December 2015 - Announce - libvirt List Archives

[Libvirt-announce] ANNOUNCE: libvirt 1.2.18.2 maintenance release
by Cole Robinson 24 Dec '15

24 Dec '15

libvirt 1.2.18.2 is now available. This is a maintenance release of libvirt 1.2.18 with additional bugfixes that have accumulated upstream since the initial release. This release can be downloaded at: http://libvirt.org/sources/stable_updates/libvirt-1.2.18.2.tar.gz Changes in this version: * Fix a trailing space in spec file * virsh: report errors for empty strings * bridge: check for invalid MAC in networkGetDHCPLeases * Enhance documentation of virDomainDetachDevice * apparmor: add missing qemu binaries * qemu: Use live autoNodeset when numatune placement is auto * Close the source fd if the destination qemu exits during tunnelled migration * storage: Fix incorrect format for <disk> <auth> XML * virt-host-validate: distinguish exists vs accessible for devices * spec: Delete .git after applying patches * apparmor: differentiate between error and unconfined profiles * storage: Adjust calculation of alloc/capacity for disk * qemu: Add conditions for qemu-kvm use on ppc64 * rpc: libssh2: Fix regression in ssh host key verification * rpc: libssh2: Add more debugging info * Update pool allocation with new values on volume creation * Use daemon log facility for journald * virDomainCreateXML: Make domain definition transient * virDomainCreateXML: Don't remove persistent domains on error * qemu: Refresh memory size only on fresh starts * domain: Fix migratable XML with graphics/@listen * tpm: adapt sysfs cancel path for new TPM driver * libvirt-guests: Disable shutdown timeout * systemd: Escape only needed characters for machined * systemd: Escape machine name for machined * CVE-2015-5313: storage: don't allow '/' in filesystem volume names * docs: event impl. registration before hypervisor connection * spec: Fix some warnings with latest rpmbuild * qemu: Fix dynamic_ownership qemu.conf setting For info about past maintenance releases, see: http://wiki.libvirt.org/page/Maintenance_Releases Thanks, Cole

1 0

[Libvirt-announce] ANNOUNCE: libvirt 1.2.13.2 maintenance release
by Cole Robinson 24 Dec '15

24 Dec '15

libvirt 1.2.13.2 is now available. This is a maintenance release of libvirt 1.2.13 with additional bugfixes that have accumulated upstream since the initial release. This release can be downloaded at: http://libvirt.org/sources/stable_updates/libvirt-1.2.13.2.tar.gz Changes in this version: * spec: Delete .git after applying patches * qemu: block-commit: Mark disk in block jobs only on successful command * qemu: Disallow concurrent block jobs on a single disk * qemu: event: Don't fiddle with disk backing trees without a job * qemu: process: Export qemuProcessFindDomainDiskByAlias * spec: Fix polkit dep on F23 * domain: Fix migratable XML with graphics/@listen * qemu: hotplug: Properly clean up drive backend if frontend hotplug fails * tpm: adapt sysfs cancel path for new TPM driver * libvirt-guests: Disable shutdown timeout * systemd: Escape only needed characters for machined * systemd: Escape machine name for machined * cgroup: Drop resource partition from virSystemdMakeScopeName * CVE-2015-5313: storage: don't allow '/' in filesystem volume names * remoteClientCloseFunc: Don't mangle connection object refcount * Revert "LXC: show used memory as 0 when domain is not active" * lxc: Don't pass a local variable address randomly * lxc: set nosuid+nodev+noexec flags on /proc/sys mount * virnetdev: fix moving of 802.11 phys * interface: don't error out if a bond has no interfaces * lxc: don't up the veth interfaces unless explicitly asked to * tests: Add virnetdevtestdata to EXTRA_DIST * lxc: move wireless PHYs to a network namespace * Cleanup "/sys/class/net" usage * Introduce virnetdevtest * build: provide virNetDevSysfsFile on non-Linux For info about past maintenance releases, see: http://wiki.libvirt.org/page/Maintenance_Releases Thanks, Cole

1 0

[Libvirt-announce] LSN-2015-0004: CVE-2015-5313: ACL bypass using ../ to access beyond storage pool
by Eric Blake 17 Dec '15

17 Dec '15

Libvirt Security Notice: LSN-2015-0004 ====================================== Summary: ACL bypass using ../ to access beyond storage pool Reported on: 20151030 Published on: 20151211 Fixed on: 20151211 Reported by: Ossi Herrala <vulncoord(a)ficora.fi> Joonas Kuorilehto <vulncoord(a)ficora.fi> Patched by: Eric Blake <eblake(a)redhat.com> See also: CVE-2015-5313, FICORA bug #876194 Description ----------- Various virStorageVol* API operate on user-supplied volume names by concatenating the volume name to the pool location. Note that the virStoragePoolListVolumes API, when used on a storage pool backed by a directory in a file system, will only list volumes immediately in that directory (there is no traversal into subdirectories). However, other APIs such as virStorageVolCreateXML were not checking if a potential volume name represented one of the volumes that could be returned by virStoragePoolListVolumes; because they were not rejecting the use of '/' in a volume name. Impact ------ Because no checking was done on volume names, a user could supply a potential volume name of something like '../../../etc/passwd' to attempt to access a file not belonging to the storage pool. When fine-grained Access Control Lists (ACL) are in effect, a user with storage_vol:create ACL permission but lacking domain:write permssion could thus abuse virStorageVolCreateXML and similar APIs to gain access to files not normally permitted to that user. Fortunately, it appears that the only APIs that could leak information or corrupt files require read-write connection to libvirtd; and when ACLs are not in use (the default without any further configuration), a user with read-write access can already be considered to have full access to the machine, and without an escalation of privilege there is no security problem. Workaround ---------- If fine-grained ACLs must be used, administrators must consider all of the storage_vol:* permissions as equivalent to domain:write when running an impacted version of libvirt. The easiest way to prevent untrusted users from gaining unauthorized access to volumes outside of permitted pools is by disabling the use of fine-graned ACLs, and ensuring that such users do not have read-write access to libvirtd. Affected product ---------------- Name: libvirt Repository: git://libvirt.org/git/libvirt.git http://libvirt.org/git/?p=libvirt.git Branch: master Broken in: v1.1.0 Broken in: v1.1.1 Broken in: v1.1.2 Broken in: v1.1.3 Broken in: v1.1.4 Broken in: v1.2.0 Broken in: v1.2.1 Broken in: v1.2.2 Broken in: v1.2.3 Broken in: v1.2.4 Broken in: v1.2.5 Broken in: v1.2.6 Broken in: v1.2.7 Broken in: v1.2.8 Broken in: v1.2.9 Broken in: v1.2.10 Broken in: v1.2.11 Broken in: v1.2.12 Broken in: v1.2.13 Broken in: v1.2.14 Broken in: v1.2.15 Broken in: v1.2.16 Broken in: v1.2.17 Broken in: v1.2.18 Broken in: v1.2.19 Broken in: v1.2.20 Broken in: v1.2.20 Broken in: v1.3.0 Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 034e47c338b13a95cf02106a3af912c1c5f818d7 Branch: v1.1.0-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 14828a59eadc7221326198a8d7af817a6b8b8c13 Branch: v1.1.1-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 692ce509efa0a07f2811d0fe3b7202b020c874e0 Branch: v1.1.2-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: e8643ef68c99e9f5068f6ff64ea0acab94cac7f6 Branch: v1.1.3-maint Broken in: v1.1.3.1 Broken in: v1.1.3.2 Broken in: v1.1.3.3 Broken in: v1.1.3.4 Broken in: v1.1.3.5 Broken in: v1.1.3.6 Broken in: v1.1.3.7 Broken in: v1.1.3.8 Broken in: v1.1.3.9 Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: dcce665904b8ebc9ac3e5109db179a567b33e1a2 Branch: v1.1.4-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: dc2db111a9ba074589c54b90c89f33c01b1e4941 Branch: v1.2.0-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: d414ecb8e1714704e6515ab01ef9386d89b8051e Branch: v1.2.1-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 02d365dae595a3453fe0e438bc274ccf3c18e20d Branch: v1.2.2-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 6542e643024ca4272f14e9052b3786378f6eec62 Branch: v1.2.3-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 91898c606496b14e0891af31dfca7eb77ba9fee3 Branch: v1.2.4-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: c9450f4f855736ef3024dfbab403a849110d8bb5 Branch: v1.2.5-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 890fc0f1ffcc479b08b9fd01de31b62e3d9e7427 Branch: v1.2.6-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 6ae433938377e1b7e657c34cca39e52426347cb4 Branch: v1.2.7-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 4ed8074672f9b847a10464d9c6be77d428c1eb1c Branch: v1.2.8-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 54be99a717873524798d39f8baf49e45054192c8 Branch: v1.2.9-maint Broken in: v1.2.9.1 Broken in: v1.2.9.2 Broken in: v1.2.9.3 Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: b0f88836e5eb5b7156bda99c005cf4aa0456ed0d Branch: v1.2.10-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 53ae31bf4df364a2110f636d5482b21af4e4a0cc Branch: v1.2.11-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 0060c4ee9e70a9f6f297373cb4fd2ace6c187be0 Branch: v1.2.12-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: b5ddfbc0fe13a7910c2303056ddd5df749bcf8b0 Branch: v1.2.13-maint Broken in: v1.2.13.1 Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: b553ec764f7ecdf8962efbf849a0e8524bae610c Branch: v1.2.14-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 6410a22743fadc3b554b2f0866c9ab8008ff4908 Branch: v1.2.15-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 01cbfeb7d81498db3c644404980c9c1aa9cac048 Branch: v1.2.16-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 3e6b40e5aa3edf47443f017a42ec7b87855ed847 Branch: v1.2.17-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 08acad56ce2e5bcfcca8600a4e4074d3aaeb44dd Branch: v1.2.18-maint Broken in: v1.2.18.1 Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: d035796675ca42795953828d11f902f691fa6b29 Branch: v1.2.19-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 69548d200409d2b0dd6356fccfd59570fb58e23a Branch: v1.2.20-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: edeef640db625d23700011dc94adff6e29b85cd3 Branch: v1.2.21-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 29b4ce46798519b93a6a17a5e3734ea4f68ea69d Branch: v1.3.0-maint Broken by: c930410bebae0a45889b992a7932c663b06cbbcd Fixed by: 1d8bcbb7c68d3f35689daf727bc74fcf80a3a6b1 -- Eric Blake eblake redhat com +1-919-301-3266 Libvirt virtualization library http://libvirt.org

1 0

[Libvirt-announce] ANNOUNCE: libvirt-glib version 0.2.3 released
by Daniel P. Berrange 17 Dec '15

17 Dec '15

I am pleased to announce that a new release of the libvirt-glib package, version 0.2.3, is now available from ftp://libvirt.org/libvirt/glib/ The packages are GPG signed with Key fingerprint: DAF3 A6FD B26B 6291 2D0E 8E3F BE86 EBB4 1510 4FDF (4096R) Changes in this release: - Require libvirt >= 1.1.1 - Require glib2 >= 2.36.0 - Require gobject-introspection >= 1.36.0 - Fix memory leak setting ram usage - Fix memory leaks in test suite - Document intended deployment targets - Fix misc docs - Add wrapper for virDOmainSetTime - Port more code to use GTask instead of GSimpleAsyncResult - Drop unused finalize functions - Drop unused variables - Drop overly verbose debug calls for object lifecycle libvirt-glib comprises three distinct libraries: - libvirt-glib - Integrate with the GLib event loop and error handling - libvirt-gconfig - Representation of libvirt XML documents as GObjects - libvirt-gobject - Mapping of libvirt APIs into the GObject type system NB: While libvirt aims to be API/ABI stable forever, with libvirt-glib we are not currently guaranteeing that libvirt-glib libraries are permanently API/ABI stable. That said we do not expect to break the API/ABI for the forseeable future and will always strive avoid it. Follow up comments about libvirt-glib should be directed to the regular libvir-list(a)redhat.com development list. Thanks to all the people involved in contributing to this release. Regards, Daniel -- |: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :| |: http://libvirt.org -o- http://virt-manager.org :| |: http://autobuild.org -o- http://search.cpan.org/~danberr/ :| |: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|

1 0

[Libvirt-announce] Release of libvirt-1.3.0
by Daniel Veillard 09 Dec '15

09 Dec '15

So as planned, I tagged the release in git and pushed signed tarball and rpms to the usual place: ftp://libvirt.org/libvirt I also pushed the associated python release for 1.3.0 though there was no actual code change except numbering: ftp://libvirt.org/libvirt/python The bump in version minor number comes from the addition of the administration API which nearly made it in 1.2.17 in the summer but was postponed since. That is backed up by serious improvement in virtio support and logging. As usual that release carries a sigificant amount of fixes and smaller improvements too: Features: - virt-admin and administration API (Erik Skultety, Martin Kletzander) - various improvements in virtio devices support (Ján Tomko, Marc-André Lureau) - log daemon, logging improvements and protocol (Daniel P. Berrange) Documentation: - libvirt: Update virDomainSetMemory description (Nikolay Shirokovskiy) - virt-admin: Provide a man page for virt-admin (Erik Skultety) - Enhance documentation of virDomainDetachDevice (Jiri Denemark) - qemu: monitor: Explain logic of qemuMonitorGetCPUInfo (Peter Krempa) - document virCommandRunRegex function (Christian Loehle) - libvirt-domain: Fix typo in debug message (Cole Robinson) - qemu: Explain mlock limit size more in detail (Peter Krempa) - virsh.pod: improve attach-interface section (Pavel Hrdina) - virnetdev: Fix function comments for virNetDevGetFeatures (John Ferlan) - virnetdev: Document reasons for ignoring some SIOCETHTOOL errno values (John Ferlan) Portability: - network: selectively disable -Wcast-align in virNetDevParseDadStatus (Ian Campbell) - log_manager: Include configmake.h last (Michal Privoznik) - virtlogd: Fix build without DBus (Martin Kletzander) - virtlogd: use %llu to print 64bit types (Guido Günther) Bug Fixes: - qemu: fix memory leak in opening log file (Daniel P. Berrange) - qemu: Automatic SCSI controller creation in SCSI disk hotplug broken (Boris Fiuczynski) - qemu: domain: Prevent overflows in memory alignment code (Peter Krempa) - conf: Revert some code to resolve issues for hostdev hotplug (Boris Fiuczynski) - virsh: report errors for empty strings (Ján Tomko) - bridge: check for invalid MAC in networkGetDHCPLeases (Ján Tomko) - qemu_agent: fix deadlock in qemuProcessHandleAgentEOF (Wang Yufei) - include: Install libvirt-common.h (Martin Kletzander) - tools: fix output of list with state-shutoff (Wei Jiangang) - virlogd: fix crash if log file exists and it's larger the maxlen (Pavel Hrdina) - systemd: Escape only needed characters for machined (Martin Kletzander) - logging: remove reference to non-existent augeas files (Daniel P. Berrange) - virtlockd: fix misc memory leaks and other bugs (Daniel P. Berrange) - systemd: Escape machine name for machined (Martin Kletzander) - schema: use a better regex for listen addresses (Ján Tomko) - apparmor: add missing qemu binaries (Guido Günther) - storage: Change virStorageBackendVolOpen to use virFileOpenAs (John Ferlan) - storage: Really fix setting mode for backend exec in NFS root-squash env (John Ferlan) - qemu: Add ppc64-specific math to qemuDomainGetMlockLimitBytes() (Andrea Bolognani) - libxl: don't unlock virDomainObj if refcnt is 0 (Jim Fehlig) - libxl: unref libxlDriverConfig object (Jim Fehlig) - qemu: Fix build error in Coverity environment (John Ferlan) - virSetUIDGID: Don't leak supplementary groups (Richard Weinberger) - locking: Add io_timeout to sanlock (Michal Privoznik) - libvirt-guests: Disable shutdown timeout (Guido Günther) - tpm: adapt sysfs cancel path for new TPM driver (Stefan Berger) - bhyve: monitor: do not override domain's privateData (Roman Bogorodskiy) - storage: Don't assume storage pool exists for FC/SCSI refresh thread (John Ferlan) - domain-conf: reorder usb controllers so the master is first (Pavel Hrdina) - qemu: fix parsing of -sdl arg (Daniel P. Berrange) - qemu: handle floppy disk bus when parsing command line argv (Daniel P. Berrange) - qemu: hotplug: Fix mlock limit handling on memory hotplug (Peter Krempa) - Revert "utils: Remove the logging of errors from virNetDevSendEthtoolIoctl" (Daniel P. Berrange) - qemu: migration: Actually error out on unsupported migration flag (Peter Krempa) - qemu: migration: Properly parse memory hotplug migration flag (Peter Krempa) - network: Remove extraneous ATTRIBUTE_NONNULL for virNetDevWaitDadFinish (John Ferlan) - virnetdev: Check correct return value for virNetDevFeatureAvailable (John Ferlan) - storage: On 'buildVol' failure don't delete the volume (John Ferlan) - Revert "storage: Prior to creating a volume, refresh the pool" (John Ferlan) - qemu: Fix memory leak in qemuProcessStart (Jiri Denemark) - qemu: Use correct type when calling qemuPrepareNVRAM (Jiri Denemark) Improvements: - Revert "libxl: implement virDomainInterfaceStats" (Jim Fehlig) - rpm: explicitly enable & start virtlogd on install (Daniel P. Berrange) - libvirtd: enable virtlockd/virtlogd socket activation on install (Daniel P. Berrange) - logging: validate flags passed from client in virtlogd (Daniel P. Berrange) - logging: change log protocol to be more reusable (Daniel P. Berrange) - logging: preserve driver, dom name & uuid against log file (Daniel P. Berrange) - qemu: include hostname in QEMU log files (Daniel P. Berrange) - rotatingfile: mark log files as close-on-exec (Daniel P. Berrange) - libvirtd: require virtlogd to start before libvirtd (Guido Günther) - schema: Allow > UINT_MAX KiB of memory for NUMA nodes (Peter Krempa) - virsh: remove custom error for cpulist from cmdIOThreadPin (Ján Tomko) - libxl: implement virDomainInterfaceStats (Joao Martins) - tests: Run virnetdaemontest iff WITH_YAJL (Michal Privoznik) - admin: Distribute libvirt-admin.conf (Martin Kletzander) - admin: Rename virAdmConnect to virAdmDaemon (Martin Kletzander) - spec: Temporarily disable new admin-related files (Martin Kletzander) - admin: Include admin_remote.c in the dist package (Martin Kletzander) - build: Create needed folders without dependency tracking (Martin Kletzander) - util: Avoid variable named 'truncate' shadowing global declaration (Martin Kletzander) - conf: Split virDomainObjList into a separate file (Michal Privoznik) - qemu: build command line for virtio-input-host device (Ján Tomko) - qemu: add passed-through input devs to cgroup ACL (Ján Tomko) - security: label the evdev for input device passthrough (Ján Tomko) - conf: add XML for input device passthrough (Ján Tomko) - qemu: add capability for virtio-input-host-device (Ján Tomko) - qemu: build command line for virtio input devices (Ján Tomko) - conf: parse and format virtio input bus in domain XML (Ján Tomko) - qemu: add capabilities for virtio input devices (Ján Tomko) - admin: Introduce virAdmConnectGetLibVersion (Erik Skultety) - admin: Add support for connection close callbacks (Erik Skultety) - admin: Add support for URI aliases (Erik Skultety) - livirt: Move URI alias matching to util (Erik Skultety) - admin: Add URI support and introduce virAdmGetDefaultURI (Erik Skultety) - admin: Do not generate remoteAdminConnect{Open,Close} (Erik Skultety) - admin: Move remote admin API version to a separate module (Erik Skultety) - admin: Introduce virAdmConnectIsAlive (Erik Skultety) - virt-admin: Introduce first working skeleton (Erik Skultety) - admin: introduce virAdmGetVersion (Erik Skultety) - libvirt: Move config getters to util (Erik Skultety) - admin: Introduce libvirt-admin.conf (Erik Skultety) - libvirt: introduce libvirt/libvirt-common.h.in (Erik Skultety) - qemu: add virtio-gpu virgl support (Marc-André Lureau) - qemu: add virtio video device (Marc-André Lureau) - domain: replace bool accel{2d, 3d} with a tristate (Marc-André Lureau) - Replace support{2d,3d} with accel{2d,3d} (Marc-André Lureau) - logging: avoid variables called 'daemon' due to function clash (Daniel P. Berrange) - logging: inhibit virtlogd shutdown while log files are open (Daniel P. Berrange) - qemu: add support for sending QEMU stdout/stderr to virtlogd (Daniel P. Berrange) - qemu: convert monitor to use qemuDomainLogContextPtr indirectly (Daniel P. Berrange) - qemu: convert process stop/attach to use qemuDomainLogContextPtr (Daniel P. Berrange) - qemu: convert qemuLogOperation to take a qemuDomainLogContextPtr (Daniel P. Berrange) - qemu: change qemuDomainTaint APIs to accept qemuDomainLogContextPtr (Daniel P. Berrange) - qemu: convert log file creation to use qemuDomainLogContextPtr (Daniel P. Berrange) - qemu: introduce a qemuDomainLogContext object (Daniel P. Berrange) - qemu: unify code for reporting errors from QEMU log files (Daniel P. Berrange) - qemu: remove writing to QEMU log file for rename operation (Daniel P. Berrange) - logging: add client for virtlogd daemon (Daniel P. Berrange) - logging: introduce log handling protocol (Daniel P. Berrange) - Import stripped down virtlockd code as basis of virtlogd (Daniel P. Berrange) - util: add APIs for reading/writing from/to rotating files (Daniel P. Berrange) - virsh: Try to keep printed XML pretty with change-media (Martin Kletzander) - qemu: Use qemuProcessLaunch in migration Prepare phase (Jiri Denemark) - qemu: Skip starting NBD servers for offline migration (Jiri Denemark) - qemu: Kill QEMU process if Prepare phase fails (Jiri Denemark) - qemu: Separate incoming URI generation from qemuMigrationPrepareAny (Jiri Denemark) - qemu: Introduce qemuProcessFinishStartup (Jiri Denemark) - qemu: Introduce qemuProcessLaunch (Jiri Denemark) - qemu: Introduce qemuProcessInit (Jiri Denemark) - conf: reject multiple panic devices of same model (Dmitry Andreev) - Allow multiple panic devices (Dmitry Andreev) - qemu: add support for hv_crash feature as a panic device (Dmitry Andreev) - tests: add tests for the new panic device attribute - 'model' (Dmitry Andreev) - conf: add 'model' attribute for panic device with values isa, pseries, hyperv (Dmitry Andreev) - conf: refactor code for checking ABI stability of panic device (Dmitry Andreev) - nodedev: report maxCount for virtual_functions capability (Laine Stump) - conf: support reporting maxCount attribute for virtual_functions cap (Laine Stump) - Post-release version bump to 1.3.0 (Pavel Hrdina) - conf: Drop useless check when parsing cpu scheduler info (Peter Krempa) - qemu: pass the asyncJob to qemuProcessStartCPUs (Ján Tomko) - xenapi: Refactor extraction of vcpu count (Peter Krempa) - phyp: Refactor extraction of vcpu count (Peter Krempa) - openvz: Refactor extraction of vcpu count (Peter Krempa) - hyperv: Allocate 'def' via virDomainDefNew (Peter Krempa) - qemuSetupChrSourceCgroup: rename dev to source (Ján Tomko) - Simplify qemuSetupChrSourceCgroup and its callers (Ján Tomko) - rename qemuSetupHostdevCGroup to qemuSetupHostdevCgroup (Ján Tomko) - qemu: handle more machines with a single builtin IDE controller (Guido Günther) - qemu: Always set locked memory limit for ppc64 domains (Andrea Bolognani) - qemu: Use qemuDomainRequiresMlock() when attaching PCI hostdev (Andrea Bolognani) - qemu: Use qemuDomainRequiresMlock() in qemuBuildCommandLine() (Andrea Bolognani) - process: Log when limiting the amount of locked memory (Andrea Bolognani) - vz: implementation of domainReboot callback (Mikhail Feoktistov) - vz: allow only en-us keymap for VNC (Mikhail Feoktistov) - qemu: Close logfd when closing monitor (Jiri Denemark) - qemu: Do not infer flags from other qemuProcessStart arguments (Jiri Denemark) - qemu: Introduce qemuProcessMakeDir (Jiri Denemark) - qemu: Separate balloon code from qemuProcessStart (Jiri Denemark) - qemu: Enter monitor within qemuProcessSetLinkStates (Jiri Denemark) - qemu: Separate raw IO code from qemuProcessStart (Jiri Denemark) - qemu: Separate graphics handling code from qemuProcessStart (Jiri Denemark) - qemu: Separate hook handling code from qemuProcessStart (Jiri Denemark) - qemu: Rename stdin_{fd,path} in qemuProcessStart (Jiri Denemark) - qemu: Use -incoming defer for migrations (Jiri Denemark) - qemu: Add APIs for migrate-incoming QMP command (Jiri Denemark) - qemu: Always set async job when starting a domain (Jiri Denemark) - qemu: Introduce qemuProcessIncomingDef (Jiri Denemark) - qemu: Move incoming URI code to qemu_migration (Jiri Denemark) - qemu: Don't generate migration URI in qemuBuildCommandLine (Jiri Denemark) - qemu: Refactor the code to build -incoming command line (Jiri Denemark) - qemu: Refactor waiting for completed migration on destination (Jiri Denemark) - util: add virDiskNameParse to handle disk and partition idx (Joao Martins) - libxl: implement virDomainMemorystats (Joao Martins) - lxc: Bind mount container TTYs (Richard Weinberger) - lxc: Don't make container's TTY a controlling TTY (Richard Weinberger) - qemu: ppc64: Support memory hotplug without NUMA enabled (Peter Krempa) - qemu: command: Prepare memory device def formatter for missing target node (Peter Krempa) - conf: Prepare making memory device target node optional (Peter Krempa) - qemu: command: Move dimm device checks from formatter to checker (Peter Krempa) - qemu: domain: Add common function to perform memory hotplug checks (Peter Krempa) - qemu: command: Always execute memory device formatter (Peter Krempa) - qemu: command: Make qemuBuildMemoryBackendStr usable without NUMA (Peter Krempa) - libxl: implement virDomainGetCPUStats (Joao Martins) - syntax-check: Add prohibit_space_in_label rule (Andrea Bolognani) - util: remove unnecessary needSize (Chen Hanxiao) - storage: Introduce virStoragePoolObjFindPoolByUUID (John Ferlan) - storage: Change cbdata scsi refresh thread field name (John Ferlan) - storage: Make active boolean (John Ferlan) - qemu: domain: Restructurate control flow in qemuDomainGetMlockLimitBytes (Peter Krempa) - qemu: Fix job entry debug message (Jiri Denemark) - tests: Add QEMU 2.4.0 capabilities (Jiri Denemark) - tests: Remove qemuxmlnstest (Jiri Denemark) - qemu: Fix style in qemuProcessStart (Jiri Denemark) - security: Cleanup DAC driver (Jiri Denemark) - domain-conf: cleanup controller insert function (Pavel Hrdina) - virsh-domain: update attach-interface to support type=hostdev (Pavel Hrdina) - vz: support cpu time in driver's domainGetInfo (Nikolay Shirokovskiy) - qemu: assume various QEMU 0.10 features are always available (Daniel P. Berrange) - qemu: assume -vga is always available (Daniel P. Berrange) - qemu: assume -drive format is always available (Daniel P. Berrange) - qemu: assume -drive cache always uses v2 option names (Daniel P. Berrange) - qemu: assume support for all migration protocols except rdma (Daniel P. Berrange) - qemu: assume vnet-hdr feature is always available (Daniel P. Berrange) - qemu: really remove last traces of Xenner support (Daniel P. Berrange) - qemu: assume -uuid is always available (Daniel P. Berrange) - qemu: assume -name is always available (Daniel P. Berrange) - qemu: assume -drive argument is always available (Daniel P. Berrange) - qemu: handle USB bus in qemuAssignDeviceDiskAliasFixed() (Daniel P. Berrange) - qemu: assume -no-reboot is always available (Daniel P. Berrange) - qemu: assume 'info chardev' is always available (Daniel P. Berrange) - qemu: assume -vnc arg always takes a ':' (Daniel P. Berrange) - qemu: remove all support for kQEMU (Daniel P. Berrange) - qemu: mandate QEMU version 0.12.0 or newer (Daniel P. Berrange) - qemu: hotplug: Reject VFIO hotplug if setting RLIMIT_MEMLOCK fails (Peter Krempa) - qemu: Extract logic to determine the mlock limit size for VFIO (Peter Krempa) - conf: Make @def const in virDomainDefGetMemoryInitial (Peter Krempa) - tests: redo test argv file line wrapping (Daniel P. Berrange) - virnetdev: Use virNetDevSetupControl in virNetDevSendEthtoolIoctl (John Ferlan) - virnetdev: Check for root in virNetDevGetFeatures (John Ferlan) - qemu: add /usr/lib to AC_PATH_PROG for qemu-bridge-helper (Michel Normand) - storage: Pull volume removal from pool in storageVolDeleteInternal (John Ferlan) - storage: Cleanup failures in virStorageBackendCreateRaw (John Ferlan) - storage: Cleanup failures virStorageBackendCreateExecCommand (John Ferlan) - storage: Fix setting mode in virStorageBackendCreateExecCommand (John Ferlan) - Remove new lines from log messages (Jiri Denemark) - qemu: Introduce cleanup label in qemuProcessStart (Jiri Denemark) - qemu: Rename ret variable in qemuProcessStart (Jiri Denemark) - qemu: Rename cleanup label in qemuProcessStart (Jiri Denemark) So thanks everybody for helping with this release, be it with patches, ideas, reports, documentation, etc... As a reminder next release supposedly 1.3.1 will come mid-January due to the end of year slowdown, and then 1.3.2 at the end or February. Enjoy ! Daniel -- Daniel Veillard | Open Source and Standards, Red Hat veillard(a)redhat.com | libxml Gnome XML XSLT toolkit http://xmlsoft.org/ http://veillard.com/ | virtualization library http://libvirt.org/

1 0

[Libvirt-announce] Entering freeze for libvirt-1.3.0
by Daniel Veillard 08 Dec '15

08 Dec '15

As planned I have tagged RC1 in git and pushed signed tarball and rpms to the usual place: ftp://libvirt.org/libvirt/ there is significant changes in this release so people are really encouraged to give it a good try. I will try to push rc2 possibly in the week-end and shooting for a release on Tuesday next week i.e. Dec 8th, thanks for testing it ! Daniel -- Daniel Veillard | Open Source and Standards, Red Hat veillard(a)redhat.com | libxml Gnome XML XSLT toolkit http://xmlsoft.org/ http://veillard.com/ | virtualization library http://libvirt.org/

2 6