diff --git a/.cvsignore b/.cvsignore index 3a1aa41..e2ba70e 100644 --- a/.cvsignore +++ b/.cvsignore @@ -6,3 +6,4 @@ libvirt-*.tar.gz libvirt-0.4.6.tar.gz libvirt-0.5.0.tar.gz libvirt-0.5.1.tar.gz +libvirt-0.6.0.tar.gz diff --git a/libvirt-0.5.1-read-only-checks.patch b/libvirt-0.5.1-read-only-checks.patch deleted file mode 100644 index 45bf34f..0000000 --- a/libvirt-0.5.1-read-only-checks.patch +++ /dev/null @@ -1,152 +0,0 @@ -diff --git a/src/libvirt.c b/src/libvirt.c ---- a/src/libvirt.c -+++ b/src/libvirt.c -@@ -2296,6 +2296,16 @@ virDomainMigrate (virDomainPtr domain, - conn = domain->conn; /* Source connection. */ - if (!VIR_IS_CONNECT (dconn)) { - virLibConnError (conn, VIR_ERR_INVALID_CONN, __FUNCTION__); -+ return NULL; -+ } -+ -+ if (domain->conn->flags & VIR_CONNECT_RO) { -+ virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return NULL; -+ } -+ if (dconn->flags & VIR_CONNECT_RO) { -+ /* NB, delibrately report error against source object, not dest here */ -+ virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__); - return NULL; - } - -@@ -2426,6 +2436,11 @@ virDomainMigratePrepare (virConnectPtr d - return -1; - } - -+ if (dconn->flags & VIR_CONNECT_RO) { -+ virLibConnError(dconn, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return -1; -+ } -+ - if (dconn->driver->domainMigratePrepare) - return dconn->driver->domainMigratePrepare (dconn, cookie, cookielen, - uri_in, uri_out, -@@ -2457,6 +2472,11 @@ virDomainMigratePerform (virDomainPtr do - } - conn = domain->conn; - -+ if (domain->conn->flags & VIR_CONNECT_RO) { -+ virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return -1; -+ } -+ - if (conn->driver->domainMigratePerform) - return conn->driver->domainMigratePerform (domain, cookie, cookielen, - uri, -@@ -2482,6 +2502,11 @@ virDomainMigrateFinish (virConnectPtr dc - - if (!VIR_IS_CONNECT (dconn)) { - virLibConnError (NULL, VIR_ERR_INVALID_CONN, __FUNCTION__); -+ return NULL; -+ } -+ -+ if (dconn->flags & VIR_CONNECT_RO) { -+ virLibConnError(dconn, VIR_ERR_OPERATION_DENIED, __FUNCTION__); - return NULL; - } - -@@ -2517,6 +2542,11 @@ virDomainMigratePrepare2 (virConnectPtr - return -1; - } - -+ if (dconn->flags & VIR_CONNECT_RO) { -+ virLibConnError(dconn, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return -1; -+ } -+ - if (dconn->driver->domainMigratePrepare2) - return dconn->driver->domainMigratePrepare2 (dconn, cookie, cookielen, - uri_in, uri_out, -@@ -2547,6 +2577,11 @@ virDomainMigrateFinish2 (virConnectPtr d - return NULL; - } - -+ if (dconn->flags & VIR_CONNECT_RO) { -+ virLibConnError(dconn, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return NULL; -+ } -+ - if (dconn->driver->domainMigrateFinish2) - return dconn->driver->domainMigrateFinish2 (dconn, dname, - cookie, cookielen, -@@ -2905,6 +2940,11 @@ virDomainBlockPeek (virDomainPtr dom, - } - conn = dom->conn; - -+ if (dom->conn->flags & VIR_CONNECT_RO) { -+ virLibDomainError(dom, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return (-1); -+ } -+ - if (!path) { - virLibDomainError (dom, VIR_ERR_INVALID_ARG, - _("path is NULL")); -@@ -2980,6 +3020,11 @@ virDomainMemoryPeek (virDomainPtr dom, - } - conn = dom->conn; - -+ if (dom->conn->flags & VIR_CONNECT_RO) { -+ virLibDomainError(dom, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return (-1); -+ } -+ - /* Flags must be VIR_MEMORY_VIRTUAL at the moment. - * - * Note on access to physical memory: A VIR_MEMORY_PHYSICAL flag is -@@ -3246,6 +3291,11 @@ virDomainSetAutostart(virDomainPtr domai - } - - conn = domain->conn; -+ -+ if (domain->conn->flags & VIR_CONNECT_RO) { -+ virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return (-1); -+ } - - if (conn->driver->domainSetAutostart) - return conn->driver->domainSetAutostart (domain, autostart); -@@ -4197,6 +4247,11 @@ virNetworkSetAutostart(virNetworkPtr net - return (-1); - } - -+ if (network->conn->flags & VIR_CONNECT_RO) { -+ virLibNetworkError(network, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return (-1); -+ } -+ - conn = network->conn; - - if (conn->networkDriver && conn->networkDriver->networkSetAutostart) -@@ -4395,6 +4450,11 @@ virConnectFindStoragePoolSources(virConn - return NULL; - } - -+ if (conn->flags & VIR_CONNECT_RO) { -+ virLibConnError(conn, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return NULL; -+ } -+ - if (conn->storageDriver && conn->storageDriver->findPoolSources) - return conn->storageDriver->findPoolSources(conn, type, srcSpec, flags); - -@@ -5068,6 +5128,11 @@ virStoragePoolSetAutostart(virStoragePoo - return (-1); - } - -+ if (pool->conn->flags & VIR_CONNECT_RO) { -+ virLibStoragePoolError(pool, VIR_ERR_OPERATION_DENIED, __FUNCTION__); -+ return (-1); -+ } -+ - conn = pool->conn; - - if (conn->storageDriver && conn->storageDriver->poolSetAutostart) diff --git a/libvirt.spec b/libvirt.spec index 3482ab9..3b3cd69 100644 --- a/libvirt.spec +++ b/libvirt.spec @@ -11,6 +11,7 @@ %define with_python 0%{!?_without_python:1} %define with_libvirtd 0%{!?_without_libvirtd:1} %define with_uml 0%{!?_without_uml:1} +%define with_network 0%{!?_without_network:1} # Xen is available only on i386 x86_64 ia64 %ifnarch i386 i686 x86_64 ia64 @@ -32,15 +33,25 @@ %define with_xen_proxy 0 %endif +# +# If building on RHEL switch on the specific support +# for the specific Xen version +# +%if 0%{?fedora} +%define with_rhel5 0 +%else +%define with_rhel5 1 +%endif + + Summary: Library providing a simple API virtualization Name: libvirt -Version: 0.5.1 -Release: 2%{?dist}%{?extra_release} +Version: 0.6.0 +Release: 1%{?dist}%{?extra_release} License: LGPLv2+ Group: Development/Libraries Source: libvirt-%{version}.tar.gz BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root -Patch0: libvirt-0.5.1-read-only-checks.patch URL: http://libvirt.org/ BuildRequires: python python-devel Requires: libxml2 @@ -125,6 +136,8 @@ BuildRequires: lvm2 BuildRequires: iscsi-initiator-utils # For disk driver BuildRequires: parted-devel +# For QEMU/LXC numa info +BuildRequires: numactl-devel Obsoletes: libvir # Fedora build root suckage @@ -164,7 +177,6 @@ of recent versions of Linux (and other OSes). %prep %setup -q -%patch0 -p1 %build %if ! %{with_xen} @@ -207,6 +219,14 @@ of recent versions of Linux (and other OSes). %define _without_uml --without-uml %endif +%if %{with_rhel5} +%define _with_rhel5_api --with-rhel5-api +%endif + +%if ! %{with_network} +%define _without_network --without-network +%endif + %configure %{?_without_xen} \ %{?_without_qemu} \ %{?_without_openvz} \ @@ -217,6 +237,8 @@ of recent versions of Linux (and other OSes). %{?_without_python} \ %{?_without_libvirtd} \ %{?_without_uml} \ + %{?_without_network} \ + %{?_with_rhel5_api} \ --with-init-script=redhat \ --with-qemud-pid-file=%{_localstatedir}/run/libvirt_qemud.pid \ --with-remote-file=%{_localstatedir}/run/libvirtd.pid @@ -277,7 +299,7 @@ rm -fr %{buildroot} # or on the first upgrade from a non-network aware libvirt only. # We check this by looking to see if the daemon is already installed /sbin/chkconfig --list libvirtd 1>/dev/null 2>&1 -if [ $? != 0 ] +if [ $? != 0 -a ! -f %{_sysconfdir}/libvirt/qemu/networks/default.xml ] then UUID=`/usr/bin/uuidgen` sed -e "s,,\n $UUID," \ @@ -320,6 +342,7 @@ fi %{_sysconfdir}/rc.d/init.d/libvirtd %config(noreplace) %{_sysconfdir}/sysconfig/libvirtd %config(noreplace) %{_sysconfdir}/libvirt/libvirtd.conf +%config(noreplace) %{_sysconfdir}/logrotate.d/libvirtd %endif %if %{with_qemu} @@ -336,11 +359,41 @@ fi %{_datadir}/libvirt/networks/default.xml %endif +%dir %{_datadir}/libvirt/ +%dir %{_datadir}/libvirt/schemas/ + +%{_datadir}/libvirt/schemas/domain.rng +%{_datadir}/libvirt/schemas/network.rng +%{_datadir}/libvirt/schemas/storagepool.rng +%{_datadir}/libvirt/schemas/storagevol.rng +%{_datadir}/libvirt/schemas/nodedev.rng +%{_datadir}/libvirt/schemas/capability.rng + %dir %{_localstatedir}/run/libvirt/ + %dir %{_localstatedir}/lib/libvirt/ %dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/images/ %dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/boot/ +%if %{with_qemu} +%dir %{_localstatedir}/run/libvirt/qemu/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/qemu/ +%endif +%if %{with_lxc} +%dir %{_localstatedir}/run/libvirt/lxc/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/lxc/ +%endif +%if %{with_uml} +%dir %{_localstatedir}/run/libvirt/uml/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/uml/ +%endif +%if %{with_network} +%dir %{_localstatedir}/run/libvirt/network/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/network/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/iptables/filter/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/iptables/nat/ +%endif + %if %{with_qemu} %{_datadir}/augeas/lenses/libvirtd_qemu.aug %{_datadir}/augeas/lenses/tests/test_libvirtd_qemu.aug @@ -372,7 +425,6 @@ fi %attr(0755, root, root) %{_sbindir}/libvirtd %endif -%doc docs/*.rng %doc docs/*.xml %files devel @@ -405,6 +457,15 @@ fi %endif %changelog +* Sat Jan 31 2009 Daniel Veillard - 0.6.0-1.fc11 +- upstream release 0.6.0 +- thread safety of API +- allow QEmu/KVM domains to survive daemon restart +- extended logging capabilities +- support copy on write storage volumes for QEmu/KVM +- support of storage cache control options for QEmu/KVM +- a lot of bug fixes + * Wed Dec 17 2008 Daniel Veillard - 0.5.1-2.fc11 - fix missing read-only access checks, fixes CVE-2008-5086 diff --git a/sources b/sources index 00a8b04..3bb1875 100644 --- a/sources +++ b/sources @@ -1 +1,2 @@ abc697978e9c66cbc8d8db4fa3f1c1b6 libvirt-0.5.1.tar.gz +8e0120d5452b37179f682031bf0895ea libvirt-0.6.0.tar.gz