvirt-daemon-<hypervisor> in the main libvirt package
for each supported hypervisor
  bnc#850882

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=327
2013-11-19 20:17:39 +00:00
James Fehlig
420446e6e4 - Fix initialization of libxl NIC devices
libxl-hvm-nic.patch
  bnc#848918

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=325
2013-11-04 23:05:28 +00:00
James Fehlig
2b59a31f32 - Fix typo in libvirtd apparmor profile which prevented the profile
from loading
  bnc#848216

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=323
2013-10-30 14:37:11 +00:00
James Fehlig
534200398b Add missing execute permission for /etc/xen/scripts in libvirtd apparmor profile
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=321
2013-10-25 20:21:05 +00:00
James Fehlig
1ec99abbc8 - libxl driver: fix initialization of VNC and SDL info for
HVM domains
  libxl-hvm-vnc.patch
  bnc#847566
- Allow libvirtd apparmor profile to access /etc/xen/scripts/*

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=320
2013-10-25 19:29:19 +00:00
James Fehlig
3973ce3dde - Fix file descriptor passing in python bindings
e350826c-python-fix-fd-passing.patch
  rhb#1021434

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=319
2013-10-23 03:41:22 +00:00
James Fehlig
65c4cfdc02 - Have systemd terminate the machine as a workaround of fdo#68370
bd773e74-lxc-terminate-machine.patch
  bnc#842834

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=318
2013-10-22 21:27:53 +00:00
James Fehlig
8296f9e96d - Spec file fixes to only package libvirt-login-shell when
building the LXC driver

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=317
2013-10-22 18:29:21 +00:00
James Fehlig
53a4a5c7fa Add upstream patches to fix build on older systems that
have a gnutls that uses libgcrypt.

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=316
2013-10-22 17:07:40 +00:00
James Fehlig
fffa5dcc99 - CVE-2013-4400: Unsantized use of env variables allows privilege
escalation via virt-login-shell
  ae53e5d1-CVE-2013-4400.patch, 8c3586ea-CVE-2013-4400.patch,
  b7fcc799a-CVE-2013-4400.patch, 3e2f27e1-CVE-2013-4400.patch,
  CVE-2013-4400-build-fix.patch
  bnc#837609
- CVE-2013-4401: Fix perms for virConnectDomainXML{To,From}Native
  57687fd6-CVE-2013-4401.patch
  bnc#845704

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=315
2013-10-21 21:49:57 +00:00
James Fehlig
c27ca0ddd7 fix build for distros that don't have libxl
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=314
2013-10-18 22:13:52 +00:00
James Fehlig
4b629b33b6 - Move hypervisor-specific files out of libvirt-daemon package
and into libvirt-daemon-<hypervisor> subpackage
  bnc#845851
- conf: Don't crash on invalid chardev source definition
  79552754-libvirtd-chardev-crash.patch
  bnc#845704, rhb#1012196

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=313
2013-10-18 20:46:45 +00:00
James Fehlig
b905305de1 - Use newer libnl3 instead of libnl-1_1
bnc#845540

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=312
2013-10-17 20:18:18 +00:00
James Fehlig
e9ae5f7966 - Move virt-login-shell to new subpackage libvirt-login-shell,
requiring users to opt-in for this setuid binary.  Note: For now,
  virt-login-shell will not have setuid permissions, pending
  resolution of bnc#837609

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=310
2013-10-15 04:28:21 +00:00
James Fehlig
2df984b272 - qemu: Fix seamless SPICE migration
484cc321-fix-spice-migration.patch
  bnc#842301

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=309
2013-10-15 03:27:06 +00:00
James Fehlig
17e6200a6a Also reference bnc#842300 in changelog
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=308
2013-10-15 02:48:48 +00:00
James Fehlig
4f9e403a41 - CVE-2013-4399: Fix crash in libvirtd when events are registered
and ACLs active
  8294aa0c-CVE-2013-4399.patch
  bnc#844052

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=307
2013-10-15 02:35:05 +00:00
James Fehlig
2b3f0e1499 - Update the stale gettext BuildRequires and Requires dependencies
in the spec file
  bnc#841325

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=306
2013-10-14 22:51:07 +00:00
James Fehlig
ec267e5c8f - virt-aa-helper apparmor profile was denying read access to
/proc/$PID/*.  Give read accesss to these files.
  Updated install-apparmor-profiles.patch
  bnc#841720

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=305
2013-10-14 22:04:45 +00:00
James Fehlig
6aecdae0d2 - libvirtd apparmor profile was denying access to
/usr/lib/xen/bin/qemu-system-i386, which is now the default
  emulator used with Xen guests
  Updated install-apparmor-profiles.patch
  bnc#845648

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=304
2013-10-14 20:02:22 +00:00
James Fehlig
650cbf7e13 - Fix condrestart|try-restart invocation of virtlockd init script
Modifed virtlockd-init-script.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=302
2013-10-03 17:05:53 +00:00
James Fehlig
c990991474 Add missing CVE number to changelog.
- CVE-2013-4311: Add support for using 3-arg pkcheck syntax for
  process

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=300
2013-10-02 16:55:10 +00:00
James Fehlig
9b367aafd3 - Add support for using 3-arg pkcheck syntax for process
db7a5688-CVE-2013-4311.patch, e65667c0-CVE-2013-4311.patch,
  922b7fda-CVE-2013-4311.patch, e4697b92-CVE-2013-4311.patch
  bnc#836931

- CVE-2013-4296: Fix crash in remoteDispatchDomainMemoryStats
  e7f400a1-CVE-2013-4296.patch
  bnc#838638
- CVE-2013-4297: Fix crash in virFileNBDDeviceAssociate
  2dba0323-CVE-2013-4297.patch
  bnc#838642

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=299
2013-10-02 16:20:46 +00:00
James Fehlig
3c2db529b0 Add bnc numbers to changelog
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=297
2013-09-04 04:16:37 +00:00
James Fehlig
6d3a1703e9 - Update to libvirt 1.1.2
- various improvements to libxl driver
  - systemd integration improvements
  - Add flag to BaselineCPU API to return detailed CPU features
  - Introduce a virt-login-shell binary
  - conf: add startupPolicy attribute for harddisk
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: bcef0f01-libxl-console.patch,
    9d0557b9-legacy-xen-double-free.patch,
    d7a45bf2-legacy-xen-dumpxml.patch, 0e671a16-CVE-2013-4239.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=296
2013-09-03 17:08:54 +00:00
James Fehlig
0a26adabe1 - Fix memory corruption in legacy Xen driver
0e671a16-CVE-2013-4239.patch
  bnc#834598
- Upstream patches to fix dumpxml in legacy Xen driver
  9d0557b9-legacy-xen-double-free.patch,
  d7a45bf2-legacy-xen-dumpxml.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=294
2013-08-13 16:50:35 +00:00
James Fehlig
10c35258ed - Backport upstream patch implementing domainOpenConsole in the
libxl driver.  Allows 'virsh console dom-name' to work with
  Xen libxl toolstack.
  bcef0f01-libxl-console.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=292
2013-07-31 22:56:30 +00:00
James Fehlig
c8ce6e2833 Fix typo of version in changelog
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=291
2013-07-30 20:59:58 +00:00
James Fehlig
0119ca3996 - Update to libvirt 1.1.0
- Adding device removal or deletion events
  - Introduce new domain create APIs to pass pre-opened FDs to LXC
  - Add interface versions for Xen 4.3
  - Add new public API virDomainSetMemoryStatsPeriod
  - Various LXC improvements
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: f38c8185-CVE-2013-2230.patch,
    fd2e3c4c-xen-sysctl-domctl.patch, dfc69235-CVE-2013-4153.patch,
    96518d43-CVE-2013-4154.patch, fe89fd3b-storage-pool-deadlock.patch
  - Drop relax-qemu-usergroup-check.patch - no longer needed
    after hypervisor-specific daemon package split

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=290
2013-07-30 20:33:47 +00:00
James Fehlig
0572a9487c - Unlock the storage volume object after looking it up
fe89fd3b-storage-pool-deadlock.patch
  rhb#980676

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=287
2013-07-22 23:19:39 +00:00
James Fehlig
eda6aa8e7f - CVE-2013-4153: Fix double free of returned JSON array in
qemuAgentGetVCPUs()
  dfc69235-CVE-2013-4153.patch
- CVE-2013-4154: Prevent crash of libvirtd without guest agent
  configuration
  96518d43-CVE-2013-4154.patch
  bnc#830498

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=286
2013-07-22 16:42:02 +00:00
James Fehlig
1b256e680d - Fix legacy xen driver with Xen 4.3
fd2e3c4c-xen-sysctl-domctl.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=284
2013-07-17 17:50:14 +00:00
James Fehlig
5674459f46 Accepting request 182783 from home:jfehlig:branches:Virtualization
- CVE-2013-2230: Fix crash when multiple event callbacks were
  registered
  f38c8185-CVE-2013-2230.patch
  bnc#827801

- Update to libvirt 1.1.0
  - Extensible migration APIs
  - Add a policy kit access control driver
  - various improvements in the Xen and libxl drivers
  - improve networking support on BSD
  - agent based vCPU hotplug support
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: 244e0b8c-CVE-2013-2218.patch

OBS-URL: https://build.opensuse.org/request/show/182783
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=282
2013-07-10 22:06:19 +00:00