lp:~nova-coresec/ubuntu/maverick/libvirt/nova-ppa
- Get this branch:
- bzr branch lp:~nova-coresec/ubuntu/maverick/libvirt/nova-ppa
Branch merges
Related bugs
Bug #628055: Instances don't start correctly on 32bit systems with large disk files | High | Fix Released | |
Bug #637544: apparmor=DENIED operation=open parent=3343 profile=/usr/lib/libvirt/virt-aa-helper | Low | Fix Released | |
Bug #643394: libvirt 0.8.x FTBFS on powerpc | Undecided | Fix Released | |
Bug #646706: NWFilter support broken due to Apparmour restrictions | Undecided | Fix Released |
Related blueprints
Branch information
- Owner:
- Nova Core security contacts
- Status:
- Development
Recent revisions
- 107. By Soren Hansen
-
* Forward-port to Maverick.
- Re-enable macvtap.
* Add 9029-nwfilter-extend- nwfilter- reload- support. patch from upstream
trunk and 9030-nwfilter-resolve- deadlock- between- VM-operations- and-
filter-update. patch, an RFC patch from the libvirt mailing list.
Together, they fix a deadlock in libvirt when attempting to update
filters and creating domains at the same time.
* Nova Lucid PPA build.
* Merge with Ubuntu Maverick. Remainging changes:
- Disable macvtap.
* Let Apparmor allow libvirtd to create PF_PACKET sockets. Several
utility functions require it. Of particular interest, the NWFilter
code uses it, so libvirt's firewalling functionality depends on
this. (LP: #646706)
* debian/patch/9028- lp628055. patch: include sys/stat.h to fix compiler
warning and stat() failure on 32bit architectures when calling stat() on
large files. This can be dropped in 0.8.5. (LP: #628055)
* 9027-Make-newfilter- xml-transformat ions-endian- safe.patch
NWFilter XML processing includes endian assumptions. Ensure
that XML is parsed in an endian-safe manner. Thanks to
Stefan Berger for developing the patch upstream. (LP: #643394)
* 9026-Rebuild-network- filter- for-UML- guests- on-updates. patch.
NWFilter updates are supposed to be immediate. Add this support to
the UML driver.
* debian/apparmor/ usr.lib. virt-aa- helper: add read access to new 'loader'
for eucalyptus (LP: #637544)
* Add 9025-Add-nwfilter- support- to-UML- driver. patch. Adds missing
nwfilter support to UML.
* Nova Maverick PPA build.
* Nova Lucid PPA build.
* Disable macvtap. - 104. By Soren Hansen
-
When adding 9024-Explicitly
-pass-uml_ dir-argument- to-user- mode-linux. patch, I forgot to also apply it to the source tree. - 102. By Soren Hansen
-
Add 9024-Explicitly
-pass-uml_ dir-argument- to-user- mode-linux. patch
to stop user-mode-linux domains running under a libvirtd run by
upstart from mysteriously and silently crashing during boot. - 101. By Soren Hansen
-
Update 9023-Support-
virDomainAttach Device- and-virDomainDe tachDev. patch
based on a small last-minute change upstream. - 100. By Marc Deslauriers
-
debian/
patches/ 9009-autodetect -nc-params. patch: updated to fix
connecting to a remote server when using zsh or tcsh. (LP: #605172) - 99. By Jamie Strandboge
-
* debian/
patches/ series: per Ubuntu Server team, run qemu/kvm as non-root
and comment out 9008-run-as-root- by-default. patch. This has now received
significant testing in Debian, adds a good security benefit for people
who disable AppArmor and fixes the libvirt portion of LP: #619843. With
this patch removed, libvirt will default to the Debian configure arguments
and run qemu/kvm VMs as 'libvirt-qemu:kvm'.
* debian/README. Debian: adjusted for the above
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/maverick/libvirt