Ubuntu
qemu package

Merge ~paelzer/ubuntu/+source/qemu:4.2-3-for-focal into ubuntu/+source/qemu:debian/sid

  1. Git
  2. lp:~paelzer/ubuntu/+source/qemu
  3. 4.2-3-for-focal
  4. Merge into debian/sid
Proposed by Christian Ehrhardt 
Status: Merged
Approved by: Christian Ehrhardt 
Approved revision: 42f43638d3d3119c878c76e5253507bad221d713
Merge reported by: Christian Ehrhardt 
Merged at revision: 42f43638d3d3119c878c76e5253507bad221d713
Proposed branch: ~paelzer/ubuntu/+source/qemu:4.2-3-for-focal
Merge into: ubuntu/+source/qemu:debian/sid
Diff against target: 6061 lines (+5202/-110)
29 files modified
debian/binfmt-update-in (+4/-6)
debian/changelog (+3575/-0)
debian/control (+105/-23)
debian/control-in (+75/-12)
debian/kvm.arm32 (+2/-0)
debian/kvm.arm64 (+2/-0)
debian/kvm.powerpc (+13/-0)
debian/kvm.s390x (+2/-0)
debian/kvm.x86 (+1/-1)
debian/patches/lp-1859527-virtio-blk-fix-out-of-bounds-access-to-bitmap-in-not.patch (+43/-0)
debian/patches/series (+11/-0)
debian/patches/ubuntu/define-ubuntu-machine-types.patch (+633/-0)
debian/patches/ubuntu/enable-svm-by-default.patch (+34/-0)
debian/patches/ubuntu/expose-vmx_qemu64cpu.patch (+17/-0)
debian/patches/ubuntu/lp-1857033-i386-Add-MSR-feature-bit-for-MDS-NO.patch (+37/-0)
debian/patches/ubuntu/lp-1857033-i386-Add-macro-for-stibp.patch (+40/-0)
debian/patches/ubuntu/lp-1857033-i386-Add-new-CPU-model-Cooperlake.patch (+99/-0)
debian/patches/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch (+62/-0)
debian/patches/ubuntu/vhost-user-gpu-Drop-trailing-json-comma.patch (+41/-0)
debian/qemu-kvm-init (+89/-0)
debian/qemu-system-common.install (+1/-0)
debian/qemu-system-common.maintscript (+4/-0)
debian/qemu-system-common.qemu-kvm.default (+8/-0)
debian/qemu-system-common.qemu-kvm.service (+16/-0)
debian/qemu-system-data.install (+1/-1)
debian/qemu-system-x86.NEWS (+80/-0)
debian/qemu-system-x86.README.Debian (+47/-0)
debian/rules (+160/-19)
dev/null (+0/-48)
Reviewer Review Type Date Requested Status
Rafael David Tinoco (community) Approve
Canonical Server Pending
Canonical Server packageset reviewers Pending
Review via email: mp+379137@code.launchpad.net
To post a comment you must log in.
Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

PPA: https://launchpad.net/~ci-train-ppa-service/+archive/ubuntu/3925

~paelzer/ubuntu/+source/qemu:4.2-3-for-focal updated
a248c10... by Christian Ehrhardt 

d/rules: report config log from the correct subdir - base build

Signed-off-by: Christian Ehrhardt <email address hidden>

4dfea38... by Christian Ehrhardt 

d/rules: report config log from the correct subdir - xen build

Signed-off-by: Christian Ehrhardt <email address hidden>

2e48414... by Christian Ehrhardt 

d/rules: report config log from the correct subdir - microvm build

Signed-off-by: Christian Ehrhardt <email address hidden>

e7eef2e... by Christian Ehrhardt 

changelog: report config log from the correct subdir

Signed-off-by: Christian Ehrhardt <email address hidden>

4528e3f... by Christian Ehrhardt 

d/rules: --disable-xen for user-static builds

Signed-off-by: Christian Ehrhardt <email address hidden>

42f4363... by Christian Ehrhardt 

changelog: --disable-xen for user-static builds

Signed-off-by: Christian Ehrhardt <email address hidden>

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

In my discussion with Debian-qemu this morning it became clear they might soon add microvm into the main qemu-system-x86 package. If so we'd likely follow, there is no extra
burden to maintain src:qemu due to that.

But until then keep it split as I have suggested initially in
https://salsa.debian.org/qemu-team/qemu/merge_requests/10

Once we follow, that will just be a bunch of breaks/replaces and we are good.
Even if we decide to stay split, the delta to move to a different package is much smaller than the one adding the whole build.

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

I was checking the build for errors and added some d/rules cleanups as you can see in the commits added. Will push a new build to the PPA using those.

Revision history for this message
Rafael David Tinoco (rafaeldtinoco) wrote :

- [X] changelog entry correct, targeted to correct codename
  - You got a leftover "among many other things this fixes LP Bugs:"
    It came from your previous merge I have reviewed.
- [-] no major upstream changes to consider
- [-] debian changes look safe
- [√] update-maintainer has been run
- [√] changes forwarded upstream/debian (if appropriate)
  - there are lots of mini changes I'll let you decide what to carry
    as you are in both sides maintaining those packages
- [-] nothing else to drop
- [√] patches match what was proposed upstream
- [√] patches correctly included in debian/patches/series?
- [√] patches have correct DEP3 metadata
- [√] verified PPA package installs/uninstalls
- [-] autopkgtest against the PPA package passes
  - I'll trust your QA tests for this item

I'm +1 as the major review was done before. This new delta seems all good for me.

Revision history for this message
Rafael David Tinoco (rafaeldtinoco) :
review: Approve
Revision history for this message
Rafael David Tinoco (rafaeldtinoco) wrote :

Oh, dont forget the changelog leftover! =o)

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

Changelog fixed - thanks

Yes - the d/rules mini changes wait for Debian to adopt xen/microvm first, then I'll submit.

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

FYI
Something changed in F-Host/E-Guest LXD handling:
+ lxc exec testkvm-eoan-from -- uvt-kvm create --template /root/guesttemplate.xml --password=ubuntu --ssh-public-key-file /home/ubuntu/.ssh/authorized_keys kvmguest-eoan-normal release=eoan arch=amd64 label=daily
Warning: using --password from the command line is not secure and should be used for debugging only.
uvt-kvm: error: libvirt: Unable to write to '/sys/fs/cgroup/cpuset/machine/qemu-1-kvmguest-eoan-normal.libvirt-qemu/emulator/cpuset.cpus': Permission denied

Not a new regression thou - but worth to take a look later.

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

Tests are good, I filed trello cards for the to issues that occur but do not seem to be a regression by this upload. Those need to be analyzed to fully stabilize Focal, but do not need to block this upload nor are they bound to feature freeze.

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

This Migrated

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/debian/binfmt-update-in b/debian/binfmt-update-in
2index be0ace4..ab3eeac 100644
3--- a/debian/binfmt-update-in
4+++ b/debian/binfmt-update-in
5@@ -1,9 +1,8 @@
6-# check if we're running inside an (lxc) container
7-# (we may copy or move this to the postinst script too, to skip installing it)
8-grep -zqs ^container= /proc/1/environ && exit 0
9-
10 # == binfmt registration/deregistration ==
11-if command -v update-binfmts > /dev/null ; then
12+# Early exit if binfmt-support not installed or if run in a container.
13+if ! command -v update-binfmts > /dev/null || systemd-detect-virt --quiet --container; then
14+ exit 0
15+fi
16
17 fmts="aarch64 alpha arm armeb cris hppa i386 m68k microblaze mips mipsel mipsn32 mipsn32el mips64 mips64el ppc ppc64 ppc64abi32 ppc64le riscv32 riscv64 s390x sh4 sh4eb sparc sparc32plus sparc64 x86_64 xtensa xtensaeb"
18
19@@ -116,5 +115,4 @@ case "$DPKG_MAINTSCRIPT_NAME:$1" in
20
21 esac
22
23-fi
24 # == binfmt registration/deregistration ==
25diff --git a/debian/changelog b/debian/changelog
26index 6543391..877a6f2 100644
27--- a/debian/changelog
28+++ b/debian/changelog
29@@ -1,3 +1,85 @@
30+qemu (1:4.2-3ubuntu1) focal; urgency=medium
31+
32+ * Merge with Debian testing, Among many other things this fixes LP Bugs:
33+ Remaining changes:
34+ - qemu-kvm to systemd unit
35+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
36+ hugepages and architecture specifics
37+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
38+ qemu-kvm-init
39+ - d/qemu-system-common.install: install helper script
40+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
41+ - d/qemu-system-common.qemu-kvm.default: defaults for
42+ /etc/default/qemu-kvm
43+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
44+ - Distribution specific machine type (LP: 1304107 1621042)
45+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
46+ types
47+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
48+ for host-phys-bits=true (LP: 1776189)
49+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
50+ - provide pseries-bionic-2.11-sxxm type as convenience with all
51+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
52+ - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
53+ - Enable nesting by default
54+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
55+ in qemu64 cpu type.
56+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
57+ in qemu64 on amd
58+ [ No more strictly needed, but required for backward compatibility ]
59+ - improved dependencies
60+ - Make qemu-system-common depend on qemu-block-extra
61+ - Make qemu-utils depend on qemu-block-extra
62+ - let qemu-utils recommend sharutils
63+ - improved s390x support
64+ - d/rules: build s390-ccw.img with upstream Makefile
65+ - d/rules: build s390-netboot.img with upstream Makefile
66+ - arch aware kvm wrappers
67+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
68+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
69+ reference 256k path
70+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
71+ handle incoming migrations from former releases.
72+ - d/control-in: Disable capstone disassembler library support (universe)
73+ - d/binfmt-update-in: fix binfmt being called in some containers
74+ (LP 1840956)
75+ - d/p/ubuntu/lp-1857033-*: add support for Cooper Lake cpu model
76+ (LP 1857033)
77+ - d/qemu-system-x86.README.Debian: add info about updated nesting changes
78+ - d/control*, d/rules: disable xen by default, but provide universe
79+ package qemu-system-x86-xen as alternative
80+ - d/p/lp-1859527-*: avoid breakage on high virtqueue counts (LP 1859527)
81+ - Dropped changes [ in Debian ]
82+ - d/control: update VCS links
83+ - d/control-in: bump debhelper build-dep for compat 12
84+ - d/control: disable bluetooth being deprecated
85+ - d/not-installed: ignore new interop docs and extra icons for now
86+ - d/not-installed: do not install elf2dmp until namespaced
87+ - d/qemu-utils.install: install new tools qemu-edid and qemu-keymap
88+ [ not needed ]
89+ - d/control-in: promote qemu-efi/ovmf in Ubuntu (LP 1570617)
90+ - s390x support
91+ - Create qemu-system-s390x package
92+ - Enable numa support for s390x
93+ - d/control*: enable libpmem support for nvdimms (LP 1790856)
94+ * Added changes
95+ - d/control: regenerate debian/control out of control-in
96+ - qemu-system-x86-microvm package
97+ In addition to the generic multi-purpose qemu also provide a minimal
98+ feature binary that is loading faster for use cases with microvm machine
99+ type and qboot bios
100+ - d/control-in: add a new qemu-system-x86-microvm package
101+ - d/rules: add an extra config/build step to get the minimal qemu
102+ - d/control-in: disable pmem on ppc64 as it is currently considered
103+ experimental on that architecture (pmdk v1.8-1)
104+ - d/rules: makefile definitions can't be recursive - sys_systems for s390x
105+ - d/p/ubuntu/vhost-user-gpu-Drop-trailing-json-comma.patch: fix parsing of
106+ vhost-user-gpu
107+ - d/rules: report config log from the correct subdir
108+ - d/rules: --disable-xen for user-static builds
109+
110+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 12 Feb 2020 15:21:56 +0100
111+
112 qemu (1:4.2-3) unstable; urgency=medium
113
114 * mention closing of #909743 in previous changelog (Closes: #909743)
115@@ -40,6 +122,169 @@ qemu (1:4.2-2) unstable; urgency=medium
116
117 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 31 Jan 2020 23:51:09 +0300
118
119+qemu (1:4.2-1ubuntu2) focal; urgency=medium
120+
121+ * d/control: avoid upgrade issues triggered by moving ivshmem tools after
122+ Debian. Fixed by by bumping the related Breaks/Replaces to the
123+ Version Ubuntu introduced the change (LP: #1862287)
124+
125+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 07 Feb 2020 07:31:21 +0100
126+
127+qemu (1:4.2-1ubuntu1) focal; urgency=medium
128+
129+ * Merge with Debian testing, Among many other things this fixes LP Bugs:
130+ LP: #1847806 - add mff* instructions to not break on ppc64 with newer glibc
131+ LP: #1812822 - avoid crashes on detaching vhost_net interfaces
132+ LP: #1852744 - Crypto Passthrough Interrupt Support
133+ LP: #1853316 - CCW IPL Support
134+ Remaining changes:
135+ - qemu-kvm to systemd unit
136+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
137+ hugepages and architecture specifics
138+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
139+ qemu-kvm-init
140+ - d/qemu-system-common.install: install helper script
141+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
142+ - d/qemu-system-common.qemu-kvm.default: defaults for
143+ /etc/default/qemu-kvm
144+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
145+ - Distribution specific machine type (LP: 1304107 1621042)
146+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
147+ types
148+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
149+ for host-phys-bits=true (LP: 1776189)
150+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
151+ - provide pseries-bionic-2.11-sxxm type as convenience with all
152+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
153+ - Enable nesting by default
154+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
155+ in qemu64 cpu type.
156+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
157+ in qemu64 on amd
158+ [ No more strictly needed, but required for backward compatibility ]
159+ - improved dependencies
160+ - Make qemu-system-common depend on qemu-block-extra
161+ - Make qemu-utils depend on qemu-block-extra
162+ - let qemu-utils recommend sharutils
163+ - s390x support
164+ - Create qemu-system-s390x package
165+ - Enable numa support for s390x
166+ - d/rules: build s390-ccw.img with upstream Makefile
167+ - d/rules: build s390-netboot.img with upstream Makefile
168+ - arch aware kvm wrappers
169+ - d/control: update VCS links
170+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
171+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
172+ reference 256k path
173+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
174+ handle incoming migrations from former releases.
175+ - d/control-in: Disable capstone disassembler library support (universe)
176+ - d/control: disable bluetooth being deprecated
177+ - d/not-installed: ignore new interop docs and extra icons for now
178+ - d/not-installed: do not install elf2dmp until namespaced
179+ - d/qemu-utils.install: install new tools qemu-edid and qemu-keymap
180+ - d/control-in: promote qemu-efi/ovmf in Ubuntu (LP 1570617)
181+ - d/binfmt-update-in: fix binfmt being called in some containers
182+ (LP 1840956)
183+ - Dropped changes (in Debian)
184+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
185+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
186+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
187+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
188+ - enable RDMA config option
189+ - add libibumad-dev build-dep
190+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: bring back
191+ some SLOF bits stripped in DFSG to be able to build s390x-netboot roms
192+ As that hack to build s390-ccw.img rom can't build s390x-netboot.img
193+ replace it with a build-indep using the upstream makefiles.
194+ This is less prone to miss future changes/fixes that are done to the
195+ makefiles
196+ - remove /dev/kvm permission handling (moved to systemd 239-6) (#892945)
197+ - d/p/debianize-qemu-guest-service.patch: fix path of qemu-ga
198+ - d/rules: fix qemu-kvm service for debhelper compat >=12
199+ - Refreshed patches for v4.0 context changes
200+ - d/control*: remove sdlabi which was removed upstream
201+ - d/control*: enable docs (now explicit) and provide new build-dep
202+ python3-sphinx
203+ - d/qemu-system-data.install: use new paths for formerly used icons
204+ - Merge with Upstream release of qemu 4.0
205+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch
206+ - Dropped changes (Upstream)
207+ - d/p/ubuntu/lp-1830243-*: s390x Secure Linux Boot Toleration (LP 1830243)
208+ - d/p/ubuntu/lp-1830238-*: s390x hardware cpu model (LP 1830238)
209+ - d/p/ubuntu/linux-user-fix-__NR_semtimedop-undeclared-error.patch:
210+ fix i386 build error
211+ - d/p/ubuntu/lp-1836066-s390-cpumodel-fix-description-for-the-new-vector-fac:
212+ fix naming of the new vector facitlity (LP 1836066)
213+ - d/p/ubuntu/lp-1836159-fix-with-latest-kernel.patch: fix build issues
214+ for missing SIOCGSTAMP definition; final fix is still in discussion
215+ upstream (LP: 1836159)
216+ - d/p/ubuntu/lp-1836154-*: further fixups for HW CPU model for newer
217+ s390x machines (LP 1836154)
218+ - d/p/ubuntu/lp-1841066-*: fix detection of arch_capability flags
219+ (LP 1841066)
220+ - d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
221+ update the z15 model name (LP 1842774)
222+ - d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
223+ fix a potential hang when qemu or qemu-img where accessing http backed
224+ disks via libcurl (LP 1848556)
225+ - d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-*:
226+ fix migration issue from qemu <4.0 when using virtio-balloon (LP 1848497)
227+ - d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
228+ toleration for future machines (LP 1830704)
229+ - SECURITY UPDATE: Add support for exposing md-clear functionality
230+ to guests
231+ - d/p/ubuntu/enable-md-clear.patch
232+ - d/p/ubuntu/enable-md-no.patch
233+ - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
234+ - SECURITY UPDATE: heap overflow when loading device tree blob
235+ - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
236+ copy the device tree blob into is.
237+ - CVE-2018-20815
238+ - SECURITY UPDATE: device driver denial of service via NULL pointer
239+ dereference
240+ - d/p/ubuntu/CVE-2019-5008.patch: Define skeleton 'power_mem_read'
241+ routine
242+ - CVE-2019-5008
243+ - SECURITY UPDATE: information leak in SLiRP
244+ - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
245+ emulating ident.
246+ - CVE-2019-9824
247+ - d/p/ubuntu/lp-1812384-s390x-Return-specification-exception-for-
248+ unimplement.patch: properly return architecture defined exception
249+ on bad subcodes of diag 308 (LP 1812384)
250+ * Dropped changes (no more needed)
251+ - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
252+ mv_conffile since the new path is a directory in the old package
253+ version which can not be handled by mv_conffile.
254+ [ only needed between disco and eoan ]
255+ - disable pvrdma
256+ [ CVEs all fixed now ]
257+ - d/p/ubuntu/Revert-target-i386-kvm-add-VMX-migration-blocker.patch:
258+ avoid misdetection of simplified nesting blocking all migrations
259+ [ qemu now detects and handles nesting - needs kernel >=4.20 ]
260+ - Enable nesting by default
261+ - d/qemu-system-x86.modprobe: set nested=1 module option on intel.
262+ (is default on amd)
263+ - d/qemu-system-x86.postinst: re-load kvm_intel.ko if it was loaded
264+ without nested=1
265+ [ nesting is default in kernel modules and default selected cpu types ]
266+ * Added changes
267+ - d/control: regenerate debian/control out of control-in
268+ - updated ubuntu machine types to match qemu 4.2 in Ubuntu 20.04 Focal
269+ - added ubuntu focal types for qemu 4.2
270+ - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
271+ - d/p/ubuntu/lp-1857033-*: add support for Cooper Lake cpu model
272+ (LP: #1857033)
273+ - d/qemu-system-x86.README.Debian: add info about updated nesting changes
274+ - d/control*, d/rules: disable xen by default, but provide universe
275+ package qemu-system-x86-xen as alternative
276+ - fix typos in changelog and d/qemu-system-x86.NEWS
277+ - d/p/lp-1859527-*: avoid breakage on high virtqueue counts (LP: #1859527)
278+ - d/control*: enable libpmem support for nvdimms (LP: #1790856)
279+
280+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 08 Jan 2020 15:27:42 +0100
281+
282 qemu (1:4.2-1) unstable; urgency=medium
283
284 * new upstream release (4.2.0)
285@@ -116,6 +361,205 @@ qemu (1:4.1-1) unstable; urgency=medium
286
287 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 27 Aug 2019 12:43:43 +0300
288
289+qemu (1:4.0+dfsg-0ubuntu10) focal; urgency=medium
290+
291+ * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
292+ fix a potential hang when qemu or qemu-img where accessing http backed
293+ disks via libcurl (LP: #1848556)
294+ * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
295+ fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)
296+
297+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 21 Oct 2019 14:51:45 +0200
298+
299+qemu (1:4.0+dfsg-0ubuntu9) eoan; urgency=medium
300+
301+ * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
302+ update the z15 model name (LP: #1842774)
303+
304+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 24 Sep 2019 11:42:58 +0200
305+
306+qemu (1:4.0+dfsg-0ubuntu8) eoan; urgency=medium
307+
308+ * d/binfmt-update-in: fix binfmt being called in some containers
309+ (LP: #1840956)
310+
311+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 09 Sep 2019 11:03:13 +0200
312+
313+qemu (1:4.0+dfsg-0ubuntu7) eoan; urgency=medium
314+
315+ * No-change upload with strops.h and sys/strops.h removed in glibc.
316+
317+ -- Matthias Klose <doko@ubuntu.com> Thu, 05 Sep 2019 11:07:25 +0000
318+
319+qemu (1:4.0+dfsg-0ubuntu6) eoan; urgency=medium
320+
321+ * d/p/ubuntu/lp-1841066-*: fix detection of arch_capability flags
322+ (LP: #1841066)
323+
324+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 26 Aug 2019 12:08:04 +0200
325+
326+qemu (1:4.0+dfsg-0ubuntu5) eoan; urgency=medium
327+
328+ * d/p/ubuntu/lp-1836154-*: further fixups for HW CPU model for newer
329+ s390x machines (LP: #1836154)
330+
331+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 17 Jul 2019 13:20:42 +0200
332+
333+qemu (1:4.0+dfsg-0ubuntu4) eoan; urgency=medium
334+
335+ * d/control-in: promote qemu-efi/ovmf in Ubuntu (LP: #1570617)
336+ - pick Debian change for (#889885)
337+ move ovmf to recommends on debian and update aarch ovmf refs
338+ - stop Ubuntu to drop ovmf/qemu-efi to a suggest
339+
340+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 12 Jul 2019 12:48:24 +0200
341+
342+qemu (1:4.0+dfsg-0ubuntu3) eoan; urgency=medium
343+
344+ * d/p/ubuntu/lp-1836159-fix-with-latest-kernel.patch: fix build issues
345+ for missing SIOCGSTAMP definition; final fix is still in discussion
346+ upstream (LP: 1836159)
347+
348+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 11 Jul 2019 10:10:00 +0200
349+
350+qemu (1:4.0+dfsg-0ubuntu2) eoan; urgency=medium
351+
352+ * d/p/ubuntu/lp-1836066-s390-cpumodel-fix-description-for-the-new-vector-fac:
353+ fix naming of the new vector facitlity (LP: #1836066)
354+ * d/control-in: update VCS links in control template as well
355+
356+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 11 Jul 2019 08:18:44 +0200
357+
358+qemu (1:4.0+dfsg-0ubuntu1) eoan; urgency=medium
359+
360+ * Merge with Upstream release of qemu 4.0.
361+ Among many other things this fixes LP Bugs:
362+ LP: #1782206 - SnowRidge Accelerator Interfacing Architecture (AIA)
363+ LP: #1828038 - Update s390x CPU Model for more HW support
364+ LP: #1832622 - count cache flush Spectre v2 mitigation for ppc64el
365+ Remaining Changes:
366+ - qemu-kvm to systemd unit
367+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
368+ hugepages and architecture specifics
369+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
370+ qemu-kvm-init
371+ - d/qemu-system-common.install: install helper script
372+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
373+ - d/qemu-system-common.qemu-kvm.default: defaults for
374+ /etc/default/qemu-kvm
375+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
376+ - Enable nesting by default
377+ - d/qemu-system-x86.modprobe: set nested=1 module option on intel.
378+ (is default on amd)
379+ - d/qemu-system-x86.postinst: re-load kvm_intel.ko if it was loaded
380+ without nested=1
381+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
382+ in qemu64 cpu type.
383+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
384+ in qemu64 on amd
385+ - d/qemu-system-x86.README.Debian: document intention of nested being
386+ default is comfort, not full support
387+ - Distribution specific machine type (LP: 1304107 1621042)
388+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
389+ types
390+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
391+ for host-phys-bits=true (LP: 1776189)
392+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
393+ - provide pseries-bionic-2.11-sxxm type as convenience with all
394+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
395+ - improved dependencies
396+ - Make qemu-system-common depend on qemu-block-extra
397+ - Make qemu-utils depend on qemu-block-extra
398+ - let qemu-utils recommend sharutils
399+ - s390x support
400+ - Create qemu-system-s390x package
401+ - Enable numa support for s390x
402+ - arch aware kvm wrappers
403+ - d/control: update VCS links
404+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
405+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
406+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
407+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
408+ - enable RDMA config option
409+ - add libibumad-dev build-dep
410+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
411+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
412+ reference 256k path
413+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
414+ handle incoming migrations from former releases.
415+ - d/control-in: Disable capstone disassembler library support (universe)
416+ - Move s390x roms to a new qemu-system-data-s390x
417+ - d/qemu-system-data.install: install s390x roms as architecture:all in
418+ qemu-system-data
419+ - d/rules: build s390-ccw.img with upstream Makefile
420+ - d/rules: build s390-netboot.img with upstream Makefile
421+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: bring back
422+ some SLOF bits stripped in DFSG to be able to build s390x-netboot roms
423+ As that hack to build s390-ccw.img rom can't build s390x-netboot.img
424+ replace it with a build-indep using the upstream makefiles.
425+ This is less prone to miss future changes/fixes that are done to the
426+ makefiles
427+ - d/control-in: add breaks/replaces for moving s390x roms from
428+ qemu-system-s390x to qemu-system-data
429+ - remove /dev/kvm permission handling (moved to systemd 239-6) (#892945)
430+ [From not yet uploaded Debian branch]
431+ - d/p/debianize-qemu-guest-service.patch: fix path of qemu-ga
432+ - d/rules: fix qemu-kvm service for debhelper compat >=12
433+ - disable pvrdma - besides several security holes there are many other
434+ bugs there as well
435+ * Dropped patches that are upstream in v4.0
436+ - d/p/do-not-link-everything-with-xen.patch
437+ - d/p/usb-mtp-use-O_NOFOLLOW-and-O_CLOEXEC-CVE-2018-16872.patch
438+ - d/p/hw_usb-fix-mistaken-de-initialization-of-CCID-state.patch
439+ - d/p/scsi-generic-avoid-possible-oob-access-to-r-buf-CVE-2019-6501.patch
440+ - d/p/slirp-check-data-length-while-emulating-ident-function-CVE-2019-6778
441+ - d/p/i2c-ddc-fix-oob-read-CVE-2019-3812.patch
442+ - d/p/ubuntu/lp-1759509-qmp-query-current-machine-with-wakeup-suspend-suppor
443+ (LP: 1759509)
444+ - d/p/ubuntu/lp-1759509-qga-update-guest-suspend-ram-and-guest-suspend-hybri
445+ - d/p/ubuntu/lp-1759509-qmp-hmp-Make-system_wakeup-check-wake-up-support-and
446+ - d/p/ubuntu/lp-1812384-s390x-Return-specification-exception-for-unimplement
447+ - d/p/ubuntu/CVE-2018-20815.patch
448+ - d/p/ubuntu/CVE-2019-5008.patch
449+ - d/p/ubuntu/CVE-2019-9824.patch
450+ - d/p/ubuntu/Revert-target-i386-kvm-add-VMX-migration-blocker.patch:
451+ avoid misdetection of simplified nesting blocking all migrations
452+ * Dropped further patches
453+ d/p/bt-use-size_t-type-for-length-parameters-instead-of-int-CVE-2018-19665
454+ [upstream deprecated the whole subsystem instead of applying the fix]
455+ * Added Changes
456+ - updated ubuntu machine types for v4.0
457+ - added eoan types
458+ - fixed s390x issue of upstream types having a "v" prefix
459+ - add back dropped machine types to avoid more issues like LP: 1802944
460+ - fix kvm split irqchip default in ubuntu q35 machine type
461+ - drop no more needed spapr_machine_2_11_sxxm_instance_options and
462+ adapt updated CamelCase
463+ - -hpb types now need to use GlobalProperties
464+ - pc_compat_2_0 got a _fn suffix and slight changes
465+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: update to
466+ SLOF of qemu 4.0
467+ - Refreshed patches still needed for v4.0 context changes
468+ - d/p/use-fixed-data-path.patch
469+ - d/p/ubuntu/enable-svm-by-default.patch
470+ - d/p/ubuntu/enable-md-clear.patch
471+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch
472+ - d/p/ubuntu/lp-1830243-*: s390x Secure Linux Boot Toleration
473+ (LP: #1830243)
474+ - d/control: disable bluetooth being deprecated
475+ - d/control*: remove sdlabi which was removed upstream
476+ - d/p/ubuntu/lp-1830238-*: s390x hardware cpu model (LP: #1830238)
477+ - d/control*: enable docs (now explicit) and provide new build-dep
478+ python3-sphinx
479+ - d/not-installed: ignore new interop docs and extra icons for now
480+ - d/not-installed: do not install elf2dmp until namespaced
481+ - d/qemu-utils.install: install new tools qemu-edid and qemu-keymap
482+ - d/qemu-system-data.install: use new paths for formerly used icons
483+ - d/p/ubuntu/linux-user-fix-__NR_semtimedop-undeclared-error.patch:
484+ fix i386 build error
485+
486+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 24 Jun 2019 16:33:19 +0200
487+
488 qemu (1:3.1+dfsg-8) unstable; urgency=high
489
490 * sun4u-add-power_mem_read-routine-CVE-2019-5008.patch
491@@ -218,6 +662,232 @@ qemu (1:3.1+dfsg-3) unstable; urgency=medium
492
493 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 06 Feb 2019 12:23:01 +0300
494
495+qemu (1:3.1+dfsg-2ubuntu5) eoan; urgency=medium
496+
497+ * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
498+ broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
499+ fix migrations from old machines (LP: #1829868).
500+ * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
501+ toleration for future machines (LP: #1830704
502+
503+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 28 May 2019 11:30:42 +0200
504+
505+qemu (1:3.1+dfsg-2ubuntu4) eoan; urgency=medium
506+
507+ * SECURITY UPDATE: Add support for exposing md-clear functionality
508+ to guests
509+ - d/p/ubuntu/enable-md-clear.patch
510+ - d/p/ubuntu/enable-md-no.patch
511+ - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
512+ * SECURITY UPDATE: heap overflow when loading device tree blob
513+ - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
514+ copy the device tree blob into is.
515+ - CVE-2018-20815
516+ * SECURITY UPDATE: device driver denial of service via NULL pointer
517+ dereference
518+ - d/p/ubuntu/CVE-2019-5008.patch: Define skeleton 'power_mem_read'
519+ routine
520+ - CVE-2019-5008
521+ * SECURITY UPDATE: information leak in SLiRP
522+ - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
523+ emulating ident.
524+ - CVE-2019-9824
525+
526+ -- Steve Beattie <sbeattie@ubuntu.com> Wed, 08 May 2019 09:27:53 -0700
527+
528+qemu (1:3.1+dfsg-2ubuntu3) disco; urgency=medium
529+
530+ * qemu-guest-agent: fix path of fsfreeze-hook (LP: #1820291)
531+ - d/qemu-guest-agent.install: use correct path for fsfreeze-hook
532+ - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
533+ mv_conffile since the new path is a directory in the old package
534+ version which can not be handled by mv_conffile.
535+ * i2c-ddc-fix-oob-read-CVE-2019-3812.patch fixes
536+ OOB read in hw/i2c/i2c-ddc.c which allows for memory disclosure.
537+ Closes: #922635 (Thanks to Gerd Hoffmann and Michael Tokarev)
538+ CVE-2019-3812
539+
540+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 18 Mar 2019 09:20:07 +0100
541+
542+qemu (1:3.1+dfsg-2ubuntu2) disco; urgency=medium
543+
544+ * disable pvrdma - besides several security holes there are many other
545+ bugs there as well, and the amount of patches applied upstream after
546+ 3.1 release is large (Closes, or actuallymakes unimportant again)
547+ - CVE-2018-20123
548+ - CVE-2018-20124
549+ - CVE-2018-20125
550+ - CVE-2018-20126
551+ - CVE-2018-20191
552+ - CVE-2018-20216
553+ * scsi-generic-avoid-possible-oob-access-to-r-buf-CVE-2019-6501.patch
554+ - CVE-2019-6501
555+ * slirp-check-data-length-while-emulating-ident-function-CVE-2019-6778.patch
556+ - CVE-2019-6778
557+
558+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 19 Feb 2019 06:43:04 +0100
559+
560+qemu (1:3.1+dfsg-2ubuntu1) disco; urgency=medium
561+
562+ * Merge with Debian testing, Among many other things this fixes LP Bugs:
563+ LP: #1806104 - fix misleading page size error on ppc64el
564+ LP: #1782205 - SnowRidge enabled new ISAs
565+ LP: #1786956 - upgrade to qemu >= 3.0
566+ LP: #1809083 - Backward migration to Xenial on ppc64el
567+ LP: #1803315 - s390x Huge page enablement
568+ LP: #1657409 - enable virglrenderer
569+ Remaining Changes:
570+ - qemu-kvm to systemd unit
571+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
572+ hugepages and architecture specifics
573+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
574+ - d/qemu-system-common.install: install systemd unit and helper script
575+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
576+ - d/qemu-system-common.qemu-kvm.default: defaults for
577+ /etc/default/qemu-kvm
578+ - d/rules: install /etc/default/qemu-kvm
579+ - Enable nesting by default
580+ - d/qemu-system-x86.modprobe: set nested=1 module option on intel.
581+ (is default on amd)
582+ - d/qemu-system-x86.postinst: re-load kvm_intel.ko if it was loaded
583+ without nested=1
584+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
585+ in qemu64 cpu type.
586+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
587+ in qemu64 on amd
588+ - d/qemu-system-x86.README.Debian: document intention of nested being
589+ default is comfort, not full support
590+ - Distribution specific machine type (LP: 1304107 1621042 1776189 1761372)
591+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
592+ types
593+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
594+ for host-phys-bits=true (LP: 1776189)
595+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
596+ - d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
597+ convenience with all meltdown/spectre workarounds enabled by default.
598+ (LP: 1761372).
599+ - improved dependencies
600+ - Make qemu-system-common depend on qemu-block-extra
601+ - Make qemu-utils depend on qemu-block-extra
602+ - let qemu-utils recommend sharutils
603+ - s390x support
604+ - Create qemu-system-s390x package
605+ - Enable numa support for s390x
606+ - arch aware kvm wrappers
607+ - d/control: update VCS links (updated to match latest Ubuntu)
608+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
609+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
610+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
611+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
612+ - enable RDMA config option
613+ - add libibumad-dev build-dep
614+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
615+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
616+ reference 256k path
617+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
618+ handle incoming migrations from former releases.
619+ - d/control-in: Disable capstone disassembler library support (universe)
620+ * Added Changes:
621+ - d/p/ubuntu/define-ubuntu-machine-types.patch: update machine type changes
622+ for qemu 3.1 in the Ubuntu Disco release
623+ - d/p/ubuntu/lp-1759509-* fix waking up VMs from dompmsuspend (LP: #1759509)
624+ - Move s390x roms to a new qemu-system-data-s390x
625+ - d/qemu-system-data.install: install s390x roms as architecture:all in
626+ qemu-system-data
627+ - d/rules: build s390-ccw.img with upstream Makefile
628+ - d/rules: build s390x-netboot.img with upstream Makefile
629+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: bring back
630+ some SLOF bits stripped in DFSG to be able to build s390x-netboot roms
631+ As that hack to build s390-ccw.img rom can't build s390x-netboot.img
632+ replace it with a build-indep using the upstream makefiles.
633+ This is less prone to miss future changes/fixes that are done to the
634+ makefiles
635+ - d/control-in: add breaks/replaces for moving s390x roms from
636+ qemu-system-s390x to qemu-system-data
637+ - remove /dev/kvm permission handling (moved to systemd 239-6) (#892945)
638+ [From not yet uploaded Debian branch]
639+ - d/p/debianize-qemu-guest-service.patch: fix path of qemu-ga
640+ (Closes: #918378)
641+ - d/rules: fix qemu-kvm service for debhelper compat >=12
642+ - d/p/ubuntu/Revert-target-i386-kvm-add-VMX-migration-blocker.patch:
643+ avoid misdetection of simplified nesting blocking all migrations
644+ - d/p/ubuntu/lp-1812384-s390x-Return-specification-exception-for-
645+ unimplement.patch: properly return archicture defined exception
646+ on bad subcodes of diag 308 (LP: #1812384)
647+ * Dropped Changes:
648+ - Include s390-ccw.img firmware (old style native build)
649+ - d/rules enable install s390x-netboot.img (old style native build)
650+ - libvirt/qemu user/group support
651+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
652+ trigger.
653+ [ Droppable since logind properly sets ACLs now ]
654+ - qemu-system-common.preinst: add kvm group if needed
655+ [ Droppable because systemd/udev take care of it since 239-6]
656+ - d/p/guest-agent-freeze-hook-skip-dpkg-artifacts.patch of qemu-guest-agent
657+ freeze-hook fixes (LP: 1484990)
658+ [upstream]
659+ - d/p/ubuntu/CVE-2018-3639/* update for qemu 2.12 using the final patches
660+ merged upstream
661+ [upstream]
662+ - d/p/ubuntu/CVE-2018-11806-slirp-correct-size.patch: slirp: correct size
663+ computation while concatenating mbuf.
664+ CVE-2018-11806
665+ [upstream]
666+ - d/p/ubuntu/lp-1781526-powerpc64-align-memory-THP.patch: align to 2MB
667+ for powerpc64 to speed up translation (LP: 1781526)
668+ [upstream]
669+ - d/p/ubuntu/lp-1780773-s390x-cpumodels-add-z14-Model-ZR1.patch: Add
670+ cpu model for z14 ZR1 (LP: 1780773).
671+ [upstream]
672+ - Mark qemu-system-data foreign to be able to install it e.g. on i386
673+ (Closes: 903562)
674+ [in Debian]
675+ - d/control-in: qemu-keymaps is provided by qemu-system-data now (from yet
676+ unreleased Debian version)
677+ [in Debian]
678+ - d/p/lp-1755912-qxl-fix-local-renderer-crash.patch: Fix an issue triggered
679+ by migrations with UI frontends or frequent guest resolution changes
680+ (LP #1755912)
681+ [upstream]
682+ - d//ubuntu/target-ppc-extend-eieio-for-POWER9.patch: Backport to
683+ extend eieio for POWER9 emulation (LP: 1787408).
684+ [upstream]
685+ - d/p/ubuntu/lp-1789551-seccomp-set-the-seccomp-filter-to-all-threads.patch:
686+ ensure that the seccomp blacklist is applied to all threads (LP: 1789551)
687+ [upstream]
688+ - improve s390x spectre mitigation with etoken facility (LP: 1790457)
689+ [upstream]
690+ - Update pxe netboot images for KVM s390x to qemu 3.0 level (LP: 1790901)
691+ [upstream]
692+ - d/control-in: our addition of a qemu-system-s390x package needs to follow
693+ the split of qemu-system-data by adding a dependency to it (LP: 1798084)
694+ [in Debian]
695+ - debian/patches/ubuntu/lp1787405-*: Support guest dedicated Crypto
696+ Adapters on s390x (LP: 1787405)
697+ [upstream]
698+ - enable opengl for vfio-MDEV support (LP: 1804766)
699+ [in Debian]
700+ - SECURITY UPDATE: integer overflow in NE2000 NIC emulation
701+ [upstream]
702+ - SECURITY UPDATE: integer overflow via crafted QMP command
703+ [upstream]
704+ - SECURITY UPDATE: OOB heap buffer r/w access in NVM Express Controller
705+ [upstream]
706+ - SECURITY UPDATE: buffer overflow in rtl8139
707+ [upstream]
708+ - SECURITY UPDATE: buffer overflow in pcnet
709+ [upstream]
710+ - SECURITY UPDATE: DoS via large packet sizes
711+ [upstream]
712+ - SECURITY UPDATE: DoS in lsi53c895a
713+ [upstream]
714+ - SECURITY UPDATE: Out-of-bounds r/w stack access in ppc64
715+ [upstream]
716+ - SECURITY UPDATE: race condition in 9p
717+ [upstream]
718+
719+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 08 Jan 2019 09:41:08 +0100
720+
721 qemu (1:3.1+dfsg-2) unstable; urgency=medium
722
723 * d/rules: split arch and indep builds
724@@ -297,6 +967,249 @@ qemu (1:3.1+dfsg-1) unstable; urgency=medium
725
726 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 02 Dec 2018 19:10:27 +0300
727
728+qemu (1:2.12+dfsg-3ubuntu9) disco; urgency=medium
729+
730+ [ Marc Deslauriers ]
731+ * SECURITY UPDATE: integer overflow in NE2000 NIC emulation
732+ - debian/patches/CVE-2018-10839.patch: use proper type in
733+ hw/net/ne2000.c.
734+ - CVE-2018-10839
735+ * SECURITY UPDATE: integer overflow via crafted QMP command
736+ - debian/patches/CVE-2018-12617.patch: check bytes count read by
737+ guest-file-read in qga/commands-posix.c.
738+ - CVE-2018-12617
739+ * SECURITY UPDATE: OOB heap buffer r/w access in NVM Express Controller
740+ - debian/patches/CVE-2018-16847.patch: check size in hw/block/nvme.c.
741+ - CVE-2018-16847
742+ * SECURITY UPDATE: buffer overflow in rtl8139
743+ - debian/patches/CVE-2018-17958.patch: use proper type in
744+ hw/net/rtl8139.c.
745+ - CVE-2018-17958
746+ * SECURITY UPDATE: buffer overflow in pcnet
747+ - debian/patches/CVE-2018-17962.patch: use proper type in
748+ hw/net/pcnet.c.
749+ - CVE-2018-17962
750+ * SECURITY UPDATE: DoS via large packet sizes
751+ - debian/patches/CVE-2018-17963.patch: check size in net/net.c.
752+ - CVE-2018-17963
753+ * SECURITY UPDATE: DoS in lsi53c895a
754+ - debian/patches/CVE-2018-18849.patch: check message length value is
755+ valid in hw/scsi/lsi53c895a.c.
756+ - CVE-2018-18849
757+ * SECURITY UPDATE: Out-of-bounds r/w stack access in ppc64
758+ - debian/patches/CVE-2018-18954.patch: check size before data buffer
759+ access in hw/ppc/pnv_lpc.c.
760+ - CVE-2018-18954
761+ * SECURITY UPDATE: race condition in 9p
762+ - debian/patches/CVE-2018-19364-1.patch: use write lock in
763+ hw/9pfs/cofile.c.
764+ - debian/patches/CVE-2018-19364-2.patch: use write lock in
765+ hw/9pfs/9p.c.
766+ - CVE-2018-19364
767+
768+ [ Christian Ehrhardt]
769+ * debian/patches/ubuntu/lp1787405-*: Support guest dedicated Crypto
770+ Adapters on s390x (LP: #1787405)
771+ * enable opengl for vfio-MDEV support (LP: #1804766)
772+ - d/control-in: set --enable-opengl
773+ - d/control-in: add gl related build-dependencies
774+
775+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 21 Nov 2018 13:17:01 -0500
776+
777+qemu (1:2.12+dfsg-3ubuntu8) cosmic; urgency=medium
778+
779+ * d/control-in: our addition of a qemu-system-s390x package needs to follow
780+ the split of qemu-system-data by adding a dependency to it (LP: #1798084)
781+
782+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 17 Oct 2018 10:50:27 +0200
783+
784+qemu (1:2.12+dfsg-3ubuntu7) cosmic; urgency=medium
785+
786+ * Update pxe netboot images for KVM s390x to qemu 3.0 level (LP: #1790901)
787+ The SLOF source pieces in src:qemu are only used for s390x netboot,
788+ which are independent ROMs (no linking). All other binaries out of this
789+ are part of src:slof and independent.
790+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot-2.12-to-3.0.patch
791+ - d/p/ubuntu/lp-1790901-0*: backport s390x pxelinux netboot capabilities
792+ and related fixes
793+
794+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 25 Sep 2018 13:31:15 +0200
795+
796+qemu (1:2.12+dfsg-3ubuntu6) cosmic; urgency=medium
797+
798+ * improve s390x spectre mitigation with etoken facility (LP: #1790457)
799+ - debian/patches/ubuntu/lp-1790457-s390x-kvm-add-etoken-facility.patch
800+ - debian/patches/ubuntu/lp-1790457-partial-s390x-linux-headers-update.patch
801+
802+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 12 Sep 2018 10:06:48 +0200
803+
804+qemu (1:2.12+dfsg-3ubuntu5) cosmic; urgency=medium
805+
806+ * d/p/ubuntu/lp-1789551-seccomp-set-the-seccomp-filter-to-all-threads.patch:
807+ ensure that the seccomp blacklist is applied to all threads (LP: #1789551)
808+ - CVE-2018-15746
809+
810+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 29 Aug 2018 08:50:36 +0200
811+
812+qemu (1:2.12+dfsg-3ubuntu4) cosmic; urgency=medium
813+
814+ [ Murilo Opsfelder Araujo ]
815+ * d//ubuntu/target-ppc-extend-eieio-for-POWER9.patch: Backport to
816+ extend eieio for POWER9 emulation (LP: #1787408).
817+
818+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 20 Aug 2018 11:52:39 +0200
819+
820+qemu (1:2.12+dfsg-3ubuntu3) cosmic; urgency=medium
821+
822+ * d/p/lp-1755912-qxl-fix-local-renderer-crash.patch: Fix an issue triggered
823+ by migrations with UI frontends or frequent guest resolution changes
824+ (LP: #1755912)
825+
826+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 19 Jul 2018 08:26:52 +0200
827+
828+qemu (1:2.12+dfsg-3ubuntu2) cosmic; urgency=medium
829+
830+ * Disable capstone disassembler library support (universe dependency)
831+
832+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 17 Jul 2018 08:35:32 +0200
833+
834+qemu (1:2.12+dfsg-3ubuntu1) cosmic; urgency=medium
835+
836+ * Merge with Debian testing, Remaining Changes:
837+ - Among other things this fixes (LP: #1780768, LP: #1780769, LP: #1780772)
838+ - qemu-kvm to systemd unit
839+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
840+ hugepages and architecture specifics
841+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
842+ - d/qemu-system-common.install: install systemd unit and helper script
843+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
844+ - d/qemu-system-common.qemu-kvm.default: defaults for
845+ /etc/default/qemu-kvm
846+ - d/rules: install /etc/default/qemu-kvm
847+ - Enable nesting by default
848+ - set nested=1 module option on intel. (is default on amd)
849+ - re-load kvm_intel.ko if it was loaded without nested=1
850+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
851+ in qemu64 cpu type.
852+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
853+ in qemu64 on amd
854+ - d/qemu-system-x86.README.Debian: document intention of nested being
855+ default is comfort, not full support
856+ - libvirt/qemu user/group support
857+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
858+ trigger.
859+ - qemu-system-common.preinst: add kvm group if needed
860+ - Distribution specific machine type
861+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
862+ types to ease future live vm migration.
863+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
864+ - d/p/ubuntu/machine-type-hpb.patch: add -hpb machine type
865+ for host-phys-bits=true (LP: 1776189)
866+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
867+ - d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
868+ convenience with all meltdown/spectre workarounds enabled by default.
869+ (LP: 1761372).
870+ - improved dependencies
871+ - Make qemu-system-common depend on qemu-block-extra
872+ - Make qemu-utils depend on qemu-block-extra
873+ - let qemu-utils recommend sharutils
874+ - s390x support
875+ - Create qemu-system-s390x package
876+ - Include s390-ccw.img firmware
877+ - Enable numa support for s390x
878+ - arch aware kvm wrappers
879+ - update VCS-git (updated to match cosmic)
880+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
881+ - d/p/guest-agent-freeze-hook-skip-dpkg-artifacts.patch
882+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
883+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
884+ - Create and install pxe netboot images for KVM s390x (LP: 1732094)
885+ - d/rules enable install s390x-netboot.img
886+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
887+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
888+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
889+ reference 256k path
890+ - d/control: depend on ipxe-qemu-256k-compat-efi-roms to be able to
891+ handle incoming migrations from former releases.
892+ - SECURITY UPDATE: Speculative Store Bypass
893+ - debian/patches/ubuntu/CVE-2018-3639/0001*.patch: define the 'ssbd'
894+ CPUID feature bit in target/i386/cpu.*.
895+ - debian/patches/ubuntu/CVE-2018-3639/0002*.patch: define the AMD
896+ 'virt-ssbd' CPUID feature bit in target/i386/cpu.c.
897+ - debian/patches/ubuntu/CVE-2018-3639/0003*.patch: define the Virt SSBD
898+ MSR and handling of it in target/i386/cpu.h, target/i386/kvm.c,
899+ target/i386/machine.c.
900+ - CVE-2018-3639
901+ * Added Changes:
902+ - update machine type changes for qemu 2.12 and the Ubuntu Cosmic release
903+ - add cosmic types for base and -hpb
904+ - drop no more supported types (zesty and yakkety)
905+ - d/p/series: group machine type changes
906+ - d/p/ubuntu/CVE-2018-3639/* update for qemu 2.12 using the final patches
907+ merged upstream
908+ - d/p/ubuntu/CVE-2018-11806-slirp-correct-size.patch: slirp: correct size
909+ computation while concatenating mbuf.
910+ CVE-2018-11806
911+ - d/qemu-kvm-init, d/qemu-system-common.qemu-kvm.default: drop the
912+ deprecated handling of VHOST_NET_ENABLED and KVM_HUGEPAGES.
913+ - d/qemu-kvm-init: do not exit early on non x86/ppc64el (LP: #1763275)
914+ - d/qemu-kvm-init, d/kvm.powerpc: clean up typos and shellcheck warnings
915+ - d/qemu-kvm-init, d/kvm.powerpc: fix SMT detection and make it only apply
916+ to POWER8
917+ - d/qemu-kvm-init: drop old VM detection that was broken in some cases and
918+ is no more needed with systemd-detect-virt being more mature and always
919+ present.
920+ - d/kvm.powerpc: drop old powerpc (non-ppc64el) code.
921+ - d/control-in: add libibumad-dev which is now needed for rdma
922+ - d/rules: update s390x delta to match new Debian packaging
923+ - d/p/ubuntu/lp-1781526-powerpc64-align-memory-THP.patch: align to 2MB
924+ for powerpc64 to speed up translation (LP: #1781526)
925+ - d/p/ubuntu/lp-1780773-s390x-cpumodels-add-z14-Model-ZR1.patch: Add
926+ cpu model for z14 ZR1 (LP: #1780773).
927+ - Mark qemu-system-data foreign to be able to install it e.g. on i386
928+ (Closes: 903562)
929+ - d/control-in: qemu-keymaps is provided by qemu-system-data now (from yet
930+ unreleased Debian version)
931+ * Dropped Changes:
932+ - debian/patches/ubuntu/partial-SLOF-for-s390x-netboot-compilation.patch
933+ (No more removed when building DFSG orig tarball in Debian)
934+ - sdl2 is yet too unstable for the LTS Ubuntu release given the reports
935+ we still see upstream and in Debian - furthermore sdl2 isn't in main yet,
936+ so we revert related changes to stick with the proven for now:
937+ - 0fd25810 - do not build-depend on libx11-dev (libsdl2-dev already
938+ depends on it)
939+ - 9594f820 - switch from sdl1.2 to sdl2 (#870025)
940+ (Debian switched to gtk which seems to work better and has all
941+ dependencies in main.)
942+ - d/control-in: enable seccomp on s390x (in Debian for Linux-any)
943+ - Changes that are now upstream with qemu 2.12
944+ - d/p/ubuntu/lp1753826-memfd-fix-configure-test.patch: fix FTBFS with
945+ newer versions of glibc >=2.27 (LP: 1753826)
946+ - d/p/ubuntu/qemu-stable-2.11.1.patch: add stable release
947+ - d/p/ubuntu/lp1739665-SSE-AVX-AVX512-cpu-features.patch: Enable new
948+ SSE/AVX/AVX512 cpu features (LP: 1739665)
949+ - d/p/ubuntu/lp1740219-continuous-space-commpage.patch: make Arm
950+ space+commpage continuous which avoids long startup times on
951+ qemu-user-static (LP: 1740219)
952+ - provide pseries-2.12-sxxm type (LP: 1761372)
953+ - d/p/ubuntu/lp-1704312-1-* provide means to manually handle
954+ filesystem-dax with pmem by backporting align and unarmed options
955+ (LP: 1704312).
956+ - d/p/ubuntu/lp-1762315-slirp-Add-domainname.patch: slirp: Add domainname
957+ option to slirp's DHCP server (LP: 1762315)
958+ - d/p/ubuntu/lp-1762854-*: fix issue with SCSI-2 devices denying
959+ Protection information (LP: 1762854).
960+ - d/p/ubuntu/lp-1763468-*: fix VSMT handling to fix ppc64el P8/P9
961+ migration (LP: 1763468).
962+ - SECURITY UPDATE: out-of-bounds access during migration via ps2
963+ CVE-2017-16845
964+ - SECURITY UPDATE: arbitrary code execution via load_multiboot
965+ CVE-2018-7550
966+ - SECURITY UPDATE: denial of service in Cirrus CLGD 54xx VGA
967+ CVE-2018-7858
968+
969+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 21 Jun 2018 14:24:06 +0200
970+
971 qemu (1:2.12+dfsg-3) unstable; urgency=medium
972
973 * make qemu-system-foo depending
974@@ -385,6 +1298,239 @@ qemu (1:2.12~rc3+dfsg-1) unstable; urgency=medium
975
976 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 12 Apr 2018 19:04:03 +0300
977
978+qemu (1:2.11+dfsg-1ubuntu11) cosmic; urgency=medium
979+
980+ * d/p/ubuntu/machine-type-hpb.patch: add -hpb machine type
981+ for host-phys-bits=true (LP: #1776189)
982+ - add an info about this change in debian/qemu-system-x86.NEWS
983+
984+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 12 Jun 2018 09:01:00 +0200
985+
986+qemu (1:2.11+dfsg-1ubuntu10) cosmic; urgency=medium
987+
988+ * SECURITY UPDATE: Speculative Store Bypass
989+ - debian/patches/ubuntu/CVE-2018-3639/0001*.patch: define the 'ssbd'
990+ CPUID feature bit in target/i386/cpu.*.
991+ - debian/patches/ubuntu/CVE-2018-3639/0002*.patch: define the AMD
992+ 'virt-ssbd' CPUID feature bit in target/i386/cpu.c.
993+ - debian/patches/ubuntu/CVE-2018-3639/0003*.patch: define the Virt SSBD
994+ MSR and handling of it in target/i386/cpu.h, target/i386/kvm.c,
995+ target/i386/machine.c.
996+ - CVE-2018-3639
997+
998+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 22 May 2018 09:34:52 -0400
999+
1000+qemu (1:2.11+dfsg-1ubuntu9) cosmic; urgency=medium
1001+
1002+ * SECURITY UPDATE: out-of-bounds access during migration via ps2
1003+ - debian/patches/ubuntu/CVE-2017-16845.patch: check PS2Queue pointers
1004+ in post_load routine in hw/input/ps2.c.
1005+ - CVE-2017-16845
1006+ * SECURITY UPDATE: arbitrary code execution via load_multiboot
1007+ - debian/patches/ubuntu/CVE-2018-7550.patch: handle bss_end_addr being
1008+ zero in hw/i386/multiboot.c.
1009+ - CVE-2018-7550
1010+ * SECURITY UPDATE: denial of service in Cirrus CLGD 54xx VGA
1011+ - debian/patches/ubuntu/CVE-2018-7858.patch: fix region calculation in
1012+ hw/display/vga.c.
1013+ - CVE-2018-7858
1014+
1015+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 16 May 2018 14:14:20 -0400
1016+
1017+qemu (1:2.11+dfsg-1ubuntu8) cosmic; urgency=medium
1018+
1019+ * No-change rebuild for ncurses soname changes.
1020+
1021+ -- Matthias Klose <doko@ubuntu.com> Thu, 03 May 2018 14:18:39 +0000
1022+
1023+qemu (1:2.11+dfsg-1ubuntu7) bionic; urgency=medium
1024+
1025+ * d/p/ubuntu/lp-1762854-*: fix issue with SCSI-2 devices denying Protection
1026+ information (LP: #1762854).
1027+ * d/p/ubuntu/lp-1763468-*: fix VSMT handling to fix ppc64el P8/P9 migration
1028+ (LP: #1763468).
1029+
1030+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 11 Apr 2018 07:46:18 +0200
1031+
1032+qemu (1:2.11+dfsg-1ubuntu6) bionic; urgency=medium
1033+
1034+ * Remove LP: 1752026 changes to d/p/ubuntu/define-ubuntu-machine-types.patch.
1035+ The Kernel fixes are preferred and already committed to the kernel.
1036+ Therefore remove the default disabling of the HTM feature (LP: #1761175)
1037+ * d/p/ubuntu/lp1739665-SSE-AVX-AVX512-cpu-features.patch: Enable new
1038+ SSE/AVX/AVX512 cpu features (LP: #1739665)
1039+ * d/p/ubuntu/lp1740219-continuous-space-commpage.patch: make Arm
1040+ space+commpage continuous which avoids long startup times on
1041+ qemu-user-static (LP: #1740219)
1042+ * d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
1043+ convenience with all meltdown/spectre workarounds enabled by default.
1044+ This is not the default type following upstream and x86 on that.
1045+ (LP: #1761372).
1046+ * d/p/ubuntu/lp-1704312-1-* provide means to manually handle filesystem-dax
1047+ with pmem by backporting align and unarmed options (LP: #1704312).
1048+ * d/p/ubuntu/lp-1762315-slirp-Add-domainname.patch: slirp: Add domainname
1049+ option to slirp's DHCP server (LP: #1762315)
1050+
1051+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 04 Apr 2018 15:16:07 +0200
1052+
1053+qemu (1:2.11+dfsg-1ubuntu5) bionic; urgency=medium
1054+
1055+ * Revert the slirp changes of 1:2.11+dfsg-1ubuntu3 until they are upstream
1056+ accepted to be better long term maintainable (LP: #1753938)
1057+
1058+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 22 Mar 2018 10:31:23 +0100
1059+
1060+qemu (1:2.11+dfsg-1ubuntu4) bionic; urgency=medium
1061+
1062+ * d/p/ubuntu/define-ubuntu-machine-types.patch: Disable HTM feature for
1063+ ppc64el in spapr to let the defaults not fail on Power9 HW (LP: #1752026).
1064+ * d/p/ubuntu/lp1753826-memfd-fix-configure-test.patch: fix FTBFS with newer
1065+ versions of glibc >=2.27 (LP: #1753826)
1066+
1067+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 05 Mar 2018 16:43:01 +0100
1068+
1069+qemu (1:2.11+dfsg-1ubuntu3) bionic; urgency=medium
1070+
1071+ * d/p/ubuntu/0001-slirp-Add-domainname-option-to-slirp-s-DHCP-server.patch,
1072+ d/p/ubuntu/0002-slirp-Add-classless-static-routes-support-to-DHCP-se.patch:
1073+ Add domainname option and classless static routes support to the user
1074+ networking's DHCP server
1075+
1076+ -- Benjamin Drung <benjamin.drung@profitbricks.com> Fri, 02 Mar 2018 21:08:54 +0100
1077+
1078+qemu (1:2.11+dfsg-1ubuntu2) bionic; urgency=medium
1079+
1080+ * d/p/ubuntu/qemu-stable-2.11.1.patch: add stable release
1081+ - among other fixes this adds code to:
1082+ - mitigate the Spectre/Meltdown attacks (LP: #1744882) (CVE-2017-5715)
1083+ However, enabling this functionality requires additional configuration
1084+ beyond just updating QEMU. Also migrations need special consideration.
1085+ Details about that can be found at:
1086+ https://www.qemu.org/2018/02/14/qemu-2-11-1-and-spectre-update/
1087+ - Power9 allocation of max 8 threads per core (LP: #1750526)
1088+ * Drop changes that are part of the upstream stable release
1089+ - d/p/ubuntu/linux-headers-update-to-4.15-rc1.patch
1090+ - d/p/ubuntu/linux-headers-update-4.15-rc9.patch
1091+ - d/p/ubuntu/lp1743560-s390x-kvm-Handle-bpb-feature.patch
1092+ - d/p/ubuntu/lp1743560-s390x-kvm-provide-stfle.81.patch
1093+ * d/p/ubuntu/define-ubuntu-machine-types.patch: refresh to match stable update
1094+ * d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: unify to only change the
1095+ common compat.h header and add some extra info in the patch header.
1096+
1097+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 19 Feb 2018 11:03:11 +0100
1098+
1099+qemu (1:2.11+dfsg-1ubuntu1) bionic; urgency=medium
1100+
1101+ * Merge with Debian testing, among other fixes this includes
1102+ - fix fatal error on negative maxcpus (LP: #1722495)
1103+ - fix segfault on dump-guest-memory on guests without memory (LP: #1723381)
1104+ - linux user threading issues (LP: #1350435)
1105+ - TOD-Clock Epoch Extension Support on s390x (LP: #1732691)
1106+ Remaining changes:
1107+ - qemu-kvm to systemd unit
1108+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1109+ hugepages and architecture specifics
1110+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1111+ - d/qemu-system-common.install: install systemd unit and helper script
1112+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1113+ - d/qemu-system-common.qemu-kvm.default: defaults for
1114+ /etc/default/qemu-kvm
1115+ - d/rules: install /etc/default/qemu-kvm
1116+ - Enable nesting by default
1117+ - set nested=1 module option on intel. (is default on amd)
1118+ - re-load kvm_intel.ko if it was loaded without nested=1
1119+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1120+ in qemu64 cpu type.
1121+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1122+ in qemu64 on amd
1123+ - libvirt/qemu user/group support
1124+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1125+ trigger.
1126+ - qemu-system-common.preinst: add kvm group if needed
1127+ - Distribution specific machine type
1128+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1129+ types to ease future live vm migration.
1130+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1131+ - improved dependencies
1132+ - Make qemu-system-common depend on qemu-block-extra
1133+ - Make qemu-utils depend on qemu-block-extra
1134+ - let qemu-utils recommend sharutils
1135+ - s390x support
1136+ - Create qemu-system-s390x package
1137+ - Include s390-ccw.img firmware
1138+ - Enable numa support for s390x
1139+ - ppc64[le] support
1140+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1141+ - arch aware kvm wrappers
1142+ * Added Changes
1143+ - update VCS-git to match the bionic branch
1144+ - sdl2 is yet too unstable for the LTS Ubuntu release given the reports
1145+ we still see upstream and in Debian - furthermore sdl2 isn't in main yet,
1146+ so we revert related changes to stick with the proven for now:
1147+ - 0fd25810 - do not build-depend on libx11-dev (libsdl2-dev already
1148+ depends on it)
1149+ - 9594f820 - switch from sdl1.2 to sdl2 (#870025)
1150+ - d/qemu-system-x86.README.Debian: document intention of nested being
1151+ default is comfort, not full support
1152+ - update Ubuntu machine types for qemu 2.11
1153+ - qemu-guest-agent: freeze-hook fixes (LP: #1484990)
1154+ - d/p/guest-agent-freeze-hook-skip-dpkg-artifacts.patch
1155+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
1156+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
1157+ - Create and install pxe netboot images for KVM s390x (LP: #1732094)
1158+ - d/rules enable install s390x-netboot.img
1159+ - debian/patches/ubuntu/partial-SLOF-for-s390x-netboot-compilation.patch
1160+ - d/control-in: enable RDMA support in qemu (LP: #1692476)
1161+ - on s390x provide facility bits 81 (ppa15) and 82 (bpb) (LP: #1743560)
1162+ - d/p/ubuntu/linux-headers-update-to-4.15-rc1.patch
1163+ - d/p/ubuntu/linux-headers-update-4.15-rc9.patch
1164+ - d/p/ubuntu/lp1743560-s390x-kvm-Handle-bpb-feature.patch
1165+ - d/p/ubuntu/lp1743560-s390x-kvm-provide-stfle.81.patch
1166+ - tolerate ipxe size change on migrations to >=18.04 (LP: #1713490)
1167+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
1168+ reference 256k path
1169+ - d/control: depend on ipxe-qemu-256k-compat-efi-roms to be able to
1170+ handle incoming migrations from former releases.
1171+ - d/control-in: enable seccomp on s390x
1172+ * Dropped changes (no more needed):
1173+ - Dropped VHOST_NET_ENABLED and KVM_HUGEPAGES from /etc/default/qemu-kvm
1174+ The functionality is retained for upgraders, but is deprecated.
1175+ Post 18.04 the implementation for these configurations will be removed.
1176+ * Dropped changes (in Debian now):
1177+ - ppc64[le] support
1178+ - Enable seccomp for ppc64el
1179+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1180+ - disable missing x32 architecture
1181+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1182+ - d/qemu-system-common.docs: new paths since (ac06724a)
1183+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1184+ by qapi-schema.json which is already packaged (since 4d8bb958)
1185+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream (Update
1186+ to Debian patch to match qemu 2.10)
1187+ - d/qemu-system-common.docs: adapt new path of live-block-operations.rst
1188+ since 8508eee7
1189+ - d/qemu-system-common.docs: adapt q35 config paths since 9ca019c1
1190+ - make nios2/hppa not installed explicitly until further stablized
1191+ - d/qemu-guest-agent.install: add the new guest agent reference man page
1192+ qemu-ga-ref
1193+ - d/qemu-system-common.install: add the now generated qapi/qmp reference
1194+ along the qapi intro
1195+ - d/not-installed: ignore further generated (since 56e8bdd4) files in
1196+ dh_missing that are already provided in other formats qemu-doc,
1197+ qemu-qmp-ref,qemu-ga-ref
1198+ * Dropped changes (integrated upstream):
1199+ - d/p/detect-ITS-and-skip-usage-on-older-kernel.patch to avoid crashes
1200+ on arm64 when doing suspend/resume and reboots due to older kernels not
1201+ supporting ITS (LP 1731051).
1202+ - Apply linux-user-return-EINVAL-from-prctl-PR_-_SECCOMP.patch from
1203+ James Cowgill to prevent qemu-user from forwarding prctl seccomp
1204+ calls (LP 1726394)
1205+ - update to upstream 2.10.1 point release (LP 1722808)
1206+
1207+
1208+
1209+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 22 Jan 2018 14:35:18 +0100
1210+
1211 qemu (1:2.11+dfsg-1) unstable; urgency=medium
1212
1213 [ Michael Tokarev ]
1214@@ -499,6 +1645,238 @@ qemu (1:2.10.0-1) unstable; urgency=medium
1215
1216 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 23 Sep 2017 16:47:02 +0300
1217
1218+qemu (1:2.10+dfsg-0ubuntu5) bionic; urgency=medium
1219+
1220+ * d/p/detect-ITS-and-skip-usage-on-older-kernel.patch to avoid crashes
1221+ on arm64 when doing suspend/resume and reboots due to older kernels not
1222+ supporting ITS (LP: #1731051).
1223+
1224+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 14 Nov 2017 08:30:29 +0100
1225+
1226+qemu (1:2.10+dfsg-0ubuntu4) bionic; urgency=medium
1227+
1228+ * Apply linux-user-return-EINVAL-from-prctl-PR_-_SECCOMP.patch from
1229+ James Cowgill to prevent qemu-user from forwarding prctl seccomp
1230+ calls (LP: #1726394)
1231+
1232+ -- Julian Andres Klode <juliank@ubuntu.com> Sat, 04 Nov 2017 00:21:14 +0100
1233+
1234+qemu (1:2.10+dfsg-0ubuntu3) artful; urgency=medium
1235+
1236+ * fix enablement of qemu-kvm service (LP: #1720397)
1237+ - rename d/qemu-kvm.service to d/qemu-system-common.qemu-kvm.service
1238+ - d/rules: add proper enablement debhelper calls
1239+ - d/qemu-system-common.install: install covered by dh_installinit
1240+
1241+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 16 Oct 2017 11:28:39 +0200
1242+
1243+qemu (1:2.10+dfsg-0ubuntu2) artful; urgency=medium
1244+
1245+ * update to upstream 2.10.1 point release (LP: #1722808)
1246+
1247+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 11 Oct 2017 15:33:40 +0200
1248+
1249+qemu (1:2.10+dfsg-0ubuntu1) artful; urgency=medium
1250+
1251+ * Merge with Upstream 2.10.0 to pick up final fixes of the 2.10 release
1252+ Remaining changes:
1253+ - qemu-kvm to systemd unit
1254+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1255+ hugepages and architecture specifics
1256+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1257+ - d/qemu-system-common.install: install systemd unit and helper script
1258+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1259+ - d/qemu-system-common.qemu-kvm.default: defaults for
1260+ /etc/default/qemu-kvm
1261+ - d/rules: install /etc/default/qemu-kvm
1262+ - Enable nesting by default
1263+ - set nested=1 module option on intel. (is default on amd)
1264+ - re-load kvm_intel.ko if it was loaded without nested=1
1265+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1266+ in qemu64 cpu type.
1267+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1268+ in qemu64 on amd
1269+ - libvirt/qemu user/group support
1270+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1271+ trigger.
1272+ - qemu-system-common.preinst: add kvm group if needed
1273+ - Distribution specific machine type
1274+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1275+ types to ease future live vm migration.
1276+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1277+ - improved dependencies
1278+ - Make qemu-system-common depend on qemu-block-extra
1279+ - Make qemu-utils depend on qemu-block-extra
1280+ - let qemu-utils recommend sharutils
1281+ - s390x support
1282+ - Create qemu-system-s390x package
1283+ - Include s390-ccw.img firmware
1284+ - Enable numa support for s390x
1285+ - ppc64[le] support
1286+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1287+ - Enable seccomp for ppc64el
1288+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1289+ - arch aware kvm wrappers
1290+ - update VCS-git to match the Artful branch
1291+ - disable missing x32 architecture
1292+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1293+ - d/qemu-system-common.docs: new paths since (ac06724a)
1294+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1295+ by qapi-schema.json which is already packaged (since 4d8bb958)
1296+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream (Update
1297+ to Debian patch to match qemu 2.10)
1298+ - s390x package now builds correctly on all architectures (LP 1710695)
1299+ - d/qemu-system-common.docs: adapt new path of live-block-operations.rst
1300+ since 8508eee7
1301+ - d/qemu-system-common.docs: adapt q35 config paths since 9ca019c1
1302+ - make nios2/hppa not installed explicitly until further stablized
1303+ - d/qemu-guest-agent.install: add the new guest agent reference man page
1304+ qemu-ga-ref
1305+ - d/qemu-system-common.install: add the now generated qapi/qmp reference
1306+ along the qapi intro
1307+ - d/not-installed: ignore further generated (since 56e8bdd4) files in
1308+ dh_missing that are already provided in other formats qemu-doc,
1309+ qemu-qmp-ref,qemu-ga-ref
1310+
1311+
1312+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 05 Sep 2017 08:31:26 +0200
1313+
1314+qemu (1:2.10~rc4+dfsg-0ubuntu1) artful; urgency=medium
1315+
1316+ * Merge with Upstream 2.10-rc4; This fixes a migration issue (LP: #1711602);
1317+ Remaining changes:
1318+ - qemu-kvm to systemd unit
1319+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1320+ hugepages and architecture specifics
1321+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1322+ - d/qemu-system-common.install: install systemd unit and helper script
1323+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1324+ - d/qemu-system-common.qemu-kvm.default: defaults for
1325+ /etc/default/qemu-kvm
1326+ - d/rules: install /etc/default/qemu-kvm
1327+ - Enable nesting by default
1328+ - set nested=1 module option on intel. (is default on amd)
1329+ - re-load kvm_intel.ko if it was loaded without nested=1
1330+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1331+ in qemu64 cpu type.
1332+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1333+ in qemu64 on amd
1334+ - libvirt/qemu user/group support
1335+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1336+ trigger.
1337+ - qemu-system-common.preinst: add kvm group if needed
1338+ - Distribution specific machine type
1339+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1340+ types to ease future live vm migration.
1341+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1342+ - improved dependencies
1343+ - Make qemu-system-common depend on qemu-block-extra
1344+ - Make qemu-utils depend on qemu-block-extra
1345+ - let qemu-utils recommend sharutils
1346+ - s390x support
1347+ - Create qemu-system-s390x package
1348+ - Include s390-ccw.img firmware
1349+ - Enable numa support for s390x
1350+ - ppc64[le] support
1351+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1352+ - Enable seccomp for ppc64el
1353+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1354+ - arch aware kvm wrappers
1355+ - update VCS-git to match the Artful branch
1356+ - disable missing x32 architecture
1357+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1358+ - d/qemu-system-common.docs: new paths since (ac06724a)
1359+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1360+ by qapi-schema.json which is already packaged (since 4d8bb958)
1361+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream (Update
1362+ to Debian patch to match qemu 2.10)
1363+ - s390x package now builds correctly on all architectures (LP 1710695)
1364+ * Added changes:
1365+ - d/qemu-system-common.docs: adapt new path of live-block-operations.rst
1366+ since 8508eee7
1367+ - d/qemu-system-common.docs: adapt q35 config paths since 9ca019c1
1368+ - make nios2/hppa not installed explicitly until further stablized
1369+ - d/qemu-guest-agent.install: add the new guest agent reference man page
1370+ qemu-ga-ref
1371+ - d/qemu-system-common.install: add the now generated qapi/qmp reference
1372+ along the qapi intro
1373+ - d/not-installed: ignore further generated (since 56e8bdd4) files in
1374+ dh_missing that are already provided in other formats qemu-doc,
1375+ qemu-qmp-ref,qemu-ga-ref
1376+ - d/p/ubuntu/define-ubuntu-machine-types.patch: update to match new
1377+ changes in 2.10-rc4
1378+
1379+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 25 Aug 2017 07:49:30 +0200
1380+
1381+qemu (1:2.10~rc3+dfsg-0ubuntu1) artful; urgency=medium
1382+
1383+ * Merge with Debian unstable (2.8) and Upstream 2.10-rci3; This fixes
1384+ a set of bugs
1385+ - [FFE] Qemu 2.10 in Artful (LP: #1699968)
1386+ - CPU hot unplug fails after migrating a CPU hotplugged guest
1387+ from source (LP: #1677552)
1388+ - [Feature] KNL/KNM: Numa Distance on KVM(LP: #1647902)
1389+ - New KVM 288 Pass Through (LP: #1672447)
1390+ - aarch64: MSI is not supported by interrupt controller (LP: #1706630)
1391+ * Remaining changes:
1392+ - qemu-kvm to systemd unit
1393+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1394+ hugepages and architecture specifics
1395+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1396+ - d/qemu-system-common.install: install systemd unit and helper script
1397+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1398+ - d/qemu-system-common.qemu-kvm.default: defaults for
1399+ /etc/default/qemu-kvm
1400+ - d/rules: install /etc/default/qemu-kvm
1401+ - Enable nesting by default
1402+ - set nested=1 module option on intel. (is default on amd)
1403+ - re-load kvm_intel.ko if it was loaded without nested=1
1404+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1405+ in qemu64 cpu type.
1406+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1407+ in qemu64 on amd
1408+ - libvirt/qemu user/group support
1409+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1410+ trigger.
1411+ - qemu-system-common.preinst: add kvm group if needed
1412+ - Distribution specific machine type
1413+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1414+ types to ease future live vm migration.
1415+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1416+ - improved dependencies
1417+ - Make qemu-system-common depend on qemu-block-extra
1418+ - Make qemu-utils depend on qemu-block-extra
1419+ - let qemu-utils recommend sharutils
1420+ - s390x support
1421+ - Create qemu-system-s390x package
1422+ - Include s390-ccw.img firmware
1423+ - Enable numa support for s390x
1424+ - ppc64[le] support
1425+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1426+ - Enable seccomp for ppc64el
1427+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1428+ - arch aware kvm wrappers
1429+ - disable missing x32 architecture
1430+ - update VCS links
1431+ * Added changes
1432+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1433+ - d/qemu-system-common.docs: new paths since (ac06724a)
1434+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1435+ by qapi-schema.json which is already packaged (since 4d8bb958)
1436+ - Updates in debian/patches to match qemu 2.10
1437+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream
1438+ - d/p/ubuntu/enable-svm-by-default.patch: target-i386 -> target/i386
1439+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: target-i386 -> target/i386
1440+ - d/p/ubuntu/define-ubuntu-machine-types.patch: new 2.10 ubuntu types
1441+ - update VCS-git to match the Artful branch
1442+ - s390x package now builds correctly on all architectures (LP: #1710695)
1443+ * Dropped changes (integrated upstream):
1444+ - d/p/ubuntu/spapr-pci-populate-PCI-DT-in-reverse-order.patch: backport
1445+ "spapr/pci: populate PCI DT in reverse order" (LP 1670481).
1446+ - All CVE fixes formerly applied are upstream and thereby dropped.
1447+
1448+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 08 Aug 2017 16:59:19 +0200
1449+
1450 qemu (1:2.8+dfsg-7) unstable; urgency=medium
1451
1452 * uploading to unstable all fixes which went to stretch-security
1453@@ -608,6 +1986,179 @@ qemu (1:2.8+dfsg-4) unstable; urgency=high
1454
1455 -- Michael Tokarev <mjt@tls.msk.ru> Mon, 03 Apr 2017 16:28:49 +0300
1456
1457+qemu (1:2.8+dfsg-3ubuntu4) artful; urgency=medium
1458+
1459+ * debian/rules: fix installation of /etc/default/qemu-kvm (LP: #1692530)
1460+ This was inadvertently dropped on 2.8 merge.
1461+
1462+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 22 May 2017 15:45:58 +0200
1463+
1464+qemu (1:2.8+dfsg-3ubuntu3) artful; urgency=medium
1465+
1466+ * SECURITY UPDATE: denial of service via leak in virtFS
1467+ - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
1468+ hw/9pfs/9p.c.
1469+ - CVE-2017-7377
1470+ * SECURITY UPDATE: denial of service in cirrus_vga
1471+ - debian/patches/CVE-2017-7718.patch: check parameters in
1472+ hw/display/cirrus_vga_rop.h.
1473+ - CVE-2017-7718
1474+ * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
1475+ - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
1476+ hw/display/cirrus_vga.c.
1477+ - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
1478+ hw/display/cirrus_vga.c.
1479+ - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
1480+ in hw/display/cirrus_vga.c.
1481+ - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
1482+ hw/display/cirrus_vga.c.
1483+ - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
1484+ in hw/display/cirrus_vga.c.
1485+ - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
1486+ pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
1487+ hw/display/cirrus_vga_rop2.h.
1488+ - debian/patches/CVE-2017-7980-7.patch: stop passing around src
1489+ pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
1490+ hw/display/cirrus_vga_rop2.h.
1491+ - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
1492+ hw/display/cirrus_vga_rop.h.
1493+ - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
1494+ hw/display/cirrus_vga.c.
1495+ - CVE-2017-7980
1496+ * SECURITY UPDATE: denial of service via memory leak in virtFS
1497+ - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
1498+ - CVE-2017-8086
1499+ * SECURITY UPDATE: denial of service via leak in audio
1500+ - debian/patches/CVE-2017-8309.patch: release capture buffers in
1501+ audio/audio.c.
1502+ - CVE-2017-8309
1503+ * SECURITY UPDATE: denial of service via leak in keyboard
1504+ - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
1505+ ui/input.c.
1506+ - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
1507+ ui/input.c.
1508+ - CVE-2017-8379
1509+
1510+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 18 May 2017 09:20:54 -0400
1511+
1512+qemu (1:2.8+dfsg-3ubuntu2.1) zesty-security; urgency=medium
1513+
1514+ * SECURITY UPDATE: DoS in virtio GPU device
1515+ - debian/patches/CVE-2016-10028.patch: check virgl capabilities
1516+ max_size in hw/display/virtio-gpu-3d.c.
1517+ - CVE-2016-10028
1518+ * SECURITY UPDATE: DoS in JAZZ RC4030 chipset emulation
1519+ - debian/patches/CVE-2016-8667.patch: limit interval timer reload value
1520+ in hw/dma/rc4030.c.
1521+ - CVE-2016-8667
1522+ * SECURITY UPDATE: host filesystem access via virtFS
1523+ - debian/patches/CVE-2016-9602.patch: don't follow symlinks in
1524+ hw/9pfs/*.
1525+ - CVE-2016-9602
1526+ * SECURITY UPDATE: arbitrary code execution via Cirrus VGA
1527+ - debian/patches/CVE-2016-9603.patch: remove bitblit support from
1528+ console code in hw/display/cirrus_vga.c, include/ui/console.h,
1529+ ui/console.c, ui/vnc.c.
1530+ - CVE-2016-9603
1531+ * SECURITY UPDATE: information leak in virtio GPU device
1532+ - debian/patches/CVE-2016-9908.patch: properly clear out memory in
1533+ hw/display/virtio-gpu-3d.c.
1534+ - CVE-2016-9908
1535+ * SECURITY UPDATE: DoS via memory leak in virtio GPU device
1536+ - debian/patches/CVE-2016-9912.patch: properly free memory in
1537+ hw/display/virtio-gpu.c.
1538+ - CVE-2016-9912
1539+ * SECURITY UPDATE: DoS via virtFS
1540+ - debian/patches/CVE-2016-9914.patch: add cleanup operations to
1541+ fsdev/file-op-9p.h, hw/9pfs/9p.c.
1542+ - CVE-2016-9914
1543+ * SECURITY UPDATE: DoS via memory leak in virtio GPU device
1544+ - debian/patches/CVE-2017-5552.patch: check return value in
1545+ hw/display/virtio-gpu-3d.c.
1546+ - CVE-2017-5552
1547+ * SECURITY UPDATE: DoS via memory leak in virtio GPU device
1548+ - debian/patches/CVE-2017-5578.patch: check res->iov in
1549+ hw/display/virtio-gpu.c.
1550+ - CVE-2017-5578
1551+ * SECURITY UPDATE: DoS via infinite loop in SDHCI device emulation
1552+ - debian/patches/CVE-2017-5987-*.patch: fix transfer mode register
1553+ handling in hw/sd/sdhci.c.
1554+ - CVE-2017-5987
1555+ * SECURITY UPDATE: DoS via infinite loop in USB OHCI emulation
1556+ - debian/patches/CVE-2017-6505.patch: limit the number of link eds in
1557+ hw/usb/hcd-ohci.c.
1558+ - CVE-2017-6505
1559+
1560+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 24 Apr 2017 07:30:11 -0400
1561+
1562+qemu (1:2.8+dfsg-3ubuntu2) zesty; urgency=medium
1563+
1564+ * d/p/ubuntu/spapr-pci-populate-PCI-DT-in-reverse-order.patch: backport
1565+ "spapr/pci: populate PCI DT in reverse order" (LP: #1670481).
1566+
1567+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 07 Mar 2017 09:23:08 +0100
1568+
1569+qemu (1:2.8+dfsg-3ubuntu1) zesty; urgency=medium
1570+
1571+ * Merge with Debian;
1572+ This fixes several CVEs that were reported against qemu 2.8 and also
1573+ includes a few important functional backports (LP: #1667033); remaining
1574+ changes:
1575+ - add qemu-kvm init script and defaults file
1576+ (d/qemu-system-common.qemu-kvm.*)
1577+ - d/rules, d/qemu-kvm-init: add and install script loading kvm
1578+ modules and handling /etc/default/qemu-kvm
1579+ - qemu-system-common.preinst: add kvm group if needed
1580+ - Enable nesting by default on intel.
1581+ - set default module option
1582+ - re-load kvm_intel.ko if it was loaded without nested=1
1583+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by
1584+ default in qemu64 cpu type.
1585+ - Enable svm by default for qemu64 on amd
1586+ - d/p/ubuntu/define-ubuntu-machine-types.patch, d/qemu-system-x86.NEWS:
1587+ define distro machine types to ease future live vm migration (includes
1588+ all former follow up fixes).
1589+ - Make qemu-system-common depend on qemu-block-extra
1590+ - Make qemu-utils depend on qemu-block-extra
1591+ - s390x support
1592+ - Create qemu-system-s390x package
1593+ - Include s390-ccw.img firmware
1594+ - qemu-system-common.postinst:
1595+ - change acl placed by udev, and add udevadm trigger.
1596+ - d/qemu-kvm-init, d/kvm.powerpc, d/control-in: check SMT on ppc64el
1597+ - Several changes were applied but missing in the changelog so far
1598+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1599+ - arch aware kvm wrapper
1600+ - update VCS links
1601+ - let qemu-utils recommend sharutils
1602+ - disable x32 architecture
1603+ - Enable seccomp for ppc64el
1604+ - Enable numa support for s390x
1605+ - d/qemu-system-common.qemu-kvm.init: fix lintian error type
1606+ init.d-script-missing-dependency-on-remote_fs
1607+ - d/qemu-system-common.postinst: fix lintian error type
1608+ command-with-path-in-maintainer-script
1609+ - Transition qemu-kvm to a systemd unit
1610+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check avoid unwanted output
1611+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check keep output local so
1612+ that it shows up where the user expects (sytemctl status, kvm stdout)
1613+ - d/qemu-kvm-init ppc64el warn on expected second level kvm-hv load failure
1614+ - add arch aware kvm wrapper for s390x
1615+ * Dropped Changes (in Debian now):
1616+ - d/p/ubuntu/ctrl-a-b-fix-fb5e19d2.patch: char: fix ctrl-a b not working
1617+ - d/control-in: change dependencies for fix of wrong acl for newly
1618+ created device node on ubuntu
1619+ - have qemu-system-arm suggest: qemu-efi; this should be a stronger
1620+ relationship, but qemu-efi is still in universe right now.
1621+ - Disable glusterfs (Universe dependency)
1622+ - no more skip disable libiscsi on Ubuntu
1623+ - d/rules, d/control-in: avoid people editing d/control
1624+ * Added Changes:
1625+ - d/control: bump libseccomp-dev dependency as enabling libseccomp for
1626+ power makes 2.3 the minimum level.
1627+
1628+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 01 Mar 2017 14:23:16 +0100
1629+
1630 qemu (1:2.8+dfsg-3) unstable; urgency=high
1631
1632 * urgency high due to security fixes
1633@@ -668,6 +2219,90 @@ qemu (1:2.8+dfsg-3) unstable; urgency=high
1634
1635 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 28 Feb 2017 11:40:18 +0300
1636
1637+qemu (1:2.8+dfsg-2ubuntu1) zesty; urgency=medium
1638+
1639+ * Merge with Debian; remaining changes:
1640+ - add qemu-kvm init script and defaults file
1641+ (d/qemu-system-common.qemu-kvm.*)
1642+ - d/rules, d/qemu-kvm-init: add and install script loading kvm
1643+ modules and handling /etc/default/qemu-kvm
1644+ - qemu-system-common.preinst: add kvm group if needed
1645+ - Enable nesting by default on intel.
1646+ - set default module option
1647+ - re-load kvm_intel.ko if it was loaded without nested=1
1648+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by
1649+ default in qemu64 cpu type.
1650+ - Enable svm by default for qemu64 on amd
1651+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1652+ types to ease future live vm migration.
1653+ - Make qemu-system-common depend on qemu-block-extra
1654+ - Make qemu-utils depend on qemu-block-extra
1655+ - s390x support
1656+ - Create qemu-system-s390x package
1657+ - Include s390-ccw.img firmware
1658+ - qemu-system-common.postinst:
1659+ - change acl placed by udev, and add udevadm trigger.
1660+ - d/control-in: change dependencies for fix of wrong acl for newly
1661+ created device node on ubuntu
1662+ - have qemu-system-arm suggest: qemu-efi; this should be a stronger
1663+ relationship, but qemu-efi is still in universe right now.
1664+ - d/qemu-kvm-init, d/kvm.powerpc, d/control-in: check SMT on ppc64el
1665+ - Several changes were applied but missing in the changelog so far
1666+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1667+ - arch aware kvm wrapper
1668+ - update VCS links
1669+ - no more skip disable libiscsi on Ubuntu
1670+ - let qemu-utils recommend sharutils
1671+ - disable x32 architecture
1672+ * Dropped Changes:
1673+ - Several changes were applied but missing in the changelog so far
1674+ but are no more needed
1675+ - no pie for relocatable LD calls, with toolchain defaulting to
1676+ pie (fixed upstream)
1677+ - enable libnuma-dev (now in Debian)
1678+ - transition for moved init scripts (can be dropped after LTS
1679+ containing >=2.5 which is Xenial)
1680+ - --enable-seccomp related whitespace change (had no effect)
1681+ - apport hook for qemu source package (In Debian)
1682+ - add upstart script (d/qemu-system-common.qemu-kvm.upstart)
1683+ - d/qemu-system-x86.maintscript: transition off of
1684+ /etc/init.d/qemu-system-x86 (can be dropped after Xenial)
1685+ - Enable pie by default, on ubuntu/s390x. (Is the default since
1686+ >=Xenial, no cloud archive backport <=Xenial to consider)
1687+ - no pie for relocatable LD calls (fixed upstream in commit
1688+ 7ecf44a5)
1689+ - CVEs: CVE-2016-5403, CVE-2016-6351, CVE-2016-6490 (now Upstream)
1690+ - Revert fix for CVE-2016-5403, causes regression see USN-3047-2.
1691+ (Improved fix included by upstream)
1692+ - Enable GPU Passthru for ppc64le (is upstream in qemu 2.7)
1693+ - Fixed wrong migration blocker when vhost is used (is upstream in
1694+ qemu 2.8)
1695+ * Added Changes:
1696+ - d/rules, d/control-in: avoid people editing d/control by warning
1697+ header and non writable permissions
1698+ - fixed moving trusty machine type definition which made it
1699+ ambiguous (LP: #1641532)
1700+ - d/qemu-system-x86.NEWS describe the issue
1701+ - Enable seccomp for ppc64el (LP: #1644639)
1702+ - Enable numa support for s390x
1703+ - d/qemu-system-common.qemu-kvm.init: fix lintian error type
1704+ init.d-script-missing-dependency-on-remote_fs
1705+ - d/qemu-system-common.postinst: fix lintian error type
1706+ command-with-path-in-maintainer-script
1707+ - Transition qemu-kvm to a systemd unit
1708+ - Disable glusterfs (Universe dependency)
1709+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check avoid unwanted output
1710+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check keep output local so
1711+ that it shows up where the user expects (sytemctl status, kvm stdout)
1712+ - d/qemu-kvm-init ppc64el warn on expected second level kvm-hv load failure
1713+ - add arch aware kvm wrapper for s390x
1714+ - d/p/ubuntu/ctrl-a-b-fix-fb5e19d2.patch: char: fix ctrl-a b not working
1715+ - Enable DDW in Yakkety machine type because "Enable GPU Passthru for
1716+ ppc64le" was released as part of qemu 2.6 (can be dropped at 18.10,
1717+ merged in d/p/ubuntu/define-ubuntu-machine-types.patch)
1718+
1719+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 16 Jan 2017 16:27:11 +0100
1720+
1721 qemu (1:2.8+dfsg-2) unstable; urgency=medium
1722
1723 * Revert "update binfmt registration for mipsn32"
1724@@ -786,6 +2421,67 @@ qemu (1:2.7+dfsg-1) unstable; urgency=medium
1725
1726 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 14 Oct 2016 13:31:40 +0300
1727
1728+qemu (1:2.6.1+dfsg-0ubuntu5) yakkety; urgency=medium
1729+
1730+ * No-change rebuild to compile against new libxen version.
1731+
1732+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 30 Sep 2016 14:24:37 +0200
1733+
1734+qemu (1:2.6.1+dfsg-0ubuntu4) yakkety; urgency=medium
1735+
1736+ * retain older xenial machine type to avoid issues starting guests
1737+ created on xenial prior to the SRU for bug 1621042. In that regard the old
1738+ broken xenial machine type and the new fixed one have both to be considered
1739+ as valid LTS machine types (LP: #1626070).
1740+
1741+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 21 Sep 2016 14:57:09 +0200
1742+
1743+qemu (1:2.6.1+dfsg-0ubuntu3) yakkety; urgency=medium
1744+
1745+ * fix default ubuntu machine types. (LP: #1621042)
1746+ - add dep3 header to d/p/ubuntu/define-ubuntu-machine-types.patch
1747+ - remove double default and double ubuntu alias
1748+ - drop former devel releases utopic, vivid, wily
1749+ - add xenial and yakkety machine types
1750+ - add q35 based ubuntu machine type starting at xenial
1751+ - add ubuntu machine types on ppc64el and s390x starting at xenial
1752+
1753+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 19 Sep 2016 07:50:50 +0200
1754+
1755+qemu (1:2.6.1+dfsg-0ubuntu2) yakkety; urgency=medium
1756+
1757+ * Enable GPU Passthru for ppc64le (LP: #1541902)
1758+ - 0001-spapr-ensure-device-trees-are-always-associated-with.patch
1759+ - 0002-spapr_pci-Use-correct-DMA-LIOBN-when-composing-the-d.patch
1760+ - 0003-spapr_iommu-Finish-renaming-vfio_accel-to-need_vfio.patch
1761+ - 0004-spapr_iommu-Move-table-allocation-to-helpers.patch
1762+ - 0005-vmstate-Define-VARRAY-with-VMS_ALLOC.patch
1763+ - 0006-spapr_iommu-Introduce-enabled-state-for-TCE-table.patch
1764+ - 0007-spapr_iommu-Migrate-full-state.patch
1765+ - 0008-spapr_iommu-Add-root-memory-region.patch
1766+ - 0009-spapr_pci-Reset-DMA-config-on-PHB-reset.patch
1767+ - 0010-spapr_pci-Add-and-export-DMA-resetting-helper.patch
1768+ - 0011-memory-Add-reporting-of-supported-page-sizes.patch
1769+ - 0012-memory-Add-MemoryRegionIOMMUOps.notify_started-stopp.patch
1770+ - 0013-intel_iommu-Throw-hw_error-on-notify_started.patch
1771+ - 0014-spapr_iommu-Realloc-guest-visible-TCE-table-when-sta.patch
1772+ - 0015-vfio-spapr-Add-DMA-memory-preregistering-SPAPR-IOMMU.patch
1773+ - 0016-vfio-Add-host-side-DMA-window-capabilities.patch
1774+ - 0017-vfio-spapr-Create-DMA-window-dynamically-SPAPR-IOMMU.patch
1775+ - 0018-spapr_pci-spapr_pci_vfio-Support-Dynamic-DMA-Windows.patch
1776+ - 0019-vfio-spapr-Remove-stale-ioctl-call.patch
1777+ - 0020-spapr-Fix-undefined-behaviour-in-spapr_tce_reset.patch
1778+ - 0021-memory-Fix-IOMMU-replay-base-address.patch
1779+
1780+ -- Jon Grimm <jon.grimm@canonical.com> Fri, 16 Sep 2016 14:14:47 -0500
1781+
1782+qemu (1:2.6.1+dfsg-0ubuntu1) yakkety; urgency=medium
1783+
1784+ * New upstream release. LP: #1617055.
1785+ * Revert fix for CVE-2016-5403, causes regression see USN-3047-2.
1786+
1787+ -- Dimitri John Ledkov <xnox@ubuntu.com> Fri, 09 Sep 2016 23:33:57 +0100
1788+
1789 qemu (1:2.6+dfsg-3.1) unstable; urgency=high
1790
1791 * Non-maintainer upload.
1792@@ -819,6 +2515,55 @@ qemu (1:2.6+dfsg-3.1) unstable; urgency=high
1793
1794 -- Andrew James <ajames@hpe.com> Wed, 14 Sep 2016 00:56:18 -0600
1795
1796+qemu (1:2.6+dfsg-3ubuntu2) yakkety; urgency=medium
1797+
1798+ * SECURITY UPDATE: DoS via unbounded memory allocation
1799+ - debian/patches/CVE-2016-5403.patch: check size in hw/virtio/virtio.c.
1800+ - CVE-2016-5403
1801+ * SECURITY UPDATE: oob write access while reading ESP command
1802+ - debian/patches/CVE-2016-6351.patch: make cmdbuf big enough for
1803+ maximum CDB size and handle migration in hw/scsi/esp.c,
1804+ include/hw/scsi/esp.h, include/migration/vmstate.h.
1805+ - CVE-2016-6351
1806+ * SECURITY UPDATE: infinite loop in virtqueue_pop
1807+ - debian/patches/CVE-2016-6490.patch: check vring descriptor buffer
1808+ length in hw/virtio/virtio.c.
1809+ - CVE-2016-6490
1810+
1811+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 03 Aug 2016 08:36:16 -0400
1812+
1813+qemu (1:2.6+dfsg-3ubuntu1) yakkety; urgency=medium
1814+
1815+ * Merge with Debian; remaining changes:
1816+ - debian/rules: do not drop the init scripts loading kvm modules
1817+ (still needed in precise in cloud archive)
1818+ - qemu-system-common.postinst:
1819+ * remove acl placed by udev, and add udevadm trigger.
1820+ * reload kvm_intel if needed to set nested=1
1821+ - qemu-system-common.preinst: add kvm group if needed
1822+ - add qemu-kvm upstart job and defaults file (rules,
1823+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
1824+ - rules,qemu-system-x86.modprobe: support use under older udevs which
1825+ do not auto-load the kvm kernel module. Enable nesting by default
1826+ on intel.
1827+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
1828+ in qemu64 cpu type.
1829+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1830+ types to ease future live vm migration.
1831+ - apport hook for qemu source package: d/source_qemu-kvm.py,
1832+ d/qemu-system-common.install
1833+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
1834+ to fix errors with missing block backends.
1835+ - s390x:
1836+ * Create qemu-system-s390x package
1837+ * Enable pie by default, on ubuntu/s390x.
1838+ * Enable svm by default for qemu64 on amd
1839+ * Include s390-ccw.img firmware
1840+ * have qemu-system-aarch64 Suggest: qemu-efi; this should be a stronger
1841+ relationship, but qemu-efi is still in universe right now.
1842+
1843+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 15 Jun 2016 16:49:49 -0500
1844+
1845 qemu (1:2.6+dfsg-3) unstable; urgency=high
1846
1847 * more security fixes picked from upstream:
1848@@ -872,6 +2617,39 @@ qemu (1:2.6+dfsg-2) unstable; urgency=medium
1849
1850 -- Michael Tokarev <mjt@tls.msk.ru> Mon, 13 Jun 2016 12:10:44 +0300
1851
1852+qemu (1:2.6+dfsg-1ubuntu1) yakkety; urgency=medium
1853+
1854+ * Merge with Debian; remaining changes: (LP: #1583775)
1855+ - debian/rules: do not drop the init scripts loading kvm modules
1856+ (still needed in precise in cloud archive)
1857+ - qemu-system-common.postinst:
1858+ * remove acl placed by udev, and add udevadm trigger.
1859+ * reload kvm_intel if needed to set nested=1
1860+ - qemu-system-common.preinst: add kvm group if needed
1861+ - add qemu-kvm upstart job and defaults file (rules,
1862+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
1863+ - rules,qemu-system-x86.modprobe: support use under older udevs which
1864+ do not auto-load the kvm kernel module. Enable nesting by default
1865+ on intel.
1866+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
1867+ in qemu64 cpu type.
1868+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1869+ types to ease future live vm migration.
1870+ - apport hook for qemu source package: d/source_qemu-kvm.py,
1871+ d/qemu-system-common.install
1872+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
1873+ to fix errors with missing block backends. (LP: #1495895)
1874+ - s390x:
1875+ * Create qemu-system-s390x package
1876+ * Enable pie by default, on ubuntu/s390x.
1877+ * Enable svm by default for qemu64 on amd
1878+ * Include s390-ccw.img firmware
1879+ * have qemu-system-aarch64 Suggest: qemu-efi; this should be a stronger
1880+ relationship, but qemu-efi is still in universe right now.
1881+ * Drop patches which have been applied upstream:
1882+
1883+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 19 May 2016 12:11:36 -0500
1884+
1885 qemu (1:2.6+dfsg-1) unstable; urgency=medium
1886
1887 * new upstream release
1888@@ -909,6 +2687,106 @@ qemu (1:2.6+dfsg-1) unstable; urgency=medium
1889
1890 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 18 May 2016 14:44:14 +0300
1891
1892+qemu (1:2.5+dfsg-5ubuntu12) yakkety; urgency=medium
1893+
1894+ * Cherrypick upstream patches to support the query-gic-version QMP command
1895+ (LP: #1566564)
1896+
1897+ -- dann frazier <dannf@ubuntu.com> Tue, 05 Apr 2016 16:56:11 -0600
1898+
1899+qemu (1:2.5+dfsg-5ubuntu11) yakkety; urgency=medium
1900+
1901+ [Stefan Bader]
1902+ * Enable svm by default for qemu64 on amd (LP: #1561019)
1903+
1904+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 22 Apr 2016 16:53:55 -0500
1905+
1906+qemu (1:2.5+dfsg-5ubuntu10) xenial; urgency=medium
1907+
1908+ * qemu-system-s390x only available on s390x, so qemu-system should only
1909+ depend on it on this arch.
1910+ * have qemu-system-aarch64 Suggest: qemu-efi; this should be a stronger
1911+ relationship, but qemu-efi is still in universe right now.
1912+
1913+ -- Steve Langasek <steve.langasek@ubuntu.com> Tue, 19 Apr 2016 13:41:37 -0700
1914+
1915+qemu (1:2.5+dfsg-5ubuntu9) xenial; urgency=medium
1916+
1917+ * And actually ship the right things in qemu-system-s390x.
1918+
1919+ -- Dimitri John Ledkov <xnox@ubuntu.com> Tue, 19 Apr 2016 16:49:00 +0100
1920+
1921+qemu (1:2.5+dfsg-5ubuntu8) xenial; urgency=medium
1922+
1923+ * Create qemu-system-s390x package on ubuntu only.
1924+
1925+ -- Dimitri John Ledkov <xnox@ubuntu.com> Mon, 18 Apr 2016 10:16:19 +0100
1926+
1927+qemu (1:2.5+dfsg-5ubuntu7) xenial; urgency=medium
1928+
1929+ * Cherrypick patch from mailing list to fix qemu in sandbox. (LP: #1560149)
1930+
1931+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 11 Apr 2016 15:13:06 -0500
1932+
1933+qemu (1:2.5+dfsg-5ubuntu6) xenial; urgency=medium
1934+
1935+ * Cherrypick upstream patch vhost-user-interrupt-management-fixes.patch
1936+ (LP: #1556306)
1937+
1938+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 16 Mar 2016 16:35:22 -0700
1939+
1940+qemu (1:2.5+dfsg-5ubuntu5) xenial; urgency=medium
1941+
1942+ * Cherrypick upstream patch to fix snapshot regression (LP: #1533728)
1943+
1944+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 07 Mar 2016 18:53:34 -0800
1945+
1946+qemu (1:2.5+dfsg-5ubuntu4) xenial; urgency=medium
1947+
1948+ * d/control{-in}: Re-generate and build with libiscsi-dev now
1949+ that its in Ubuntu main (LP: #1271653).
1950+
1951+ -- James Page <james.page@ubuntu.com> Wed, 24 Feb 2016 17:59:13 +0000
1952+
1953+qemu (1:2.5+dfsg-5ubuntu3) xenial; urgency=medium
1954+
1955+ * Make -no-pie conditional, on $(CC) supporting -no-pie flag.
1956+
1957+ -- Dimitri John Ledkov <xnox@ubuntu.com> Wed, 24 Feb 2016 14:40:19 +0000
1958+
1959+qemu (1:2.5+dfsg-5ubuntu2) xenial; urgency=medium
1960+
1961+ * No-change rebuild for gnutls transition.
1962+
1963+ -- Matthias Klose <doko@ubuntu.com> Wed, 17 Feb 2016 22:27:20 +0000
1964+
1965+qemu (1:2.5+dfsg-5ubuntu1) xenial; urgency=medium
1966+
1967+ * Merge with Debian; remaining changes:
1968+ - debian/rules: do not drop the init scripts loading kvm modules
1969+ (still needed in precise in cloud archive)
1970+ - qemu-system-common.postinst:
1971+ * remove acl placed by udev, and add udevadm trigger.
1972+ * reload kvm_intel if needed to set nested=1
1973+ - qemu-system-common.preinst: add kvm group if needed
1974+ - add qemu-kvm upstart job and defaults file (rules,
1975+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
1976+ - rules,qemu-system-x86.modprobe: support use under older udevs which
1977+ do not auto-load the kvm kernel module. Enable nesting by default
1978+ on intel.
1979+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
1980+ in qemu64 cpu type.
1981+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1982+ types to ease future live vm migration.
1983+ - apport hook for qemu source package: d/source_qemu-kvm.py,
1984+ d/qemu-system-common.install
1985+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
1986+ to fix errors with missing block backends. (LP: #1495895)
1987+ - Enable pie by default, on ubuntu/s390x.
1988+ - Include s390-ccw.img firmware.
1989+
1990+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 09 Feb 2016 10:24:49 -0800
1991+
1992 qemu (1:2.5+dfsg-5) unstable; urgency=medium
1993
1994 * fix misspellings in previous debian/changelog entry
1995@@ -966,6 +2844,113 @@ qemu (1:2.5+dfsg-2) unstable; urgency=high
1996
1997 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 09 Jan 2016 21:40:43 +0300
1998
1999+qemu (1:2.5+dfsg-1ubuntu5) xenial; urgency=medium
2000+
2001+ * SECURITY UPDATE: paravirtualized drivers incautious about shared memory
2002+ contents
2003+ - debian/patches/CVE-2015-8550-1.patch: avoid double access in
2004+ hw/block/xen_blkif.h.
2005+ - debian/patches/CVE-2015-8550-2.patch: avoid reading twice in
2006+ hw/display/xenfb.c.
2007+ - CVE-2015-8550
2008+ * SECURITY UPDATE: infinite loop in ehci_advance_state
2009+ - debian/patches/CVE-2015-8558.patch: make idt processing more robust
2010+ in hw/usb/hcd-ehci.c.
2011+ - CVE-2015-8558
2012+ * SECURITY UPDATE: host memory leakage in vmxnet3
2013+ - debian/patches/CVE-2015-856x.patch: avoid memory leakage in
2014+ hw/net/vmxnet3.c.
2015+ - CVE-2015-8567
2016+ - CVE-2015-8568
2017+ * SECURITY UPDATE: buffer overflow in megasas_ctrl_get_info
2018+ - debian/patches/CVE-2015-8613.patch: initialise info object with
2019+ appropriate size in hw/scsi/megasas.c.
2020+ - CVE-2015-8613
2021+ * SECURITY UPDATE: DoS via Human Monitor Interface
2022+ - debian/patches/CVE-2015-8619.patch: fix sendkey out of bounds write
2023+ in hmp.c, include/ui/console.h, ui/input-legacy.c.
2024+ - CVE-2015-8619
2025+ * SECURITY UPDATE: incorrect array bounds check in rocker
2026+ - debian/patches/CVE-2015-8701.patch: fix an incorrect array bounds
2027+ check in hw/net/rocker/rocker.c.
2028+ - CVE-2015-8701
2029+ * SECURITY UPDATE: ne2000 OOB r/w in ioport operations
2030+ - debian/patches/CVE-2015-8743.patch: fix bounds check in ioport
2031+ operations in hw/net/ne2000.c.
2032+ - CVE-2015-8743
2033+ * SECURITY UPDATE: ahci use-after-free vulnerability in aio port commands
2034+ - debian/patches/CVE-2016-1568.patch: reset ncq object to unused on
2035+ error in hw/ide/ahci.c.
2036+ - CVE-2016-1568
2037+ * SECURITY UPDATE: DoS via null pointer dereference in vapic_write()
2038+ - debian/patches/CVE-2016-1922.patch: avoid null pointer dereference in
2039+ hw/i386/kvmvapic.c.
2040+ - CVE-2016-1922
2041+ * SECURITY UPDATE: e1000 infinite loop
2042+ - debian/patches/CVE-2016-1981.patch: eliminate infinite loops on
2043+ out-of-bounds transfer start in hw/net/e1000.c
2044+ - CVE-2016-1981
2045+ * SECURITY UPDATE: AHCI NULL pointer dereference when using FIS CLB
2046+ engines
2047+ - debian/patches/CVE-2016-2197.patch: add check before calling
2048+ dma_memory_unmap in hw/ide/ahci.c.
2049+ - CVE-2016-2197
2050+ * SECURITY UPDATE: ehci null pointer dereference in ehci_caps_write
2051+ - debian/patches/CVE-2016-2198.patch: add capability mmio write
2052+ function in hw/usb/hcd-ehci.c.
2053+ - CVE-2016-2198
2054+
2055+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 01 Feb 2016 09:39:01 -0500
2056+
2057+qemu (1:2.5+dfsg-1ubuntu4) xenial; urgency=medium
2058+
2059+ * debian/qemu-kvm-init: Call systemd-detect-virt instead of the
2060+ Ubuntu specific running-in-container wrapper. (LP: #1539016)
2061+
2062+ -- Martin Pitt <martin.pitt@ubuntu.com> Thu, 28 Jan 2016 13:24:51 +0100
2063+
2064+qemu (1:2.5+dfsg-1ubuntu3) xenial; urgency=high
2065+
2066+ * Include s390-ccw.img firmware.
2067+
2068+ -- Dimitri John Ledkov <xnox@ubuntu.com> Tue, 12 Jan 2016 15:53:43 +0000
2069+
2070+qemu (1:2.5+dfsg-1ubuntu2) xenial; urgency=medium
2071+
2072+ * Place qemu-kvm.defaults file in qemu-system-common, next to the init
2073+ scripts. Fix the comparison operator when checking KVM_HUGEPAGES.
2074+ Thanks Simon. (LP: #1531191)
2075+
2076+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 06 Jan 2016 09:45:37 -0800
2077+
2078+qemu (1:2.5+dfsg-1ubuntu1) xenial; urgency=medium
2079+
2080+ * Merge with Debian; remaining changes:
2081+ - debian/rules: do not drop the init scripts loading kvm modules
2082+ (still needed in precise in cloud archive)
2083+ - qemu-system-common.postinst:
2084+ * remove acl placed by udev, and add udevadm trigger.
2085+ * reload kvm_intel if needed to set nested=1
2086+ - qemu-system-common.preinst: add kvm group if needed
2087+ - add qemu-kvm upstart job and defaults file (rules,
2088+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2089+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2090+ do not auto-load the kvm kernel module. Enable nesting by default
2091+ on intel.
2092+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2093+ in qemu64 cpu type.
2094+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
2095+ types to ease future live vm migration.
2096+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2097+ d/qemu-system-common.install
2098+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2099+ to fix errors with missing block backends. (LP: #1495895)
2100+ - Enable pie by default, on ubuntu/s390x.
2101+ * Drop vGICv3 support patches - all is now upstream
2102+ * debian/qemu-kvm-init: handle KVM_HUGEPAGES being unset (LP: #1531191)
2103+
2104+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 05 Jan 2016 15:42:50 -0800
2105+
2106 qemu (1:2.5+dfsg-1) unstable; urgency=medium
2107
2108 * new upstream release
2109@@ -992,6 +2977,49 @@ qemu (1:2.5+dfsg-1) unstable; urgency=medium
2110
2111 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 16 Dec 2015 20:00:04 +0300
2112
2113+qemu (1:2.4+dfsg-5ubuntu3) xenial; urgency=high
2114+
2115+ * Enable pie by default, on ubuntu/s390x.
2116+
2117+ -- Dimitri John Ledkov <xnox@ubuntu.com> Mon, 07 Dec 2015 16:04:16 +0000
2118+
2119+qemu (1:2.4+dfsg-5ubuntu2) xenial; urgency=medium
2120+
2121+ * undo the libseccomp delta from debian. libseccomp is indeed available
2122+ on other arches, but we need qemu's configure script to be fixed before
2123+ we can use it on anything other than amd64|i386. Fixes FTBFS.
2124+ (LP: #1522531)
2125+
2126+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 03 Dec 2015 12:44:46 -0600
2127+
2128+qemu (1:2.4+dfsg-5ubuntu1) xenial; urgency=medium
2129+
2130+ * Merge with Debian; remaining changes:
2131+ - Update the ubuntu machine types patch to reflect upstream churn
2132+ - debian/rules: do not drop the init scripts loading kvm modules
2133+ (still needed in precise in cloud archive)
2134+ - qemu-system-common.postinst:
2135+ * remove acl placed by udev, and add udevadm trigger.
2136+ * reload kvm_intel if needed to set nested=1
2137+ - qemu-system-common.preinst: add kvm group if needed
2138+ - add qemu-kvm upstart job and defaults file (rules,
2139+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2140+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2141+ do not auto-load the kvm kernel module. Enable nesting by default
2142+ on intel.
2143+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2144+ in qemu64 cpu type.
2145+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2146+ machine type to ease future live vm migration.
2147+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2148+ d/qemu-system-common.install
2149+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2150+ to fix errors with missing block backends. (LP: #1495895)
2151+ - control-in: build with libseccomp an all architectures
2152+ - Add vGICv3 support
2153+
2154+ -- Matthias Klose <doko@ubuntu.com> Wed, 02 Dec 2015 21:31:36 +0100
2155+
2156 qemu (1:2.4+dfsg-5) unstable; urgency=medium
2157
2158 * trace-remove-malloc-tracing.patch from upstream.
2159@@ -1004,6 +3032,57 @@ qemu (1:2.4+dfsg-5) unstable; urgency=medium
2160
2161 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 29 Nov 2015 12:22:52 +0300
2162
2163+qemu (1:2.4+dfsg-4ubuntu3) xenial; urgency=medium
2164+
2165+ * SECURITY UPDATE: loopback mode heap overflow vulnerability in pcnet
2166+ - debian/patches/CVE-2015-7504.patch: leave room for CRC code in
2167+ hw/net/pcnet.c.
2168+ - CVE-2015-7504
2169+ * SECURITY UPDATE: non-loopback mode buffer overflow in pcnet
2170+ - debian/patches/CVE-2015-7512.patch: check packet length in
2171+ hw/net/pcnet.c.
2172+ - CVE-2015-7512
2173+ * SECURITY UPDATE: infinite loop in eepro100
2174+ - debian/patches/CVE-2015-8345.patch: prevent endless loop in
2175+ hw/net/eepro100.c.
2176+ - CVE-2015-8345
2177+
2178+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 01 Dec 2015 13:36:40 -0500
2179+
2180+qemu (1:2.4+dfsg-4ubuntu2) xenial; urgency=medium
2181+
2182+ * d/p/u/define-ubuntu-machine-type.patch: Fix typo in utopic definition.
2183+
2184+ -- dann frazier <dann.frazier@canonical.com> Tue, 03 Nov 2015 08:05:46 -0700
2185+
2186+qemu (1:2.4+dfsg-4ubuntu1) xenial; urgency=medium
2187+
2188+ * Merge 2.4 from unstable. Remaining changes:
2189+ - Update the ubuntu machine types patch to reflect upstream churn
2190+ - debian/rules: do not drop the init scripts loading kvm modules
2191+ (still needed in precise in cloud archive)
2192+ - qemu-system-common.postinst:
2193+ * remove acl placed by udev, and add udevadm trigger.
2194+ * reload kvm_intel if needed to set nested=1
2195+ - qemu-system-common.preinst: add kvm group if needed
2196+ - add qemu-kvm upstart job and defaults file (rules,
2197+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2198+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2199+ do not auto-load the kvm kernel module. Enable nesting by default
2200+ on intel.
2201+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2202+ in qemu64 cpu type.
2203+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2204+ machine type to ease future live vm migration.
2205+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2206+ d/qemu-system-common.install
2207+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2208+ to fix errors with missing block backends. (LP: #1495895)
2209+ - control-in: build with libseccomp an all architectures.
2210+ * Add vGICv3 support
2211+
2212+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 27 Oct 2015 13:28:58 -0500
2213+
2214 qemu (1:2.4+dfsg-4) unstable; urgency=medium
2215
2216 * applied 3 patches from upstream to fix virtio-net
2217@@ -1070,6 +3149,137 @@ qemu (1:2.3+dfsg-6) unstable; urgency=high
2218
2219 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 11 Jun 2015 20:03:40 +0300
2220
2221+qemu (1:2.3+dfsg-5ubuntu10) xenial; urgency=medium
2222+
2223+ * debian/patches/fix-curses-with-xterm-256.patch (LP: #1508466)
2224+
2225+ -- Ryan Harper <ryan.harper@canonical.com> Wed, 21 Oct 2015 08:59:29 -0500
2226+
2227+qemu (1:2.3+dfsg-5ubuntu9) wily; urgency=low
2228+
2229+ * debian/patches/upstream-fix-irq-route-entries.patch
2230+ Fix "kvm_irqchip_commit_routes: Assertion 'ret == 0' failed"
2231+ (LP: #1465935)
2232+
2233+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 09 Oct 2015 15:38:53 +0200
2234+
2235+qemu (1:2.3+dfsg-5ubuntu8) wily; urgency=medium
2236+
2237+ * Build using libseccomp on all architectures.
2238+
2239+ -- Matthias Klose <doko@ubuntu.com> Sat, 03 Oct 2015 21:12:15 +0200
2240+
2241+qemu (1:2.3+dfsg-5ubuntu7) wily; urgency=medium
2242+
2243+ * SECURITY UPDATE: denial of service via NE2000 driver
2244+ - debian/patches/CVE-2015-5278.patch: fix infinite loop in
2245+ hw/net/ne2000.c.
2246+ - CVE-2015-5278
2247+ * SECURITY UPDATE: denial of service and possible code execution via
2248+ heap overflow in NE2000 driver
2249+ - debian/patches/CVE-2015-5279.patch: validate ring buffer pointers in
2250+ hw/net/ne2000.c.
2251+ - CVE-2015-5279
2252+ * SECURITY UPDATE: denial of service via e1000 infinite loop
2253+ - debian/patches/CVE-2015-6815.patch: check bytes in hw/net/e1000.c.
2254+ - CVE-2015-6815
2255+ * SECURITY UPDATE: denial of service via illegal ATAPI commands
2256+ - debian/patches/CVE-2015-6855.patch: fix ATAPI command permissions in
2257+ hw/ide/core.c.
2258+ - CVE-2015-6855
2259+
2260+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 23 Sep 2015 15:05:51 -0400
2261+
2262+qemu (1:2.3+dfsg-5ubuntu6) wily; urgency=medium
2263+
2264+ * Make qemu-system-common and qemu-utils depend on qemu-block-extra
2265+ to fix errors with missing block backends. (LP: #1495895)
2266+ * Cherry pick fixes for vmdk stream-optimized subformat (LP: #1006655)
2267+ * Apply fix for memory corruption during live-migration in tcg mode
2268+ (LP: #1493049)
2269+ * Apply tracing patch to remove use of custom vtable in newer glibc
2270+ (LP: #1491972)
2271+
2272+ -- Ryan Harper <ryan.harper@canonical.com> Tue, 15 Sep 2015 09:37:23 -0500
2273+
2274+qemu (1:2.3+dfsg-5ubuntu5) wily; urgency=medium
2275+
2276+ * Import qcow2-handle-eagain-from-update_refcount from upstream
2277+ to fix errors when using qemu-img convert -c. (LP: #1491050)
2278+
2279+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 04 Sep 2015 16:35:56 -0500
2280+
2281+qemu (1:2.3+dfsg-5ubuntu4) wily; urgency=medium
2282+
2283+ * SECURITY UPDATE: process heap memory disclosure
2284+ - debian/patches/CVE-2015-5165.patch: check sizes in hw/net/rtl8139.c.
2285+ - CVE-2015-5165
2286+ * SECURITY UPDATE: privilege escalation via block device unplugging
2287+ - debian/patches/CVE-2015-5166.patch: properly unhook from BlockBackend
2288+ in hw/ide/piix.c.
2289+ - CVE-2015-5166
2290+ * SECURITY UPDATE: privilege escalation via memory corruption in vnc
2291+ - debian/patches/CVE-2015-5225.patch: use bytes per scanline to apply
2292+ limits in ui/vnc.c.
2293+ - CVE-2015-5225
2294+ * SECURITY UPDATE: denial of service via virtio-serial
2295+ - debian/patches/CVE-2015-5745.patch: don't assume a specific layout
2296+ for control messages in hw/char/virtio-serial-bus.c.
2297+ - CVE-2015-5745
2298+
2299+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 25 Aug 2015 09:38:43 -0400
2300+
2301+qemu (1:2.3+dfsg-5ubuntu3) wily; urgency=medium
2302+
2303+ * SECURITY UPDATE: out-of-bounds memory access in pit_ioport_read()
2304+ - debian/patches/CVE-2015-3214.patch: ignore read in hw/timer/i8254.c.
2305+ - CVE-2015-3214
2306+ * SECURITY UPDATE: heap overflow when processing ATAPI commands
2307+ - debian/patches/CVE-2015-5154.patch: check bounds and clear DRQ in
2308+ hw/ide/core.c, make sure command is completed in hw/ide/atapi.c.
2309+ - CVE-2015-5154
2310+ * SECURITY UPDATE: buffer overflow in scsi_req_parse_cdb
2311+ - debian/patches/CVE-2015-5158.patch: check length in
2312+ hw/scsi/scsi-bus.c.
2313+ - CVE-2015-5158
2314+
2315+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 27 Jul 2015 10:07:05 -0400
2316+
2317+qemu (1:2.3+dfsg-5ubuntu2) wily; urgency=medium
2318+
2319+ * SECURITY UPDATE: heap overflow in PCNET controller
2320+ - debian/patches/CVE-2015-3209.patch: check bounds in hw/net/pcnet.c.
2321+ - CVE-2015-3209
2322+
2323+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 11 Jun 2015 14:25:05 -0400
2324+
2325+qemu (1:2.3+dfsg-5ubuntu1) wily; urgency=medium
2326+
2327+ * Merge 1:2.3+dfsg-5 from Debian.
2328+ * Remaining changes:
2329+ - debian/rules: do not drop the init scripts loading kvm modules
2330+ (still needed in precise in cloud archive)
2331+ - qemu-system-common.postinst:
2332+ * remove acl placed by udev, and add udevadm trigger.
2333+ * reload kvm_intel if needed to set nested=1
2334+ - qemu-system-common.preinst: add kvm group if needed
2335+ - add qemu-kvm upstart job and defaults file (rules,
2336+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2337+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2338+ do not auto-load the kvm kernel module. Enable nesting by default
2339+ on intel.
2340+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2341+ in qemu64 cpu type.
2342+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2343+ machine type to ease future live vm migration.
2344+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2345+ d/qemu-system-common.install
2346+ * Refreshed patches:
2347+ - ubuntu/expose-vmx_qemu64cpu.patch
2348+ - ubuntu/define-ubuntu-machine-types.patch
2349+
2350+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 10 Jun 2015 14:28:39 -0500
2351+
2352 qemu (1:2.3+dfsg-5) unstable; urgency=high
2353
2354 * slirp-use-less-predictable-directory-name-in-tmp-CVE-2015-4037.patch
2355@@ -1081,6 +3291,35 @@ qemu (1:2.3+dfsg-5) unstable; urgency=high
2356
2357 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 03 Jun 2015 17:18:58 +0300
2358
2359+qemu (1:2.3+dfsg-4ubuntu1) wily; urgency=medium
2360+
2361+ * Merge 1:2.3+dfsg-4 from Debian.
2362+ * Remaining changes:
2363+ - debian/rules: do not drop the init scripts loading kvm modules
2364+ (still needed in precise in cloud archive)
2365+ - qemu-system-common.postinst:
2366+ * remove acl placed by udev, and add udevadm trigger.
2367+ * reload kvm_intel if needed to set nested=1
2368+ - qemu-system-common.preinst: add kvm group if needed
2369+ - add qemu-kvm upstart job and defaults file (rules,
2370+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2371+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2372+ do not auto-load the kvm kernel module. Enable nesting by default
2373+ on intel.
2374+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2375+ in qemu64 cpu type.
2376+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2377+ machine type to ease future live vm migration.
2378+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2379+ d/qemu-system-common.install
2380+ * Dropped all patches which are applied upstream
2381+ * Move the upstart jobs to a generic script
2382+ - add new qemu-kvm-init script
2383+ - call that from upstart and sysvrc qemu-kvm scripts
2384+ - move to qemu-system-common, which must now B/R qemu-system-{x86,ppc}
2385+
2386+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 03 Jun 2015 13:36:36 -0500
2387+
2388 qemu (1:2.3+dfsg-4) unstable; urgency=medium
2389
2390 * rules.mak-force-CFLAGS-for-all-objects-in-DSO.patch:
2391@@ -1142,6 +3381,98 @@ qemu (1:2.2+dfsg-6exp) experimental; urgency=medium
2392
2393 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 17 Apr 2015 21:54:53 +0300
2394
2395+qemu (1:2.2+dfsg-5expubuntu10) wily; urgency=medium
2396+
2397+ * SECURITY UPDATE: denial of service in vnc web
2398+ - debian/patches/CVE-2015-1779-1.patch: incrementally decode websocket
2399+ frames in ui/vnc-ws.c, ui/vnc-ws.h, ui/vnc.h.
2400+ - debian/patches/CVE-2015-1779-2.patch: limit size of HTTP headers from
2401+ websockets clients in ui/vnc-ws.c.
2402+ - CVE-2015-1779
2403+ * SECURITY UPDATE: host code execution via floppy device (VEMON)
2404+ - debian/patches/CVE-2015-3456.patch: force the fifo access to be in
2405+ bounds of the allocated buffer in hw/block/fdc.c.
2406+ - CVE-2015-3456
2407+
2408+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 13 May 2015 07:25:59 -0400
2409+
2410+qemu (1:2.2+dfsg-5expubuntu9) vivid; urgency=low
2411+
2412+ * CVE-2015-2756 / XSA-126
2413+ - xen: limit guest control of PCI command register
2414+
2415+ -- Stefan Bader <stefan.bader@canonical.com> Wed, 08 Apr 2015 10:17:45 +0200
2416+
2417+qemu (1:2.2+dfsg-5expubuntu8) vivid; urgency=medium
2418+
2419+ * debian/qemu-system-x86.qemu-kvm.upstart: fix redirection to not
2420+ accidentally create /1
2421+
2422+ -- Steve Beattie <sbeattie@ubuntu.com> Thu, 12 Mar 2015 16:46:51 -0700
2423+
2424+qemu (1:2.2+dfsg-5expubuntu7) vivid; urgency=low
2425+
2426+ * No-change rebuild to pull in libxl-4.5 (take 2: step to the right).
2427+
2428+ -- Stefan Bader <stefan.bader@canonical.com> Thu, 26 Feb 2015 08:55:35 +0100
2429+
2430+qemu (1:2.2+dfsg-5expubuntu6) vivid; urgency=low
2431+
2432+ * No-change rebuild to pull in libxl-4.5.
2433+
2434+ -- Stefan Bader <stefan.bader@canonical.com> Wed, 25 Feb 2015 13:58:37 +0100
2435+
2436+qemu (1:2.2+dfsg-5expubuntu5) vivid; urgency=medium
2437+
2438+ * debian/control-in: enable numa on architectures where numa is built
2439+ (LP: #1417937)
2440+
2441+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 12 Feb 2015 23:18:58 -0600
2442+
2443+qemu (1:2.2+dfsg-5expubuntu4) vivid; urgency=medium
2444+
2445+ [Scott Moser]
2446+ * update d/kvm.powerpc to avoid use of awk, which isn't allowed by aa
2447+ profile when started by libvirt.
2448+
2449+ [Serge Hallyn]
2450+ * add symlink qemu-system-ppc64le -> qemu-system-ppc64
2451+ * debian/rules: fix DEB_HOST_ARCh fix to ppc64el for installing qemu-kvm init script
2452+ (LP: #1419855)
2453+
2454+ [Chris J Arges]
2455+ * Determine if we are running inside a virtual environment. If running inside
2456+ a virtualized enviornment do _not_ automatically enable KSM. (LP: #1414153)
2457+
2458+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 12 Feb 2015 13:04:21 -0600
2459+
2460+qemu (1:2.2+dfsg-5expubuntu1) vivid; urgency=medium
2461+
2462+ * Merge 1:2.2+dfsg-5exp from Debian. (LP: #1409308)
2463+ - debian/rules: do not drop the init scripts loading kvm modules
2464+ (still needed in precise in cloud archive)
2465+ * Remaining changes:
2466+ - qemu-system-common.postinst:
2467+ * remove acl placed by udev, and add udevadm trigger.
2468+ * reload kvm_intel if needed to set nested=1
2469+ - qemu-system-common.preinst: add kvm group if needed
2470+ - add qemu-kvm upstart job and defaults file (rules,
2471+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2472+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2473+ do not auto-load the kvm kernel module. Enable nesting by default
2474+ on intel.
2475+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2476+ in qemu64 cpu type.
2477+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2478+ machine type to ease future live vm migration.
2479+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2480+ d/qemu-system-common.install
2481+ * Dropped all patches which are applied upstream
2482+ * Update ubuntu-vivid machine type to default to std graphics (following
2483+ upstream's lead for pc-i440fx-2.2 machine type)
2484+
2485+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 09 Feb 2015 22:31:09 -0600
2486+
2487 qemu (1:2.2+dfsg-5exp) experimental; urgency=medium
2488
2489 * fix initscript removal once again
2490@@ -1191,6 +3522,47 @@ qemu (2.2+dfsg-1exp) unstable; urgency=medium
2491
2492 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 09 Dec 2014 23:09:26 +0300
2493
2494+qemu (1:2.1+dfsg-11ubuntu2) vivid; urgency=medium
2495+
2496+ * Cherrypick upstream patch needed to allow ESx hosts to run under
2497+ kvm (LP: #1411575)
2498+
2499+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 16 Jan 2015 16:32:48 -0600
2500+
2501+qemu (1:2.1+dfsg-11ubuntu1) vivid; urgency=medium
2502+
2503+ * Merge 2.1+dfsg-11. Remaining changes:
2504+ - qemu-system-common.postinst:
2505+ * remove acl placed by udev, and add udevadm trigger.
2506+ * reload kvm_intel if needed to set nested=1
2507+ - qemu-system-common.preinst: add kvm group if needed
2508+ - add qemu-kvm upstart job and defaults file (rules,
2509+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2510+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2511+ do not auto-load the kvm kernel module. Enable nesting by default
2512+ on intel.
2513+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2514+ removed the alternatives bit later.
2515+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2516+ in qemu64 cpu type.
2517+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2518+ machine type to ease future live vm migration.
2519+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2520+ d/qemu-system-common.install
2521+ - debian/binfmt-update-in: support ppcle
2522+ * debian/binfmt-update-in
2523+ * Support-ppcle.patch
2524+ - Upstream patches to fix AArch64 emulation ignoring SPSel=0:
2525+ * d/p/target-arm-A64-Break-out-aarch64_save-restore_sp.patch
2526+ * d/p/target-arm-A64-Respect-SPSEL-in-ERET-SP-restore.patch
2527+ * d/p/target-arm-A64-Respect-SPSEL-when-taking-exceptions.patch:
2528+ * Dropped patches (upstream or now in debian's tree):
2529+ - upstream-xen_disk-fix-unmapping-of-persistent-grants.patch
2530+ - CVE-2014-7840.patch
2531+ - CVE-2014-8106.patch
2532+
2533+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 17 Dec 2014 13:57:34 -0600
2534+
2535 qemu (1:2.1+dfsg-11) unstable; urgency=medium
2536
2537 * bump epoch and reupload to cancel 2.2+dfsg-1exp upload
2538@@ -1260,6 +3632,81 @@ qemu (2.1+dfsg-8) unstable; urgency=low
2539
2540 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 27 Nov 2014 18:32:45 +0300
2541
2542+qemu (2.1+dfsg-7ubuntu5) vivid; urgency=medium
2543+
2544+ * SECURITY UPDATE: code execution via savevm data
2545+ - debian/patches/CVE-2014-7840.patch: validate parameters in
2546+ arch_init.c.
2547+ - CVE-2014-7840
2548+ * SECURITY UPDATE: code execution via cirrus vga blit regions
2549+ (LP: #1400775)
2550+ - debian/patches/CVE-2014-8106.patch: properly validate blit regions in
2551+ hw/display/cirrus_vga.c.
2552+ - CVE-2014-8106
2553+
2554+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 11 Dec 2014 14:11:52 -0500
2555+
2556+qemu (2.1+dfsg-7ubuntu4) vivid; urgency=low
2557+
2558+ * d/rules: Fix vendor check to make kvm-spice symlinks (DEB_VENDOR got
2559+ dropped and VENDOR now will be all capital UBUNTU).
2560+
2561+ -- Stefan Bader <stefan.bader@canonical.com> Mon, 08 Dec 2014 14:45:31 +0100
2562+
2563+qemu (2.1+dfsg-7ubuntu3) vivid; urgency=medium
2564+
2565+ * d/p/target-arm-A64-Break-out-aarch64_save-restore_sp.patch
2566+ d/p/target-arm-A64-Respect-SPSEL-in-ERET-SP-restore.patch
2567+ d/p/target-arm-A64-Respect-SPSEL-when-taking-exceptions.patch:
2568+ Cherry-pick of upstream patches in order to fix AArch64 emulation ignoring
2569+ SPSel=0 in certain conditions. (LP: #1349277)
2570+
2571+ -- Chris J Arges <chris.j.arges@canonical.com> Thu, 04 Dec 2014 14:17:01 -0600
2572+
2573+qemu (2.1+dfsg-7ubuntu2) vivid; urgency=low
2574+
2575+ * d/p/upstream-xen_disk-fix-unmapping-of-persistent-grants.patch:
2576+ Cherry-pick of qemu-upstream patch to fix issues with persistent
2577+ grants and the PV backend (Qdisk) (LP: #1394327).
2578+
2579+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 28 Nov 2014 13:14:37 +0100
2580+
2581+qemu (2.1+dfsg-7ubuntu1) vivid; urgency=medium
2582+
2583+ * Merge 2.1+dfsg-7. Remaining changes:
2584+ - qemu-system-common.postinst:
2585+ * remove acl placed by udev, and add udevadm trigger.
2586+ * reload kvm_intel if needed to set nested=1
2587+ - qemu-system-common.preinst: add kvm group if needed
2588+ - add qemu-kvm upstart job and defaults file (rules,
2589+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2590+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2591+ do not auto-load the kvm kernel module. Enable nesting by default
2592+ on intel.
2593+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2594+ removed the alternatives bit later.
2595+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2596+ in qemu64 cpu type.
2597+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2598+ machine type to ease future live vm migration.
2599+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2600+ d/qemu-system-common.install
2601+ - debian/binfmt-update-in: support ppcle
2602+ * debian/binfmt-update-in
2603+ * Support-ppcle.patch
2604+ * Dropped patches (upstream or now in debian's tree):
2605+ - pc-reserve-more-memory-for-acpi.patch
2606+ - CVE-2014-5388.patch
2607+ - 501-block-raw-posix-fix-disk-corruption-in-try-fiemap and
2608+ 502-block-raw-posic-use-seek-hole-ahead-of-fiemap (combined
2609+ in debian)
2610+ - CVE-2014-3615.patch
2611+ - CVE-2014-3640.patch
2612+ - CVE-2014-3689.patch
2613+ - CVE-2014-7815.patch
2614+
2615+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Sat, 22 Nov 2014 18:36:53 -0600
2616+
2617 qemu (2.1+dfsg-7) unstable; urgency=high
2618
2619 * urgency is high due to 2 security fixes
2620@@ -1311,6 +3758,119 @@ qemu (2.1+dfsg-5) unstable; urgency=medium
2621
2622 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 26 Sep 2014 17:43:26 +0400
2623
2624+qemu (2.1+dfsg-4ubuntu9) vivid; urgency=medium
2625+
2626+ * SECURITY UPDATE: information disclosure via vga driver
2627+ - debian/patches/CVE-2014-3615.patch: return the correct memory size,
2628+ sanity check register writes, and don't use fixed buffer sizes in
2629+ hw/display/qxl.c, hw/display/vga.c, hw/display/vga_int.h,
2630+ ui/spice-display.c.
2631+ - CVE-2014-3615
2632+ * SECURITY UPDATE: denial of service via slirp NULL pointer deref
2633+ - debian/patches/CVE-2014-3640.patch: make sure socket is not just a
2634+ stub in slirp/udp.c.
2635+ - CVE-2014-3640
2636+ * SECURITY UPDATE: possible privilege escalation via vmware-vga driver
2637+ - debian/patches/CVE-2014-3689.patch: verify rectangles in
2638+ hw/display/vmware_vga.c.
2639+ - CVE-2014-3689
2640+ * SECURITY UPDATE: denial of service via VNC console
2641+ - debian/patches/CVE-2014-7815.patch: validate bits_per_pixel in
2642+ ui/vnc.c.
2643+ - CVE-2014-7815
2644+
2645+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 13 Nov 2014 07:31:03 -0500
2646+
2647+qemu (2.1+dfsg-4ubuntu8) vivid; urgency=medium
2648+
2649+ * Support qemu-kvm on x32, arm64, ppc64 and pp64el architectures
2650+ (LP: #1389897) (Patch thanks to mwhudson, BenC, and infinity)
2651+
2652+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 11 Nov 2014 15:51:47 -0600
2653+
2654+qemu (2.1+dfsg-4ubuntu7) vivid; urgency=medium
2655+
2656+ * Apply two patches to fix intermittent qemu-img corruption
2657+ (LP: #1368815)
2658+ - 501-block-raw-posix-fix-disk-corruption-in-try-fiemap
2659+ - 502-block-raw-posic-use-seek-hole-ahead-of-fiemap
2660+
2661+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 29 Oct 2014 22:31:43 -0500
2662+
2663+qemu (2.1+dfsg-4ubuntu6) utopic; urgency=medium
2664+
2665+ * debian/control: slof is moving into main, so we can depend on qemu-slof as
2666+ debian does.
2667+
2668+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 15 Oct 2014 22:01:27 +0200
2669+
2670+qemu (2.1+dfsg-4ubuntu5) utopic; urgency=medium
2671+
2672+ * debian/binfmt-update-in: don't blacklist ppc64le on ppc64 and vice
2673+ versa.
2674+ * Drop Support-ppc64le.pach, as that architecture appears to not exist yet.
2675+ * update d/p/ubuntu/define-ubuntu-machine-types.patch to keep -M pc pointing
2676+ to latest upstream machine type, rather than distro one. Add 'ubuntu'
2677+ machine type for that.
2678+
2679+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 06 Oct 2014 13:41:31 -0500
2680+
2681+qemu (2.1+dfsg-4ubuntu4) utopic; urgency=medium
2682+
2683+ * debian/qemu-system-x86.qemu-kvm.upstart: create /dev/kvm in a
2684+ container. (LP: #1370199)
2685+ * load kvm module on ppc64le at boot (LP: #1369785)
2686+ - debian/rules: install qemu-kvm on ppc64el
2687+ - add debian/qemu-system-ppc.qemu-kvm.{upstart,default} to autoload the
2688+ kvm-hv module if available
2689+ * qemu-system-x86.maintscript: remove accidentally installed
2690+ /etc/init.d/qemu-system-x86 (from 2.0.0+dfsg-6ubuntu1 and a few earlier)
2691+ * rename qemu-system-x86 init script to qemu-kvm so it gets installed in
2692+ ubuntu.
2693+
2694+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 17 Sep 2014 14:20:12 -0500
2695+
2696+qemu (2.1+dfsg-4ubuntu3) utopic; urgency=medium
2697+
2698+ * Re-stick the trusty machine type to 2.0 (where it must always stay) and
2699+ define a new, default, pc-i440fx-utopic machine type (LP: #1369481)
2700+
2701+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 15 Sep 2014 14:04:57 -0500
2702+
2703+qemu (2.1+dfsg-4ubuntu2) utopic; urgency=medium
2704+
2705+ * move kvm_intel nested setting to qemu-system-x86.postinst.
2706+
2707+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 12 Sep 2014 23:12:52 +0000
2708+
2709+qemu (2.1+dfsg-4ubuntu1) utopic; urgency=medium
2710+
2711+ * Merge new debian release
2712+ * Remaining changes:
2713+ - qemu-system-common.postinst:
2714+ * remove acl placed by udev, and add udevadm trigger.
2715+ * reload kvm_intel if needed to set nested=1
2716+ - qemu-system-common.preinst: add kvm group if needed
2717+ - add qemu-kvm upstart job and defaults file (rules,
2718+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2719+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2720+ do not auto-load the kvm kernel module. Enable nesting by default
2721+ on intel.
2722+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2723+ removed the alternatives bit later.
2724+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2725+ in qemu64 cpu type.
2726+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2727+ machine type to ease future live vm migration.
2728+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2729+ d/qemu-system-common.install
2730+ - debian/binfmt-update-in: support ppcle
2731+ * debian/binfmt-update-in
2732+ * Support-ppcle.patch
2733+ - d/p/CVE-2014-5388.patch
2734+
2735+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 09 Sep 2014 17:56:15 -0500
2736+
2737 qemu (2.1+dfsg-4) unstable; urgency=medium
2738
2739 * mention libnuma-dev but not enable for now
2740@@ -1328,6 +3888,59 @@ qemu (2.1+dfsg-4) unstable; urgency=medium
2741
2742 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 31 Aug 2014 09:32:59 +0400
2743
2744+qemu (2.1+dfsg-3ubuntu4) utopic; urgency=medium
2745+
2746+ * SECURITY UPDATE: memory disclosure via out-of-bounds array access
2747+ - debian/patches/CVE-2014-5388.patch: fix check in hw/acpi/pcihp.c.
2748+ - CVE-2014-5388
2749+
2750+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 09 Sep 2014 08:26:24 -0400
2751+
2752+qemu (2.1+dfsg-3ubuntu3) utopic; urgency=medium
2753+
2754+ * replace d/p/revert-acpi-table-size-bump with
2755+ pc-reserve-more-memory-for-acpi.patch from upstream
2756+ * debian/binfmt-update-in
2757+ - don't run in a container
2758+ - add ppc64le as target (LP: #1358268)
2759+ * Add experimental ppcle support (LP: #1358268)
2760+
2761+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 27 Aug 2014 18:24:32 -0500
2762+
2763+qemu (2.1+dfsg-3ubuntu2) utopic; urgency=medium
2764+
2765+ * revert-acpi-table-size-bump - get qemu -kernel working again.
2766+
2767+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 15 Aug 2014 15:33:24 -0500
2768+
2769+qemu (2.1+dfsg-3ubuntu1) utopic; urgency=medium
2770+
2771+ * Merge new debian release
2772+ * Remaining changes:
2773+ - control-in: stick to libsdl1.2-dev.
2774+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
2775+ qemu-bridge-helper
2776+ - qemu-system-common.postinst: remove acl placed by udev,
2777+ and add udevadm trigger.
2778+ - qemu-system-common.preinst: add kvm group if needed
2779+ - add qemu-kvm upstart job and defaults file (rules,
2780+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2781+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2782+ do not auto-load the kvm kernel module. Enable nesting by default
2783+ on intel.
2784+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2785+ removed the alternatives bit later.
2786+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2787+ in qemu64 cpu type.
2788+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2789+ machine type to ease future live vm migration.
2790+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2791+ d/qemu-system-common.install
2792+ * Upstart job: use getent group to check for kvm group
2793+ * apport: 'qemu' doesn't exist any more, so check for any qemu* tasks
2794+
2795+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 15 Aug 2014 08:44:54 -0500
2796+
2797 qemu (2.1+dfsg-3) unstable; urgency=medium
2798
2799 * set SHELL = /bin/sh -e, so that more complex shell constructs
2800@@ -1354,6 +3967,42 @@ qemu (2.1+dfsg-3) unstable; urgency=medium
2801
2802 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 14 Aug 2014 14:30:24 +0400
2803
2804+qemu (2.1+dfsg-2ubuntu2) utopic; urgency=medium
2805+
2806+ * reload kvm_intel if needed to set the nested=Y flag (LP: #1324174)
2807+
2808+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 11 Aug 2014 12:58:50 -0500
2809+
2810+qemu (2.1+dfsg-2ubuntu1) utopic; urgency=medium
2811+
2812+ * Merge new debian release
2813+ * Remaining changes:
2814+ - qemu-system-x86.links: add eepro100.rom link, drop links which we
2815+ have in ipxe-qemu package.
2816+ - control-in: stick to libsdl1.2-dev.
2817+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
2818+ qemu-bridge-helper
2819+ - qemu-system-common.postinst: remove acl placed by udev,
2820+ and add udevadm trigger.
2821+ - qemu-system-common.preinst: add kvm group if needed
2822+ - add qemu-kvm upstart job and defaults file (rules,
2823+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2824+ - debian/rules: add qemu-kvm-spice
2825+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2826+ do not auto-load the kvm kernel module. Enable nesting by default
2827+ on intel.
2828+ - binfmt-update-in: make sure to filter out compat arches.
2829+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2830+ removed the alternatives bit later.
2831+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2832+ in qemu64 cpu type.
2833+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2834+ machine type to ease future live vm migration.
2835+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2836+ d/qemu-system-common.install
2837+
2838+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 05 Aug 2014 13:53:06 -0500
2839+
2840 qemu (2.1+dfsg-2) unstable; urgency=medium
2841
2842 * l2tp-linux-only.patch: fix FTBFS on kfreebsd
2843@@ -1405,6 +4054,43 @@ qemu (2.0.0+dfsg-7) unstable; urgency=medium
2844
2845 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 24 Jul 2014 16:51:16 +0400
2846
2847+qemu (2.0.0+dfsg-6ubuntu2) utopic; urgency=medium
2848+
2849+ * d/qemu-system-x86.qemu-kvm.upstart: change the early-exit check from
2850+ /usr/bin/kvm to qemu-system-x86_64. (LP: #1348551)
2851+
2852+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 25 Jul 2014 08:35:02 -0500
2853+
2854+qemu (2.0.0+dfsg-6ubuntu1) utopic; urgency=medium
2855+
2856+ * Merge 2.0.0+dfsg-6. Remaining changes:
2857+ - qemu-system-x86.links: add eepro100.rom link, drop links which we
2858+ have in ipxe-qemu package.
2859+ - control-in: stick to libgnutls-dev and libsdl1.2-dev.
2860+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
2861+ qemu-bridge-helper
2862+ - qemu-system-common.postinst: remove acl placed by udev,
2863+ and add udevadm trigger.
2864+ - qemu-system-common.preinst: add kvm group if needed
2865+ - add qemu-kvm upstart job and defaults file (rules,
2866+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2867+ - debian/rules: add qemu-kvm-spice
2868+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2869+ do not auto-load the kvm kernel module. Enable nesting by default
2870+ on intel.
2871+ - binfmt-update-in: make sure to filter out compat arches.
2872+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2873+ removed the alternatives bit later.
2874+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2875+ in qemu64 cpu type.
2876+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2877+ machine type to ease future live vm migration.
2878+ - re-introduce apport hook for qemu source package:
2879+ d/source_qemu-kvm.py, d/qemu-system-common.install
2880+ * enable-build-dep on libjpeg8-dev - which is now in main
2881+
2882+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 23 Jun 2014 14:52:54 -0500
2883+
2884 qemu (2.0.0+dfsg-6) unstable; urgency=medium
2885
2886 * build-depend on libgnutls28-dev not libgnutls-dev
2887@@ -1448,6 +4134,59 @@ qemu (2.0.0+dfsg-3) unstable; urgency=low
2888
2889 -- Michael Tokarev <mjt@tls.msk.ru> Mon, 21 Apr 2014 12:34:03 +0400
2890
2891+qemu (2.0.0+dfsg-2ubuntu3) utopic; urgency=medium
2892+
2893+ * remove alternatives for qemu: different architectures
2894+ aren't really alternatives and never had been (LP: #1316829)
2895+
2896+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 07 May 2014 15:12:33 +0000
2897+
2898+qemu (2.0.0+dfsg-2ubuntu2) utopic; urgency=medium
2899+
2900+ * debian/rules: install the proper /etc/init/qemu-kvm.conf (LP: #1315402)
2901+ * debian/control: drop the versioning requirement from libfdt-dev
2902+ build-dependency, as it is longer needed (LP: #1295072)
2903+
2904+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 02 May 2014 11:43:44 -0500
2905+
2906+qemu (2.0.0+dfsg-2ubuntu1) trusty-proposed; urgency=medium
2907+
2908+ * Merge 2.0.0+dfsg-2
2909+ * Incorporates a fix for spice users (LP: #1309452)
2910+ * drop patch kvm_physical_sync_dirty_bitmap-ignore-ENOENT-from-kv.patch, as
2911+ the regression requiring it was reverted for 2.0 upstream.
2912+ * remove qemu-system-common depends on the qemu-system-aarch64 metapackage
2913+ * debian/qemu-debootstrap: add arm64
2914+ * Remaining changes from debian:
2915+ - keep qemu 'alternative' (not something to change in SRU)
2916+ - debian/control and debian/control-in:
2917+ * versioned libfdt-dev check, until libfdt is fixed in precise
2918+ * enable rbd
2919+ * remove ovmf Recommends, as it is in multiverse
2920+ * use libsdl1.2, not libsdl2, since libsdl2-dev is in universe
2921+ * add a qemu-system-aarch64 metapackage for transitions from trusty
2922+ development version. This can be removed after trusty.
2923+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
2924+ qemu-bridge-helper
2925+ - qemu-system-common.postinst: fix /dev/kvm acls
2926+ - qemu-system-common.preinst: add kvm group if needed
2927+ - qemu-system-x86.links: add eepro100.rom link, drop links which we
2928+ have in ipxe-qemu package.
2929+ - qemu-system-x86.modprobe: set module options for older releases
2930+ - qemu-system-x86.qemu-kvm.default: defaults for the upstart job
2931+ - qemu-system-x86.qemu-kvm.upstart: qemu-kvm upstart job
2932+ - qemu-user-static.postinst-in: remove qemu-arm64-static on arm64
2933+ - debian/rules
2934+ * add legacy kvm-spice link
2935+ * fix ppc and arm slections
2936+ * add aarch64 to user_targets
2937+ - debian/patches/ubuntu/define-trusty-machine-type.patch: define a
2938+ pc-i440fx-trusty machine type as the default.
2939+ - debian/patches/ubuntu/expose-vmx_qemu64cpu.patch: support nesting by
2940+ default in qemu64 cpu time.
2941+
2942+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 18 Apr 2014 09:23:27 -0500
2943+
2944 qemu (2.0.0+dfsg-2) unstable; urgency=medium
2945
2946 * resurrect 02_kfreebsd.patch, -- without it qemu FTBFS on current
2947@@ -1507,6 +4246,50 @@ qemu (2.0.0~rc1+dfsg-1exp) experimental; urgency=low
2948
2949 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 05 Apr 2014 16:23:48 +0400
2950
2951+qemu (2.0.0~rc1+dfsg-0ubuntu3) trusty; urgency=medium
2952+
2953+ * d/p/ubuntu/kvm_physical_sync_dirty_bitmap-ignore-ENOENT-from-kv.patch
2954+ don't abort() just because the kernel has no dirty bitmap.
2955+ (LP: #1303926)
2956+
2957+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 08 Apr 2014 22:32:00 -0500
2958+
2959+qemu (2.0.0~rc1+dfsg-0ubuntu2) trusty; urgency=medium
2960+
2961+ * define-trusty-machine-type.patch: update the trusty machine type name to
2962+ pc-i440fx-trusty (LP: #1304107)
2963+
2964+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 08 Apr 2014 11:49:04 -0500
2965+
2966+qemu (2.0.0~rc1+dfsg-0ubuntu1) trusty; urgency=medium
2967+
2968+ * Merge 2.0.0-rc1
2969+ * debian/rules: consolidate ppc filter entries.
2970+ * Move qemu-system-arch64 into qemu-system-arm
2971+ * debian/patches/define-trusty-machine-type.patch: define a trusty machine
2972+ type, currently the same as pc-i440fx-2.0, to put is in a better position
2973+ to enable live migrations from trusty onward. (LP: #1294823)
2974+ * debian/control: build-dep on libfdt >= 1.4.0 (LP: #1295072)
2975+ * Merge latest upstream git to commit dc9528f
2976+ * Debian/rules:
2977+ - remove -enable-uname-release=2.6.32
2978+ - don't make the aarch64 target Ubuntu-specific.
2979+ * Remove patches which are now upstream:
2980+ - fix-smb-security-share.patch
2981+ - slirp-smb-redirect-port-445-too.patch
2982+ - linux-user-Implement-sendmmsg-syscall.patch (better version is upstream)
2983+ - signal-added-a-wrapper-for-sigprocmask-function.patch
2984+ - ubuntu/signal-sigsegv-protection-on-do_sigprocmask.patch
2985+ - ubuntu/Don-t-block-SIGSEGV-at-more-places.patch
2986+ - ubuntu/ppc-force-cpu-threads-count-to-be-power-of-2.patch
2987+ * add link for /usr/share/qemu/bios-256k.bin
2988+ * Remove all linaro patches.
2989+ * Remove all arm64/ patches. Many but not all are upstream.
2990+ * Remove CVE-2013-4377.patch which is upstream.
2991+ * debian/control-in: don't make qemu-system-aarch64 ubuntu-specific
2992+
2993+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 25 Feb 2014 22:31:43 -0600
2994+
2995 qemu (1.7.0+dfsg-9) unstable; urgency=medium
2996
2997 * remove rbd/rados/ceph support *again*, till they'll actually provide
2998@@ -1571,6 +4354,104 @@ qemu (1.7.0+dfsg-4) unstable; urgency=medium
2999
3000 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 12 Mar 2014 18:34:03 +0400
3001
3002+qemu (1.7.0+dfsg-3ubuntu7) trusty; urgency=low
3003+
3004+ * No-change rebuild to build with libxen-4.4.
3005+
3006+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 21 Mar 2014 10:04:36 +0100
3007+
3008+qemu (1.7.0+dfsg-3ubuntu6) trusty; urgency=medium
3009+
3010+ * d/p/ubuntu/ppc-force-cpu-threads-count-to-be-power-of-2.patch: cherrypick
3011+ upstream patch to force cpu count on ppc to be a power of 2. (LP: #1279682)
3012+
3013+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 11 Mar 2014 00:03:00 -0500
3014+
3015+qemu (1.7.0+dfsg-3ubuntu5) trusty; urgency=medium
3016+
3017+ [ dann frazier ]
3018+ * Add patches from the susematz tree to avoid intermittent segfaults:
3019+ - ubuntu/signal-added-a-wrapper-for-sigprocmask-function.patch
3020+ - ubuntu/signal-sigsegv-protection-on-do_sigprocmask.patch
3021+ - ubuntu/Don-t-block-SIGSEGV-at-more-places.patch
3022+
3023+ [ Serge Hallyn ]
3024+ * Modify do_sigprocmask to only change behavior for aarch64.
3025+ (LP: #1285363)
3026+
3027+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 06 Mar 2014 16:15:50 -0600
3028+
3029+qemu (1.7.0+dfsg-3ubuntu4) trusty; urgency=medium
3030+
3031+ [ Steve Langasek ]
3032+ * Merge debian/control with unreleased Debian branch: our architecture
3033+ lists should now be in sync.
3034+
3035+ [ Dann Frazier ]
3036+ * ubuntu/linux-user-Implement-sendmmsg-syscall.patch: Fix user mode DNS
3037+ on arm64 and maybe others. (LP: #1284344)
3038+
3039+ [ Serge Hallyn ]
3040+ * Move the OVMF.fd link to the ovmf package.
3041+
3042+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 21 Feb 2014 12:14:53 -0800
3043+
3044+qemu (1.7.0+dfsg-3ubuntu3) trusty; urgency=medium
3045+
3046+ * Add ppc64el to the architecture list (supposedly added in the previous
3047+ upload, but really wasn't).
3048+
3049+ -- Steve Langasek <steve.langasek@ubuntu.com> Thu, 20 Feb 2014 23:40:07 -0800
3050+
3051+qemu (1.7.0+dfsg-3ubuntu2) trusty; urgency=medium
3052+
3053+ * Backport changes to enable qemu-user-static support for aarch64
3054+ * debian/control: add ppc64el to Architectures
3055+ * debian/rules: only install qemu-system-aarch64 on arm64.
3056+ Fixes a FTBFS when built twice in a row on non-arm64 due to a stale
3057+ debian/qemu-system-aarch64 directory
3058+
3059+ -- dann frazier <dann.frazier@canonical.com> Tue, 11 Feb 2014 15:41:53 -0700
3060+
3061+qemu (1.7.0+dfsg-3ubuntu1) trusty; urgency=medium
3062+
3063+ * Fix broken filter_binfmts
3064+ * Remove use of dpkg-version in postinsts, as we're not Depending on
3065+ dpkg-dev.
3066+
3067+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 05 Feb 2014 21:57:38 -0600
3068+
3069+qemu (1.7.0+dfsg-3ubuntu1~ppa1) trusty; urgency=medium
3070+
3071+ * Merge 1.7.0+dfsg-3 from debian. Remaining changes:
3072+ - debian/patches/ubuntu:
3073+ * expose-vmx_qemu64cpu.patch
3074+ * linaro (omap3) and arm64 patches
3075+ * ubuntu/target-ppc-add-stubs-for-kvm-breakpoints: fix FTBFS
3076+ on ppc
3077+ * ubuntu/CVE-2013-4377.patch: fix denial of service via virtio
3078+ - debian/qemu-system-x86.modprobe: set kvm_intel nested=1 options
3079+ - debian/control:
3080+ * add arm64 to Architectures
3081+ * add qemu-common and qemu-system-aarch64 packages
3082+ - debian/qemu-system-common.install: add debian/tmp/usr/lib
3083+ - debian/qemu-system-common.preinst: add kvm group
3084+ - debian/qemu-system-common.postinst: remove acl placed by udev,
3085+ and add udevadm trigger.
3086+ - qemu-system-x86.links: add eepro100.rom, remove pxe-virtio,
3087+ pxe-e1000 and pxe-rtl8139.
3088+ - add qemu-system-x86.qemu-kvm.upstart and .default
3089+ - qemu-user-static.postinst-in: remove arm64 binfmt
3090+ - debian/rules:
3091+ * allow parallel build
3092+ * add aarch64 to system_targets and sys_systems
3093+ * add qemu-kvm-spice links
3094+ * install qemu-system-x86.modprobe
3095+ - add debian/qemu-system-common.links for OVMF.fd link
3096+ * Remove kvm-img, kvm-nbd, kvm-ifup and kvm-ifdown symlinks.
3097+
3098+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 04 Feb 2014 12:13:08 -0600
3099+
3100 qemu (1.7.0+dfsg-3) unstable; urgency=low
3101
3102 * qemu-kvm: fix versions for Breaks/Replaces/Depends on qemu-system-x86
3103@@ -1596,6 +4477,121 @@ qemu (1.7.0+dfsg-3) unstable; urgency=low
3104
3105 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 16 Jan 2014 15:17:46 +0400
3106
3107+qemu (1.7.0+dfsg-2ubuntu9) trusty; urgency=medium
3108+
3109+ * debian/qemu-user-static.postinst-in: remove arm64 qemu-user binfmt, which
3110+ may have been installed up to 1.6.0+dfsg-2ubuntu4 (LP: #1273654)
3111+
3112+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 28 Jan 2014 14:41:20 +0000
3113+
3114+qemu (1.7.0+dfsg-2ubuntu8) trusty; urgency=medium
3115+
3116+ * SECURITY UPDATE: denial of service via virtio device hot-plugging
3117+ - debian/patches/CVE-2013-4377.patch: upstream commits to refactor
3118+ virtio device unplugging.
3119+ - CVE-2013-4377
3120+
3121+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 27 Jan 2014 09:10:37 -0500
3122+
3123+qemu (1.7.0+dfsg-2ubuntu7) trusty; urgency=medium
3124+
3125+ * d/p/target-ppc-add-stubs-for-kvm-breakpoints: fix FTBFS on
3126+ powerpc.
3127+
3128+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 22 Jan 2014 11:59:26 -0600
3129+
3130+qemu (1.7.0+dfsg-2ubuntu6) trusty; urgency=medium
3131+
3132+ [ Serge Hallyn ]
3133+ * add arm64 patchset from upstream. The three arm virt patches previously
3134+ pushed are in that set, so drop them.
3135+
3136+ [ dann frazier ]
3137+ * Add packaging for qemu-system-aarch64. This package is currently only
3138+ available for arm64, as full software emulation is not yet supported.
3139+
3140+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 10 Jan 2014 12:19:08 -0600
3141+
3142+qemu (1.7.0+dfsg-2ubuntu5) trusty; urgency=medium
3143+
3144+ * Drop d/p/fix-pci-add: upstream does not intend for pci_add to be
3145+ supported any longer.
3146+ * Add patchset from git://git.linaro.org/qemu/qemu-linaro.git#rebasing
3147+ * Refresh debian/patches/hw_arm_add_virt_platform.patch against context
3148+ churn caused by linaro patchset.
3149+ * debian/rules: enable parallel builds.
3150+
3151+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 03 Jan 2014 10:53:17 -0600
3152+
3153+qemu (1.7.0+dfsg-2ubuntu4) trusty; urgency=medium
3154+
3155+ * d/control: enable usbredir (LP: 1126390)
3156+
3157+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 02 Jan 2014 08:55:43 -0600
3158+
3159+qemu (1.7.0+dfsg-2ubuntu3) trusty; urgency=medium
3160+
3161+ * add missing arm virt patches from the mach-virt-v7 branch of
3162+ git://git.linaro.org/people/cdall/qemu-arm.git
3163+
3164+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 18 Dec 2013 12:25:59 -0600
3165+
3166+qemu (1.7.0+dfsg-2ubuntu2) trusty; urgency=medium
3167+
3168+ * debian/control: add arm64 to list of architectures.
3169+
3170+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 12 Dec 2013 10:22:47 -0600
3171+
3172+qemu (1.7.0+dfsg-2ubuntu1) trusty; urgency=low
3173+
3174+ * Merge 1.7.0+dfsg-2 from debian experimental. Remaining changes:
3175+ - debian/control
3176+ * update maintainer
3177+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3178+ from build-deps
3179+ * enable rbd
3180+ * add qemu-system and qemu-common B/R to qemu-keymaps
3181+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3182+ qemu-system-common
3183+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3184+ - add qemu-common, qemu-kvm, kvm to B/R
3185+ - remove openbios-sparc from qemu-system-sparc D
3186+ - drop openbios-ppc and openhackware Depends to Suggests (for now)
3187+ * qemu-system-x86:
3188+ - add qemu-common to Breaks/Replaces.
3189+ - add cpu-checker to Recommends.
3190+ * qemu-user: add B/R:qemu-kvm
3191+ * qemu-kvm:
3192+ - add armhf armel powerpc sparc to Architecture
3193+ - C/R/P: qemu-kvm-spice
3194+ * add qemu-common package
3195+ * drop qemu-slof which is not packaged in ubuntu
3196+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3197+ - qemu-system-x86.links:
3198+ * remove pxe rom links which are in kvm-ipxe
3199+ - debian/rules
3200+ * add kvm-spice symlink to qemu-kvm
3201+ * call dh_installmodules for qemu-system-x86
3202+ * update dh_installinit to install upstart script
3203+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3204+ - Add qemu-utils.links for kvm-* symlinks.
3205+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3206+ - Add qemu-system-x86.modprobe to set nesting=1
3207+ - Add qemu-system-common.preinst to add kvm group
3208+ - qemu-system-common.postinst: remove bad group acl if there, then have
3209+ udev relabel /dev/kvm.
3210+ - New linaro patches from qemu-linaro rebasing branch
3211+ - Dropped patches:
3212+ * linaro patchset
3213+ * mach-virt patchset
3214+ - Kept patches:
3215+ * expose_vms_qemu64cpu.patch
3216+ * fix-pci-add
3217+ * qemu-system-common.install: add debian/tmp/usr/lib to install the
3218+ qemu-bridge-helper
3219+
3220+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Sat, 07 Dec 2013 06:08:11 +0000
3221+
3222 qemu (1.7.0+dfsg-2) unstable; urgency=low
3223
3224 * switch from vgabios to seavgabios
3225@@ -1625,6 +4621,73 @@ qemu (1.7.0+dfsg-1) unstable; urgency=low
3226
3227 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 28 Nov 2013 03:14:21 +0400
3228
3229+qemu (1.6.0+dfsg-2ubuntu2) trusty; urgency=low
3230+
3231+ * debian/control: qemu-utils must Replace: qemu-kvm as it did in raring,
3232+ to prevent lts-to-lts updates from breaking. (LP: #1243403)
3233+
3234+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 23 Oct 2013 14:31:05 -0500
3235+
3236+qemu (1.6.0+dfsg-2ubuntu1) trusty; urgency=low
3237+
3238+ * Merge 1.6.0~rc0+dfsg-2exp from debian experimental. Remaining changes:
3239+ - debian/control
3240+ * update maintainer
3241+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3242+ from build-deps
3243+ * enable rbd
3244+ * add qemu-system and qemu-common B/R to qemu-keymaps
3245+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3246+ qemu-system-common
3247+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3248+ - add qemu-kvm to Provides
3249+ - add qemu-common, qemu-kvm, kvm to B/R
3250+ - remove openbios-sparc from qemu-system-sparc D
3251+ - drop openbios-ppc and openhackware Depends to Suggests (for now)
3252+ * qemu-system-x86:
3253+ - add qemu-common to Breaks/Replaces.
3254+ - add cpu-checker to Recommends.
3255+ * qemu-user: add B/R:qemu-kvm
3256+ * qemu-kvm:
3257+ - add armhf armel powerpc sparc to Architecture
3258+ - C/R/P: qemu-kvm-spice
3259+ * add qemu-common package
3260+ * drop qemu-slof which is not packaged in ubuntu
3261+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3262+ - qemu-system-x86.links:
3263+ * remove pxe rom links which are in kvm-ipxe
3264+ * add symlink for kvm.1 manpage
3265+ - debian/rules
3266+ * add kvm-spice symlink to qemu-kvm
3267+ * call dh_installmodules for qemu-system-x86
3268+ * update dh_installinit to install upstart script
3269+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3270+ - Add qemu-utils.links for kvm-* symlinks.
3271+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3272+ - Add qemu-system-x86.modprobe to set nesting=1
3273+ - Add qemu-system-common.preinst to add kvm group
3274+ - qemu-system-common.postinst: remove bad group acl if there, then have
3275+ udev relabel /dev/kvm.
3276+ - New linaro patches from qemu-linaro rebasing branch
3277+ - Dropped patches:
3278+ * xen-simplify-xen_enabled.patch
3279+ * sparc-linux-user-fix-missing-symbols-in-.rel-.rela.plt-sections.patch
3280+ * main_loop-do-not-set-nonblocking-if-xen_enabled.patch
3281+ * xen_machine_pv-do-not-create-a-dummy-CPU-in-machine-.patch
3282+ * virtio-rng-fix-crash
3283+ - Kept patches:
3284+ * expose_vms_qemu64cpu.patch - updated
3285+ * linaro arm patches from qemu-linaro rebasing branch
3286+ - New patches:
3287+ * fix-pci-add: change CONFIG variable in ifdef to make sure that
3288+ pci_add is defined.
3289+ * Add linaro patches
3290+ * Add experimental mach-virt patches for arm virtualization.
3291+ * qemu-system-common.install: add debian/tmp/usr/lib to install the
3292+ qemu-bridge-helper
3293+
3294+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 22 Oct 2013 22:47:07 -0500
3295+
3296 qemu (1.6.0+dfsg-2) unstable; urgency=low
3297
3298 * Build-depend in seccomp again once it is in -testing
3299@@ -1695,6 +4758,89 @@ qemu (1.5.0+dfsg-4) unstable; urgency=medium
3300
3301 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 06 Jun 2013 01:50:32 +0400
3302
3303+qemu (1.5.0+dfsg-3ubuntu6) trusty; urgency=low
3304+
3305+ * No change rebuild for new seccomp.
3306+
3307+ -- Stéphane Graber <stgraber@ubuntu.com> Mon, 21 Oct 2013 18:34:50 -0400
3308+
3309+qemu (1.5.0+dfsg-3ubuntu5) saucy; urgency=low
3310+
3311+ * Cherrypick upstream patch to fix crash with rng device (LP: #1235017)
3312+ - virtio-rng-fix-crash
3313+
3314+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 09 Oct 2013 17:46:49 -0500
3315+
3316+qemu (1.5.0+dfsg-3ubuntu4) saucy; urgency=low
3317+
3318+ * Re-introduce snippet in upstart job to load kvm modules if needed.
3319+ (LP: #1218459)
3320+
3321+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 16 Sep 2013 22:43:52 +0000
3322+
3323+qemu (1.5.0+dfsg-3ubuntu3) saucy; urgency=low
3324+
3325+ * Cherry-picking three Xen related patches targetted for qemu-stable:
3326+ * xen-simplify-xen_enabled.patch
3327+ * main_loop-do-not-set-nonblocking-if-xen_enabled.patch
3328+ * xen_machine_pv-do-not-create-a-dummy-CPU-in-machine-.patch
3329+
3330+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 26 Jul 2013 15:01:44 +0200
3331+
3332+qemu (1.5.0+dfsg-3ubuntu2) saucy; urgency=low
3333+
3334+ * Drop openbios-ppc and openhackware Depends to Suggests for now.
3335+
3336+ -- Adam Conrad <adconrad@ubuntu.com> Wed, 05 Jun 2013 03:23:56 -0600
3337+
3338+qemu (1.5.0+dfsg-3ubuntu1) saucy; urgency=low
3339+
3340+ * Merge 1.5.0+dfs-3 from debian unstable. Remaining changes:
3341+ - debian/control
3342+ * update maintainer
3343+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3344+ from build-deps
3345+ * enable rbd
3346+ * add qemu-system and qemu-common B/R to qemu-keymaps
3347+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3348+ qemu-system-common
3349+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3350+ - add qemu-kvm to Provides
3351+ - add qemu-common, qemu-kvm, kvm to B/R
3352+ - remove openbios-sparc from qemu-system-sparc D
3353+ * qemu-system-x86:
3354+ - add qemu-common to Breaks/Replaces.
3355+ - add cpu-checker to Recommends.
3356+ * qemu-user: add B/R:qemu-kvm
3357+ * qemu-kvm:
3358+ - add armhf armel powerpc sparc to Architecture
3359+ - C/R/P: qemu-kvm-spice
3360+ * add qemu-common package
3361+ * drop qemu-slof which is not packaged in ubuntu
3362+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3363+ - qemu-system-x86.links:
3364+ * remove pxe rom links which are in kvm-ipxe
3365+ * add symlink for kvm.1 manpage
3366+ - debian/rules
3367+ * add kvm-spice symlink to qemu-kvm
3368+ * call dh_installmodules for qemu-system-x86
3369+ * update dh_installinit to install upstart script
3370+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3371+ - Add qemu-utils.links for kvm-* symlinks.
3372+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3373+ - Add qemu-system-x86.modprobe to set nesting=1
3374+ - Add qemu-system-common.preinst to add kvm group
3375+ - qemu-system-common.postinst: remove bad group acl if there, then have
3376+ udev relabel /dev/kvm.
3377+ - Dropped patches:
3378+ * 0001-fix-wrong-output-with-info-chardev-for-tcp-socket.patch
3379+ - Kept patches:
3380+ * expose_vms_qemu64cpu.patch - updated
3381+ * gridcentric patch - updated
3382+ * linaro arm patches from qemu-linaro rebasing branch
3383+
3384+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 04 Jun 2013 22:56:43 +0200
3385+
3386 qemu (1.5.0+dfsg-3) unstable; urgency=low
3387
3388 * fix sections: misc => otherosfs
3389@@ -1714,6 +4860,54 @@ qemu (1.5.0+dfsg-3) unstable; urgency=low
3390
3391 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 02 Jun 2013 01:49:47 +0400
3392
3393+qemu (1.5.0+dfsg-2ubuntu1) saucy; urgency=low
3394+
3395+ * Merge 1.5.0+dfs-2 from debian unstable. Remaining changes:
3396+ - debian/control
3397+ * update maintainer
3398+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3399+ from build-deps
3400+ * enable rbd
3401+ * add qemu-system and qemu-common B/R to qemu-keymaps
3402+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3403+ qemu-system-common
3404+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3405+ - add qemu-kvm to Provides
3406+ - add qemu-common, qemu-kvm, kvm to B/R
3407+ - remove openbios-sparc from qemu-system-sparc D
3408+ * qemu-system-x86:
3409+ - add qemu-common to Breaks/Replaces.
3410+ - add cpu-checker to Recommends.
3411+ * qemu-user: add B/R:qemu-kvm
3412+ * qemu-kvm:
3413+ - add armhf armel powerpc sparc to Architecture
3414+ - C/R/P: qemu-kvm-spice
3415+ * add qemu-common package
3416+ * drop qemu-slof which is not packaged in ubuntu
3417+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3418+ - qemu-system-x86.links:
3419+ * remove pxe rom links which are in kvm-ipxe
3420+ * add symlink for kvm.1 manpage
3421+ - debian/rules
3422+ * add kvm-spice symlink to qemu-kvm
3423+ * call dh_installmodules for qemu-system-x86
3424+ * update dh_installinit to install upstart script
3425+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3426+ - Add qemu-utils.links for kvm-* symlinks.
3427+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3428+ - Add qemu-system-x86.modprobe to set nesting=1
3429+ - Add qemu-system-common.preinst to add kvm group
3430+ - qemu-system-common.postinst: remove bad group acl if there, then have
3431+ udev relabel /dev/kvm.
3432+ - Dropped patches:
3433+ * 0001-fix-wrong-output-with-info-chardev-for-tcp-socket.patch
3434+ - Kept patches:
3435+ * expose_vms_qemu64cpu.patch - updated
3436+ * gridcentric patch - updated
3437+ * linaro arm patches from qemu-linaro rebasing branch
3438+
3439+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 28 May 2013 08:18:30 -0500
3440+
3441 qemu (1.5.0+dfsg-2) unstable; urgency=low
3442
3443 * merged development history of wheezy and experimental branches.
3444@@ -1781,6 +4975,76 @@ qemu (1.4.0+dfsg-2exp) experimental; urgency=low
3445
3446 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 18 Apr 2013 14:45:30 +0400
3447
3448+qemu (1.4.0+dfsg-1expubuntu4) raring; urgency=low
3449+
3450+ * re-add qemu-system-x86.modprobe to set nesting=1 (LP: #1155177)
3451+ * qemu-system-x86.qemu-kvm.upstart:
3452+ - remove NESTED workarounds from upstart file.
3453+ - remove loading of modules which is now always done
3454+ - remove TAPR define which is no longer used
3455+ * move customizable defines back to qemu-kvm.default
3456+ * copy creation of group kvm to preinst - the group must exist when the
3457+ kvm udev rule is installed (LP: #1103022) (LP: #1092715)
3458+ * add adduser to qemu-system-common Pre-Depends for use by preinst.
3459+
3460+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 14 Mar 2013 14:21:53 -0500
3461+
3462+qemu (1.4.0+dfsg-1expubuntu3) raring; urgency=low
3463+
3464+ * debian/rules: add a symlink from kvm-spice to kvm in qemu-kvm, on
3465+ i386/amd64 targets. (LP: #1126258)
3466+
3467+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 28 Feb 2013 15:17:16 -0600
3468+
3469+qemu (1.4.0+dfsg-1expubuntu2) raring; urgency=low
3470+
3471+ * substitute (apparently identical) patches from 1.4.0 qemu-linaro rebasing
3472+ tree.
3473+ * add qemu-common to qemu-system-common B/R (was accidentally dropped from
3474+ 1.3.0 in 1.4.0 merge).
3475+ * debian/control: fix kvm P/C/B/R:
3476+ - make all C/B/R against kvm versioned
3477+ - don't have any qemu-system-* other than x86 Provides: kvm
3478+
3479+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 22 Feb 2013 13:34:07 -0600
3480+
3481+qemu (1.4.0+dfsg-1expubuntu1) raring; urgency=low
3482+
3483+ * Merge 1.4.0+dfsg-1exp from debian. Remaining changes:
3484+ - debian/control:
3485+ * update maintainer
3486+ * remove libiscsi, usb-redir, vde, and vnc-jpeg from build-deps
3487+ * enable rbd
3488+ * add qemu-system and qemu-common B/R to qemu-keymaps
3489+ * add D:udev and R:qemu to qemu-system-common
3490+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3491+ - add qemu-kvm and kvm to Provides
3492+ - add qemu-common and qemu-kvm to Breaks/Replaces qemu-system-ppc,
3493+ qemu-system-sparc:
3494+ - remove openbios-$arch from Depends
3495+ * qemu-system-x86:
3496+ - add qemu-common to Breaks/Replaces.
3497+ - add cpu-checker to Recommends.
3498+ * qemu-user:
3499+ - add B/R qemu-kvm
3500+ * qemu-utils:
3501+ - add B/R qemu-user and qemu-kvm
3502+ * qemu-kvm: add armhf armel powerpc sparc to Architecture
3503+ * add qemu-common package
3504+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3505+ - qemu-system-x86.links:
3506+ * remove pxe rom links which are in kvm-ipxe
3507+ * add symlink for kvm.1 manpage
3508+ - Add qemu-utils.links for kvm-* symlinks.
3509+ - Add qemu-kvm.conf upstart job to qemu-system
3510+ - Clear /dev/kvm acls on install
3511+ - Add linaro arm patches.
3512+ - Add gridcentric patches.
3513+ - Re-add expose_vms_qemu64cpu.patch (from Daviey)
3514+ * Add 0001-fix-wrong-output-with-info-chardev-for-tcp-socket.patch
3515+
3516+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 20 Feb 2013 11:58:27 -0600
3517+
3518 qemu (1.4.0+dfsg-1exp) experimental; urgency=low
3519
3520 [ Michael Tokarev ]
3521@@ -1836,6 +5100,116 @@ qemu (1.4.0~rc0+dfsg-1exp) experimental; urgency=low
3522
3523 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 02 Feb 2013 21:05:28 +0400
3524
3525+qemu (1.3.0+dfsg-5expubuntu5) raring; urgency=low
3526+
3527+ * qemu-system-common.postinst: only run setfacl when /dev/kvm exists.
3528+ (LP: #1130591)
3529+
3530+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 20 Feb 2013 08:58:53 -0600
3531+
3532+qemu (1.3.0+dfsg-5expubuntu4) raring; urgency=low
3533+
3534+ * Update workarounds for udev/inotify: (LP: #1092715)
3535+ - qemu-system-common.udev: go back to original, simple rule
3536+ - qemu-system-common.postinst: manually run setfacl
3537+ - (keep Depends: on acl as well)
3538+ - this can be removed once bug 1092715 is fixed.
3539+
3540+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 19 Feb 2013 12:41:22 -0600
3541+
3542+qemu (1.3.0+dfsg-5expubuntu3) raring; urgency=low
3543+
3544+ * Now that qemu provides spice support, and qemu-kvm-spice is removed from
3545+ the archive, have qemu-kvm (which qemu-kvm-spice always depended on)
3546+ P/C/R qemu-kvm-spice.
3547+
3548+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 14 Feb 2013 13:43:27 -0600
3549+
3550+qemu (1.3.0+dfsg-5expubuntu2) raring; urgency=low
3551+
3552+ * Enable spice.
3553+ * Address lintian warning by adding ${misc:Depends} to qemu-common and
3554+ qemu-kvm.
3555+
3556+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 12 Feb 2013 16:07:04 -0600
3557+
3558+qemu (1.3.0+dfsg-5expubuntu1) raring; urgency=low
3559+
3560+ [ Serge Hallyn ]
3561+ * Merge 1.3.0+dfsg-5exp from Debian.
3562+ * remaining changes from 1.3.0+dfsg-1~exp3ubuntu1:
3563+ - debian/control:
3564+ * update maintainer
3565+ * remove vde2 recommends
3566+ * build-deps: remove libusbredir, libvdeplug2-dev,
3567+ libspice-server-dev, libspice-protocol-dev, libiscsi-dev
3568+ * qemu-system:
3569+ - break/replace qemu-common
3570+ - depend on udev
3571+ - remove openbios-ppc, openbios-sparc, and openhackware from
3572+ Depends. (Intend to add them back once we can build them.)
3573+ * qemu-utils: break/replace qemu-kvm
3574+ - qemu-kvm.upstart:
3575+ - add qemu-system.qemu-kvm.upstart
3576+ - debian/rules: add dh_installinit to get qemu-system.upstart installed.
3577+ - take the defaults from the old qemu-kvm.defaults, and move them into
3578+ the upstart job
3579+ - debian/patches:
3580+ - apply gridcentric patches from lp:~amscanne/+junk/gridcentric-qemu-patches
3581+ - apply arm patches from git://git.linaro.org/qemu/qemu-linaro.git
3582+ - add links for qemu-ifup/down in qemu-system-common.links
3583+ - debian/qemu-system-common.postinst
3584+ - udevadm trigger to fix up /dev/kvm perms
3585+ - debian/qemu-system.links:
3586+ - remove pxe-virtio, pxe-e1000 and pxe-rtl8139 links (which conflict
3587+ with ones from kvm-ipxe). We may want to move the links from kvm-ipxe
3588+ back to qemu-system at some point.
3589+ * remaining changes from after 1.3.0+dfsg-1~exp3ubuntu1:
3590+ - qemu-system-common.links: add link for OVMF
3591+ - Add qemu-utils.links for kvm-img and kvm-nbd utils and manpages.
3592+ - qemu-system.links:
3593+ * Add link to usr/share/ovmf/OVMF.fd
3594+ * Fix target of /etc/kvm/kvm-if{up,down} links
3595+ - debian/control: qemu-system should Recommend cpu-checker
3596+ - Add qemu-kvm breaks/replaces to qemu-user, to handle conflict over
3597+ (i.e.) qemu-x86_64.
3598+ - add qemu-kvm, and qemu-common transitional packages.
3599+ - Add breaks/replaces to qemu-keymaps for qemu-system.
3600+ - Add provides: qemu-kvm and kvm to qemu-system-ppc.
3601+ - Add breaks/replaces to qemu-system-ppc for qemu-kvm and qemu-common.
3602+ - Add breaks/replaces to qemu-kvm for qemu-common.
3603+ - Add breaks/replaces to qemu-utils for qemu-user and qemu-kvm.
3604+ - Add armhf, armel, powerpc and sparc arches to qemu-kvm transitional
3605+ package.
3606+ - Add qemu-common package.
3607+ - Make sure /dev/kvm gets its acls cleared:
3608+ * Add acl to qemu-system.depends
3609+ * update qemu-system.udev to run setfacl to set g::rw acl
3610+ - Remove vnc-jpeg, libiscsi-dev, and vde from debian/configure-opts
3611+ * dropped debian/patches/CVE-2012-6075.patch (duplicate of
3612+ e1000-discard-oversize-packets-based-on-SBP_LPE.patch)
3613+ * debian/{control,configure-opts}: enable rbd (LP: #1118406)
3614+ * add symlink for kvm.1 -> qemu.1 manpage (LP: #1117636)
3615+ * add replaces to qemu-system-common for qemu - we briefly moved conflicting
3616+ docs to qemu, which debian moved to qemu-system-common. This can be
3617+ dropped after raring.
3618+ * move qemu-kvm.upstart from qemu-system to qemu-system-x86.
3619+ * Support upgrade from qemu-kvm on non-x86 arches:
3620+ - Add Provides: qemu-kvm, kvm to qemu-system-{arm,ppc,sparc,x86}
3621+ - Add Breaks/Replaces for qemu-{common,system,kvm} and kvm.
3622+ * Re-add expose_vms_qemu64cpu.patch (from Daviey) from quantal.
3623+
3624+ [ Steve Langasek ]
3625+ * Pass --enable-uname-release=2.6.32 for the user emulation builds, so that
3626+ we have a sensible baseline kernel value regardless of what the
3627+ underlying host kernel is. This makes eglibc happier when running under
3628+ emulation on a very old kernel for instance (whose host syscall ABI has
3629+ nothing to do with what emulated syscalls are supported), and probably
3630+ also lets us steer clear for the moment of code that has problem with
3631+ the new kernel upstream versioning convention. LP: #921078.
3632+
3633+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 07 Feb 2013 14:15:26 -0600
3634+
3635 qemu (1.3.0+dfsg-5exp) experimental; urgency=low
3636
3637 * qemu-system-split: split qemu-system into several target-specific packages:
3638@@ -1915,6 +5289,106 @@ qemu (1.3.0+dfsg-2exp) experimental; urgency=low
3639
3640 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 20 Jan 2013 22:12:11 +0400
3641
3642+qemu (1.3.0+dfsg-1~exp3ubuntu8) raring; urgency=low
3643+
3644+ * qemu-system.links:
3645+ - Add link to usr/share/ovmf/OVMF.fd (LP: #1074207)
3646+ - Fix target of /etc/kvm/kvm-if{up,down} links
3647+
3648+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 29 Jan 2013 10:52:22 -0600
3649+
3650+qemu (1.3.0+dfsg-1~exp3ubuntu7) raring; urgency=low
3651+
3652+ * debian/control: qemu-system should Recommend cpu-checker (LP: #1103982)
3653+
3654+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 28 Jan 2013 11:52:10 -0600
3655+
3656+qemu (1.3.0+dfsg-1~exp3ubuntu6) raring; urgency=low
3657+
3658+ * configure-opts: add audio-cards list (LP: #1102487)
3659+ * configure-opts: change order of audio-drv-list for ubuntu, putting pa
3660+ first.
3661+
3662+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 21 Jan 2013 12:02:09 -0600
3663+
3664+qemu (1.3.0+dfsg-1~exp3ubuntu5) raring; urgency=low
3665+
3666+ * Add qemu-kvm breaks/replaces to qemu-user, to handle conflict over
3667+ (i.e.) qemu-x86_64. (LP: #1102332)
3668+
3669+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 21 Jan 2013 08:58:07 -0600
3670+
3671+qemu (1.3.0+dfsg-1~exp3ubuntu4) raring; urgency=low
3672+
3673+ * Move three docs from qemu-system.install to qemu.docs (LP: #1101798)
3674+
3675+ -- Adam Conrad <adconrad@ubuntu.com> Sat, 19 Jan 2013 20:12:48 -0700
3676+
3677+qemu (1.3.0+dfsg-1~exp3ubuntu3) raring; urgency=low
3678+
3679+ * debian/patches/CVE-2012-6075.patch: Fix guest denial of service and
3680+ possible code execution in hw/e1000.c by dropping oversize packets.
3681+
3682+ -- Adam Conrad <adconrad@ubuntu.com> Sat, 19 Jan 2013 07:31:50 -0700
3683+
3684+qemu (1.3.0+dfsg-1~exp3ubuntu2) raring; urgency=low
3685+
3686+ * debian/rules: empty MAKEFLAGS when building spapr-rtas.bin on powerpc, to
3687+ fix FTBFS due to parallel compile.
3688+
3689+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 18 Jan 2013 15:51:09 -0600
3690+
3691+qemu (1.3.0+dfsg-1~exp3ubuntu1) raring; urgency=low
3692+
3693+ * Merge 1.3.0+dfsg-1~exp3. Remaining ubuntu delta:
3694+ - debian/control:
3695+ * update maintainer
3696+ * remove vde2 recommends
3697+ * build-deps: remove libusbredir, libvdeplug2-dev,
3698+ libspice-server-dev, libspice-protocol-dev, libiscsi-dev,
3699+ and libxen-dev.
3700+ * qemu-keymaps: break/replace qemu-common
3701+ * qemu-system:
3702+ - break/replace qemu-common
3703+ - depend on udev
3704+ - remove openbios-ppc, openbios-sparc, and openhackware from
3705+ Depends. (Intend to add them back once we can build them.)
3706+ - provides: qemu-kvm
3707+ * qemu-utils: break/replace qemu-kvm
3708+ * set up transitional packages for qemu-kvm, qemu-common, and kvm.
3709+ - qemu-kvm.upstart:
3710+ - add qemu-system.qemu-kvm.upstart
3711+ - debian/rules: add dh_installinit to get qemu-system.upstart installed.
3712+ - take the defaults from the old qemu-kvm.defaults, and move them into
3713+ the upstart job
3714+ - debian/patches:
3715+ - apply gridcentric patches from lp:~amscanne/+junk/gridcentric-qemu-patches
3716+ - apply arm patches from git://git.linaro.org/qemu/qemu-linaro.git
3717+ - ifup/down:
3718+ - copy Debian qemu-kvm's kvm-ifup/down into debian/
3719+ - fix dh_install for kvm-ifup/down in debian/rules
3720+ - add links for qemu-ifup/down in qemu-system.links
3721+ - remove (debian's original) qemu-ifup from qemu-system.install
3722+ - debian/qemu-system.postinst
3723+ - udevadm trigger to fix up /dev/kvm perms
3724+ - make the 'qemu' symlink point to qemu-system-x86_64, not -i386.
3725+ - debian/qemu-system.links:
3726+ - point 'kvm' to qemu-system-x86_64
3727+ - remove pxe-virtio, pxe-e1000 and pxe-rtl8139 links (which conflict
3728+ with ones from kvm-ipxe). We may want to move the links from kvm-ipxe
3729+ back to qemu-system at some point.
3730+ * Add note about kvm to qemu-system.README.debian.
3731+ * Copy kvm-ifup and kvm-ifdown from debian's qemu-kvm
3732+ * Remove TAPBR from qemu-kvm.conf.
3733+ * Make sure /dev/kvm gets its acls cleared:
3734+ - Add acl to qemu-system.depends
3735+ - update qemu-system.udev to run setfacl to set g::rw acl
3736+ * qemu-system.qemu-kvm.conf: don't rmmod at stop
3737+ * Remove vnc-jpeg, libiscsi-dev, and vde from debian/configure-opts
3738+ * Remove hugepages sysctl file - qemu now supports transparent hugepages.
3739+
3740+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 14 Jan 2013 23:22:51 -0600
3741+
3742 qemu (1.3.0+dfsg-1~exp3) experimental; urgency=low
3743
3744 * enable vde on kFreebsd too (no idea why it was disabled)
3745@@ -1999,6 +5473,107 @@ qemu (1.3.0+dfsg-1~exp1) experimental; urgency=low
3746
3747 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 30 Dec 2012 01:52:21 +0400
3748
3749+qemu (1.2.0.dfsg-1~exp1-0ubuntu2) raring; urgency=low
3750+
3751+ * Remove kvm package
3752+ - make qemu-system P/C/B: kvm.
3753+
3754+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 14 Jan 2013 12:03:19 -0600
3755+
3756+qemu (1.2.0.dfsg-1~exp1-0ubuntu1) raring; urgency=low
3757+
3758+ [ Serge Hallyn ]
3759+ * debian/control:
3760+ - update maintainer
3761+ - remove vde2 recommends
3762+ - build-deps: remove libusbredir, libvdeplug2-dev,
3763+ libspice-server-dev, libspice-protocol-dev, libiscsi-dev,
3764+ and libxen-dev.
3765+ - qemu-keymaps: break/replace qemu-common
3766+ - qemu-system:
3767+ - break/replace qemu-common
3768+ - depend on udev
3769+ - remove openbios-ppc, openbios-sparc, and openhackware from
3770+ Depends. (Intend to add them back once we can build them.)
3771+ - provides: qemu-kvm
3772+ - qemu-utils: break/replace qemu-kvm
3773+ - set up transitional packages for qemu-kvm, qemu-common, and kvm.
3774+ * debian/rules:
3775+ - install kvm-ifup and kvm-ifdown
3776+ - dh_installinit the qemu-kvm upstart job
3777+ * install a 30-qemu-kvm.conf into /etc/sysctl.c for nr_hugepages.
3778+ * qemu-kvm.upstart:
3779+ - add qemu-system.qemu-kvm.upstart
3780+ - add mv_confile to qemu-system.preinst, postinst, and .postrm to rename
3781+ /etc/init/qemu-kvm.conf to qemu-system.conf
3782+ - debian/rules: add dh_installinit to get qemu-system.upstart installed.
3783+ - take the defaults from the old qemu-kvm.defaults, and move them into
3784+ the upstart job
3785+ * debian/patches:
3786+ - apply gridcentric patches from lp:~amscanne/+junk/gridcentric-qemu-patches
3787+ - apply arm patches from git://git.linaro.org/qemu/qemu-linaro.git
3788+ - apply nbd-fixes-to-read-only-handling.patch from upstream to
3789+ make read-write mount after read-only mount work. (LP: #1077838)
3790+ * ifup/down:
3791+ - copy Ubuntu qemu-kvm's kvm-ifup/down into debian/
3792+ - fix dh_install for kvm-ifup/down in debian/rules
3793+ - add links for qemu-ifup/down in qemu-system.links
3794+ - remove (debian's original) qemu-ifup from qemu-system.install
3795+ * debian/qemu-system.postinst
3796+ - udevadm trigger to fix up /dev/kvm perms
3797+ - make the 'qemu' symlink point to qemu-system-x86_64, not -i386.
3798+ * debian/qemu-system.links:
3799+ - point 'kvm' to qemu-system-x86_64
3800+ - remove pxe-virtio, pxe-e1000 and pxe-rtl8139 links (which conflict
3801+ with ones from kvm-ipxe). We may want to move the links from kvm-ipxe
3802+ back to qemu-system at some point.
3803+ - add qemu-ifdown and qemu-ifup links
3804+ * debian/qemu-system.install:
3805+ - remove /etc/qemu-ifup link
3806+ - add /etc/sysctl.d/30-qemu-kvm.conf
3807+
3808+ [ Adam Conrad ]
3809+ * Appease apt-get's dist-upgrade resolver by creating a qemu-common
3810+ transitional package to upgrade more gracefully to qemu-keymaps.
3811+ * Move all the empty transitional packages to the oldlibs section.
3812+ * Restore the versioned dep from qemu-kvm (and kvm) to qemu-system.
3813+
3814+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 04 Jan 2013 08:50:24 -0600
3815+
3816+qemu (1.2.0+dfsg-1~exp1) UNRELEASED; urgency=low
3817+
3818+ [ Michael Tokarev ]
3819+ * new upstream version (1.3.0)
3820+ (Closes: #676374, #622319, #597527, #593547, #660154)
3821+ - Removed patches included upstream:
3822+ do-not-include-libutil.h.patch
3823+ configure-nss-usbredir.patch
3824+ tcg_s390-fix-ld_st-with-CONFIG_TCG_PASS_AREG0.patch
3825+ net-add--netdev-options-to-man-page.patch
3826+ - update 02_kfreebsd.patch
3827+ - do not build mpc8544ds.dtb
3828+ - include new targets
3829+ * Cleaned up the build system ALOT. Larger changes:
3830+ - used explicit lists of emulated targets in debian/rules
3831+ and generate everything else from there, instead of repeating
3832+ these lists in lots of places.
3833+ - stop using debian/$pkg.manpages and other auxilary files like this,
3834+ moving eveything to debian/$pkg.install, because with the number
3835+ of packages growing, amount of these small files becomes very
3836+ large and the result is difficult to maintain.
3837+ * ship forgotten target-x86_64.conf in qemu-system.
3838+ * ship virtfs-proxy-helper in qemu-utils.
3839+ * stop shipping tundev.c, since it does not reflect the reality for
3840+ a long time now (Closes: #325761, #325754).
3841+ * re-introduce support parallel build using DEB_BUILD_OPTIONS=parallel=N,
3842+ this time by adding to $MAKEFLAGS instead of passing down to submakes
3843+ * build-depend on libcap-ng-dev (for virtfs-proxy-helper)
3844+
3845+ [ Vagrant Cascadian ]
3846+ * Add libcap-dev to Build-Depends to support virtfs-proxy-helper.
3847+
3848+ -- Michael Tokarev <mjt@tls.msk.ru> Sun, 30 Dec 2012 01:52:21 +0400
3849+
3850 qemu (1.1.2+dfsg-6a) unstable; urgency=low
3851
3852 * reupload to remove two unrelated files slipped in debian/
3853diff --git a/debian/control b/debian/control
3854index 4d9e725..af34b09 100644
3855--- a/debian/control
3856+++ b/debian/control
3857@@ -2,7 +2,8 @@
3858 Source: qemu
3859 Section: otherosfs
3860 Priority: optional
3861-Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
3862+Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
3863+XSBC-Original-Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
3864 Uploaders: Aurelien Jarno <aurel32@debian.org>,
3865 Riku Voipio <riku.voipio@iki.fi>,
3866 Michael Tokarev <mjt@tls.msk.ru>
3867@@ -17,8 +18,6 @@ Build-Depends: debhelper (>= 12),
3868 texinfo, python3-sphinx,
3869 # iasl (from acpica-tools) is used only in a single test these days, not for building
3870 # acpica-tools,
3871-# --enable-capstone=system
3872- libcapstone-dev,
3873 # --enable-linux-aio linux-*
3874 libaio-dev [linux-any],
3875 # --audio-drv-list=pa,alsa,oss linux-*
3876@@ -53,8 +52,6 @@ Build-Depends: debhelper (>= 12),
3877 libvirglrenderer-dev,
3878 # --enable-opengl
3879 libepoxy-dev, libdrm-dev, libgbm-dev,
3880-# --enable-libnfs
3881- libnfs-dev (>> 1.9.3),
3882 # --enable-numa i386|amd64|ia64|mips|mipsel|powerpc|powerpcspe|x32|ppc64|ppc64el|arm64|sparc|s390x
3883 libnuma-dev [i386 amd64 ia64 mips mipsel mips64 mips64el powerpc powerpcspe x32 ppc64 ppc64el arm64 sparc s390x],
3884 # --enable-smartcard
3885@@ -64,8 +61,6 @@ Build-Depends: debhelper (>= 12),
3886 librados-dev [linux-any], librbd-dev [linux-any],
3887 # glusterfs is debian-only since ubuntu/glusterfs is in universe (MIR LP: #1274247)
3888 # before buster it was glusterfs-common so keep it for now for bpo
3889-# --enable-glusterfs
3890- libglusterfs-dev|glusterfs-common,
3891 # --enable-vnc-sasl
3892 libsasl2-dev,
3893 # --disable-sdl
3894@@ -85,9 +80,6 @@ Build-Depends: debhelper (>= 12),
3895 # --enable-libssh
3896 libssh-dev,
3897 # vde is debian-only since ubuntu/vde2 is in universe
3898-# --enable-vde
3899- libvdeplug-dev,
3900-# --enable-xen linux-amd64|linux-i386
3901 libxen-dev [linux-amd64 linux-i386],
3902 # --enable-nettle
3903 nettle-dev,
3904@@ -105,8 +97,8 @@ Build-Depends: debhelper (>= 12),
3905 libjpeg-dev,
3906 # --enable-vnc-png
3907 libpng-dev,
3908-# --enable-libpmem linux-amd64|linux-arm64|linux-ppc64el
3909- libpmem-dev [linux-amd64 linux-arm64 linux-ppc64el],
3910+# --enable-libpmem linux-amd64|linux-arm64
3911+ libpmem-dev [linux-amd64 linux-arm64],
3912 # --enable-kvm linux-*
3913 # --enable-vhost-net linux-* # is it really linux-specific?
3914 ##--enable-lzo todo, for (memory) dumps
3915@@ -126,8 +118,10 @@ Build-Depends-Indep:
3916 Build-Conflicts: oss4-dev
3917 Standards-Version: 3.9.8
3918 Homepage: http://www.qemu.org/
3919-Vcs-Browser: https://salsa.debian.org/qemu-team/qemu
3920-Vcs-Git: https://salsa.debian.org/qemu-team/qemu.git
3921+XS-Debian-Vcs-Browser: https://salsa.debian.org/qemu-team/qemu
3922+XS-Debian-Vcs-Git: https://salsa.debian.org/qemu-team/qemu.git
3923+Vcs-Browser: https://git.launchpad.net/ubuntu/+source/qemu
3924+Vcs-Git: https://git.launchpad.net/ubuntu/+source/qemu
3925
3926 Package: qemu
3927 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
3928@@ -158,6 +152,7 @@ Depends: ${misc:Depends},
3929 qemu-system-ppc,
3930 qemu-system-sparc,
3931 qemu-system-x86,
3932+ qemu-system-s390x,
3933 qemu-system-misc
3934 Description: QEMU full system emulation binaries
3935 QEMU is a fast processor emulator: currently the package supports
3936@@ -190,6 +185,8 @@ Architecture: all
3937 Multi-Arch: foreign
3938 Conflicts: sgabios, qemu-skiboot
3939 Replaces: qemu-system-common (<< 1:2.12+dfsg-2~), sgabios,
3940+ qemu-system-s390x (<< 1:3.1+dfsg-2ubuntu1~)
3941+Breaks: qemu-system-s390x (<< 1:3.1+dfsg-2ubuntu1~)
3942 Provides: qemu-keymaps, sgabios, qemu-skiboot
3943 Depends: ${misc:Depends}
3944 Description: QEMU full system emulation (data files)
3945@@ -200,10 +197,13 @@ Description: QEMU full system emulation (data files)
3946 Package: qemu-system-common
3947 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
3948 Multi-Arch: foreign
3949-Replaces: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
3950-Breaks: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
3951+Replaces: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:4.2-1ubuntu1~)
3952+Breaks: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:4.2-1ubuntu1~)
3953 Depends: ${misc:Depends}, ${shlibs:Depends},
3954+ qemu-block-extra (= ${binary:Version}),
3955+ powerpc-utils [ppc64el],
3956 # to fix wrong acl for newly created device node on ubuntu:
3957+ acl
3958 Description: QEMU full system emulation binaries (common files)
3959 QEMU is a fast processor emulator: currently the package supports
3960 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
3961@@ -254,6 +254,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qe
3962 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
3963 # aarch64 arm uses bootroms
3964 ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~),
3965+ ipxe-qemu-256k-compat-efi-roms,
3966 qemu-efi-aarch64, qemu-efi-arm
3967 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
3968 Provides: ${sysprovides:arm}
3969@@ -298,9 +299,10 @@ Multi-Arch: foreign
3970 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
3971 qemu-slof,
3972 # ubuntu can't Depend on openbios-ppc and openhackware as they're in universe
3973- openbios-ppc (>= 1.1+svn1229), openhackware
3974 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
3975+ openbios-ppc (>= 1.1+svn1229), openhackware
3976 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
3977+ ipxe-qemu-256k-compat-efi-roms,
3978 # ppc targets use vgabios-stdvga and bootroms
3979 seabios, ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
3980 Provides: ${sysprovides:ppc}
3981@@ -322,11 +324,11 @@ Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386
3982 Multi-Arch: foreign
3983 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
3984 # ubuntu/openbios-sparc is in universe
3985- openbios-sparc (>> 1.1+svn1395-1~)
3986 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
3987 # sparc64 uses vgabios-stdvga and bootroms
3988 seabios, ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
3989 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
3990+ openbios-sparc (>> 1.1+svn1395-1~)
3991 Provides: ${sysprovides:sparc}
3992 Description: QEMU full system emulation binaries (sparc)
3993 QEMU is a fast processor emulator: currently the package supports
3994@@ -345,9 +347,11 @@ Package: qemu-system-x86
3995 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
3996 Multi-Arch: foreign
3997 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
3998+ ipxe-qemu-256k-compat-efi-roms,
3999 seabios (>= 1.10.2-1~), ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4000 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4001 ovmf,
4002+ cpu-checker
4003 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4004 sgabios,
4005 Provides: ${sysprovides:x86}
4006@@ -367,6 +371,21 @@ Description: QEMU full system emulation binaries (x86)
4007 On x86 host hardware this package also enables KVM kernel virtual machine
4008 usage on systems which supports it.
4009
4010+Package: qemu-system-x86-microvm
4011+Architecture: amd64
4012+Multi-Arch: foreign
4013+Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4014+Recommends: qemu-utils,
4015+Description: QEMU minimized system emulation binaries (x86)
4016+ QEMU is a fast processor emulator - this minimal package supports
4017+ only KVM based x86-64 system emulation with a vastly reduced feature set
4018+ intended to be used with the microvm machine type.
4019+ .
4020+ This minimal qemu is stripped of most features to save startup time when
4021+ spawning for use cases with the microvm type and the bios-microvm.bin bios
4022+ which are used to provide container like use cases with KVM isolation.
4023+ For any other common KVM based activity qemu-system-x86 will be more suited.
4024+
4025 Package: qemu-user
4026 Architecture: amd64 arm arm64 armel armhf i386 ia64 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
4027 Multi-Arch: foreign
4028@@ -433,9 +452,11 @@ Description: QEMU user mode binfmt registration for qemu-user
4029 Package: qemu-utils
4030 Architecture: amd64 arm arm64 armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
4031 Multi-Arch: foreign
4032-Breaks: qemu-system-common (<< 1:3.1+dfsg-3~)
4033-Depends: ${shlibs:Depends}, ${misc:Depends}
4034-Suggests: debootstrap, qemu-block-extra (= ${binary:Version}),
4035+Breaks: qemu-system-common (<< 1:4.2-1ubuntu1~)
4036+Depends: ${shlibs:Depends}, ${misc:Depends},
4037+ qemu-block-extra (= ${binary:Version})
4038+Recommends: sharutils
4039+Suggests: debootstrap,
4040 Description: QEMU utilities
4041 QEMU is a fast processor emulator: currently the package supports
4042 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
4043@@ -473,12 +494,73 @@ Description: Guest-side qemu-system agent
4044 qemu virtual machine. It is not used on the host.
4045
4046 Package: qemu-kvm
4047-Architecture: i386 amd64
4048+Architecture: i386 amd64 x32 armhf armel arm64 powerpc ppc64 ppc64el s390x
4049 Multi-Arch: foreign
4050 Pre-Depends: ${misc:Pre-Depends}
4051-Depends: ${misc:Depends}, qemu-system-x86
4052+Depends:
4053+ ${misc:Depends},
4054+ qemu-system-x86 (= ${binary:Version}) [i386 amd64 x32],
4055+ qemu-system-arm (= ${binary:Version}) [armhf armel arm64],
4056+ qemu-system-ppc (= ${binary:Version}) [powerpc ppc64 ppc64el],
4057+ qemu-system-s390x (= ${binary:Version}) [s390x],
4058+ powerpc-utils [ppc64el],
4059 Description: QEMU Full virtualization on x86 hardware
4060 QEMU is a fast processor emulator. This package provides just a wrapper
4061 script /usr/bin/kvm which run qemu-system-x86 in kvm mode for backwards
4062 compatibility.
4063
4064+Package: qemu-system-s390x
4065+Architecture: amd64 arm arm64 armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64
4066+Multi-Arch: foreign
4067+Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 2.0.0+dfsg-8~), qemu-system-data (>> ${source:Version}~),
4068+Recommends: qemu-utils,
4069+Suggests: qemu-block-extra (= ${binary:Version}),
4070+Provides: ${sysprovides:s390x}
4071+Breaks: qemu-system-misc (<< 1:2.5+dfsg-5ubuntu8~)
4072+Replaces: qemu-system-misc (<< 1:2.5+dfsg-5ubuntu8~)
4073+Description: QEMU full system emulation binaries (s390x)
4074+ QEMU is a fast processor emulator: currently the package supports
4075+ s390x emulation. By using dynamic translation it achieves reasonable
4076+ speed while being easy to port on new host CPUs.
4077+ .
4078+ This package provides the full system emulation binaries to emulate
4079+ the following s390x hardware: ${sysarch:s390x}.
4080+ .
4081+ In system emulation mode QEMU emulates a full system, including a processor
4082+ and various peripherals. It enables easier testing and debugging of system
4083+ code. It can also be used to provide virtual hosting of several virtual
4084+ machines on a single server.
4085+
4086+# xen support generally is disabled, this is an extra build with xen enabled
4087+# as needed by xen-utils-4.11 [amd64 arm64 armhf i386]
4088+# Xen will depend on this; this package and the main qemu-system-x86 are
4089+# mutually exclusive
4090+Package: qemu-system-x86-xen
4091+Architecture: amd64 i386
4092+Multi-Arch: foreign
4093+Depends:
4094+ ${shlibs:Depends},
4095+ ${misc:Depends},
4096+ qemu-system-common (>> ${source:Version}~),
4097+ qemu-system-data (>> ${source:Version}~),
4098+ ipxe-qemu,
4099+Recommends:
4100+ qemu-system-gui (= ${binary:Version}),
4101+ qemu-utils,
4102+ seabios,
4103+Suggests:
4104+ qemu-block-extra (= ${binary:Version}),
4105+ ovmf,
4106+Conflicts: qemu-system-x86
4107+Description: QEMU full system emulation binaries (x86)
4108+ QEMU is a fast processor emulator: currently the package supports
4109+ i386 and x86-64 emulation. By using dynamic translation it achieves
4110+ reasonable speed while being easy to port on new host CPUs.
4111+ .
4112+ This package provides the full system emulation binaries to emulate
4113+ the following x86 hardware: ${sysarch:x86-xen}.
4114+ .
4115+ In comparison to the main qemu-system-x86 this package has xen support
4116+ enabled, but is only maintained as universe package. Qemu with xen support
4117+ is needed to run Xen in HVM mode. For any other use case you should install
4118+ and use qemu-system-x86 instead.
4119diff --git a/debian/control-in b/debian/control-in
4120index bcf5323..9430893 100644
4121--- a/debian/control-in
4122+++ b/debian/control-in
4123@@ -18,8 +18,8 @@ Build-Depends: debhelper (>= 12),
4124 texinfo, python3-sphinx,
4125 # iasl (from acpica-tools) is used only in a single test these days, not for building
4126 # acpica-tools,
4127-# --enable-capstone=system
4128- libcapstone-dev,
4129+:debian:# --enable-capstone=system
4130+:debian: libcapstone-dev,
4131 # --enable-linux-aio linux-*
4132 libaio-dev [linux-any],
4133 # --audio-drv-list=pa,alsa,oss linux-*
4134@@ -88,7 +88,7 @@ Build-Depends: debhelper (>= 12),
4135 # vde is debian-only since ubuntu/vde2 is in universe
4136 :debian:# --enable-vde
4137 :debian: libvdeplug-dev,
4138-# --enable-xen linux-amd64|linux-i386
4139+:debian:# --enable-xen linux-amd64|linux-i386
4140 libxen-dev [linux-amd64 linux-i386],
4141 # --enable-nettle
4142 nettle-dev,
4143@@ -106,8 +106,8 @@ Build-Depends: debhelper (>= 12),
4144 libjpeg-dev,
4145 # --enable-vnc-png
4146 libpng-dev,
4147-# --enable-libpmem linux-amd64|linux-arm64|linux-ppc64el
4148- libpmem-dev [linux-amd64 linux-arm64 linux-ppc64el],
4149+# --enable-libpmem linux-amd64|linux-arm64
4150+ libpmem-dev [linux-amd64 linux-arm64],
4151 # --enable-kvm linux-*
4152 # --enable-vhost-net linux-* # is it really linux-specific?
4153 ##--enable-lzo todo, for (memory) dumps
4154@@ -208,9 +208,11 @@ Description: QEMU full system emulation (data files)
4155 Package: qemu-system-common
4156 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
4157 Multi-Arch: foreign
4158-Replaces: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
4159-Breaks: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
4160+Replaces: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:4.2-1ubuntu1~)
4161+Breaks: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:4.2-1ubuntu1~)
4162 Depends: ${misc:Depends}, ${shlibs:Depends},
4163+:ubuntu: qemu-block-extra (= ${binary:Version}),
4164+:ubuntu: powerpc-utils [ppc64el],
4165 # to fix wrong acl for newly created device node on ubuntu:
4166 :ubuntu: acl
4167 Description: QEMU full system emulation binaries (common files)
4168@@ -263,6 +265,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qe
4169 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4170 # aarch64 arm uses bootroms
4171 ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~),
4172+:ubuntu: ipxe-qemu-256k-compat-efi-roms,
4173 qemu-efi-aarch64, qemu-efi-arm
4174 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4175 Provides: ${sysprovides:arm}
4176@@ -311,6 +314,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qe
4177 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4178 :ubuntu: openbios-ppc (>= 1.1+svn1229), openhackware
4179 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4180+:ubuntu: ipxe-qemu-256k-compat-efi-roms,
4181 # ppc targets use vgabios-stdvga and bootroms
4182 seabios, ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4183 Provides: ${sysprovides:ppc}
4184@@ -356,6 +360,7 @@ Package: qemu-system-x86
4185 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
4186 Multi-Arch: foreign
4187 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4188+:ubuntu: ipxe-qemu-256k-compat-efi-roms,
4189 seabios (>= 1.10.2-1~), ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4190 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4191 ovmf,
4192@@ -379,6 +384,21 @@ Description: QEMU full system emulation binaries (x86)
4193 On x86 host hardware this package also enables KVM kernel virtual machine
4194 usage on systems which supports it.
4195
4196+Package: qemu-system-x86-microvm
4197+Architecture: amd64
4198+Multi-Arch: foreign
4199+Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4200+Recommends: qemu-utils,
4201+Description: QEMU minimized system emulation binaries (x86)
4202+ QEMU is a fast processor emulator - this minimal package supports
4203+ only KVM based x86-64 system emulation with a vastly reduced feature set
4204+ intended to be used with the microvm machine type.
4205+ .
4206+ This minimal qemu is stripped of most features to save startup time when
4207+ spawning for use cases with the microvm type and the bios-microvm.bin bios
4208+ which are used to provide container like use cases with KVM isolation.
4209+ For any other common KVM based activity qemu-system-x86 will be more suited.
4210+
4211 Package: qemu-user
4212 Architecture: amd64 arm arm64 armel armhf i386 ia64 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
4213 Multi-Arch: foreign
4214@@ -445,9 +465,12 @@ Description: QEMU user mode binfmt registration for qemu-user
4215 Package: qemu-utils
4216 Architecture: amd64 arm arm64 armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el s390x sparc sparc64 x32
4217 Multi-Arch: foreign
4218-Breaks: qemu-system-common (<< 1:3.1+dfsg-3~)
4219-Depends: ${shlibs:Depends}, ${misc:Depends}
4220-Suggests: debootstrap, qemu-block-extra (= ${binary:Version}),
4221+Breaks: qemu-system-common (<< 1:4.2-1ubuntu1~)
4222+Depends: ${shlibs:Depends}, ${misc:Depends},
4223+:ubuntu: qemu-block-extra (= ${binary:Version})
4224+:ubuntu:Recommends: sharutils
4225+Suggests: debootstrap,
4226+:debian: qemu-block-extra (= ${binary:Version}),
4227 Description: QEMU utilities
4228 QEMU is a fast processor emulator: currently the package supports
4229 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
4230@@ -486,10 +509,16 @@ Description: Guest-side qemu-system agent
4231
4232 Package: qemu-kvm
4233 :debian:Architecture: i386 amd64
4234-:ubuntu:Architecture: i386 amd64 armhf armel powerpc sparc
4235+:ubuntu:Architecture: i386 amd64 x32 armhf armel arm64 powerpc ppc64 ppc64el s390x
4236 Multi-Arch: foreign
4237 Pre-Depends: ${misc:Pre-Depends}
4238-Depends: ${misc:Depends}, qemu-system-x86
4239+Depends:
4240+ ${misc:Depends},
4241+ qemu-system-x86 (= ${binary:Version}) [i386 amd64 x32],
4242+ qemu-system-arm (= ${binary:Version}) [armhf armel arm64],
4243+ qemu-system-ppc (= ${binary:Version}) [powerpc ppc64 ppc64el],
4244+:ubuntu: qemu-system-s390x (= ${binary:Version}) [s390x],
4245+:ubuntu: powerpc-utils [ppc64el],
4246 Description: QEMU Full virtualization on x86 hardware
4247 QEMU is a fast processor emulator. This package provides just a wrapper
4248 script /usr/bin/kvm which run qemu-system-x86 in kvm mode for backwards
4249@@ -516,3 +545,37 @@ Description: QEMU Full virtualization on x86 hardware
4250 :ubuntu: and various peripherals. It enables easier testing and debugging of system
4251 :ubuntu: code. It can also be used to provide virtual hosting of several virtual
4252 :ubuntu: machines on a single server.
4253+
4254+:ubuntu:# xen support generally is disabled, this is an extra build with xen enabled
4255+:ubuntu:# as needed by xen-utils-4.11 [amd64 arm64 armhf i386]
4256+:ubuntu:# Xen will depend on this; this package and the main qemu-system-x86 are
4257+:ubuntu:# mutually exclusive
4258+:ubuntu:Package: qemu-system-x86-xen
4259+:ubuntu:Architecture: amd64 i386
4260+:ubuntu:Multi-Arch: foreign
4261+:ubuntu:Depends:
4262+:ubuntu: ${shlibs:Depends},
4263+:ubuntu: ${misc:Depends},
4264+:ubuntu: qemu-system-common (>> ${source:Version}~),
4265+:ubuntu: qemu-system-data (>> ${source:Version}~),
4266+:ubuntu: ipxe-qemu,
4267+:ubuntu:Recommends:
4268+:ubuntu: qemu-system-gui (= ${binary:Version}),
4269+:ubuntu: qemu-utils,
4270+:ubuntu: seabios,
4271+:ubuntu:Suggests:
4272+:ubuntu: qemu-block-extra (= ${binary:Version}),
4273+:ubuntu: ovmf,
4274+:ubuntu:Conflicts: qemu-system-x86
4275+:ubuntu:Description: QEMU full system emulation binaries (x86)
4276+:ubuntu: QEMU is a fast processor emulator: currently the package supports
4277+:ubuntu: i386 and x86-64 emulation. By using dynamic translation it achieves
4278+:ubuntu: reasonable speed while being easy to port on new host CPUs.
4279+:ubuntu: .
4280+:ubuntu: This package provides the full system emulation binaries to emulate
4281+:ubuntu: the following x86 hardware: ${sysarch:x86-xen}.
4282+:ubuntu: .
4283+:ubuntu: In comparison to the main qemu-system-x86 this package has xen support
4284+:ubuntu: enabled, but is only maintained as universe package. Qemu with xen support
4285+:ubuntu: is needed to run Xen in HVM mode. For any other use case you should install
4286+:ubuntu: and use qemu-system-x86 instead.
4287diff --git a/debian/kvm.arm32 b/debian/kvm.arm32
4288new file mode 100644
4289index 0000000..2138f46
4290--- /dev/null
4291+++ b/debian/kvm.arm32
4292@@ -0,0 +1,2 @@
4293+#!/bin/sh
4294+exec qemu-system-arm -enable-kvm "$@"
4295diff --git a/debian/kvm.arm64 b/debian/kvm.arm64
4296new file mode 100644
4297index 0000000..1764712
4298--- /dev/null
4299+++ b/debian/kvm.arm64
4300@@ -0,0 +1,2 @@
4301+#!/bin/sh
4302+exec qemu-system-aarch64 -enable-kvm "$@"
4303diff --git a/debian/kvm.powerpc b/debian/kvm.powerpc
4304new file mode 100644
4305index 0000000..e6c10e1
4306--- /dev/null
4307+++ b/debian/kvm.powerpc
4308@@ -0,0 +1,13 @@
4309+#!/bin/sh
4310+set -f
4311+
4312+SMT=$(/usr/sbin/ppc64_cpu --smt 2>&1 | grep "SMT=[248]")
4313+if [ -n "$SMT" ]
4314+then
4315+ if grep -q -e '^cpu\s*:\s*POWER8' /proc/cpuinfo; then
4316+ echo "Error: You must disable SMT if you want to run QEMU/KVM on Power8 based ppc64le architecture"
4317+ echo "In order to disable SMT, run: # ppc64_cpu --smt=off"
4318+ fi
4319+fi
4320+
4321+exec qemu-system-ppc64 -enable-kvm "$@"
4322diff --git a/debian/kvm.s390x b/debian/kvm.s390x
4323new file mode 100644
4324index 0000000..0171120
4325--- /dev/null
4326+++ b/debian/kvm.s390x
4327@@ -0,0 +1,2 @@
4328+#!/bin/sh
4329+exec qemu-system-s390x -enable-kvm "$@"
4330diff --git a/debian/kvm b/debian/kvm.x86
4331similarity index 50%
4332rename from debian/kvm
4333rename to debian/kvm.x86
4334old mode 100755
4335new mode 100644
4336index 2e89893..43c0b24
4337--- a/debian/kvm
4338+++ b/debian/kvm.x86
4339@@ -1,2 +1,2 @@
4340-#! /bin/sh
4341+#!/bin/sh
4342 exec qemu-system-x86_64 -enable-kvm "$@"
4343diff --git a/debian/patches/lp-1859527-virtio-blk-fix-out-of-bounds-access-to-bitmap-in-not.patch b/debian/patches/lp-1859527-virtio-blk-fix-out-of-bounds-access-to-bitmap-in-not.patch
4344new file mode 100644
4345index 0000000..6dc0fdc
4346--- /dev/null
4347+++ b/debian/patches/lp-1859527-virtio-blk-fix-out-of-bounds-access-to-bitmap-in-not.patch
4348@@ -0,0 +1,43 @@
4349+From 725fe5d10dbd4259b1853b7d253cef83a3c0d22a Mon Sep 17 00:00:00 2001
4350+From: Li Hangjing <lihangjing@baidu.com>
4351+Date: Mon, 16 Dec 2019 10:30:50 +0800
4352+Subject: [PATCH] virtio-blk: fix out-of-bounds access to bitmap in
4353+ notify_guest_bh
4354+
4355+When the number of a virtio-blk device's virtqueues is larger than
4356+BITS_PER_LONG, the out-of-bounds access to bitmap[ ] will occur.
4357+
4358+Fixes: e21737ab15 ("virtio-blk: multiqueue batch notify")
4359+Cc: qemu-stable@nongnu.org
4360+Cc: Stefan Hajnoczi <stefanha@redhat.com>
4361+Signed-off-by: Li Hangjing <lihangjing@baidu.com>
4362+Reviewed-by: Xie Yongji <xieyongji@baidu.com>
4363+Reviewed-by: Chai Wen <chaiwen@baidu.com>
4364+Message-id: 20191216023050.48620-1-lihangjing@baidu.com
4365+Message-Id: <20191216023050.48620-1-lihangjing@baidu.com>
4366+Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
4367+
4368+Origin: upstream, https://git.qemu.org/?p=qemu.git;a=commit;h=725fe5d10dbd4259b1853b7d253cef83a3c0d22a
4369+Bug-Ubuntu: https://bugs.launchpad.net/bugs/1859527
4370+Last-Update: 2020-01-22
4371+
4372+---
4373+ hw/block/dataplane/virtio-blk.c | 2 +-
4374+ 1 file changed, 1 insertion(+), 1 deletion(-)
4375+
4376+diff --git a/hw/block/dataplane/virtio-blk.c b/hw/block/dataplane/virtio-blk.c
4377+index 119906a5fe..1b52e8159c 100644
4378+--- a/hw/block/dataplane/virtio-blk.c
4379++++ b/hw/block/dataplane/virtio-blk.c
4380+@@ -67,7 +67,7 @@ static void notify_guest_bh(void *opaque)
4381+ memset(s->batch_notify_vqs, 0, sizeof(bitmap));
4382+
4383+ for (j = 0; j < nvqs; j += BITS_PER_LONG) {
4384+- unsigned long bits = bitmap[j];
4385++ unsigned long bits = bitmap[j / BITS_PER_LONG];
4386+
4387+ while (bits != 0) {
4388+ unsigned i = j + ctzl(bits);
4389+--
4390+2.25.0
4391+
4392diff --git a/debian/patches/series b/debian/patches/series
4393index 449c121..c9fce99 100644
4394--- a/debian/patches/series
4395+++ b/debian/patches/series
4396@@ -2,3 +2,14 @@ use-fixed-data-path.patch
4397 qboot-stop-using-inttypes.patch
4398 qboot-no-jump-tables.diff
4399 iscsi-cap-block-count-from-GET-LBA-STATUS-CVE-2020-1711.patch
4400+
4401+# ubuntu patches
4402+ubuntu/expose-vmx_qemu64cpu.patch
4403+ubuntu/enable-svm-by-default.patch
4404+ubuntu/define-ubuntu-machine-types.patch
4405+ubuntu/pre-bionic-256k-ipxe-efi-roms.patch
4406+ubuntu/lp-1857033-i386-Add-MSR-feature-bit-for-MDS-NO.patch
4407+ubuntu/lp-1857033-i386-Add-macro-for-stibp.patch
4408+ubuntu/lp-1857033-i386-Add-new-CPU-model-Cooperlake.patch
4409+lp-1859527-virtio-blk-fix-out-of-bounds-access-to-bitmap-in-not.patch
4410+ubuntu/vhost-user-gpu-Drop-trailing-json-comma.patch
4411diff --git a/debian/patches/ubuntu/define-ubuntu-machine-types.patch b/debian/patches/ubuntu/define-ubuntu-machine-types.patch
4412new file mode 100644
4413index 0000000..11a09a8
4414--- /dev/null
4415+++ b/debian/patches/ubuntu/define-ubuntu-machine-types.patch
4416@@ -0,0 +1,633 @@
4417+Description: Carry Ubuntu specific machine types
4418+
4419+Since Ubuntu is a downstream of qemu carrying patches it needs custom machine
4420+types to be able to identify and manage the delta that might affect machine
4421+types.
4422+
4423+This is an important piece to keep cross release migration supported for any
4424+downstream.
4425+
4426+Since the p->t transition these types are mostly stable copies of the upstream
4427+type (in the past this was more unstable upstream, so there was more delta),
4428+but they need to stay specific to reflect the delta we have. And even more so
4429+to have something to base off for affecting SRU changes.
4430+
4431+Also add a hint if instantiating fails due to now unsupported old guest
4432+types (LP: #1637936).
4433+
4434+Package maintainers please see https://wiki.ubuntu.com/QemuKVMMigration when
4435+maintaining this patch on SRU, merge or other packaging activity.
4436+While support on a type is dropped with the Release going EOL we never drop the
4437+type itself as long as it is maintainable. This will give people an extra
4438+chance to migrate and avoid issues like LP: 1802944.
4439+
4440+##
4441+
4442+This later on got extended by further ubuntu specific machine type changes:
4443+LP 1776189: Add a -hpb Ubuntu specific machine type suffix
4444+
4445+This works already fine on commandline, but Libvirt and other stacks above
4446+have no exploitation yet. Using a machine type has the benefit of being already
4447+controllable by most upper layer software like Libvirt (type= in os tag) but
4448+even up to Openstack (nova.conf or per image metadata on hw_machine_type).
4449+
4450+This is based on a discussion:
4451+ https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1769053
4452+
4453+A similar change is in CentOS/RH (there the default is switched, without
4454+even a way to go back.
4455+But since this can cause issues e.g. when migrating
4456+across hosts with different characteristics, it is not set as the default
4457+in Ubuntu with this change.
4458+
4459+Further we want to avoid "machine type proliferation", so we certainly won't
4460+add a type for every feature. But using a huge guest is more common and
4461+otherwise not yet achievable.
4462+
4463+This can be dropped when:
4464+ - libvirt exposes phys-bits/host-phys-bits natively
4465+ - at least the important stacks above exploit that config
4466+As an alternative we might decide at some point to make it the default without
4467+a way to switch back in following releases, but for now we don't want to do so.
4468+
4469+##
4470+
4471+This later on got extended by further ubuntu specific machine type changes:
4472+LP 1761372: special type for ppc64 meltdown/spectre defaults
4473+
4474+Upstresm 2.12 is not yet set in stone (almost but not full), and we ship 2.11
4475+with backports. SO we don't want to make a 2.12 machine type fully recommended
4476+yet.
4477+PPC was following x86 in providing a non default convenience type that has the
4478+spectre/meltdown flags toggled - in bug 1761372 we were requested to carry the
4479+same - but we agreed to do so as a 2.11 based type.
4480+
4481+Note I: x86 changes CPU types with -IBRS suffix, power chose to change machine
4482+types.
4483+
4484+Note II: this change can be squashed into ubuntu-machine-types.patch >=2.12
4485+where the base content will exist in the upstream source instead of
4486+patches on top.
4487+
4488+##
4489+
4490+[1] introduced a major regression into the 4.0 types by setting split
4491+irqchip to be the default. This was corrected by [2] and the fix further
4492+modified by [3] which overall adds a 4.0.1 machine type in qemu 4.1 (not
4493+yet released) and probably eventually stable branches.
4494+We will follow upstream with the upstream types, but the Ubuntu types so
4495+far didn't release a 4.0 type yet so for us we can fix it on the initial
4496+release right away.
4497+
4498+[1]: https://git.qemu.org/?p=qemu.git;a=commit;h=b2fc91db
4499+[2]: https://git.qemu.org/?p=qemu.git;a=commit;h=c87759ce
4500+[3]: https://git.qemu.org/?p=qemu.git;a=commit;h=8e8cbed0
4501+
4502+##
4503+
4504+Original-Author: Serge Hallyn <serge.hallyn@ubuntu.com>
4505+Original-Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1304107
4506+Author: Christian Ehrhardt <christian.ehrhardt@canonical.com>
4507+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1621042
4508+Bug-Ubuntu: https://bugs.launchpad.net/bugs/1776189
4509+Bug-Ubuntu: https://bugs.launchpad.net/bugs/1761372
4510+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1829868
4511+Forwarded: not-needed
4512+Forward-info: downstream decision
4513+
4514+--- a/hw/i386/pc_piix.c
4515++++ b/hw/i386/pc_piix.c
4516+@@ -429,7 +429,7 @@ static void pc_i440fx_4_2_machine_option
4517+ PCMachineClass *pcmc = PC_MACHINE_CLASS(m);
4518+ pc_i440fx_machine_options(m);
4519+ m->alias = "pc";
4520+- m->is_default = 1;
4521++ m->is_default = 0;
4522+ pcmc->default_cpu_version = 1;
4523+ }
4524+
4525+@@ -1026,3 +1026,175 @@ static void xenfv_machine_options(Machin
4526+ DEFINE_PC_MACHINE(xenfv, "xenfv", pc_xen_hvm_init,
4527+ xenfv_machine_options);
4528+ #endif
4529++
4530++/* Ubuntu machine types */
4531++static void pc_trusty_machine_options(MachineClass *m)
4532++{
4533++ pc_i440fx_2_0_machine_options(m);
4534++ m->desc = "Ubuntu 14.04 PC (i440FX + PIIX, 1996)";
4535++}
4536++DEFINE_I440FX_MACHINE(trusty, "pc-i440fx-trusty", pc_compat_2_0_fn,
4537++ pc_trusty_machine_options)
4538++
4539++static void pc_xenial_machine_options(MachineClass *m)
4540++{
4541++ pc_i440fx_2_5_machine_options(m);
4542++ m->desc = "Ubuntu 16.04 PC (i440FX + PIIX, 1996)";
4543++}
4544++DEFINE_I440FX_MACHINE(xenial, "pc-i440fx-xenial", NULL,
4545++ pc_xenial_machine_options);
4546++
4547++static void pc_yakkety_machine_options(MachineClass *m)
4548++{
4549++ pc_i440fx_2_6_machine_options(m);
4550++ m->desc = "Ubuntu 16.10 PC (i440FX + PIIX, 1996)";
4551++}
4552++DEFINE_I440FX_MACHINE(yakkety, "pc-i440fx-yakkety", NULL,
4553++ pc_yakkety_machine_options);
4554++
4555++static void pc_zesty_machine_options(MachineClass *m)
4556++{
4557++ pc_i440fx_2_8_machine_options(m);
4558++ m->desc = "Ubuntu 17.04 PC (i440FX + PIIX, 1996)";
4559++}
4560++DEFINE_I440FX_MACHINE(zesty, "pc-i440fx-zesty", NULL,
4561++ pc_zesty_machine_options);
4562++
4563++static void pc_artful_machine_options(MachineClass *m)
4564++{
4565++ pc_i440fx_2_10_machine_options(m);
4566++ m->desc = "Ubuntu 17.10 PC (i440FX + PIIX, 1996)";
4567++}
4568++DEFINE_I440FX_MACHINE(artful, "pc-i440fx-artful", NULL,
4569++ pc_artful_machine_options);
4570++
4571++static void pc_bionic_machine_options(MachineClass *m)
4572++{
4573++ pc_i440fx_2_11_machine_options(m);
4574++ m->desc = "Ubuntu 18.04 PC (i440FX + PIIX, 1996)";
4575++}
4576++DEFINE_I440FX_MACHINE(bionic, "pc-i440fx-bionic", NULL,
4577++ pc_bionic_machine_options);
4578++
4579++static void pc_bionic_hpb_machine_options(MachineClass *m)
4580++{
4581++ pc_i440fx_2_11_machine_options(m);
4582++ m->desc = "Ubuntu 18.04 PC (i440FX + PIIX, +host-phys-bits=true, 1996)";
4583++ compat_props_add(m->compat_props,
4584++ host_phys_bits_compat, host_phys_bits_compat_len);
4585++}
4586++DEFINE_I440FX_MACHINE(bionic_hpb, "pc-i440fx-bionic-hpb", NULL,
4587++ pc_bionic_hpb_machine_options);
4588++
4589++static void pc_cosmic_machine_options(MachineClass *m)
4590++{
4591++ pc_i440fx_2_12_machine_options(m);
4592++ m->desc = "Ubuntu 18.10 PC (i440FX + PIIX, 1996)";
4593++}
4594++DEFINE_I440FX_MACHINE(cosmic, "pc-i440fx-cosmic", NULL,
4595++ pc_cosmic_machine_options);
4596++
4597++static void pc_cosmic_hpb_machine_options(MachineClass *m)
4598++{
4599++ pc_i440fx_2_12_machine_options(m);
4600++ m->desc = "Ubuntu 18.10 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4601++ compat_props_add(m->compat_props,
4602++ host_phys_bits_compat, host_phys_bits_compat_len);
4603++}
4604++DEFINE_I440FX_MACHINE(cosmic_hpb, "pc-i440fx-cosmic-hpb", NULL,
4605++ pc_cosmic_hpb_machine_options);
4606++
4607++static void pc_disco_machine_options(MachineClass *m)
4608++{
4609++ pc_i440fx_3_1_machine_options(m);
4610++ m->desc = "Ubuntu 19.04 PC (i440FX + PIIX, 1996)";
4611++}
4612++DEFINE_I440FX_MACHINE(disco, "pc-i440fx-disco", NULL,
4613++ pc_disco_machine_options);
4614++
4615++static void pc_disco_hpb_machine_options(MachineClass *m)
4616++{
4617++ pc_i440fx_3_1_machine_options(m);
4618++ m->desc = "Ubuntu 19.04 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4619++ m->alias = NULL;
4620++ compat_props_add(m->compat_props,
4621++ host_phys_bits_compat, host_phys_bits_compat_len);
4622++}
4623++DEFINE_I440FX_MACHINE(disco_hpb, "pc-i440fx-disco-hpb", NULL,
4624++ pc_disco_hpb_machine_options);
4625++
4626++static void pc_eoan_machine_options(MachineClass *m)
4627++{
4628++ pc_i440fx_4_0_machine_options(m);
4629++ m->desc = "Ubuntu 19.10 PC (i440FX + PIIX, 1996)";
4630++ m->alias = NULL;
4631++}
4632++DEFINE_I440FX_MACHINE(eoan, "pc-i440fx-eoan", NULL,
4633++ pc_eoan_machine_options);
4634++
4635++static void pc_eoan_hpb_machine_options(MachineClass *m)
4636++{
4637++ pc_i440fx_4_0_machine_options(m);
4638++ m->desc = "Ubuntu 19.10 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4639++ m->alias = NULL;
4640++ compat_props_add(m->compat_props,
4641++ host_phys_bits_compat, host_phys_bits_compat_len);
4642++}
4643++DEFINE_I440FX_MACHINE(eoan_hpb, "pc-i440fx-eoan-hpb", NULL,
4644++ pc_eoan_hpb_machine_options);
4645++
4646++static void pc_focal_machine_options(MachineClass *m)
4647++{
4648++ pc_i440fx_4_0_machine_options(m);
4649++ m->desc = "Ubuntu 20.04 PC (i440FX + PIIX, 1996)";
4650++ m->alias = "ubuntu";
4651++ m->is_default = 1;
4652++}
4653++DEFINE_I440FX_MACHINE(focal, "pc-i440fx-focal", NULL,
4654++ pc_focal_machine_options);
4655++
4656++static void pc_focal_hpb_machine_options(MachineClass *m)
4657++{
4658++ pc_i440fx_4_0_machine_options(m);
4659++ m->desc = "Ubuntu 20.04 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4660++ m->alias = NULL;
4661++ compat_props_add(m->compat_props,
4662++ host_phys_bits_compat, host_phys_bits_compat_len);
4663++}
4664++DEFINE_I440FX_MACHINE(focal_hpb, "pc-i440fx-focal-hpb", NULL,
4665++ pc_focal_hpb_machine_options);
4666++
4667++/*
4668++ * Due to bug 1621042 we have to consider the broken old wily machine
4669++ * type as valid xenial type to ensure older VMs that got created prio
4670++ * to fixing 1621042 will still work.
4671++ * Therefore we have to keep it as-is (sans alias and being default) for
4672++ * the same time we keep the fixed xenial type above.
4673++ *
4674++ * Further bug 1829868 identified issues due to the wily type being released
4675++ * defined as a hybrid of pc_i440fx_2_4_machine_options and pc_compat_2_3.
4676++ * That mismatch caused issues since qemu 2.11 due to some definitions
4677++ * moving between those version references.
4678++ * This introduces pc_i440fx_wily_machine_options which encapsulates the
4679++ * old behavior as it was (this is the purpose of machine types).
4680++ */
4681++static void pc_i440fx_wily_machine_options(MachineClass *m)
4682++{
4683++ PCMachineClass *pcmc = PC_MACHINE_CLASS(m);
4684++ pc_i440fx_2_4_machine_options(m);
4685++ m->hw_version = "2.4.0";
4686++ pcmc->broken_reserved_end = true;
4687++ compat_props_add(m->compat_props, hw_compat_2_3, hw_compat_2_3_len);
4688++ compat_props_add(m->compat_props, pc_compat_2_3, pc_compat_2_3_len);
4689++}
4690++
4691++static void pc_wily_machine_options(MachineClass *m)
4692++{
4693++ pc_i440fx_wily_machine_options(m);
4694++ pc_i440fx_machine_options(m);
4695++ m->desc = "Ubuntu 15.04 PC (i440FX + PIIX, 1996)",
4696++ m->default_display = "std";
4697++}
4698++
4699++DEFINE_I440FX_MACHINE(wily, "pc-i440fx-wily", NULL,
4700++ pc_wily_machine_options);
4701+--- a/hw/i386/pc_q35.c
4702++++ b/hw/i386/pc_q35.c
4703+@@ -533,3 +533,144 @@ static void pc_q35_2_4_machine_options(M
4704+
4705+ DEFINE_Q35_MACHINE(v2_4, "pc-q35-2.4", NULL,
4706+ pc_q35_2_4_machine_options);
4707++
4708++/* Ubuntu machine types */
4709++static void pc_q35_xenial_machine_options(MachineClass *m)
4710++{
4711++ pc_q35_2_5_machine_options(m);
4712++ m->desc = "Ubuntu 16.04 PC (Q35 + ICH9, 2009)";
4713++}
4714++DEFINE_Q35_MACHINE(xenial, "pc-q35-xenial", NULL,
4715++ pc_q35_xenial_machine_options);
4716++
4717++static void pc_q35_yakkety_machine_options(MachineClass *m)
4718++{
4719++ pc_q35_2_6_machine_options(m);
4720++ m->desc = "Ubuntu 16.10 PC (Q35 + ICH9, 2009)";
4721++}
4722++DEFINE_Q35_MACHINE(yakkety, "pc-q35-yakkety", NULL,
4723++ pc_q35_yakkety_machine_options);
4724++
4725++static void pc_q35_zesty_machine_options(MachineClass *m)
4726++{
4727++ pc_q35_2_8_machine_options(m);
4728++ m->desc = "Ubuntu 17.04 PC (Q35 + ICH9, 2009)";
4729++}
4730++DEFINE_Q35_MACHINE(zesty, "pc-q35-zesty", NULL,
4731++ pc_q35_zesty_machine_options);
4732++
4733++static void pc_q35_artful_machine_options(MachineClass *m)
4734++{
4735++ pc_q35_2_10_machine_options(m);
4736++ m->desc = "Ubuntu 17.10 PC (Q35 + ICH9, 2009)";
4737++}
4738++DEFINE_Q35_MACHINE(artful, "pc-q35-artful", NULL,
4739++ pc_q35_artful_machine_options);
4740++
4741++static void pc_q35_bionic_machine_options(MachineClass *m)
4742++{
4743++ pc_q35_2_11_machine_options(m);
4744++ m->desc = "Ubuntu 18.04 PC (Q35 + ICH9, 2009)";
4745++}
4746++DEFINE_Q35_MACHINE(bionic, "pc-q35-bionic", NULL,
4747++ pc_q35_bionic_machine_options);
4748++
4749++static void pc_q35_bionic_hpb_machine_options(MachineClass *m)
4750++{
4751++ pc_q35_2_11_machine_options(m);
4752++ m->desc = "Ubuntu 18.04 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4753++ compat_props_add(m->compat_props,
4754++ host_phys_bits_compat, host_phys_bits_compat_len);
4755++}
4756++DEFINE_Q35_MACHINE(bionic_hpb, "pc-q35-bionic-hpb", NULL,
4757++ pc_q35_bionic_hpb_machine_options);
4758++
4759++static void pc_q35_cosmic_machine_options(MachineClass *m)
4760++{
4761++ /* yes that is "wrong" but has to stay that way for compatibility */
4762++ pc_q35_2_11_machine_options(m);
4763++ m->desc = "Ubuntu 18.10 PC (Q35 + ICH9, 2009)";
4764++}
4765++DEFINE_Q35_MACHINE(cosmic, "pc-q35-cosmic", NULL,
4766++ pc_q35_cosmic_machine_options);
4767++
4768++static void pc_q35_cosmic_hpb_machine_options(MachineClass *m)
4769++{
4770++ pc_q35_2_12_machine_options(m);
4771++ m->desc = "Ubuntu 18.10 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4772++ compat_props_add(m->compat_props,
4773++ host_phys_bits_compat, host_phys_bits_compat_len);
4774++}
4775++DEFINE_Q35_MACHINE(cosmic_hpb, "pc-q35-cosmic-hpb", NULL,
4776++ pc_q35_cosmic_hpb_machine_options);
4777++
4778++static void pc_q35_disco_machine_options(MachineClass *m)
4779++{
4780++ pc_q35_3_1_machine_options(m);
4781++ m->desc = "Ubuntu 19.04 PC (Q35 + ICH9, 2009)";
4782++}
4783++DEFINE_Q35_MACHINE(disco, "pc-q35-disco", NULL,
4784++ pc_q35_disco_machine_options);
4785++
4786++static void pc_q35_disco_hpb_machine_options(MachineClass *m)
4787++{
4788++ pc_q35_3_1_machine_options(m);
4789++ m->desc = "Ubuntu 19.04 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4790++ compat_props_add(m->compat_props,
4791++ host_phys_bits_compat, host_phys_bits_compat_len);
4792++}
4793++DEFINE_Q35_MACHINE(disco_hpb, "pc-q35-disco-hpb", NULL,
4794++ pc_q35_disco_hpb_machine_options);
4795++
4796++static void pc_q35_eoan_machine_options(MachineClass *m)
4797++{
4798++ pc_q35_4_0_machine_options(m);
4799++ m->desc = "Ubuntu 19.10 PC (Q35 + ICH9, 2009)";
4800++ /*
4801++ * [1] introduced a major regression into the 4.0 types by setting split
4802++ * irqchip to be the default. This was corrected by [2] and the fix further
4803++ * modified by [3] which overall adds a 4.0.1 machine type in qemu 4.1 (not
4804++ * yet released) and probably eventually stable branches.
4805++ * We will follow upstream with the upstream types, but the Ubuntu types so
4806++ * far didn't release a 4.0 type yet so for us we can fix it on the initial
4807++ * release right away.
4808++ * [1]: https://git.qemu.org/?p=qemu.git;a=commit;h=b2fc91db
4809++ * [2]: https://git.qemu.org/?p=qemu.git;a=commit;h=c87759ce
4810++ * [3]: https://git.qemu.org/?p=qemu.git;a=commit;h=8e8cbed0
4811++ */
4812++ m->default_kernel_irqchip_split = false;
4813++}
4814++DEFINE_Q35_MACHINE(eoan, "pc-q35-eoan", NULL,
4815++ pc_q35_eoan_machine_options);
4816++
4817++static void pc_q35_eoan_hpb_machine_options(MachineClass *m)
4818++{
4819++ pc_q35_eoan_machine_options(m);
4820++ m->desc = "Ubuntu 19.10 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4821++ compat_props_add(m->compat_props,
4822++ host_phys_bits_compat, host_phys_bits_compat_len);
4823++}
4824++DEFINE_Q35_MACHINE(eoan_hpb, "pc-q35-eoan-hpb", NULL,
4825++ pc_q35_eoan_hpb_machine_options);
4826++
4827++static void pc_q35_focal_machine_options(MachineClass *m)
4828++{
4829++ pc_q35_4_2_machine_options(m);
4830++ m->desc = "Ubuntu 20.04 PC (Q35 + ICH9, 2009)";
4831++ /* The ubuntu alias and default is on the i440fx type. The
4832++ * ubuntu-q35 alias auto-picks the most recent ubuntu q35 type */
4833++ m->alias = "ubuntu-q35";
4834++}
4835++DEFINE_Q35_MACHINE(focal, "pc-q35-focal", NULL,
4836++ pc_q35_focal_machine_options);
4837++
4838++static void pc_q35_focal_hpb_machine_options(MachineClass *m)
4839++{
4840++ pc_q35_focal_machine_options(m);
4841++ m->desc = "Ubuntu 20.04 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4842++ m->alias = NULL;
4843++ compat_props_add(m->compat_props,
4844++ host_phys_bits_compat, host_phys_bits_compat_len);
4845++}
4846++DEFINE_Q35_MACHINE(focal_hpb, "pc-q35-focal-hpb", NULL,
4847++ pc_q35_focal_hpb_machine_options);
4848+--- a/hw/ppc/spapr.c
4849++++ b/hw/ppc/spapr.c
4850+@@ -4470,11 +4470,14 @@ static const TypeInfo spapr_machine_info
4851+ };
4852+
4853+ #define DEFINE_SPAPR_MACHINE(suffix, verstr, latest) \
4854++ DEFINE_SPAPR_MACHINE_NAMED(suffix, suffix, verstr, latest)
4855++
4856++#define DEFINE_SPAPR_MACHINE_NAMED(qemuver, suffix, verstr, latest) \
4857+ static void spapr_machine_##suffix##_class_init(ObjectClass *oc, \
4858+ void *data) \
4859+ { \
4860+ MachineClass *mc = MACHINE_CLASS(oc); \
4861+- spapr_machine_##suffix##_class_options(mc); \
4862++ spapr_machine_##qemuver##_class_options(mc); \
4863+ if (latest) { \
4864+ mc->alias = "pseries"; \
4865+ mc->is_default = 1; \
4866+@@ -4499,7 +4502,7 @@ static void spapr_machine_4_2_class_opti
4867+ /* Defaults for the latest behaviour inherited from the base class */
4868+ }
4869+
4870+-DEFINE_SPAPR_MACHINE(4_2, "4.2", true);
4871++DEFINE_SPAPR_MACHINE(4_2, "4.2", false);
4872+
4873+ /*
4874+ * pseries-4.1
4875+@@ -4791,11 +4794,16 @@ DEFINE_SPAPR_MACHINE(2_6, "2.6", false);
4876+ * pseries-2.5
4877+ */
4878+
4879++/*
4880++ * ddw was backported to 2.6 (Yakkety), so we have to disable it in <=2.5
4881++ * can be dropped when dropping Yakkety machine type (18.10)
4882++ */
4883+ static void spapr_machine_2_5_class_options(MachineClass *mc)
4884+ {
4885+ SpaprMachineClass *smc = SPAPR_MACHINE_CLASS(mc);
4886+ static GlobalProperty compat[] = {
4887+ { "spapr-vlan", "use-rx-buffer-pools", "off" },
4888++ { TYPE_SPAPR_PCI_HOST_BRIDGE, "ddw", "off" },
4889+ };
4890+
4891+ spapr_machine_2_6_class_options(mc);
4892+@@ -4864,6 +4872,30 @@ static void spapr_machine_2_1_class_opti
4893+ }
4894+ DEFINE_SPAPR_MACHINE(2_1, "2.1", false);
4895+
4896++/* Ubuntu machine types */
4897++DEFINE_SPAPR_MACHINE_NAMED(2_5, ubuntu_xenial, "xenial", false);
4898++DEFINE_SPAPR_MACHINE_NAMED(2_6, ubuntu_yakkety, "yakkety", false);
4899++DEFINE_SPAPR_MACHINE_NAMED(2_8, ubuntu_zesty, "zesty", false);
4900++DEFINE_SPAPR_MACHINE_NAMED(2_10, ubuntu_artful, "artful", false);
4901++DEFINE_SPAPR_MACHINE_NAMED(2_11, ubuntu_bionic, "bionic", false);
4902++DEFINE_SPAPR_MACHINE_NAMED(2_12, ubuntu_cosmic, "cosmic", false);
4903++DEFINE_SPAPR_MACHINE_NAMED(3_1, ubuntu_disco, "disco", false);
4904++DEFINE_SPAPR_MACHINE_NAMED(4_0, ubuntu_eoan, "eoan", false);
4905++DEFINE_SPAPR_MACHINE_NAMED(4_2, ubuntu_focal, "focal", true);
4906++
4907++/* Special 2.11 type for 1761372, since 2.12 is unreleased and 18.04 is 2.11 */
4908++static void spapr_machine_2_11_sxxm_class_options(MachineClass *mc)
4909++{
4910++ SpaprMachineClass *smc = SPAPR_MACHINE_CLASS(mc);
4911++
4912++ spapr_machine_2_11_class_options(mc);
4913++ smc->default_caps.caps[SPAPR_CAP_CFPC] = SPAPR_CAP_WORKAROUND;
4914++ smc->default_caps.caps[SPAPR_CAP_SBBC] = SPAPR_CAP_WORKAROUND;
4915++ smc->default_caps.caps[SPAPR_CAP_IBS] = SPAPR_CAP_FIXED_CCD;
4916++}
4917++DEFINE_SPAPR_MACHINE_NAMED(2_11_sxxm, ubuntu_bionic_sxxm, "bionic-sxxm", false);
4918++/* end Special 2.11 type for 1761372 */
4919++
4920+ static void spapr_machine_register_types(void)
4921+ {
4922+ type_register_static(&spapr_machine_info);
4923+--- a/hw/s390x/s390-virtio-ccw.c
4924++++ b/hw/s390x/s390-virtio-ccw.c
4925+@@ -610,12 +610,15 @@ bool css_migration_enabled(void)
4926+ }
4927+
4928+ #define DEFINE_CCW_MACHINE(suffix, verstr, latest) \
4929++ DEFINE_CCW_MACHINE_NAMED(suffix, suffix, verstr, latest)
4930++
4931++#define DEFINE_CCW_MACHINE_NAMED(qemuver, suffix, verstr, latest) \
4932+ static void ccw_machine_##suffix##_class_init(ObjectClass *oc, \
4933+ void *data) \
4934+ { \
4935+ MachineClass *mc = MACHINE_CLASS(oc); \
4936+- ccw_machine_##suffix##_class_options(mc); \
4937+- mc->desc = "VirtIO-ccw based S390 machine v" verstr; \
4938++ ccw_machine_##qemuver##_class_options(mc); \
4939++ mc->desc = "VirtIO-ccw based S390 machine " verstr; \
4940+ if (latest) { \
4941+ mc->alias = "s390-ccw-virtio"; \
4942+ mc->is_default = 1; \
4943+@@ -625,7 +628,7 @@ bool css_migration_enabled(void)
4944+ { \
4945+ MachineState *machine = MACHINE(obj); \
4946+ current_mc = S390_MACHINE_CLASS(MACHINE_GET_CLASS(machine)); \
4947+- ccw_machine_##suffix##_instance_options(machine); \
4948++ ccw_machine_##qemuver##_instance_options(machine); \
4949+ } \
4950+ static const TypeInfo ccw_machine_##suffix##_info = { \
4951+ .name = MACHINE_TYPE_NAME("s390-ccw-virtio-" verstr), \
4952+@@ -646,7 +649,7 @@ static void ccw_machine_4_2_instance_opt
4953+ static void ccw_machine_4_2_class_options(MachineClass *mc)
4954+ {
4955+ }
4956+-DEFINE_CCW_MACHINE(4_2, "4.2", true);
4957++DEFINE_CCW_MACHINE(4_2, "4.2", false);
4958+
4959+ static void ccw_machine_4_1_instance_options(MachineState *machine)
4960+ {
4961+@@ -867,6 +870,17 @@ static void ccw_machine_2_4_class_option
4962+ }
4963+ DEFINE_CCW_MACHINE(2_4, "2.4", false);
4964+
4965++/* Ubuntu machine types */
4966++DEFINE_CCW_MACHINE_NAMED(2_5, ubuntu_xenial, "xenial", false);
4967++DEFINE_CCW_MACHINE_NAMED(2_6, ubuntu_yakkety, "yakkety", false);
4968++DEFINE_CCW_MACHINE_NAMED(2_8, ubuntu_zesty, "zesty", false);
4969++DEFINE_CCW_MACHINE_NAMED(2_10, ubuntu_artful, "artful", false);
4970++DEFINE_CCW_MACHINE_NAMED(2_11, ubuntu_bionic, "bionic", false);
4971++DEFINE_CCW_MACHINE_NAMED(2_12, ubuntu_cosmic, "cosmic", false);
4972++DEFINE_CCW_MACHINE_NAMED(3_1, ubuntu_disco, "disco", false);
4973++DEFINE_CCW_MACHINE_NAMED(3_1, ubuntu_eoan, "eoan", false);
4974++DEFINE_CCW_MACHINE_NAMED(4_2, ubuntu_focal, "focal", true);
4975++
4976+ static void ccw_machine_register_types(void)
4977+ {
4978+ type_register_static(&ccw_machine_info);
4979+--- a/vl.c
4980++++ b/vl.c
4981+@@ -2471,6 +2471,17 @@ static gint machine_class_cmp(gconstpoin
4982+ object_class_get_name(OBJECT_CLASS(mc1)));
4983+ }
4984+
4985++static int EndsWith(const char *str, const char *suffix)
4986++{
4987++ if (!str || !suffix)
4988++ return 0;
4989++ size_t lenstr = strlen(str);
4990++ size_t lensuffix = strlen(suffix);
4991++ if (lensuffix > lenstr)
4992++ return 0;
4993++ return strncmp(str + lenstr - lensuffix, suffix, lensuffix) == 0;
4994++}
4995++
4996+ static MachineClass *machine_parse(const char *name, GSList *machines)
4997+ {
4998+ MachineClass *mc;
4999+@@ -2493,8 +2504,23 @@ static MachineClass *machine_parse(const
5000+
The diff has been truncated for viewing.

Subscribers

People subscribed via source and target branches