--- libvirt-0.3.0.orig/debian/control +++ libvirt-0.3.0/debian/control @@ -0,0 +1,53 @@ +Source: libvirt +Section: devel +Priority: optional +Maintainer: Andrew Mitchell +Build-Depends: cdbs (>= 0.4.43), debhelper (>= 5.0.37.2), libxen3.1-dev, libxml2-dev, libncurses5-dev, libreadline5-dev, zlib1g-dev, libgnutls-dev, python-all-dev, python-central (>= 0.5.6) +XS-Python-Version: 2.4 +Standards-Version: 3.7.2 + +Package: libvirt-bin +Architecture: any +Depends: ${shlibs:Depends} +Description: the programs for the libvirt library + Libvirt is a C toolkit to interract with the virtualization capabilities + of recent versions of Linux (and other OSes). The library aim at providing + long term stable C API initially for the Xen paravirtualization but + should be able to integrate other virtualization mechanisms if needed. + . + This package contains the supporting binaries to use with libvirt + +Package: libvirt0 +Architecture: any +Depends: ${shlibs:Depends} +Description: library for interfacing with Xen & other virtualization systems + Libvirt is a C toolkit to interract with the virtualization capabilities + of recent versions of Linux (and other OSes). The library aim at providing + long term stable C API initially for the Xen paravirtualization but + should be able to integrate other virtualization mechanisms if needed. + +Package: libvirt-dev +Architecture: any +Depends: libvirt0 (= ${Source-Version}) +Description: development files for the libvirt library + Libvirt is a C toolkit to interract with the virtualization capabilities + of recent versions of Linux (and other OSes). The library aim at providing + long term stable C API initially for the Xen paravirtualization but + should be able to integrate other virtualization mechanisms if needed. + . + This package contains the header files and static libraries which are + needed for developing the applications with libvirt. + +Package: python-libvirt +Architecture: any +Depends: ${shlibs:Depends}, ${python:Depends} +Provides: ${python:Provides} +XB-Python-Version: ${python:Versions} +Description: libvirt python bindings + Libvirt is a C toolkit to interract with the virtualization capabilities + of recent versions of Linux (and other OSes). The library aim at providing + long term stable C API initially for the Xen paravirtualization but + should be able to integrate other virtualization mechanisms if needed. + . + This package contains python bindings for the libvirt library + --- libvirt-0.3.0.orig/debian/pycompat +++ libvirt-0.3.0/debian/pycompat @@ -0,0 +1 @@ +2 --- libvirt-0.3.0.orig/debian/rules +++ libvirt-0.3.0/debian/rules @@ -0,0 +1,16 @@ +#!/usr/bin/make -f + +export DH_VERBOSE=1 + +DEB_PYTHON_SYSTEM=pycentral +DEB_DH_INSTALL_SOURCEDIR = debian/tmp + +include /usr/share/cdbs/1/rules/debhelper.mk +include /usr/share/cdbs/1/class/autotools.mk + +DEB_CONFIGURE_EXTRA_FLAGS := --disable-rpath + + +binary-install/python-libvirt:: + dh_pycentral -ppython-libvirt + --- libvirt-0.3.0.orig/debian/libvirt-dev.install +++ libvirt-0.3.0/debian/libvirt-dev.install @@ -0,0 +1,4 @@ +usr/lib/libvirt.so +usr/lib/libvirt.a +usr/include/* +usr/lib/pkgconfig/* --- libvirt-0.3.0.orig/debian/changelog +++ libvirt-0.3.0/debian/changelog @@ -0,0 +1,47 @@ +libvirt (0.3.0-0ubuntu2.1) gutsy-security; urgency=low + + * SECURITY UPDATE: fix privilege escalation due to missing read only + connection checks + - update functions in src/libvirt.c to check against VIR_CONNECT_RO and + return with operation denied error + - CVE-2008-5086 + + -- Jamie Strandboge Tue, 16 Dec 2008 11:06:27 -0600 + +libvirt (0.3.0-0ubuntu2) gutsy; urgency=low + + * Add lingnutls-dev Build-Dep. + + -- Fabio M. Di Nitto Mon, 16 Jul 2007 12:10:41 +0200 + +libvirt (0.3.0-0ubuntu1) gutsy; urgency=low + + * Import new upstram release that can actually build on xen-3.1. + + -- Fabio M. Di Nitto Mon, 16 Jul 2007 10:23:04 +0200 + +libvirt (0.2.2-0ubuntu1) gutsy; urgency=low + + * Depends on libxen3.1-dev. + + -- Chuck Short Fri, 13 Jul 2007 11:04:00 -0400 + +libvirt (0.2.2-0ubuntu0) gutsy; urgency=low + + * New upstream version. + * Updated libvirt-bin.install, thanks to Marcelo Boveto Shima. + + -- Chuck Short Sun, 24 Jun 2007 09:54:54 -0400 + +libvirt (0.1.8-0ubuntu2) feisty; urgency=low + + * Rebuild for python2.5 as the default python version. + + -- Matthias Klose Fri, 12 Jan 2007 13:21:55 +0000 + +libvirt (0.1.8-0ubuntu1) feisty; urgency=low + + * Initial release + + -- Andrew Mitchell Mon, 23 Oct 2006 20:00:28 +1300 + --- libvirt-0.3.0.orig/debian/libvirt-bin.install +++ libvirt-0.3.0/debian/libvirt-bin.install @@ -0,0 +1,4 @@ +usr/bin/* +usr/lib/libvirt/* +usr/sbin/* +etc/libvirt/* --- libvirt-0.3.0.orig/debian/libvirt0.install +++ libvirt-0.3.0/debian/libvirt0.install @@ -0,0 +1,2 @@ +usr/lib/libvirt.so.* + --- libvirt-0.3.0.orig/debian/python-libvirt.install +++ libvirt-0.3.0/debian/python-libvirt.install @@ -0,0 +1 @@ +usr/lib/python* --- libvirt-0.3.0.orig/debian/compat +++ libvirt-0.3.0/debian/compat @@ -0,0 +1 @@ +5 --- libvirt-0.3.0.orig/debian/watch +++ libvirt-0.3.0/debian/watch @@ -0,0 +1,3 @@ +# format version number, currently 3; this line is compulsory! +version=3 +http://libvirt.org/sources/libvirt-([\d\.]*)\.tar\.gz --- libvirt-0.3.0.orig/debian/copyright +++ libvirt-0.3.0/debian/copyright @@ -0,0 +1,22 @@ +libvirt was initially debianized by Andrew Mitchell + +libvirt sources were downloaded from http://libvirt.org/sources/ + +Copyright: (C) 2005,2006 Red Hat, Inc + + This library is free software; you can redistribute it and/or + modify it under the terms of the GNU Lesser General Public + License as published by the Free Software Foundation; either + version 2.1 of the License, or (at your option) any later version. + + This library is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + Lesser General Public License for more details. + + You should have received a copy of the GNU Lesser General Public + License along with this library; if not, write to the Free Software + Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + +On Debian systems, the complete text of the GNU Lesser General +Public License can be found in `/usr/share/common-licenses/LGPL'. --- libvirt-0.3.0.orig/src/libvirt.c +++ libvirt-0.3.0/src/libvirt.c @@ -1953,6 +1953,11 @@ conn = domain->conn; + if (domain->conn->flags & VIR_CONNECT_RO) { + virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__); + return (-1); + } + if (conn->driver->domainSetAutostart) return conn->driver->domainSetAutostart (domain, autostart); @@ -2823,6 +2828,11 @@ return (-1); } + if (network->conn->flags & VIR_CONNECT_RO) { + virLibNetworkError(network, VIR_ERR_OPERATION_DENIED, __FUNCTION__); + return (-1); + } + conn = network->conn; if (conn->networkDriver && conn->networkDriver->networkSetAutostart) --- libvirt-0.3.0.orig/NEWS +++ libvirt-0.3.0/NEWS @@ -5,6 +5,48 @@ http://libvirt.org/news.html Releases +0.3.0: Jul 9 2007: + - Secure Remote support (Richard Jones). + See the remote page + of the documentation + + - Documentation: remote support (Richard Jones), description of + the URI connection strings (Richard Jones), update of virsh man + page, matrix of libvirt API/hypervisor support with version + informations (Richard Jones) + - Bug fixes: examples Makefile.am generation (Richard Jones), + SetMem fix (Mark Johnson), URI handling and ordering of + drivers (Daniel Berrange), fix virsh help without hypervisor (Richard + Jones), id marshalling fix (Daniel Berrange), fix virConnectGetMaxVcpus + on remote (Richard Jones), avoid a realloc leak (Jim Meyering), scheduler + parameters handling for Xen (Richard Jones), various early remote + bug fixes (Richard Jones), remove virsh leaks of domains references + (Masayuki Sunou), configCache refill bug (Richard Jones), fix + XML serialization bugs + - Improvements: QEmu switch to XDR-based protocol (Dan Berrange), + device attach/detach commands (Masayuki Sunou), OCaml bindings + (Richard Jones), new entry points virDomainGetConnect and + virNetworkGetConnect useful for bindings (Richard Jones), + reunitifaction of remote and qemu daemon under a single libvirtd + with a config file (Daniel Berrange) + - Cleanups: parsing of connection URIs (Richard Jones), messages + from virsh (Saori Fukuta), Coverage files (Daniel Berrange), + Solaris fixes (Mark Johnson), avoid [r]index calls (Richard Jones), + release information in Xen backend, virsh cpupin command cleanups + (Masayuki Sunou), xen:/// suppport as standard Xen URI (Richard Jones and + Daniel Berrange), improve driver selection/decline mechanism (Richard + Jones), error reporting on XML dump (Richard Jones), Remove unused + virDomainKernel structure (Richard Jones), daemon event loop event + handling (Daniel Berrange), various unifications cleanup in the daemon + merging (Daniel Berrange), internal file and timer monitoring API + (Daniel Berrange), remove libsysfs dependancy, call brctl program + directly (Daniel Berrange), virBuffer functions cleanups (Richard Jones), + make init script LSB compliant, error handling on lookup functions + (Richard Jones), remove internal virGetDomainByID (Richard Jones), + revamp of xen subdrivers interfaces (Richard Jones) + - Localization updates + + 0.2.3: Jun 8 2007: - Documentation: documentation for upcoming remote access (Richard Jones), virConnectNumOfDefinedDomains doc (Jan Michael), virsh help messages