-
libvirt (1.3.1-1ubuntu10.31) xenial; urgency=medium
* d/p/lp1915811-fix-numa-topology.patch: Fix NUMA topology population for
machines with a high number of CPUs (LP: #1915811)
-- Victor Manuel Tapia King <email address hidden> Mon, 22 Feb 2021 13:44:48 +0100
-
libvirt (1.3.1-1ubuntu10.30) xenial; urgency=medium
* d/p/lp-1844455-node_device_conf-Don-t-leak-physical_function.patch:
fix memory-leak from PCI-related structure. (LP: #1844455)
* d/p/lp-1864918-Fix-TLS-test-suites-with-gnutls-3.6.0.patch: fix failing TLS
tests due to recent-introduced SHA1 restriction in gnutls. (LP: #1864918)
-- <email address hidden> (Guilherme G. Piccoli) Wed, 26 Feb 2020 13:23:18 -0300
-
libvirt (1.3.1-1ubuntu10.29) xenial; urgency=medium
* debian/patches/lp1681839-*.patch: Fix block commit timeout
races, and ensure that once commit has reached 100%, timeouts
no longer apply. (LP: #1681839)
-- Matthew Ruffell <email address hidden> Thu, 31 Oct 2019 10:52:41 +1300
-
libvirt (1.3.1-1ubuntu10.28) xenial; urgency=medium
[ Matthew Ruffell ]
* debian/libvirt-bin.upstart: update pre-stop section in upstart
script to stop the libvirt-guests service instead of the now
removed libvirt-stop-guests script. (LP: #1829823)
-- Christian Ehrhardt <email address hidden> Tue, 28 May 2019 08:23:25 +0200
-
libvirt (1.3.1-1ubuntu10.27) xenial-security; urgency=medium
* SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
read-only connection
- debian/patches/CVE-2019-10161.patch: add check to
src/libvirt-domain.c, src/qemu/qemu_driver.c,
src/remote/remote_protocol.x.
- CVE-2019-10161
* SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
read-only connection
- debian/patches/CVE-2019-10167.patch: add check to
src/libvirt-domain.c.
- CVE-2019-10167
-- Marc Deslauriers <email address hidden> Tue, 02 Jul 2019 09:22:37 -0400
-
libvirt (1.3.1-1ubuntu10.26) xenial-security; urgency=medium
* SECURITY UPDATE: Add support for md-clear functionality
- debian/patches/md-clear.patch: Define md-clear CPUID bit in
src/cpu/cpu_map.xml.
- CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
-- Marc Deslauriers <email address hidden> Tue, 14 May 2019 15:13:18 -0400
-
libvirt (1.3.1-1ubuntu10.25) xenial-security; urgency=medium
* SECURITY UPDATE: NULL pointer dereference in qemuAgentGetInterfaces
- debian/patches/CVE-2019-3840.patch: require a reply in
src/qemu/qemu_agent.c.
- CVE-2019-3840
-- Marc Deslauriers <email address hidden> Wed, 13 Mar 2019 08:10:12 -0400
-
libvirt (1.3.1-1ubuntu10.24) xenial-security; urgency=medium
* SECURITY UPDATE: QEMU monitor DoS
- debian/patches/CVE-2018-1064.patch: add size limit to
src/qemu/qemu_agent.c.
- CVE-2018-1064
* SECURITY UPDATE: Speculative Store Bypass
- debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
bit in src/cpu/cpu_map.xml.
- debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
feature bit in src/cpu/cpu_map.xml.
- CVE-2018-3639
-- Marc Deslauriers <email address hidden> Wed, 23 May 2018 13:29:29 -0400
-
libvirt (1.3.1-1ubuntu10.23) xenial; urgency=medium
* Fix nwfilters that set CTRL_IP_LEARNING set to dhcp failing with "An error
occurred, but the cause is unknown" due to a buffer being too small
for pcap with TPACKET_V3 enabled (LP: #1758037)
- debian/patches/ubuntu/lp-1758037-nwfilter-increase-pcap-buffer-size.patch
-- Christian Ehrhardt <email address hidden> Fri, 11 May 2018 07:37:36 +0200
-
libvirt (1.3.1-1ubuntu10.22) xenial; urgency=medium
* Fix clean shut down of guests on system shutdown (LP: #1764668)
- d/p/ubuntu/lp-1764668-do-not-report-unknown-guests.patch
- d/p/ubuntu/lp-1764668-fix-check_guests_shutdown-loop.patch
-- Christian Ehrhardt <email address hidden> Wed, 25 Apr 2018 09:26:12 +0200
-
libvirt (1.3.1-1ubuntu10.21) xenial; urgency=medium
* d/p/ubuntu/lp1688508-fix-variable-scope-in-in-check_guests_shutdown.patch:
backport further upstream fixes that were identified on verification.
Together with the former change this fixes (LP: #1688508)
* d/p/ubuntu/lp1753604-nwfilter-fix-lock-order-deadlock.patch:
fix intermittent deadlock in NWFilter handling (LP: #1753604)
libvirt (1.3.1-1ubuntu10.20) xenial; urgency=medium
* d/p/ubuntu/lp1688508-tools-avoid-text-spilling-into-variables.patch:
avoid hanging on shutdown (LP: #1688508)
-- Christian Ehrhardt <email address hidden> Wed, 04 Apr 2018 10:46:12 +0200
-
libvirt (1.3.1-1ubuntu10.20) xenial; urgency=medium
* d/p/ubuntu/lp1688508-tools-avoid-text-spilling-into-variables.patch:
avoid hanging on shutdown (LP: #1688508)
-- Dariusz Gadomski <email address hidden> Mon, 26 Feb 2018 14:37:40 +0100
-
libvirt (1.3.1-1ubuntu10.19) xenial-security; urgency=medium
[ Leonidas S. Barbosa ]
* SECURITY UPDATE: resource exhaustion resulting in DoS
- debian/patches/CVE-2018-5748.patch: avoid DoS reading from
QEMU monitor in src/qemu/qemu_monitor.c.
- CVE-2018-5748
* SECURITY UPDATE: Bypass authentication
- debian/patches/CVE-2016-5008.patch: let empty default VNC
password work as documented in src/qemu/qemu_hotplug.c.
- CVE-2016-5008
[ Marc Deslauriers ]
* SECURITY UPDATE: code injection via libnss_dns.so
- debian/patches/CVE-2018-6764-1.patch: determine the hostname on
startup in src/util/virlog.c.
- debian/patches/CVE-2018-6764-2.patch: fix syntax-check in
src/util/virlog.c.
- debian/patches/CVE-2018-6764-3.patch: fix deadlock obtaining hostname
in cfg.mk, src/util/virlog.c.
- CVE-2018-6764
-- Marc Deslauriers <email address hidden> Fri, 16 Feb 2018 07:51:15 -0500
-
libvirt (1.3.1-1ubuntu10.18) xenial; urgency=medium
* virsh api is stuck when vm is down with NFS borken (LP: #1746630)
- d/p/0001-qemu-driver-Remove-unnecessary-flag-in-qemuDomainGet.patch
qemu: driver: Remove unnecessary flag in qemuDomainGetStatsBlock
- d/p/0002-qemu-driver-Separate-bulk-stats-worker-for-block-dev.patch
qemu: driver: Separate bulk stats worker for block devices
- d/p/0003-qemu-bulk-stats-Don-t-access-possibly-blocked-storag.patch
qemu: bulk stats: Don't access possibly blocked storage
-- Seyeong Kim <email address hidden> Thu, 01 Feb 2018 09:43:45 +0900
-
libvirt (1.3.1-1ubuntu10.17) xenial-security; urgency=medium
* SECURITY UPDATE: Add support for Spectre mitigations
- debian/patches/CVE-2017-5715-ibrs*.patch: add CPU features for
indirect branch prediction protection and add new *-IBRS CPU models.
- debian/control: add Breaks to get updated qemu with new CPU models.
- CVE-2017-5715
-- Marc Deslauriers <email address hidden> Thu, 01 Feb 2018 15:01:16 -0500
-
libvirt (1.3.1-1ubuntu10.15) xenial; urgency=medium
* d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
clone and other users of storage_utils functions by not passing
iso to qemu-img (LP: #1729858).
-- Christian Ehrhardt <email address hidden> Mon, 06 Nov 2017 16:36:11 +0100
-
libvirt (1.3.1-1ubuntu10.14) xenial; urgency=medium
* d/p/bug-1708305-qemu-Fix-memory-locking-limit-calculation.patch:
Remove memlock limit when using <memoryBacking><locked/>.
(LP: #1708305).
-- Jorge Niedbalski <email address hidden> Thu, 10 Aug 2017 22:50:46 -0400
-
libvirt (1.3.1-1ubuntu10.13) xenial; urgency=medium
* d/libvirt-bin.postinst: call apparmor_parser with options to
ignore the apparmor cache and rebuild it, otherwise old apparmor
rules are used and this might break upgrades (LP: #1707400)
-- Andreas Hasenack <email address hidden> Tue, 01 Aug 2017 10:50:20 -0300
-
libvirt (1.3.1-1ubuntu10.12) xenial; urgency=medium
* d/p/ubuntu/bug-1705132-* qemu: Adaptive timeout for connecting to
monitor (LP: #1705132)
- includes backports that make backing off on timeouts exponentially
but cap the exponential increase on 1s.
-- Christian Ehrhardt <email address hidden> Wed, 19 Jul 2017 08:28:14 +0200
-
libvirt (1.3.1-1ubuntu10.11) xenial; urgency=medium
* d/apparmor/usr.lib.libvirt.virt-aa-helper: Allow access to base
images and snapshots stored in nova-hypervisor snap's $SNAP_COMMON
directory, enabling use of the libvirt deb from the nova-hypervisor
snap (LP: #1644507).
-- Corey Bryant <email address hidden> Thu, 22 Jun 2017 14:43:11 -0400
-
libvirt (1.3.1-1ubuntu10.10) xenial; urgency=medium
* Fix bad SRU backport to match apparmor structure of libvirt
in Xenial (LP: #1680384)
- drop d/p/ubuntu/apparmor-shutdown.patch as the libvirt code here doesn't
trigger it.
- drop d/p/ubuntu/apparmor-vfio.patch as xenial still uses profiles from
debian/apparmor/
- apply content of apparmor-vfio.patch to debian/apparmor/libvirt-qemu
to fix the actual issue.
libvirt (1.3.1-1ubuntu10.9) xenial; urgency=medium
* Add missing apparmor profile entries (LP: #1680384)
- debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
for vf (hot) attach
- debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
parse cmdline of the pid that send the shutdown signal
-- Christian Ehrhardt <email address hidden> Tue, 16 May 2017 12:38:02 +0200
-
libvirt (1.3.1-1ubuntu10.9) xenial; urgency=medium
* Add missing apparmor profile entries (LP: #1680384)
- debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
for vf (hot) attach
- debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
parse cmdline of the pid that send the shutdown signal
-- Christian Ehrhardt <email address hidden> Wed, 26 Apr 2017 13:45:51 +0200
-
libvirt (1.3.1-1ubuntu10.8) xenial; urgency=medium
* fix virsh nodecpumap output (LP: #1659769)
* fix using type ethernet interfaces with user scripts (LP: #1620407)
* add new block device types to virt-aa-helpers profile (LP: #1641618)
-- Christian Ehrhardt <email address hidden> Mon, 06 Feb 2017 14:30:46 +0100
-
libvirt (1.3.1-1ubuntu10.7) xenial; urgency=medium
[ Mauricio Faria de Oliveira ]
* Use a fixed uid/gid for libvirt-qemu user to avoid permission
issues on network filesystems like NFS (backport) (LP: #1637601).
-- Christian Ehrhardt <email address hidden> Wed, 18 Jan 2017 16:15:34 +0100
-
libvirt (1.3.1-1ubuntu10.6) xenial; urgency=medium
* d/apparmor/usr.lib.libvirt.virt-aa-helper: add missing rules for name
resolution to virt-aa-helper Apparmor profile (LP: #1546674).
-- Christian Ehrhardt <email address hidden> Tue, 22 Nov 2016 09:39:18 +0100
-
libvirt (1.3.1-1ubuntu10.5) xenial; urgency=medium
* Fix libvirt-guest.sh to handle multiple guests (LP: #1591695).
libvirt (1.3.1-1ubuntu10.4) xenial; urgency=medium
[ Dann Frazier ]
* Enable NUMA for arm64 (LP: #1627926).
[ Stefan Bader ]
* Update Vcs lines to point to launchpad (LP: #1629210).
-- Stefan Bader <email address hidden> Thu, 06 Oct 2016 13:07:20 +0200
-
libvirt (1.3.1-1ubuntu10.4) xenial; urgency=medium
[ Dann Frazier ]
* Enable NUMA for arm64 (LP: #1627926).
[ Stefan Bader ]
* Update Vcs lines to point to launchpad (LP: #1629210).
-- Stefan Bader <email address hidden> Fri, 30 Sep 2016 12:27:13 +0200
-
libvirt (1.3.1-1ubuntu10.3) xenial; urgency=medium
[ Stefan Bader ]
* Add alias for libvirtd.service into libvirt-bin.service (LP: #1567811)
-- Christian Ehrhardt <email address hidden> Wed, 21 Sep 2016 13:46:44 +0200
-
libvirt (1.3.1-1ubuntu10.2) xenial; urgency=medium
* fix file removal in storage pools (LP: #1571068)
- debian/patches/fix-vol-remove-only-setuid-for-virFileRemove-if-on-NFS.patch
- debian/patches/fix-vol-remove-vir-file-breakout.patch
-- Ryan Harper <email address hidden> Thu, 30 Jun 2016 10:09:45 -0500
-
libvirt (1.3.1-1ubuntu10.1) xenial; urgency=medium
* Cherry pick patches from upstream to enable detection and automatic
usage of host-supported GIC versions. (LP: #1566564)
-- dann frazier <email address hidden> Fri, 03 Jun 2016 14:41:21 -0600
-
libvirt (1.3.1-1ubuntu10) xenial; urgency=medium
* d/p/u/virt-aa-helper-apparmor-allow-usr-share-AAVMF-too.patch: Allow
access to /usr/share/AAVMF/** and /usr/share/qemu-efi/** for aarch64 UEFI.
(LP: #1538882)
-- William Grant <email address hidden> Fri, 15 Apr 2016 12:08:21 +1000
-
libvirt (1.3.1-1ubuntu9) xenial; urgency=medium
* Remove the tasks limit on libvirt-bin service (LP: #1567381)
This should be un-done when it is properly fixed in the code so
that virtual machines are started in their own pids cgroup.
-- Serge Hallyn <email address hidden> Thu, 07 Apr 2016 10:05:01 -0500
-
libvirt (1.3.1-1ubuntu8) xenial; urgency=medium
* d/p/u/virt-aa-helper-add-guest-agent-rule.patch: this actually solves
the qemu guest agent problem for rhel7 vms for me. (LP: #1393842)
Also drop the mknod rule which isn't needed.
* d/apparmor/usr.lib.libvirt.virt-aa-helper: add permission to read under
/var/run. This is needed for some openvswitch info. (LP: #1513367)
-- Serge Hallyn <email address hidden> Fri, 11 Mar 2016 15:01:25 -0800
-
libvirt (1.3.1-1ubuntu7) xenial; urgency=medium
* zfs support (LP: #1553023)
- Cherrypick upstream patches to support zfs
- debian/rules: build with zfs support
- debian/control: add zfs as build-dep
* d/p/u/virt-aa-helper-no-explicity-deny-for-basefiles.patch: don't mark
readonly files with an explicity deny only because the xml marks it
as reasonly. (LP: #1554031)
* fix typo in virt-aa-helper helptext
* fix d/p/u/preup-virt-aa-helper-better-write-denials-handling.patch to
not overwrite const memory.
-- Serge Hallyn <email address hidden> Thu, 10 Mar 2016 19:25:54 -0800
-
libvirt (1.3.1-1ubuntu6) xenial; urgency=medium
* d/apparmor/libvirt-qemu: generalize the qemu-block-extra libs line.
(LP: #1554761)
* d/p/ubuntu/virt-aa-helper-add-mknod-for-guest-agent.patch: add mknod
capability if there is a qemu guest agent. (LP: #1393842)
-- Serge Hallyn <email address hidden> Wed, 09 Mar 2016 18:45:08 -0800
-
libvirt (1.3.1-1ubuntu5) xenial; urgency=low
* Added d/p/ubuntu/preup-virt-aa-helper-better-write-denials-handling.patch
and refreshed d/p/ubuntu/9034-complete-9p-support accordingly.
* Added d/p/ubuntu/additional-libvirt-guest-tweaks.patch to fix default
URI detection when running in a Xen control domain. Also change the
default config to do parallel shutdown requests (max. 10) and reduce the
timeout to 2 minutes.
-- Stefan Bader <email address hidden> Wed, 09 Mar 2016 09:13:09 +0100
-
libvirt (1.3.1-1ubuntu4) xenial; urgency=low
* d/libvirt-bin.virtlockd.init: Replace by the version I had already
prepared and was tested (LP: #1547208).
* d/libvirt-bin.virtlogd.init: Fix up some left-over references to
libvirtd.
* d/control: Add provides libvirt-daemon for libvirt-bin (LP: #1551643)
-- Stefan Bader <email address hidden> Tue, 01 Mar 2016 10:58:23 +0100
-
libvirt (1.3.1-1ubuntu3) xenial; urgency=medium
* d/libvirt-bin.virtlockd.init: Re-write based on virtlogd init script
as upstream provided version is not compatible with Ubuntu/Debian.
-- James Page <email address hidden> Mon, 29 Feb 2016 22:24:49 +0000
-
libvirt (1.3.1-1ubuntu2) xenial; urgency=medium
* No-change rebuild for gnutls transition.
-- Matthias Klose <email address hidden> Wed, 17 Feb 2016 22:41:20 +0000
-
libvirt (1.3.1-1ubuntu1) xenial; urgency=low
* Merge from Debian unstable. Remaining changes:
- debian/apparmor/{libvirt-lxc,libvirt-qemu,local-usr.sbin.libvirtd,
TEMPLATE.lxc,TEMPLATE.qemu,usr.lib.libvirt.virt-aa-helper,
usr.sbin.libvirtd} Add apparmor profiles.
- Add debian/libvirt-bin.virtlockd.init based on the upstream version
src/locking/virtlockd.init.in. This does not seem to get processed
by the build.
- debian/control:
* Add libcurl4-gnutls-dev, libxml-libxml-perl, libcgmanager-dev
* Add ppc64el to libnuma-dev arches
* Remove libsanlock-dev, libselinux1-dev, systemtap-sdt-dev
* Remove python, sheepdog, librados-dev, libfuse-dev
* Remove libssh2-1-dev, qemu-system-common, augeas-tools
* Don't build libvirt-clients, libvirt-daemon, libvirt-sanlock packages
* Keep multiarch changes.
- Keep debian/{libvirt-bin.apport,libvirt-bin.cron.daily}
- Keep change d/libvirt0.install and d/libvirt-dev.install that
adds multi-arch wildcard.
- d/libvirt-daemon-system.libvirtd.default ->
d/libvirt-bin.libvirt-bin.default
- d/libvirt-daemon-system.dirs -> d/libvirt-bin.dirs
* Add /etc/apparmor.d/{abstractions,disable,force-complain,local}
* Add /etc/cron.daily
* Add /usr/share/apport/package-hooks
* Add /var/log/libvirt/libxl
* Add /etc/dnsmasq.d-available
* Remove /usr/share/polkit-1/rules.d/
* Remove /var/lib/polkit-1/localauthority/10-vendor.d/
- Keep debian/libvirt-bin.dnsmasq
- d/libvirt-daemon-system.examples -> d/libvirt-bin.examples
* Remove debian/build/daemon/libvirtd.policy
* Drop debian/libvirt-suspendonreboot
- d/libvirt-daemon-system.libvirtd.init -> d/libvirt-bin.libvirt-bin.init
* Add provides libvirt-bin
* Change /etc/default/libvirtd into /etc/default/libvirt-bin
* Add wait_on_sockfile() and call it during start
- d/libvirt-daemon-system.install -> d/libvirt-bin.install
* Add usr/bin/*
* Add usr/sbin/*
* Add etc/apparmor.d/*
* Replace etc/libvirt/{libvirtd,virtlockd,virtlogd}.conf -> etc/libvirt/*
(since with the clients included there are many more config files)
* Add usr/share/polkit-1
* Add usr/lib/libvirt/*
* Add usr/share/augeas/*
* Add usr/share/libvirt/*
* Add usr/share/man/man8/*
* Add usr/share/apport/package-hooks/source_libvirt.py
* Add etc/dnsmasq.d-available/libvirt-bin
* Add etc/profile.d/libvirt-uri.sh
* Add usr/lib/libvirt
- d/libvirt-daemon-system.links -> d/libvirt-bin.links
* Replace libvirt-daemon-system with libvirt-bin for libvirt0
* Remove libvirt-daemon line
- Remove d/libvirt-bin.maintscript
- d/libvirt-clients.manpages -> d/libvirt-bin.manpages
* Add debian/libvirt-migrate-qemu-disks.1
* Add debian/libvirt-migrate-qemu-machinetype.1
* Add debian/libvirt-migrate-xend-managed-domains.1
- Combined d/libvirt-daemon-system.NEWS and d/libvirt-daemon.NEWS into
d/libvirt-bin.NEWS
- Keep d/libvirt-bin.{postinst,postrm,preinst} though they probably could
be freshly derived from libvirt-daemon counterparts.
* Added removal of qemu capability cache (found in Debian) to postinst
* Added reload of virtlogd in postinst (following example of virtlockd)
- Replace d/libvirt-bin.preinst
- Add d/libvirt-bin.upstart
- d/libvirt-daemon-system.virtlogd.init -> d/libvirt-bin.virtlogd.init
- Remove d/libvirt-clients.install
- Remove d/libvirt-clients.links
- Remove d/libvirt-daemon.install
- Remove d/libvirt-daemon.links
- d/libvirt-daemon.README.Debian -> d/libvirt-bin.README.Debian
* Replaced access control section
* Appended apparmor profile section
* Appended disk migration section
* Appended qemu/kvm machine type migration section
- Remove d/libvirt-daemon-system.{maintscript,postinst,postrm,preinst}
- Keep libvirt-migrate-qemu-disks (and manpage)
- Keep libvirt-migrate-qemu-machinetype (and manpage)
- Keep libvirt-migrate-xend-managed-domains (and manpage)
- Remove d/libvirt-sanlock.{cron.weekly,links,install}
- Drop d/libvirt-stop-guests
- Drop d/libvirt-suspendonreboot (replaced by upstream libvirt-guests)
- Keep d/libvirt-uri.sh
- Remove d/polkit/60-libvirt.pkla (and polkit directory)
- d/tests/control
- Add build-essential and pkg-config dependencies to build-test
- debian/rules:
* Add autoconf stuff (not sure what still really gets used).
* Use qemu-group kvm instead of libvirt-qemu
* Add SHEEPDOGCLI environment variable to dh_auto_configure
override (instead of an DEB_DH_... make variable which no
longer takes effect).
* Drop --with-secdriver-apparmor --with-apparmor-profiles from
WITH_APPARMOR config.
* Change WITH_FIREWALLD and WITH_SELINUX settings to disabled.
* Change WITH_DTRACE setting to disabled.
* Drop DEB_DH_SYSTEMD_START_ARGS_libvirt-bin as it is no longer
needed after dropping cdbs.
* Add to override_dh_install section
- Install apparmor files (and post-processing)
- Install apport hooks.
- Install migration tools.
- Install profile script to autoset URI.
- Replace package name libvirt-daemon-system with libvirt-bin.
- Debian now copies libvirt-guests.{init,default} and
virtlogd.default from upstream source. Copy virtlockd.default
as well.
- Rename libvirtd.{socket,service} to libvirt-bin.{socket,service}
- Change dh_systemd_start to use virtlo{g,ck}d.socket only (the
services are supposed to be started by using the sockets.
- Move libs and pkgconfig under multiarch directory.
* Modify override_dh_auto_clean
- Replace package name libvirt-daemon-system with libvirt-bin
- Delete upstream files which were copied into debian/.
* Add override_dh_gencontrol section which conditionally adds
conflicts on apparmor.
* Add override_dh_makeshlibs section to pass version info for
libvirt0.
* Dropped patches:
- ubuntu/virt-aa-helper-handle-ovmf (upstream added ovmf paths to
restricted_rw)
* Refreshed patches:
- refreshed d/p/ubuntu/9034-complete-9p-support
* New patches
- d/ubuntu/libvirt-guests-exclude-dom0.patch
- d/ubuntu/libxl-no-dm-check.patch
- d/ubuntu/libxl-fix-test-data.patch
- d/ubuntu/Debianize-virtlogd-service.patch
- d/ubuntu/Debianize-virtlockd-init.patch
- d/ubuntu/switch-service-files-to-libvirt-bin.patch
- d/ubuntu/libvirt-socket-fix-group.patch
-- Stefan Bader <email address hidden> Fri, 12 Feb 2016 14:46:21 +0100
-
libvirt (1.2.21-2ubuntu10) xenial; urgency=medium
* Multiarchify the library packages.
-- Matthias Klose <email address hidden> Thu, 28 Jan 2016 16:33:15 +0100
-
libvirt (1.2.21-2ubuntu9) xenial; urgency=medium
* debian/rules: Disable cdbs' implicitly generated dh_systemd_start calls.
We already call it explicitly with the right options, calling it again
with the default options stops libvirt-guests during upgrades.
(LP: #1533839)
-- Martin Pitt <email address hidden> Mon, 18 Jan 2016 09:10:21 +0100
-
libvirt (1.2.21-2ubuntu8) xenial; urgency=low
* d/libvirt-stop-guests: Skip Domain-0 on guest shutdown. Newer
versions of libvirt will include dom0 in the list of running domains
(with libxl). This special domain must be ignored.
-- Stefan Bader <email address hidden> Thu, 14 Jan 2016 11:35:39 +0100
-
libvirt (1.2.21-2ubuntu7) xenial; urgency=medium
* d/apparmor/libvirt-qemu: silence denial to shm/lttng file since shm
mountpoint has moved (LP: #1529319)
-- Serge Hallyn <email address hidden> Mon, 11 Jan 2016 11:55:28 -0800
-
libvirt (1.2.21-2ubuntu6) xenial; urgency=medium
* d/apparmor/libvirt-qemu: add r access to max_mem_regions vhost module
paramater (LP: #1531564)
-- Serge Hallyn <email address hidden> Mon, 11 Jan 2016 11:33:02 -0800
-
libvirt (1.2.21-2ubuntu5) xenial; urgency=medium
* SECURITY UPDATE: ACL bypass using storage pool directory traversal
- debian/patches/CVE-2015-5313.patch: filter filesystem volume names in
src/storage/storage_backend_fs.c.
- CVE-2015-5313
-- Marc Deslauriers <email address hidden> Fri, 08 Jan 2016 10:32:17 -0500
-
libvirt (1.2.21-2ubuntu4) xenial; urgency=medium
* Revert Ubuntu-specific patch to build-depend on libsystemd-daemon-dev
instead of libsystemd-dev; libsystemd-daemon-dev is no longer built from
systemd source so we want libsystemd-dev.
-- Colin Watson <email address hidden> Tue, 29 Dec 2015 00:31:16 +0000
-
libvirt (1.2.21-2ubuntu3) xenial; urgency=medium
* Fix build-test autopkgtest: it now expects to run with the current
directory set to the root of the unpacked source package, writes to
$ADTTMP rather than to the source package, and declares dependencies on
build-essential and pkg-config.
-- Colin Watson <email address hidden> Mon, 28 Dec 2015 05:25:54 +0000
-
libvirt (1.2.21-2ubuntu2) xenial; urgency=medium
* d/apparmor/libvirt-qemu: add permission to the systemd-mounted hugepages
path. (LP: #1524737)
-- Serge Hallyn <email address hidden> Thu, 17 Dec 2015 10:49:18 -0800
-
libvirt (1.2.21-2ubuntu1) xenial; urgency=medium
* Merge from Debian unstable. Remaining changes:
- debian/apparmor/{libvirt-lxc,libvirt-qemu,local-usr.sbin.libvirtd,
TEMPLATE.lxc,TEMPLATE.qemu,usr.lib.libvirt.virt-aa-helper,
usr.sbin.libvirtd} Add apparmor profiles.
- debian/bug-presubj: removed
- debian/control:
- add cdbs, dh-autoreconf, libcurl4-gnutls-dev
- add libxml-libxml-perl, libhal-dev
- swap open-iscsi to open-iscsi-utils
- Enable numa support on ppc64el.
- remove libsanlock-dev, libselinux1-dev
- use libsystemd-daemon-dev instead of libsystemd-dev
- remove systemtap-sdt-dev, python, sheepdog, librados-dev, libfuse-dev
- remove libssh2-1, augeas-tools
- add libcgmanager-dev, xsltproc
- remove Vcs-Git
- adjust X-Python-Version > 2.7
- don't build libvirt-clients, libvirt-daemon, libvirt-sanlock packages
- keep debian/{libvirt-bin.apport,libvirt-bin.cron.daily}
- debian/libvirt-daemon.* has been mostly renamed to debian/libvirt-bin.*
- add upstart script for libvirt-bin
- debian/*.{links,maintscript} files not added
- keep ubuntu maintscript modifications
- debian/libvirt-sanlock* not merged
- debian/libvirt-clients* not merged
- keep debian/{libvirt-migrate-qemu-disks.*,
libvirt-migrate-qemu-machinetype.*,
libvirt-migrate-xend-managed-domains.*}
- keep debian/libvirt-suspendonreboot
- keep debian/libvirt-uri.sh
- debian/polkit/* not added
- debian/README.Debian:
- add 'Apparmor Profile' section
- add 'Disk migration' section
- debian/rules:
- add cdbs and autoconf stuff
- don't build WITH_SANLOCK, WITH_INIT_SCRIPT, WITH_SYSTEMD, WITH_FIREWALLD
WITH_SELINUX
- use qemu-group kvm instead of libvirt-qemu
- set DEB_DH_INSTALLINIT_ARGS to '--upstart-only'
- remove auto_test section
- add build/libvirt-bin:: section to install
- apparmor files
- apport hooks
- libvirt-migrate-qemu-disks
- use clean:: instead of dh_*clean
- Move ubuntu specific patches to 'debian/patches/ubuntu'
* Dropped patches:
- drop 9033-apparmor-use-TEMPLATE.qemu-for-kvm.patch (upstream 16d2bc8b)
- drop 9036-util-prepare-uri-for-libxml2-2.9.2.patch (upstream 8f17d0ea)
- drop 9040-virt-aa-helper-add-unix-channels (upstream 03d7462d)
- drop CVE-2014-3633.patch (upstream 3e745e8f)
- drop CVE-2014-3657.patch (upstream fc22b2e7)
- drop CVE-2014-7823.patch (upstream b1674ad5)
- drop Don-t-fail-if-we-can-t-setup-avahi.patch (dropped in debian)
- drop add-ppc64le-support.patch (upstream 9265fd19, addce06c, 1e911742,
bdbe723f, 5e4f49ab)
- drop blockdev-migration patches (upstream 1049a8d8, 9c5efd1a, cb7297c1,
a5250449, e9ef8565, 952907f5, 5eb03b6e, 93a19e28, a4e92f9e, de0aeafe)
- storage-allow-zero-capacity-with-non-backing-file-to.patch,
tests-add-vol-qcow2-zerocapacity-test-to-storagevolx.patch
(upstream 0bcda653, b8cc0cc5)
- ubuntu/fix-ubuntu-xen-qemu-dm-path.patch dropped in favor of
Allow-xen-toolstack-to-find-it-s-binaries.patch
- drop ubuntu-libxl-Implement-basic-video-device-selection.patch
(upstream 1298daca)
- remove dont-include-non-migrateable-features-in-host-model
(upstream and not included in series)
- remove upstream-libxl-Allow-libxl-to-find-pygrub-binary.patch
(upstream and not included in series)
-- Chris J Arges <email address hidden> Wed, 02 Dec 2015 12:06:09 -0600
-
libvirt (1.2.16-2ubuntu14) xenial; urgency=medium
* debian/apparmor/libvirt-qemu: add a bunch of newly available qemu-*
architecture binaries. (LP: #1519030)
-- Dimitri John Ledkov <email address hidden> Mon, 23 Nov 2015 17:42:52 +0000
-
libvirt (1.2.16-2ubuntu13) xenial; urgency=medium
* debian/control: switch ebtables from Recommends to Depends or default
configuration network doesn't get created. (LP: #1505576)
-- Marc Deslauriers <email address hidden> Thu, 05 Nov 2015 15:14:04 -0600
-
libvirt (1.2.16-2ubuntu12) xenial; urgency=medium
* virt-aa-helper apparmor policy: add 'network inet6' (LP: #1511830)
-- Serge Hallyn <email address hidden> Mon, 02 Nov 2015 11:49:56 -0600
-
libvirt (1.2.16-2ubuntu11) wily; urgency=medium
* Fix the preinst and postinst: the check for whether libvirt-bin was
running was wrong for upstart systems, but we don't need to do that
anyway - just stop libvirt-bin unconditionally. (LP: #1499199)
* libvirt-guests.service: fix libvirtd.service -> libvirt-bin.service
-- Serge Hallyn <email address hidden> Sun, 27 Sep 2015 15:47:08 +0000