Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: libvirt-daemon-config-nwfilter | Distribution: SUSE Linux Enterprise 15 |
Version: 7.1.0 | Vendor: SUSE LLC <https://www.suse.com/> |
Release: 4.1 | Build date: Thu Apr 8 22:36:01 2021 |
Group: System/Management | Build host: xinomavro |
Size: 10320 | Source RPM: libvirt-7.1.0-4.1.src.rpm |
Packager: https://www.suse.com/ | |
Url: http://libvirt.org/ | |
Summary: Network filter configuration files for the libvirtd |
Network filter configuration files for the libvirt daemon, used for cleaning guest network traffic.
LGPL-2.1-or-later
* Fri Apr 02 2021 jfehlig@suse.com - spec: Remove use of %fdupes since it was only acting on files that should be excluded bsc#1184293 - Remove bogus comment from /etc/sysconfig/libvirtd bsc#1184253 * Thu Mar 18 2021 jfehlig@suse.com - spec: Fix exec-restart of virtlockd and virtlogd on package upgrade bsc#1183411 * Wed Mar 17 2021 jfehlig@suse.com - spec: Move netcat-openbsd requirement from the libs to the daemon subpackage. It is only needed by the daemon and introduces an unneeded dependency for users of libvirt-libs. * Fri Mar 12 2021 jfehlig@suse.com - virtlockd, virtlogd: Fix exec-restart 6b8e9613-avoid-use-after-free.patch, eab7ae6b-fix-array-access.patch, c363f03e-virnetdaemon-intro-virNetDaemonQuitExecRestart.patch, ccc6dd8f-fix-exec-restart.patch bsc#1183411 * Wed Mar 10 2021 jfehlig@suse.com - Replace libxl-default-pcistub-name.patch with upstream variant ee3dc2c2-libxl-default-pcistub-name.patch * Mon Mar 01 2021 jfehlig@suse.com - libxl: Fix node device detach when driver unspecified libxl-default-pcistub-name.patch boo#1182885 - spec: Bump minimum glib version to 2.56 * Mon Mar 01 2021 jfehlig@suse.com - Update to libvirt 7.1.0 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - bsc#1182367, bsc#1182515 - Dropped patches: 32c5e432-revert-f035f53b.patch, e3d60f76-fix-socket-file-gen.patch, 7cf60006-qemu-swtpm-aarch64.patch, afb823fc-qemu-validate-swtpm.patch, 8a4b8996-conf-move-virDomainCheckVirtioOptions.patch, c05f0066-conf-drop-empty-virDomainNetDefPostParse.patch, 19d4e467-conf-improve-virDomainVirtioOptionsCheckABIStability.patch, bd112c9e-qemu-virtio-options-vsock.patch * Sat Feb 20 2021 jfehlig@suse.com - Remove old initscript patching of libvirt-guests.sh Modified suse-libvirt-guests-service.patch boo#1182494 * Wed Feb 17 2021 jfehlig@suse.com - qemu: Add virtio related options to vsock 8a4b8996-conf-move-virDomainCheckVirtioOptions.patch, c05f0066-conf-drop-empty-virDomainNetDefPostParse.patch, 19d4e467-conf-improve-virDomainVirtioOptionsCheckABIStability.patch, bd112c9e-qemu-virtio-options-vsock.patch bsc#1182365 * Thu Feb 11 2021 jfehlig@suse.com - qemu: Fix swtpm device with aarch64 7cf60006-qemu-swtpm-aarch64.patch, afb823fc-qemu-validate-swtpm.patch bsc#1181893 * Tue Feb 09 2021 jfehlig@suse.com - build: Fix generation of virtproxyd socket files e3d60f76-fix-socket-file-gen.patch boo#1181838 * Fri Jan 29 2021 jfehlig@suse.com - Revert "Add libvirtd dependency to virt-guest-shutdown.target" 32c5e432-revert-f035f53b.patch bsc#1177902 * Fri Jan 29 2021 jfehlig@suse.com - spec: Enable the libvirt firewalld zone in SLE >= 15 SP3 jsc#SLE-17336 * Tue Jan 19 2021 jfehlig@suse.com - Update to libvirt 7.0.0 - jsc#SLE-15860 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 0d05d51b-apparmor-lxc-fix.patch, cf4e7e62-lxc-def-secmodel.patch, 0ddebdb4-qemu-snapshot-deletion.patch * Mon Jan 04 2021 olaf@aepfle.de - Update libxl-set-migration-constraints.patch Remove code which handled --max_factor. The total amount of transferred data is no indicator to trigger the final stop+copy. This should have been removed during upgrade to Xen 4.7. Reduce default value of --max_iters from 5 to 2. The workload within domU will continue to produce dirty pages. It is unreasonable to expect any slowdown during migration. Now there is one initial copy of all memory, one instead of four iteration for dirty memory, and a final copy iteration prior move. * Thu Dec 17 2020 jfehlig@suse.com - qemu: Fix logic bug in inactive snapshot deletion 0ddebdb4-qemu-snapshot-deletion.patch boo#1180049 * Wed Dec 09 2020 jfehlig@suse.com - spec: Enable mdevctl support in the nodedev driver for SLE15 SP3 jsc#SLE-15861, bsc#1179770 * Mon Dec 07 2020 jfehlig@suse.com - apparmor: Allow lxc processes to receive signals from libvirt lxc: Set default security model in XML parser config 0d05d51b-apparmor-lxc-fix.patch, cf4e7e62-lxc-def-secmodel.patch bsc#1179735 * Tue Dec 01 2020 jfehlig@suse.com - Update to libvirt 6.10.0 - jsc#SLE-13688 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: f035f53b-virt-guest-shutdown.patch * Fri Nov 13 2020 jfehlig@suse.com - spec: Remove creation of libvirt group and add Requires to the libvirt group created with GID 108 by the system-group-libvirt package. jsc#SLE-11629 * Wed Nov 11 2020 jfehlig@suse.com - spec: Add 'Requires: bash-completion' to the libvirt-bash-completion subpackage bsc#1178498 * Mon Nov 09 2020 jfehlig@suse.com - Add libvirtd dependency to virt-guest-shutdown.target f035f53b-virt-guest-shutdown.patch boo#1175914, bsc#1177902 * Tue Nov 03 2020 fbui@suse.com - Replace '%service_del_postun -n' with '%service_del_postun_without_restart' '-n' is deprecated and will be removed in the future. * Mon Nov 02 2020 jfehlig@suse.com - Update to libvirt 6.9.0 - jsc#SLE-13688, jsc#SLE-16754 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html * Mon Nov 02 2020 ohering@suse.de - bsc#1177950 - adjust help for --max_iters, default is 5 libxl-set-migration-constraints.patch * Wed Oct 28 2020 fbui@suse.com - Drop use of $DISABLE_RESTART_ON_UPDATE in %postrans Testing "$DISABLE_RESTART_ON_UPDATE != yes" had no effect since its value is supposed to be read from /etc/sysconfig/services. * Wed Oct 14 2020 jfehlig@suse.com - Fix 'make check' with all downstream patches applied. Some patches touch config files and needed the corresponding augeaus test files updated. Updated patches: suse-libvirtd-disable-tls.patch, suse-qemu-conf.patch, suse-ovmf-paths.patch, suse-libxl-disable-autoballoon.patch boo#1175574 * Thu Oct 01 2020 jfehlig@suse.com - Update to libvirt 6.8.0 - jsc#SLE-12684, jsc#SLE-15861 - bsc#1174955 (CVE-2020-15708) - bsc#1177155 (CVE-2020-25637) - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 2ad009ea-qemu-check-modules-dir.patch, 8abd1ffe-qemu-tolerate-non-existent-files.patch, 4a72b76b-qemu-namespace-memleak-fix.patch * Thu Sep 10 2020 jfehlig@suse.com - spec: Increase test timeout to account for slower test execution on some architectures * Thu Sep 10 2020 jfehlig@suse.com - qemu: Tolerate non-existing files such as /dev/kvm when populating domain private namespace 8abd1ffe-qemu-tolerate-non-existent-files.patch, 4a72b76b-qemu-namespace-memleak-fix.patch boo#1176380 * Wed Sep 02 2020 jfehlig@suse.com - spec: Enable the same hypervisor drivers for openSUSE and SLE jsc#SLE-11772 - spec: Enable the same storage drivers for openSUSE and SLE jsc#SLE-11877 * Tue Sep 01 2020 jfehlig@suse.com - qemu: Reprobe capabilities if the qemu modules directory changes 2ad009ea-qemu-check-modules-dir.patch boo#1175320 * Tue Sep 01 2020 jfehlig@suse.com - Update to libvirt 6.7.0 - jsc#SLE-14253, jsc#SLE-15159 - CVE-2020-14339 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 2edd63a0-fix-virFileSetCOW-logic.patch, 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch, support-managed-pci-xen-driver.patch, disable-multipath-pr-tests.patch * Tue Aug 25 2020 jfehlig@suse.com - Update to libvirt 6.6.0 - jsc#SLE-14253 - CVE-2020-14339 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Added patches: 2edd63a0-fix-virFileSetCOW-logic.patch, 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch Dropped patches: 6c1dddaf-libxl-shutdown-inhibit.patch, 849052ec-libxl-support-credit2.patch, 72ed254b-drop-exec-perms-bashcompletion.patch, e092daac-prohib-parallel-tunneled-mig.patch, ae9e6c2a-qemu-allow-cond-format-probe.patch, a30078cb-qemu-create-mp-target.patch, aeb909bf-qemu-multipath-fix.patch, 8e669b38-conf-add-event-channels.patch, a93f55c5-libxl-add-event-channels.patch, 967f4eeb-xenconfig-event-channels.patch, 4cc90c2e-CVE-2020-10701.patch, 93b15ba0-qemu-fix-hang-in-p2p-xbzrle-compression-parallel-mig.patch, b7d6648d-conf-add-e820-host.patch, 5749395b-libxl-e820-host.patch, f3ef7daf-xenconfig-e820-host.patch, 34077c1b-tests-check-e820-host.patch, fadbaa23-conf-add-passthrough.patch, 9529e007-libxl-passthrough.patch, 9cb8bc6f-xenconfig-refactor-features.patch, b523e225-xenconfig-passthrough.patch, bed32525-tests-check-passthrough.patch, 9bf9e0ae-CVE-2020-12430.patch, ec07aad8-libxl-normalize-mac-addr.patch, 22494556-CVE-2020-14339.patch, c5fffb95-kernel-cmdline-parser.patch, b611b620-check-s390-secure-guest.patch, 657365e7-check-amd-secure-guest.patch, 0254ceab-s390-host-validate-check.patch, 4b561d49-amd-host-validate-check.patch, 2c3ffa37-update-amd-doc.patch, f0d0cd61-update-s390-doc.patch, 8cb9d249-autoptr-file-callback.patch, a551dd5f-intro-virHostCPUGetSignature.patch, 44f826e4-virHostCPUGetSignature-x86.patch, 2a68ceaa-virHostCPUGetSignature-ppc64.patch, d3d87e0c-virHostCPUGetSignature-s390.patch, 004804a7-qemu-invalidate-caps.patch - qemu: Avoid stale capabilities cache host CPU or kernel command line changes bsc#1173157 - virdevmapper: Handle kernel without device-mapper support 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch boo#1175465 - util: Fix logic in virFileSetCOW 2edd63a0-fix-virFileSetCOW-logic.patch boo#1175463 * Thu Jul 30 2020 jfehlig@suse.com - CVE-2020-14339: Don't leak /dev/mapper/control into QEMU. Use ioctl's to obtain the dependency tree of disks and drop use of libdevmapper. 22494556-CVE-2020-14339.patch bsc#1161883, bsc#1174458 * Wed Jun 03 2020 jfehlig@suse.com - libxl: Normalize MAC address in device conf on netdev hotplug ec07aad8-libxl-normalize-mac-addr.patch bsc#1172052 * Wed Apr 29 2020 jfehlig@suse.com - qemu: Fix memory leak in qemuDomainGetStatsIOThread CVE-2020-12430 9bf9e0ae-CVE-2020-12430.patch bsc#1170765 * Tue Apr 21 2020 jfehlig@suse.com - libxl: Add support for 'passthrough' and 'e820_host' settings b7d6648d-conf-add-e820-host.patch, 5749395b-libxl-e820-host.patch, f3ef7daf-xenconfig-e820-host.patch, 34077c1b-tests-check-e820-host.patch, fadbaa23-conf-add-passthrough.patch, 9529e007-libxl-passthrough.patch, 9cb8bc6f-xenconfig-refactor-features.patch, b523e225-xenconfig-passthrough.patch, bed32525-tests-check-passthrough.patch bsc#1167217 * Fri Apr 17 2020 lma@suse.com - qemu: fix hang in p2p + xbzrle compression + parallel migration 93b15ba0-qemu-fix-hang-in-p2p-xbzrle-compression-parallel-mig.patch bsc#1161159 * Thu Apr 09 2020 jfehlig@suse.com - api: Disallow virDomainAgentSetResponseTimeout on read-only connections. CVE-2020-10701 4cc90c2e-CVE-2020-10701.patch bsc#1168680 * Thu Apr 09 2020 jfehlig@suse.com - libxl: Add support for max event channels with maxEventChannel attribute on the xenbus controller 8e669b38-conf-add-event-channels.patch, a93f55c5-libxl-add-event-channels.patch, 967f4eeb-xenconfig-event-channels.patch bsc#1168767 * Thu Mar 19 2020 jfehlig@suse.com - libxl: Bump minimum supported Xen version to 4.9, allowing use of newer libxl APIs for retrieving memory statistics suse-bump-xen-version.patch bsc#1157490, bsc#1167007 * Tue Mar 17 2020 jfehlig@suse.com - qemu: Create multipath targets for PRs a30078cb-qemu-create-mp-target.patch, aeb909bf-qemu-multipath-fix.patch bsc#1161883 * Tue Mar 03 2020 jfehlig@suse.com - qemu: Allow format probing under special circumstances ae9e6c2a-qemu-allow-cond-format-probe.patch bsc#1165588 * Wed Feb 05 2020 jfehlig@suse.com - xen: Fix the list of supported ovmf firmwares suse-xen-ovmf-loaders.patch bsc#1159793 * Mon Feb 03 2020 jfehlig@suse.com - lib: Prohibit parallel connections with tunneled migration e092daac-prohib-parallel-tunneled-mig.patch jsc#SLE-6998 * Mon Feb 03 2020 dimstar@opensuse.org - BuildRequire pkgconfig((lib)?udev) instead of (lib)?udev: allow OBS to shortcut through -mini flavors. * Thu Jan 30 2020 jfehlig@suse.com - spec: Fix several rpmlint warnings 72ed254b-drop-exec-perms-bashcompletion.patch * Thu Jan 30 2020 jfehlig@suse.com - xen: Support setting credit2 scheduler parameters 849052ec-libxl-support-credit2.patch bsc#1162160 * Wed Jan 29 2020 jfehlig@suse.com - xen: Inhibit libvirtd shutdown when domains are running 6c1dddaf-libxl-shutdown-inhibit.patch bsc#1157100 * Wed Jan 15 2020 jfehlig@suse.com - Update to libvirt 6.0.0 - jsc#SLE-6997, jsc#SLE-6998 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 0a65cba4-news-fix.patch 07aaced4-Add-TAA-No.patch, f411b7ef6-Add-TSX-CTRL.patch, 50d7465f-qemu-firmware1.patch, 57f9067c-qemu-firmware2.patch, 7c5264d2-qemu-firmware3.patch, 8e1804f9-qemu-firmware4.patch, 8fcee478-qemu-firmware5.patch * Thu Jan 09 2020 jfehlig@suse.com - qemu: Fix firmware auto detection 50d7465f-qemu-firmware1.patch, 57f9067c-qemu-firmware2.patch, 7c5264d2-qemu-firmware3.patch, 8e1804f9-qemu-firmware4.patch, 8fcee478-qemu-firmware5.patch boo#1157378, bsc#1159796 * Thu Dec 19 2019 jfehlig@suse.com - CVE-2019-11135: Add TSX_CTRL and TAA_NO bits for IA32_ARCH_CAPABILITIES MSR 07aaced4-Add-TAA-No.patch, f411b7ef6-Add-TSX-CTRL.patch bsc#1152505 * Tue Dec 10 2019 cbosdonnat@suse.com - virt-create-rootfs: add SLE 15 and SLE 12 service packs support bsc#1154093 * Mon Dec 02 2019 jfehlig@suse.com - Update to libvirt 5.10.0 - bsc#1157149 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 2552752f-libxl-fix-lock-manager-lock-ordering.patch - Added patches: 0a65cba4-news-fix.patch * Wed Nov 27 2019 jfehlig@suse.com - spec: Enable 'libvirt' firewalld zone for firewalld >= 0.7.0 boo#1157766 * Thu Nov 14 2019 jfehlig@suse.com - libxl: Fix lock manager lock ordering 2552752f-libxl-fix-lock-manager-lock-ordering.patch bsc#1145774 * Tue Nov 12 2019 jfehlig@suse.com - spec: Forcibly remove '--listen' option from LIBVIRTD_ARGS in /etc/sysconfig/libvirtd since it is incompatible with socket activation. Also add '--timeout' option for consistency with upstream. boo#1156161 * Mon Nov 11 2019 jfehlig@suse.com - Enable automatic firmware seletction and add the new smm flavor to the build-time firmware list jsc#SLE-6997 * Wed Nov 06 2019 jfehlig@suse.com - Update to libvirt 5.9.0 - jsc#SLE-7440 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html * Tue Oct 08 2019 jfehlig@suse.com - Update to libvirt 5.8.0 - bsc#1149100 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html * Fri Sep 06 2019 jfehlig@suse.com - Update to libvirt 5.7.0 - Experimental split of libvirtd into separate daemons - bsc#1145440, bsc#1145586 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html - Dropped patches: 4ec3cf9a-apparmor-rules.patch, f38ef0fa-no-RDMA-check.patch, 411cdaf8-apparmor-check-profile-name.patch. 696239ba-qemu-fix-query-cpus-fast.patch, 09eb1ae0-conf-add-xenbus-controller.patch, fb059757-libxl-add-xenbus-controller.patch, ec5a1191-libxl-support-max-grant-frames.patch, 5a64c202-xenconfig-support-max-grant-frames.patch, CVE-2019-3886-api.patch, CVE-2019-3886-remote.patch, e0246257-cputest-add-data-for-Cascadelake-Server.patch, 5cd9db3a-cputest-add-data-E3-1225-v5.patch, 538d8735-cpu_map-Define-md-clear-CPUID-bit.patch, 96f41cd7-admin-reject-clients.patch, f111e094-locking-restrict-sockets-to-mode-0600.patch, e37bd65f-logging-restrict-sockets-to-mode-0600.patch, 9f4e35dc-network-improve-chain-create-error-report.patch, 686803a1-network-split-ipv4-ipv6-chains.patch, c1c235eb-nework-clear-cached-error.patch, 4330d138-network-refactor-global-chains.patch, 3b66bd9a-add-debug-chain-creation.patch, c6cbe187-network-delay-global-fw-setup.patch, CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc.patch, CVE-2019-10166-api-disallow-virDomainManagedSaveDefineXML.patch, CVE-2019-10167-api-disallow-virConnectGetDomainCapabilities.patch, CVE-2019-10168-api-disallow-virConnect-HypervisorCPU.patch, 51f9f80d-fix-copying-bitmaps.patch, 2878278c-cpu_map-add-Cascaselake-Server.patch, 4a0f604d-cpu_map-distribute-Cascaselake-Server.patch, d5572f62-qemu-support-override-max-thread.patch, 673f805d-qemu-chown-uniqDir.patch, 975b004d-virtlogd-over-logrotate.patch, 18d47d61-revert-d00c77ae.patch, d6943eab-libxl-pmsuspend-event.patch, 3d179919-virsh-precopy-bandwidth.patch, f4bdd829-rename-precopy-bandwidth.patch, xen-pv-cdrom.patch, blockcopy-check-dst-identical-device.patch, suse-libvirtd-service-xen.patch, xen-sxpr-disk-type.patch * Tue Sep 03 2019 jfehlig@suse.com - virsh: use upstream name for migration precopy bandwidth parameter f4bdd829-rename-precopy-bandwidth.patch bsc#1145586 * Tue Aug 27 2019 jfehlig@suse.com - virsh: support for setting precopy bandwidth in migrate 3d179919-virsh-precopy-bandwidth.patch bsc#1145586 - Rename patches to include commit ID revert-d00c77ae.patch -> 18d47d61-revert-d00c77ae.patch libxl-pmsuspend-event.patch -> d6943eab-libxl-pmsuspend-event.patch * Fri Aug 16 2019 jfehlig@suse.com - libxl: fix domain state following successful suspend operation revert-d00c77ae.patch, libxl-pmsuspend-event.patch bsc#1145440 * Fri Aug 09 2019 jfehlig@suse.com - logging: ensure virtlogd rollover takes priority over logrotate 975b004d-virtlogd-over-logrotate.patch bsc#1137137 * Fri Aug 02 2019 jfehlig@suse.com - qemu: fix default value of security_default_confined Updated suse-qemu-conf.patch bsc#1143871 * Fri Aug 02 2019 jfehlig@suse.com - qemu: Change owner of temp directories under /var/lib/libvirt/qemu 673f805d-qemu-chown-uniqDir.patch bsc#1143497 * Wed Jul 31 2019 rgoldwyn@suse.com - Add apparmor-abstractions as a required package for daemon (bsc#1142992) * Thu Jul 25 2019 jfehlig@suse.com - qemu: Add support for overriding max threads per process limit d5572f62-qemu-support-override-max-thread.patch bsc#1133719 * Thu Jul 18 2019 jfehlig@suse.com - cpu_map: Add Cascadelake-Server CPU model e0246257-cputest-add-data-for-Cascadelake-Server.patch, 2878278c-cpu_map-add-Cascaselake-Server.patch, 4a0f604d-cpu_map-distribute-Cascaselake-Server.patch bsc#1141251 * Wed Jun 19 2019 jfehlig@suse.com - util: fix copying bitmap to larger data buffer 51f9f80d-fix-copying-bitmaps.patch bsc#1138734 * Fri Jun 14 2019 jfehlig@suse.com - api: disallow virConnect*HypervisorCPU, virConnectGetDomainCapabilities, virDomainManagedSaveDefineXML, and virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc.patch, CVE-2019-10166-api-disallow-virDomainManagedSaveDefineXML.patch, CVE-2019-10167-api-disallow-virConnectGetDomainCapabilities.patch, CVE-2019-10168-api-disallow-virConnect-HypervisorCPU.patch CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168 bsc#1138301, bsc#1138302, bsc#1138303, bsc#1138305 * Fri May 24 2019 jfehlig@suse.com - network: delay global firewall setup if no networks are running 9f4e35dc-network-improve-chain-create-error-report.patch, 686803a1-network-split-ipv4-ipv6-chains.patch, c1c235eb-nework-clear-cached-error.patch, 4330d138-network-refactor-global-chains.patch, 3b66bd9a-add-debug-chain-creation.patch, c6cbe187-network-delay-global-fw-setup.patch, Dropped patches: revert-7431b3eb.patch, revert-8b967198.patch bsc#1133229 - Renamed patches to include commit id: CVE-2019-10132-admin-reject-clients.patch -> 96f41cd7-admin-reject-clients.patch CVE-2019-10132-locking-restrict-sockets-to-mode-0600.patch -> f111e094-locking-restrict-sockets-to-mode-0600.patch CVE-2019-10132-logging-restrict-sockets-to-mode-0600.patch -> e37bd65f-logging-restrict-sockets-to-mode-0600.patch * Thu May 23 2019 jfehlig@suse.com - spec: add systemd-container dependency to qemu and lxc drivers bsc#1136109 * Mon May 20 2019 jfehlig@suse.com - cpu: add tests for md-clear feature Updated 538d8735-cpu_map-Define-md-clear-CPUID-bit.patch and added 5cd9db3a-cputest-add-data-E3-1225-v5.patch bsc#1135273 * Mon May 20 2019 jfehlig@suse.com - CVE-2019-10132: admin: reject clients unless their UID matches the server UID CVE-2019-10132-admin-reject-clients.patch, CVE-2019-10132-locking-restrict-sockets-to-mode-0600.patch, CVE-2019-10132-logging-restrict-sockets-to-mode-0600.patch bsc#1134348 * Wed May 15 2019 brogers@suse.com - cpu_map: add cpu feature md-clear. CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091 538d8735-cpu_map-Define-md-clear-CPUID-bit.patch bsc#1111331 bsc#1135273 * Thu Apr 25 2019 jfehlig@suse.com - Revert commits 5f1e6a7d and f6c5babb to avoid loading conntrack module at libvird start revert-7431b3eb.patch, revert-8b967198.patch bsc#1133229 * Fri Apr 05 2019 jfehlig@suse.com - CVE-2019-3886: disallow virDomainGetHostname and virDomainGetTime for read-only connections and users CVE-2019-3886-api.patch, CVE-2019-3886-remote.patch bsc#1131595 * Thu Mar 21 2019 jfehlig@suse.com - apparmor: reintroduce upstream lxc mount rules Drop apparmor-no-mount.patch bsc#1130129 * Fri Mar 15 2019 jfehlig@suse.com - supportconfig: collect rotated logs in /var/log/libvirt/* Modified libvirt-supportconfig bsc#1124667 * Wed Mar 13 2019 jfehlig@suse.com - hook: encode incoming XML to UTF-8 before passing to lxml etree fromstring method Modifed suse-qemu-domain-hook.py boo#1123642 * Wed Mar 13 2019 jfehlig@suse.com - libxl: change autoballooning default to disabled suse-libxl-disable-autoballoon.patch jsc#SLE-3059 * Wed Mar 13 2019 jfehlig@suse.com - conf: add new 'xenbus' controller type 09eb1ae0-conf-add-xenbus-controller.patch - libxl: support Xen's max_grant_frames setting with maxGrantFrames attribute on the xenbus controller fb059757-libxl-add-xenbus-controller.patch, ec5a1191-libxl-support-max-grant-frames.patch, 5a64c202-xenconfig-support-max-grant-frames.patch bsc#1126325 * Wed Mar 13 2019 jfehlig@suse.com - Replace patches with upstream variants Old: 0001-apparmor-Check-libvirtd-profile-status-by-name.patch, 0001-qemu-Fix-query-cpus-fast-target-architecture-detecti.patch New: 411cdaf8-apparmor-check-profile-name.patch, 696239ba-qemu-fix-query-cpus-fast.patch * Mon Mar 11 2019 jfehlig@suse.com - util: skip RDMA detection for non-PCI network devices f38ef0fa-no-RDMA-check.patch bsc#1112182 * Wed Mar 06 2019 jfehlig@suse.com - qemu: s390: show correct CPU status after guest crash 0001-qemu-Fix-query-cpus-fast-target-architecture-detecti.patch bsc#1127841 * Wed Mar 06 2019 jfehlig@suse.com - apparmor: fix more fallout from changing libvirtd profile to a named profile 4ec3cf9a-apparmor-rules.patch, 0001-apparmor-Check-libvirtd-profile-status-by-name.patch boo#1125841 * Mon Mar 04 2019 jfehlig@suse.com - Update to libvirt 5.1.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 11c8aca9-libxl-set-mem-after-balloon.patch, 70c2933d-apparmor-named-profiles.patch, a3ab6d42-apparmor-conv-libvirtd-named-profile.patch, b6440119-qemu-conf-sev.patch, a404ac34-qemu-cgroup-sev.patch, 6fd4c8f8-qemu-domain-sev.patch, 17f6a257-security-dac-sev.patch, a2d3dea9-qemu-caps-dac-override-sev.patch, 620d9dd5-qemu-no-dac-override-nonroot.patch - jsc#SLE-3887, jsc#SLE-4480, jsc#SLE-4577 * Wed Feb 27 2019 jfehlig@suse.com - spec: disable VirtualBox driver * Tue Feb 19 2019 jfehlig@suse.com - qemu: don't use CAP_DAC_OVERRIDE capability if non-root 620d9dd5-qemu-no-dac-override-nonroot.patch boo#1125665 * Fri Feb 08 2019 jfehlig@suse.com - qemu: fix issues related to restricted permissions on /dev/sev b6440119-qemu-conf-sev.patch, a404ac34-qemu-cgroup-sev.patch, 6fd4c8f8-qemu-domain-sev.patch, 17f6a257-security-dac-sev.patch, a2d3dea9-qemu-caps-dac-override-sev.patch bsc#1124842 * Wed Jan 23 2019 jfehlig@suse.com - apparmor: add support for named profiles and convert libvirtd profile to a named profile 70c2933d-apparmor-named-profiles.patch, a3ab6d42-apparmor-conv-libvirtd-named-profile.patch boo#1118952 - libxl: save current memory value after successful balloon 11c8aca9-libxl-set-mem-after-balloon.patch bsc#1120813 * Wed Jan 23 2019 jengelh@inai.de - Noun phrase for %description doc. - Remove idempotent %if..%endif pair around %package bash-completion. - Reduce hard requirements on bash-c and documentation. * Thu Jan 17 2019 jfehlig@suse.com - Enable bash completion in Leap15/SLE15 and newer * Tue Jan 15 2019 jfehlig@suse.com - Update to libvirt 5.0.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Remove UML hypervisor driver - Dropped patches: de09ae2f-libxl-support-openvswitch.patch, 0a1b5653-xenconfig-support-openvswitch.patch - FATE#320928, FATE#325817, FATE#326380, FATE#326698 * Wed Jan 02 2019 jfehlig@suse.com - Requires: ncurses expands to Requires: libncurses5, which is not required by any component of this package. Remove it along with the BuildRequires: ncurses-devel * Mon Dec 03 2018 jfehlig@suse.com - Update to libvirt 4.10.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 14d03b27-libxl-rm-redundant-virObjectEventStateQueue.patch, 82452a5d-libxl-rm-goto-libxlDomainShutdownThread.patch, da4b0fd9-libxl-support-soft-reset.patch, libxl-qemu-emulator-caps.patch - Added patches: de09ae2f-libxl-support-openvswitch.patch, 0a1b5653-xenconfig-support-openvswitch.patch - FATE#320928, FATE#325817, FATE#326380, FATE#326698 * Tue Nov 06 2018 jfehlig@suse.com - libxl: add support for soft reset 14d03b27-libxl-rm-redundant-virObjectEventStateQueue.patch, 82452a5d-libxl-rm-goto-libxlDomainShutdownThread.patch, da4b0fd9-libxl-support-soft-reset.patch bsc#1081516 * Mon Nov 05 2018 jfehlig@suse.com - Update to libvirt 4.9.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - FATE#326371 * Fri Oct 19 2018 jfehlig@suse.com - Update SLE15 SP1 with openSUSE Factory package FATE#325848, FATE#326368 - FATE and bug references made in the SLE15 package since the last Factory update: FATE#325817, bsc#959329, bsc#1074014, bsc#1106420, bsc#1108395 - Patches in SLE15 package that are dropped by this update: 1b0c42ff-libvirtd-depend-machined.patch, ac4a12db-libxl-fix-hasManagedSave.patch * Tue Oct 02 2018 jfehlig@suse.com - Update to libvirt 4.8.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 60b4fd90-libxl-rm-vm-finish-phase.patch, e39c66d3-libxl-fix-p2p-migration.patch, 47da84e0-libxl-fix-job-handling-migsrc.patch, 0149464a-libxl-fix-job-handling-migdst.patch, 5ea2abb3-libxl-join-mig-rcv-thread.patch * Mon Sep 24 2018 jengelh@inai.de - Fix RPM groups. Remove idempotent %if..%endif guards. - Remove redundant %clean section. * Wed Sep 19 2018 jfehlig@suse.com - libxl: fix VM migration on busy hosts 60b4fd90-libxl-rm-vm-finish-phase.patch, e39c66d3-libxl-fix-p2p-migration.patch, 47da84e0-libxl-fix-job-handling-migsrc.patch, 0149464a-libxl-fix-job-handling-migdst.patch, 5ea2abb3-libxl-join-mig-rcv-thread.patch bsc#1108086 * Wed Sep 05 2018 jfehlig@suse.com - Update to libvirt 4.7.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 9ed59012--revert-jansson1.patch, 54f2b5e3-revert-jansson2.patch, b56950fd-revert-jansson3.patch, 6c3d66ac-revert-jansson4.patch, 8e373e6d-revert-jansson5.patch, 6f99de31-revert-jansson6.patch, f204cf51-revert-jansson7.patch, 5a58b5ed-revert-jansson8.patch, 63f6e0e9-revert-jansson9.patch, 8687eba-revert-jansson10.patch, e96e71d8-revert-jansson11.patch, d99a8959-revert-jansson12.patch, 074a7e14-revert-jansson13.patch, 86db0db9-revert-jansson14.patch * Tue Aug 14 2018 jfehlig@suse.com - Revert switch to jansson boo#1104820 - Dropped: temp-build-fix.patch - Added: 9ed59012--revert-jansson1.patch, 54f2b5e3-revert-jansson2.patch, b56950fd-revert-jansson3.patch, 6c3d66ac-revert-jansson4.patch, 8e373e6d-revert-jansson5.patch, 6f99de31-revert-jansson6.patch, f204cf51-revert-jansson7.patch, 5a58b5ed-revert-jansson8.patch, 63f6e0e9-revert-jansson9.patch, 8687eba-revert-jansson10.patch, e96e71d8-revert-jansson11.patch, d99a8959-revert-jansson12.patch, 074a7e14-revert-jansson13.patch, 86db0db9-revert-jansson14.patch * Mon Aug 13 2018 jfehlig@suse.com - spec: don't restart libvirt-guests when updating libvirt-client bsc#1104662 * Mon Aug 06 2018 jfehlig@suse.com - Update to libvirt 4.6.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Switch from yajl to jansson - Dropped patches: libvirt-4.5.0-apparmor-add-missing-comma.patch - Patches added to fix upstream bugs: temp-build-fix.patch * Fri Aug 03 2018 antoine.belvire@opensuse.org - Fix apparmor failure at startup because of syntax error in libvirt profile: * Add libvirt-4.5.0-apparmor-add-missing-comma.patch (picked from upstream). * Thu Jul 05 2018 jfehlig@suse.com - Update to libvirt 4.5.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 67c56f6e-libxl-logfd-leak-fix.patch - spec: use more macros in file paths - libxl: Implement virDomainBlockResize 0001-libxl-add-support-for-BlockResize-API.patch FATE#325467, bsc#1094325, bsc#1094725 * Wed Jul 04 2018 jfehlig@suse.com - spec: enable gluster storage backend for openSUSE * Mon Jun 25 2018 jfehlig@suse.com - spec: BuildRequires glusterfs-devel when gluster support is enabled * Tue Jun 05 2018 jfehlig@suse.com - spec: use wireshark plugin directory from pkg-config * Tue Jun 05 2018 jfehlig@suse.com - virt-aa-helper: add SUSE path to OVMF and AAVMF images Adjusted suse-ovmf-paths.patch boo#1095556 * Mon Jun 04 2018 jfehlig@suse.com - Update to libvirt 4.4.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - CVE-2018-3639 - Dropped patches: 1dbca2ec-CVE-2018-3639.patch, 92673422-CVE-2018-3639.patch - libxl: fix leaking logfile fds 67c56f6e-libxl-logfd-leak-fix.patch bsc#1094480 * Tue May 22 2018 jfehlig@suse.com - cpu: add support for 'ssbd' and 'virt-ssbd' CPUID feature bits CVE-2018-3639 1dbca2ec-CVE-2018-3639.patch, 92673422-CVE-2018-3639.patch bsc#1092885 * Mon May 07 2018 jfehlig@suse.com - spec: enable libssh support for suse_version >= 1500 * Wed May 02 2018 jfehlig@suse.com - Update to libvirt 4.3.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Remove legacy Xen driver - Dropped patches: 09877303-virSocketAddrParseInternal.patch, 412afdb8-intro-virSocketAddrParseAny.patch * Thu Apr 05 2018 jfehlig@suse.com - util: improvements in error handling 09877303-virSocketAddrParseInternal.patch, 412afdb8-intro-virSocketAddrParseAny.patch bsc#1080957 * Thu Apr 05 2018 jfehlig@suse.com - Update to libvirt 4.2.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 6b3d716e-keycodemap-py3.patch, 33c6eb96-fix-libvirtd-reload-deadlock.patch, 464889ff-rpc-aquire-ref-dispatch.patch, c6f1d519-rpc-simplify-dispatch.patch, 06e7ebb6-rpc-invoke-dispatch-unlocked.patch, 86cae503-rpc-fix-pre-exec.patch, eefabb38-rpc-virtlockd-virtlogd-single-thread.patch, fbf31e1a-CVE-2018-1064.patch, fb327ac2-virtlockd-admin-socket.patch, 64370c4b-libxl-MigrateBegin.patch, 99486799-libxl-MigrateConfirm.patch, f5eacf2a-libxl-MigratePerform.patch, 4e6fcdb6-libxl-libxlDomObjFromDomain-cleanup.patch, fe51dbda-libxl-use-FindByRef.patch, 60b3fcd9-libxl-MigratePrepare.patch, 3c89868c-libxl-lock-after-ListRemove.patch, 13e81fc6-libxl-EndJob-on-error.patch, 594b8b99-libxl-DefineXMLFlags-API-pattern.patch, c66e344e-libxl-dont-deref-NULL.patch, 83edaf44-libxl-dont-hardcode-sched-weight.patch, apibuild-py3.patch * Wed Mar 21 2018 jfehlig@suse.com - libxl: don't hardcode scheduler weight 83edaf44-libxl-dont-hardcode-sched-weight.patch bsc#1086377 * Tue Mar 20 2018 jfehlig@suse.com - libxl: fixes and improvements in migration APIs 64370c4b-libxl-MigrateBegin.patch, 99486799-libxl-MigrateConfirm.patch, f5eacf2a-libxl-MigratePerform.patch, 4e6fcdb6-libxl-libxlDomObjFromDomain-cleanup.patch, fe51dbda-libxl-use-FindByRef.patch, 60b3fcd9-libxl-MigratePrepare.patch, 3c89868c-libxl-lock-after-ListRemove.patch, 13e81fc6-libxl-EndJob-on-error.patch, 594b8b99-libxl-DefineXMLFlags-API-pattern.patch, c66e344e-libxl-dont-deref-NULL.patch bsc#1080957 * Thu Mar 15 2018 jfehlig@suse.com - lockd: fix typo in virtlockd-admin.socket fb327ac2-virtlockd-admin-socket.patch bsc#1085386 * Wed Mar 14 2018 jfehlig@suse.com - Install correct firewall service file depending on availability of firewalld vs SuSEfirewall2 libvirtd-relocation-server.xml bsc#1083455 * Wed Mar 14 2018 jfehlig@suse.com - qemu: avoid denial of service reading from QEMU guest agent CVE-2018-1064 fbf31e1a-CVE-2018-1064.patch bsc#1083625 * Tue Mar 13 2018 jfehlig@suse.com - virtlockd: fix loosing lock on re-exec 464889ff-rpc-aquire-ref-dispatch.patch, c6f1d519-rpc-simplify-dispatch.patch, 06e7ebb6-rpc-invoke-dispatch-unlocked.patch, 86cae503-rpc-fix-pre-exec.patch, eefabb38-rpc-virtlockd-virtlogd-single-thread.patch bsc#1076861 * Tue Mar 13 2018 jfehlig@suse.com - libvirtd: fix potential deadlock when reloading 33c6eb96-fix-libvirtd-reload-deadlock.patch bsc#1079150 * Mon Mar 05 2018 jfehlig@suse.com - Update to libvirt 4.1.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 72adaf2f-revert-qemu-monitor-error-report.patch, 71d56a39-nodedev-fix-parse-PCI-address.patch, 68eed56b-conf-smbios-oem-strings.patch, 76977061-qemu-smbios-oem-strings.patch, 0c710a37-libxl-resume-lock-on-mig-failure.patch, 759b4d1b-virlog-determine-the-hostname-on-startup-CVE-2018-67.patch, c2dc6698-fix-deadlock-obtaining-hostname.patch, c391e07e-libxl-clock-settings.patch, ef71caea-libxl-memalign.patch, suse-apparmor-signal.patch * Fri Feb 23 2018 jfehlig@suse.com - libxl: round memory values to next 1MiB increment ef71caea-libxl-memalign.patch bsc#1082041 * Wed Feb 21 2018 jfehlig@suse.com - libxl: add support for specifying clock offset and adjustment c391e07e-libxl-clock-settings.patch bsc#1082161 * Fri Feb 09 2018 cbosdonnat@suse.com - Remove all uses of python2 during the build (bsc#1080034) 6b3d716e-keycodemap-py3.patch apibuild-py3.patch - Determine hostname early to avoid code injection in lxc driver. (bsc#1080042) 759b4d1b-virlog-determine-the-hostname-on-startup-CVE-2018-67.patch c2dc6698-fix-deadlock-obtaining-hostname.patch - Add basic support of connectGetAllDomainStats for lxc driver (fate#323742) 0001-Extract-stats-functions-from-the-qemu-driver.patch 0002-lxc-implement-connectGetAllDomainStats.patch * Fri Jan 26 2018 jfehlig@suse.com - qemu: Support setting OEM strings in SMBIOS 68eed56b-conf-smbios-oem-strings.patch, 76977061-qemu-smbios-oem-strings.patch FATE#323624 - libxl: resume lock process after failed migration 0c710a37-libxl-resume-lock-on-mig-failure.patch bsc#1076861 * Thu Jan 25 2018 jfehlig@suse.com - qemu hook: Change shebang to /usr/bin/python3 - spec: Require python lxml in daemon-hooks subpackage * Fri Jan 19 2018 jfehlig@suse.com - Update to libvirt 4.0.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 2d07f1f0-fix-storage-crash.patch, 69ed99c7-dom0-persistent.patch, 8599aedd-libvirt-guests-dom0-filter.patch, 0f33025a-virt-aa-helper-handle-more-disk-images.patch, b475a91b-add-virStringFilterChars-string-utility.patch, faec1958-lxc-set-hostname-based-on-container-name.patch, 2089ab21-netserver-close-clients-before-stopping-all-drivers.patch, fix-virt-aa-helper-profile.patch, - Patches added to fix upstream bugs: 72adaf2f-revert-qemu-monitor-error-report.patch, 71d56a39-nodedev-fix-parse-PCI-address.patch - CVE-2018-5748, CVE-2017-5715, bsc#1071651, bsc#1076500 * Thu Jan 11 2018 jfehlig@suse.com - Add a qemu hook script providing functionality similar to Xen's block-dmmd script suse-qemu-domain-hook.py FATE#324177 * Wed Jan 03 2018 cbosdonnat@suse.com - Fix apparmor rules for virt-aa-helper (bsc#1074265) fix-virt-aa-helper-profile.patch - Lift VirtualBox dependency version to include 5.2.x - Update upstreamed patches Removed patches: * daemon-close-crasher.patch * lxc-hostname.patch Added patches: * 2089ab21-netserver-close-clients-before-stopping-all-drivers.patch * b475a91b-add-virStringFilterChars-string-utility.patch * faec1958-lxc-set-hostname-based-on-container-name.patch * Wed Dec 20 2017 cbosdonnat@suse.com - Close clients before drivers are cleaned up to avoid crash at libvirtd stop (bsc#1073730) daemon-close-crasher.patch - Set a hostname on lxc containers based on guest's name. lxc-hostname.patch - Enhance apparmor rules for virt-aa-helper (bsc#1070916) 0f33025a-virt-aa-helper-handle-more-disk-images.patch * Mon Dec 18 2017 jfehlig@suse.com - libvirt-guests: fix 'stop' operation when action is 'suspend' 69ed99c7-dom0-persistent.patch, 8599aedd-libvirt-guests-dom0-filter.patch bsc#1070130 * Thu Dec 14 2017 jfehlig@suse.com - storage: Don't dereference driver object if virStorageSource is not initialized 2d07f1f0-fix-storage-crash.patch bsc#1072974 * Mon Dec 04 2017 jfehlig@suse.com - Update to libvirt 3.10.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - bsc#1070285, bsc#1070478, boo#1070914, - FATE#323473, FATE#324365, FATE#324479 * Fri Dec 01 2017 jfehlig@suse.com - Update to libvirt 3.10.0 RC2 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 8056721c-qemu-null-storage-source.patch, 74a13be4-xdr-flags.patch, apparmor-rules-for-new-mediation-features.patch, apparmor-fine-grained-mount-rules.patch - bsc#1070285, bsc#1070478, FATE#323473, FATE#324479 * Thu Nov 30 2017 jfehlig@suse.com - spec: remove use of 'systemctl enable' bsc#1038401 * Thu Nov 30 2017 jfehlig@suse.com - spec: enable firewalld support for SLE15, Leap15, and Tumbleweed FATE#320794 * Thu Nov 23 2017 rbrown@suse.com - Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468) * Wed Nov 22 2017 kukuk@suse.de - spec: Add BuildRequires for libtirpc-devel in preparation of removal of sunrpc from glibc - build: Use XDR_CFLAGS in more places 74a13be4-xdr-flags.patch * Wed Nov 22 2017 olaf@aepfle.de - Replace hardcoded libvirt with Name tag when refering to subpkgs - Remove dependencies to /bin/sh in libs and nss %post scripts * Fri Nov 17 2017 jfehlig@suse.com - apparmor: allow libvirtd to send signals to unconfined processes suse-apparmor-signal.patch boo#1065123 * Fri Nov 17 2017 jfehlig@suse.com - qemu: Tolerate storage source private data being NULL 8056721c-qemu-null-storage-source.patch bsc#1068752 * Wed Nov 08 2017 jfehlig@suse.com - apparmor: add rules for new mediation features apparmor-rules-for-new-mediation-features.patch, apparmor-fine-grained-mount-rules.patch bsc#1066124, boo#1065123 - spec: unconditionally enable the wireshark dissector * Wed Nov 08 2017 cbosdonnat@suse.com - Replace %{with_sle_build} by ! 0%{?is_opensuse} bsc#940315 * Thu Nov 02 2017 jfehlig@suse.com - Update to libvirt 3.9.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: c44b29aa-apparmor-dnsmasq-ptrace.patch, 441d3eb6-qemu-tls-client-verify-server-cert.patch * Mon Oct 16 2017 jfehlig@suse.com - qemu: ensure TLS clients always verify the server certificate CVE-2017-1000256 441d3eb6-qemu-tls-client-verify-server-cert.patch bsc#1062563 * Thu Oct 12 2017 jengelh@inai.de - Do not ignore errors from useradd/groupadd. - Invoke/expand %service_* just once per scriptlet. - Replace some old macros. * Tue Oct 10 2017 jfehlig@suse.com - spec: libvirt-daemon-qemu requires libvirt-daemon-driver-storage bsc#1062620 * Mon Oct 09 2017 jfehlig@suse.com - spec: reload libvirtd Apparmor profile in %post bsc#1060860 * Fri Oct 06 2017 jfehlig@suse.com - apparmor: add dnsmasq ptrace rule to libvirtd profile c44b29aa-apparmor-dnsmasq-ptrace.patch bsc#1060860 * Thu Oct 05 2017 jfehlig@suse.com - spec: Add dependency to UEFI firmwares since paths are specified at build time * Wed Oct 04 2017 jfehlig@suse.com - Update to libvirt 3.8.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 92bd87a2-ryzen-test-data.patch, 5c83b360-epyc-test-data.patch, a0b62843-epyc-cpu-model.patch, f305d8a1-apparmor-attach_disconnected.patch, b482925c-apparmor-ptrace-support.patch * Tue Oct 03 2017 jfehlig@suse.com - Enable firewalld support for openSUSE >= 42.2 * Tue Sep 26 2017 jfehlig@suse.com - apparmor: Add rules for kernel 4.13 ptrace checks b482925c-apparmor-ptrace-support.patch Drop temporary workaround apparmor-ptrace-support.patch bsc#1058847 - apparmor: Add rules for denial encountered when starting confined domains f305d8a1-apparmor-attach_disconnected.patch, suse-apparmor-libnl-paths.patch Drop old, useless, undocumented apparmor-fixes.patch * Wed Sep 20 2017 jfehlig@suse.com - apparmor: add temporary profile fixes to allow starting domains apparmor-ptrace-support.patch bsc#1058847 * Fri Sep 15 2017 jfehlig@suse.com - cpu: Add new EPYC CPU model 92bd87a2-ryzen-test-data.patch, 5c83b360-epyc-test-data.patch, a0b62843-epyc-cpu-model.patch bsc#1052825 * Fri Sep 15 2017 jfehlig@suse.com - Update to libvirt 3.7.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 8982f3ab-util-hash-header.patch, 0b1ecf7b-virHashCodeGen-mockable.patch, f536b0dd-tests-arch-independent-hash.patch, e4cb8500-avoid-malicious-ssh-hostname-as-args.patch * Fri Sep 01 2017 jfehlig@suse.com - Support OVMF 4MB firmware images Adjustment to spec file and suse-ovmf-paths.patch * Thu Aug 31 2017 jfehlig@suse.com - supportconfig plugin: list active networks, interfaces and storage pools * Tue Aug 29 2017 jfehlig@suse.com - rpc: avoid ssh interpreting malicious hostname as arguments e4cb8500-avoid-malicious-ssh-hostname-as-args.patch bsc#1053600 * Thu Aug 03 2017 jfehlig@suse.com - Update to libvirt 3.6.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Fix unit tests on s390x and ppc64 8982f3ab-util-hash-header.patch, 0b1ecf7b-virHashCodeGen-mockable.patch. f536b0dd-tests-arch-independent-hash.patch - Patch cleanup - Renamed libvirtd-defaults.patch to suse-libvirtd-disable-tls.patch - Renamed libvirtd-init-script.patch to suse-libvirtd-sysconfig-settings.patch - Renamed virtlockd-init-script.patch to suse-virtlockd-sysconfig-settings.patch - Renamed virtlogd-init-script.patch to suse-virtlogd-sysconfig-settings.patch - Renamed libvirt-guests-init-script.patch to suse-libvirt-guests-service.patch - Combined suse-libvirtd-service.patch and systemd-service-xen.patch to suse-libvirtd-service-xen.patch since both patches add Xen support to libvirtd service file - Pull OVMF-related changes from suse-qemu-conf.patch into a new suse-ovmf-paths.patch * Wed Jul 26 2017 jfehlig@suse.com - Add a supportconfig plugin libvirt-supportconfig FATE#323661 * Wed Jul 26 2017 jfehlig@suse.com - Remove Requires on bridge-utils FATE#323639 * Fri Jul 21 2017 dmueller@suse.com - drop dependency on xen for armv6hl (not supported and does not build) * Wed Jul 05 2017 jfehlig@suse.com - Update to libvirt 3.5.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 5004f121-virFdStreamThread-dont-exceed-length.patch, 1a4b21f1-set-EOF-on-end-of-stream.patch * Thu Jun 29 2017 jengelh@inai.de - Remove --with-pic which is only for static libs - Use %_smp_mflags instead of just %jobs * Wed Jun 07 2017 jfehlig@suse.com - misc spec file cleanup - remove checks for old distros well beyond EOL - enable wireshark dissector for Leap >= 42.2 and Factory - remove support for old, non-systemd distros - replace $RPM_ shell vars with modern macros * Tue Jun 06 2017 jfehlig@suse.com - Don't exceed specified length when reading from stream 5004f121-virFdStreamThread-dont-exceed-length.patch, 1a4b21f1-set-EOF-on-end-of-stream.patch * Fri Jun 02 2017 jfehlig@suse.com - Update to libvirt 3.4.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: aeda1b8c-qemu-no-error-shutdown.patch, 8023b21a-conf-ioapic.patch, 6b5c6314-qemu-irqchip.patch, 2020e2c6-conf-intremap.patch, 04028a9d-qemu-intremap.patch, d12781b4-conf-iommu-cache-mode-attr.patch, a5691448-qemu-iommu-cache-mode.patch, 3a276c65-conf-iommu-def-stability-check.patch, 935d927a-conf-iommu-ABI-stability-check.patch, 4cd3f241-fix-NULL-disk-source.patch, 975ea20f-loopback-macro.patch, dbb85e0c-libxl-graphics-listen-addr.patch, libxl-def-usbctrl.patch, revert-2841e675-mtu.patch - FATE#321335, bsc#1031056, bsc#1037774, bsc#1040207, bsc#1040213 * Mon May 22 2017 jfehlig@suse.com - libxl: add default listen address for VNC and spice 975ea20f-loopback-macro.patch, dbb85e0c-libxl-graphics-listen-addr.patch bsc#1040207 - xenconfig: fix handling of NULL disk source 4cd3f241-fix-NULL-disk-source.patch bsc#1040213 * Mon May 15 2017 jfehlig@suse.com - qemu: add support for 288 VCPUS aeda1b8c-qemu-no-error-shutdown.patch, 8023b21a-conf-ioapic.patch, 6b5c6314-qemu-irqchip.patch, 2020e2c6-conf-intremap.patch, 04028a9d-qemu-intremap.patch, d12781b4-conf-iommu-cache-mode-attr.patch, a5691448-qemu-iommu-cache-mode.patch, 3a276c65-conf-iommu-def-stability-check.patch, 935d927a-conf-iommu-ABI-stability-check.patch FATE#321335 - revert commit 2841e675: qemu: propagate bridge MTU into qemu "host_mtu" revert-2841e675-mtu.patch bsc#1037774 * Mon May 08 2017 jfehlig@suse.com - Update to libvirt 3.3.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Bug fixes: bsc#978121, bsc#1017017, bsc#1032863, bsc#1033117, bsc#1034024, bsc#1034146, bsc#1035995 - libxl: updated libxl-def-usbctrl.patch bsc#1031056 * Fri Apr 28 2017 jfehlig@suse.com - Update to libvirt 3.3.0 RC1 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: ae102b5d7-qemu-fix-regression-when-hyperv-vendor_id-feature-is-used.patch - Bug fixes: bsc#978121, bsc#1017017, bsc#1032863, bsc#1033117, bsc#1034024, bsc#1034146 - libxl: add default controllers for USB devices libxl-def-usbctrl.patch bsc#1031056 * Wed Apr 12 2017 petracvv@opensuse.org - qemu: Fix regression when hyperv/vendor_id feature is used Added patch: ae102b5d7-qemu-fix-regression-when-hyperv-vendor_id-feature-is-used.patch boo#1033893 * Mon Apr 03 2017 jfehlig@suse.com - Update to libvirt 3.2.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 67dcb797-virTimeBackOffWait-sleepcap.patch, 85af0b80-qemu-adaptive-montimeout.patch, d68cb4f55-extract-the-request-sending-code-from-virNetlin.patch, 754515b7d-add-virNetlinkDumpCommand.patch, 3ee35d7d6-more-uses-of-SYSCTL_PATH.patch, 5dd607059-add-virNetDevGetName.patch, 00d28a78b-check-accept_ra-before-enabling-ipv6-forward.patch - Add Conflicts=xendomains.service to libvirtd service suse-libvirtd-service.patch bsc#1015348 * Thu Mar 23 2017 jengelh@inai.de - RPM group fix * Wed Mar 22 2017 cbosdonnat@suse.com - Fail to start network instead of losing routes if IPv6 forwarding is required. bsc#1025252 Added patches: 00d28a78b-check-accept_ra-before-enabling-ipv6-forward.patch 3ee35d7d6-more-uses-of-SYSCTL_PATH.patch 5dd607059-add-virNetDevGetName.patch 754515b7d-add-virNetlinkDumpCommand.patch d68cb4f55-extract-the-request-sending-code-from-virNetlin.patch * Thu Mar 16 2017 jfehlig@suse.com - qemu: Fix monitor timeout with large memory VMs 67dcb797-virTimeBackOffWait-sleepcap.patch 85af0b80-qemu-adaptive-montimeout.patch bsc#1013113 * Tue Mar 07 2017 mwilck@suse.com - network: don't use dhcp-authoritative on static networks bsc#1015588 * added network-don-t-use-dhcp-authoritative-on-static-netwo.patch * Fri Mar 03 2017 jfehlig@suse.com - Update to libvirt 3.1.0 - Modularize storage driver by splitting it into backend-specific subpackages - CVE-2017-2635, bsc#1027075 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: b018ada3-shunloadtest-build-fix.patch, f86a7a83-libxl-dom0-balloon-fix.patch, 6e4759d0-libxl-timer-fix.patch, 87df87e0-libxl-timer-tsc-emulate.patch, b4386fda-xenconfig-timer-fix.patch, d3970925-timer-tests.patch, 321a28c6-libxl-default-disk-format.patch, bd116810-libxl-fix-disk-detach.patch, ff225538-libxl-autoballoon-setting.patch, c89a6e78-libxl-physinfo-cleanup.patch, d2b77608-libxl-maxmem-fix.patch, 79692c38-libxl-dom0-maxmem.patch, 4ab0c959-libxl-mem-leak.patch, 2dc1cf19-libxl-double-free.patch, apparmor-errormsg-fix.patch, apparmor-alt-seclabel.patch, qemu-disable-namespaces.patch * Thu Mar 02 2017 jengelh@inai.de - Drop author list from description. Fix summary to be more accurate as to what the subpackage pertains to. * Sat Feb 18 2017 kukuk@suse.de - Don't call insserv if we use systemd and don't require it. * Thu Feb 16 2017 jfehlig@suse.com - libxl: more fixes for dom0 maxmem setting 4ab0c959-libxl-mem-leak.patch, 2dc1cf19-libxl-double-free.patch bsc#1017762 * Fri Feb 10 2017 jfehlig@suse.com - apparmor: don't fail on non-apparmor <seclabel> apparmor-errormsg-fix.patch, apparmor-alt-seclabel.patch bsc#1023436 * Fri Feb 10 2017 jfehlig@suse.com - libxl: fix reporting of domain maximum memory ff225538-libxl-autoballoon-setting.patch, c89a6e78-libxl-physinfo-cleanup.patch, d2b77608-libxl-maxmem-fix.patch, 79692c38-libxl-dom0-maxmem.patch bsc#1017762 * Fri Feb 10 2017 jfehlig@suse.com - libxl: set disk format to raw if not specified and fix disk detach 321a28c6-libxl-default-disk-format.patch, bd116810-libxl-fix-disk-detach.patch bsc#1003379 * Thu Feb 09 2017 jfehlig@suse.com - libxl: fix timer configurations 6e4759d0-libxl-timer-fix.patch, 87df87e0-libxl-timer-tsc-emulate.patch, b4386fda-xenconfig-timer-fix.patch, d3970925-timer-tests.patch bsc#1019969 * Thu Feb 02 2017 jfehlig@suse.com - SLE12 SP2 bugs merged via version updates of the Factory libvirt package: bsc#986718 - SLE12 SP2 FATEs merged via version updates of the Factory libvirt package: FATE#316228, FATE#316628, FATE#319531, FATE#319810, FATE#320490 - Replaced libxl-dom0-balloon-fix.patch with upstream patch f86a7a83-libxl-dom0-balloon-fix.patch * Fri Jan 27 2017 jfehlig@suse.com - Fix dom0 ballooning with Xen >= 4.8 libxl-dom0-balloon-fix.patch bsc#1020755 * Fri Jan 27 2017 jfehlig@suse.com - SLE12 SP2 bugs merged via version updates of the Factory libvirt package: bsc#996020, bsc#987002, bsc#997278, bsc#998005, bsc#998389, bsc#1001446, bsc#1001698, bsc#1005288, bsc#1013991, bsc#1016253, bsc#1017086, bsc#1017762, bsc#1018189 * Fri Jan 27 2017 jfehlig@suse.com - virt-create-rootfs is a temporary SLE-only hack that was never added to the Factory libvirt package, causing it to be dropped when rebasing SLE on Factory. Add it now but only apply associated patch when building for SLE. virt-create-rootfs.patch bsc#995981 * Wed Jan 18 2017 jfehlig@suse.com - Update to libvirt 3.0.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Add b018ada3-shunloadtest-build-fix.patch to fix 'make check' failures - Add qemu-disable-namespaces.patch to temporarily disable qemu namespace feature until all issues are resolved * Wed Dec 28 2016 matwey.kornilov@gmail.com - In order to avoid issues like bsc#1017189, explicitly specify supported VirtualBox versions * Mon Dec 05 2016 jfehlig@suse.com - Update to libvirt 2.5.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Import new public signing key * Wed Nov 16 2016 jfehlig@suse.com - spec: explicitly set qemu-bridge-helper path to /usr/lib/ bsc#999070 * Tue Nov 08 2016 cbosdonnat@suse.com - Package org.libvirt.api.policy polkit file (bsc#959297) - Fix postun systemd services cleanup - Mark /etc/libvirt/nwfilter/*.xml files as config files * Wed Nov 02 2016 jfehlig@suse.com - Update to libvirt 2.4.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html * Wed Oct 05 2016 jfehlig@suse.com - Update to libvirt 2.3.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: pci-use-driver-override-sysfs.patch, virHostdevFindUSBDevice-privsyms.patch, libxl-usb-vendor.patch, apparmor-qemu-bridge-helper.patch * Fri Sep 02 2016 jfehlig@suse.com - Update to libvirt 2.2.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 856965b3-qemu-secdriver.patch, 541e9ae6-cpu-vendor-crash-fix.patch, d53d4650-qemu-rbd-auth.patch * Sat Aug 20 2016 jfehlig@suse.com - libxl: allow vendor/product addressing for USB hostdevs virHostdevFindUSBDevice-privsyms.patch, libxl-usb-vendor.patch bsc#989646 - qemu: fix auth for rbd network disks d53d4650-qemu-rbd-auth.patch bsc#988998 - Replace cpumodel-vendor-crash-fix.patch with upstream variant 541e9ae6-cpu-vendor-crash-fix.patch bsc#992425 * Fri Aug 12 2016 jfehlig@suse.com - Update to libvirt 2.1.0 - New subpackages libvirt-libs and libvirt-admin - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: c8f08e48-systemd-notify-fix.patch - qemu: fix qemu.conf security_driver regression in 2.1.0 release 856965b3-qemu-secdriver.patch * Fri Aug 05 2016 jfehlig@suse.com - cpu_x86: fix libvirtd segfault when host cpu is 'qemu64' cpumodel-vendor-crash-fix.patch bsc#992425 * Fri Aug 05 2016 cbosdonnat@suse.com - bsc#988279. Move the qemu-bridge-helper apparmor profile from the qemu abstraction to the usr.sbin.libvirtd profile. apparmor-qemu-bridge-helper.patch * Wed Aug 03 2016 jfehlig@suse.com - spec: minor improvements to logic enabling numactl and numad support and fix nested if indentation FATE#319979 * Tue Aug 02 2016 jfehlig@suse.com - Update patches providing support for driver_override sysfs interface with latest upstream variant. Dropped pci-simplify-stub.patch and updated pci-use-driver-override-sysfs.patch bsc#986718 * Sat Jul 30 2016 jfehlig@suse.com - spec: enable numactl and numad support for aarch64 FATE#319979, bsc#991377 * Fri Jul 15 2016 jfehlig@suse.com - BuildRequires: use librbd-devel instead of ceph-devel - Enable rbd support for aarch64 bsc#979473 * Thu Jul 14 2016 jfehlig@suse.com - Use driver_override sysfs interface for binding/unbinding PCI stub drivers pci-simplify-stub.patch, pci-use-driver-override-sysfs.patch bsc#986718 * Tue Jul 12 2016 jfehlig@suse.com - systemd: fix ready notification on abstract socket c8f08e48-systemd-notify-fix.patch boo#987668 * Fri Jul 01 2016 jfehlig@suse.com - Update to libvirt 2.0.0 - Change version scheme to match libvirt's time-driven release schedule. <major> will be incremented on first release of new calendar year, <minor> on each monthly release, and <micro> on stable branch maintenance release - Include libvirt-admin utility and API - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: apparmor-dont-scrub-environment-of-virtlogd-process.patch, e33cd67a-xenconfig-backendtype-fix.patch * Mon Jun 20 2016 jfehlig@suse.com - spec: Recent simplification allows using a common spec file for SLE and openSUSE - Add SLE patches missing in openSUSE libxl-dom-reset.patch, libxl-set-migration-constraints.patch, libxl-set-cach-mode.patch * Thu Jun 16 2016 jfehlig@suse.com - xenconfig: fix conversion of <driver> to backendtype e33cd67a-xenconfig-backendtype-fix.patch bsc#984798 * Wed Jun 15 2016 jfehlig@suse.com - Advertise aarch64 UEFI firmware paths - adjust spec file to include aarch64 paths in '--with-loader-nvram=' configure option - adjust qemu.conf 'nvram' option to include the SUSE paths bsc#981836, bsc#983747 * Thu Jun 09 2016 jfehlig@suse.com - apparmor: Don't scrub environment of virtlogd process apparmor-dont-scrub-environment-of-virtlogd-process.patch boo#980441 * Mon Jun 06 2016 jfehlig@suse.com - Update to libvirt 1.3.5 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: e4d131b8-mv-virDomainDefPostParseInternal.patch, 3e428670-post-parse-implicit-video.patch, 538012c8-default-vram.patch, 96b21fb0-vram-tests.patch, 400e716d-libxl-noprope-emulator.patch, b90c4b5f-tests-use-qemu-xen.patch, fccf2725-libxl-API-4.4.patch, 5325123d-libxl-migv2-save-restore.patch, f9edcfa4-libxl-migv2-migration.patch, a1c9a81a-libxl-rbd-fix.patch, ba566428-libxl-dom-iface-addrs.patch - spec: simplify and cleanup by removing many conditionals that are never toogled. Also drop conditionals for suse_version < 1310 * Fri May 27 2016 jengelh@inai.de - Avoid suppressing errors during useradd/groupadd * Wed May 25 2016 jfehlig@suse.com - libxl: add domainInterfaceAddresses API ba566428-libxl-dom-iface-addrs.patch bsc#979425 * Wed May 25 2016 jfehlig@suse.com - libxl: default to qemu driver for network disks a1c9a81a-libxl-rbd-fix.patch boo#981094 * Wed May 18 2016 jfehlig@suse.com - spec: Remove %defattr usage Inspired by upstream commit 90f9193c * Fri May 13 2016 jfehlig@suse.com - libxl: support Xen migration stream V2 fccf2725-libxl-API-4.4.patch, 5325123d-libxl-migv2-save-restore.patch, f9edcfa4-libxl-migv2-migration.patch bsc#978361 * Fri May 13 2016 jfehlig@suse.com - Fix default video RAM setting e4d131b8-mv-virDomainDefPostParseInternal.patch, 3e428670-post-parse-implicit-video.patch, 538012c8-default-vram.patch, 96b21fb0-vram-tests.patch, 400e716d-libxl-noprope-emulator.patch, b90c4b5f-tests-use-qemu-xen.patch bsc#979397 * Fri May 06 2016 olaf@aepfle.de - Remove unknown locales to fix build in old dists * Tue May 03 2016 jfehlig@suse.com - Update to libvirt 1.3.4 - Add support for migration data compression in QEMU driver - Drop libvirtd.socket - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 216650f1-libxl-build-fix.patch, 6d8b6d28-mark-implicit-video-primary.patch, 03e8d5fb-qemu-perf-memory-corruption.patch, libvirtd-systemd-socket.patch * Mon Apr 18 2016 jfehlig@suse.com - qemu: perf: Fix crash/memory corruption on failed VM start 03e8d5fb-qemu-perf-memory-corruption.patch bsc#977131 * Mon Apr 18 2016 jfehlig@suse.com - Fix setting implicit video devices as primary 6d8b6d28-mark-implicit-video-primary.patch bsc#977150 * Tue Apr 12 2016 jfehlig@suse.com - Update to libvirt 1.3.3 - perf events - post-copy migration support - NSS module - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Add rpmlintrc file to filter shlib-policy-name-error for new libnss_libvirt plugin - Fix build with Xen4.7 216650f1-libxl-build-fix.patch * Fri Mar 18 2016 jfehlig@suse.com - spec: restart daemons in %posttrans after connection drivers have been processed bsc#854343, bsc#968483 * Thu Mar 03 2016 jfehlig@suse.com - libxl: advertise system qemu instead of qemu-xen in caps libxl-qemu-emulator-caps.patch FATE#320638 * Tue Mar 01 2016 jfehlig@suse.com - Update to libvirt 1.3.2 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html * Thu Feb 18 2016 jfehlig@suse.com - libxl: Add support for block-{dmmd,drbd,npiv} scripts libxl-support-block-script.patch bsc#954872 * Sat Jan 23 2016 jfehlig@suse.com - qemu: set /usr/share/qemu/ovmf-x86_64-ms-{code,vars}.bin as default UEFI firmwares for x86_64 bsc#961853 * Mon Jan 18 2016 jfehlig@suse.com - Update to libvirt 1.3.1 - CVE-2015-5313 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: 034e47c3-CVE-2015-5313.patch, ace1ee22-qemuxml2argv-test.patch, add-with-login-shell.patch, virt-aa-helper-rw-mounts.patch * Tue Dec 22 2015 jfehlig@suse.com - spec: perform one-time enable and start of virtlogd.socket when upgrading from libvirt < 1.3.0. Inspired by upstream libvirt.git commit da054f35. * Fri Dec 18 2015 jfehlig@suse.com - CVE-2015-5313: don't allow '/' in filesystem volume names 034e47c3-CVE-2015-5313.patch bsc#953110 - Fix failing qemuxml2argv test on 32-bit platforms ace1ee22-qemuxml2argv-test.patch * Thu Dec 17 2015 jfehlig@suse.com - Update to libvirt 1.3.0 - New virtlogd log daemon - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patch: 703ec1b7-qemu-bridge-helper-fix.patch - Added patch: virtlogd-init-script.patch * Thu Dec 03 2015 cbosdonnat@suse.com - Run udevadm settle after removing NICs in lxc driver. bsc#829033. lxc-wait-after-eth-del.patch * Tue Nov 17 2015 cbosdonnat@suse.com - Don't add apparmor deny rw rule for 9P readonly mounts. bsc#952849. virt-aa-helper-rw-mounts.patch * Mon Nov 09 2015 cbosdonnat@suse.com - Don't package virt-login-shell anymore as shipping it as non-setuid doesn't make sense. bsc#837609 add-with-login-shell.patch * Wed Nov 04 2015 normand@linux.vnet.ibm.com - Detect path of qemu-bridge-helper during %configure - add qemu-tools as BuildRequires for suse_version > 1130 - add upstream patch 703ec1b7-qemu-bridge-helper-fix.patch * Wed Nov 04 2015 jfehlig@suse.com - Update to libvirt 1.2.21 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: disable-virCgroupGetPercpuStats-test.patch * Mon Nov 02 2015 jfehlig@suse.com - spec: some minor wireshark fixups. Essentially a backport of commit 7c8250d7. * Fri Oct 16 2015 cbosdonnat@suse.com - spec: remove all dependencies on apparmor to keep it optional. bsc#949793 * Tue Oct 13 2015 jfehlig@suse.com - xenconfig: set disk type to BLOCK when driver is not tap or file xen-sxpr-disk-type.patch bsc#938228 * Fri Oct 09 2015 jfehlig@suse.com - spec: the libvirt apparmor profiles #include files from the apparmor-profiles package, thus should have a dependency on it bsc#949793 * Wed Oct 07 2015 olaf@aepfle.de - Remove Wants=xencommons.service from libvirtd.service xencommons is already enabled by a global preset, and the absence of xen-tools.rpm causes a systemd warning * Fri Oct 02 2015 jfehlig@suse.com - Update to libvirt 1.2.20 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped upstream patches: 3468542f-virFileUnlink.patch, 8b1d84e6-refreshVol-failure.patch, e0025d29-storage-mode-check.patch, ba25c214-libxl-log-level.patch, 56945e13-libxl-AttachDeviceConfig-hostdev.patch * Thu Sep 17 2015 cyliu@suse.com - bsc#945962: SLES12 SP1 Beta3 - Pass-through NIC device via virsh not available to VM. 56945e13-libxl-AttachDeviceConfig-hostdev.patch * Tue Sep 15 2015 jfehlig@suse.com - libxl: set driver log level to the log_level specified in libvirtd.conf ba25c214-libxl-log-level.patch bsc#945796 * Mon Sep 14 2015 cbosdonnat@suse.com - CVE-2015-5247 - denial of service through root-squash NFS storage bsc#945645 3468542f-virFileUnlink.patch 8b1d84e6-refreshVol-failure.patch e0025d29-storage-mode-check.patch * Wed Sep 02 2015 jfehlig@suse.com - Update to libvirt 1.2.19 - Improved ppc64 support - New virDomainRename API - Support for PCI Express controllers in QEMU - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped upstream patches: 269d39af-storage-allocation-fix.patch, 26c5fa3a-virt-aa-helper-missing-doc.patch, d25a5e08-virt-aa-helper-simplify-restriction-logic.patch, 2f01cfdf-virt-aa-helper-allow-ovmf.patch, 91fdcefa-virt-aa-helper-allow-nvram.patch, 52970dec-virt-aa-helper-improve-valid-path.patch, 44a54eb0-libxl-fix-refcnt-MigrationDstArgs.patch, 15120b8c-libxl-no-resume-on-suspend-fail.patch, e80b84a7-libxl-acquire-job-on-migrate.patch, 60acb38-revert-curmem-inactive-dom.patch * Fri Aug 28 2015 jfehlig@suse.com - Replace local libxl patches with upstream variants Dropped: 0003-libxl-fix-ref-counting-of-libxlMigrationDstArgs.patch 0004-libxl-don-t-attempt-to-resume-domain-when-suspend-fa.patch 0005-libxl-acquire-a-job-when-receiving-a-migrating-domai.patch Added: 44a54eb0-libxl-fix-refcnt-MigrationDstArgs.patch 15120b8c-libxl-no-resume-on-suspend-fail.patch e80b84a7-libxl-acquire-job-on-migrate.patch bsc#936185 - Added another virt-aa-helper upstream patch 52970dec-virt-aa-helper-improve-valid-path.patch lp#1483071 - Added upstream patch to fix libvirt-tck memory balloon test failure on Xen 60acb38-revert-curmem-inactive-dom.patch * Wed Aug 26 2015 cbosdonnat@suse.com - Fix generated apparmor profile to allow access to ovmf and nvram. 26c5fa3a-virt-aa-helper-missing-doc.patch 2f01cfdf-virt-aa-helper-allow-ovmf.patch 91fdcefa-virt-aa-helper-allow-nvram.patch d25a5e08-virt-aa-helper-simplify-restriction-logic.patch lp#1483071 * Mon Aug 24 2015 jfehlig@suse.com - storage: only run safezero if allocation is > 0 269d39af-storage-allocation-fix.patch bsc#942085 * Mon Aug 03 2015 jfehlig@suse.com - Update to libvirt 1.2.18 - libxl: support dom0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped upstream patches: e44bcae-virt-aa-helper-trailing-slash.patch, a55a5e7-virt-aa-helper-log.patch, 61dab0f-virt-aa-helper-renaming.patch, 24f3c2f-virt-aa-helper-fix-caps.patch, 45697fe5-libxl-support-dom0.patch, e9c27344-libxl-fix-virDomainObj-state.patch, 4ffb21c8-libxl-dom0-state-fix.patch, qemu-nbd-cleanup-fix.patch * Fri Jul 31 2015 jfehlig@suse.com - Fix crash in libxl driver on receiving side 0003-libxl-fix-ref-counting-of-libxlMigrationDstArgs.patch 0004-libxl-don-t-attempt-to-resume-domain-when-suspend-fa.patch 0005-libxl-acquire-a-job-when-receiving-a-migrating-domai.patch bsc#936185 * Fri Jul 10 2015 jfehlig@suse.com - libxl: set dom0 state to running 4ffb21c8-libxl-dom0-state-fix.patch bsc#937316 - libxl: support management of dom0 45697fe5-libxl-support-dom0.patch bsc#937316 - libxl: libxl: fix setting state of virDomainObj e9c27344-libxl-fix-virDomainObj-state.patch bsc#934937 * Fri Jul 10 2015 cbosdonnat@suse.com - Fixed virt-aa-helper bugs preventing virt-sandbox to work. 24f3c2f-virt-aa-helper-fix-caps.patch 61dab0f-virt-aa-helper-renaming.patch a55a5e7-virt-aa-helper-log.patch e44bcae-virt-aa-helper-trailing-slash.patch bsc#936841 - Fixed crasher due to uninitialized values qemu-nbd-cleanup-fix.patch bsc#936841 * Thu Jul 02 2015 jfehlig@suse.com - Update to libvirt 1.2.17 - parallels driver renamed to vz (Virtuozzo) - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - spec: re-enable tests that have received upstream fixes and are now passing * Wed Jun 03 2015 jfehlig@suse.com - Remove unsupported settings in libvirtd.socket unit file when systemd version < 214 libvirtd-systemd-socket.patch bsc#933043 - spec: always apply Apparmor and netcontrol patches * Tue Jun 02 2015 jfehlig@suse.com - spec: Add libvirtd.socket unit file to service_add_pre and service_del_postun macros * Mon Jun 01 2015 jfehlig@suse.com - Update to libvirt 1.2.16 - Introduce pci-serial - Introduce virDomainSetUserPassword API - Introduce protected key mgmt ops - Add domain vmport feature - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop upstream patches c0d3f608-libxl-soundhw.patch and 8910e063-arch-caps.patch - Drop polkit-10-virt.rules in favor of upstream 50-libvirt.rules * Wed May 20 2015 dmacvicar@suse.de - qemu: fix regression defaulting to host arch 8910e063-arch-caps.patch rhb#1219191 * Wed May 06 2015 jfehlig@suse.com - spec: build libxl driver for aarch64 and remove useless 'suse_version <= 1220' conditional * Tue May 05 2015 jfehlig@suse.com - libxl: support virtual sound devices in HVM domains c0d3f608-libxl-soundhw.patch bsc#875216 * Mon May 04 2015 jfehlig@suse.com - Update to libvirt 1.2.15 - Implement virDomainAddIOThread and virDomainDelIOThread - libxl: Introduce configuration file for libxl driver - Add VIR_DOMAIN_EVENT_ID_DEVICE_ADDED event - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop upstream patches da33a1ac-lxc-init-statedir.patch and open-ns-files-readonly.patch - spec file fixups for building --without-driver-modules * Mon Apr 20 2015 cbosdonnat@suse.com - boo#926765: add libvirt-daemon-driver-qemu dependency on libvirt-daemon-driver-storage. * Thu Apr 09 2015 cbosdonnat@suse.com - boo#926153: make sure /var/run/libvirt/lxc folder exists when starting the driver. da33a1ac-lxc-init-statedir.patch - Fix lxc-enter-namespace for 3.19+ kernels. open-ns-files-readonly.patch * Thu Apr 02 2015 jfehlig@suse.com - Disable building wireshark dissector. Commit 37397320 requires wireshark pkgconfig, which SUSE wireshark packages do not provide. - Disable building the legacy Xen driver since Xen no longer provides the xend toolstack. Remove xend-specific patches while at it: fix-pci-attach-xen-driver.patch, xen-name-for-devid.patch * Thu Apr 02 2015 jfehlig@suse.com - Update to libvirt 1.2.14 - qemu: Implement memory device hotplug - Implement public API for virDomainPinIOThread - Implement public API for virDomainGetIOThreadsInfo - SRIOV NIC offload feature discovery - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop disable-hugepage-test.patch in favor of upstream fix * Tue Mar 31 2015 jfehlig@suse.com - Fix build on older distros containing a polkit package that lacks support for /etc/polkit-1/rules.d drop directory * Wed Mar 25 2015 jfehlig@suse.com - Disable interface driver if libnetcontrol cannot be initialized Modified libvirt-suse-netcontrol.patch boo#920551 * Mon Mar 16 2015 jfehlig@suse.com - Fix crash in libnetcontrol-backed interface driver Modified libvirt-suse-netcontrol.patch boo#920551 * Thu Mar 12 2015 fcastelli@suse.com - Instruct polkit to allow memebers of the 'libvirt' group to connect to libvirt without providing any password (bnc#920804) - Added polkit-10-virt.rules to fix bnc#920804 * Wed Mar 11 2015 jfehlig@suse.com - Change default setting of security_default_confined in /etc/libvirt/qemu.conf instead of in code. Making the change in code changes the default behavior for all users, even those that have a custom security setup in their /etc/libvirt/qemu.conf. Modified suse-qemu-conf.patch bsc#921586 * Mon Mar 09 2015 cbosdonnat@suse.com - Fixed a number of QEMU apparmor abstraction problems. bsc#921355 apparmor-fixes.patch * Mon Mar 02 2015 jfehlig@suse.com - Update to libvirt 1.2.13 - qemu: improved support for host and guest NUMA - Many incremental improvements and bug fixes, see http://libvirt.org/news.html * Tue Jan 27 2015 jfehlig@suse.com - Update to libvirt 1.2.12 - CVE-2015-0236: qemu: Check ACLs when dumping security info from snapshots - CVE-2015-0236: qemu: Check ACLs when dumping security info from save image - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Drop upstream patches: 30c6aecc-apparmor-lib64.patch, apparmor-xen-fixup.patch, apparmor-allow-helpers.patch, apparmor-tck-raw-packets.patch - Disable a hugepage test that is failing on ppc, ppc64, and ppc64le architectures - disable-hugepage-test.patch * Tue Jan 20 2015 cbosdonnat@suse.com - Fixed patches to pass make syntax-check * Tue Jan 20 2015 mlatimer@suse.com - Apparmor profile regression breaks Xen domains. bsc#913799 apparmor-xen-fixup.patch apparmor-allow-helpers.patch apparmor-tck-raw-packets.patch * Mon Jan 05 2015 cbosdonnat@suse.com - Replaced hard to maintain install-apparmor-profiles.patch by upstreamed 30c6aecc-apparmor-lib64.patch. - Reformatted libvirt.spec and libvirtd.init to pass upstream make syntax-check * Sat Dec 27 2014 ledest@gmail.com - fix bashisms in libvirt-guests.sh script - update patches: + libvirt-guests-init-script.patch * Mon Dec 15 2014 cbosdonnat@suse.com - Update to libvirt 1.2.11 - Implement public API for virDomainGetFSInfo - qemu: Add define for the new throttle options - CVE-2014-8131: Fix possible deadlock and segfault in qemuConnectGetAllDomainStats() - CVE-2014-7823: dumpxml: security hole with migratable flag - Drop upstream patches: 2222123-virt-aa-helper-crash.patch, 433b427-iplink-name.patch, 52691f99-qemu-mig-crash.patch, 72fecf1-lxc-resolve-symlinks.patch, b1674ad5-CVE-2014-7823.patch, ba9b7252-sys-net-rw.patch, c264eea-virt-aa-helper-sandbox.patch, e50457d-lxc-unmount-check.patch, cgroup-all-devices.patch, libvirt-ppc64le-support.patch * Wed Dec 10 2014 cbosdonnat@suse.com - Get /proc/sys/net/ipv[46] read-write for wicked to work in containers. bsc#904432. ba9b7252-sys-net-rw.patch - Fixed allowing devices for containers. cgroup-all-devices.patch * Wed Dec 03 2014 jfehlig@suse.com - qemu: Fix crash in tunnelled migration 52691f99-qemu-mig-crash.patch boo#908008 * Thu Nov 20 2014 cbosdonnat@suse.com - Fix potential crasher in virt-aa-helper 2222123-virt-aa-helper-crash.patch - ip link add now needs the 'name' parameter. 433b427-iplink-name.patch - Fixes for virt-sandbox-service to work: - Allow adding virt-sandbox service config to apparmor rules. c264eea-virt-aa-helper-sandbox.patch - fix symlink resolving for containers to start. 72fecf1-lxc-resolve-symlinks.patch - fix unmounting file system if it contains the source to mount. e50457d-lxc-unmount-check.patch * Tue Nov 18 2014 cbosdonnat@suse.com - Remove security_driver = "none" in qemu config. This completely disabled all security drivers instead of probing them. - Changed default value of QEMU's security_default_confined to 0 to keep QEMU domains unconfined by default. * Tue Nov 11 2014 jfehlig@suse.com - CVE-2014-7823: dumpxml: security hole with migratable flag b1674ad5-CVE-2014-7823.patch bsc#904176 * Thu Nov 06 2014 cbosdonnat@suse.com - Fix Qemu AppArmor abstraction. - qemu-block.so was denied on x86_64. install-apparmor-profiles.patch - Temporary fix access to screenshot temporary file. bsc#904426. qemu-apparmor-screenshot.patch * Mon Nov 03 2014 jfehlig@suse.com - Update to libvirt 1.2.10 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html * Mon Oct 27 2014 cbosdonnat@suse.com - Added package wireshark-plugin-libvirt to provide the wireshark dissector for the libvirt RPC protocol
/etc/libvirt/nwfilter /etc/libvirt/nwfilter/allow-arp.xml /etc/libvirt/nwfilter/allow-dhcp-server.xml /etc/libvirt/nwfilter/allow-dhcp.xml /etc/libvirt/nwfilter/allow-dhcpv6-server.xml /etc/libvirt/nwfilter/allow-dhcpv6.xml /etc/libvirt/nwfilter/allow-incoming-ipv4.xml /etc/libvirt/nwfilter/allow-incoming-ipv6.xml /etc/libvirt/nwfilter/allow-ipv4.xml /etc/libvirt/nwfilter/allow-ipv6.xml /etc/libvirt/nwfilter/clean-traffic-gateway.xml /etc/libvirt/nwfilter/clean-traffic.xml /etc/libvirt/nwfilter/no-arp-ip-spoofing.xml /etc/libvirt/nwfilter/no-arp-mac-spoofing.xml /etc/libvirt/nwfilter/no-arp-spoofing.xml /etc/libvirt/nwfilter/no-ip-multicast.xml /etc/libvirt/nwfilter/no-ip-spoofing.xml /etc/libvirt/nwfilter/no-ipv6-multicast.xml /etc/libvirt/nwfilter/no-ipv6-spoofing.xml /etc/libvirt/nwfilter/no-mac-broadcast.xml /etc/libvirt/nwfilter/no-mac-spoofing.xml /etc/libvirt/nwfilter/no-other-l2-traffic.xml /etc/libvirt/nwfilter/no-other-rarp-traffic.xml /etc/libvirt/nwfilter/qemu-announce-self-rarp.xml /etc/libvirt/nwfilter/qemu-announce-self.xml
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Jul 9 13:44:15 2024