pool/xen
SHA256
17
0
Fork 1
Code Issues Pull Requests Activity

Commit Graph

  • 93ec3e5718 Accepting request 1329731 from Virtualization factory Ana Guerrero 2026-01-29 16:44:17 +00:00
  • c5a163acf8 - bsc#1257399 - Package xen doesn't build with glibc 2.43 glibc2.43-fixes.patch Charles Arnold 2026-01-28 21:25:07 +00:00
  • 9304aa0e28 - bsc#1256745 - VUL-0: CVE-2025-58150: xen: x86: buffer overrun with shadow paging + tracing (XSA-477) xsa477.patch - bsc#1256747 - VUL-0: CVE-2026-23553: xen: x86: incomplete IBPB for vCPU isolation (XSA-479) xsa479.patch Charles Arnold 2026-01-27 15:02:46 +00:00
  • 19368f7ab2 Accepting request 1318748 from Virtualization Ana Guerrero 2025-11-21 15:54:14 +00:00
  • 78e9cc5546 Don't try to include xen-watchdog-sleep.sh in 32 bit build. Charles Arnold 2025-11-19 20:39:18 +00:00
  • 6335fb31bb - Update to Xen 4.21.0 FCS release * The minimum toolchain requirements have increased for some architectures: - For x86, GCC 5.1 and Binutils 2.25, or Clang/LLVM 11 - For ARM32 and ARM64, GCC 5.1 and Binutils 2.25 - For RISC-V, GCC 12.2 and Binutils 2.39 * Debian Trixie added to CI. Debian Bullseye retired from CI for RISC-V due to the baseline change. * Linux based device model stubdomains are now fully supported. * New dependency on library json-c 0.15 or later, the toolstack will prefer it to YAJL when available. * Introduce libxenmanage as a stable library, replacing xenstored's dependency on unstable libraries. * Introduce new PDX compression algorithm to cope with Intel Sierra Forest and Granite Rapids having sparse memory maps. * Support of qemu-traditional has been removed. * The in-tree oxenstored is deprecated and will be removed in a future version of Xen. It is moving into the Xapi project https://github.com/xapi-project/oxenstored so it can be maintained in line with the other Ocaml projects in the Xen ecosystem. * On x86: - Restrict the cache flushing done as a result of guest physical memory map manipulations and memory type changes. - Allow controlling the MTRR cache attribute of the Xen platform PCI device BAR for HVM guests, to improve performance of guests using it to map the grant table or foreign memory. - Allow configuring the number of altp2m tables per domain via vm.cfg. - Option to attempt to fixup p2m page-faults on PVH dom0. - Resizable BARs is supported for PVH dom0. - Support PCI passthrough for HVM domUs when dom0 is PVH (note SR-IOV capability usage is not yet supported on PVH dom0). Charles Arnold 2025-11-19 18:50:34 +00:00
  • 7280af5c02 Accepting request 1317672 from Virtualization Ana Guerrero 2025-11-17 11:08:10 +00:00
  • ff60303950 - Update to Xen 4.20.2 bug fix release (jsc#PED-8907) * No upstream changelog found in sources or webpage - Drop patches contained in new tarball 687a40ac-x86-C6-eoi_errata-include-NEHALEM_EX.patch 68931694-x86-HPET-defer-LAPIC-EOI.patch 689b0c0c-EFI-cond-FreePages.patch 68a2e770-x86-mkelf32-pad-segment-to-2Mb.patch 68a2e7c8-x86-HVM-ioreq-inverted-condition.patch 68a6ed85-x86-setup-MMCFG-ahead-of-IOMMU.patch 68ac5f69-x86-adjustments-to-intel_init_ppin.patch xsa472-1.patch xsa472-2.patch xsa472-3.patch xsa475-1.patch xsa475-2.patch xsa476.patch Charles Arnold 2025-11-13 16:46:02 +00:00
  • c876a65e5f Accepting request 1315761 from Virtualization Ana Guerrero 2025-11-07 17:20:15 +00:00
  • cfebf3bc12 - bsc#1252692 - VUL-0: CVE-2025-58149: xen: incorrect removal of permissions on PCI device unplug allows PV guests to access memory of devices no longer assigned to it (XSA-476) xsa476.patch Charles Arnold 2025-10-29 16:24:35 +00:00
  • 6018c3468f Accepting request 1313619 from Virtualization Ana Guerrero 2025-10-27 17:37:41 +00:00
  • ff1953f597 - bsc#1251271 - VUL-0: CVE-2025-58147,CVE-2025-58148: xen: Incorrect input sanitisation in Viridian hypercalls (XSA-475) xsa475-1.patch xsa475-2.patch Charles Arnold 2025-10-24 16:34:40 +00:00
  • 269806c897 Accepting request 1303382 from Virtualization Ana Guerrero 2025-09-11 12:37:24 +00:00
  • d8cb2ba3f0 - Upstream bug fixes (bsc#1027519) 687a40ac-x86-C6-eoi_errata-include-NEHALEM_EX.patch 68931694-x86-HPET-defer-LAPIC-EOI.patch 689b0c0c-EFI-cond-FreePages.patch 68a2e770-x86-mkelf32-pad-segment-to-2Mb.patch 68a2e7c8-x86-HVM-ioreq-inverted-condition.patch 68a6ed85-x86-setup-MMCFG-ahead-of-IOMMU.patch 68ac5f69-x86-adjustments-to-intel_init_ppin.patch Charles Arnold 2025-09-09 14:08:35 +00:00
  • f4ee62e682 Sync changes to SLFO-1.2 branch slfo-main slfo-1.2 Adrian Schröter 2025-08-20 14:17:55 +02:00
  • a108e7d3e7 Accepting request 1291787 from Virtualization Ana Guerrero 2025-07-11 19:29:13 +00:00
  • dd10e762dd - Update to Xen 4.20.1 bug fix release (jsc#PED-8907) * No upstream changelog found in sources or webpage - bsc#1246112 - VUL-0: xen: More AMD transient execution attacks (XSA-471) Patches contained in new tarball for 4.20.1 - Drop patches contained in new tarball 67c818d4-x86-log-unhandled-mem-accesses-for-PVH-dom0.patch 67c818d5-x86-fixup-p2m-page-faults-for-PVH-dom0.patch 67c818d6-x86-PVH-dom0-correct-iomem_caps-bound.patch 67c818d7-x86-IOMMU-account-for-IOMEM-caps-when-populating.patch 67c818d8-x86-Dom0-relax-Interrupt-Address-Range.patch 67c86fc1-xl-fix-channel-configuration-setting.patch 67cb03e0-x86-vlapic-ESR-write-handling.patch 67d17edd-x86-expose-MSR_FAM10H_MMIO_CONF_BASE-on-AMD.patch 67d17ede-VT-x-PI-usage-of-msi_desc-msg-field.patch 67d2a3fe-libxl-avoid-infinite-loop-in-libxl__remove_directory.patch 67dada68-x86-mm-IS_ALIGNED-in-IS_LnE_ALIGNED.patch 67ea4268-x86-P2M-sync-fast-slow-p2m_get_page_from_gfn.patch 67ea428e-percpu-dont-init-on-resume.patch 67f8ecda-rangeset-incorrect-subtraction.patch 6800b54f-x86-HVM-update-repeat-count-upon.patch 68076044-x86emul-clip-rep-count-for-STOS.patch 6808f549-x86-Intel-work-around-MONITOR-MWAIT-errata.patch 68221f20-x86-alternative-when-feature-not-present.patch 68221f21-x86-guest-remove-Xen-hypercall_page.patch 68221f22-x86-misalign-__x86_indirect_thunk.patch 68221f23-x86-misalign-RETs-in-clear_bhb_loops.patch 68221f24-x86-stubs-introduce-place_ret.patch 68221f25-x86-build-with-Return-Thunks.patch 68221f26-x86-spec-ctrl-synthesise-ITS_NO.patch Charles Arnold 2025-07-10 16:52:48 +00:00
  • 0ea399aba9 Accepting request 1277871 from Virtualization Ana Guerrero 2025-05-20 07:31:24 +00:00
  • 845a1814b2 - bsc#1243117 - VUL-0: CVE-2024-28956: xen: Intel CPU: Indirect Target Selection (ITS) (XSA-469) 68221f20-x86-alternative-when-feature-not-present.patch 68221f21-x86-guest-remove-Xen-hypercall_page.patch 68221f22-x86-misalign-__x86_indirect_thunk.patch 68221f23-x86-misalign-RETs-in-clear_bhb_loops.patch 68221f24-x86-stubs-introduce-place_ret.patch 68221f25-x86-build-with-Return-Thunks.patch 68221f26-x86-spec-ctrl-synthesise-ITS_NO.patch Charles Arnold 2025-05-15 17:43:12 +00:00
  • f292f445a7 - Upstream bug fixes (bsc#1027519) 67dada68-x86-mm-IS_ALIGNED-in-IS_LnE_ALIGNED.patch 67ea4268-x86-P2M-sync-fast-slow-p2m_get_page_from_gfn.patch 67ea428e-percpu-dont-init-on-resume.patch 67f8ecda-rangeset-incorrect-subtraction.patch 6800b54f-x86-HVM-update-repeat-count-upon.patch 68076044-x86emul-clip-rep-count-for-STOS.patch 6808f549-x86-Intel-work-around-MONITOR-MWAIT-errata.patch Charles Arnold 2025-05-05 16:02:43 +00:00
  • cb65782421 Accepting request 1273188 from Virtualization Dominique Leuenberger 2025-04-29 14:40:11 +00:00
  • e27dbb46a4 - bsc#1241206 - xen fv domU failed to migrate from sle15SP6 host to sle15SP7 host 67cb03e0-x86-vlapic-ESR-write-handling.patch Charles Arnold 2025-04-28 14:53:11 +00:00
  • 1bdddcb8b2 Accepting request 1253904 from Virtualization Ana Guerrero 2025-03-18 16:37:27 +00:00
  • 00e291fc52 - bsc#1219354 - xen channels and domU console 67c86fc1-xl-fix-channel-configuration-setting.patch - bsc#1227301 - Kernel boot crashes on Thinkpad P14s Gen 3 AMD 67c818d4-x86-log-unhandled-mem-accesses-for-PVH-dom0.patch 67c818d5-x86-fixup-p2m-page-faults-for-PVH-dom0.patch 67c818d6-x86-PVH-dom0-correct-iomem_caps-bound.patch 67c818d7-x86-IOMMU-account-for-IOMEM-caps-when-populating.patch 67c818d8-x86-Dom0-relax-Interrupt-Address-Range.patch - bsc#1237692 - When attempting to start guest vm's libxl fills disk with errors 67d2a3fe-libxl-avoid-infinite-loop-in-libxl__remove_directory.patch - Upstream bug fixes (bsc#1027519) 67cb03e0-x86-vlapic-ESR-write-handling.patch 67d17edd-x86-expose-MSR_FAM10H_MMIO_CONF_BASE-on-AMD.patch 67d17ede-VT-x-PI-usage-of-msi_desc-msg-field.patch Charles Arnold 2025-03-17 15:35:04 +00:00
  • 39a891a04f Accepting request 1250427 from Virtualization Ana Guerrero 2025-03-06 13:47:58 +00:00
  • 8606a66b09 - Update to Xen 4.20.0 FCS release (jsc#PED-8907) * See release candidate changelog entries below for 4.20.0 * Reduce xenstore library dependencies. * Enable CONFIG_UBSAN (Arm64, x86, PPC, RISC-V) for GitLab CI. * Support for Intel EPT Paging-Write Feature. * AMD Zen 5 CPU support, including for new hardware mitigations for the SRSO speculative vulnerability. - bsc#1238043 - VUL-0: CVE-2025-1713: xen: deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) This fix is part of the final tarball - Remove references to vm-install from README.SUSE Charles Arnold 2025-03-05 13:26:41 +00:00
  • 0861e14db2 Accepting request 1247484 from Virtualization Dominique Leuenberger 2025-02-21 20:35:11 +00:00
  • 9fd6e8d49d - Update to Xen 4.20.0 RC5 release * x86/shutdown: offline APs with interrupts disabled on all CPUs * x86/smp: perform disabling on interrupts ahead of AP shutdown * x86/pci: disable MSI(-X) on all devices at shutdown * x86/iommu: disable interrupts at shutdown * x86/HVM: use XVFREE() in hvmemul_cache_destroy() * xen/console: Fix truncation of panic() messages * xen/memory: Make resource_max_frames() to return 0 on unknown type * x86/svm: Separate STI and VMRUN instructions in svm_asm_do_resume() * x86/MCE-telem: adjust cookie definition - Drop patch contained in new tarball x86-shutdown-offline-APs-with-interrupts-disabled-on-all-CPUs.patch Charles Arnold 2025-02-20 17:23:55 +00:00
  • b82b20a84a Accepting request 1246733 from Virtualization Ana Guerrero 2025-02-19 14:58:38 +00:00
  • 275b12fb40 Accepting request 1244848 from Virtualization Ana Guerrero 2025-02-11 20:21:38 +00:00
  • b1589dda0c - bsc#1233796 - [XEN][15-SP7-BEAT3] Xen call trace and APIC Error found after reboot operation on AMD machine. x86-shutdown-offline-APs-with-interrupts-disabled-on-all-CPUs.patch Charles Arnold 2025-02-11 16:46:42 +00:00
  • d3bdf3e327 - Update to Xen 4.20.0 RC4 release * AMD/IOMMU: log IVHD contents * AMD/IOMMU: drop stray MSI enabling * radix-tree: introduce RADIX_TREE{,_INIT}() Charles Arnold 2025-02-10 15:02:29 +00:00
  • 71d675a791 Accepting request 1241755 from Virtualization Ana Guerrero 2025-02-03 20:41:44 +00:00
  • 723426527a - Update to Xen 4.20.0 RC3 release * x86/HVM: correct MMIO emulation cache bounds check * x86/HVM: allocate emulation cache entries dynamically * x86/HVM: correct read/write split at page boundaries * x86/iommu: check for CMPXCHG16B when enabling IOMMU * iommu/vtd: remove non-CX16 logic from interrupt remapping * x86/iommu: remove non-CX16 logic from DMA remapping * iommu/amd: atomically update IRTE * x86emul: further correct 64-bit mode zero count repeated string insn handling * x86/PV: further harden guest memory accesses against speculative abuse * x86/intel: Fix PERF_GLOBAL fixup when virtualised Charles Arnold 2025-01-31 17:13:07 +00:00
  • 21ce174155 Accepting request 1241635 from home:mcalabkova:branches:Virtualization Charles Arnold 2025-01-31 14:35:13 +00:00
  • 70475dac9a Accepting request 1239285 from Virtualization Ana Guerrero 2025-01-22 15:31:17 +00:00
  • 5373743610 - Various documentation fixes and updates (including ppc and riscv additions) Charles Arnold 2025-01-20 16:22:32 +00:00
  • ce47328461 Accepting request 1238570 from Virtualization Ana Guerrero 2025-01-20 16:14:04 +00:00
  • b4e671094c - Update to Xen 4.20.0 RC2 release * xen/arm: Fully initialise struct membanks_hdr fields * build: Set DATE to SOURCE_DATE_EPOCH if available (for reproducible builds) * x86: Add Support for Paging-Write Feature * x86/time: introduce command line option to select wallclock * x86/time: prefer CMOS over EFI_GET_TIME * xentrace: free CPU mask string before overwriting pointer * xl: properly dispose of vTPM struct instance * xl: properly dispose of libxl_dominfo struct instances * Various documentation fixes and adjustments * Various MISRA compliance improvements. Charles Arnold 2025-01-20 13:29:19 +00:00
  • 88e506c8d9 - Update to Xen 4.20.0 RC1 release * x86/amd: Misc setup for Fam1Ah processors * xen/perfc cleanups and adjustments * libxl: drop setting XEN_QEMU_CONSOLE_LIMIT in the environment (XSA-180 / CVE-2014-3672) * x86emul: VCVT{,U}DQ2PD ignores embedded rounding * x86emul: correct put_fpu()'s segment selector handling * xen/flask: Wire up XEN_DOMCTL_dt_overlay and XEN_DOMCTL_set_llc_colors * xen/events: fix race with set_global_virq_handler() Charles Arnold 2025-01-10 19:57:36 +00:00
  • 489a449465 Accepting request 1235233 from Virtualization Ana Guerrero 2025-01-07 19:50:13 +00:00
  • a3381a63b4 Another upstream snapshot of the Xen master branch Charles Arnold 2025-01-06 16:06:49 +00:00
  • a43f415968 Trivial comment change vlapic_error() (XSA-462) Charles Arnold 2025-01-06 13:07:29 +00:00
  • a6674ae4e7 Trivial comment change vlapic_error() (XSA-462) Charles Arnold 2025-01-06 13:06:53 +00:00
  • 7789958b00 Xen 4.20 pre-release snapshot taken January 6, 2025 Charles Arnold 2025-01-06 13:03:48 +00:00
  • 903ebb0162 Support for SRSO_U/S_NO and SRSO_MSR_FIX Charles Arnold 2025-01-03 12:45:14 +00:00
  • c33cd5a2da - Update to Xen 4.20.0 pre-release (jsc#PED-8907) xen-4.20.0-testing-src.tar.bz2 - New Features * On Arm: - Experimental support for Armv8-R. - Support for NXP S32G3 Processors Family and NXP LINFlexD UART driver. - Basic handling for SCMI requests over SMC using Shared Memory, by allowing forwarding the calls to EL3 FW if coming from hwdom. - Support for LLC (Last Level Cache) coloring. * On x86: - xl suspend/resume subcommands. - Changed Features * Fixed blkif protocol specification for sector sizes different than 512b. * The dombuilder in libxenguest no longer un-gzips secondary modules, instead leaving this to the guest kernel to do in guest context. * On x86: - Prefer ACPI reboot over UEFI ResetSystem() run time service call. - Switched the xAPIC flat driver to use physical destination mode for external interrupts instead of logical destination mode. - Removed Features * On x86: - Support for running on Xeon Phi processors. - Removed the ucode=allow-same command line option. - Removed x2APIC Cluster Mode for external interrupts. x2APIC Physical and Mixed Modes are still available. - Dropped patches xsa466.patch Charles Arnold 2025-01-02 17:22:02 +00:00
  • 4360f69837 Accepting request 1228353 from Virtualization Ana Guerrero 2024-12-05 16:05:23 +00:00
  • 109f2d5869 - Update to Xen 4.19.1 bug fix release (jsc#PED-8907) xen-4.19.1-testing-src.tar.bz2 * No upstream changelog found in sources or webpage - Dropped patches 66a8b8ac-bunzip2-rare-failure.patch 66bb6f78-x86-IOMMU-move-tracking-in-iommu_identity_mapping.patch 66bb6fa5-x86-pass-through-document-as-security-unsupported.patch 66cf737b-x86-Dom0-disable-SMAP-for-PV-only.patch 66d02b69-Arm64-adjust-irq_to_desc-to-fix-build-with-gcc14.patch 66d6dca8-libxl-nul-termination-in-xen_console_read_line.patch 66d8690f-SUPPORT-split-XSM-from-Flask.patch 66e29480-x86-HVM-properly-reject-indirect-VRAM-writes.patch 66e44ae2-x86-ucode-AMD-buffer-underrun.patch 66f2af41-x86-vLAPIC-undue-recursion-of-vlapic_error.patch 66f2fd92-x86-ucode-Intel-stricter-sanity-check.patch xsa463-01.patch xsa463-02.patch xsa463-03.patch xsa463-04.patch xsa463-05.patch xsa463-06.patch xsa463-07.patch xsa463-08.patch xsa463-09.patch xsa464.patch gcc14-fixes.patch Charles Arnold 2024-12-04 17:22:32 +00:00
  • de5e4bc874 Accepting request 1226362 from Virtualization Ana Guerrero 2024-11-26 19:55:28 +00:00
  • a1cd633e45 - bsc#1232622 - VUL-0: CVE-2024-45818: xen: Deadlock in x86 HVM standard VGA handling (XSA-463) xsa463-01.patch xsa463-02.patch xsa463-03.patch xsa463-04.patch xsa463-05.patch xsa463-06.patch xsa463-07.patch xsa463-08.patch xsa463-09.patch - bsc#1232624 - VUL-0: CVE-2024-45819: xen: libxl leaks data to PVH guests via ACPI tables (XSA-464) xsa464.patch - Drop stdvga-cache.patch Charles Arnold 2024-11-25 20:15:10 +00:00
  • 90044e8a1a Accepting request 1204818 from Virtualization Ana Guerrero 2024-10-01 15:11:39 +00:00
  • fc30e726f0 Add changelog comment to Drop xsa462.patch Charles Arnold 2024-09-30 17:13:32 +00:00
  • 1a858162f6 Upstream bug fixes from Jan. Charles Arnold 2024-09-30 15:55:10 +00:00
  • 60d1a9e006 Accepting request 1198569 from Virtualization Ana Guerrero 2024-09-05 13:46:07 +00:00
  • a643c9e408 - Fix build on aarch64 with gcc14 (bsc#1225953) 66d02b69-Arm64-adjust-irq_to_desc-to-fix-build-with-gcc14.patch Charles Arnold 2024-09-03 14:20:44 +00:00
  • 5df6b8abaa Accepting request 1197729 from home:Guillaume_G:branches:openSUSE:Factory:ARM:Rings:1-MinimalX Charles Arnold 2024-09-03 14:15:48 +00:00
  • c451715194 Accepting request 1197500 from Virtualization Dominique Leuenberger 2024-08-30 12:57:16 +00:00
  • 3418d4e0be - Dropped patches no longer necessary bin-python3-conversion.patch migration-python3-conversion.patch Charles Arnold 2024-08-22 16:10:06 +00:00
  • b4fe550d3c Accepting request 1194735 from Virtualization Ana Guerrero 2024-08-20 14:13:05 +00:00
  • 1617d8e638 Fix wrong name of patch in changelog. It should be, 66bb6f78-x86-IOMMU-move-tracking-in-iommu_identity_mapping.patch Charles Arnold 2024-08-19 14:45:09 +00:00
  • df80107a70 - bsc#1228574 - VUL-0: CVE-2024-31145: xen: error handling in x86 IOMMU identity mapping (XSA-460) 66bb7316-x86-IOMMU-move-tracking-in-iommu_identity_mapping.patch - bsc#1228575 - VUL-0: CVE-2024-31146: xen: PCI device pass-through with shared resources (XSA-461) 66bb6fa5-x86-pass-through-document-as-security-unsupported.patch Charles Arnold 2024-08-15 16:50:05 +00:00
  • 6e493bfb08 Accepting request 1189221 from home:fsirl:xen-with-zstd Charles Arnold 2024-08-15 16:34:18 +00:00
  • 35b52b50dd Accepting request 1187952 from Virtualization Ana Guerrero 2024-07-18 17:15:19 +00:00
  • 82aaab8784 - bsc#1227355 - VUL-0: CVE-2024-31143: xen: double unlock in x86 guest IRQ handling (XSA-458) xsa458.patch Charles Arnold 2024-07-16 15:21:11 +00:00
  • 35cfc1435b Accepting request 1180245 from home:dgarcia:branches:Virtualization Charles Arnold 2024-07-16 15:09:43 +00:00
  • 771227d78a Accepting request 1183065 from Virtualization Ana Guerrero 2024-06-25 21:06:43 +00:00
  • 954c3f3779 - bsc#1214718 - The system hangs intermittently when Power Control Mode is set to Minimum Power on SLES15SP5 Xen 6666ba52-x86-irq-remove-offline-CPUs-from-old-CPU-mask-when.patch 666994ab-x86-SMP-no-shorthand-IPI-in-hotplug.patch 666994f0-x86-IRQ-limit-interrupt-movement-in-fixup_irqs.patch 66718849-x86-IRQ-old_cpu_mask-in-fixup_irqs.patch 6671885e-x86-IRQ-handle-moving-in-_assign_irq_vector.patch 6673ffdc-x86-IRQ-forward-pending-to-new-dest-in-fixup_irqs.patch - Upstream bug fixes (bsc#1027519) 66450626-sched-set-all-sched_resource-data-inside-locked.patch 66450627-x86-respect-mapcache_domain_init-failing.patch 6646031f-x86-ucode-further-identify-already-up-to-date.patch 666b07ee-x86-EPT-special-page-in-epte_get_entry_emt.patch 666b0819-x86-EPT-avoid-marking-np-ents-for-reconfig.patch 666b085a-x86-EPT-drop-questionable-mfn_valid-from-.patch 667187cc-x86-Intel-unlock-CPUID-earlier.patch 6672c846-x86-xstate-initialisation-of-XSS-cache.patch 6672c847-x86-CPUID-XSAVE-dynamic-leaves.patch Charles Arnold 2024-06-24 15:22:53 +00:00
  • f013821d3b Accepting request 1178775 from Virtualization Ana Guerrero 2024-06-06 10:31:05 +00:00
  • 4e7f7a1669 - bsc#1225953 - Package xen does not build with gcc14 because of new errors gcc14-fixes.patch Charles Arnold 2024-06-05 00:11:56 +00:00
  • 8e28452403 Accepting request 1175908 from Virtualization Ana Guerrero 2024-05-23 13:34:11 +00:00
  • 5987a97b0f - bsc#1221984 - VUL-0: CVE-2023-46842: xen: x86 HVM hypercalls may trigger Xen bug check (XSA-454) 6617d62c-x86-hvm-Misra-Rule-19-1-regression.patch - Upstream bug fixes (bsc#1027519) 6627a4ee-vRTC-UIP-set-for-longer-than-expected.patch 6627a5fc-x86-MTRR-inverted-WC-check.patch 662a6a4c-x86-spec-reporting-of-BHB-clearing.patch 662a6a8d-x86-spec-adjust-logic-to-elide-LFENCE.patch 663090fd-x86-gen-cpuid-syntax.patch 663a383c-libxs-open-xenbus-fds-as-O_CLOEXEC.patch 663a4f3e-x86-cpu-policy-migration-IceLake-to-CascadeLake.patch 663d05b5-x86-ucode-distinguish-up-to-date.patch 663eaa27-libxl-XenStore-error-handling-in-device-creation.patch Charles Arnold 2024-05-15 16:30:37 +00:00
  • 8bb78f62cc Accepting request 1166538 from Virtualization Ana Guerrero 2024-04-10 15:48:54 +00:00
  • 1dfb9d469a - Update to Xen 4.18.2 security bug fix release (bsc#1027519) xen-4.18.2-testing-src.tar.bz2 * No upstream changelog found in sources or webpage - bsc#1221984 - VUL-0: CVE-2023-46842: xen: x86 HVM hypercalls may trigger Xen bug check (XSA-454) - bsc#1222302 - VUL-0: CVE-2024-31142: xen: x86: Incorrect logic for BTC/SRSO mitigations (XSA-455) - bsc#1222453 - VUL-0: CVE-2024-2201: xen: x86: Native Branch History Injection (XSA-456) - Dropped patch contained in new tarball 65f83951-x86-mm-use-block_lock_speculation-in.patch Charles Arnold 2024-04-09 21:33:15 +00:00
  • b401fe3f5c Accepting request 1162273 from Virtualization Ana Guerrero 2024-03-26 18:24:44 +00:00
  • 72c9629dcd - bsc#1221334 - VUL-0: CVE-2024-2193: xen: GhostRace: Speculative Race Conditions (XSA-453) 65f83951-x86-mm-use-block_lock_speculation-in.patch Charles Arnold 2024-03-26 12:26:53 +00:00
  • 9323691080 - Update to Xen 4.18.1 bug fix release (bsc#1027519) xen-4.18.1-testing-src.tar.bz2 * No upstream changelog found in sources or webpage - bsc#1221332 - VUL-0: CVE-2023-28746: xen: x86: Register File Data Sampling (XSA-452) - bsc#1221334 - VUL-0: CVE-2024-2193: xen: GhostRace: Speculative Race Conditions (XSA-453) - Dropped patches included in new tarball 654370e2-x86-x2APIC-remove-ACPI_FADT_APIC_CLUSTER-use.patch 65437103-x86-i8259-dont-assume-IRQs-always-target-CPU0.patch 655b2ba9-fix-sched_move_domain.patch 6566fef3-x86-vLAPIC-x2APIC-derive-LDR-from-APIC-ID.patch 6569ad03-libxg-mem-leak-in-cpu-policy-get-set.patch 656ee5e1-x86emul-avoid-triggering-event-assertions.patch 656ee602-cpupool-adding-offline-CPU.patch 656ee6c3-domain_create-error-path.patch 6571ca95-fix-sched_move_domain.patch 6578598c-Arm-avoid-pointer-overflow-on-invalidate.patch 65842d5c-x86-AMD-extend-CPU-erratum-1474-fix.patch 65a7a0a4-x86-Intel-GPCC-setup.patch 65a9911a-VMX-IRQ-handling-for-EXIT_REASON_INIT.patch 65b27990-x86-p2m-pt-off-by-1-in-entry-check.patch 65b29e91-x86-ucode-stability-of-raw-policy-rescan.patch 65b8f961-PCI-fail-dev-assign-if-phantom-functions.patch 65b8f9ab-VT-d-else-vs-endif-misplacement.patch xsa451.patch Charles Arnold 2024-03-22 12:57:10 +00:00
  • e700b45a81 Accepting request 1154130 from Virtualization Dominique Leuenberger 2024-03-03 19:19:26 +00:00
  • b87b78b46c Put the version string back to 06 Charles Arnold 2024-03-01 14:37:06 +00:00
  • ec00e0674e - bsc#1219885 - VUL-0: CVE-2023-46841: xen: x86: shadow stack vs exceptions from emulation stubs (XSA-451) xsa451.patch Charles Arnold 2024-03-01 14:35:16 +00:00
  • 75abd3fa1c Accepting request 1143458 from Virtualization Ana Guerrero 2024-02-02 14:44:53 +00:00
  • f36da538eb - Upstream bug fixes (bsc#1027519) 6566fef3-x86-vLAPIC-x2APIC-derive-LDR-from-APIC-ID.patch 6569ad03-libxg-mem-leak-in-cpu-policy-get-set.patch 656ee5e1-x86emul-avoid-triggering-event-assertions.patch 656ee602-cpupool-adding-offline-CPU.patch 656ee6c3-domain_create-error-path.patch 6571ca95-fix-sched_move_domain.patch 6578598c-Arm-avoid-pointer-overflow-on-invalidate.patch 65842d5c-x86-AMD-extend-CPU-erratum-1474-fix.patch 65a7a0a4-x86-Intel-GPCC-setup.patch 65a9911a-VMX-IRQ-handling-for-EXIT_REASON_INIT.patch 65b27990-x86-p2m-pt-off-by-1-in-entry-check.patch 65b29e91-x86-ucode-stability-of-raw-policy-rescan.patch - bsc#1218851 - VUL-0: CVE-2023-46839: xen: phantom functions assigned to incorrect contexts (XSA-449) 65b8f961-PCI-fail-dev-assign-if-phantom-functions.patch - bsc#1219080 - VUL-0: CVE-2023-46840: xen: VT-d: Failure to quarantine devices in !HVM builds (XSA-450) 65b8f9ab-VT-d-else-vs-endif-misplacement.patch - Patches dropped / replaced by newer upstream versions xsa449.patch xsa450.patch Charles Arnold 2024-02-01 17:27:52 +00:00
  • 38981e6afa - bsc#1219080 - VUL-0: CVE-2023-46840: xen: VT-d: Failure to quarantine devices in !HVM builds (XSA-450) xsa450.patch Charles Arnold 2024-01-30 14:49:22 +00:00
  • 87be4f99d9 Accepting request 1127999 from Virtualization Ana Guerrero 2023-11-22 17:54:24 +00:00
  • 88480c64f4 - Enable the Kconfig options REQUIRE_NX and DIT_DEFAULT to provide better hypervisor security xen.spec Charles Arnold 2023-11-21 20:38:21 +00:00
  • 1ebf65f61d Accepting request 1127727 from Virtualization Ana Guerrero 2023-11-21 20:31:30 +00:00
  • 8d624fada1 Accepting request 1127661 from home:bmwiedemann:branches:Virtualization Charles Arnold 2023-11-20 15:11:07 +00:00
  • 4533e36c09 Accepting request 1126897 from Virtualization Ana Guerrero 2023-11-17 19:48:59 +00:00
  • 0ef0a627a2 One more minor upstream commit to include in tarball Charles Arnold 2023-11-16 13:27:16 +00:00
  • 3c4dcb2a08 - Update to Xen 4.18.0 FCS release (jsc#PED-4984) xen-4.18.0-testing-src.tar.bz2 * Repurpose command line gnttab_max_{maptrack_,}frames options so they don't cap toolstack provided values. * Ignore VCPUOP_set_singleshot_timer's VCPU_SSHOTTMR_future flag. The only known user doesn't use it properly, leading to in-guest breakage. * The "dom0" option is now supported on Arm and "sve=" sub-option can be used to enable dom0 guest to use SVE/SVE2 instructions. * Physical CPU Hotplug downgraded to Experimental and renamed "ACPI CPU Hotplug" for clarity * On x86, support for features new in Intel Sapphire Rapids CPUs: - PKS (Protection Key Supervisor) available to HVM/PVH guests. - VM-Notify used by Xen to mitigate certain micro-architectural pipeline livelocks, instead of crashing the entire server. - Bus-lock detection, used by Xen to mitigate (by rate-limiting) the system wide impact of a guest misusing atomic instructions. * xl/libxl can customize SMBIOS strings for HVM guests. * Add support for AVX512-FP16 on x86. * On Arm, Xen supports guests running SVE/SVE2 instructions. (Tech Preview) * On Arm, add suport for Firmware Framework for Arm A-profile (FF-A) Mediator (Tech Preview) * Add Intel Hardware P-States (HWP) cpufreq driver. * On Arm, experimental support for dynamic addition/removal of Xen device tree nodes using a device tree overlay binary (.dtbo). * Introduce two new hypercalls to map the vCPU runstate and time areas by physical rather than linear/virtual addresses. * On x86, support for enforcing system-wide operation in Data Operand Independent Timing Mode. * The project has now officially adopted 6 directives and 65 rules of MISRA-C. * On x86, the "pku" command line option has been removed. It has never Charles Arnold 2023-11-15 16:36:59 +00:00
  • 94a46b5bbf Accepting request 1112599 from Virtualization Ana Guerrero 2023-09-22 19:47:14 +00:00
  • be55dd6f71 - bsc#1215474 - VUL-0: CVE-2023-20588: xen: AMD CPU transitional execution leak via division by zero (XSA-439) xsa439-00.patch xsa439-01.patch xsa439-02.patch xsa439-03.patch xsa439-04.patch xsa439-05.patch xsa439-06.patch xsa439-07.patch xsa439-08.patch xsa439-09.patch Charles Arnold 2023-09-20 15:13:40 +00:00
  • a5077593dd Accepting request 1103355 from Virtualization Dominique Leuenberger 2023-08-11 13:55:17 +00:00
  • 0edceab758 - bsc#1212684 - xentop fails with long interface name 64d33a57-libxenstat-Linux-nul-terminate-string.patch Charles Arnold 2023-08-10 12:01:27 +00:00
  • 52d9cc05b7 - Update to Xen 4.17.2 bug fix release (bsc#1027519) xen-4.17.2-testing-src.tar.bz2 * No upstream changelog found in sources or webpage - bsc#1214082 - VUL-0: CVE-2023-20569: xen: x86/AMD: Speculative Return Stack Overflow (XSA-434) - bsc#1214083 - VUL-0: CVE-2022-40982: xen: x86/Intel: Gather Data Sampling (XSA-435) - Dropped patches contained in new tarball 64525c61-tools-libs-guest-assist-gcc13s-realloc-analyzer.patch 645dec48-AMD-IOMMU-assert-boolean-enum.patch 64639e84-amd-fix-legacy-setting-of-SSBD-on-AMD-Family-17h.patch 646b782b-PCI-pci_get_pdev-respect-segment.patch 647dfb0e-x86-missing-unlock-in-microcode_update_helper.patch 648863fc-AMD-IOMMU-Invalidate-All-check.patch 64bea1b2-x86-AMD-Zenbleed.patch Charles Arnold 2023-08-08 20:51:32 +00:00
  • f5cbb37949 Accepting request 1102421 from Virtualization Dominique Leuenberger 2023-08-06 14:29:24 +00:00
  • 9f9f40db2b - Add more debug to libxc-sr-track-migration-time.patch This is supposed to help with doing the math in case xl restore fails with ERANGE as reported in bug#1209311 Charles Arnold 2023-07-28 17:11:30 +00:00
  • 1af3bd44c8 Accepting request 1097441 from Virtualization Dominique Leuenberger 2023-07-09 18:40:46 +00:00
  • 6fbdc2fd28 - Upstream bug fixes (bsc#1027519) 645dec48-AMD-IOMMU-assert-boolean-enum.patch 646b782b-PCI-pci_get_pdev-respect-segment.patch 647dfb0e-x86-missing-unlock-in-microcode_update_helper.patch 648863fc-AMD-IOMMU-Invalidate-All-check.patch Charles Arnold 2023-07-06 15:42:36 +00:00
  • f4a6935402 Accepting request 1089051 from Virtualization Dominique Leuenberger 2023-05-26 18:15:25 +00:00