lp://staging/ubuntu/karmic-proposed/libvirt

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

56. By Jamie Strandboge on 2009-11-09

* debian/patches/9093-lp460271.patch: require absolute path for dynamic
  added files (LP: #460271)
* debian/patches/9094-lp453335.patch: suppress confusing and misleading
  apparmor denied message when kvm/qemu tries to open a libvirt specified
  readonly file (such as a cdrom) with write permissions. libvirt uses the
  readonly attribute for the security driver only, and has no way of telling
  kvm/qemu that the device should be opened readonly. (LP: #453335)
* debian/apparmor/usr.sbin.libvirtd: allow 'inet dgram' for migration to
  work (LP: #461528)
* debian/apparmor/usr.sbin.libvirtd: properly support qemu+tcp:// by
  allowing 'inet6 stream' and 'inet6 dgram' (LP: #462000)

55. By Jamie Strandboge on 2009-10-23

* allow save/restore to work in $HOME. This is a workaround until upstream
  https://bugzilla.redhat.com/show_bug.cgi?id=529363 is fixed. (LP: #457716)
* debian/libvirt-bin.cron.daily: don't comlain if no domain XML definitions
  or domain AppArmor profiles. Based on work by Loïc Minier. (LP: #457607)

54. By Jamie Strandboge on 2009-10-16

debian/apparmor/libvirt-qemu: a couple more fixes for pulseaudio
LP: #453329

53. By Jamie Strandboge on 2009-10-14

* debian/patches/9091-apparmor.patch:
  - src/virt-aa-helper.c: update to parse XML for guest's architecture and
    os.type rather than just trying to make something up.
  - tests/virt-aa-helper-test: add some tests for the above and fix another
    test
  - LP: #448671

52. By Dustin Kirkland  on 2009-10-06

debian/patches/0005-Close-logfile-fd-after-spawning-qemu.patch: fix
egregious file descriptor leak with cherry-pick from upstream git,
LP: #438815

51. By Jamie Strandboge on 2009-10-05

* allow access for sound (LP: #437854)
  - abstractions/libvirt-qemu: add very specific rules for allowing ALSA. We
    do not use the audio abstraction because the virtual machine runs as root
    and therefore DAC cannot be used as a fallback.
  - debian/README.Debian: add some text to encourage review of the AppArmor
    profiles and abstraction when using in production environments
* debian/libvirt-bin.cron.daily: added to clean out old profiles that are no
  longer associated with a virtual machine definition (LP: #438165)
* debian/patches/9091-apparmor.patch:
  - quote the pid, monitor and logfile in case any of them have weird
    characters (complete fix for LP: #432810)
  - support <readonly/> for disks

50. By Jamie Strandboge on 2009-09-22

* debian/patches/9091-apparmor.patch: sync with upstream for maintenance,
  licensing compliance with upstream and bug fixes:
  - handle files with spaces in the name (LP: #432810)
  - add serial, console, kernel and initrd support (LP: #432581)
  - allow read only access to /boot, /vmlinuz and /initrd.img
  - allow access to character devices (eg USB devices)
  - have virt-aa-helper accept XML on stdin, which allows for adding
    other devices in the future and helps ensure we always have the most
    up to date definition
  - update profile on attach and detach of devices (LP: #435527)
  - add --dryrun option to virt-aa-helper, and greatly improve the
    virt-aa-helper-test script
* revert workaround for LP: #431090 now that kernel, initrd, et al is
  properly supported
* debian/apparmor/usr.sbin.libvirtd: add various capabilities
  recommended by upstream to prevent potential regressions

49. By Jamie Strandboge on 2009-09-22

debian/apparmor/libvirt-qemu: add chown capability (LP: #434417)

48. By Jamie Strandboge on 2009-09-17

debian/apparmor/libvirt-qemu: workaround eucalyptus serial console,
kernel and initrd location. This should be removed after virt-aa-helper is
able to get these from XML. (LP: #431090)

47. By Jamie Strandboge on 2009-09-10

* debian/apparmor/usr.sbin.libvirtd: switch to enforcing by default. Please
  note that this was only in complain mode temporarily to work around kernel
  bugs in the 2.6.31-9 kernel. Confinement of virtual machines (controlled
  by /etc/apparmor.d/libvirt/TEMPLATE) was already in enforcing mode.
  (LP: #427338)
* debian/README.Debian: update AppArmor section based on the upstream
  documentation