SHA256
1
0
forked from pool/libvirt
Commit Graph

265 Commits

Author SHA256 Message Date
James Fehlig
9521d83020 - Fix starting of libvirtd when NetworkManager is enabled
Modified libvirt-suse-netcontrol.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=331
2013-11-27 03:04:08 +00:00
James Fehlig
c521110742 - Allow execution of libvirt hook scripts in /etc/libvirt/hooks/
in libvirtd AppArmor profile

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=330
2013-11-26 21:52:18 +00:00
James Fehlig
a58c0b5ccc - Update to libvirt 1.1.4
- Add support for AArch64 architecture
  - Various improvements on test code and test driver
  - Don't link virt-login-shell against libvirt.so
  - Close all non-stdio FDs in virt-login-shell
  - Only allow 'stderr' log output when running setuid
  - Fix perms for virConnectDomainXML{To,From}Native
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: e7f400a1-CVE-2013-4296.patch,
    2dba0323-CVE-2013-4297.patch, db7a5688-CVE-2013-4311.patch,
    e65667c0-CVE-2013-4311.patch, 922b7fda-CVE-2013-4311.patch,
    e4697b92-CVE-2013-4311.patch, 8294aa0c-CVE-2013-4399.patch,
    484cc321-fix-spice-migration.patch,
    79552754-libvirtd-chardev-crash.patch,
    57687fd6-CVE-2013-4401.patch, ae53e5d1-CVE-2013-4400.patch,
    8c3586ea-CVE-2013-4400.patch, b7fcc799a-CVE-2013-4400.patch,
    3e2f27e1-CVE-2013-4400.patch, 5a0ea4b7-CVE-2013-4400.patch,
    843bdb2f-CVE-2013-4400.patch,
    bd773e74-lxc-terminate-machine.patch,
    e350826c-python-fix-fd-passing.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=329
2013-11-20 20:02:26 +00:00
James Fehlig
26dd4e5d14 - Allow execution of Xen binaries in /usr/lib{,64}/xen/bin in
libvirtd AppArmor profile
  bnc#849524

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=328
2013-11-19 21:25:55 +00:00
James Fehlig
9049faae46 - Require libvirt-daemon-<hypervisor> in the main libvirt package
for each supported hypervisor
  bnc#850882

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=327
2013-11-19 20:17:39 +00:00
James Fehlig
420446e6e4 - Fix initialization of libxl NIC devices
libxl-hvm-nic.patch
  bnc#848918

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=325
2013-11-04 23:05:28 +00:00
James Fehlig
2b59a31f32 - Fix typo in libvirtd apparmor profile which prevented the profile
from loading
  bnc#848216

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=323
2013-10-30 14:37:11 +00:00
James Fehlig
1ec99abbc8 - libxl driver: fix initialization of VNC and SDL info for
HVM domains
  libxl-hvm-vnc.patch
  bnc#847566
- Allow libvirtd apparmor profile to access /etc/xen/scripts/*

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=320
2013-10-25 19:29:19 +00:00
James Fehlig
3973ce3dde - Fix file descriptor passing in python bindings
e350826c-python-fix-fd-passing.patch
  rhb#1021434

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=319
2013-10-23 03:41:22 +00:00
James Fehlig
65c4cfdc02 - Have systemd terminate the machine as a workaround of fdo#68370
bd773e74-lxc-terminate-machine.patch
  bnc#842834

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=318
2013-10-22 21:27:53 +00:00
James Fehlig
8296f9e96d - Spec file fixes to only package libvirt-login-shell when
building the LXC driver

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=317
2013-10-22 18:29:21 +00:00
James Fehlig
53a4a5c7fa Add upstream patches to fix build on older systems that
have a gnutls that uses libgcrypt.

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=316
2013-10-22 17:07:40 +00:00
James Fehlig
fffa5dcc99 - CVE-2013-4400: Unsantized use of env variables allows privilege
escalation via virt-login-shell
  ae53e5d1-CVE-2013-4400.patch, 8c3586ea-CVE-2013-4400.patch,
  b7fcc799a-CVE-2013-4400.patch, 3e2f27e1-CVE-2013-4400.patch,
  CVE-2013-4400-build-fix.patch
  bnc#837609
- CVE-2013-4401: Fix perms for virConnectDomainXML{To,From}Native
  57687fd6-CVE-2013-4401.patch
  bnc#845704

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=315
2013-10-21 21:49:57 +00:00
James Fehlig
4b629b33b6 - Move hypervisor-specific files out of libvirt-daemon package
and into libvirt-daemon-<hypervisor> subpackage
  bnc#845851
- conf: Don't crash on invalid chardev source definition
  79552754-libvirtd-chardev-crash.patch
  bnc#845704, rhb#1012196

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=313
2013-10-18 20:46:45 +00:00
James Fehlig
b905305de1 - Use newer libnl3 instead of libnl-1_1
bnc#845540

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=312
2013-10-17 20:18:18 +00:00
James Fehlig
e9ae5f7966 - Move virt-login-shell to new subpackage libvirt-login-shell,
requiring users to opt-in for this setuid binary.  Note: For now,
  virt-login-shell will not have setuid permissions, pending
  resolution of bnc#837609

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=310
2013-10-15 04:28:21 +00:00
James Fehlig
2df984b272 - qemu: Fix seamless SPICE migration
484cc321-fix-spice-migration.patch
  bnc#842301

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=309
2013-10-15 03:27:06 +00:00
James Fehlig
17e6200a6a Also reference bnc#842300 in changelog
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=308
2013-10-15 02:48:48 +00:00
James Fehlig
4f9e403a41 - CVE-2013-4399: Fix crash in libvirtd when events are registered
and ACLs active
  8294aa0c-CVE-2013-4399.patch
  bnc#844052

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=307
2013-10-15 02:35:05 +00:00
James Fehlig
2b3f0e1499 - Update the stale gettext BuildRequires and Requires dependencies
in the spec file
  bnc#841325

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=306
2013-10-14 22:51:07 +00:00
James Fehlig
ec267e5c8f - virt-aa-helper apparmor profile was denying read access to
/proc/$PID/*.  Give read accesss to these files.
  Updated install-apparmor-profiles.patch
  bnc#841720

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=305
2013-10-14 22:04:45 +00:00
James Fehlig
6aecdae0d2 - libvirtd apparmor profile was denying access to
/usr/lib/xen/bin/qemu-system-i386, which is now the default
  emulator used with Xen guests
  Updated install-apparmor-profiles.patch
  bnc#845648

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=304
2013-10-14 20:02:22 +00:00
James Fehlig
650cbf7e13 - Fix condrestart|try-restart invocation of virtlockd init script
Modifed virtlockd-init-script.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=302
2013-10-03 17:05:53 +00:00
James Fehlig
c990991474 Add missing CVE number to changelog.
- CVE-2013-4311: Add support for using 3-arg pkcheck syntax for
  process

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=300
2013-10-02 16:55:10 +00:00
James Fehlig
9b367aafd3 - Add support for using 3-arg pkcheck syntax for process
db7a5688-CVE-2013-4311.patch, e65667c0-CVE-2013-4311.patch,
  922b7fda-CVE-2013-4311.patch, e4697b92-CVE-2013-4311.patch
  bnc#836931

- CVE-2013-4296: Fix crash in remoteDispatchDomainMemoryStats
  e7f400a1-CVE-2013-4296.patch
  bnc#838638
- CVE-2013-4297: Fix crash in virFileNBDDeviceAssociate
  2dba0323-CVE-2013-4297.patch
  bnc#838642

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=299
2013-10-02 16:20:46 +00:00
James Fehlig
3c2db529b0 Add bnc numbers to changelog
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=297
2013-09-04 04:16:37 +00:00
James Fehlig
6d3a1703e9 - Update to libvirt 1.1.2
- various improvements to libxl driver
  - systemd integration improvements
  - Add flag to BaselineCPU API to return detailed CPU features
  - Introduce a virt-login-shell binary
  - conf: add startupPolicy attribute for harddisk
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: bcef0f01-libxl-console.patch,
    9d0557b9-legacy-xen-double-free.patch,
    d7a45bf2-legacy-xen-dumpxml.patch, 0e671a16-CVE-2013-4239.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=296
2013-09-03 17:08:54 +00:00
James Fehlig
0a26adabe1 - Fix memory corruption in legacy Xen driver
0e671a16-CVE-2013-4239.patch
  bnc#834598
- Upstream patches to fix dumpxml in legacy Xen driver
  9d0557b9-legacy-xen-double-free.patch,
  d7a45bf2-legacy-xen-dumpxml.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=294
2013-08-13 16:50:35 +00:00
James Fehlig
10c35258ed - Backport upstream patch implementing domainOpenConsole in the
libxl driver.  Allows 'virsh console dom-name' to work with
  Xen libxl toolstack.
  bcef0f01-libxl-console.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=292
2013-07-31 22:56:30 +00:00
James Fehlig
c8ce6e2833 Fix typo of version in changelog
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=291
2013-07-30 20:59:58 +00:00
James Fehlig
0119ca3996 - Update to libvirt 1.1.0
- Adding device removal or deletion events
  - Introduce new domain create APIs to pass pre-opened FDs to LXC
  - Add interface versions for Xen 4.3
  - Add new public API virDomainSetMemoryStatsPeriod
  - Various LXC improvements
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: f38c8185-CVE-2013-2230.patch,
    fd2e3c4c-xen-sysctl-domctl.patch, dfc69235-CVE-2013-4153.patch,
    96518d43-CVE-2013-4154.patch, fe89fd3b-storage-pool-deadlock.patch
  - Drop relax-qemu-usergroup-check.patch - no longer needed
    after hypervisor-specific daemon package split

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=290
2013-07-30 20:33:47 +00:00
James Fehlig
0572a9487c - Unlock the storage volume object after looking it up
fe89fd3b-storage-pool-deadlock.patch
  rhb#980676

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=287
2013-07-22 23:19:39 +00:00
James Fehlig
eda6aa8e7f - CVE-2013-4153: Fix double free of returned JSON array in
qemuAgentGetVCPUs()
  dfc69235-CVE-2013-4153.patch
- CVE-2013-4154: Prevent crash of libvirtd without guest agent
  configuration
  96518d43-CVE-2013-4154.patch
  bnc#830498

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=286
2013-07-22 16:42:02 +00:00
James Fehlig
1b256e680d - Fix legacy xen driver with Xen 4.3
fd2e3c4c-xen-sysctl-domctl.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=284
2013-07-17 17:50:14 +00:00
James Fehlig
5674459f46 Accepting request 182783 from home:jfehlig:branches:Virtualization
- CVE-2013-2230: Fix crash when multiple event callbacks were
  registered
  f38c8185-CVE-2013-2230.patch
  bnc#827801

- Update to libvirt 1.1.0
  - Extensible migration APIs
  - Add a policy kit access control driver
  - various improvements in the Xen and libxl drivers
  - improve networking support on BSD
  - agent based vCPU hotplug support
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: 244e0b8c-CVE-2013-2218.patch

OBS-URL: https://build.opensuse.org/request/show/182783
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=282
2013-07-10 22:06:19 +00:00
James Fehlig
78ac454f8b - Only require lzop if suse_version > 1210
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=281
2013-07-08 18:44:33 +00:00
James Fehlig
43fb22fd87 - Fix typo in spec file
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=280
2013-07-03 17:14:50 +00:00
James Fehlig
84d9a7b3ca - Enable support for netcontrol by default
- Only require libvirt-daemon-driver-interface when building the
  interface driver

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=279
2013-07-03 16:22:28 +00:00
James Fehlig
1caaf6bb06 - CVE-2013-2218: Fix crash listing network interfaces with filters
244e0b8c-CVE-2013-2218.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=277
2013-07-01 15:28:09 +00:00
James Fehlig
3a2f8fadaa - Add xencommons as 'Wanted' in the systemd libvirtd service file
systemd-service-xen.patch
  bnc#820888

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=275
2013-06-11 16:40:05 +00:00
James Fehlig
336eff2235 - Fix build for SLE11 SP2
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=273
2013-06-10 15:15:54 +00:00
James Fehlig
82502faa00 - Add a README to the empty packages. Provides some info about
their purpose and satisfies suse-filelist-empty check.
  Drop rpmlintrc

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=272
2013-06-07 21:42:47 +00:00
James Fehlig
99cb6b4f3c - Fix typo in spec file: devel package requires doc package, not
docs

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=271
2013-06-07 14:16:07 +00:00
James Fehlig
ed47b0b49d Accepting request 177953 from home:jfehlig:branches:Virtualization
- Add rpmlintrc to get around suse-filelist-empty error on
  older distros.

- Refactor libvirt spec file to create subpackages for the various
  libvirtd components.  This allows installing a libvirtd tailored
  for the underlying virtualizer.  E.g. on a KVM/QEMU virtualizer
  only the libvirt-daemon-qemu package needs installed.
  Similarly, only libvirt-daemon-xen on a Xen virtualizer and 
  libvirt-daemon-lxc on LXC.

OBS-URL: https://build.opensuse.org/request/show/177953
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=270
2013-06-07 01:10:31 +00:00
James Fehlig
4514dc2f52 - Update to libvirt 1.0.6
- Move VirtualBox driver into libvirtd
  - Support for static routes on a virtual bridge
  - Various improvement for hostdev SCSI support
  - Switch to VIR_STRDUP and VIR_STRNDUP
  - Various cleanups and improvement in Xen and LXC drivers
  - Many incremental improvements and bug fixes, see
    http://libvirt.org/news.html
  - Drop upstream patches: f493d83f-cgroup-swap-control.patch,
    486a86eb-cgroups-docs.patch, 0ced83dc-cgroup-escape-dot.patch,
    bbe97ae9-no-cgroups.patch, c2cf5f1c-no-cgroups-fix.patch,
    95c6cc34-selinux.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=268
2013-06-04 22:48:46 +00:00
James Fehlig
9decd8f3cc - Update to libvirt 1.0.5.1 stable release
- qemu: Fix cgroup handling when setting VCPU BW
  - daemon: fix leak after listing all volumes
  - Fix iohelper usage with streams opened for read
  - util: fix virFileOpenAs return value and resulting error logs
  - iscsi: don't leak portal string when starting a pool
  - don't mention disk controllers in generic controller errors
  - conf: don't crash on a tpm device with no backends
  - qemu: allocate network connections sooner during domain startup
  -  Make detect_scsi_host_caps a function on all architectures
  - Fix release of resources with lockd plugin
  - Fix potential use of undefined variable in remote dispatch code
  - Fix F_DUPFD_CLOEXEC operation args
  - qemu: fix stupid typos in VFIO cgroup setup/teardown
  - network: fix network driver startup for qemu:///session
- Remove patches that are included in the 1.0.5.1 release
  0471637d-cgroups-vcpu-bw.patch, a2214c52-iohelper.patch,
  ca697e90-CVE-2013-1962.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=266
2013-05-21 18:02:56 +00:00
James Fehlig
4800cebe0e - Don't mount selinux fs in LXC if selinux is disabled
95c6cc34-selinux.patch
  bnc#814680

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=265
2013-05-20 20:57:29 +00:00
James Fehlig
8806eb20b1 - fix leak after listing all volumes - CVE-2013-1962
ca697e90-CVE-2013-1962.patch
  bnc#820397
- Fix iohelper usage with streams opened for read
  a2214c52-iohelper.patch
- Cope with missing swap cgroup controls
  f493d83f-cgroup-swap-control.patch
  bnc#819976
- Fix cgroup handling when setting VCPU BW
  0471637d-cgroups-vcpu-bw.patch
  rhb#963592
- Escape a leading '.' with '_' in the cgroup names
  0ced83dc-cgroup-escape-dot.patch
- Add missing documentation on new cgroup layout
  486a86eb-cgroups-docs.patch
- Another fix related to systems with no cgroups
  c2cf5f1c-no-cgroups-fix.patch
  bnc#819963

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=264
2013-05-18 15:17:46 +00:00
James Fehlig
d820fe0d40 - Fix botched backport of commit bbe97ae9
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=263
2013-05-16 22:26:04 +00:00
James Fehlig
63e2ee1ac4 - Fix starting domains when kernel has no cgroups support
bbe97ae9-no-cgroups.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=262
2013-05-13 15:33:43 +00:00