Ubuntu
qemu package

Merge ~paelzer/ubuntu/+source/qemu:groovy-merge-5.0-5 into ubuntu/+source/qemu:debian/sid

  1. Git
  2. lp:~paelzer/ubuntu/+source/qemu
  3. groovy-merge-5.0-5
  4. Merge into debian/sid
Proposed by Christian Ehrhardt 
Status: Merged
Approved by: Christian Ehrhardt 
Approved revision: 09ed46e6daf220bba3a793a8d2a7c8fdaff466a9
Merge reported by: Christian Ehrhardt 
Merged at revision: 09ed46e6daf220bba3a793a8d2a7c8fdaff466a9
Proposed branch: ~paelzer/ubuntu/+source/qemu:groovy-merge-5.0-5
Merge into: ubuntu/+source/qemu:debian/sid
Diff against target: 9468 lines (+8580/-49)
45 files modified
debian/changelog (+3802/-0)
debian/control (+100/-22)
debian/control-in (+72/-13)
debian/kvm.arm32 (+2/-0)
debian/kvm.arm64 (+2/-0)
debian/kvm.powerpc (+13/-0)
debian/kvm.s390x (+2/-0)
debian/kvm.x86 (+1/-1)
debian/patches/series (+29/-0)
debian/patches/ubuntu/define-ubuntu-machine-types.patch (+684/-0)
debian/patches/ubuntu/enable-svm-by-default.patch (+34/-0)
debian/patches/ubuntu/lp-1835546-docs-system-Add-protvirt-docs.patch (+107/-0)
debian/patches/ubuntu/lp-1835546-linux-headers-update-against-Linux-5.7-rc3.patch (+665/-0)
debian/patches/ubuntu/lp-1835546-s390x-Add-SIDA-memory-ops.patch (+142/-0)
debian/patches/ubuntu/lp-1835546-s390x-Add-unpack-facility-feature-to-GA1.patch (+68/-0)
debian/patches/ubuntu/lp-1835546-s390x-Move-diagnose-308-subcodes-and-rcs-into-ipl.h.patch (+71/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Add-migration-blocker.patch (+71/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Disable-address-checks-for-PV-guest-I.patch (+127/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Fix-stray-error_report_err-in-s390_ma.patch (+43/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Handle-SIGP-store-status-correctly.patch (+51/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Inhibit-balloon-when-switching-to-pro.patch (+92/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-KVM-intercept-changes.patch (+67/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Move-IO-control-structures-over-SIDA.patch (+163/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Move-STSI-data-over-SIDAD.patch (+62/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Move-diag-308-data-over-SIDA.patch (+85/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-SCLP-interpretation.patch (+164/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Set-guest-IPL-PSW.patch (+67/-0)
debian/patches/ubuntu/lp-1835546-s390x-protvirt-Support-unpack-facility.patch (+878/-0)
debian/patches/ubuntu/lp-1835546-s390x-pv-Fix-KVM_PV_PREP_RESET-command-wrapper-name.patch (+78/-0)
debian/patches/ubuntu/lp-1835546-s390x-pv-Retry-ioctls-on-EINTR.patch (+45/-0)
debian/patches/ubuntu/lp-1835546-s390x-s390-virtio-ccw-Fix-build-on-systems-without-K.patch (+138/-0)
debian/patches/ubuntu/lp-1878973-fix-assert-regression.patch (+41/-0)
debian/patches/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch (+62/-0)
debian/patches/ubuntu/virtio-net-fix-rsc_ext-compat-handling.patch (+44/-0)
debian/qemu-block-extra.postrm.in (+43/-0)
debian/qemu-block-extra.prerm.in (+45/-0)
debian/qemu-kvm-init (+89/-0)
debian/qemu-system-common.install (+1/-0)
debian/qemu-system-common.qemu-kvm.default (+8/-0)
debian/qemu-system-common.qemu-kvm.service (+16/-0)
debian/qemu-system-gui.postrm.in (+44/-0)
debian/qemu-system-gui.prerm.in (+46/-0)
debian/qemu-system-x86.NEWS (+80/-0)
debian/qemu-system-x86.README.Debian (+47/-0)
debian/rules (+89/-13)
Reviewer Review Type Date Requested Status
Rafael David Tinoco (community) Approve
Canonical Server packageset reviewers Pending
Canonical Server Pending
git-ubuntu developers Pending
Review via email: mp+386069@code.launchpad.net
To post a comment you must log in.
Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

Due to issues to import git-ubuntu doesn't have auto-history.
But I restored everything easily since I have all upload tags at hand.

As usual with such complex deltas I do the squashing and re-org from split to logical in steps to be better understandable (if there is a need to track it down). Due to that there are a few more tags:

Tags for the reviewer:
- groovy-5.0/split/4.2-3ubuntu9
- groovy-5.0/logical/4.2-3ubuntu9
- groovy-5.0/logical/4.2-3ubuntu9-v*

PPA: https://launchpad.net/~ci-train-ppa-service/+archive/ubuntu/4102/

What is submittable to Debian was provided via:
  https://salsa.debian.org/qemu-team/qemu/-/merge_requests/13
Already accepted to some extend (8 commits of the first bunch, maybe more later). But since there was no upload yet we can't rebase&drop onto those atm.

All isolated special tests I had for this cycle have completed successfully now.
Regression tests have started and hopefully have their first set of results over the weekend.

~paelzer/ubuntu/+source/qemu:groovy-merge-5.0-5 updated
09ed46e... by Christian Ehrhardt 

fixup mistake in 'ubuntu machine type'

Signed-off-by: Christian Ehrhardt <email address hidden>

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

Tests LGTM:
prep (x86_64) : Pass 25 F/S/N 0/0/0 - RC 0 (17 min 58080 lin)
migrate (x86_64) : Pass 288 F/S/N 0/0/0 - RC 0 (75 min 215901 lin)
cross (x86_64) : Pass 52 F/S/N 0/1/3 - RC 0 (110 min 94607 lin)
misc (x86_64) : Pass 73 F/S/N 0/0/0 - RC 0 (36 min 42673 lin)

prep (s390x) : Pass 25 F/S/N 0/0/0 - RC 0 (11 min 42818 lin)
migrate (s390x) : Pass 268 F/S/N 0/5/0 - RC 0 (67 min 163478 lin)
cross (s390x) : Pass 58 F/S/N 0/1/2 - RC 0 (69 min 90783 lin)
misc (s390x) : Pass 67 F/S/N 0/0/0 - RC 0 (25 min 32004 lin)

prep (ppc64le) : Pass 20 F/S/N 0/0/0 - RC 0 (40 min 53612 lin)
migrate (ppc64le): Pass 288 F/S/N 0/0/0 - RC 0 (137 min 175296 lin)
cross (ppc64le) : Pass 48 F/S/N 0/0/0 - RC 0 (80 min 70318 lin)
misc (ppc64le) : Pass 48 F/S/N 0/1/0 - RC 0 (21 min 29653 lin)

Revision history for this message
Rafael David Tinoco (rafaeldtinoco) wrote :

I'll try to finish this today.

Revision history for this message
Rafael David Tinoco (rafaeldtinoco) wrote :

@paelzer,

would you mind clarifying:

Kept changes:

acf3107a07e * Enable nesting by default - d/p/ubuntu/enable-svm-by-default.patch: Enable nested sv>
    - Enable nesting by default
      - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default in qemu64 on amd

----

Dropped from Debian:

acf3107a07e * Enable nesting by default - d/p/ubuntu/enable-svm-by-default.patch
    - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default in qemu64 cpu type.

----

Dropped from upstream:

acf3107a07e * Enable nesting by default - d/p/ubuntu/enable-svm-by-default.patch: Enable nested sv>
    - remove d/p/ubuntu/expose-vmx_qemu64cpu.patch: Stop adding VMX to qemu64 to avoid broken nesting (LP 1868692)

------------

Are you dropping or keeping it ? =)

Revision history for this message
Rafael David Tinoco (rafaeldtinoco) wrote :
Download full text (12.5 KiB)

# CHECKLIST
----------------------------
 [.] changelog entry correct
 [.] targeted to correct codename
 [.] version number is correct
 [.] update-maintainer has been run before
 ----
 [.] changes forwarded upstream/debian (if appropriate)
 [.] patches match what was proposed upstream
 ----
 [.] patches correctly included in debian/patches/series?
 [.] patches have correct DEP3 metadata
----------------------------
 [.] = ok | [x] = not ok | [?] = question | [!] = note | [-] = n/a
----------------------------

# comments:

qemu (1:5.0-5ubuntu1) groovy; urgency=medium

  * Merge with Debian testing (LP: #1749393), remaining changes:

4581740cab7 * qemu-kvm to systemd unit
    - qemu-kvm to systemd unit
      - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm, hugepages and architecture specifics
      - d/qemu-system-common.qemu-kvm.service: systemd unit to call qemu-kvm-init
      - d/qemu-system-common.install: install helper script
      - d/qemu-system-common.qemu-kvm.default: defaults for /etc/default/qemu-kvm
      - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm

79aed57fd1c - Distribution specific machine type (LP: 1304107 1621042 1776189 1761372) - d/p/ubunt>
    - Distribution specific machine type (LP: 1304107 1621042)
      - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine types
      - d/qemu-system-x86.NEWS Info on fixed machine type definitions for host-phys-bits=true (LP: 1776189)
      - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
      - provide pseries-bionic-2.11-sxxm type as convenience with all meltdown/spectre workarounds enabled by default. (LP: 1761372).
      - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type

acf3107a07e * Enable nesting by default - d/p/ubuntu/enable-svm-by-default.patch: Enable nested sv>
    - Enable nesting by default
      - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default in qemu64 on amd
        [ No more strictly needed, but required for backward compatibility ]

c704d2e77cf * improved dependencies - Make qemu-system-common depend on qemu-block-extra
    - improved dependencies
      - Make qemu-system-common depend on qemu-block-extra

c327586b02b - Make qemu-utils depend on qemu-block-extra
      - Make qemu-utils depend on qemu-block-extra

c6e094c8034 - let qemu-utils recommend sharutils
      - let qemu-utils recommend sharutils

6eef2a30dd4 * arch aware kvm wrappers
    - arch aware kvm wrappers

5f2950e6fec - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490) - d/p/ubuntu/>
    - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
      - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types reference 256k path
      - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to handle incoming migrations from former releases.

b65fdaa793b - d/control-in: Disable capstone disassembler library support (universe)
    - d/control-in: Disable capstone disassembler library support (universe)

7c33bc83f46 d/qemu-system-x86.README.Debian: add into about nesting changes
    - d/qemu-system-x86.README.Debian: add ...

Revision history for this message
Rafael David Tinoco (rafaeldtinoco) wrote :

Okay, with the clarification I requested (About keeping or dropping that commit) I'm +1 to all this changes considering you have already ran your regression tests and it was all good.

review: Approve
Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

About the nesting change.
1. in the past this was for VMX and SVM
2. VMX we dropped (listed at CL line 56)
3. SVM we kept (listed at CL line 22)

We only still (and will continue to) do #3 for compat reasons the CL mentioned that.

Since this was formerly part of the same high level bullet point it is part of kept&dropped changes but correct in regard to the respective sub-snippet.

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

To ssh://git.launchpad.net/~usd-import-team/ubuntu/+source/qemu
 * [new tag] upload/1%5.0-5ubuntu1 -> upload/1%5.0-5ubuntu

Uploading to ubuntu (via ftp to upload.ubuntu.com):
  Uploading qemu_5.0-5ubuntu1.dsc: done.
  Uploading qemu_5.0.orig.tar.xz: done.
  Uploading qemu_5.0-5ubuntu1.debian.tar.xz: done.
  Uploading qemu_5.0-5ubuntu1_source.buildinfo: done.
  Uploading qemu_5.0-5ubuntu1_source.changes: done.
Successfully uploaded packages.

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/debian/changelog b/debian/changelog
2index 8805896..8ddf09e 100644
3--- a/debian/changelog
4+++ b/debian/changelog
5@@ -1,3 +1,136 @@
6+qemu (1:5.0-5ubuntu1) groovy; urgency=medium
7+
8+ * Merge with Debian testing (LP: #1749393), remaining changes:
9+ - qemu-kvm to systemd unit
10+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
11+ hugepages and architecture specifics
12+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
13+ qemu-kvm-init
14+ - d/qemu-system-common.install: install helper script
15+ - d/qemu-system-common.qemu-kvm.default: defaults for
16+ /etc/default/qemu-kvm
17+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
18+ - Distribution specific machine type (LP: 1304107 1621042)
19+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
20+ types
21+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
22+ for host-phys-bits=true (LP: 1776189)
23+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
24+ - provide pseries-bionic-2.11-sxxm type as convenience with all
25+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
26+ - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
27+ - Enable nesting by default
28+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
29+ in qemu64 on amd
30+ [ No more strictly needed, but required for backward compatibility ]
31+ - improved dependencies
32+ - Make qemu-system-common depend on qemu-block-extra
33+ - Make qemu-utils depend on qemu-block-extra
34+ - let qemu-utils recommend sharutils
35+ - arch aware kvm wrappers
36+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
37+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
38+ reference 256k path
39+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
40+ handle incoming migrations from former releases.
41+ - d/control-in: Disable capstone disassembler library support (universe)
42+ - d/qemu-system-x86.README.Debian: add info about updated nesting changes
43+ - d/control*, d/rules: disable xen by default, but provide universe
44+ package qemu-system-x86-xen as alternative
45+ [includes --disable-xen for user-static builds]
46+ - d/control-in: disable pmem on ppc64 as it is currently considered
47+ experimental on that architecture (pmdk v1.8-1)
48+ - d/rules: makefile definitions can't be recursive - sys_systems for s390x
49+ - d/rules: report config log from the correct subdir
50+ - allow qemu to load old modules post upgrade (LP 1847361)
51+ - d/qemu-block-extra.*.in, d/qemu-system-gui.*.in: save shared objects on
52+ upgrade
53+ - d/rules: generate maintainer scripts matching package version on build
54+ - d/rules: enable --enable-module-upgrades where --enable-modules is set
55+ - d/p/ubuntu/lp-1835546-*: backport the s390x protvirt feature (LP 1835546)
56+ - d/control-in: disable rbd support unavailable on riscv (LP: 1872931)
57+ - debian/patches/ubuntu/lp-1878973-*: fix assert in qemu-guest-agent that
58+ crashes it on shutdown (LP 1878973)
59+ * Dropped changes (no more needed)
60+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
61+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
62+ in qemu64 cpu type.
63+ - d/control: avoid upgrade issues triggered by moving ivshmem tools after
64+ Debian. Fixed by bumping the related Breaks/Replaces to the
65+ Version Ubuntu introduced the change (LP 1862287)
66+ * Dropped changes (in Debian)
67+ - improved s390x support
68+ - d/binfmt-update-in: fix binfmt being called in some containers
69+ (LP 1840956)
70+ - qemu-system-x86-microvm package
71+ In addition to the generic multi-purpose qemu also provide a minimal
72+ feature binary that is loading faster for use cases with microvm machine
73+ type and qboot bios
74+ - d/control-in: add a new qemu-system-x86-microvm package
75+ - d/rules: add an extra config/build step to get the minimal qemu
76+ - Security and packaging fixes (LP 1872937)
77+ - arm-fix-PAuth-sbox-functions-CVE-2020-10702.patch
78+ - net-tulip-check-frame-size-and-r-w-data-length-CVE-2020-11102.patch
79+ CVE-2020-10702
80+ CVE-2020-11102
81+ - fix external spice UI
82+ + install ui-spice-app.so in qemu-system-common
83+ + install ui-spice-app.so only if built, spice is optional
84+ - switch binfmt registration to use update-binfmts --[un]import (#866756)
85+ - qemu-system-gui: Multi-Arch=same, not foreign (#956763)
86+ - qemu-system-data: s/highcolor/hicolor/ (#955741)
87+ - enable riscv build (LP 1872931)
88+ [ changes picked from Debian ]
89+ - enable support for riscv64 hosts
90+ - only enable librbd on architectures where it is built
91+ - ceph: do not list librados-dev as we only use librbd-dev and the latter
92+ depends on the former
93+ - seccomp grew up, no need in versioned build-dep
94+ - enable seccomp only on architectures where it can be built
95+ * Dropped changes (upstream)
96+ - d/p/ubuntu/lp-1857033-*: add support for Cooper Lake cpu model
97+ (LP 1857033)
98+ - d/p/lp-1859527-*: avoid breakage on high virtqueue counts (LP 1859527)
99+ - d/p/ubuntu/vhost-user-gpu-Drop-trailing-json-comma.patch: fix parsing of
100+ vhost-user-gpu
101+ - d/p/ubuntu/lp-1847361-vhost-correctly-turn-on-VIRTIO_F_IOMMU_PLATFORM.patch:
102+ avoid unnecessary IOTLB transactions (LP 1866207)
103+ - d/p/stable/lp-1867519-*: Stabilize qemu 4.2 with upstream
104+ patches @qemu-stable (LP 1867519)
105+ - remove d/p/ubuntu/expose-vmx_qemu64cpu.patch: Stop adding VMX to qemu64
106+ to avoid broken nesting (LP 1868692)
107+ - d/p/ubuntu/lp-1871830-*: avoid crash when using QEMU_MODULE_DIR
108+ (LP 1871830)
109+ - d/p/ubuntu/lp-1872107*: fix migration while rebooting guests (LP 1872107)
110+ - d/p/ubuntu/lp-1872931-*: fix build on non KVM platforms
111+ - d/p/ubuntu/lp-1872945-*: fix riscv emulation errors that e.g. hung ssh
112+ and clobbered doubles (LP 1872945)
113+ - SECURITY UPDATE: DoS via integer overflow in ati_2d_blt()
114+ - debian/patches/ubuntu/CVE-2020-11869.patch: fix checks in
115+ ati_2d_blt() to avoid crash in hw/display/ati_2d.c.
116+ - CVE-2020-11869
117+ - d/p/ubuntu/lp-1805256*: Fixes for QEMU on aarch64 ARM hosts
118+ - async: use explicit memory barriers (LP 1805256)
119+ - aio-wait: delegate polling of main AioContext if BQL not held
120+ - d/p/ubuntu/lp-1882774-*: fix issues with VMX subfeatures on systems not
121+ supporting to set them (LP 1882774)
122+ - d/p/ubuntu/lp-1847361-modules-load-upgrade.patch: to fallback module
123+ load to a versioned path
124+ * Added Changes:
125+ - d/control: regenerate debian/control out of control-in
126+ - update d/p/ubuntu/lp-1835546-* to the final versions
127+ - 11 patches dropped as they are in 5.0
128+ - 20 patches updated to how they will be in 5.1
129+ - d/p/ubuntu/virtio-net-fix-rsc_ext-compat-handling.patch: fix
130+ FTBFS in groovy
131+ - Make qemu-system-x86-microvm a transitional package as the binary is now
132+ in qemu-system-x86 itself.
133+ - d/control-in: build-dep libcap is no more needed
134+ - d/rules: update arch aware kvm wrappers
135+ - d/qemu-system-x86.README.Debian: fix typo
136+
137+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 16 Jun 2020 16:50:09 +0200
138+
139 qemu (1:5.0-5) unstable; urgency=medium
140
141 * more binfmt-install updates
142@@ -130,6 +263,182 @@ qemu (1:4.2-4) unstable; urgency=medium
143
144 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 14 Apr 2020 12:44:43 +0300
145
146+qemu (1:4.2-3ubuntu9) groovy; urgency=medium
147+
148+ * debian/patches/ubuntu/lp-1878973-*: fix assert in qemu-guest-agent that
149+ crashes it on shutdown (LP: #1878973)
150+ * d/p/ubuntu/lp-1882774-*: fix issues with VMX subfeatures on systems not
151+ supporting to set them (LP: #1882774)
152+
153+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 02 Jun 2020 10:42:49 +0200
154+
155+qemu (1:4.2-3ubuntu8) groovy; urgency=medium
156+
157+ * d/p/ubuntu/lp-1805256*: Fixes for QEMU on aarch64 ARM hosts
158+ - async: use explicit memory barriers (LP: #1805256)
159+ - aio-wait: delegate polling of main AioContext if BQL not held
160+
161+ -- Rafael David Tinoco <rafaeldtinoco@ubuntu.com> Wed, 27 May 2020 21:47:21 +0000
162+
163+qemu (1:4.2-3ubuntu7) groovy; urgency=medium
164+
165+ * SECURITY UPDATE: DoS via integer overflow in ati_2d_blt()
166+ - debian/patches/ubuntu/CVE-2020-11869.patch: fix checks in
167+ ati_2d_blt() to avoid crash in hw/display/ati_2d.c.
168+ - CVE-2020-11869
169+
170+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 21 May 2020 14:43:19 -0400
171+
172+qemu (1:4.2-3ubuntu6) focal; urgency=medium
173+
174+ [ Christian Ehrhardt ]
175+ * enable riscv build (LP: #1872931)
176+ [ changes picked from Debian ]
177+ - enable support for riscv64 hosts
178+ - only enable librbd on architectures where it is built
179+ - ceph: do not list librados-dev as we only use librbd-dev and the latter
180+ depends on the former
181+ - seccomp grew up, no need in versioned build-dep
182+ - enable seccomp only on architectures where it can be built
183+ * d/p/ubuntu/lp-1872931-*: fix build on non KVM platforms
184+ * d/p/ubuntu/lp-1872945-*: fix riscv emulation errors that e.g. hung ssh
185+ and clobbered doubles (LP: #1872945)
186+
187+ [ William Grant ]
188+ * d/control-in: disable rbd support unavailable on riscv (LP: 1872931)
189+
190+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 15 Apr 2020 14:27:15 +0200
191+
192+qemu (1:4.2-3ubuntu5) focal; urgency=medium
193+
194+ [ Christian Ehrhardt ]
195+ * d/p/ubuntu/lp-1871830-*: avoid crash when using QEMU_MODULE_DIR
196+ (LP: #1871830)
197+ * Security and packaging fixes (LP: #1872937)
198+ - arm-fix-PAuth-sbox-functions-CVE-2020-10702.patch
199+ - net-tulip-check-frame-size-and-r-w-data-length-CVE-2020-11102.patch
200+ CVE-2020-10702
201+ CVE-2020-11102
202+ - fix external spice UI
203+ + install ui-spice-app.so in qemu-system-common
204+ + install ui-spice-app.so only if built, spice is optional
205+ - switch binfmt registration to use update-binfmts --[un]import (#866756)
206+ - qemu-system-gui: Multi-Arch=same, not foreign (#956763)
207+ - qemu-system-data: s/highcolor/hicolor/ (#955741)
208+ * d/p/ubuntu/lp-1872107*: fix migration while rebooting guests (LP: #1872107)
209+
210+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 15 Apr 2020 11:26:44 +0200
211+
212+qemu (1:4.2-3ubuntu4) focal; urgency=medium
213+
214+ * d/p/ubuntu/lp-1835546-*: backport the s390x protvirt feature (LP: #1835546)
215+ * remove d/p/ubuntu/expose-vmx_qemu64cpu.patch: Stop adding VMX to qemu64
216+ to avoid broken nesting (LP: #1868692)
217+
218+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 20 Mar 2020 08:02:16 +0100
219+
220+qemu (1:4.2-3ubuntu3) focal; urgency=medium
221+
222+ * d/p/stable/lp-1867519-*: Stabilize qemu 4.2 with upstream
223+ patches @qemu-stable (LP: #1867519)
224+
225+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 18 Mar 2020 13:57:57 +0100
226+
227+qemu (1:4.2-3ubuntu2) focal; urgency=medium
228+
229+ * allow qemu to load old modules post upgrade (LP: #1847361)
230+ - d/p/ubuntu/lp-1847361-modules-load-upgrade.patch: to fallback module
231+ load to a versioned path
232+ - d/qemu-block-extra.*.in, d/qemu-system-gui.*.in: save shared objects on
233+ upgrade
234+ - d/rules: generate maintainer scripts matching package version on build
235+ - d/rules: enable --enable-module-upgrades where --enable-modules is set
236+ * d/p/ubuntu/lp-1847361-vhost-correctly-turn-on-VIRTIO_F_IOMMU_PLATFORM.patch:
237+ avoid unnecessary IOTLB transactions (LP: #1866207)
238+
239+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 02 Mar 2020 15:21:27 +0100
240+
241+qemu (1:4.2-3ubuntu1) focal; urgency=medium
242+
243+ * Merge with Debian testing, remaining changes:
244+ - qemu-kvm to systemd unit
245+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
246+ hugepages and architecture specifics
247+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
248+ qemu-kvm-init
249+ - d/qemu-system-common.install: install helper script
250+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
251+ - d/qemu-system-common.qemu-kvm.default: defaults for
252+ /etc/default/qemu-kvm
253+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
254+ - Distribution specific machine type (LP: 1304107 1621042)
255+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
256+ types
257+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
258+ for host-phys-bits=true (LP: 1776189)
259+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
260+ - provide pseries-bionic-2.11-sxxm type as convenience with all
261+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
262+ - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
263+ - Enable nesting by default
264+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
265+ in qemu64 cpu type.
266+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
267+ in qemu64 on amd
268+ [ No more strictly needed, but required for backward compatibility ]
269+ - improved dependencies
270+ - Make qemu-system-common depend on qemu-block-extra
271+ - Make qemu-utils depend on qemu-block-extra
272+ - let qemu-utils recommend sharutils
273+ - improved s390x support
274+ - d/rules: build s390-ccw.img with upstream Makefile
275+ - d/rules: build s390-netboot.img with upstream Makefile
276+ - arch aware kvm wrappers
277+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
278+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
279+ reference 256k path
280+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
281+ handle incoming migrations from former releases.
282+ - d/control-in: Disable capstone disassembler library support (universe)
283+ - d/binfmt-update-in: fix binfmt being called in some containers
284+ (LP 1840956)
285+ - d/p/ubuntu/lp-1857033-*: add support for Cooper Lake cpu model
286+ (LP 1857033)
287+ - d/qemu-system-x86.README.Debian: add info about updated nesting changes
288+ - d/control*, d/rules: disable xen by default, but provide universe
289+ package qemu-system-x86-xen as alternative
290+ - d/p/lp-1859527-*: avoid breakage on high virtqueue counts (LP 1859527)
291+ - Dropped changes [ in Debian ]
292+ - d/control: update VCS links
293+ - d/control-in: bump debhelper build-dep for compat 12
294+ - d/control: disable bluetooth being deprecated
295+ - d/not-installed: ignore new interop docs and extra icons for now
296+ - d/not-installed: do not install elf2dmp until namespaced
297+ - d/qemu-utils.install: install new tools qemu-edid and qemu-keymap
298+ [ not needed ]
299+ - d/control-in: promote qemu-efi/ovmf in Ubuntu (LP 1570617)
300+ - s390x support
301+ - Create qemu-system-s390x package
302+ - Enable numa support for s390x
303+ - d/control*: enable libpmem support for nvdimms (LP 1790856)
304+ * Added changes
305+ - d/control: regenerate debian/control out of control-in
306+ - qemu-system-x86-microvm package
307+ In addition to the generic multi-purpose qemu also provide a minimal
308+ feature binary that is loading faster for use cases with microvm machine
309+ type and qboot bios
310+ - d/control-in: add a new qemu-system-x86-microvm package
311+ - d/rules: add an extra config/build step to get the minimal qemu
312+ - d/control-in: disable pmem on ppc64 as it is currently considered
313+ experimental on that architecture (pmdk v1.8-1)
314+ - d/rules: makefile definitions can't be recursive - sys_systems for s390x
315+ - d/p/ubuntu/vhost-user-gpu-Drop-trailing-json-comma.patch: fix parsing of
316+ vhost-user-gpu
317+ - d/rules: report config log from the correct subdir
318+ - d/rules: --disable-xen for user-static builds
319+
320+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 12 Feb 2020 15:21:56 +0100
321+
322 qemu (1:4.2-3) unstable; urgency=medium
323
324 * mention closing of #909743 in previous changelog (Closes: #909743)
325@@ -172,6 +481,169 @@ qemu (1:4.2-2) unstable; urgency=medium
326
327 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 31 Jan 2020 23:51:09 +0300
328
329+qemu (1:4.2-1ubuntu2) focal; urgency=medium
330+
331+ * d/control: avoid upgrade issues triggered by moving ivshmem tools after
332+ Debian. Fixed by by bumping the related Breaks/Replaces to the
333+ Version Ubuntu introduced the change (LP: #1862287)
334+
335+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 07 Feb 2020 07:31:21 +0100
336+
337+qemu (1:4.2-1ubuntu1) focal; urgency=medium
338+
339+ * Merge with Debian testing, Among many other things this fixes LP Bugs:
340+ LP: #1847806 - add mff* instructions to not break on ppc64 with newer glibc
341+ LP: #1812822 - avoid crashes on detaching vhost_net interfaces
342+ LP: #1852744 - Crypto Passthrough Interrupt Support
343+ LP: #1853316 - CCW IPL Support
344+ Remaining changes:
345+ - qemu-kvm to systemd unit
346+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
347+ hugepages and architecture specifics
348+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
349+ qemu-kvm-init
350+ - d/qemu-system-common.install: install helper script
351+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
352+ - d/qemu-system-common.qemu-kvm.default: defaults for
353+ /etc/default/qemu-kvm
354+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
355+ - Distribution specific machine type (LP: 1304107 1621042)
356+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
357+ types
358+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
359+ for host-phys-bits=true (LP: 1776189)
360+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
361+ - provide pseries-bionic-2.11-sxxm type as convenience with all
362+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
363+ - Enable nesting by default
364+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
365+ in qemu64 cpu type.
366+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
367+ in qemu64 on amd
368+ [ No more strictly needed, but required for backward compatibility ]
369+ - improved dependencies
370+ - Make qemu-system-common depend on qemu-block-extra
371+ - Make qemu-utils depend on qemu-block-extra
372+ - let qemu-utils recommend sharutils
373+ - s390x support
374+ - Create qemu-system-s390x package
375+ - Enable numa support for s390x
376+ - d/rules: build s390-ccw.img with upstream Makefile
377+ - d/rules: build s390-netboot.img with upstream Makefile
378+ - arch aware kvm wrappers
379+ - d/control: update VCS links
380+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
381+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
382+ reference 256k path
383+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
384+ handle incoming migrations from former releases.
385+ - d/control-in: Disable capstone disassembler library support (universe)
386+ - d/control: disable bluetooth being deprecated
387+ - d/not-installed: ignore new interop docs and extra icons for now
388+ - d/not-installed: do not install elf2dmp until namespaced
389+ - d/qemu-utils.install: install new tools qemu-edid and qemu-keymap
390+ - d/control-in: promote qemu-efi/ovmf in Ubuntu (LP 1570617)
391+ - d/binfmt-update-in: fix binfmt being called in some containers
392+ (LP 1840956)
393+ - Dropped changes (in Debian)
394+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
395+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
396+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
397+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
398+ - enable RDMA config option
399+ - add libibumad-dev build-dep
400+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: bring back
401+ some SLOF bits stripped in DFSG to be able to build s390x-netboot roms
402+ As that hack to build s390-ccw.img rom can't build s390x-netboot.img
403+ replace it with a build-indep using the upstream makefiles.
404+ This is less prone to miss future changes/fixes that are done to the
405+ makefiles
406+ - remove /dev/kvm permission handling (moved to systemd 239-6) (#892945)
407+ - d/p/debianize-qemu-guest-service.patch: fix path of qemu-ga
408+ - d/rules: fix qemu-kvm service for debhelper compat >=12
409+ - Refreshed patches for v4.0 context changes
410+ - d/control*: remove sdlabi which was removed upstream
411+ - d/control*: enable docs (now explicit) and provide new build-dep
412+ python3-sphinx
413+ - d/qemu-system-data.install: use new paths for formerly used icons
414+ - Merge with Upstream release of qemu 4.0
415+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch
416+ - Dropped changes (Upstream)
417+ - d/p/ubuntu/lp-1830243-*: s390x Secure Linux Boot Toleration (LP 1830243)
418+ - d/p/ubuntu/lp-1830238-*: s390x hardware cpu model (LP 1830238)
419+ - d/p/ubuntu/linux-user-fix-__NR_semtimedop-undeclared-error.patch:
420+ fix i386 build error
421+ - d/p/ubuntu/lp-1836066-s390-cpumodel-fix-description-for-the-new-vector-fac:
422+ fix naming of the new vector facitlity (LP 1836066)
423+ - d/p/ubuntu/lp-1836159-fix-with-latest-kernel.patch: fix build issues
424+ for missing SIOCGSTAMP definition; final fix is still in discussion
425+ upstream (LP: 1836159)
426+ - d/p/ubuntu/lp-1836154-*: further fixups for HW CPU model for newer
427+ s390x machines (LP 1836154)
428+ - d/p/ubuntu/lp-1841066-*: fix detection of arch_capability flags
429+ (LP 1841066)
430+ - d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
431+ update the z15 model name (LP 1842774)
432+ - d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
433+ fix a potential hang when qemu or qemu-img where accessing http backed
434+ disks via libcurl (LP 1848556)
435+ - d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-*:
436+ fix migration issue from qemu <4.0 when using virtio-balloon (LP 1848497)
437+ - d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
438+ toleration for future machines (LP 1830704)
439+ - SECURITY UPDATE: Add support for exposing md-clear functionality
440+ to guests
441+ - d/p/ubuntu/enable-md-clear.patch
442+ - d/p/ubuntu/enable-md-no.patch
443+ - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
444+ - SECURITY UPDATE: heap overflow when loading device tree blob
445+ - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
446+ copy the device tree blob into is.
447+ - CVE-2018-20815
448+ - SECURITY UPDATE: device driver denial of service via NULL pointer
449+ dereference
450+ - d/p/ubuntu/CVE-2019-5008.patch: Define skeleton 'power_mem_read'
451+ routine
452+ - CVE-2019-5008
453+ - SECURITY UPDATE: information leak in SLiRP
454+ - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
455+ emulating ident.
456+ - CVE-2019-9824
457+ - d/p/ubuntu/lp-1812384-s390x-Return-specification-exception-for-
458+ unimplement.patch: properly return architecture defined exception
459+ on bad subcodes of diag 308 (LP 1812384)
460+ * Dropped changes (no more needed)
461+ - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
462+ mv_conffile since the new path is a directory in the old package
463+ version which can not be handled by mv_conffile.
464+ [ only needed between disco and eoan ]
465+ - disable pvrdma
466+ [ CVEs all fixed now ]
467+ - d/p/ubuntu/Revert-target-i386-kvm-add-VMX-migration-blocker.patch:
468+ avoid misdetection of simplified nesting blocking all migrations
469+ [ qemu now detects and handles nesting - needs kernel >=4.20 ]
470+ - Enable nesting by default
471+ - d/qemu-system-x86.modprobe: set nested=1 module option on intel.
472+ (is default on amd)
473+ - d/qemu-system-x86.postinst: re-load kvm_intel.ko if it was loaded
474+ without nested=1
475+ [ nesting is default in kernel modules and default selected cpu types ]
476+ * Added changes
477+ - d/control: regenerate debian/control out of control-in
478+ - updated ubuntu machine types to match qemu 4.2 in Ubuntu 20.04 Focal
479+ - added ubuntu focal types for qemu 4.2
480+ - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
481+ - d/p/ubuntu/lp-1857033-*: add support for Cooper Lake cpu model
482+ (LP: #1857033)
483+ - d/qemu-system-x86.README.Debian: add info about updated nesting changes
484+ - d/control*, d/rules: disable xen by default, but provide universe
485+ package qemu-system-x86-xen as alternative
486+ - fix typos in changelog and d/qemu-system-x86.NEWS
487+ - d/p/lp-1859527-*: avoid breakage on high virtqueue counts (LP: #1859527)
488+ - d/control*: enable libpmem support for nvdimms (LP: #1790856)
489+
490+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 08 Jan 2020 15:27:42 +0100
491+
492 qemu (1:4.2-1) unstable; urgency=medium
493
494 * new upstream release (4.2.0)
495@@ -248,6 +720,205 @@ qemu (1:4.1-1) unstable; urgency=medium
496
497 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 27 Aug 2019 12:43:43 +0300
498
499+qemu (1:4.0+dfsg-0ubuntu10) focal; urgency=medium
500+
501+ * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
502+ fix a potential hang when qemu or qemu-img where accessing http backed
503+ disks via libcurl (LP: #1848556)
504+ * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
505+ fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)
506+
507+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 21 Oct 2019 14:51:45 +0200
508+
509+qemu (1:4.0+dfsg-0ubuntu9) eoan; urgency=medium
510+
511+ * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
512+ update the z15 model name (LP: #1842774)
513+
514+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 24 Sep 2019 11:42:58 +0200
515+
516+qemu (1:4.0+dfsg-0ubuntu8) eoan; urgency=medium
517+
518+ * d/binfmt-update-in: fix binfmt being called in some containers
519+ (LP: #1840956)
520+
521+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 09 Sep 2019 11:03:13 +0200
522+
523+qemu (1:4.0+dfsg-0ubuntu7) eoan; urgency=medium
524+
525+ * No-change upload with strops.h and sys/strops.h removed in glibc.
526+
527+ -- Matthias Klose <doko@ubuntu.com> Thu, 05 Sep 2019 11:07:25 +0000
528+
529+qemu (1:4.0+dfsg-0ubuntu6) eoan; urgency=medium
530+
531+ * d/p/ubuntu/lp-1841066-*: fix detection of arch_capability flags
532+ (LP: #1841066)
533+
534+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 26 Aug 2019 12:08:04 +0200
535+
536+qemu (1:4.0+dfsg-0ubuntu5) eoan; urgency=medium
537+
538+ * d/p/ubuntu/lp-1836154-*: further fixups for HW CPU model for newer
539+ s390x machines (LP: #1836154)
540+
541+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 17 Jul 2019 13:20:42 +0200
542+
543+qemu (1:4.0+dfsg-0ubuntu4) eoan; urgency=medium
544+
545+ * d/control-in: promote qemu-efi/ovmf in Ubuntu (LP: #1570617)
546+ - pick Debian change for (#889885)
547+ move ovmf to recommends on debian and update aarch ovmf refs
548+ - stop Ubuntu to drop ovmf/qemu-efi to a suggest
549+
550+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 12 Jul 2019 12:48:24 +0200
551+
552+qemu (1:4.0+dfsg-0ubuntu3) eoan; urgency=medium
553+
554+ * d/p/ubuntu/lp-1836159-fix-with-latest-kernel.patch: fix build issues
555+ for missing SIOCGSTAMP definition; final fix is still in discussion
556+ upstream (LP: 1836159)
557+
558+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 11 Jul 2019 10:10:00 +0200
559+
560+qemu (1:4.0+dfsg-0ubuntu2) eoan; urgency=medium
561+
562+ * d/p/ubuntu/lp-1836066-s390-cpumodel-fix-description-for-the-new-vector-fac:
563+ fix naming of the new vector facitlity (LP: #1836066)
564+ * d/control-in: update VCS links in control template as well
565+
566+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 11 Jul 2019 08:18:44 +0200
567+
568+qemu (1:4.0+dfsg-0ubuntu1) eoan; urgency=medium
569+
570+ * Merge with Upstream release of qemu 4.0.
571+ Among many other things this fixes LP Bugs:
572+ LP: #1782206 - SnowRidge Accelerator Interfacing Architecture (AIA)
573+ LP: #1828038 - Update s390x CPU Model for more HW support
574+ LP: #1832622 - count cache flush Spectre v2 mitigation for ppc64el
575+ Remaining Changes:
576+ - qemu-kvm to systemd unit
577+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
578+ hugepages and architecture specifics
579+ - d/qemu-system-common.qemu-kvm.service: systemd unit to call
580+ qemu-kvm-init
581+ - d/qemu-system-common.install: install helper script
582+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
583+ - d/qemu-system-common.qemu-kvm.default: defaults for
584+ /etc/default/qemu-kvm
585+ - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
586+ - Enable nesting by default
587+ - d/qemu-system-x86.modprobe: set nested=1 module option on intel.
588+ (is default on amd)
589+ - d/qemu-system-x86.postinst: re-load kvm_intel.ko if it was loaded
590+ without nested=1
591+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
592+ in qemu64 cpu type.
593+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
594+ in qemu64 on amd
595+ - d/qemu-system-x86.README.Debian: document intention of nested being
596+ default is comfort, not full support
597+ - Distribution specific machine type (LP: 1304107 1621042)
598+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
599+ types
600+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
601+ for host-phys-bits=true (LP: 1776189)
602+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
603+ - provide pseries-bionic-2.11-sxxm type as convenience with all
604+ meltdown/spectre workarounds enabled by default. (LP: 1761372).
605+ - improved dependencies
606+ - Make qemu-system-common depend on qemu-block-extra
607+ - Make qemu-utils depend on qemu-block-extra
608+ - let qemu-utils recommend sharutils
609+ - s390x support
610+ - Create qemu-system-s390x package
611+ - Enable numa support for s390x
612+ - arch aware kvm wrappers
613+ - d/control: update VCS links
614+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
615+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
616+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
617+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
618+ - enable RDMA config option
619+ - add libibumad-dev build-dep
620+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
621+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
622+ reference 256k path
623+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
624+ handle incoming migrations from former releases.
625+ - d/control-in: Disable capstone disassembler library support (universe)
626+ - Move s390x roms to a new qemu-system-data-s390x
627+ - d/qemu-system-data.install: install s390x roms as architecture:all in
628+ qemu-system-data
629+ - d/rules: build s390-ccw.img with upstream Makefile
630+ - d/rules: build s390-netboot.img with upstream Makefile
631+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: bring back
632+ some SLOF bits stripped in DFSG to be able to build s390x-netboot roms
633+ As that hack to build s390-ccw.img rom can't build s390x-netboot.img
634+ replace it with a build-indep using the upstream makefiles.
635+ This is less prone to miss future changes/fixes that are done to the
636+ makefiles
637+ - d/control-in: add breaks/replaces for moving s390x roms from
638+ qemu-system-s390x to qemu-system-data
639+ - remove /dev/kvm permission handling (moved to systemd 239-6) (#892945)
640+ [From not yet uploaded Debian branch]
641+ - d/p/debianize-qemu-guest-service.patch: fix path of qemu-ga
642+ - d/rules: fix qemu-kvm service for debhelper compat >=12
643+ - disable pvrdma - besides several security holes there are many other
644+ bugs there as well
645+ * Dropped patches that are upstream in v4.0
646+ - d/p/do-not-link-everything-with-xen.patch
647+ - d/p/usb-mtp-use-O_NOFOLLOW-and-O_CLOEXEC-CVE-2018-16872.patch
648+ - d/p/hw_usb-fix-mistaken-de-initialization-of-CCID-state.patch
649+ - d/p/scsi-generic-avoid-possible-oob-access-to-r-buf-CVE-2019-6501.patch
650+ - d/p/slirp-check-data-length-while-emulating-ident-function-CVE-2019-6778
651+ - d/p/i2c-ddc-fix-oob-read-CVE-2019-3812.patch
652+ - d/p/ubuntu/lp-1759509-qmp-query-current-machine-with-wakeup-suspend-suppor
653+ (LP: 1759509)
654+ - d/p/ubuntu/lp-1759509-qga-update-guest-suspend-ram-and-guest-suspend-hybri
655+ - d/p/ubuntu/lp-1759509-qmp-hmp-Make-system_wakeup-check-wake-up-support-and
656+ - d/p/ubuntu/lp-1812384-s390x-Return-specification-exception-for-unimplement
657+ - d/p/ubuntu/CVE-2018-20815.patch
658+ - d/p/ubuntu/CVE-2019-5008.patch
659+ - d/p/ubuntu/CVE-2019-9824.patch
660+ - d/p/ubuntu/Revert-target-i386-kvm-add-VMX-migration-blocker.patch:
661+ avoid misdetection of simplified nesting blocking all migrations
662+ * Dropped further patches
663+ d/p/bt-use-size_t-type-for-length-parameters-instead-of-int-CVE-2018-19665
664+ [upstream deprecated the whole subsystem instead of applying the fix]
665+ * Added Changes
666+ - updated ubuntu machine types for v4.0
667+ - added eoan types
668+ - fixed s390x issue of upstream types having a "v" prefix
669+ - add back dropped machine types to avoid more issues like LP: 1802944
670+ - fix kvm split irqchip default in ubuntu q35 machine type
671+ - drop no more needed spapr_machine_2_11_sxxm_instance_options and
672+ adapt updated CamelCase
673+ - -hpb types now need to use GlobalProperties
674+ - pc_compat_2_0 got a _fn suffix and slight changes
675+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: update to
676+ SLOF of qemu 4.0
677+ - Refreshed patches still needed for v4.0 context changes
678+ - d/p/use-fixed-data-path.patch
679+ - d/p/ubuntu/enable-svm-by-default.patch
680+ - d/p/ubuntu/enable-md-clear.patch
681+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch
682+ - d/p/ubuntu/lp-1830243-*: s390x Secure Linux Boot Toleration
683+ (LP: #1830243)
684+ - d/control: disable bluetooth being deprecated
685+ - d/control*: remove sdlabi which was removed upstream
686+ - d/p/ubuntu/lp-1830238-*: s390x hardware cpu model (LP: #1830238)
687+ - d/control*: enable docs (now explicit) and provide new build-dep
688+ python3-sphinx
689+ - d/not-installed: ignore new interop docs and extra icons for now
690+ - d/not-installed: do not install elf2dmp until namespaced
691+ - d/qemu-utils.install: install new tools qemu-edid and qemu-keymap
692+ - d/qemu-system-data.install: use new paths for formerly used icons
693+ - d/p/ubuntu/linux-user-fix-__NR_semtimedop-undeclared-error.patch:
694+ fix i386 build error
695+
696+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 24 Jun 2019 16:33:19 +0200
697+
698 qemu (1:3.1+dfsg-8) unstable; urgency=high
699
700 * sun4u-add-power_mem_read-routine-CVE-2019-5008.patch
701@@ -350,6 +1021,232 @@ qemu (1:3.1+dfsg-3) unstable; urgency=medium
702
703 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 06 Feb 2019 12:23:01 +0300
704
705+qemu (1:3.1+dfsg-2ubuntu5) eoan; urgency=medium
706+
707+ * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
708+ broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
709+ fix migrations from old machines (LP: #1829868).
710+ * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
711+ toleration for future machines (LP: #1830704
712+
713+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 28 May 2019 11:30:42 +0200
714+
715+qemu (1:3.1+dfsg-2ubuntu4) eoan; urgency=medium
716+
717+ * SECURITY UPDATE: Add support for exposing md-clear functionality
718+ to guests
719+ - d/p/ubuntu/enable-md-clear.patch
720+ - d/p/ubuntu/enable-md-no.patch
721+ - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
722+ * SECURITY UPDATE: heap overflow when loading device tree blob
723+ - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
724+ copy the device tree blob into is.
725+ - CVE-2018-20815
726+ * SECURITY UPDATE: device driver denial of service via NULL pointer
727+ dereference
728+ - d/p/ubuntu/CVE-2019-5008.patch: Define skeleton 'power_mem_read'
729+ routine
730+ - CVE-2019-5008
731+ * SECURITY UPDATE: information leak in SLiRP
732+ - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
733+ emulating ident.
734+ - CVE-2019-9824
735+
736+ -- Steve Beattie <sbeattie@ubuntu.com> Wed, 08 May 2019 09:27:53 -0700
737+
738+qemu (1:3.1+dfsg-2ubuntu3) disco; urgency=medium
739+
740+ * qemu-guest-agent: fix path of fsfreeze-hook (LP: #1820291)
741+ - d/qemu-guest-agent.install: use correct path for fsfreeze-hook
742+ - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
743+ mv_conffile since the new path is a directory in the old package
744+ version which can not be handled by mv_conffile.
745+ * i2c-ddc-fix-oob-read-CVE-2019-3812.patch fixes
746+ OOB read in hw/i2c/i2c-ddc.c which allows for memory disclosure.
747+ Closes: #922635 (Thanks to Gerd Hoffmann and Michael Tokarev)
748+ CVE-2019-3812
749+
750+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 18 Mar 2019 09:20:07 +0100
751+
752+qemu (1:3.1+dfsg-2ubuntu2) disco; urgency=medium
753+
754+ * disable pvrdma - besides several security holes there are many other
755+ bugs there as well, and the amount of patches applied upstream after
756+ 3.1 release is large (Closes, or actuallymakes unimportant again)
757+ - CVE-2018-20123
758+ - CVE-2018-20124
759+ - CVE-2018-20125
760+ - CVE-2018-20126
761+ - CVE-2018-20191
762+ - CVE-2018-20216
763+ * scsi-generic-avoid-possible-oob-access-to-r-buf-CVE-2019-6501.patch
764+ - CVE-2019-6501
765+ * slirp-check-data-length-while-emulating-ident-function-CVE-2019-6778.patch
766+ - CVE-2019-6778
767+
768+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 19 Feb 2019 06:43:04 +0100
769+
770+qemu (1:3.1+dfsg-2ubuntu1) disco; urgency=medium
771+
772+ * Merge with Debian testing, Among many other things this fixes LP Bugs:
773+ LP: #1806104 - fix misleading page size error on ppc64el
774+ LP: #1782205 - SnowRidge enabled new ISAs
775+ LP: #1786956 - upgrade to qemu >= 3.0
776+ LP: #1809083 - Backward migration to Xenial on ppc64el
777+ LP: #1803315 - s390x Huge page enablement
778+ LP: #1657409 - enable virglrenderer
779+ Remaining Changes:
780+ - qemu-kvm to systemd unit
781+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
782+ hugepages and architecture specifics
783+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
784+ - d/qemu-system-common.install: install systemd unit and helper script
785+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
786+ - d/qemu-system-common.qemu-kvm.default: defaults for
787+ /etc/default/qemu-kvm
788+ - d/rules: install /etc/default/qemu-kvm
789+ - Enable nesting by default
790+ - d/qemu-system-x86.modprobe: set nested=1 module option on intel.
791+ (is default on amd)
792+ - d/qemu-system-x86.postinst: re-load kvm_intel.ko if it was loaded
793+ without nested=1
794+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
795+ in qemu64 cpu type.
796+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
797+ in qemu64 on amd
798+ - d/qemu-system-x86.README.Debian: document intention of nested being
799+ default is comfort, not full support
800+ - Distribution specific machine type (LP: 1304107 1621042 1776189 1761372)
801+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
802+ types
803+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
804+ for host-phys-bits=true (LP: 1776189)
805+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
806+ - d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
807+ convenience with all meltdown/spectre workarounds enabled by default.
808+ (LP: 1761372).
809+ - improved dependencies
810+ - Make qemu-system-common depend on qemu-block-extra
811+ - Make qemu-utils depend on qemu-block-extra
812+ - let qemu-utils recommend sharutils
813+ - s390x support
814+ - Create qemu-system-s390x package
815+ - Enable numa support for s390x
816+ - arch aware kvm wrappers
817+ - d/control: update VCS links (updated to match latest Ubuntu)
818+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
819+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
820+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
821+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
822+ - enable RDMA config option
823+ - add libibumad-dev build-dep
824+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
825+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
826+ reference 256k path
827+ - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
828+ handle incoming migrations from former releases.
829+ - d/control-in: Disable capstone disassembler library support (universe)
830+ * Added Changes:
831+ - d/p/ubuntu/define-ubuntu-machine-types.patch: update machine type changes
832+ for qemu 3.1 in the Ubuntu Disco release
833+ - d/p/ubuntu/lp-1759509-* fix waking up VMs from dompmsuspend (LP: #1759509)
834+ - Move s390x roms to a new qemu-system-data-s390x
835+ - d/qemu-system-data.install: install s390x roms as architecture:all in
836+ qemu-system-data
837+ - d/rules: build s390-ccw.img with upstream Makefile
838+ - d/rules: build s390x-netboot.img with upstream Makefile
839+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot.patch: bring back
840+ some SLOF bits stripped in DFSG to be able to build s390x-netboot roms
841+ As that hack to build s390-ccw.img rom can't build s390x-netboot.img
842+ replace it with a build-indep using the upstream makefiles.
843+ This is less prone to miss future changes/fixes that are done to the
844+ makefiles
845+ - d/control-in: add breaks/replaces for moving s390x roms from
846+ qemu-system-s390x to qemu-system-data
847+ - remove /dev/kvm permission handling (moved to systemd 239-6) (#892945)
848+ [From not yet uploaded Debian branch]
849+ - d/p/debianize-qemu-guest-service.patch: fix path of qemu-ga
850+ (Closes: #918378)
851+ - d/rules: fix qemu-kvm service for debhelper compat >=12
852+ - d/p/ubuntu/Revert-target-i386-kvm-add-VMX-migration-blocker.patch:
853+ avoid misdetection of simplified nesting blocking all migrations
854+ - d/p/ubuntu/lp-1812384-s390x-Return-specification-exception-for-
855+ unimplement.patch: properly return archicture defined exception
856+ on bad subcodes of diag 308 (LP: #1812384)
857+ * Dropped Changes:
858+ - Include s390-ccw.img firmware (old style native build)
859+ - d/rules enable install s390x-netboot.img (old style native build)
860+ - libvirt/qemu user/group support
861+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
862+ trigger.
863+ [ Droppable since logind properly sets ACLs now ]
864+ - qemu-system-common.preinst: add kvm group if needed
865+ [ Droppable because systemd/udev take care of it since 239-6]
866+ - d/p/guest-agent-freeze-hook-skip-dpkg-artifacts.patch of qemu-guest-agent
867+ freeze-hook fixes (LP: 1484990)
868+ [upstream]
869+ - d/p/ubuntu/CVE-2018-3639/* update for qemu 2.12 using the final patches
870+ merged upstream
871+ [upstream]
872+ - d/p/ubuntu/CVE-2018-11806-slirp-correct-size.patch: slirp: correct size
873+ computation while concatenating mbuf.
874+ CVE-2018-11806
875+ [upstream]
876+ - d/p/ubuntu/lp-1781526-powerpc64-align-memory-THP.patch: align to 2MB
877+ for powerpc64 to speed up translation (LP: 1781526)
878+ [upstream]
879+ - d/p/ubuntu/lp-1780773-s390x-cpumodels-add-z14-Model-ZR1.patch: Add
880+ cpu model for z14 ZR1 (LP: 1780773).
881+ [upstream]
882+ - Mark qemu-system-data foreign to be able to install it e.g. on i386
883+ (Closes: 903562)
884+ [in Debian]
885+ - d/control-in: qemu-keymaps is provided by qemu-system-data now (from yet
886+ unreleased Debian version)
887+ [in Debian]
888+ - d/p/lp-1755912-qxl-fix-local-renderer-crash.patch: Fix an issue triggered
889+ by migrations with UI frontends or frequent guest resolution changes
890+ (LP #1755912)
891+ [upstream]
892+ - d//ubuntu/target-ppc-extend-eieio-for-POWER9.patch: Backport to
893+ extend eieio for POWER9 emulation (LP: 1787408).
894+ [upstream]
895+ - d/p/ubuntu/lp-1789551-seccomp-set-the-seccomp-filter-to-all-threads.patch:
896+ ensure that the seccomp blacklist is applied to all threads (LP: 1789551)
897+ [upstream]
898+ - improve s390x spectre mitigation with etoken facility (LP: 1790457)
899+ [upstream]
900+ - Update pxe netboot images for KVM s390x to qemu 3.0 level (LP: 1790901)
901+ [upstream]
902+ - d/control-in: our addition of a qemu-system-s390x package needs to follow
903+ the split of qemu-system-data by adding a dependency to it (LP: 1798084)
904+ [in Debian]
905+ - debian/patches/ubuntu/lp1787405-*: Support guest dedicated Crypto
906+ Adapters on s390x (LP: 1787405)
907+ [upstream]
908+ - enable opengl for vfio-MDEV support (LP: 1804766)
909+ [in Debian]
910+ - SECURITY UPDATE: integer overflow in NE2000 NIC emulation
911+ [upstream]
912+ - SECURITY UPDATE: integer overflow via crafted QMP command
913+ [upstream]
914+ - SECURITY UPDATE: OOB heap buffer r/w access in NVM Express Controller
915+ [upstream]
916+ - SECURITY UPDATE: buffer overflow in rtl8139
917+ [upstream]
918+ - SECURITY UPDATE: buffer overflow in pcnet
919+ [upstream]
920+ - SECURITY UPDATE: DoS via large packet sizes
921+ [upstream]
922+ - SECURITY UPDATE: DoS in lsi53c895a
923+ [upstream]
924+ - SECURITY UPDATE: Out-of-bounds r/w stack access in ppc64
925+ [upstream]
926+ - SECURITY UPDATE: race condition in 9p
927+ [upstream]
928+
929+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 08 Jan 2019 09:41:08 +0100
930+
931 qemu (1:3.1+dfsg-2) unstable; urgency=medium
932
933 * d/rules: split arch and indep builds
934@@ -429,6 +1326,249 @@ qemu (1:3.1+dfsg-1) unstable; urgency=medium
935
936 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 02 Dec 2018 19:10:27 +0300
937
938+qemu (1:2.12+dfsg-3ubuntu9) disco; urgency=medium
939+
940+ [ Marc Deslauriers ]
941+ * SECURITY UPDATE: integer overflow in NE2000 NIC emulation
942+ - debian/patches/CVE-2018-10839.patch: use proper type in
943+ hw/net/ne2000.c.
944+ - CVE-2018-10839
945+ * SECURITY UPDATE: integer overflow via crafted QMP command
946+ - debian/patches/CVE-2018-12617.patch: check bytes count read by
947+ guest-file-read in qga/commands-posix.c.
948+ - CVE-2018-12617
949+ * SECURITY UPDATE: OOB heap buffer r/w access in NVM Express Controller
950+ - debian/patches/CVE-2018-16847.patch: check size in hw/block/nvme.c.
951+ - CVE-2018-16847
952+ * SECURITY UPDATE: buffer overflow in rtl8139
953+ - debian/patches/CVE-2018-17958.patch: use proper type in
954+ hw/net/rtl8139.c.
955+ - CVE-2018-17958
956+ * SECURITY UPDATE: buffer overflow in pcnet
957+ - debian/patches/CVE-2018-17962.patch: use proper type in
958+ hw/net/pcnet.c.
959+ - CVE-2018-17962
960+ * SECURITY UPDATE: DoS via large packet sizes
961+ - debian/patches/CVE-2018-17963.patch: check size in net/net.c.
962+ - CVE-2018-17963
963+ * SECURITY UPDATE: DoS in lsi53c895a
964+ - debian/patches/CVE-2018-18849.patch: check message length value is
965+ valid in hw/scsi/lsi53c895a.c.
966+ - CVE-2018-18849
967+ * SECURITY UPDATE: Out-of-bounds r/w stack access in ppc64
968+ - debian/patches/CVE-2018-18954.patch: check size before data buffer
969+ access in hw/ppc/pnv_lpc.c.
970+ - CVE-2018-18954
971+ * SECURITY UPDATE: race condition in 9p
972+ - debian/patches/CVE-2018-19364-1.patch: use write lock in
973+ hw/9pfs/cofile.c.
974+ - debian/patches/CVE-2018-19364-2.patch: use write lock in
975+ hw/9pfs/9p.c.
976+ - CVE-2018-19364
977+
978+ [ Christian Ehrhardt]
979+ * debian/patches/ubuntu/lp1787405-*: Support guest dedicated Crypto
980+ Adapters on s390x (LP: #1787405)
981+ * enable opengl for vfio-MDEV support (LP: #1804766)
982+ - d/control-in: set --enable-opengl
983+ - d/control-in: add gl related build-dependencies
984+
985+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 21 Nov 2018 13:17:01 -0500
986+
987+qemu (1:2.12+dfsg-3ubuntu8) cosmic; urgency=medium
988+
989+ * d/control-in: our addition of a qemu-system-s390x package needs to follow
990+ the split of qemu-system-data by adding a dependency to it (LP: #1798084)
991+
992+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 17 Oct 2018 10:50:27 +0200
993+
994+qemu (1:2.12+dfsg-3ubuntu7) cosmic; urgency=medium
995+
996+ * Update pxe netboot images for KVM s390x to qemu 3.0 level (LP: #1790901)
997+ The SLOF source pieces in src:qemu are only used for s390x netboot,
998+ which are independent ROMs (no linking). All other binaries out of this
999+ are part of src:slof and independent.
1000+ - d/p/ubuntu/lp-1790901-partial-SLOF-for-s390x-netboot-2.12-to-3.0.patch
1001+ - d/p/ubuntu/lp-1790901-0*: backport s390x pxelinux netboot capabilities
1002+ and related fixes
1003+
1004+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 25 Sep 2018 13:31:15 +0200
1005+
1006+qemu (1:2.12+dfsg-3ubuntu6) cosmic; urgency=medium
1007+
1008+ * improve s390x spectre mitigation with etoken facility (LP: #1790457)
1009+ - debian/patches/ubuntu/lp-1790457-s390x-kvm-add-etoken-facility.patch
1010+ - debian/patches/ubuntu/lp-1790457-partial-s390x-linux-headers-update.patch
1011+
1012+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 12 Sep 2018 10:06:48 +0200
1013+
1014+qemu (1:2.12+dfsg-3ubuntu5) cosmic; urgency=medium
1015+
1016+ * d/p/ubuntu/lp-1789551-seccomp-set-the-seccomp-filter-to-all-threads.patch:
1017+ ensure that the seccomp blacklist is applied to all threads (LP: #1789551)
1018+ - CVE-2018-15746
1019+
1020+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 29 Aug 2018 08:50:36 +0200
1021+
1022+qemu (1:2.12+dfsg-3ubuntu4) cosmic; urgency=medium
1023+
1024+ [ Murilo Opsfelder Araujo ]
1025+ * d//ubuntu/target-ppc-extend-eieio-for-POWER9.patch: Backport to
1026+ extend eieio for POWER9 emulation (LP: #1787408).
1027+
1028+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 20 Aug 2018 11:52:39 +0200
1029+
1030+qemu (1:2.12+dfsg-3ubuntu3) cosmic; urgency=medium
1031+
1032+ * d/p/lp-1755912-qxl-fix-local-renderer-crash.patch: Fix an issue triggered
1033+ by migrations with UI frontends or frequent guest resolution changes
1034+ (LP: #1755912)
1035+
1036+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 19 Jul 2018 08:26:52 +0200
1037+
1038+qemu (1:2.12+dfsg-3ubuntu2) cosmic; urgency=medium
1039+
1040+ * Disable capstone disassembler library support (universe dependency)
1041+
1042+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 17 Jul 2018 08:35:32 +0200
1043+
1044+qemu (1:2.12+dfsg-3ubuntu1) cosmic; urgency=medium
1045+
1046+ * Merge with Debian testing, Remaining Changes:
1047+ - Among other things this fixes (LP: #1780768, LP: #1780769, LP: #1780772)
1048+ - qemu-kvm to systemd unit
1049+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1050+ hugepages and architecture specifics
1051+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1052+ - d/qemu-system-common.install: install systemd unit and helper script
1053+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1054+ - d/qemu-system-common.qemu-kvm.default: defaults for
1055+ /etc/default/qemu-kvm
1056+ - d/rules: install /etc/default/qemu-kvm
1057+ - Enable nesting by default
1058+ - set nested=1 module option on intel. (is default on amd)
1059+ - re-load kvm_intel.ko if it was loaded without nested=1
1060+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1061+ in qemu64 cpu type.
1062+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1063+ in qemu64 on amd
1064+ - d/qemu-system-x86.README.Debian: document intention of nested being
1065+ default is comfort, not full support
1066+ - libvirt/qemu user/group support
1067+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1068+ trigger.
1069+ - qemu-system-common.preinst: add kvm group if needed
1070+ - Distribution specific machine type
1071+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1072+ types to ease future live vm migration.
1073+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1074+ - d/p/ubuntu/machine-type-hpb.patch: add -hpb machine type
1075+ for host-phys-bits=true (LP: 1776189)
1076+ - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
1077+ - d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
1078+ convenience with all meltdown/spectre workarounds enabled by default.
1079+ (LP: 1761372).
1080+ - improved dependencies
1081+ - Make qemu-system-common depend on qemu-block-extra
1082+ - Make qemu-utils depend on qemu-block-extra
1083+ - let qemu-utils recommend sharutils
1084+ - s390x support
1085+ - Create qemu-system-s390x package
1086+ - Include s390-ccw.img firmware
1087+ - Enable numa support for s390x
1088+ - arch aware kvm wrappers
1089+ - update VCS-git (updated to match cosmic)
1090+ - qemu-guest-agent: freeze-hook fixes (LP: 1484990)
1091+ - d/p/guest-agent-freeze-hook-skip-dpkg-artifacts.patch
1092+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
1093+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
1094+ - Create and install pxe netboot images for KVM s390x (LP: 1732094)
1095+ - d/rules enable install s390x-netboot.img
1096+ - d/control-in: enable RDMA support in qemu (LP: 1692476)
1097+ - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
1098+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
1099+ reference 256k path
1100+ - d/control: depend on ipxe-qemu-256k-compat-efi-roms to be able to
1101+ handle incoming migrations from former releases.
1102+ - SECURITY UPDATE: Speculative Store Bypass
1103+ - debian/patches/ubuntu/CVE-2018-3639/0001*.patch: define the 'ssbd'
1104+ CPUID feature bit in target/i386/cpu.*.
1105+ - debian/patches/ubuntu/CVE-2018-3639/0002*.patch: define the AMD
1106+ 'virt-ssbd' CPUID feature bit in target/i386/cpu.c.
1107+ - debian/patches/ubuntu/CVE-2018-3639/0003*.patch: define the Virt SSBD
1108+ MSR and handling of it in target/i386/cpu.h, target/i386/kvm.c,
1109+ target/i386/machine.c.
1110+ - CVE-2018-3639
1111+ * Added Changes:
1112+ - update machine type changes for qemu 2.12 and the Ubuntu Cosmic release
1113+ - add cosmic types for base and -hpb
1114+ - drop no more supported types (zesty and yakkety)
1115+ - d/p/series: group machine type changes
1116+ - d/p/ubuntu/CVE-2018-3639/* update for qemu 2.12 using the final patches
1117+ merged upstream
1118+ - d/p/ubuntu/CVE-2018-11806-slirp-correct-size.patch: slirp: correct size
1119+ computation while concatenating mbuf.
1120+ CVE-2018-11806
1121+ - d/qemu-kvm-init, d/qemu-system-common.qemu-kvm.default: drop the
1122+ deprecated handling of VHOST_NET_ENABLED and KVM_HUGEPAGES.
1123+ - d/qemu-kvm-init: do not exit early on non x86/ppc64el (LP: #1763275)
1124+ - d/qemu-kvm-init, d/kvm.powerpc: clean up typos and shellcheck warnings
1125+ - d/qemu-kvm-init, d/kvm.powerpc: fix SMT detection and make it only apply
1126+ to POWER8
1127+ - d/qemu-kvm-init: drop old VM detection that was broken in some cases and
1128+ is no more needed with systemd-detect-virt being more mature and always
1129+ present.
1130+ - d/kvm.powerpc: drop old powerpc (non-ppc64el) code.
1131+ - d/control-in: add libibumad-dev which is now needed for rdma
1132+ - d/rules: update s390x delta to match new Debian packaging
1133+ - d/p/ubuntu/lp-1781526-powerpc64-align-memory-THP.patch: align to 2MB
1134+ for powerpc64 to speed up translation (LP: #1781526)
1135+ - d/p/ubuntu/lp-1780773-s390x-cpumodels-add-z14-Model-ZR1.patch: Add
1136+ cpu model for z14 ZR1 (LP: #1780773).
1137+ - Mark qemu-system-data foreign to be able to install it e.g. on i386
1138+ (Closes: 903562)
1139+ - d/control-in: qemu-keymaps is provided by qemu-system-data now (from yet
1140+ unreleased Debian version)
1141+ * Dropped Changes:
1142+ - debian/patches/ubuntu/partial-SLOF-for-s390x-netboot-compilation.patch
1143+ (No more removed when building DFSG orig tarball in Debian)
1144+ - sdl2 is yet too unstable for the LTS Ubuntu release given the reports
1145+ we still see upstream and in Debian - furthermore sdl2 isn't in main yet,
1146+ so we revert related changes to stick with the proven for now:
1147+ - 0fd25810 - do not build-depend on libx11-dev (libsdl2-dev already
1148+ depends on it)
1149+ - 9594f820 - switch from sdl1.2 to sdl2 (#870025)
1150+ (Debian switched to gtk which seems to work better and has all
1151+ dependencies in main.)
1152+ - d/control-in: enable seccomp on s390x (in Debian for Linux-any)
1153+ - Changes that are now upstream with qemu 2.12
1154+ - d/p/ubuntu/lp1753826-memfd-fix-configure-test.patch: fix FTBFS with
1155+ newer versions of glibc >=2.27 (LP: 1753826)
1156+ - d/p/ubuntu/qemu-stable-2.11.1.patch: add stable release
1157+ - d/p/ubuntu/lp1739665-SSE-AVX-AVX512-cpu-features.patch: Enable new
1158+ SSE/AVX/AVX512 cpu features (LP: 1739665)
1159+ - d/p/ubuntu/lp1740219-continuous-space-commpage.patch: make Arm
1160+ space+commpage continuous which avoids long startup times on
1161+ qemu-user-static (LP: 1740219)
1162+ - provide pseries-2.12-sxxm type (LP: 1761372)
1163+ - d/p/ubuntu/lp-1704312-1-* provide means to manually handle
1164+ filesystem-dax with pmem by backporting align and unarmed options
1165+ (LP: 1704312).
1166+ - d/p/ubuntu/lp-1762315-slirp-Add-domainname.patch: slirp: Add domainname
1167+ option to slirp's DHCP server (LP: 1762315)
1168+ - d/p/ubuntu/lp-1762854-*: fix issue with SCSI-2 devices denying
1169+ Protection information (LP: 1762854).
1170+ - d/p/ubuntu/lp-1763468-*: fix VSMT handling to fix ppc64el P8/P9
1171+ migration (LP: 1763468).
1172+ - SECURITY UPDATE: out-of-bounds access during migration via ps2
1173+ CVE-2017-16845
1174+ - SECURITY UPDATE: arbitrary code execution via load_multiboot
1175+ CVE-2018-7550
1176+ - SECURITY UPDATE: denial of service in Cirrus CLGD 54xx VGA
1177+ CVE-2018-7858
1178+
1179+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 21 Jun 2018 14:24:06 +0200
1180+
1181 qemu (1:2.12+dfsg-3) unstable; urgency=medium
1182
1183 * make qemu-system-foo depending
1184@@ -517,6 +1657,239 @@ qemu (1:2.12~rc3+dfsg-1) unstable; urgency=medium
1185
1186 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 12 Apr 2018 19:04:03 +0300
1187
1188+qemu (1:2.11+dfsg-1ubuntu11) cosmic; urgency=medium
1189+
1190+ * d/p/ubuntu/machine-type-hpb.patch: add -hpb machine type
1191+ for host-phys-bits=true (LP: #1776189)
1192+ - add an info about this change in debian/qemu-system-x86.NEWS
1193+
1194+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 12 Jun 2018 09:01:00 +0200
1195+
1196+qemu (1:2.11+dfsg-1ubuntu10) cosmic; urgency=medium
1197+
1198+ * SECURITY UPDATE: Speculative Store Bypass
1199+ - debian/patches/ubuntu/CVE-2018-3639/0001*.patch: define the 'ssbd'
1200+ CPUID feature bit in target/i386/cpu.*.
1201+ - debian/patches/ubuntu/CVE-2018-3639/0002*.patch: define the AMD
1202+ 'virt-ssbd' CPUID feature bit in target/i386/cpu.c.
1203+ - debian/patches/ubuntu/CVE-2018-3639/0003*.patch: define the Virt SSBD
1204+ MSR and handling of it in target/i386/cpu.h, target/i386/kvm.c,
1205+ target/i386/machine.c.
1206+ - CVE-2018-3639
1207+
1208+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 22 May 2018 09:34:52 -0400
1209+
1210+qemu (1:2.11+dfsg-1ubuntu9) cosmic; urgency=medium
1211+
1212+ * SECURITY UPDATE: out-of-bounds access during migration via ps2
1213+ - debian/patches/ubuntu/CVE-2017-16845.patch: check PS2Queue pointers
1214+ in post_load routine in hw/input/ps2.c.
1215+ - CVE-2017-16845
1216+ * SECURITY UPDATE: arbitrary code execution via load_multiboot
1217+ - debian/patches/ubuntu/CVE-2018-7550.patch: handle bss_end_addr being
1218+ zero in hw/i386/multiboot.c.
1219+ - CVE-2018-7550
1220+ * SECURITY UPDATE: denial of service in Cirrus CLGD 54xx VGA
1221+ - debian/patches/ubuntu/CVE-2018-7858.patch: fix region calculation in
1222+ hw/display/vga.c.
1223+ - CVE-2018-7858
1224+
1225+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 16 May 2018 14:14:20 -0400
1226+
1227+qemu (1:2.11+dfsg-1ubuntu8) cosmic; urgency=medium
1228+
1229+ * No-change rebuild for ncurses soname changes.
1230+
1231+ -- Matthias Klose <doko@ubuntu.com> Thu, 03 May 2018 14:18:39 +0000
1232+
1233+qemu (1:2.11+dfsg-1ubuntu7) bionic; urgency=medium
1234+
1235+ * d/p/ubuntu/lp-1762854-*: fix issue with SCSI-2 devices denying Protection
1236+ information (LP: #1762854).
1237+ * d/p/ubuntu/lp-1763468-*: fix VSMT handling to fix ppc64el P8/P9 migration
1238+ (LP: #1763468).
1239+
1240+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 11 Apr 2018 07:46:18 +0200
1241+
1242+qemu (1:2.11+dfsg-1ubuntu6) bionic; urgency=medium
1243+
1244+ * Remove LP: 1752026 changes to d/p/ubuntu/define-ubuntu-machine-types.patch.
1245+ The Kernel fixes are preferred and already committed to the kernel.
1246+ Therefore remove the default disabling of the HTM feature (LP: #1761175)
1247+ * d/p/ubuntu/lp1739665-SSE-AVX-AVX512-cpu-features.patch: Enable new
1248+ SSE/AVX/AVX512 cpu features (LP: #1739665)
1249+ * d/p/ubuntu/lp1740219-continuous-space-commpage.patch: make Arm
1250+ space+commpage continuous which avoids long startup times on
1251+ qemu-user-static (LP: #1740219)
1252+ * d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
1253+ convenience with all meltdown/spectre workarounds enabled by default.
1254+ This is not the default type following upstream and x86 on that.
1255+ (LP: #1761372).
1256+ * d/p/ubuntu/lp-1704312-1-* provide means to manually handle filesystem-dax
1257+ with pmem by backporting align and unarmed options (LP: #1704312).
1258+ * d/p/ubuntu/lp-1762315-slirp-Add-domainname.patch: slirp: Add domainname
1259+ option to slirp's DHCP server (LP: #1762315)
1260+
1261+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 04 Apr 2018 15:16:07 +0200
1262+
1263+qemu (1:2.11+dfsg-1ubuntu5) bionic; urgency=medium
1264+
1265+ * Revert the slirp changes of 1:2.11+dfsg-1ubuntu3 until they are upstream
1266+ accepted to be better long term maintainable (LP: #1753938)
1267+
1268+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Thu, 22 Mar 2018 10:31:23 +0100
1269+
1270+qemu (1:2.11+dfsg-1ubuntu4) bionic; urgency=medium
1271+
1272+ * d/p/ubuntu/define-ubuntu-machine-types.patch: Disable HTM feature for
1273+ ppc64el in spapr to let the defaults not fail on Power9 HW (LP: #1752026).
1274+ * d/p/ubuntu/lp1753826-memfd-fix-configure-test.patch: fix FTBFS with newer
1275+ versions of glibc >=2.27 (LP: #1753826)
1276+
1277+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 05 Mar 2018 16:43:01 +0100
1278+
1279+qemu (1:2.11+dfsg-1ubuntu3) bionic; urgency=medium
1280+
1281+ * d/p/ubuntu/0001-slirp-Add-domainname-option-to-slirp-s-DHCP-server.patch,
1282+ d/p/ubuntu/0002-slirp-Add-classless-static-routes-support-to-DHCP-se.patch:
1283+ Add domainname option and classless static routes support to the user
1284+ networking's DHCP server
1285+
1286+ -- Benjamin Drung <benjamin.drung@profitbricks.com> Fri, 02 Mar 2018 21:08:54 +0100
1287+
1288+qemu (1:2.11+dfsg-1ubuntu2) bionic; urgency=medium
1289+
1290+ * d/p/ubuntu/qemu-stable-2.11.1.patch: add stable release
1291+ - among other fixes this adds code to:
1292+ - mitigate the Spectre/Meltdown attacks (LP: #1744882) (CVE-2017-5715)
1293+ However, enabling this functionality requires additional configuration
1294+ beyond just updating QEMU. Also migrations need special consideration.
1295+ Details about that can be found at:
1296+ https://www.qemu.org/2018/02/14/qemu-2-11-1-and-spectre-update/
1297+ - Power9 allocation of max 8 threads per core (LP: #1750526)
1298+ * Drop changes that are part of the upstream stable release
1299+ - d/p/ubuntu/linux-headers-update-to-4.15-rc1.patch
1300+ - d/p/ubuntu/linux-headers-update-4.15-rc9.patch
1301+ - d/p/ubuntu/lp1743560-s390x-kvm-Handle-bpb-feature.patch
1302+ - d/p/ubuntu/lp1743560-s390x-kvm-provide-stfle.81.patch
1303+ * d/p/ubuntu/define-ubuntu-machine-types.patch: refresh to match stable update
1304+ * d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: unify to only change the
1305+ common compat.h header and add some extra info in the patch header.
1306+
1307+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 19 Feb 2018 11:03:11 +0100
1308+
1309+qemu (1:2.11+dfsg-1ubuntu1) bionic; urgency=medium
1310+
1311+ * Merge with Debian testing, among other fixes this includes
1312+ - fix fatal error on negative maxcpus (LP: #1722495)
1313+ - fix segfault on dump-guest-memory on guests without memory (LP: #1723381)
1314+ - linux user threading issues (LP: #1350435)
1315+ - TOD-Clock Epoch Extension Support on s390x (LP: #1732691)
1316+ Remaining changes:
1317+ - qemu-kvm to systemd unit
1318+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1319+ hugepages and architecture specifics
1320+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1321+ - d/qemu-system-common.install: install systemd unit and helper script
1322+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1323+ - d/qemu-system-common.qemu-kvm.default: defaults for
1324+ /etc/default/qemu-kvm
1325+ - d/rules: install /etc/default/qemu-kvm
1326+ - Enable nesting by default
1327+ - set nested=1 module option on intel. (is default on amd)
1328+ - re-load kvm_intel.ko if it was loaded without nested=1
1329+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1330+ in qemu64 cpu type.
1331+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1332+ in qemu64 on amd
1333+ - libvirt/qemu user/group support
1334+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1335+ trigger.
1336+ - qemu-system-common.preinst: add kvm group if needed
1337+ - Distribution specific machine type
1338+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1339+ types to ease future live vm migration.
1340+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1341+ - improved dependencies
1342+ - Make qemu-system-common depend on qemu-block-extra
1343+ - Make qemu-utils depend on qemu-block-extra
1344+ - let qemu-utils recommend sharutils
1345+ - s390x support
1346+ - Create qemu-system-s390x package
1347+ - Include s390-ccw.img firmware
1348+ - Enable numa support for s390x
1349+ - ppc64[le] support
1350+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1351+ - arch aware kvm wrappers
1352+ * Added Changes
1353+ - update VCS-git to match the bionic branch
1354+ - sdl2 is yet too unstable for the LTS Ubuntu release given the reports
1355+ we still see upstream and in Debian - furthermore sdl2 isn't in main yet,
1356+ so we revert related changes to stick with the proven for now:
1357+ - 0fd25810 - do not build-depend on libx11-dev (libsdl2-dev already
1358+ depends on it)
1359+ - 9594f820 - switch from sdl1.2 to sdl2 (#870025)
1360+ - d/qemu-system-x86.README.Debian: document intention of nested being
1361+ default is comfort, not full support
1362+ - update Ubuntu machine types for qemu 2.11
1363+ - qemu-guest-agent: freeze-hook fixes (LP: #1484990)
1364+ - d/p/guest-agent-freeze-hook-skip-dpkg-artifacts.patch
1365+ - d/qemu-guest-agent.install: provide /etc/qemu/fsfreeze-hook
1366+ - d/qemu-guest-agent.dirs: provide /etc/qemu/fsfreeze-hook.d
1367+ - Create and install pxe netboot images for KVM s390x (LP: #1732094)
1368+ - d/rules enable install s390x-netboot.img
1369+ - debian/patches/ubuntu/partial-SLOF-for-s390x-netboot-compilation.patch
1370+ - d/control-in: enable RDMA support in qemu (LP: #1692476)
1371+ - on s390x provide facility bits 81 (ppa15) and 82 (bpb) (LP: #1743560)
1372+ - d/p/ubuntu/linux-headers-update-to-4.15-rc1.patch
1373+ - d/p/ubuntu/linux-headers-update-4.15-rc9.patch
1374+ - d/p/ubuntu/lp1743560-s390x-kvm-Handle-bpb-feature.patch
1375+ - d/p/ubuntu/lp1743560-s390x-kvm-provide-stfle.81.patch
1376+ - tolerate ipxe size change on migrations to >=18.04 (LP: #1713490)
1377+ - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
1378+ reference 256k path
1379+ - d/control: depend on ipxe-qemu-256k-compat-efi-roms to be able to
1380+ handle incoming migrations from former releases.
1381+ - d/control-in: enable seccomp on s390x
1382+ * Dropped changes (no more needed):
1383+ - Dropped VHOST_NET_ENABLED and KVM_HUGEPAGES from /etc/default/qemu-kvm
1384+ The functionality is retained for upgraders, but is deprecated.
1385+ Post 18.04 the implementation for these configurations will be removed.
1386+ * Dropped changes (in Debian now):
1387+ - ppc64[le] support
1388+ - Enable seccomp for ppc64el
1389+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1390+ - disable missing x32 architecture
1391+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1392+ - d/qemu-system-common.docs: new paths since (ac06724a)
1393+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1394+ by qapi-schema.json which is already packaged (since 4d8bb958)
1395+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream (Update
1396+ to Debian patch to match qemu 2.10)
1397+ - d/qemu-system-common.docs: adapt new path of live-block-operations.rst
1398+ since 8508eee7
1399+ - d/qemu-system-common.docs: adapt q35 config paths since 9ca019c1
1400+ - make nios2/hppa not installed explicitly until further stablized
1401+ - d/qemu-guest-agent.install: add the new guest agent reference man page
1402+ qemu-ga-ref
1403+ - d/qemu-system-common.install: add the now generated qapi/qmp reference
1404+ along the qapi intro
1405+ - d/not-installed: ignore further generated (since 56e8bdd4) files in
1406+ dh_missing that are already provided in other formats qemu-doc,
1407+ qemu-qmp-ref,qemu-ga-ref
1408+ * Dropped changes (integrated upstream):
1409+ - d/p/detect-ITS-and-skip-usage-on-older-kernel.patch to avoid crashes
1410+ on arm64 when doing suspend/resume and reboots due to older kernels not
1411+ supporting ITS (LP 1731051).
1412+ - Apply linux-user-return-EINVAL-from-prctl-PR_-_SECCOMP.patch from
1413+ James Cowgill to prevent qemu-user from forwarding prctl seccomp
1414+ calls (LP 1726394)
1415+ - update to upstream 2.10.1 point release (LP 1722808)
1416+
1417+
1418+
1419+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 22 Jan 2018 14:35:18 +0100
1420+
1421 qemu (1:2.11+dfsg-1) unstable; urgency=medium
1422
1423 [ Michael Tokarev ]
1424@@ -631,6 +2004,238 @@ qemu (1:2.10.0-1) unstable; urgency=medium
1425
1426 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 23 Sep 2017 16:47:02 +0300
1427
1428+qemu (1:2.10+dfsg-0ubuntu5) bionic; urgency=medium
1429+
1430+ * d/p/detect-ITS-and-skip-usage-on-older-kernel.patch to avoid crashes
1431+ on arm64 when doing suspend/resume and reboots due to older kernels not
1432+ supporting ITS (LP: #1731051).
1433+
1434+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 14 Nov 2017 08:30:29 +0100
1435+
1436+qemu (1:2.10+dfsg-0ubuntu4) bionic; urgency=medium
1437+
1438+ * Apply linux-user-return-EINVAL-from-prctl-PR_-_SECCOMP.patch from
1439+ James Cowgill to prevent qemu-user from forwarding prctl seccomp
1440+ calls (LP: #1726394)
1441+
1442+ -- Julian Andres Klode <juliank@ubuntu.com> Sat, 04 Nov 2017 00:21:14 +0100
1443+
1444+qemu (1:2.10+dfsg-0ubuntu3) artful; urgency=medium
1445+
1446+ * fix enablement of qemu-kvm service (LP: #1720397)
1447+ - rename d/qemu-kvm.service to d/qemu-system-common.qemu-kvm.service
1448+ - d/rules: add proper enablement debhelper calls
1449+ - d/qemu-system-common.install: install covered by dh_installinit
1450+
1451+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 16 Oct 2017 11:28:39 +0200
1452+
1453+qemu (1:2.10+dfsg-0ubuntu2) artful; urgency=medium
1454+
1455+ * update to upstream 2.10.1 point release (LP: #1722808)
1456+
1457+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 11 Oct 2017 15:33:40 +0200
1458+
1459+qemu (1:2.10+dfsg-0ubuntu1) artful; urgency=medium
1460+
1461+ * Merge with Upstream 2.10.0 to pick up final fixes of the 2.10 release
1462+ Remaining changes:
1463+ - qemu-kvm to systemd unit
1464+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1465+ hugepages and architecture specifics
1466+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1467+ - d/qemu-system-common.install: install systemd unit and helper script
1468+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1469+ - d/qemu-system-common.qemu-kvm.default: defaults for
1470+ /etc/default/qemu-kvm
1471+ - d/rules: install /etc/default/qemu-kvm
1472+ - Enable nesting by default
1473+ - set nested=1 module option on intel. (is default on amd)
1474+ - re-load kvm_intel.ko if it was loaded without nested=1
1475+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1476+ in qemu64 cpu type.
1477+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1478+ in qemu64 on amd
1479+ - libvirt/qemu user/group support
1480+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1481+ trigger.
1482+ - qemu-system-common.preinst: add kvm group if needed
1483+ - Distribution specific machine type
1484+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1485+ types to ease future live vm migration.
1486+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1487+ - improved dependencies
1488+ - Make qemu-system-common depend on qemu-block-extra
1489+ - Make qemu-utils depend on qemu-block-extra
1490+ - let qemu-utils recommend sharutils
1491+ - s390x support
1492+ - Create qemu-system-s390x package
1493+ - Include s390-ccw.img firmware
1494+ - Enable numa support for s390x
1495+ - ppc64[le] support
1496+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1497+ - Enable seccomp for ppc64el
1498+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1499+ - arch aware kvm wrappers
1500+ - update VCS-git to match the Artful branch
1501+ - disable missing x32 architecture
1502+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1503+ - d/qemu-system-common.docs: new paths since (ac06724a)
1504+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1505+ by qapi-schema.json which is already packaged (since 4d8bb958)
1506+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream (Update
1507+ to Debian patch to match qemu 2.10)
1508+ - s390x package now builds correctly on all architectures (LP 1710695)
1509+ - d/qemu-system-common.docs: adapt new path of live-block-operations.rst
1510+ since 8508eee7
1511+ - d/qemu-system-common.docs: adapt q35 config paths since 9ca019c1
1512+ - make nios2/hppa not installed explicitly until further stablized
1513+ - d/qemu-guest-agent.install: add the new guest agent reference man page
1514+ qemu-ga-ref
1515+ - d/qemu-system-common.install: add the now generated qapi/qmp reference
1516+ along the qapi intro
1517+ - d/not-installed: ignore further generated (since 56e8bdd4) files in
1518+ dh_missing that are already provided in other formats qemu-doc,
1519+ qemu-qmp-ref,qemu-ga-ref
1520+
1521+
1522+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 05 Sep 2017 08:31:26 +0200
1523+
1524+qemu (1:2.10~rc4+dfsg-0ubuntu1) artful; urgency=medium
1525+
1526+ * Merge with Upstream 2.10-rc4; This fixes a migration issue (LP: #1711602);
1527+ Remaining changes:
1528+ - qemu-kvm to systemd unit
1529+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1530+ hugepages and architecture specifics
1531+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1532+ - d/qemu-system-common.install: install systemd unit and helper script
1533+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1534+ - d/qemu-system-common.qemu-kvm.default: defaults for
1535+ /etc/default/qemu-kvm
1536+ - d/rules: install /etc/default/qemu-kvm
1537+ - Enable nesting by default
1538+ - set nested=1 module option on intel. (is default on amd)
1539+ - re-load kvm_intel.ko if it was loaded without nested=1
1540+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1541+ in qemu64 cpu type.
1542+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1543+ in qemu64 on amd
1544+ - libvirt/qemu user/group support
1545+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1546+ trigger.
1547+ - qemu-system-common.preinst: add kvm group if needed
1548+ - Distribution specific machine type
1549+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1550+ types to ease future live vm migration.
1551+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1552+ - improved dependencies
1553+ - Make qemu-system-common depend on qemu-block-extra
1554+ - Make qemu-utils depend on qemu-block-extra
1555+ - let qemu-utils recommend sharutils
1556+ - s390x support
1557+ - Create qemu-system-s390x package
1558+ - Include s390-ccw.img firmware
1559+ - Enable numa support for s390x
1560+ - ppc64[le] support
1561+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1562+ - Enable seccomp for ppc64el
1563+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1564+ - arch aware kvm wrappers
1565+ - update VCS-git to match the Artful branch
1566+ - disable missing x32 architecture
1567+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1568+ - d/qemu-system-common.docs: new paths since (ac06724a)
1569+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1570+ by qapi-schema.json which is already packaged (since 4d8bb958)
1571+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream (Update
1572+ to Debian patch to match qemu 2.10)
1573+ - s390x package now builds correctly on all architectures (LP 1710695)
1574+ * Added changes:
1575+ - d/qemu-system-common.docs: adapt new path of live-block-operations.rst
1576+ since 8508eee7
1577+ - d/qemu-system-common.docs: adapt q35 config paths since 9ca019c1
1578+ - make nios2/hppa not installed explicitly until further stablized
1579+ - d/qemu-guest-agent.install: add the new guest agent reference man page
1580+ qemu-ga-ref
1581+ - d/qemu-system-common.install: add the now generated qapi/qmp reference
1582+ along the qapi intro
1583+ - d/not-installed: ignore further generated (since 56e8bdd4) files in
1584+ dh_missing that are already provided in other formats qemu-doc,
1585+ qemu-qmp-ref,qemu-ga-ref
1586+ - d/p/ubuntu/define-ubuntu-machine-types.patch: update to match new
1587+ changes in 2.10-rc4
1588+
1589+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 25 Aug 2017 07:49:30 +0200
1590+
1591+qemu (1:2.10~rc3+dfsg-0ubuntu1) artful; urgency=medium
1592+
1593+ * Merge with Debian unstable (2.8) and Upstream 2.10-rci3; This fixes
1594+ a set of bugs
1595+ - [FFE] Qemu 2.10 in Artful (LP: #1699968)
1596+ - CPU hot unplug fails after migrating a CPU hotplugged guest
1597+ from source (LP: #1677552)
1598+ - [Feature] KNL/KNM: Numa Distance on KVM(LP: #1647902)
1599+ - New KVM 288 Pass Through (LP: #1672447)
1600+ - aarch64: MSI is not supported by interrupt controller (LP: #1706630)
1601+ * Remaining changes:
1602+ - qemu-kvm to systemd unit
1603+ - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
1604+ hugepages and architecture specifics
1605+ - d/qemu-kvm.service: systemd unit to call qemu-kvm-init
1606+ - d/qemu-system-common.install: install systemd unit and helper script
1607+ - d/qemu-system-common.maintscript: clean old sysv and upstart scripts
1608+ - d/qemu-system-common.qemu-kvm.default: defaults for
1609+ /etc/default/qemu-kvm
1610+ - d/rules: install /etc/default/qemu-kvm
1611+ - Enable nesting by default
1612+ - set nested=1 module option on intel. (is default on amd)
1613+ - re-load kvm_intel.ko if it was loaded without nested=1
1614+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: expose nested kvm by default
1615+ in qemu64 cpu type.
1616+ - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
1617+ in qemu64 on amd
1618+ - libvirt/qemu user/group support
1619+ - qemu-system-common.postinst: remove acl placed by udev, and add udevadm
1620+ trigger.
1621+ - qemu-system-common.preinst: add kvm group if needed
1622+ - Distribution specific machine type
1623+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1624+ types to ease future live vm migration.
1625+ - d/qemu-system-x86.NEWS Info on fixed machine type definitions
1626+ - improved dependencies
1627+ - Make qemu-system-common depend on qemu-block-extra
1628+ - Make qemu-utils depend on qemu-block-extra
1629+ - let qemu-utils recommend sharutils
1630+ - s390x support
1631+ - Create qemu-system-s390x package
1632+ - Include s390-ccw.img firmware
1633+ - Enable numa support for s390x
1634+ - ppc64[le] support
1635+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1636+ - Enable seccomp for ppc64el
1637+ - bump libseccomp-dev dependency, 2.3 is the minimum for ppc64
1638+ - arch aware kvm wrappers
1639+ - disable missing x32 architecture
1640+ - update VCS links
1641+ * Added changes
1642+ - d/rules: or32 is now named or1k (since 4a09d0bb)
1643+ - d/qemu-system-common.docs: new paths since (ac06724a)
1644+ - d/qemu-system-common.install: qmp-commands.txt removed, but replaced
1645+ by qapi-schema.json which is already packaged (since 4d8bb958)
1646+ - Updates in debian/patches to match qemu 2.10
1647+ - d/p/02_kfreebsd.patch: utimensat is no more optional upstream
1648+ - d/p/ubuntu/enable-svm-by-default.patch: target-i386 -> target/i386
1649+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: target-i386 -> target/i386
1650+ - d/p/ubuntu/define-ubuntu-machine-types.patch: new 2.10 ubuntu types
1651+ - update VCS-git to match the Artful branch
1652+ - s390x package now builds correctly on all architectures (LP: #1710695)
1653+ * Dropped changes (integrated upstream):
1654+ - d/p/ubuntu/spapr-pci-populate-PCI-DT-in-reverse-order.patch: backport
1655+ "spapr/pci: populate PCI DT in reverse order" (LP 1670481).
1656+ - All CVE fixes formerly applied are upstream and thereby dropped.
1657+
1658+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 08 Aug 2017 16:59:19 +0200
1659+
1660 qemu (1:2.8+dfsg-7) unstable; urgency=medium
1661
1662 * uploading to unstable all fixes which went to stretch-security
1663@@ -740,6 +2345,179 @@ qemu (1:2.8+dfsg-4) unstable; urgency=high
1664
1665 -- Michael Tokarev <mjt@tls.msk.ru> Mon, 03 Apr 2017 16:28:49 +0300
1666
1667+qemu (1:2.8+dfsg-3ubuntu4) artful; urgency=medium
1668+
1669+ * debian/rules: fix installation of /etc/default/qemu-kvm (LP: #1692530)
1670+ This was inadvertently dropped on 2.8 merge.
1671+
1672+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 22 May 2017 15:45:58 +0200
1673+
1674+qemu (1:2.8+dfsg-3ubuntu3) artful; urgency=medium
1675+
1676+ * SECURITY UPDATE: denial of service via leak in virtFS
1677+ - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
1678+ hw/9pfs/9p.c.
1679+ - CVE-2017-7377
1680+ * SECURITY UPDATE: denial of service in cirrus_vga
1681+ - debian/patches/CVE-2017-7718.patch: check parameters in
1682+ hw/display/cirrus_vga_rop.h.
1683+ - CVE-2017-7718
1684+ * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
1685+ - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
1686+ hw/display/cirrus_vga.c.
1687+ - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
1688+ hw/display/cirrus_vga.c.
1689+ - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
1690+ in hw/display/cirrus_vga.c.
1691+ - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
1692+ hw/display/cirrus_vga.c.
1693+ - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
1694+ in hw/display/cirrus_vga.c.
1695+ - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
1696+ pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
1697+ hw/display/cirrus_vga_rop2.h.
1698+ - debian/patches/CVE-2017-7980-7.patch: stop passing around src
1699+ pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
1700+ hw/display/cirrus_vga_rop2.h.
1701+ - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
1702+ hw/display/cirrus_vga_rop.h.
1703+ - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
1704+ hw/display/cirrus_vga.c.
1705+ - CVE-2017-7980
1706+ * SECURITY UPDATE: denial of service via memory leak in virtFS
1707+ - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
1708+ - CVE-2017-8086
1709+ * SECURITY UPDATE: denial of service via leak in audio
1710+ - debian/patches/CVE-2017-8309.patch: release capture buffers in
1711+ audio/audio.c.
1712+ - CVE-2017-8309
1713+ * SECURITY UPDATE: denial of service via leak in keyboard
1714+ - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
1715+ ui/input.c.
1716+ - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
1717+ ui/input.c.
1718+ - CVE-2017-8379
1719+
1720+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 18 May 2017 09:20:54 -0400
1721+
1722+qemu (1:2.8+dfsg-3ubuntu2.1) zesty-security; urgency=medium
1723+
1724+ * SECURITY UPDATE: DoS in virtio GPU device
1725+ - debian/patches/CVE-2016-10028.patch: check virgl capabilities
1726+ max_size in hw/display/virtio-gpu-3d.c.
1727+ - CVE-2016-10028
1728+ * SECURITY UPDATE: DoS in JAZZ RC4030 chipset emulation
1729+ - debian/patches/CVE-2016-8667.patch: limit interval timer reload value
1730+ in hw/dma/rc4030.c.
1731+ - CVE-2016-8667
1732+ * SECURITY UPDATE: host filesystem access via virtFS
1733+ - debian/patches/CVE-2016-9602.patch: don't follow symlinks in
1734+ hw/9pfs/*.
1735+ - CVE-2016-9602
1736+ * SECURITY UPDATE: arbitrary code execution via Cirrus VGA
1737+ - debian/patches/CVE-2016-9603.patch: remove bitblit support from
1738+ console code in hw/display/cirrus_vga.c, include/ui/console.h,
1739+ ui/console.c, ui/vnc.c.
1740+ - CVE-2016-9603
1741+ * SECURITY UPDATE: information leak in virtio GPU device
1742+ - debian/patches/CVE-2016-9908.patch: properly clear out memory in
1743+ hw/display/virtio-gpu-3d.c.
1744+ - CVE-2016-9908
1745+ * SECURITY UPDATE: DoS via memory leak in virtio GPU device
1746+ - debian/patches/CVE-2016-9912.patch: properly free memory in
1747+ hw/display/virtio-gpu.c.
1748+ - CVE-2016-9912
1749+ * SECURITY UPDATE: DoS via virtFS
1750+ - debian/patches/CVE-2016-9914.patch: add cleanup operations to
1751+ fsdev/file-op-9p.h, hw/9pfs/9p.c.
1752+ - CVE-2016-9914
1753+ * SECURITY UPDATE: DoS via memory leak in virtio GPU device
1754+ - debian/patches/CVE-2017-5552.patch: check return value in
1755+ hw/display/virtio-gpu-3d.c.
1756+ - CVE-2017-5552
1757+ * SECURITY UPDATE: DoS via memory leak in virtio GPU device
1758+ - debian/patches/CVE-2017-5578.patch: check res->iov in
1759+ hw/display/virtio-gpu.c.
1760+ - CVE-2017-5578
1761+ * SECURITY UPDATE: DoS via infinite loop in SDHCI device emulation
1762+ - debian/patches/CVE-2017-5987-*.patch: fix transfer mode register
1763+ handling in hw/sd/sdhci.c.
1764+ - CVE-2017-5987
1765+ * SECURITY UPDATE: DoS via infinite loop in USB OHCI emulation
1766+ - debian/patches/CVE-2017-6505.patch: limit the number of link eds in
1767+ hw/usb/hcd-ohci.c.
1768+ - CVE-2017-6505
1769+
1770+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 24 Apr 2017 07:30:11 -0400
1771+
1772+qemu (1:2.8+dfsg-3ubuntu2) zesty; urgency=medium
1773+
1774+ * d/p/ubuntu/spapr-pci-populate-PCI-DT-in-reverse-order.patch: backport
1775+ "spapr/pci: populate PCI DT in reverse order" (LP: #1670481).
1776+
1777+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Tue, 07 Mar 2017 09:23:08 +0100
1778+
1779+qemu (1:2.8+dfsg-3ubuntu1) zesty; urgency=medium
1780+
1781+ * Merge with Debian;
1782+ This fixes several CVEs that were reported against qemu 2.8 and also
1783+ includes a few important functional backports (LP: #1667033); remaining
1784+ changes:
1785+ - add qemu-kvm init script and defaults file
1786+ (d/qemu-system-common.qemu-kvm.*)
1787+ - d/rules, d/qemu-kvm-init: add and install script loading kvm
1788+ modules and handling /etc/default/qemu-kvm
1789+ - qemu-system-common.preinst: add kvm group if needed
1790+ - Enable nesting by default on intel.
1791+ - set default module option
1792+ - re-load kvm_intel.ko if it was loaded without nested=1
1793+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by
1794+ default in qemu64 cpu type.
1795+ - Enable svm by default for qemu64 on amd
1796+ - d/p/ubuntu/define-ubuntu-machine-types.patch, d/qemu-system-x86.NEWS:
1797+ define distro machine types to ease future live vm migration (includes
1798+ all former follow up fixes).
1799+ - Make qemu-system-common depend on qemu-block-extra
1800+ - Make qemu-utils depend on qemu-block-extra
1801+ - s390x support
1802+ - Create qemu-system-s390x package
1803+ - Include s390-ccw.img firmware
1804+ - qemu-system-common.postinst:
1805+ - change acl placed by udev, and add udevadm trigger.
1806+ - d/qemu-kvm-init, d/kvm.powerpc, d/control-in: check SMT on ppc64el
1807+ - Several changes were applied but missing in the changelog so far
1808+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1809+ - arch aware kvm wrapper
1810+ - update VCS links
1811+ - let qemu-utils recommend sharutils
1812+ - disable x32 architecture
1813+ - Enable seccomp for ppc64el
1814+ - Enable numa support for s390x
1815+ - d/qemu-system-common.qemu-kvm.init: fix lintian error type
1816+ init.d-script-missing-dependency-on-remote_fs
1817+ - d/qemu-system-common.postinst: fix lintian error type
1818+ command-with-path-in-maintainer-script
1819+ - Transition qemu-kvm to a systemd unit
1820+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check avoid unwanted output
1821+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check keep output local so
1822+ that it shows up where the user expects (sytemctl status, kvm stdout)
1823+ - d/qemu-kvm-init ppc64el warn on expected second level kvm-hv load failure
1824+ - add arch aware kvm wrapper for s390x
1825+ * Dropped Changes (in Debian now):
1826+ - d/p/ubuntu/ctrl-a-b-fix-fb5e19d2.patch: char: fix ctrl-a b not working
1827+ - d/control-in: change dependencies for fix of wrong acl for newly
1828+ created device node on ubuntu
1829+ - have qemu-system-arm suggest: qemu-efi; this should be a stronger
1830+ relationship, but qemu-efi is still in universe right now.
1831+ - Disable glusterfs (Universe dependency)
1832+ - no more skip disable libiscsi on Ubuntu
1833+ - d/rules, d/control-in: avoid people editing d/control
1834+ * Added Changes:
1835+ - d/control: bump libseccomp-dev dependency as enabling libseccomp for
1836+ power makes 2.3 the minimum level.
1837+
1838+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 01 Mar 2017 14:23:16 +0100
1839+
1840 qemu (1:2.8+dfsg-3) unstable; urgency=high
1841
1842 * urgency high due to security fixes
1843@@ -800,6 +2578,90 @@ qemu (1:2.8+dfsg-3) unstable; urgency=high
1844
1845 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 28 Feb 2017 11:40:18 +0300
1846
1847+qemu (1:2.8+dfsg-2ubuntu1) zesty; urgency=medium
1848+
1849+ * Merge with Debian; remaining changes:
1850+ - add qemu-kvm init script and defaults file
1851+ (d/qemu-system-common.qemu-kvm.*)
1852+ - d/rules, d/qemu-kvm-init: add and install script loading kvm
1853+ modules and handling /etc/default/qemu-kvm
1854+ - qemu-system-common.preinst: add kvm group if needed
1855+ - Enable nesting by default on intel.
1856+ - set default module option
1857+ - re-load kvm_intel.ko if it was loaded without nested=1
1858+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by
1859+ default in qemu64 cpu type.
1860+ - Enable svm by default for qemu64 on amd
1861+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
1862+ types to ease future live vm migration.
1863+ - Make qemu-system-common depend on qemu-block-extra
1864+ - Make qemu-utils depend on qemu-block-extra
1865+ - s390x support
1866+ - Create qemu-system-s390x package
1867+ - Include s390-ccw.img firmware
1868+ - qemu-system-common.postinst:
1869+ - change acl placed by udev, and add udevadm trigger.
1870+ - d/control-in: change dependencies for fix of wrong acl for newly
1871+ created device node on ubuntu
1872+ - have qemu-system-arm suggest: qemu-efi; this should be a stronger
1873+ relationship, but qemu-efi is still in universe right now.
1874+ - d/qemu-kvm-init, d/kvm.powerpc, d/control-in: check SMT on ppc64el
1875+ - Several changes were applied but missing in the changelog so far
1876+ - d/qemu-system-ppc.links provide usr/bin/qemu-system-ppc64le symlink
1877+ - arch aware kvm wrapper
1878+ - update VCS links
1879+ - no more skip disable libiscsi on Ubuntu
1880+ - let qemu-utils recommend sharutils
1881+ - disable x32 architecture
1882+ * Dropped Changes:
1883+ - Several changes were applied but missing in the changelog so far
1884+ but are no more needed
1885+ - no pie for relocatable LD calls, with toolchain defaulting to
1886+ pie (fixed upstream)
1887+ - enable libnuma-dev (now in Debian)
1888+ - transition for moved init scripts (can be dropped after LTS
1889+ containing >=2.5 which is Xenial)
1890+ - --enable-seccomp related whitespace change (had no effect)
1891+ - apport hook for qemu source package (In Debian)
1892+ - add upstart script (d/qemu-system-common.qemu-kvm.upstart)
1893+ - d/qemu-system-x86.maintscript: transition off of
1894+ /etc/init.d/qemu-system-x86 (can be dropped after Xenial)
1895+ - Enable pie by default, on ubuntu/s390x. (Is the default since
1896+ >=Xenial, no cloud archive backport <=Xenial to consider)
1897+ - no pie for relocatable LD calls (fixed upstream in commit
1898+ 7ecf44a5)
1899+ - CVEs: CVE-2016-5403, CVE-2016-6351, CVE-2016-6490 (now Upstream)
1900+ - Revert fix for CVE-2016-5403, causes regression see USN-3047-2.
1901+ (Improved fix included by upstream)
1902+ - Enable GPU Passthru for ppc64le (is upstream in qemu 2.7)
1903+ - Fixed wrong migration blocker when vhost is used (is upstream in
1904+ qemu 2.8)
1905+ * Added Changes:
1906+ - d/rules, d/control-in: avoid people editing d/control by warning
1907+ header and non writable permissions
1908+ - fixed moving trusty machine type definition which made it
1909+ ambiguous (LP: #1641532)
1910+ - d/qemu-system-x86.NEWS describe the issue
1911+ - Enable seccomp for ppc64el (LP: #1644639)
1912+ - Enable numa support for s390x
1913+ - d/qemu-system-common.qemu-kvm.init: fix lintian error type
1914+ init.d-script-missing-dependency-on-remote_fs
1915+ - d/qemu-system-common.postinst: fix lintian error type
1916+ command-with-path-in-maintainer-script
1917+ - Transition qemu-kvm to a systemd unit
1918+ - Disable glusterfs (Universe dependency)
1919+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check avoid unwanted output
1920+ - d/qemu-kvm-init, d/kvm.powerpc ppc64el SMT check keep output local so
1921+ that it shows up where the user expects (sytemctl status, kvm stdout)
1922+ - d/qemu-kvm-init ppc64el warn on expected second level kvm-hv load failure
1923+ - add arch aware kvm wrapper for s390x
1924+ - d/p/ubuntu/ctrl-a-b-fix-fb5e19d2.patch: char: fix ctrl-a b not working
1925+ - Enable DDW in Yakkety machine type because "Enable GPU Passthru for
1926+ ppc64le" was released as part of qemu 2.6 (can be dropped at 18.10,
1927+ merged in d/p/ubuntu/define-ubuntu-machine-types.patch)
1928+
1929+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 16 Jan 2017 16:27:11 +0100
1930+
1931 qemu (1:2.8+dfsg-2) unstable; urgency=medium
1932
1933 * Revert "update binfmt registration for mipsn32"
1934@@ -918,6 +2780,67 @@ qemu (1:2.7+dfsg-1) unstable; urgency=medium
1935
1936 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 14 Oct 2016 13:31:40 +0300
1937
1938+qemu (1:2.6.1+dfsg-0ubuntu5) yakkety; urgency=medium
1939+
1940+ * No-change rebuild to compile against new libxen version.
1941+
1942+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 30 Sep 2016 14:24:37 +0200
1943+
1944+qemu (1:2.6.1+dfsg-0ubuntu4) yakkety; urgency=medium
1945+
1946+ * retain older xenial machine type to avoid issues starting guests
1947+ created on xenial prior to the SRU for bug 1621042. In that regard the old
1948+ broken xenial machine type and the new fixed one have both to be considered
1949+ as valid LTS machine types (LP: #1626070).
1950+
1951+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Wed, 21 Sep 2016 14:57:09 +0200
1952+
1953+qemu (1:2.6.1+dfsg-0ubuntu3) yakkety; urgency=medium
1954+
1955+ * fix default ubuntu machine types. (LP: #1621042)
1956+ - add dep3 header to d/p/ubuntu/define-ubuntu-machine-types.patch
1957+ - remove double default and double ubuntu alias
1958+ - drop former devel releases utopic, vivid, wily
1959+ - add xenial and yakkety machine types
1960+ - add q35 based ubuntu machine type starting at xenial
1961+ - add ubuntu machine types on ppc64el and s390x starting at xenial
1962+
1963+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Mon, 19 Sep 2016 07:50:50 +0200
1964+
1965+qemu (1:2.6.1+dfsg-0ubuntu2) yakkety; urgency=medium
1966+
1967+ * Enable GPU Passthru for ppc64le (LP: #1541902)
1968+ - 0001-spapr-ensure-device-trees-are-always-associated-with.patch
1969+ - 0002-spapr_pci-Use-correct-DMA-LIOBN-when-composing-the-d.patch
1970+ - 0003-spapr_iommu-Finish-renaming-vfio_accel-to-need_vfio.patch
1971+ - 0004-spapr_iommu-Move-table-allocation-to-helpers.patch
1972+ - 0005-vmstate-Define-VARRAY-with-VMS_ALLOC.patch
1973+ - 0006-spapr_iommu-Introduce-enabled-state-for-TCE-table.patch
1974+ - 0007-spapr_iommu-Migrate-full-state.patch
1975+ - 0008-spapr_iommu-Add-root-memory-region.patch
1976+ - 0009-spapr_pci-Reset-DMA-config-on-PHB-reset.patch
1977+ - 0010-spapr_pci-Add-and-export-DMA-resetting-helper.patch
1978+ - 0011-memory-Add-reporting-of-supported-page-sizes.patch
1979+ - 0012-memory-Add-MemoryRegionIOMMUOps.notify_started-stopp.patch
1980+ - 0013-intel_iommu-Throw-hw_error-on-notify_started.patch
1981+ - 0014-spapr_iommu-Realloc-guest-visible-TCE-table-when-sta.patch
1982+ - 0015-vfio-spapr-Add-DMA-memory-preregistering-SPAPR-IOMMU.patch
1983+ - 0016-vfio-Add-host-side-DMA-window-capabilities.patch
1984+ - 0017-vfio-spapr-Create-DMA-window-dynamically-SPAPR-IOMMU.patch
1985+ - 0018-spapr_pci-spapr_pci_vfio-Support-Dynamic-DMA-Windows.patch
1986+ - 0019-vfio-spapr-Remove-stale-ioctl-call.patch
1987+ - 0020-spapr-Fix-undefined-behaviour-in-spapr_tce_reset.patch
1988+ - 0021-memory-Fix-IOMMU-replay-base-address.patch
1989+
1990+ -- Jon Grimm <jon.grimm@canonical.com> Fri, 16 Sep 2016 14:14:47 -0500
1991+
1992+qemu (1:2.6.1+dfsg-0ubuntu1) yakkety; urgency=medium
1993+
1994+ * New upstream release. LP: #1617055.
1995+ * Revert fix for CVE-2016-5403, causes regression see USN-3047-2.
1996+
1997+ -- Dimitri John Ledkov <xnox@ubuntu.com> Fri, 09 Sep 2016 23:33:57 +0100
1998+
1999 qemu (1:2.6+dfsg-3.1) unstable; urgency=high
2000
2001 * Non-maintainer upload.
2002@@ -951,6 +2874,55 @@ qemu (1:2.6+dfsg-3.1) unstable; urgency=high
2003
2004 -- Andrew James <ajames@hpe.com> Wed, 14 Sep 2016 00:56:18 -0600
2005
2006+qemu (1:2.6+dfsg-3ubuntu2) yakkety; urgency=medium
2007+
2008+ * SECURITY UPDATE: DoS via unbounded memory allocation
2009+ - debian/patches/CVE-2016-5403.patch: check size in hw/virtio/virtio.c.
2010+ - CVE-2016-5403
2011+ * SECURITY UPDATE: oob write access while reading ESP command
2012+ - debian/patches/CVE-2016-6351.patch: make cmdbuf big enough for
2013+ maximum CDB size and handle migration in hw/scsi/esp.c,
2014+ include/hw/scsi/esp.h, include/migration/vmstate.h.
2015+ - CVE-2016-6351
2016+ * SECURITY UPDATE: infinite loop in virtqueue_pop
2017+ - debian/patches/CVE-2016-6490.patch: check vring descriptor buffer
2018+ length in hw/virtio/virtio.c.
2019+ - CVE-2016-6490
2020+
2021+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 03 Aug 2016 08:36:16 -0400
2022+
2023+qemu (1:2.6+dfsg-3ubuntu1) yakkety; urgency=medium
2024+
2025+ * Merge with Debian; remaining changes:
2026+ - debian/rules: do not drop the init scripts loading kvm modules
2027+ (still needed in precise in cloud archive)
2028+ - qemu-system-common.postinst:
2029+ * remove acl placed by udev, and add udevadm trigger.
2030+ * reload kvm_intel if needed to set nested=1
2031+ - qemu-system-common.preinst: add kvm group if needed
2032+ - add qemu-kvm upstart job and defaults file (rules,
2033+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2034+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2035+ do not auto-load the kvm kernel module. Enable nesting by default
2036+ on intel.
2037+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2038+ in qemu64 cpu type.
2039+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
2040+ types to ease future live vm migration.
2041+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2042+ d/qemu-system-common.install
2043+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2044+ to fix errors with missing block backends.
2045+ - s390x:
2046+ * Create qemu-system-s390x package
2047+ * Enable pie by default, on ubuntu/s390x.
2048+ * Enable svm by default for qemu64 on amd
2049+ * Include s390-ccw.img firmware
2050+ * have qemu-system-aarch64 Suggest: qemu-efi; this should be a stronger
2051+ relationship, but qemu-efi is still in universe right now.
2052+
2053+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 15 Jun 2016 16:49:49 -0500
2054+
2055 qemu (1:2.6+dfsg-3) unstable; urgency=high
2056
2057 * more security fixes picked from upstream:
2058@@ -1004,6 +2976,39 @@ qemu (1:2.6+dfsg-2) unstable; urgency=medium
2059
2060 -- Michael Tokarev <mjt@tls.msk.ru> Mon, 13 Jun 2016 12:10:44 +0300
2061
2062+qemu (1:2.6+dfsg-1ubuntu1) yakkety; urgency=medium
2063+
2064+ * Merge with Debian; remaining changes: (LP: #1583775)
2065+ - debian/rules: do not drop the init scripts loading kvm modules
2066+ (still needed in precise in cloud archive)
2067+ - qemu-system-common.postinst:
2068+ * remove acl placed by udev, and add udevadm trigger.
2069+ * reload kvm_intel if needed to set nested=1
2070+ - qemu-system-common.preinst: add kvm group if needed
2071+ - add qemu-kvm upstart job and defaults file (rules,
2072+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2073+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2074+ do not auto-load the kvm kernel module. Enable nesting by default
2075+ on intel.
2076+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2077+ in qemu64 cpu type.
2078+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
2079+ types to ease future live vm migration.
2080+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2081+ d/qemu-system-common.install
2082+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2083+ to fix errors with missing block backends. (LP: #1495895)
2084+ - s390x:
2085+ * Create qemu-system-s390x package
2086+ * Enable pie by default, on ubuntu/s390x.
2087+ * Enable svm by default for qemu64 on amd
2088+ * Include s390-ccw.img firmware
2089+ * have qemu-system-aarch64 Suggest: qemu-efi; this should be a stronger
2090+ relationship, but qemu-efi is still in universe right now.
2091+ * Drop patches which have been applied upstream:
2092+
2093+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 19 May 2016 12:11:36 -0500
2094+
2095 qemu (1:2.6+dfsg-1) unstable; urgency=medium
2096
2097 * new upstream release
2098@@ -1041,6 +3046,106 @@ qemu (1:2.6+dfsg-1) unstable; urgency=medium
2099
2100 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 18 May 2016 14:44:14 +0300
2101
2102+qemu (1:2.5+dfsg-5ubuntu12) yakkety; urgency=medium
2103+
2104+ * Cherrypick upstream patches to support the query-gic-version QMP command
2105+ (LP: #1566564)
2106+
2107+ -- dann frazier <dannf@ubuntu.com> Tue, 05 Apr 2016 16:56:11 -0600
2108+
2109+qemu (1:2.5+dfsg-5ubuntu11) yakkety; urgency=medium
2110+
2111+ [Stefan Bader]
2112+ * Enable svm by default for qemu64 on amd (LP: #1561019)
2113+
2114+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 22 Apr 2016 16:53:55 -0500
2115+
2116+qemu (1:2.5+dfsg-5ubuntu10) xenial; urgency=medium
2117+
2118+ * qemu-system-s390x only available on s390x, so qemu-system should only
2119+ depend on it on this arch.
2120+ * have qemu-system-aarch64 Suggest: qemu-efi; this should be a stronger
2121+ relationship, but qemu-efi is still in universe right now.
2122+
2123+ -- Steve Langasek <steve.langasek@ubuntu.com> Tue, 19 Apr 2016 13:41:37 -0700
2124+
2125+qemu (1:2.5+dfsg-5ubuntu9) xenial; urgency=medium
2126+
2127+ * And actually ship the right things in qemu-system-s390x.
2128+
2129+ -- Dimitri John Ledkov <xnox@ubuntu.com> Tue, 19 Apr 2016 16:49:00 +0100
2130+
2131+qemu (1:2.5+dfsg-5ubuntu8) xenial; urgency=medium
2132+
2133+ * Create qemu-system-s390x package on ubuntu only.
2134+
2135+ -- Dimitri John Ledkov <xnox@ubuntu.com> Mon, 18 Apr 2016 10:16:19 +0100
2136+
2137+qemu (1:2.5+dfsg-5ubuntu7) xenial; urgency=medium
2138+
2139+ * Cherrypick patch from mailing list to fix qemu in sandbox. (LP: #1560149)
2140+
2141+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 11 Apr 2016 15:13:06 -0500
2142+
2143+qemu (1:2.5+dfsg-5ubuntu6) xenial; urgency=medium
2144+
2145+ * Cherrypick upstream patch vhost-user-interrupt-management-fixes.patch
2146+ (LP: #1556306)
2147+
2148+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 16 Mar 2016 16:35:22 -0700
2149+
2150+qemu (1:2.5+dfsg-5ubuntu5) xenial; urgency=medium
2151+
2152+ * Cherrypick upstream patch to fix snapshot regression (LP: #1533728)
2153+
2154+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 07 Mar 2016 18:53:34 -0800
2155+
2156+qemu (1:2.5+dfsg-5ubuntu4) xenial; urgency=medium
2157+
2158+ * d/control{-in}: Re-generate and build with libiscsi-dev now
2159+ that its in Ubuntu main (LP: #1271653).
2160+
2161+ -- James Page <james.page@ubuntu.com> Wed, 24 Feb 2016 17:59:13 +0000
2162+
2163+qemu (1:2.5+dfsg-5ubuntu3) xenial; urgency=medium
2164+
2165+ * Make -no-pie conditional, on $(CC) supporting -no-pie flag.
2166+
2167+ -- Dimitri John Ledkov <xnox@ubuntu.com> Wed, 24 Feb 2016 14:40:19 +0000
2168+
2169+qemu (1:2.5+dfsg-5ubuntu2) xenial; urgency=medium
2170+
2171+ * No-change rebuild for gnutls transition.
2172+
2173+ -- Matthias Klose <doko@ubuntu.com> Wed, 17 Feb 2016 22:27:20 +0000
2174+
2175+qemu (1:2.5+dfsg-5ubuntu1) xenial; urgency=medium
2176+
2177+ * Merge with Debian; remaining changes:
2178+ - debian/rules: do not drop the init scripts loading kvm modules
2179+ (still needed in precise in cloud archive)
2180+ - qemu-system-common.postinst:
2181+ * remove acl placed by udev, and add udevadm trigger.
2182+ * reload kvm_intel if needed to set nested=1
2183+ - qemu-system-common.preinst: add kvm group if needed
2184+ - add qemu-kvm upstart job and defaults file (rules,
2185+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2186+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2187+ do not auto-load the kvm kernel module. Enable nesting by default
2188+ on intel.
2189+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2190+ in qemu64 cpu type.
2191+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
2192+ types to ease future live vm migration.
2193+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2194+ d/qemu-system-common.install
2195+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2196+ to fix errors with missing block backends. (LP: #1495895)
2197+ - Enable pie by default, on ubuntu/s390x.
2198+ - Include s390-ccw.img firmware.
2199+
2200+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 09 Feb 2016 10:24:49 -0800
2201+
2202 qemu (1:2.5+dfsg-5) unstable; urgency=medium
2203
2204 * fix misspellings in previous debian/changelog entry
2205@@ -1098,6 +3203,113 @@ qemu (1:2.5+dfsg-2) unstable; urgency=high
2206
2207 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 09 Jan 2016 21:40:43 +0300
2208
2209+qemu (1:2.5+dfsg-1ubuntu5) xenial; urgency=medium
2210+
2211+ * SECURITY UPDATE: paravirtualized drivers incautious about shared memory
2212+ contents
2213+ - debian/patches/CVE-2015-8550-1.patch: avoid double access in
2214+ hw/block/xen_blkif.h.
2215+ - debian/patches/CVE-2015-8550-2.patch: avoid reading twice in
2216+ hw/display/xenfb.c.
2217+ - CVE-2015-8550
2218+ * SECURITY UPDATE: infinite loop in ehci_advance_state
2219+ - debian/patches/CVE-2015-8558.patch: make idt processing more robust
2220+ in hw/usb/hcd-ehci.c.
2221+ - CVE-2015-8558
2222+ * SECURITY UPDATE: host memory leakage in vmxnet3
2223+ - debian/patches/CVE-2015-856x.patch: avoid memory leakage in
2224+ hw/net/vmxnet3.c.
2225+ - CVE-2015-8567
2226+ - CVE-2015-8568
2227+ * SECURITY UPDATE: buffer overflow in megasas_ctrl_get_info
2228+ - debian/patches/CVE-2015-8613.patch: initialise info object with
2229+ appropriate size in hw/scsi/megasas.c.
2230+ - CVE-2015-8613
2231+ * SECURITY UPDATE: DoS via Human Monitor Interface
2232+ - debian/patches/CVE-2015-8619.patch: fix sendkey out of bounds write
2233+ in hmp.c, include/ui/console.h, ui/input-legacy.c.
2234+ - CVE-2015-8619
2235+ * SECURITY UPDATE: incorrect array bounds check in rocker
2236+ - debian/patches/CVE-2015-8701.patch: fix an incorrect array bounds
2237+ check in hw/net/rocker/rocker.c.
2238+ - CVE-2015-8701
2239+ * SECURITY UPDATE: ne2000 OOB r/w in ioport operations
2240+ - debian/patches/CVE-2015-8743.patch: fix bounds check in ioport
2241+ operations in hw/net/ne2000.c.
2242+ - CVE-2015-8743
2243+ * SECURITY UPDATE: ahci use-after-free vulnerability in aio port commands
2244+ - debian/patches/CVE-2016-1568.patch: reset ncq object to unused on
2245+ error in hw/ide/ahci.c.
2246+ - CVE-2016-1568
2247+ * SECURITY UPDATE: DoS via null pointer dereference in vapic_write()
2248+ - debian/patches/CVE-2016-1922.patch: avoid null pointer dereference in
2249+ hw/i386/kvmvapic.c.
2250+ - CVE-2016-1922
2251+ * SECURITY UPDATE: e1000 infinite loop
2252+ - debian/patches/CVE-2016-1981.patch: eliminate infinite loops on
2253+ out-of-bounds transfer start in hw/net/e1000.c
2254+ - CVE-2016-1981
2255+ * SECURITY UPDATE: AHCI NULL pointer dereference when using FIS CLB
2256+ engines
2257+ - debian/patches/CVE-2016-2197.patch: add check before calling
2258+ dma_memory_unmap in hw/ide/ahci.c.
2259+ - CVE-2016-2197
2260+ * SECURITY UPDATE: ehci null pointer dereference in ehci_caps_write
2261+ - debian/patches/CVE-2016-2198.patch: add capability mmio write
2262+ function in hw/usb/hcd-ehci.c.
2263+ - CVE-2016-2198
2264+
2265+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 01 Feb 2016 09:39:01 -0500
2266+
2267+qemu (1:2.5+dfsg-1ubuntu4) xenial; urgency=medium
2268+
2269+ * debian/qemu-kvm-init: Call systemd-detect-virt instead of the
2270+ Ubuntu specific running-in-container wrapper. (LP: #1539016)
2271+
2272+ -- Martin Pitt <martin.pitt@ubuntu.com> Thu, 28 Jan 2016 13:24:51 +0100
2273+
2274+qemu (1:2.5+dfsg-1ubuntu3) xenial; urgency=high
2275+
2276+ * Include s390-ccw.img firmware.
2277+
2278+ -- Dimitri John Ledkov <xnox@ubuntu.com> Tue, 12 Jan 2016 15:53:43 +0000
2279+
2280+qemu (1:2.5+dfsg-1ubuntu2) xenial; urgency=medium
2281+
2282+ * Place qemu-kvm.defaults file in qemu-system-common, next to the init
2283+ scripts. Fix the comparison operator when checking KVM_HUGEPAGES.
2284+ Thanks Simon. (LP: #1531191)
2285+
2286+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 06 Jan 2016 09:45:37 -0800
2287+
2288+qemu (1:2.5+dfsg-1ubuntu1) xenial; urgency=medium
2289+
2290+ * Merge with Debian; remaining changes:
2291+ - debian/rules: do not drop the init scripts loading kvm modules
2292+ (still needed in precise in cloud archive)
2293+ - qemu-system-common.postinst:
2294+ * remove acl placed by udev, and add udevadm trigger.
2295+ * reload kvm_intel if needed to set nested=1
2296+ - qemu-system-common.preinst: add kvm group if needed
2297+ - add qemu-kvm upstart job and defaults file (rules,
2298+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2299+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2300+ do not auto-load the kvm kernel module. Enable nesting by default
2301+ on intel.
2302+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2303+ in qemu64 cpu type.
2304+ - d/p/ubuntu/define-ubuntu-machine-types.patch: define distro machine
2305+ types to ease future live vm migration.
2306+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2307+ d/qemu-system-common.install
2308+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2309+ to fix errors with missing block backends. (LP: #1495895)
2310+ - Enable pie by default, on ubuntu/s390x.
2311+ * Drop vGICv3 support patches - all is now upstream
2312+ * debian/qemu-kvm-init: handle KVM_HUGEPAGES being unset (LP: #1531191)
2313+
2314+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 05 Jan 2016 15:42:50 -0800
2315+
2316 qemu (1:2.5+dfsg-1) unstable; urgency=medium
2317
2318 * new upstream release
2319@@ -1124,6 +3336,49 @@ qemu (1:2.5+dfsg-1) unstable; urgency=medium
2320
2321 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 16 Dec 2015 20:00:04 +0300
2322
2323+qemu (1:2.4+dfsg-5ubuntu3) xenial; urgency=high
2324+
2325+ * Enable pie by default, on ubuntu/s390x.
2326+
2327+ -- Dimitri John Ledkov <xnox@ubuntu.com> Mon, 07 Dec 2015 16:04:16 +0000
2328+
2329+qemu (1:2.4+dfsg-5ubuntu2) xenial; urgency=medium
2330+
2331+ * undo the libseccomp delta from debian. libseccomp is indeed available
2332+ on other arches, but we need qemu's configure script to be fixed before
2333+ we can use it on anything other than amd64|i386. Fixes FTBFS.
2334+ (LP: #1522531)
2335+
2336+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 03 Dec 2015 12:44:46 -0600
2337+
2338+qemu (1:2.4+dfsg-5ubuntu1) xenial; urgency=medium
2339+
2340+ * Merge with Debian; remaining changes:
2341+ - Update the ubuntu machine types patch to reflect upstream churn
2342+ - debian/rules: do not drop the init scripts loading kvm modules
2343+ (still needed in precise in cloud archive)
2344+ - qemu-system-common.postinst:
2345+ * remove acl placed by udev, and add udevadm trigger.
2346+ * reload kvm_intel if needed to set nested=1
2347+ - qemu-system-common.preinst: add kvm group if needed
2348+ - add qemu-kvm upstart job and defaults file (rules,
2349+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2350+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2351+ do not auto-load the kvm kernel module. Enable nesting by default
2352+ on intel.
2353+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2354+ in qemu64 cpu type.
2355+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2356+ machine type to ease future live vm migration.
2357+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2358+ d/qemu-system-common.install
2359+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2360+ to fix errors with missing block backends. (LP: #1495895)
2361+ - control-in: build with libseccomp an all architectures
2362+ - Add vGICv3 support
2363+
2364+ -- Matthias Klose <doko@ubuntu.com> Wed, 02 Dec 2015 21:31:36 +0100
2365+
2366 qemu (1:2.4+dfsg-5) unstable; urgency=medium
2367
2368 * trace-remove-malloc-tracing.patch from upstream.
2369@@ -1136,6 +3391,57 @@ qemu (1:2.4+dfsg-5) unstable; urgency=medium
2370
2371 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 29 Nov 2015 12:22:52 +0300
2372
2373+qemu (1:2.4+dfsg-4ubuntu3) xenial; urgency=medium
2374+
2375+ * SECURITY UPDATE: loopback mode heap overflow vulnerability in pcnet
2376+ - debian/patches/CVE-2015-7504.patch: leave room for CRC code in
2377+ hw/net/pcnet.c.
2378+ - CVE-2015-7504
2379+ * SECURITY UPDATE: non-loopback mode buffer overflow in pcnet
2380+ - debian/patches/CVE-2015-7512.patch: check packet length in
2381+ hw/net/pcnet.c.
2382+ - CVE-2015-7512
2383+ * SECURITY UPDATE: infinite loop in eepro100
2384+ - debian/patches/CVE-2015-8345.patch: prevent endless loop in
2385+ hw/net/eepro100.c.
2386+ - CVE-2015-8345
2387+
2388+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 01 Dec 2015 13:36:40 -0500
2389+
2390+qemu (1:2.4+dfsg-4ubuntu2) xenial; urgency=medium
2391+
2392+ * d/p/u/define-ubuntu-machine-type.patch: Fix typo in utopic definition.
2393+
2394+ -- dann frazier <dann.frazier@canonical.com> Tue, 03 Nov 2015 08:05:46 -0700
2395+
2396+qemu (1:2.4+dfsg-4ubuntu1) xenial; urgency=medium
2397+
2398+ * Merge 2.4 from unstable. Remaining changes:
2399+ - Update the ubuntu machine types patch to reflect upstream churn
2400+ - debian/rules: do not drop the init scripts loading kvm modules
2401+ (still needed in precise in cloud archive)
2402+ - qemu-system-common.postinst:
2403+ * remove acl placed by udev, and add udevadm trigger.
2404+ * reload kvm_intel if needed to set nested=1
2405+ - qemu-system-common.preinst: add kvm group if needed
2406+ - add qemu-kvm upstart job and defaults file (rules,
2407+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2408+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2409+ do not auto-load the kvm kernel module. Enable nesting by default
2410+ on intel.
2411+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2412+ in qemu64 cpu type.
2413+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2414+ machine type to ease future live vm migration.
2415+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2416+ d/qemu-system-common.install
2417+ - Make qemu-system-common and qemu-utils depend on qemu-block-extra
2418+ to fix errors with missing block backends. (LP: #1495895)
2419+ - control-in: build with libseccomp an all architectures.
2420+ * Add vGICv3 support
2421+
2422+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 27 Oct 2015 13:28:58 -0500
2423+
2424 qemu (1:2.4+dfsg-4) unstable; urgency=medium
2425
2426 * applied 3 patches from upstream to fix virtio-net
2427@@ -1202,6 +3508,137 @@ qemu (1:2.3+dfsg-6) unstable; urgency=high
2428
2429 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 11 Jun 2015 20:03:40 +0300
2430
2431+qemu (1:2.3+dfsg-5ubuntu10) xenial; urgency=medium
2432+
2433+ * debian/patches/fix-curses-with-xterm-256.patch (LP: #1508466)
2434+
2435+ -- Ryan Harper <ryan.harper@canonical.com> Wed, 21 Oct 2015 08:59:29 -0500
2436+
2437+qemu (1:2.3+dfsg-5ubuntu9) wily; urgency=low
2438+
2439+ * debian/patches/upstream-fix-irq-route-entries.patch
2440+ Fix "kvm_irqchip_commit_routes: Assertion 'ret == 0' failed"
2441+ (LP: #1465935)
2442+
2443+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 09 Oct 2015 15:38:53 +0200
2444+
2445+qemu (1:2.3+dfsg-5ubuntu8) wily; urgency=medium
2446+
2447+ * Build using libseccomp on all architectures.
2448+
2449+ -- Matthias Klose <doko@ubuntu.com> Sat, 03 Oct 2015 21:12:15 +0200
2450+
2451+qemu (1:2.3+dfsg-5ubuntu7) wily; urgency=medium
2452+
2453+ * SECURITY UPDATE: denial of service via NE2000 driver
2454+ - debian/patches/CVE-2015-5278.patch: fix infinite loop in
2455+ hw/net/ne2000.c.
2456+ - CVE-2015-5278
2457+ * SECURITY UPDATE: denial of service and possible code execution via
2458+ heap overflow in NE2000 driver
2459+ - debian/patches/CVE-2015-5279.patch: validate ring buffer pointers in
2460+ hw/net/ne2000.c.
2461+ - CVE-2015-5279
2462+ * SECURITY UPDATE: denial of service via e1000 infinite loop
2463+ - debian/patches/CVE-2015-6815.patch: check bytes in hw/net/e1000.c.
2464+ - CVE-2015-6815
2465+ * SECURITY UPDATE: denial of service via illegal ATAPI commands
2466+ - debian/patches/CVE-2015-6855.patch: fix ATAPI command permissions in
2467+ hw/ide/core.c.
2468+ - CVE-2015-6855
2469+
2470+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 23 Sep 2015 15:05:51 -0400
2471+
2472+qemu (1:2.3+dfsg-5ubuntu6) wily; urgency=medium
2473+
2474+ * Make qemu-system-common and qemu-utils depend on qemu-block-extra
2475+ to fix errors with missing block backends. (LP: #1495895)
2476+ * Cherry pick fixes for vmdk stream-optimized subformat (LP: #1006655)
2477+ * Apply fix for memory corruption during live-migration in tcg mode
2478+ (LP: #1493049)
2479+ * Apply tracing patch to remove use of custom vtable in newer glibc
2480+ (LP: #1491972)
2481+
2482+ -- Ryan Harper <ryan.harper@canonical.com> Tue, 15 Sep 2015 09:37:23 -0500
2483+
2484+qemu (1:2.3+dfsg-5ubuntu5) wily; urgency=medium
2485+
2486+ * Import qcow2-handle-eagain-from-update_refcount from upstream
2487+ to fix errors when using qemu-img convert -c. (LP: #1491050)
2488+
2489+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 04 Sep 2015 16:35:56 -0500
2490+
2491+qemu (1:2.3+dfsg-5ubuntu4) wily; urgency=medium
2492+
2493+ * SECURITY UPDATE: process heap memory disclosure
2494+ - debian/patches/CVE-2015-5165.patch: check sizes in hw/net/rtl8139.c.
2495+ - CVE-2015-5165
2496+ * SECURITY UPDATE: privilege escalation via block device unplugging
2497+ - debian/patches/CVE-2015-5166.patch: properly unhook from BlockBackend
2498+ in hw/ide/piix.c.
2499+ - CVE-2015-5166
2500+ * SECURITY UPDATE: privilege escalation via memory corruption in vnc
2501+ - debian/patches/CVE-2015-5225.patch: use bytes per scanline to apply
2502+ limits in ui/vnc.c.
2503+ - CVE-2015-5225
2504+ * SECURITY UPDATE: denial of service via virtio-serial
2505+ - debian/patches/CVE-2015-5745.patch: don't assume a specific layout
2506+ for control messages in hw/char/virtio-serial-bus.c.
2507+ - CVE-2015-5745
2508+
2509+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 25 Aug 2015 09:38:43 -0400
2510+
2511+qemu (1:2.3+dfsg-5ubuntu3) wily; urgency=medium
2512+
2513+ * SECURITY UPDATE: out-of-bounds memory access in pit_ioport_read()
2514+ - debian/patches/CVE-2015-3214.patch: ignore read in hw/timer/i8254.c.
2515+ - CVE-2015-3214
2516+ * SECURITY UPDATE: heap overflow when processing ATAPI commands
2517+ - debian/patches/CVE-2015-5154.patch: check bounds and clear DRQ in
2518+ hw/ide/core.c, make sure command is completed in hw/ide/atapi.c.
2519+ - CVE-2015-5154
2520+ * SECURITY UPDATE: buffer overflow in scsi_req_parse_cdb
2521+ - debian/patches/CVE-2015-5158.patch: check length in
2522+ hw/scsi/scsi-bus.c.
2523+ - CVE-2015-5158
2524+
2525+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 27 Jul 2015 10:07:05 -0400
2526+
2527+qemu (1:2.3+dfsg-5ubuntu2) wily; urgency=medium
2528+
2529+ * SECURITY UPDATE: heap overflow in PCNET controller
2530+ - debian/patches/CVE-2015-3209.patch: check bounds in hw/net/pcnet.c.
2531+ - CVE-2015-3209
2532+
2533+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 11 Jun 2015 14:25:05 -0400
2534+
2535+qemu (1:2.3+dfsg-5ubuntu1) wily; urgency=medium
2536+
2537+ * Merge 1:2.3+dfsg-5 from Debian.
2538+ * Remaining changes:
2539+ - debian/rules: do not drop the init scripts loading kvm modules
2540+ (still needed in precise in cloud archive)
2541+ - qemu-system-common.postinst:
2542+ * remove acl placed by udev, and add udevadm trigger.
2543+ * reload kvm_intel if needed to set nested=1
2544+ - qemu-system-common.preinst: add kvm group if needed
2545+ - add qemu-kvm upstart job and defaults file (rules,
2546+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2547+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2548+ do not auto-load the kvm kernel module. Enable nesting by default
2549+ on intel.
2550+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2551+ in qemu64 cpu type.
2552+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2553+ machine type to ease future live vm migration.
2554+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2555+ d/qemu-system-common.install
2556+ * Refreshed patches:
2557+ - ubuntu/expose-vmx_qemu64cpu.patch
2558+ - ubuntu/define-ubuntu-machine-types.patch
2559+
2560+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 10 Jun 2015 14:28:39 -0500
2561+
2562 qemu (1:2.3+dfsg-5) unstable; urgency=high
2563
2564 * slirp-use-less-predictable-directory-name-in-tmp-CVE-2015-4037.patch
2565@@ -1213,6 +3650,35 @@ qemu (1:2.3+dfsg-5) unstable; urgency=high
2566
2567 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 03 Jun 2015 17:18:58 +0300
2568
2569+qemu (1:2.3+dfsg-4ubuntu1) wily; urgency=medium
2570+
2571+ * Merge 1:2.3+dfsg-4 from Debian.
2572+ * Remaining changes:
2573+ - debian/rules: do not drop the init scripts loading kvm modules
2574+ (still needed in precise in cloud archive)
2575+ - qemu-system-common.postinst:
2576+ * remove acl placed by udev, and add udevadm trigger.
2577+ * reload kvm_intel if needed to set nested=1
2578+ - qemu-system-common.preinst: add kvm group if needed
2579+ - add qemu-kvm upstart job and defaults file (rules,
2580+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2581+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2582+ do not auto-load the kvm kernel module. Enable nesting by default
2583+ on intel.
2584+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2585+ in qemu64 cpu type.
2586+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2587+ machine type to ease future live vm migration.
2588+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2589+ d/qemu-system-common.install
2590+ * Dropped all patches which are applied upstream
2591+ * Move the upstart jobs to a generic script
2592+ - add new qemu-kvm-init script
2593+ - call that from upstart and sysvrc qemu-kvm scripts
2594+ - move to qemu-system-common, which must now B/R qemu-system-{x86,ppc}
2595+
2596+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 03 Jun 2015 13:36:36 -0500
2597+
2598 qemu (1:2.3+dfsg-4) unstable; urgency=medium
2599
2600 * rules.mak-force-CFLAGS-for-all-objects-in-DSO.patch:
2601@@ -1274,6 +3740,98 @@ qemu (1:2.2+dfsg-6exp) experimental; urgency=medium
2602
2603 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 17 Apr 2015 21:54:53 +0300
2604
2605+qemu (1:2.2+dfsg-5expubuntu10) wily; urgency=medium
2606+
2607+ * SECURITY UPDATE: denial of service in vnc web
2608+ - debian/patches/CVE-2015-1779-1.patch: incrementally decode websocket
2609+ frames in ui/vnc-ws.c, ui/vnc-ws.h, ui/vnc.h.
2610+ - debian/patches/CVE-2015-1779-2.patch: limit size of HTTP headers from
2611+ websockets clients in ui/vnc-ws.c.
2612+ - CVE-2015-1779
2613+ * SECURITY UPDATE: host code execution via floppy device (VEMON)
2614+ - debian/patches/CVE-2015-3456.patch: force the fifo access to be in
2615+ bounds of the allocated buffer in hw/block/fdc.c.
2616+ - CVE-2015-3456
2617+
2618+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 13 May 2015 07:25:59 -0400
2619+
2620+qemu (1:2.2+dfsg-5expubuntu9) vivid; urgency=low
2621+
2622+ * CVE-2015-2756 / XSA-126
2623+ - xen: limit guest control of PCI command register
2624+
2625+ -- Stefan Bader <stefan.bader@canonical.com> Wed, 08 Apr 2015 10:17:45 +0200
2626+
2627+qemu (1:2.2+dfsg-5expubuntu8) vivid; urgency=medium
2628+
2629+ * debian/qemu-system-x86.qemu-kvm.upstart: fix redirection to not
2630+ accidentally create /1
2631+
2632+ -- Steve Beattie <sbeattie@ubuntu.com> Thu, 12 Mar 2015 16:46:51 -0700
2633+
2634+qemu (1:2.2+dfsg-5expubuntu7) vivid; urgency=low
2635+
2636+ * No-change rebuild to pull in libxl-4.5 (take 2: step to the right).
2637+
2638+ -- Stefan Bader <stefan.bader@canonical.com> Thu, 26 Feb 2015 08:55:35 +0100
2639+
2640+qemu (1:2.2+dfsg-5expubuntu6) vivid; urgency=low
2641+
2642+ * No-change rebuild to pull in libxl-4.5.
2643+
2644+ -- Stefan Bader <stefan.bader@canonical.com> Wed, 25 Feb 2015 13:58:37 +0100
2645+
2646+qemu (1:2.2+dfsg-5expubuntu5) vivid; urgency=medium
2647+
2648+ * debian/control-in: enable numa on architectures where numa is built
2649+ (LP: #1417937)
2650+
2651+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 12 Feb 2015 23:18:58 -0600
2652+
2653+qemu (1:2.2+dfsg-5expubuntu4) vivid; urgency=medium
2654+
2655+ [Scott Moser]
2656+ * update d/kvm.powerpc to avoid use of awk, which isn't allowed by aa
2657+ profile when started by libvirt.
2658+
2659+ [Serge Hallyn]
2660+ * add symlink qemu-system-ppc64le -> qemu-system-ppc64
2661+ * debian/rules: fix DEB_HOST_ARCh fix to ppc64el for installing qemu-kvm init script
2662+ (LP: #1419855)
2663+
2664+ [Chris J Arges]
2665+ * Determine if we are running inside a virtual environment. If running inside
2666+ a virtualized enviornment do _not_ automatically enable KSM. (LP: #1414153)
2667+
2668+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 12 Feb 2015 13:04:21 -0600
2669+
2670+qemu (1:2.2+dfsg-5expubuntu1) vivid; urgency=medium
2671+
2672+ * Merge 1:2.2+dfsg-5exp from Debian. (LP: #1409308)
2673+ - debian/rules: do not drop the init scripts loading kvm modules
2674+ (still needed in precise in cloud archive)
2675+ * Remaining changes:
2676+ - qemu-system-common.postinst:
2677+ * remove acl placed by udev, and add udevadm trigger.
2678+ * reload kvm_intel if needed to set nested=1
2679+ - qemu-system-common.preinst: add kvm group if needed
2680+ - add qemu-kvm upstart job and defaults file (rules,
2681+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2682+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2683+ do not auto-load the kvm kernel module. Enable nesting by default
2684+ on intel.
2685+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2686+ in qemu64 cpu type.
2687+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2688+ machine type to ease future live vm migration.
2689+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2690+ d/qemu-system-common.install
2691+ * Dropped all patches which are applied upstream
2692+ * Update ubuntu-vivid machine type to default to std graphics (following
2693+ upstream's lead for pc-i440fx-2.2 machine type)
2694+
2695+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 09 Feb 2015 22:31:09 -0600
2696+
2697 qemu (1:2.2+dfsg-5exp) experimental; urgency=medium
2698
2699 * fix initscript removal once again
2700@@ -1323,6 +3881,47 @@ qemu (2.2+dfsg-1exp) unstable; urgency=medium
2701
2702 -- Michael Tokarev <mjt@tls.msk.ru> Tue, 09 Dec 2014 23:09:26 +0300
2703
2704+qemu (1:2.1+dfsg-11ubuntu2) vivid; urgency=medium
2705+
2706+ * Cherrypick upstream patch needed to allow ESx hosts to run under
2707+ kvm (LP: #1411575)
2708+
2709+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 16 Jan 2015 16:32:48 -0600
2710+
2711+qemu (1:2.1+dfsg-11ubuntu1) vivid; urgency=medium
2712+
2713+ * Merge 2.1+dfsg-11. Remaining changes:
2714+ - qemu-system-common.postinst:
2715+ * remove acl placed by udev, and add udevadm trigger.
2716+ * reload kvm_intel if needed to set nested=1
2717+ - qemu-system-common.preinst: add kvm group if needed
2718+ - add qemu-kvm upstart job and defaults file (rules,
2719+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2720+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2721+ do not auto-load the kvm kernel module. Enable nesting by default
2722+ on intel.
2723+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2724+ removed the alternatives bit later.
2725+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2726+ in qemu64 cpu type.
2727+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2728+ machine type to ease future live vm migration.
2729+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2730+ d/qemu-system-common.install
2731+ - debian/binfmt-update-in: support ppcle
2732+ * debian/binfmt-update-in
2733+ * Support-ppcle.patch
2734+ - Upstream patches to fix AArch64 emulation ignoring SPSel=0:
2735+ * d/p/target-arm-A64-Break-out-aarch64_save-restore_sp.patch
2736+ * d/p/target-arm-A64-Respect-SPSEL-in-ERET-SP-restore.patch
2737+ * d/p/target-arm-A64-Respect-SPSEL-when-taking-exceptions.patch:
2738+ * Dropped patches (upstream or now in debian's tree):
2739+ - upstream-xen_disk-fix-unmapping-of-persistent-grants.patch
2740+ - CVE-2014-7840.patch
2741+ - CVE-2014-8106.patch
2742+
2743+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 17 Dec 2014 13:57:34 -0600
2744+
2745 qemu (1:2.1+dfsg-11) unstable; urgency=medium
2746
2747 * bump epoch and reupload to cancel 2.2+dfsg-1exp upload
2748@@ -1392,6 +3991,81 @@ qemu (2.1+dfsg-8) unstable; urgency=low
2749
2750 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 27 Nov 2014 18:32:45 +0300
2751
2752+qemu (2.1+dfsg-7ubuntu5) vivid; urgency=medium
2753+
2754+ * SECURITY UPDATE: code execution via savevm data
2755+ - debian/patches/CVE-2014-7840.patch: validate parameters in
2756+ arch_init.c.
2757+ - CVE-2014-7840
2758+ * SECURITY UPDATE: code execution via cirrus vga blit regions
2759+ (LP: #1400775)
2760+ - debian/patches/CVE-2014-8106.patch: properly validate blit regions in
2761+ hw/display/cirrus_vga.c.
2762+ - CVE-2014-8106
2763+
2764+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 11 Dec 2014 14:11:52 -0500
2765+
2766+qemu (2.1+dfsg-7ubuntu4) vivid; urgency=low
2767+
2768+ * d/rules: Fix vendor check to make kvm-spice symlinks (DEB_VENDOR got
2769+ dropped and VENDOR now will be all capital UBUNTU).
2770+
2771+ -- Stefan Bader <stefan.bader@canonical.com> Mon, 08 Dec 2014 14:45:31 +0100
2772+
2773+qemu (2.1+dfsg-7ubuntu3) vivid; urgency=medium
2774+
2775+ * d/p/target-arm-A64-Break-out-aarch64_save-restore_sp.patch
2776+ d/p/target-arm-A64-Respect-SPSEL-in-ERET-SP-restore.patch
2777+ d/p/target-arm-A64-Respect-SPSEL-when-taking-exceptions.patch:
2778+ Cherry-pick of upstream patches in order to fix AArch64 emulation ignoring
2779+ SPSel=0 in certain conditions. (LP: #1349277)
2780+
2781+ -- Chris J Arges <chris.j.arges@canonical.com> Thu, 04 Dec 2014 14:17:01 -0600
2782+
2783+qemu (2.1+dfsg-7ubuntu2) vivid; urgency=low
2784+
2785+ * d/p/upstream-xen_disk-fix-unmapping-of-persistent-grants.patch:
2786+ Cherry-pick of qemu-upstream patch to fix issues with persistent
2787+ grants and the PV backend (Qdisk) (LP: #1394327).
2788+
2789+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 28 Nov 2014 13:14:37 +0100
2790+
2791+qemu (2.1+dfsg-7ubuntu1) vivid; urgency=medium
2792+
2793+ * Merge 2.1+dfsg-7. Remaining changes:
2794+ - qemu-system-common.postinst:
2795+ * remove acl placed by udev, and add udevadm trigger.
2796+ * reload kvm_intel if needed to set nested=1
2797+ - qemu-system-common.preinst: add kvm group if needed
2798+ - add qemu-kvm upstart job and defaults file (rules,
2799+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2800+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2801+ do not auto-load the kvm kernel module. Enable nesting by default
2802+ on intel.
2803+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2804+ removed the alternatives bit later.
2805+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2806+ in qemu64 cpu type.
2807+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2808+ machine type to ease future live vm migration.
2809+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2810+ d/qemu-system-common.install
2811+ - debian/binfmt-update-in: support ppcle
2812+ * debian/binfmt-update-in
2813+ * Support-ppcle.patch
2814+ * Dropped patches (upstream or now in debian's tree):
2815+ - pc-reserve-more-memory-for-acpi.patch
2816+ - CVE-2014-5388.patch
2817+ - 501-block-raw-posix-fix-disk-corruption-in-try-fiemap and
2818+ 502-block-raw-posic-use-seek-hole-ahead-of-fiemap (combined
2819+ in debian)
2820+ - CVE-2014-3615.patch
2821+ - CVE-2014-3640.patch
2822+ - CVE-2014-3689.patch
2823+ - CVE-2014-7815.patch
2824+
2825+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Sat, 22 Nov 2014 18:36:53 -0600
2826+
2827 qemu (2.1+dfsg-7) unstable; urgency=high
2828
2829 * urgency is high due to 2 security fixes
2830@@ -1443,6 +4117,119 @@ qemu (2.1+dfsg-5) unstable; urgency=medium
2831
2832 -- Michael Tokarev <mjt@tls.msk.ru> Fri, 26 Sep 2014 17:43:26 +0400
2833
2834+qemu (2.1+dfsg-4ubuntu9) vivid; urgency=medium
2835+
2836+ * SECURITY UPDATE: information disclosure via vga driver
2837+ - debian/patches/CVE-2014-3615.patch: return the correct memory size,
2838+ sanity check register writes, and don't use fixed buffer sizes in
2839+ hw/display/qxl.c, hw/display/vga.c, hw/display/vga_int.h,
2840+ ui/spice-display.c.
2841+ - CVE-2014-3615
2842+ * SECURITY UPDATE: denial of service via slirp NULL pointer deref
2843+ - debian/patches/CVE-2014-3640.patch: make sure socket is not just a
2844+ stub in slirp/udp.c.
2845+ - CVE-2014-3640
2846+ * SECURITY UPDATE: possible privilege escalation via vmware-vga driver
2847+ - debian/patches/CVE-2014-3689.patch: verify rectangles in
2848+ hw/display/vmware_vga.c.
2849+ - CVE-2014-3689
2850+ * SECURITY UPDATE: denial of service via VNC console
2851+ - debian/patches/CVE-2014-7815.patch: validate bits_per_pixel in
2852+ ui/vnc.c.
2853+ - CVE-2014-7815
2854+
2855+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 13 Nov 2014 07:31:03 -0500
2856+
2857+qemu (2.1+dfsg-4ubuntu8) vivid; urgency=medium
2858+
2859+ * Support qemu-kvm on x32, arm64, ppc64 and pp64el architectures
2860+ (LP: #1389897) (Patch thanks to mwhudson, BenC, and infinity)
2861+
2862+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 11 Nov 2014 15:51:47 -0600
2863+
2864+qemu (2.1+dfsg-4ubuntu7) vivid; urgency=medium
2865+
2866+ * Apply two patches to fix intermittent qemu-img corruption
2867+ (LP: #1368815)
2868+ - 501-block-raw-posix-fix-disk-corruption-in-try-fiemap
2869+ - 502-block-raw-posic-use-seek-hole-ahead-of-fiemap
2870+
2871+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 29 Oct 2014 22:31:43 -0500
2872+
2873+qemu (2.1+dfsg-4ubuntu6) utopic; urgency=medium
2874+
2875+ * debian/control: slof is moving into main, so we can depend on qemu-slof as
2876+ debian does.
2877+
2878+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 15 Oct 2014 22:01:27 +0200
2879+
2880+qemu (2.1+dfsg-4ubuntu5) utopic; urgency=medium
2881+
2882+ * debian/binfmt-update-in: don't blacklist ppc64le on ppc64 and vice
2883+ versa.
2884+ * Drop Support-ppc64le.pach, as that architecture appears to not exist yet.
2885+ * update d/p/ubuntu/define-ubuntu-machine-types.patch to keep -M pc pointing
2886+ to latest upstream machine type, rather than distro one. Add 'ubuntu'
2887+ machine type for that.
2888+
2889+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 06 Oct 2014 13:41:31 -0500
2890+
2891+qemu (2.1+dfsg-4ubuntu4) utopic; urgency=medium
2892+
2893+ * debian/qemu-system-x86.qemu-kvm.upstart: create /dev/kvm in a
2894+ container. (LP: #1370199)
2895+ * load kvm module on ppc64le at boot (LP: #1369785)
2896+ - debian/rules: install qemu-kvm on ppc64el
2897+ - add debian/qemu-system-ppc.qemu-kvm.{upstart,default} to autoload the
2898+ kvm-hv module if available
2899+ * qemu-system-x86.maintscript: remove accidentally installed
2900+ /etc/init.d/qemu-system-x86 (from 2.0.0+dfsg-6ubuntu1 and a few earlier)
2901+ * rename qemu-system-x86 init script to qemu-kvm so it gets installed in
2902+ ubuntu.
2903+
2904+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 17 Sep 2014 14:20:12 -0500
2905+
2906+qemu (2.1+dfsg-4ubuntu3) utopic; urgency=medium
2907+
2908+ * Re-stick the trusty machine type to 2.0 (where it must always stay) and
2909+ define a new, default, pc-i440fx-utopic machine type (LP: #1369481)
2910+
2911+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 15 Sep 2014 14:04:57 -0500
2912+
2913+qemu (2.1+dfsg-4ubuntu2) utopic; urgency=medium
2914+
2915+ * move kvm_intel nested setting to qemu-system-x86.postinst.
2916+
2917+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 12 Sep 2014 23:12:52 +0000
2918+
2919+qemu (2.1+dfsg-4ubuntu1) utopic; urgency=medium
2920+
2921+ * Merge new debian release
2922+ * Remaining changes:
2923+ - qemu-system-common.postinst:
2924+ * remove acl placed by udev, and add udevadm trigger.
2925+ * reload kvm_intel if needed to set nested=1
2926+ - qemu-system-common.preinst: add kvm group if needed
2927+ - add qemu-kvm upstart job and defaults file (rules,
2928+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2929+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2930+ do not auto-load the kvm kernel module. Enable nesting by default
2931+ on intel.
2932+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2933+ removed the alternatives bit later.
2934+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2935+ in qemu64 cpu type.
2936+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2937+ machine type to ease future live vm migration.
2938+ - apport hook for qemu source package: d/source_qemu-kvm.py,
2939+ d/qemu-system-common.install
2940+ - debian/binfmt-update-in: support ppcle
2941+ * debian/binfmt-update-in
2942+ * Support-ppcle.patch
2943+ - d/p/CVE-2014-5388.patch
2944+
2945+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 09 Sep 2014 17:56:15 -0500
2946+
2947 qemu (2.1+dfsg-4) unstable; urgency=medium
2948
2949 * mention libnuma-dev but not enable for now
2950@@ -1460,6 +4247,59 @@ qemu (2.1+dfsg-4) unstable; urgency=medium
2951
2952 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 31 Aug 2014 09:32:59 +0400
2953
2954+qemu (2.1+dfsg-3ubuntu4) utopic; urgency=medium
2955+
2956+ * SECURITY UPDATE: memory disclosure via out-of-bounds array access
2957+ - debian/patches/CVE-2014-5388.patch: fix check in hw/acpi/pcihp.c.
2958+ - CVE-2014-5388
2959+
2960+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 09 Sep 2014 08:26:24 -0400
2961+
2962+qemu (2.1+dfsg-3ubuntu3) utopic; urgency=medium
2963+
2964+ * replace d/p/revert-acpi-table-size-bump with
2965+ pc-reserve-more-memory-for-acpi.patch from upstream
2966+ * debian/binfmt-update-in
2967+ - don't run in a container
2968+ - add ppc64le as target (LP: #1358268)
2969+ * Add experimental ppcle support (LP: #1358268)
2970+
2971+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 27 Aug 2014 18:24:32 -0500
2972+
2973+qemu (2.1+dfsg-3ubuntu2) utopic; urgency=medium
2974+
2975+ * revert-acpi-table-size-bump - get qemu -kernel working again.
2976+
2977+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 15 Aug 2014 15:33:24 -0500
2978+
2979+qemu (2.1+dfsg-3ubuntu1) utopic; urgency=medium
2980+
2981+ * Merge new debian release
2982+ * Remaining changes:
2983+ - control-in: stick to libsdl1.2-dev.
2984+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
2985+ qemu-bridge-helper
2986+ - qemu-system-common.postinst: remove acl placed by udev,
2987+ and add udevadm trigger.
2988+ - qemu-system-common.preinst: add kvm group if needed
2989+ - add qemu-kvm upstart job and defaults file (rules,
2990+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
2991+ - rules,qemu-system-x86.modprobe: support use under older udevs which
2992+ do not auto-load the kvm kernel module. Enable nesting by default
2993+ on intel.
2994+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
2995+ removed the alternatives bit later.
2996+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
2997+ in qemu64 cpu type.
2998+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
2999+ machine type to ease future live vm migration.
3000+ - apport hook for qemu source package: d/source_qemu-kvm.py,
3001+ d/qemu-system-common.install
3002+ * Upstart job: use getent group to check for kvm group
3003+ * apport: 'qemu' doesn't exist any more, so check for any qemu* tasks
3004+
3005+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 15 Aug 2014 08:44:54 -0500
3006+
3007 qemu (2.1+dfsg-3) unstable; urgency=medium
3008
3009 * set SHELL = /bin/sh -e, so that more complex shell constructs
3010@@ -1486,6 +4326,42 @@ qemu (2.1+dfsg-3) unstable; urgency=medium
3011
3012 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 14 Aug 2014 14:30:24 +0400
3013
3014+qemu (2.1+dfsg-2ubuntu2) utopic; urgency=medium
3015+
3016+ * reload kvm_intel if needed to set the nested=Y flag (LP: #1324174)
3017+
3018+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 11 Aug 2014 12:58:50 -0500
3019+
3020+qemu (2.1+dfsg-2ubuntu1) utopic; urgency=medium
3021+
3022+ * Merge new debian release
3023+ * Remaining changes:
3024+ - qemu-system-x86.links: add eepro100.rom link, drop links which we
3025+ have in ipxe-qemu package.
3026+ - control-in: stick to libsdl1.2-dev.
3027+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
3028+ qemu-bridge-helper
3029+ - qemu-system-common.postinst: remove acl placed by udev,
3030+ and add udevadm trigger.
3031+ - qemu-system-common.preinst: add kvm group if needed
3032+ - add qemu-kvm upstart job and defaults file (rules,
3033+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
3034+ - debian/rules: add qemu-kvm-spice
3035+ - rules,qemu-system-x86.modprobe: support use under older udevs which
3036+ do not auto-load the kvm kernel module. Enable nesting by default
3037+ on intel.
3038+ - binfmt-update-in: make sure to filter out compat arches.
3039+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
3040+ removed the alternatives bit later.
3041+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
3042+ in qemu64 cpu type.
3043+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
3044+ machine type to ease future live vm migration.
3045+ - apport hook for qemu source package: d/source_qemu-kvm.py,
3046+ d/qemu-system-common.install
3047+
3048+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 05 Aug 2014 13:53:06 -0500
3049+
3050 qemu (2.1+dfsg-2) unstable; urgency=medium
3051
3052 * l2tp-linux-only.patch: fix FTBFS on kfreebsd
3053@@ -1537,6 +4413,43 @@ qemu (2.0.0+dfsg-7) unstable; urgency=medium
3054
3055 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 24 Jul 2014 16:51:16 +0400
3056
3057+qemu (2.0.0+dfsg-6ubuntu2) utopic; urgency=medium
3058+
3059+ * d/qemu-system-x86.qemu-kvm.upstart: change the early-exit check from
3060+ /usr/bin/kvm to qemu-system-x86_64. (LP: #1348551)
3061+
3062+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 25 Jul 2014 08:35:02 -0500
3063+
3064+qemu (2.0.0+dfsg-6ubuntu1) utopic; urgency=medium
3065+
3066+ * Merge 2.0.0+dfsg-6. Remaining changes:
3067+ - qemu-system-x86.links: add eepro100.rom link, drop links which we
3068+ have in ipxe-qemu package.
3069+ - control-in: stick to libgnutls-dev and libsdl1.2-dev.
3070+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
3071+ qemu-bridge-helper
3072+ - qemu-system-common.postinst: remove acl placed by udev,
3073+ and add udevadm trigger.
3074+ - qemu-system-common.preinst: add kvm group if needed
3075+ - add qemu-kvm upstart job and defaults file (rules,
3076+ qemu-system-x86.qemu-kvm.default, qemu-system-x86.qemu-kvm.upstart)
3077+ - debian/rules: add qemu-kvm-spice
3078+ - rules,qemu-system-x86.modprobe: support use under older udevs which
3079+ do not auto-load the kvm kernel module. Enable nesting by default
3080+ on intel.
3081+ - binfmt-update-in: make sure to filter out compat arches.
3082+ - debian/qemu-system-alternatives.in: use a later version as ubuntu
3083+ removed the alternatives bit later.
3084+ - d/p/ubuntu/expose-vmx_qemu64cpu.patch: enable nested kvm by default
3085+ in qemu64 cpu type.
3086+ - d/p/ubuntu/define-trusty-machine-type.patch: define a default trusty
3087+ machine type to ease future live vm migration.
3088+ - re-introduce apport hook for qemu source package:
3089+ d/source_qemu-kvm.py, d/qemu-system-common.install
3090+ * enable-build-dep on libjpeg8-dev - which is now in main
3091+
3092+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 23 Jun 2014 14:52:54 -0500
3093+
3094 qemu (2.0.0+dfsg-6) unstable; urgency=medium
3095
3096 * build-depend on libgnutls28-dev not libgnutls-dev
3097@@ -1580,6 +4493,59 @@ qemu (2.0.0+dfsg-3) unstable; urgency=low
3098
3099 -- Michael Tokarev <mjt@tls.msk.ru> Mon, 21 Apr 2014 12:34:03 +0400
3100
3101+qemu (2.0.0+dfsg-2ubuntu3) utopic; urgency=medium
3102+
3103+ * remove alternatives for qemu: different architectures
3104+ aren't really alternatives and never had been (LP: #1316829)
3105+
3106+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 07 May 2014 15:12:33 +0000
3107+
3108+qemu (2.0.0+dfsg-2ubuntu2) utopic; urgency=medium
3109+
3110+ * debian/rules: install the proper /etc/init/qemu-kvm.conf (LP: #1315402)
3111+ * debian/control: drop the versioning requirement from libfdt-dev
3112+ build-dependency, as it is longer needed (LP: #1295072)
3113+
3114+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 02 May 2014 11:43:44 -0500
3115+
3116+qemu (2.0.0+dfsg-2ubuntu1) trusty-proposed; urgency=medium
3117+
3118+ * Merge 2.0.0+dfsg-2
3119+ * Incorporates a fix for spice users (LP: #1309452)
3120+ * drop patch kvm_physical_sync_dirty_bitmap-ignore-ENOENT-from-kv.patch, as
3121+ the regression requiring it was reverted for 2.0 upstream.
3122+ * remove qemu-system-common depends on the qemu-system-aarch64 metapackage
3123+ * debian/qemu-debootstrap: add arm64
3124+ * Remaining changes from debian:
3125+ - keep qemu 'alternative' (not something to change in SRU)
3126+ - debian/control and debian/control-in:
3127+ * versioned libfdt-dev check, until libfdt is fixed in precise
3128+ * enable rbd
3129+ * remove ovmf Recommends, as it is in multiverse
3130+ * use libsdl1.2, not libsdl2, since libsdl2-dev is in universe
3131+ * add a qemu-system-aarch64 metapackage for transitions from trusty
3132+ development version. This can be removed after trusty.
3133+ - qemu-system-common.install: add debian/tmp/usr/lib to install the
3134+ qemu-bridge-helper
3135+ - qemu-system-common.postinst: fix /dev/kvm acls
3136+ - qemu-system-common.preinst: add kvm group if needed
3137+ - qemu-system-x86.links: add eepro100.rom link, drop links which we
3138+ have in ipxe-qemu package.
3139+ - qemu-system-x86.modprobe: set module options for older releases
3140+ - qemu-system-x86.qemu-kvm.default: defaults for the upstart job
3141+ - qemu-system-x86.qemu-kvm.upstart: qemu-kvm upstart job
3142+ - qemu-user-static.postinst-in: remove qemu-arm64-static on arm64
3143+ - debian/rules
3144+ * add legacy kvm-spice link
3145+ * fix ppc and arm slections
3146+ * add aarch64 to user_targets
3147+ - debian/patches/ubuntu/define-trusty-machine-type.patch: define a
3148+ pc-i440fx-trusty machine type as the default.
3149+ - debian/patches/ubuntu/expose-vmx_qemu64cpu.patch: support nesting by
3150+ default in qemu64 cpu time.
3151+
3152+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 18 Apr 2014 09:23:27 -0500
3153+
3154 qemu (2.0.0+dfsg-2) unstable; urgency=medium
3155
3156 * resurrect 02_kfreebsd.patch, -- without it qemu FTBFS on current
3157@@ -1639,6 +4605,50 @@ qemu (2.0.0~rc1+dfsg-1exp) experimental; urgency=low
3158
3159 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 05 Apr 2014 16:23:48 +0400
3160
3161+qemu (2.0.0~rc1+dfsg-0ubuntu3) trusty; urgency=medium
3162+
3163+ * d/p/ubuntu/kvm_physical_sync_dirty_bitmap-ignore-ENOENT-from-kv.patch
3164+ don't abort() just because the kernel has no dirty bitmap.
3165+ (LP: #1303926)
3166+
3167+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 08 Apr 2014 22:32:00 -0500
3168+
3169+qemu (2.0.0~rc1+dfsg-0ubuntu2) trusty; urgency=medium
3170+
3171+ * define-trusty-machine-type.patch: update the trusty machine type name to
3172+ pc-i440fx-trusty (LP: #1304107)
3173+
3174+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 08 Apr 2014 11:49:04 -0500
3175+
3176+qemu (2.0.0~rc1+dfsg-0ubuntu1) trusty; urgency=medium
3177+
3178+ * Merge 2.0.0-rc1
3179+ * debian/rules: consolidate ppc filter entries.
3180+ * Move qemu-system-arch64 into qemu-system-arm
3181+ * debian/patches/define-trusty-machine-type.patch: define a trusty machine
3182+ type, currently the same as pc-i440fx-2.0, to put is in a better position
3183+ to enable live migrations from trusty onward. (LP: #1294823)
3184+ * debian/control: build-dep on libfdt >= 1.4.0 (LP: #1295072)
3185+ * Merge latest upstream git to commit dc9528f
3186+ * Debian/rules:
3187+ - remove -enable-uname-release=2.6.32
3188+ - don't make the aarch64 target Ubuntu-specific.
3189+ * Remove patches which are now upstream:
3190+ - fix-smb-security-share.patch
3191+ - slirp-smb-redirect-port-445-too.patch
3192+ - linux-user-Implement-sendmmsg-syscall.patch (better version is upstream)
3193+ - signal-added-a-wrapper-for-sigprocmask-function.patch
3194+ - ubuntu/signal-sigsegv-protection-on-do_sigprocmask.patch
3195+ - ubuntu/Don-t-block-SIGSEGV-at-more-places.patch
3196+ - ubuntu/ppc-force-cpu-threads-count-to-be-power-of-2.patch
3197+ * add link for /usr/share/qemu/bios-256k.bin
3198+ * Remove all linaro patches.
3199+ * Remove all arm64/ patches. Many but not all are upstream.
3200+ * Remove CVE-2013-4377.patch which is upstream.
3201+ * debian/control-in: don't make qemu-system-aarch64 ubuntu-specific
3202+
3203+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 25 Feb 2014 22:31:43 -0600
3204+
3205 qemu (1.7.0+dfsg-9) unstable; urgency=medium
3206
3207 * remove rbd/rados/ceph support *again*, till they'll actually provide
3208@@ -1703,6 +4713,104 @@ qemu (1.7.0+dfsg-4) unstable; urgency=medium
3209
3210 -- Michael Tokarev <mjt@tls.msk.ru> Wed, 12 Mar 2014 18:34:03 +0400
3211
3212+qemu (1.7.0+dfsg-3ubuntu7) trusty; urgency=low
3213+
3214+ * No-change rebuild to build with libxen-4.4.
3215+
3216+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 21 Mar 2014 10:04:36 +0100
3217+
3218+qemu (1.7.0+dfsg-3ubuntu6) trusty; urgency=medium
3219+
3220+ * d/p/ubuntu/ppc-force-cpu-threads-count-to-be-power-of-2.patch: cherrypick
3221+ upstream patch to force cpu count on ppc to be a power of 2. (LP: #1279682)
3222+
3223+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 11 Mar 2014 00:03:00 -0500
3224+
3225+qemu (1.7.0+dfsg-3ubuntu5) trusty; urgency=medium
3226+
3227+ [ dann frazier ]
3228+ * Add patches from the susematz tree to avoid intermittent segfaults:
3229+ - ubuntu/signal-added-a-wrapper-for-sigprocmask-function.patch
3230+ - ubuntu/signal-sigsegv-protection-on-do_sigprocmask.patch
3231+ - ubuntu/Don-t-block-SIGSEGV-at-more-places.patch
3232+
3233+ [ Serge Hallyn ]
3234+ * Modify do_sigprocmask to only change behavior for aarch64.
3235+ (LP: #1285363)
3236+
3237+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 06 Mar 2014 16:15:50 -0600
3238+
3239+qemu (1.7.0+dfsg-3ubuntu4) trusty; urgency=medium
3240+
3241+ [ Steve Langasek ]
3242+ * Merge debian/control with unreleased Debian branch: our architecture
3243+ lists should now be in sync.
3244+
3245+ [ Dann Frazier ]
3246+ * ubuntu/linux-user-Implement-sendmmsg-syscall.patch: Fix user mode DNS
3247+ on arm64 and maybe others. (LP: #1284344)
3248+
3249+ [ Serge Hallyn ]
3250+ * Move the OVMF.fd link to the ovmf package.
3251+
3252+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 21 Feb 2014 12:14:53 -0800
3253+
3254+qemu (1.7.0+dfsg-3ubuntu3) trusty; urgency=medium
3255+
3256+ * Add ppc64el to the architecture list (supposedly added in the previous
3257+ upload, but really wasn't).
3258+
3259+ -- Steve Langasek <steve.langasek@ubuntu.com> Thu, 20 Feb 2014 23:40:07 -0800
3260+
3261+qemu (1.7.0+dfsg-3ubuntu2) trusty; urgency=medium
3262+
3263+ * Backport changes to enable qemu-user-static support for aarch64
3264+ * debian/control: add ppc64el to Architectures
3265+ * debian/rules: only install qemu-system-aarch64 on arm64.
3266+ Fixes a FTBFS when built twice in a row on non-arm64 due to a stale
3267+ debian/qemu-system-aarch64 directory
3268+
3269+ -- dann frazier <dann.frazier@canonical.com> Tue, 11 Feb 2014 15:41:53 -0700
3270+
3271+qemu (1.7.0+dfsg-3ubuntu1) trusty; urgency=medium
3272+
3273+ * Fix broken filter_binfmts
3274+ * Remove use of dpkg-version in postinsts, as we're not Depending on
3275+ dpkg-dev.
3276+
3277+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 05 Feb 2014 21:57:38 -0600
3278+
3279+qemu (1.7.0+dfsg-3ubuntu1~ppa1) trusty; urgency=medium
3280+
3281+ * Merge 1.7.0+dfsg-3 from debian. Remaining changes:
3282+ - debian/patches/ubuntu:
3283+ * expose-vmx_qemu64cpu.patch
3284+ * linaro (omap3) and arm64 patches
3285+ * ubuntu/target-ppc-add-stubs-for-kvm-breakpoints: fix FTBFS
3286+ on ppc
3287+ * ubuntu/CVE-2013-4377.patch: fix denial of service via virtio
3288+ - debian/qemu-system-x86.modprobe: set kvm_intel nested=1 options
3289+ - debian/control:
3290+ * add arm64 to Architectures
3291+ * add qemu-common and qemu-system-aarch64 packages
3292+ - debian/qemu-system-common.install: add debian/tmp/usr/lib
3293+ - debian/qemu-system-common.preinst: add kvm group
3294+ - debian/qemu-system-common.postinst: remove acl placed by udev,
3295+ and add udevadm trigger.
3296+ - qemu-system-x86.links: add eepro100.rom, remove pxe-virtio,
3297+ pxe-e1000 and pxe-rtl8139.
3298+ - add qemu-system-x86.qemu-kvm.upstart and .default
3299+ - qemu-user-static.postinst-in: remove arm64 binfmt
3300+ - debian/rules:
3301+ * allow parallel build
3302+ * add aarch64 to system_targets and sys_systems
3303+ * add qemu-kvm-spice links
3304+ * install qemu-system-x86.modprobe
3305+ - add debian/qemu-system-common.links for OVMF.fd link
3306+ * Remove kvm-img, kvm-nbd, kvm-ifup and kvm-ifdown symlinks.
3307+
3308+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 04 Feb 2014 12:13:08 -0600
3309+
3310 qemu (1.7.0+dfsg-3) unstable; urgency=low
3311
3312 * qemu-kvm: fix versions for Breaks/Replaces/Depends on qemu-system-x86
3313@@ -1728,6 +4836,121 @@ qemu (1.7.0+dfsg-3) unstable; urgency=low
3314
3315 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 16 Jan 2014 15:17:46 +0400
3316
3317+qemu (1.7.0+dfsg-2ubuntu9) trusty; urgency=medium
3318+
3319+ * debian/qemu-user-static.postinst-in: remove arm64 qemu-user binfmt, which
3320+ may have been installed up to 1.6.0+dfsg-2ubuntu4 (LP: #1273654)
3321+
3322+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 28 Jan 2014 14:41:20 +0000
3323+
3324+qemu (1.7.0+dfsg-2ubuntu8) trusty; urgency=medium
3325+
3326+ * SECURITY UPDATE: denial of service via virtio device hot-plugging
3327+ - debian/patches/CVE-2013-4377.patch: upstream commits to refactor
3328+ virtio device unplugging.
3329+ - CVE-2013-4377
3330+
3331+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 27 Jan 2014 09:10:37 -0500
3332+
3333+qemu (1.7.0+dfsg-2ubuntu7) trusty; urgency=medium
3334+
3335+ * d/p/target-ppc-add-stubs-for-kvm-breakpoints: fix FTBFS on
3336+ powerpc.
3337+
3338+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 22 Jan 2014 11:59:26 -0600
3339+
3340+qemu (1.7.0+dfsg-2ubuntu6) trusty; urgency=medium
3341+
3342+ [ Serge Hallyn ]
3343+ * add arm64 patchset from upstream. The three arm virt patches previously
3344+ pushed are in that set, so drop them.
3345+
3346+ [ dann frazier ]
3347+ * Add packaging for qemu-system-aarch64. This package is currently only
3348+ available for arm64, as full software emulation is not yet supported.
3349+
3350+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 10 Jan 2014 12:19:08 -0600
3351+
3352+qemu (1.7.0+dfsg-2ubuntu5) trusty; urgency=medium
3353+
3354+ * Drop d/p/fix-pci-add: upstream does not intend for pci_add to be
3355+ supported any longer.
3356+ * Add patchset from git://git.linaro.org/qemu/qemu-linaro.git#rebasing
3357+ * Refresh debian/patches/hw_arm_add_virt_platform.patch against context
3358+ churn caused by linaro patchset.
3359+ * debian/rules: enable parallel builds.
3360+
3361+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 03 Jan 2014 10:53:17 -0600
3362+
3363+qemu (1.7.0+dfsg-2ubuntu4) trusty; urgency=medium
3364+
3365+ * d/control: enable usbredir (LP: 1126390)
3366+
3367+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 02 Jan 2014 08:55:43 -0600
3368+
3369+qemu (1.7.0+dfsg-2ubuntu3) trusty; urgency=medium
3370+
3371+ * add missing arm virt patches from the mach-virt-v7 branch of
3372+ git://git.linaro.org/people/cdall/qemu-arm.git
3373+
3374+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 18 Dec 2013 12:25:59 -0600
3375+
3376+qemu (1.7.0+dfsg-2ubuntu2) trusty; urgency=medium
3377+
3378+ * debian/control: add arm64 to list of architectures.
3379+
3380+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 12 Dec 2013 10:22:47 -0600
3381+
3382+qemu (1.7.0+dfsg-2ubuntu1) trusty; urgency=low
3383+
3384+ * Merge 1.7.0+dfsg-2 from debian experimental. Remaining changes:
3385+ - debian/control
3386+ * update maintainer
3387+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3388+ from build-deps
3389+ * enable rbd
3390+ * add qemu-system and qemu-common B/R to qemu-keymaps
3391+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3392+ qemu-system-common
3393+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3394+ - add qemu-common, qemu-kvm, kvm to B/R
3395+ - remove openbios-sparc from qemu-system-sparc D
3396+ - drop openbios-ppc and openhackware Depends to Suggests (for now)
3397+ * qemu-system-x86:
3398+ - add qemu-common to Breaks/Replaces.
3399+ - add cpu-checker to Recommends.
3400+ * qemu-user: add B/R:qemu-kvm
3401+ * qemu-kvm:
3402+ - add armhf armel powerpc sparc to Architecture
3403+ - C/R/P: qemu-kvm-spice
3404+ * add qemu-common package
3405+ * drop qemu-slof which is not packaged in ubuntu
3406+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3407+ - qemu-system-x86.links:
3408+ * remove pxe rom links which are in kvm-ipxe
3409+ - debian/rules
3410+ * add kvm-spice symlink to qemu-kvm
3411+ * call dh_installmodules for qemu-system-x86
3412+ * update dh_installinit to install upstart script
3413+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3414+ - Add qemu-utils.links for kvm-* symlinks.
3415+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3416+ - Add qemu-system-x86.modprobe to set nesting=1
3417+ - Add qemu-system-common.preinst to add kvm group
3418+ - qemu-system-common.postinst: remove bad group acl if there, then have
3419+ udev relabel /dev/kvm.
3420+ - New linaro patches from qemu-linaro rebasing branch
3421+ - Dropped patches:
3422+ * linaro patchset
3423+ * mach-virt patchset
3424+ - Kept patches:
3425+ * expose_vms_qemu64cpu.patch
3426+ * fix-pci-add
3427+ * qemu-system-common.install: add debian/tmp/usr/lib to install the
3428+ qemu-bridge-helper
3429+
3430+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Sat, 07 Dec 2013 06:08:11 +0000
3431+
3432 qemu (1.7.0+dfsg-2) unstable; urgency=low
3433
3434 * switch from vgabios to seavgabios
3435@@ -1757,6 +4980,73 @@ qemu (1.7.0+dfsg-1) unstable; urgency=low
3436
3437 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 28 Nov 2013 03:14:21 +0400
3438
3439+qemu (1.6.0+dfsg-2ubuntu2) trusty; urgency=low
3440+
3441+ * debian/control: qemu-utils must Replace: qemu-kvm as it did in raring,
3442+ to prevent lts-to-lts updates from breaking. (LP: #1243403)
3443+
3444+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 23 Oct 2013 14:31:05 -0500
3445+
3446+qemu (1.6.0+dfsg-2ubuntu1) trusty; urgency=low
3447+
3448+ * Merge 1.6.0~rc0+dfsg-2exp from debian experimental. Remaining changes:
3449+ - debian/control
3450+ * update maintainer
3451+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3452+ from build-deps
3453+ * enable rbd
3454+ * add qemu-system and qemu-common B/R to qemu-keymaps
3455+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3456+ qemu-system-common
3457+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3458+ - add qemu-kvm to Provides
3459+ - add qemu-common, qemu-kvm, kvm to B/R
3460+ - remove openbios-sparc from qemu-system-sparc D
3461+ - drop openbios-ppc and openhackware Depends to Suggests (for now)
3462+ * qemu-system-x86:
3463+ - add qemu-common to Breaks/Replaces.
3464+ - add cpu-checker to Recommends.
3465+ * qemu-user: add B/R:qemu-kvm
3466+ * qemu-kvm:
3467+ - add armhf armel powerpc sparc to Architecture
3468+ - C/R/P: qemu-kvm-spice
3469+ * add qemu-common package
3470+ * drop qemu-slof which is not packaged in ubuntu
3471+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3472+ - qemu-system-x86.links:
3473+ * remove pxe rom links which are in kvm-ipxe
3474+ * add symlink for kvm.1 manpage
3475+ - debian/rules
3476+ * add kvm-spice symlink to qemu-kvm
3477+ * call dh_installmodules for qemu-system-x86
3478+ * update dh_installinit to install upstart script
3479+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3480+ - Add qemu-utils.links for kvm-* symlinks.
3481+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3482+ - Add qemu-system-x86.modprobe to set nesting=1
3483+ - Add qemu-system-common.preinst to add kvm group
3484+ - qemu-system-common.postinst: remove bad group acl if there, then have
3485+ udev relabel /dev/kvm.
3486+ - New linaro patches from qemu-linaro rebasing branch
3487+ - Dropped patches:
3488+ * xen-simplify-xen_enabled.patch
3489+ * sparc-linux-user-fix-missing-symbols-in-.rel-.rela.plt-sections.patch
3490+ * main_loop-do-not-set-nonblocking-if-xen_enabled.patch
3491+ * xen_machine_pv-do-not-create-a-dummy-CPU-in-machine-.patch
3492+ * virtio-rng-fix-crash
3493+ - Kept patches:
3494+ * expose_vms_qemu64cpu.patch - updated
3495+ * linaro arm patches from qemu-linaro rebasing branch
3496+ - New patches:
3497+ * fix-pci-add: change CONFIG variable in ifdef to make sure that
3498+ pci_add is defined.
3499+ * Add linaro patches
3500+ * Add experimental mach-virt patches for arm virtualization.
3501+ * qemu-system-common.install: add debian/tmp/usr/lib to install the
3502+ qemu-bridge-helper
3503+
3504+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 22 Oct 2013 22:47:07 -0500
3505+
3506 qemu (1.6.0+dfsg-2) unstable; urgency=low
3507
3508 * Build-depend in seccomp again once it is in -testing
3509@@ -1827,6 +5117,89 @@ qemu (1.5.0+dfsg-4) unstable; urgency=medium
3510
3511 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 06 Jun 2013 01:50:32 +0400
3512
3513+qemu (1.5.0+dfsg-3ubuntu6) trusty; urgency=low
3514+
3515+ * No change rebuild for new seccomp.
3516+
3517+ -- Stéphane Graber <stgraber@ubuntu.com> Mon, 21 Oct 2013 18:34:50 -0400
3518+
3519+qemu (1.5.0+dfsg-3ubuntu5) saucy; urgency=low
3520+
3521+ * Cherrypick upstream patch to fix crash with rng device (LP: #1235017)
3522+ - virtio-rng-fix-crash
3523+
3524+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 09 Oct 2013 17:46:49 -0500
3525+
3526+qemu (1.5.0+dfsg-3ubuntu4) saucy; urgency=low
3527+
3528+ * Re-introduce snippet in upstart job to load kvm modules if needed.
3529+ (LP: #1218459)
3530+
3531+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 16 Sep 2013 22:43:52 +0000
3532+
3533+qemu (1.5.0+dfsg-3ubuntu3) saucy; urgency=low
3534+
3535+ * Cherry-picking three Xen related patches targetted for qemu-stable:
3536+ * xen-simplify-xen_enabled.patch
3537+ * main_loop-do-not-set-nonblocking-if-xen_enabled.patch
3538+ * xen_machine_pv-do-not-create-a-dummy-CPU-in-machine-.patch
3539+
3540+ -- Stefan Bader <stefan.bader@canonical.com> Fri, 26 Jul 2013 15:01:44 +0200
3541+
3542+qemu (1.5.0+dfsg-3ubuntu2) saucy; urgency=low
3543+
3544+ * Drop openbios-ppc and openhackware Depends to Suggests for now.
3545+
3546+ -- Adam Conrad <adconrad@ubuntu.com> Wed, 05 Jun 2013 03:23:56 -0600
3547+
3548+qemu (1.5.0+dfsg-3ubuntu1) saucy; urgency=low
3549+
3550+ * Merge 1.5.0+dfs-3 from debian unstable. Remaining changes:
3551+ - debian/control
3552+ * update maintainer
3553+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3554+ from build-deps
3555+ * enable rbd
3556+ * add qemu-system and qemu-common B/R to qemu-keymaps
3557+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3558+ qemu-system-common
3559+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3560+ - add qemu-kvm to Provides
3561+ - add qemu-common, qemu-kvm, kvm to B/R
3562+ - remove openbios-sparc from qemu-system-sparc D
3563+ * qemu-system-x86:
3564+ - add qemu-common to Breaks/Replaces.
3565+ - add cpu-checker to Recommends.
3566+ * qemu-user: add B/R:qemu-kvm
3567+ * qemu-kvm:
3568+ - add armhf armel powerpc sparc to Architecture
3569+ - C/R/P: qemu-kvm-spice
3570+ * add qemu-common package
3571+ * drop qemu-slof which is not packaged in ubuntu
3572+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3573+ - qemu-system-x86.links:
3574+ * remove pxe rom links which are in kvm-ipxe
3575+ * add symlink for kvm.1 manpage
3576+ - debian/rules
3577+ * add kvm-spice symlink to qemu-kvm
3578+ * call dh_installmodules for qemu-system-x86
3579+ * update dh_installinit to install upstart script
3580+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3581+ - Add qemu-utils.links for kvm-* symlinks.
3582+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3583+ - Add qemu-system-x86.modprobe to set nesting=1
3584+ - Add qemu-system-common.preinst to add kvm group
3585+ - qemu-system-common.postinst: remove bad group acl if there, then have
3586+ udev relabel /dev/kvm.
3587+ - Dropped patches:
3588+ * 0001-fix-wrong-output-with-info-chardev-for-tcp-socket.patch
3589+ - Kept patches:
3590+ * expose_vms_qemu64cpu.patch - updated
3591+ * gridcentric patch - updated
3592+ * linaro arm patches from qemu-linaro rebasing branch
3593+
3594+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 04 Jun 2013 22:56:43 +0200
3595+
3596 qemu (1.5.0+dfsg-3) unstable; urgency=low
3597
3598 * fix sections: misc => otherosfs
3599@@ -1846,6 +5219,54 @@ qemu (1.5.0+dfsg-3) unstable; urgency=low
3600
3601 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 02 Jun 2013 01:49:47 +0400
3602
3603+qemu (1.5.0+dfsg-2ubuntu1) saucy; urgency=low
3604+
3605+ * Merge 1.5.0+dfs-2 from debian unstable. Remaining changes:
3606+ - debian/control
3607+ * update maintainer
3608+ * remove libiscsi, usb-redir, vde, vnc-jpeg, and libssh2-1-dev
3609+ from build-deps
3610+ * enable rbd
3611+ * add qemu-system and qemu-common B/R to qemu-keymaps
3612+ * add D:udev, R:qemu, R:qemu-common and B:qemu-common to
3613+ qemu-system-common
3614+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3615+ - add qemu-kvm to Provides
3616+ - add qemu-common, qemu-kvm, kvm to B/R
3617+ - remove openbios-sparc from qemu-system-sparc D
3618+ * qemu-system-x86:
3619+ - add qemu-common to Breaks/Replaces.
3620+ - add cpu-checker to Recommends.
3621+ * qemu-user: add B/R:qemu-kvm
3622+ * qemu-kvm:
3623+ - add armhf armel powerpc sparc to Architecture
3624+ - C/R/P: qemu-kvm-spice
3625+ * add qemu-common package
3626+ * drop qemu-slof which is not packaged in ubuntu
3627+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3628+ - qemu-system-x86.links:
3629+ * remove pxe rom links which are in kvm-ipxe
3630+ * add symlink for kvm.1 manpage
3631+ - debian/rules
3632+ * add kvm-spice symlink to qemu-kvm
3633+ * call dh_installmodules for qemu-system-x86
3634+ * update dh_installinit to install upstart script
3635+ * run dh_installman (Closes: #709241) (cherrypicked from 1.5.0+dfsg-2)
3636+ - Add qemu-utils.links for kvm-* symlinks.
3637+ - Add qemu-system-x86.qemu-kvm.upstart and .default
3638+ - Add qemu-system-x86.modprobe to set nesting=1
3639+ - Add qemu-system-common.preinst to add kvm group
3640+ - qemu-system-common.postinst: remove bad group acl if there, then have
3641+ udev relabel /dev/kvm.
3642+ - Dropped patches:
3643+ * 0001-fix-wrong-output-with-info-chardev-for-tcp-socket.patch
3644+ - Kept patches:
3645+ * expose_vms_qemu64cpu.patch - updated
3646+ * gridcentric patch - updated
3647+ * linaro arm patches from qemu-linaro rebasing branch
3648+
3649+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 28 May 2013 08:18:30 -0500
3650+
3651 qemu (1.5.0+dfsg-2) unstable; urgency=low
3652
3653 * merged development history of wheezy and experimental branches.
3654@@ -1913,6 +5334,76 @@ qemu (1.4.0+dfsg-2exp) experimental; urgency=low
3655
3656 -- Michael Tokarev <mjt@tls.msk.ru> Thu, 18 Apr 2013 14:45:30 +0400
3657
3658+qemu (1.4.0+dfsg-1expubuntu4) raring; urgency=low
3659+
3660+ * re-add qemu-system-x86.modprobe to set nesting=1 (LP: #1155177)
3661+ * qemu-system-x86.qemu-kvm.upstart:
3662+ - remove NESTED workarounds from upstart file.
3663+ - remove loading of modules which is now always done
3664+ - remove TAPR define which is no longer used
3665+ * move customizable defines back to qemu-kvm.default
3666+ * copy creation of group kvm to preinst - the group must exist when the
3667+ kvm udev rule is installed (LP: #1103022) (LP: #1092715)
3668+ * add adduser to qemu-system-common Pre-Depends for use by preinst.
3669+
3670+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 14 Mar 2013 14:21:53 -0500
3671+
3672+qemu (1.4.0+dfsg-1expubuntu3) raring; urgency=low
3673+
3674+ * debian/rules: add a symlink from kvm-spice to kvm in qemu-kvm, on
3675+ i386/amd64 targets. (LP: #1126258)
3676+
3677+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 28 Feb 2013 15:17:16 -0600
3678+
3679+qemu (1.4.0+dfsg-1expubuntu2) raring; urgency=low
3680+
3681+ * substitute (apparently identical) patches from 1.4.0 qemu-linaro rebasing
3682+ tree.
3683+ * add qemu-common to qemu-system-common B/R (was accidentally dropped from
3684+ 1.3.0 in 1.4.0 merge).
3685+ * debian/control: fix kvm P/C/B/R:
3686+ - make all C/B/R against kvm versioned
3687+ - don't have any qemu-system-* other than x86 Provides: kvm
3688+
3689+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 22 Feb 2013 13:34:07 -0600
3690+
3691+qemu (1.4.0+dfsg-1expubuntu1) raring; urgency=low
3692+
3693+ * Merge 1.4.0+dfsg-1exp from debian. Remaining changes:
3694+ - debian/control:
3695+ * update maintainer
3696+ * remove libiscsi, usb-redir, vde, and vnc-jpeg from build-deps
3697+ * enable rbd
3698+ * add qemu-system and qemu-common B/R to qemu-keymaps
3699+ * add D:udev and R:qemu to qemu-system-common
3700+ * qemu-system-arm, qemu-system-ppc, qemu-system-sparc:
3701+ - add qemu-kvm and kvm to Provides
3702+ - add qemu-common and qemu-kvm to Breaks/Replaces qemu-system-ppc,
3703+ qemu-system-sparc:
3704+ - remove openbios-$arch from Depends
3705+ * qemu-system-x86:
3706+ - add qemu-common to Breaks/Replaces.
3707+ - add cpu-checker to Recommends.
3708+ * qemu-user:
3709+ - add B/R qemu-kvm
3710+ * qemu-utils:
3711+ - add B/R qemu-user and qemu-kvm
3712+ * qemu-kvm: add armhf armel powerpc sparc to Architecture
3713+ * add qemu-common package
3714+ - add qemu-system-common.links for tap ifup/down scripts and OVMF link.
3715+ - qemu-system-x86.links:
3716+ * remove pxe rom links which are in kvm-ipxe
3717+ * add symlink for kvm.1 manpage
3718+ - Add qemu-utils.links for kvm-* symlinks.
3719+ - Add qemu-kvm.conf upstart job to qemu-system
3720+ - Clear /dev/kvm acls on install
3721+ - Add linaro arm patches.
3722+ - Add gridcentric patches.
3723+ - Re-add expose_vms_qemu64cpu.patch (from Daviey)
3724+ * Add 0001-fix-wrong-output-with-info-chardev-for-tcp-socket.patch
3725+
3726+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 20 Feb 2013 11:58:27 -0600
3727+
3728 qemu (1.4.0+dfsg-1exp) experimental; urgency=low
3729
3730 [ Michael Tokarev ]
3731@@ -1968,6 +5459,116 @@ qemu (1.4.0~rc0+dfsg-1exp) experimental; urgency=low
3732
3733 -- Michael Tokarev <mjt@tls.msk.ru> Sat, 02 Feb 2013 21:05:28 +0400
3734
3735+qemu (1.3.0+dfsg-5expubuntu5) raring; urgency=low
3736+
3737+ * qemu-system-common.postinst: only run setfacl when /dev/kvm exists.
3738+ (LP: #1130591)
3739+
3740+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Wed, 20 Feb 2013 08:58:53 -0600
3741+
3742+qemu (1.3.0+dfsg-5expubuntu4) raring; urgency=low
3743+
3744+ * Update workarounds for udev/inotify: (LP: #1092715)
3745+ - qemu-system-common.udev: go back to original, simple rule
3746+ - qemu-system-common.postinst: manually run setfacl
3747+ - (keep Depends: on acl as well)
3748+ - this can be removed once bug 1092715 is fixed.
3749+
3750+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 19 Feb 2013 12:41:22 -0600
3751+
3752+qemu (1.3.0+dfsg-5expubuntu3) raring; urgency=low
3753+
3754+ * Now that qemu provides spice support, and qemu-kvm-spice is removed from
3755+ the archive, have qemu-kvm (which qemu-kvm-spice always depended on)
3756+ P/C/R qemu-kvm-spice.
3757+
3758+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 14 Feb 2013 13:43:27 -0600
3759+
3760+qemu (1.3.0+dfsg-5expubuntu2) raring; urgency=low
3761+
3762+ * Enable spice.
3763+ * Address lintian warning by adding ${misc:Depends} to qemu-common and
3764+ qemu-kvm.
3765+
3766+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 12 Feb 2013 16:07:04 -0600
3767+
3768+qemu (1.3.0+dfsg-5expubuntu1) raring; urgency=low
3769+
3770+ [ Serge Hallyn ]
3771+ * Merge 1.3.0+dfsg-5exp from Debian.
3772+ * remaining changes from 1.3.0+dfsg-1~exp3ubuntu1:
3773+ - debian/control:
3774+ * update maintainer
3775+ * remove vde2 recommends
3776+ * build-deps: remove libusbredir, libvdeplug2-dev,
3777+ libspice-server-dev, libspice-protocol-dev, libiscsi-dev
3778+ * qemu-system:
3779+ - break/replace qemu-common
3780+ - depend on udev
3781+ - remove openbios-ppc, openbios-sparc, and openhackware from
3782+ Depends. (Intend to add them back once we can build them.)
3783+ * qemu-utils: break/replace qemu-kvm
3784+ - qemu-kvm.upstart:
3785+ - add qemu-system.qemu-kvm.upstart
3786+ - debian/rules: add dh_installinit to get qemu-system.upstart installed.
3787+ - take the defaults from the old qemu-kvm.defaults, and move them into
3788+ the upstart job
3789+ - debian/patches:
3790+ - apply gridcentric patches from lp:~amscanne/+junk/gridcentric-qemu-patches
3791+ - apply arm patches from git://git.linaro.org/qemu/qemu-linaro.git
3792+ - add links for qemu-ifup/down in qemu-system-common.links
3793+ - debian/qemu-system-common.postinst
3794+ - udevadm trigger to fix up /dev/kvm perms
3795+ - debian/qemu-system.links:
3796+ - remove pxe-virtio, pxe-e1000 and pxe-rtl8139 links (which conflict
3797+ with ones from kvm-ipxe). We may want to move the links from kvm-ipxe
3798+ back to qemu-system at some point.
3799+ * remaining changes from after 1.3.0+dfsg-1~exp3ubuntu1:
3800+ - qemu-system-common.links: add link for OVMF
3801+ - Add qemu-utils.links for kvm-img and kvm-nbd utils and manpages.
3802+ - qemu-system.links:
3803+ * Add link to usr/share/ovmf/OVMF.fd
3804+ * Fix target of /etc/kvm/kvm-if{up,down} links
3805+ - debian/control: qemu-system should Recommend cpu-checker
3806+ - Add qemu-kvm breaks/replaces to qemu-user, to handle conflict over
3807+ (i.e.) qemu-x86_64.
3808+ - add qemu-kvm, and qemu-common transitional packages.
3809+ - Add breaks/replaces to qemu-keymaps for qemu-system.
3810+ - Add provides: qemu-kvm and kvm to qemu-system-ppc.
3811+ - Add breaks/replaces to qemu-system-ppc for qemu-kvm and qemu-common.
3812+ - Add breaks/replaces to qemu-kvm for qemu-common.
3813+ - Add breaks/replaces to qemu-utils for qemu-user and qemu-kvm.
3814+ - Add armhf, armel, powerpc and sparc arches to qemu-kvm transitional
3815+ package.
3816+ - Add qemu-common package.
3817+ - Make sure /dev/kvm gets its acls cleared:
3818+ * Add acl to qemu-system.depends
3819+ * update qemu-system.udev to run setfacl to set g::rw acl
3820+ - Remove vnc-jpeg, libiscsi-dev, and vde from debian/configure-opts
3821+ * dropped debian/patches/CVE-2012-6075.patch (duplicate of
3822+ e1000-discard-oversize-packets-based-on-SBP_LPE.patch)
3823+ * debian/{control,configure-opts}: enable rbd (LP: #1118406)
3824+ * add symlink for kvm.1 -> qemu.1 manpage (LP: #1117636)
3825+ * add replaces to qemu-system-common for qemu - we briefly moved conflicting
3826+ docs to qemu, which debian moved to qemu-system-common. This can be
3827+ dropped after raring.
3828+ * move qemu-kvm.upstart from qemu-system to qemu-system-x86.
3829+ * Support upgrade from qemu-kvm on non-x86 arches:
3830+ - Add Provides: qemu-kvm, kvm to qemu-system-{arm,ppc,sparc,x86}
3831+ - Add Breaks/Replaces for qemu-{common,system,kvm} and kvm.
3832+ * Re-add expose_vms_qemu64cpu.patch (from Daviey) from quantal.
3833+
3834+ [ Steve Langasek ]
3835+ * Pass --enable-uname-release=2.6.32 for the user emulation builds, so that
3836+ we have a sensible baseline kernel value regardless of what the
3837+ underlying host kernel is. This makes eglibc happier when running under
3838+ emulation on a very old kernel for instance (whose host syscall ABI has
3839+ nothing to do with what emulated syscalls are supported), and probably
3840+ also lets us steer clear for the moment of code that has problem with
3841+ the new kernel upstream versioning convention. LP: #921078.
3842+
3843+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Thu, 07 Feb 2013 14:15:26 -0600
3844+
3845 qemu (1.3.0+dfsg-5exp) experimental; urgency=low
3846
3847 * qemu-system-split: split qemu-system into several target-specific packages:
3848@@ -2047,6 +5648,106 @@ qemu (1.3.0+dfsg-2exp) experimental; urgency=low
3849
3850 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 20 Jan 2013 22:12:11 +0400
3851
3852+qemu (1.3.0+dfsg-1~exp3ubuntu8) raring; urgency=low
3853+
3854+ * qemu-system.links:
3855+ - Add link to usr/share/ovmf/OVMF.fd (LP: #1074207)
3856+ - Fix target of /etc/kvm/kvm-if{up,down} links
3857+
3858+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Tue, 29 Jan 2013 10:52:22 -0600
3859+
3860+qemu (1.3.0+dfsg-1~exp3ubuntu7) raring; urgency=low
3861+
3862+ * debian/control: qemu-system should Recommend cpu-checker (LP: #1103982)
3863+
3864+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 28 Jan 2013 11:52:10 -0600
3865+
3866+qemu (1.3.0+dfsg-1~exp3ubuntu6) raring; urgency=low
3867+
3868+ * configure-opts: add audio-cards list (LP: #1102487)
3869+ * configure-opts: change order of audio-drv-list for ubuntu, putting pa
3870+ first.
3871+
3872+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 21 Jan 2013 12:02:09 -0600
3873+
3874+qemu (1.3.0+dfsg-1~exp3ubuntu5) raring; urgency=low
3875+
3876+ * Add qemu-kvm breaks/replaces to qemu-user, to handle conflict over
3877+ (i.e.) qemu-x86_64. (LP: #1102332)
3878+
3879+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 21 Jan 2013 08:58:07 -0600
3880+
3881+qemu (1.3.0+dfsg-1~exp3ubuntu4) raring; urgency=low
3882+
3883+ * Move three docs from qemu-system.install to qemu.docs (LP: #1101798)
3884+
3885+ -- Adam Conrad <adconrad@ubuntu.com> Sat, 19 Jan 2013 20:12:48 -0700
3886+
3887+qemu (1.3.0+dfsg-1~exp3ubuntu3) raring; urgency=low
3888+
3889+ * debian/patches/CVE-2012-6075.patch: Fix guest denial of service and
3890+ possible code execution in hw/e1000.c by dropping oversize packets.
3891+
3892+ -- Adam Conrad <adconrad@ubuntu.com> Sat, 19 Jan 2013 07:31:50 -0700
3893+
3894+qemu (1.3.0+dfsg-1~exp3ubuntu2) raring; urgency=low
3895+
3896+ * debian/rules: empty MAKEFLAGS when building spapr-rtas.bin on powerpc, to
3897+ fix FTBFS due to parallel compile.
3898+
3899+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 18 Jan 2013 15:51:09 -0600
3900+
3901+qemu (1.3.0+dfsg-1~exp3ubuntu1) raring; urgency=low
3902+
3903+ * Merge 1.3.0+dfsg-1~exp3. Remaining ubuntu delta:
3904+ - debian/control:
3905+ * update maintainer
3906+ * remove vde2 recommends
3907+ * build-deps: remove libusbredir, libvdeplug2-dev,
3908+ libspice-server-dev, libspice-protocol-dev, libiscsi-dev,
3909+ and libxen-dev.
3910+ * qemu-keymaps: break/replace qemu-common
3911+ * qemu-system:
3912+ - break/replace qemu-common
3913+ - depend on udev
3914+ - remove openbios-ppc, openbios-sparc, and openhackware from
3915+ Depends. (Intend to add them back once we can build them.)
3916+ - provides: qemu-kvm
3917+ * qemu-utils: break/replace qemu-kvm
3918+ * set up transitional packages for qemu-kvm, qemu-common, and kvm.
3919+ - qemu-kvm.upstart:
3920+ - add qemu-system.qemu-kvm.upstart
3921+ - debian/rules: add dh_installinit to get qemu-system.upstart installed.
3922+ - take the defaults from the old qemu-kvm.defaults, and move them into
3923+ the upstart job
3924+ - debian/patches:
3925+ - apply gridcentric patches from lp:~amscanne/+junk/gridcentric-qemu-patches
3926+ - apply arm patches from git://git.linaro.org/qemu/qemu-linaro.git
3927+ - ifup/down:
3928+ - copy Debian qemu-kvm's kvm-ifup/down into debian/
3929+ - fix dh_install for kvm-ifup/down in debian/rules
3930+ - add links for qemu-ifup/down in qemu-system.links
3931+ - remove (debian's original) qemu-ifup from qemu-system.install
3932+ - debian/qemu-system.postinst
3933+ - udevadm trigger to fix up /dev/kvm perms
3934+ - make the 'qemu' symlink point to qemu-system-x86_64, not -i386.
3935+ - debian/qemu-system.links:
3936+ - point 'kvm' to qemu-system-x86_64
3937+ - remove pxe-virtio, pxe-e1000 and pxe-rtl8139 links (which conflict
3938+ with ones from kvm-ipxe). We may want to move the links from kvm-ipxe
3939+ back to qemu-system at some point.
3940+ * Add note about kvm to qemu-system.README.debian.
3941+ * Copy kvm-ifup and kvm-ifdown from debian's qemu-kvm
3942+ * Remove TAPBR from qemu-kvm.conf.
3943+ * Make sure /dev/kvm gets its acls cleared:
3944+ - Add acl to qemu-system.depends
3945+ - update qemu-system.udev to run setfacl to set g::rw acl
3946+ * qemu-system.qemu-kvm.conf: don't rmmod at stop
3947+ * Remove vnc-jpeg, libiscsi-dev, and vde from debian/configure-opts
3948+ * Remove hugepages sysctl file - qemu now supports transparent hugepages.
3949+
3950+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 14 Jan 2013 23:22:51 -0600
3951+
3952 qemu (1.3.0+dfsg-1~exp3) experimental; urgency=low
3953
3954 * enable vde on kFreebsd too (no idea why it was disabled)
3955@@ -2131,6 +5832,107 @@ qemu (1.3.0+dfsg-1~exp1) experimental; urgency=low
3956
3957 -- Michael Tokarev <mjt@tls.msk.ru> Sun, 30 Dec 2012 01:52:21 +0400
3958
3959+qemu (1.2.0.dfsg-1~exp1-0ubuntu2) raring; urgency=low
3960+
3961+ * Remove kvm package
3962+ - make qemu-system P/C/B: kvm.
3963+
3964+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Mon, 14 Jan 2013 12:03:19 -0600
3965+
3966+qemu (1.2.0.dfsg-1~exp1-0ubuntu1) raring; urgency=low
3967+
3968+ [ Serge Hallyn ]
3969+ * debian/control:
3970+ - update maintainer
3971+ - remove vde2 recommends
3972+ - build-deps: remove libusbredir, libvdeplug2-dev,
3973+ libspice-server-dev, libspice-protocol-dev, libiscsi-dev,
3974+ and libxen-dev.
3975+ - qemu-keymaps: break/replace qemu-common
3976+ - qemu-system:
3977+ - break/replace qemu-common
3978+ - depend on udev
3979+ - remove openbios-ppc, openbios-sparc, and openhackware from
3980+ Depends. (Intend to add them back once we can build them.)
3981+ - provides: qemu-kvm
3982+ - qemu-utils: break/replace qemu-kvm
3983+ - set up transitional packages for qemu-kvm, qemu-common, and kvm.
3984+ * debian/rules:
3985+ - install kvm-ifup and kvm-ifdown
3986+ - dh_installinit the qemu-kvm upstart job
3987+ * install a 30-qemu-kvm.conf into /etc/sysctl.c for nr_hugepages.
3988+ * qemu-kvm.upstart:
3989+ - add qemu-system.qemu-kvm.upstart
3990+ - add mv_confile to qemu-system.preinst, postinst, and .postrm to rename
3991+ /etc/init/qemu-kvm.conf to qemu-system.conf
3992+ - debian/rules: add dh_installinit to get qemu-system.upstart installed.
3993+ - take the defaults from the old qemu-kvm.defaults, and move them into
3994+ the upstart job
3995+ * debian/patches:
3996+ - apply gridcentric patches from lp:~amscanne/+junk/gridcentric-qemu-patches
3997+ - apply arm patches from git://git.linaro.org/qemu/qemu-linaro.git
3998+ - apply nbd-fixes-to-read-only-handling.patch from upstream to
3999+ make read-write mount after read-only mount work. (LP: #1077838)
4000+ * ifup/down:
4001+ - copy Ubuntu qemu-kvm's kvm-ifup/down into debian/
4002+ - fix dh_install for kvm-ifup/down in debian/rules
4003+ - add links for qemu-ifup/down in qemu-system.links
4004+ - remove (debian's original) qemu-ifup from qemu-system.install
4005+ * debian/qemu-system.postinst
4006+ - udevadm trigger to fix up /dev/kvm perms
4007+ - make the 'qemu' symlink point to qemu-system-x86_64, not -i386.
4008+ * debian/qemu-system.links:
4009+ - point 'kvm' to qemu-system-x86_64
4010+ - remove pxe-virtio, pxe-e1000 and pxe-rtl8139 links (which conflict
4011+ with ones from kvm-ipxe). We may want to move the links from kvm-ipxe
4012+ back to qemu-system at some point.
4013+ - add qemu-ifdown and qemu-ifup links
4014+ * debian/qemu-system.install:
4015+ - remove /etc/qemu-ifup link
4016+ - add /etc/sysctl.d/30-qemu-kvm.conf
4017+
4018+ [ Adam Conrad ]
4019+ * Appease apt-get's dist-upgrade resolver by creating a qemu-common
4020+ transitional package to upgrade more gracefully to qemu-keymaps.
4021+ * Move all the empty transitional packages to the oldlibs section.
4022+ * Restore the versioned dep from qemu-kvm (and kvm) to qemu-system.
4023+
4024+ -- Serge Hallyn <serge.hallyn@ubuntu.com> Fri, 04 Jan 2013 08:50:24 -0600
4025+
4026+qemu (1.2.0+dfsg-1~exp1) UNRELEASED; urgency=low
4027+
4028+ [ Michael Tokarev ]
4029+ * new upstream version (1.3.0)
4030+ (Closes: #676374, #622319, #597527, #593547, #660154)
4031+ - Removed patches included upstream:
4032+ do-not-include-libutil.h.patch
4033+ configure-nss-usbredir.patch
4034+ tcg_s390-fix-ld_st-with-CONFIG_TCG_PASS_AREG0.patch
4035+ net-add--netdev-options-to-man-page.patch
4036+ - update 02_kfreebsd.patch
4037+ - do not build mpc8544ds.dtb
4038+ - include new targets
4039+ * Cleaned up the build system ALOT. Larger changes:
4040+ - used explicit lists of emulated targets in debian/rules
4041+ and generate everything else from there, instead of repeating
4042+ these lists in lots of places.
4043+ - stop using debian/$pkg.manpages and other auxilary files like this,
4044+ moving eveything to debian/$pkg.install, because with the number
4045+ of packages growing, amount of these small files becomes very
4046+ large and the result is difficult to maintain.
4047+ * ship forgotten target-x86_64.conf in qemu-system.
4048+ * ship virtfs-proxy-helper in qemu-utils.
4049+ * stop shipping tundev.c, since it does not reflect the reality for
4050+ a long time now (Closes: #325761, #325754).
4051+ * re-introduce support parallel build using DEB_BUILD_OPTIONS=parallel=N,
4052+ this time by adding to $MAKEFLAGS instead of passing down to submakes
4053+ * build-depend on libcap-ng-dev (for virtfs-proxy-helper)
4054+
4055+ [ Vagrant Cascadian ]
4056+ * Add libcap-dev to Build-Depends to support virtfs-proxy-helper.
4057+
4058+ -- Michael Tokarev <mjt@tls.msk.ru> Sun, 30 Dec 2012 01:52:21 +0400
4059+
4060 qemu (1.1.2+dfsg-6a) unstable; urgency=low
4061
4062 * reupload to remove two unrelated files slipped in debian/
4063diff --git a/debian/control b/debian/control
4064index 60a593c..7ef0f48 100644
4065--- a/debian/control
4066+++ b/debian/control
4067@@ -2,7 +2,8 @@
4068 Source: qemu
4069 Section: otherosfs
4070 Priority: optional
4071-Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
4072+Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
4073+XSBC-Original-Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
4074 Uploaders: Aurelien Jarno <aurel32@debian.org>,
4075 Riku Voipio <riku.voipio@iki.fi>,
4076 Michael Tokarev <mjt@tls.msk.ru>
4077@@ -17,8 +18,6 @@ Build-Depends: debhelper (>= 12),
4078 texinfo, python3-sphinx,
4079 # iasl (from acpica-tools) is used only in a single test these days, not for building
4080 # acpica-tools,
4081-# --enable-capstone=system
4082- libcapstone-dev,
4083 # --enable-linux-aio linux-*
4084 libaio-dev [linux-any],
4085 # --audio-drv-list=pa,alsa,oss linux-*
4086@@ -31,7 +30,6 @@ Build-Depends: debhelper (>= 12),
4087 libbrlapi-dev,
4088 # --enable-virtfs linux-*
4089 # needed for virtfs
4090- libcap-dev [linux-any],
4091 # --enable-cap-ng linux-*
4092 libcap-ng-dev [linux-any],
4093 # --enable-curl
4094@@ -50,19 +48,15 @@ Build-Depends: debhelper (>= 12),
4095 libvirglrenderer-dev [linux-any],
4096 # --enable-opengl
4097 libepoxy-dev, libdrm-dev, libgbm-dev,
4098-# --enable-libnfs
4099- libnfs-dev (>> 1.9.3),
4100 # --enable-numa i386|amd64|ia64|mips|mipsel|powerpc|powerpcspe|x32|ppc64|ppc64el|arm64|sparc|s390x|riscv64
4101 libnuma-dev [i386 amd64 ia64 mips mipsel mips64 mips64el powerpc powerpcspe x32 ppc64 ppc64el arm64 sparc s390x riscv64],
4102 # --enable-smartcard
4103 libcacard-dev,
4104 libpixman-1-dev,
4105-# --enable-rbd amd64|arm64|armel|armhf|i386|mips64el|mipsel|ppc64el|s390x|ppc64|riscv64|sparc64
4106- librbd-dev [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x ppc64 riscv64 sparc64],
4107+# --enable-rbd amd64|arm64|armel|armhf|i386|mips64el|mipsel|ppc64el|s390x|ppc64|sparc64
4108+ librbd-dev [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x ppc64 sparc64],
4109 # glusterfs is debian-only since ubuntu/glusterfs is in universe (MIR LP: #1274247)
4110 # before buster it was glusterfs-common so keep it for now for bpo
4111-# --enable-glusterfs linux-any
4112- libglusterfs-dev [linux-any] | glusterfs-common [linux-any],
4113 # --enable-vnc-sasl
4114 libsasl2-dev,
4115 # --disable-sdl
4116@@ -84,9 +78,6 @@ Build-Depends: debhelper (>= 12),
4117 # --enable-libssh
4118 libssh-dev,
4119 # vde is debian-only since ubuntu/vde2 is in universe
4120-# --enable-vde
4121- libvdeplug-dev,
4122-# --enable-xen linux-amd64|linux-i386
4123 libxen-dev [linux-amd64 linux-i386],
4124 # --enable-nettle
4125 nettle-dev,
4126@@ -104,8 +95,8 @@ Build-Depends: debhelper (>= 12),
4127 libjpeg-dev,
4128 # --enable-vnc-png
4129 libpng-dev,
4130-# --enable-libpmem linux-amd64|linux-arm64|linux-ppc64el
4131- libpmem-dev [linux-amd64 linux-arm64 linux-ppc64el],
4132+# --enable-libpmem linux-amd64|linux-arm64
4133+ libpmem-dev [linux-amd64 linux-arm64],
4134 # --enable-kvm linux-*
4135 # --enable-vhost-net linux-* # is it really linux-specific?
4136 ##--enable-lzo todo, for (memory) dumps
4137@@ -131,8 +122,10 @@ Build-Depends-Indep:
4138 Build-Conflicts: oss4-dev
4139 Standards-Version: 3.9.8
4140 Homepage: http://www.qemu.org/
4141-Vcs-Browser: https://salsa.debian.org/qemu-team/qemu
4142-Vcs-Git: https://salsa.debian.org/qemu-team/qemu.git
4143+XS-Debian-Vcs-Browser: https://salsa.debian.org/qemu-team/qemu
4144+XS-Debian-Vcs-Git: https://salsa.debian.org/qemu-team/qemu.git
4145+Vcs-Browser: https://git.launchpad.net/ubuntu/+source/qemu
4146+Vcs-Git: https://git.launchpad.net/ubuntu/+source/qemu
4147
4148 Package: qemu
4149 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4150@@ -163,6 +156,7 @@ Depends: ${misc:Depends},
4151 qemu-system-ppc,
4152 qemu-system-sparc,
4153 qemu-system-x86,
4154+ qemu-system-s390x,
4155 qemu-system-misc
4156 Description: QEMU full system emulation binaries
4157 QEMU is a fast processor emulator: currently the package supports
4158@@ -196,6 +190,8 @@ Multi-Arch: foreign
4159 Conflicts: sgabios, qemu-skiboot, openbios-sparc, openbios-ppc, qemu-slof,
4160 Replaces: qemu-system-common (<< 1:2.12+dfsg-2~), sgabios,
4161 openbios-sparc, openbios-ppc, qemu-slof, qemu-system-sparc (<< 1:4.2-4~), qemu-system-ppc (<< 1:4.2-4~),
4162+ qemu-system-s390x (<< 1:3.1+dfsg-2ubuntu1~)
4163+Breaks: qemu-system-s390x (<< 1:3.1+dfsg-2ubuntu1~)
4164 Provides: qemu-keymaps, sgabios, qemu-skiboot, openbios-sparc, openbios-ppc, qemu-slof,
4165 Depends: ${misc:Depends}
4166 Description: QEMU full system emulation (data files)
4167@@ -209,7 +205,10 @@ Multi-Arch: foreign
4168 Replaces: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
4169 Breaks: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
4170 Depends: ${misc:Depends}, ${shlibs:Depends},
4171+ qemu-block-extra (= ${binary:Version}),
4172+ powerpc-utils [ppc64el],
4173 # to fix wrong acl for newly created device node on ubuntu:
4174+ acl
4175 Description: QEMU full system emulation binaries (common files)
4176 QEMU is a fast processor emulator: currently the package supports
4177 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
4178@@ -260,6 +259,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qe
4179 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4180 # aarch64 arm uses bootroms
4181 ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~),
4182+ ipxe-qemu-256k-compat-efi-roms,
4183 qemu-efi-aarch64, qemu-efi-arm
4184 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4185 Provides: ${sysprovides:arm}
4186@@ -304,6 +304,7 @@ Multi-Arch: foreign
4187 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4188 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4189 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4190+ ipxe-qemu-256k-compat-efi-roms,
4191 # ppc targets use vgabios-stdvga and bootroms
4192 seabios, ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4193 Provides: ${sysprovides:ppc}
4194@@ -346,12 +347,16 @@ Package: qemu-system-x86
4195 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4196 Multi-Arch: foreign
4197 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4198+ ipxe-qemu-256k-compat-efi-roms,
4199 seabios (>= 1.10.2-1~), ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4200 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4201 ovmf,
4202+ cpu-checker
4203 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4204 sgabios,
4205-Provides: ${sysprovides:x86}
4206+Provides: ${sysprovides:x86}, qemu-system-x86-microvm
4207+Breaks: qemu-system-x86-microvm (<< 1:5.0-5ubuntu1~)
4208+Replaces: qemu-system-x86-microvm (<< 1:5.0-5ubuntu1~)
4209 Description: QEMU full system emulation binaries (x86)
4210 QEMU is a fast processor emulator: currently the package supports
4211 i386 and x86-64 emulation. By using dynamic translation it achieves
4212@@ -368,6 +373,16 @@ Description: QEMU full system emulation binaries (x86)
4213 On x86 host hardware this package also enables KVM kernel virtual machine
4214 usage on systems which supports it.
4215
4216+Package: qemu-system-x86-microvm
4217+Architecture: amd64
4218+Multi-Arch: foreign
4219+Section: oldlibs
4220+Depends: qemu-system-x86 (>= 1:5.0-5ubuntu1~), ${misc:Depends}
4221+Description: QEMU full system emulation binaries (x86)
4222+ The microvm binaries are now part of qemu-system-x86.
4223+ .
4224+ This is a transitional package. You can safely remove it.
4225+
4226 Package: qemu-user
4227 Architecture: amd64 arm arm64 armel armhf i386 ia64 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4228 Multi-Arch: foreign
4229@@ -435,8 +450,10 @@ Package: qemu-utils
4230 Architecture: amd64 arm arm64 armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4231 Multi-Arch: foreign
4232 Breaks: qemu-system-common (<< 1:3.1+dfsg-3~)
4233-Depends: ${shlibs:Depends}, ${misc:Depends}
4234-Suggests: debootstrap, qemu-block-extra (= ${binary:Version}),
4235+Depends: ${shlibs:Depends}, ${misc:Depends},
4236+ qemu-block-extra (= ${binary:Version})
4237+Recommends: sharutils
4238+Suggests: debootstrap,
4239 Description: QEMU utilities
4240 QEMU is a fast processor emulator: currently the package supports
4241 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
4242@@ -474,12 +491,73 @@ Description: Guest-side qemu-system agent
4243 qemu virtual machine. It is not used on the host.
4244
4245 Package: qemu-kvm
4246-Architecture: i386 amd64
4247+Architecture: i386 amd64 x32 armhf armel arm64 powerpc ppc64 ppc64el s390x
4248 Multi-Arch: foreign
4249 Pre-Depends: ${misc:Pre-Depends}
4250-Depends: ${misc:Depends}, qemu-system-x86
4251+Depends:
4252+ ${misc:Depends},
4253+ qemu-system-x86 (= ${binary:Version}) [i386 amd64 x32],
4254+ qemu-system-arm (= ${binary:Version}) [armhf armel arm64],
4255+ qemu-system-ppc (= ${binary:Version}) [powerpc ppc64 ppc64el],
4256+ qemu-system-s390x (= ${binary:Version}) [s390x],
4257+ powerpc-utils [ppc64el],
4258 Description: QEMU Full virtualization on x86 hardware
4259 QEMU is a fast processor emulator. This package provides just a wrapper
4260 script /usr/bin/kvm which run qemu-system-x86 in kvm mode for backwards
4261 compatibility.
4262
4263+Package: qemu-system-s390x
4264+Architecture: amd64 arm arm64 armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64
4265+Multi-Arch: foreign
4266+Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 2.0.0+dfsg-8~), qemu-system-data (>> ${source:Version}~),
4267+Recommends: qemu-utils,
4268+Suggests: qemu-block-extra (= ${binary:Version}),
4269+Provides: ${sysprovides:s390x}
4270+Breaks: qemu-system-misc (<< 1:2.5+dfsg-5ubuntu8~)
4271+Replaces: qemu-system-misc (<< 1:2.5+dfsg-5ubuntu8~)
4272+Description: QEMU full system emulation binaries (s390x)
4273+ QEMU is a fast processor emulator: currently the package supports
4274+ s390x emulation. By using dynamic translation it achieves reasonable
4275+ speed while being easy to port on new host CPUs.
4276+ .
4277+ This package provides the full system emulation binaries to emulate
4278+ the following s390x hardware: ${sysarch:s390x}.
4279+ .
4280+ In system emulation mode QEMU emulates a full system, including a processor
4281+ and various peripherals. It enables easier testing and debugging of system
4282+ code. It can also be used to provide virtual hosting of several virtual
4283+ machines on a single server.
4284+
4285+# xen support generally is disabled, this is an extra build with xen enabled
4286+# as needed by xen-utils-4.11 [amd64 arm64 armhf i386]
4287+# Xen will depend on this; this package and the main qemu-system-x86 are
4288+# mutually exclusive
4289+Package: qemu-system-x86-xen
4290+Architecture: amd64 i386
4291+Multi-Arch: foreign
4292+Depends:
4293+ ${shlibs:Depends},
4294+ ${misc:Depends},
4295+ qemu-system-common (>> ${source:Version}~),
4296+ qemu-system-data (>> ${source:Version}~),
4297+ ipxe-qemu,
4298+Recommends:
4299+ qemu-system-gui (= ${binary:Version}),
4300+ qemu-utils,
4301+ seabios,
4302+Suggests:
4303+ qemu-block-extra (= ${binary:Version}),
4304+ ovmf,
4305+Conflicts: qemu-system-x86
4306+Description: QEMU full system emulation binaries (x86)
4307+ QEMU is a fast processor emulator: currently the package supports
4308+ i386 and x86-64 emulation. By using dynamic translation it achieves
4309+ reasonable speed while being easy to port on new host CPUs.
4310+ .
4311+ This package provides the full system emulation binaries to emulate
4312+ the following x86 hardware: ${sysarch:x86-xen}.
4313+ .
4314+ In comparison to the main qemu-system-x86 this package has xen support
4315+ enabled, but is only maintained as universe package. Qemu with xen support
4316+ is needed to run Xen in HVM mode. For any other use case you should install
4317+ and use qemu-system-x86 instead.
4318diff --git a/debian/control-in b/debian/control-in
4319index 7d4ada3..e0999b6 100644
4320--- a/debian/control-in
4321+++ b/debian/control-in
4322@@ -18,8 +18,8 @@ Build-Depends: debhelper (>= 12),
4323 texinfo, python3-sphinx,
4324 # iasl (from acpica-tools) is used only in a single test these days, not for building
4325 # acpica-tools,
4326-# --enable-capstone=system
4327- libcapstone-dev,
4328+:debian:# --enable-capstone=system
4329+:debian: libcapstone-dev,
4330 # --enable-linux-aio linux-*
4331 libaio-dev [linux-any],
4332 # --audio-drv-list=pa,alsa,oss linux-*
4333@@ -32,7 +32,6 @@ Build-Depends: debhelper (>= 12),
4334 libbrlapi-dev,
4335 # --enable-virtfs linux-*
4336 # needed for virtfs
4337- libcap-dev [linux-any],
4338 # --enable-cap-ng linux-*
4339 libcap-ng-dev [linux-any],
4340 # --enable-curl
4341@@ -58,8 +57,8 @@ Build-Depends: debhelper (>= 12),
4342 # --enable-smartcard
4343 libcacard-dev,
4344 libpixman-1-dev,
4345-# --enable-rbd amd64|arm64|armel|armhf|i386|mips64el|mipsel|ppc64el|s390x|ppc64|riscv64|sparc64
4346- librbd-dev [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x ppc64 riscv64 sparc64],
4347+# --enable-rbd amd64|arm64|armel|armhf|i386|mips64el|mipsel|ppc64el|s390x|ppc64|sparc64
4348+ librbd-dev [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x ppc64 sparc64],
4349 # glusterfs is debian-only since ubuntu/glusterfs is in universe (MIR LP: #1274247)
4350 # before buster it was glusterfs-common so keep it for now for bpo
4351 :debian:# --enable-glusterfs linux-any
4352@@ -87,7 +86,7 @@ Build-Depends: debhelper (>= 12),
4353 # vde is debian-only since ubuntu/vde2 is in universe
4354 :debian:# --enable-vde
4355 :debian: libvdeplug-dev,
4356-# --enable-xen linux-amd64|linux-i386
4357+:debian:# --enable-xen linux-amd64|linux-i386
4358 libxen-dev [linux-amd64 linux-i386],
4359 # --enable-nettle
4360 nettle-dev,
4361@@ -105,8 +104,8 @@ Build-Depends: debhelper (>= 12),
4362 libjpeg-dev,
4363 # --enable-vnc-png
4364 libpng-dev,
4365-# --enable-libpmem linux-amd64|linux-arm64|linux-ppc64el
4366- libpmem-dev [linux-amd64 linux-arm64 linux-ppc64el],
4367+# --enable-libpmem linux-amd64|linux-arm64
4368+ libpmem-dev [linux-amd64 linux-arm64],
4369 # --enable-kvm linux-*
4370 # --enable-vhost-net linux-* # is it really linux-specific?
4371 ##--enable-lzo todo, for (memory) dumps
4372@@ -217,6 +216,8 @@ Multi-Arch: foreign
4373 Replaces: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
4374 Breaks: qemu-system-data (<< 1:3.1+dfsg-1~), qemu-utils (<< 1:3.1+dfsg-3~)
4375 Depends: ${misc:Depends}, ${shlibs:Depends},
4376+:ubuntu: qemu-block-extra (= ${binary:Version}),
4377+:ubuntu: powerpc-utils [ppc64el],
4378 # to fix wrong acl for newly created device node on ubuntu:
4379 :ubuntu: acl
4380 Description: QEMU full system emulation binaries (common files)
4381@@ -269,6 +270,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qe
4382 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4383 # aarch64 arm uses bootroms
4384 ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~),
4385+:ubuntu: ipxe-qemu-256k-compat-efi-roms,
4386 qemu-efi-aarch64, qemu-efi-arm
4387 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4388 Provides: ${sysprovides:arm}
4389@@ -313,6 +315,7 @@ Multi-Arch: foreign
4390 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4391 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4392 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4393+:ubuntu: ipxe-qemu-256k-compat-efi-roms,
4394 # ppc targets use vgabios-stdvga and bootroms
4395 seabios, ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4396 Provides: ${sysprovides:ppc}
4397@@ -355,13 +358,16 @@ Package: qemu-system-x86
4398 Architecture: amd64 arm arm64 armel armhf i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4399 Multi-Arch: foreign
4400 Depends: ${shlibs:Depends}, ${misc:Depends}, qemu-system-common (>> 1:2.12~), qemu-system-data (>> ${source:Version}~),
4401+:ubuntu: ipxe-qemu-256k-compat-efi-roms,
4402 seabios (>= 1.10.2-1~), ipxe-qemu (>= 1.0.0+git-20131111.c3d1e78-1~)
4403 Recommends: qemu-system-gui (= ${binary:Version}), qemu-utils,
4404 ovmf,
4405 :ubuntu: cpu-checker
4406 Suggests: samba, vde2, qemu-block-extra (= ${binary:Version}),
4407 sgabios,
4408-Provides: ${sysprovides:x86}
4409+Provides: ${sysprovides:x86}, qemu-system-x86-microvm
4410+Breaks: qemu-system-x86-microvm (<< 1:5.0-5ubuntu1~)
4411+Replaces: qemu-system-x86-microvm (<< 1:5.0-5ubuntu1~)
4412 Description: QEMU full system emulation binaries (x86)
4413 QEMU is a fast processor emulator: currently the package supports
4414 i386 and x86-64 emulation. By using dynamic translation it achieves
4415@@ -378,6 +384,16 @@ Description: QEMU full system emulation binaries (x86)
4416 On x86 host hardware this package also enables KVM kernel virtual machine
4417 usage on systems which supports it.
4418
4419+Package: qemu-system-x86-microvm
4420+Architecture: amd64
4421+Multi-Arch: foreign
4422+Section: oldlibs
4423+Depends: qemu-system-x86 (>= 1:5.0-5ubuntu1~), ${misc:Depends}
4424+Description: QEMU full system emulation binaries (x86)
4425+ The microvm binaries are now part of qemu-system-x86.
4426+ .
4427+ This is a transitional package. You can safely remove it.
4428+
4429 Package: qemu-user
4430 Architecture: amd64 arm arm64 armel armhf i386 ia64 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4431 Multi-Arch: foreign
4432@@ -445,8 +461,11 @@ Package: qemu-utils
4433 Architecture: amd64 arm arm64 armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel mips64 mips64el powerpc powerpcspe ppc64 ppc64el riscv64 s390x sparc sparc64 x32
4434 Multi-Arch: foreign
4435 Breaks: qemu-system-common (<< 1:3.1+dfsg-3~)
4436-Depends: ${shlibs:Depends}, ${misc:Depends}
4437-Suggests: debootstrap, qemu-block-extra (= ${binary:Version}),
4438+Depends: ${shlibs:Depends}, ${misc:Depends},
4439+:ubuntu: qemu-block-extra (= ${binary:Version})
4440+:ubuntu:Recommends: sharutils
4441+Suggests: debootstrap,
4442+:debian: qemu-block-extra (= ${binary:Version}),
4443 Description: QEMU utilities
4444 QEMU is a fast processor emulator: currently the package supports
4445 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
4446@@ -485,10 +504,16 @@ Description: Guest-side qemu-system agent
4447
4448 Package: qemu-kvm
4449 :debian:Architecture: i386 amd64
4450-:ubuntu:Architecture: i386 amd64 armhf armel powerpc sparc
4451+:ubuntu:Architecture: i386 amd64 x32 armhf armel arm64 powerpc ppc64 ppc64el s390x
4452 Multi-Arch: foreign
4453 Pre-Depends: ${misc:Pre-Depends}
4454-Depends: ${misc:Depends}, qemu-system-x86
4455+Depends:
4456+ ${misc:Depends},
4457+ qemu-system-x86 (= ${binary:Version}) [i386 amd64 x32],
4458+ qemu-system-arm (= ${binary:Version}) [armhf armel arm64],
4459+ qemu-system-ppc (= ${binary:Version}) [powerpc ppc64 ppc64el],
4460+:ubuntu: qemu-system-s390x (= ${binary:Version}) [s390x],
4461+:ubuntu: powerpc-utils [ppc64el],
4462 Description: QEMU Full virtualization on x86 hardware
4463 QEMU is a fast processor emulator. This package provides just a wrapper
4464 script /usr/bin/kvm which run qemu-system-x86 in kvm mode for backwards
4465@@ -515,3 +540,37 @@ Description: QEMU Full virtualization on x86 hardware
4466 :ubuntu: and various peripherals. It enables easier testing and debugging of system
4467 :ubuntu: code. It can also be used to provide virtual hosting of several virtual
4468 :ubuntu: machines on a single server.
4469+
4470+:ubuntu:# xen support generally is disabled, this is an extra build with xen enabled
4471+:ubuntu:# as needed by xen-utils-4.11 [amd64 arm64 armhf i386]
4472+:ubuntu:# Xen will depend on this; this package and the main qemu-system-x86 are
4473+:ubuntu:# mutually exclusive
4474+:ubuntu:Package: qemu-system-x86-xen
4475+:ubuntu:Architecture: amd64 i386
4476+:ubuntu:Multi-Arch: foreign
4477+:ubuntu:Depends:
4478+:ubuntu: ${shlibs:Depends},
4479+:ubuntu: ${misc:Depends},
4480+:ubuntu: qemu-system-common (>> ${source:Version}~),
4481+:ubuntu: qemu-system-data (>> ${source:Version}~),
4482+:ubuntu: ipxe-qemu,
4483+:ubuntu:Recommends:
4484+:ubuntu: qemu-system-gui (= ${binary:Version}),
4485+:ubuntu: qemu-utils,
4486+:ubuntu: seabios,
4487+:ubuntu:Suggests:
4488+:ubuntu: qemu-block-extra (= ${binary:Version}),
4489+:ubuntu: ovmf,
4490+:ubuntu:Conflicts: qemu-system-x86
4491+:ubuntu:Description: QEMU full system emulation binaries (x86)
4492+:ubuntu: QEMU is a fast processor emulator: currently the package supports
4493+:ubuntu: i386 and x86-64 emulation. By using dynamic translation it achieves
4494+:ubuntu: reasonable speed while being easy to port on new host CPUs.
4495+:ubuntu: .
4496+:ubuntu: This package provides the full system emulation binaries to emulate
4497+:ubuntu: the following x86 hardware: ${sysarch:x86-xen}.
4498+:ubuntu: .
4499+:ubuntu: In comparison to the main qemu-system-x86 this package has xen support
4500+:ubuntu: enabled, but is only maintained as universe package. Qemu with xen support
4501+:ubuntu: is needed to run Xen in HVM mode. For any other use case you should install
4502+:ubuntu: and use qemu-system-x86 instead.
4503diff --git a/debian/kvm.arm32 b/debian/kvm.arm32
4504new file mode 100644
4505index 0000000..2138f46
4506--- /dev/null
4507+++ b/debian/kvm.arm32
4508@@ -0,0 +1,2 @@
4509+#!/bin/sh
4510+exec qemu-system-arm -enable-kvm "$@"
4511diff --git a/debian/kvm.arm64 b/debian/kvm.arm64
4512new file mode 100644
4513index 0000000..1764712
4514--- /dev/null
4515+++ b/debian/kvm.arm64
4516@@ -0,0 +1,2 @@
4517+#!/bin/sh
4518+exec qemu-system-aarch64 -enable-kvm "$@"
4519diff --git a/debian/kvm.powerpc b/debian/kvm.powerpc
4520new file mode 100644
4521index 0000000..e6c10e1
4522--- /dev/null
4523+++ b/debian/kvm.powerpc
4524@@ -0,0 +1,13 @@
4525+#!/bin/sh
4526+set -f
4527+
4528+SMT=$(/usr/sbin/ppc64_cpu --smt 2>&1 | grep "SMT=[248]")
4529+if [ -n "$SMT" ]
4530+then
4531+ if grep -q -e '^cpu\s*:\s*POWER8' /proc/cpuinfo; then
4532+ echo "Error: You must disable SMT if you want to run QEMU/KVM on Power8 based ppc64le architecture"
4533+ echo "In order to disable SMT, run: # ppc64_cpu --smt=off"
4534+ fi
4535+fi
4536+
4537+exec qemu-system-ppc64 -enable-kvm "$@"
4538diff --git a/debian/kvm.s390x b/debian/kvm.s390x
4539new file mode 100644
4540index 0000000..0171120
4541--- /dev/null
4542+++ b/debian/kvm.s390x
4543@@ -0,0 +1,2 @@
4544+#!/bin/sh
4545+exec qemu-system-s390x -enable-kvm "$@"
4546diff --git a/debian/kvm b/debian/kvm.x86
4547similarity index 50%
4548rename from debian/kvm
4549rename to debian/kvm.x86
4550old mode 100755
4551new mode 100644
4552index 2e89893..43c0b24
4553--- a/debian/kvm
4554+++ b/debian/kvm.x86
4555@@ -1,2 +1,2 @@
4556-#! /bin/sh
4557+#!/bin/sh
4558 exec qemu-system-x86_64 -enable-kvm "$@"
4559diff --git a/debian/patches/series b/debian/patches/series
4560index 59817de..dcadded 100644
4561--- a/debian/patches/series
4562+++ b/debian/patches/series
4563@@ -9,3 +9,32 @@ aio-posix-dont-duplicate-fd-handler-deletion-in-fdmon_io_uring_destroy.patch
4564 aio-posix-disable-fdmon-io_uring-when-GSource-is-used.patch
4565 hostmem-dont-use-mbind-if-host-nodes-is-empty.patch
4566 net-use-peer-when-purging-queue-in-qemu_flush_or_purge_queue_packets.patch
4567+
4568+# ubuntu patches
4569+ubuntu/enable-svm-by-default.patch
4570+ubuntu/define-ubuntu-machine-types.patch
4571+ubuntu/pre-bionic-256k-ipxe-efi-roms.patch
4572+ubuntu/lp-1878973-fix-assert-regression.patch
4573+
4574+# LP 1867519 s390x protvirt
4575+ubuntu/lp-1835546-linux-headers-update-against-Linux-5.7-rc3.patch
4576+ubuntu/lp-1835546-s390x-Move-diagnose-308-subcodes-and-rcs-into-ipl.h.patch
4577+ubuntu/lp-1835546-s390x-protvirt-Support-unpack-facility.patch
4578+ubuntu/lp-1835546-s390x-protvirt-Add-migration-blocker.patch
4579+ubuntu/lp-1835546-s390x-protvirt-Inhibit-balloon-when-switching-to-pro.patch
4580+ubuntu/lp-1835546-s390x-protvirt-KVM-intercept-changes.patch
4581+ubuntu/lp-1835546-s390x-Add-SIDA-memory-ops.patch
4582+ubuntu/lp-1835546-s390x-protvirt-Move-STSI-data-over-SIDAD.patch
4583+ubuntu/lp-1835546-s390x-protvirt-SCLP-interpretation.patch
4584+ubuntu/lp-1835546-s390x-protvirt-Set-guest-IPL-PSW.patch
4585+ubuntu/lp-1835546-s390x-protvirt-Move-diag-308-data-over-SIDA.patch
4586+ubuntu/lp-1835546-s390x-protvirt-Disable-address-checks-for-PV-guest-I.patch
4587+ubuntu/lp-1835546-s390x-protvirt-Move-IO-control-structures-over-SIDA.patch
4588+ubuntu/lp-1835546-s390x-protvirt-Handle-SIGP-store-status-correctly.patch
4589+ubuntu/lp-1835546-docs-system-Add-protvirt-docs.patch
4590+ubuntu/lp-1835546-s390x-Add-unpack-facility-feature-to-GA1.patch
4591+ubuntu/lp-1835546-s390x-protvirt-Fix-stray-error_report_err-in-s390_ma.patch
4592+ubuntu/lp-1835546-s390x-pv-Retry-ioctls-on-EINTR.patch
4593+ubuntu/lp-1835546-s390x-s390-virtio-ccw-Fix-build-on-systems-without-K.patch
4594+ubuntu/lp-1835546-s390x-pv-Fix-KVM_PV_PREP_RESET-command-wrapper-name.patch
4595+ubuntu/virtio-net-fix-rsc_ext-compat-handling.patch
4596diff --git a/debian/patches/ubuntu/define-ubuntu-machine-types.patch b/debian/patches/ubuntu/define-ubuntu-machine-types.patch
4597new file mode 100644
4598index 0000000..d236b4f
4599--- /dev/null
4600+++ b/debian/patches/ubuntu/define-ubuntu-machine-types.patch
4601@@ -0,0 +1,684 @@
4602+Description: Carry Ubuntu specific machine types
4603+
4604+Since Ubuntu is a downstream of qemu carrying patches it needs custom machine
4605+types to be able to identify and manage the delta that might affect machine
4606+types.
4607+
4608+This is an important piece to keep cross release migration supported for any
4609+downstream.
4610+
4611+Since the p->t transition these types are mostly stable copies of the upstream
4612+type (in the past this was more unstable upstream, so there was more delta),
4613+but they need to stay specific to reflect the delta we have. And even more so
4614+to have something to base off for affecting SRU changes.
4615+
4616+Also add a hint if instantiating fails due to now unsupported old guest
4617+types (LP: #1637936).
4618+
4619+Package maintainers please see https://wiki.ubuntu.com/QemuKVMMigration when
4620+maintaining this patch on SRU, merge or other packaging activity.
4621+While support on a type is dropped with the Release going EOL we never drop the
4622+type itself as long as it is maintainable. This will give people an extra
4623+chance to migrate and avoid issues like LP: 1802944.
4624+
4625+##
4626+
4627+This later on got extended by further ubuntu specific machine type changes:
4628+LP 1776189: Add a -hpb Ubuntu specific machine type suffix
4629+
4630+This works already fine on commandline, but Libvirt and other stacks above
4631+have no exploitation yet. Using a machine type has the benefit of being already
4632+controllable by most upper layer software like Libvirt (type= in os tag) but
4633+even up to Openstack (nova.conf or per image metadata on hw_machine_type).
4634+
4635+This is based on a discussion:
4636+ https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1769053
4637+
4638+A similar change is in CentOS/RH (there the default is switched, without
4639+even a way to go back.
4640+But since this can cause issues e.g. when migrating
4641+across hosts with different characteristics, it is not set as the default
4642+in Ubuntu with this change.
4643+
4644+Further we want to avoid "machine type proliferation", so we certainly won't
4645+add a type for every feature. But using a huge guest is more common and
4646+otherwise not yet achievable.
4647+
4648+This can be dropped when:
4649+ - libvirt exposes phys-bits/host-phys-bits natively
4650+ - at least the important stacks above exploit that config
4651+As an alternative we might decide at some point to make it the default without
4652+a way to switch back in following releases, but for now we don't want to do so.
4653+
4654+##
4655+
4656+This later on got extended by further ubuntu specific machine type changes:
4657+LP 1761372: special type for ppc64 meltdown/spectre defaults
4658+
4659+Upstresm 2.12 is not yet set in stone (almost but not full), and we ship 2.11
4660+with backports. SO we don't want to make a 2.12 machine type fully recommended
4661+yet.
4662+PPC was following x86 in providing a non default convenience type that has the
4663+spectre/meltdown flags toggled - in bug 1761372 we were requested to carry the
4664+same - but we agreed to do so as a 2.11 based type.
4665+
4666+Note I: x86 changes CPU types with -IBRS suffix, power chose to change machine
4667+types.
4668+
4669+Note II: this change can be squashed into ubuntu-machine-types.patch >=2.12
4670+where the base content will exist in the upstream source instead of
4671+patches on top.
4672+
4673+##
4674+
4675+[1] introduced a major regression into the 4.0 types by setting split
4676+irqchip to be the default. This was corrected by [2] and the fix further
4677+modified by [3] which overall adds a 4.0.1 machine type in qemu 4.1 (not
4678+yet released) and probably eventually stable branches.
4679+We will follow upstream with the upstream types, but the Ubuntu types so
4680+far didn't release a 4.0 type yet so for us we can fix it on the initial
4681+release right away.
4682+
4683+[1]: https://git.qemu.org/?p=qemu.git;a=commit;h=b2fc91db
4684+[2]: https://git.qemu.org/?p=qemu.git;a=commit;h=c87759ce
4685+[3]: https://git.qemu.org/?p=qemu.git;a=commit;h=8e8cbed0
4686+
4687+##
4688+
4689+Original-Author: Serge Hallyn <serge.hallyn@ubuntu.com>
4690+Original-Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1304107
4691+Author: Christian Ehrhardt <christian.ehrhardt@canonical.com>
4692+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1621042
4693+Bug-Ubuntu: https://bugs.launchpad.net/bugs/1776189
4694+Bug-Ubuntu: https://bugs.launchpad.net/bugs/1761372
4695+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1829868
4696+Forwarded: not-needed
4697+Forward-info: downstream decision
4698+
4699+--- a/hw/i386/pc_piix.c
4700++++ b/hw/i386/pc_piix.c
4701+@@ -423,12 +423,7 @@ static void pc_i440fx_5_0_machine_option
4702+ PCMachineClass *pcmc = PC_MACHINE_CLASS(m);
4703+ pc_i440fx_machine_options(m);
4704+ m->alias = "pc";
4705+- m->is_default = true;
4706+-#ifdef CONFIG_MICROVM_DEFAULT
4707+ m->is_default = false;
4708+-#else
4709+- m->is_default = true;
4710+-#endif
4711+ pcmc->default_cpu_version = 1;
4712+ }
4713+
4714+@@ -975,3 +970,199 @@ static void xenfv_3_1_machine_options(Ma
4715+ DEFINE_PC_MACHINE(xenfv, "xenfv-3.1", pc_xen_hvm_init,
4716+ xenfv_3_1_machine_options);
4717+ #endif
4718++
4719++/* Ubuntu machine types */
4720++static void pc_trusty_machine_options(MachineClass *m)
4721++{
4722++ pc_i440fx_2_0_machine_options(m);
4723++ m->desc = "Ubuntu 14.04 PC (i440FX + PIIX, 1996)";
4724++}
4725++DEFINE_I440FX_MACHINE(trusty, "pc-i440fx-trusty", pc_compat_2_0_fn,
4726++ pc_trusty_machine_options)
4727++
4728++static void pc_xenial_machine_options(MachineClass *m)
4729++{
4730++ pc_i440fx_2_5_machine_options(m);
4731++ m->desc = "Ubuntu 16.04 PC (i440FX + PIIX, 1996)";
4732++}
4733++DEFINE_I440FX_MACHINE(xenial, "pc-i440fx-xenial", NULL,
4734++ pc_xenial_machine_options);
4735++
4736++static void pc_yakkety_machine_options(MachineClass *m)
4737++{
4738++ pc_i440fx_2_6_machine_options(m);
4739++ m->desc = "Ubuntu 16.10 PC (i440FX + PIIX, 1996)";
4740++}
4741++DEFINE_I440FX_MACHINE(yakkety, "pc-i440fx-yakkety", NULL,
4742++ pc_yakkety_machine_options);
4743++
4744++static void pc_zesty_machine_options(MachineClass *m)
4745++{
4746++ pc_i440fx_2_8_machine_options(m);
4747++ m->desc = "Ubuntu 17.04 PC (i440FX + PIIX, 1996)";
4748++}
4749++DEFINE_I440FX_MACHINE(zesty, "pc-i440fx-zesty", NULL,
4750++ pc_zesty_machine_options);
4751++
4752++static void pc_artful_machine_options(MachineClass *m)
4753++{
4754++ pc_i440fx_2_10_machine_options(m);
4755++ m->desc = "Ubuntu 17.10 PC (i440FX + PIIX, 1996)";
4756++}
4757++DEFINE_I440FX_MACHINE(artful, "pc-i440fx-artful", NULL,
4758++ pc_artful_machine_options);
4759++
4760++static void pc_bionic_machine_options(MachineClass *m)
4761++{
4762++ pc_i440fx_2_11_machine_options(m);
4763++ m->desc = "Ubuntu 18.04 PC (i440FX + PIIX, 1996)";
4764++}
4765++DEFINE_I440FX_MACHINE(bionic, "pc-i440fx-bionic", NULL,
4766++ pc_bionic_machine_options);
4767++
4768++static void pc_bionic_hpb_machine_options(MachineClass *m)
4769++{
4770++ pc_i440fx_2_11_machine_options(m);
4771++ m->desc = "Ubuntu 18.04 PC (i440FX + PIIX, +host-phys-bits=true, 1996)";
4772++ compat_props_add(m->compat_props,
4773++ host_phys_bits_compat, host_phys_bits_compat_len);
4774++}
4775++DEFINE_I440FX_MACHINE(bionic_hpb, "pc-i440fx-bionic-hpb", NULL,
4776++ pc_bionic_hpb_machine_options);
4777++
4778++static void pc_cosmic_machine_options(MachineClass *m)
4779++{
4780++ pc_i440fx_2_12_machine_options(m);
4781++ m->desc = "Ubuntu 18.10 PC (i440FX + PIIX, 1996)";
4782++}
4783++DEFINE_I440FX_MACHINE(cosmic, "pc-i440fx-cosmic", NULL,
4784++ pc_cosmic_machine_options);
4785++
4786++static void pc_cosmic_hpb_machine_options(MachineClass *m)
4787++{
4788++ pc_i440fx_2_12_machine_options(m);
4789++ m->desc = "Ubuntu 18.10 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4790++ compat_props_add(m->compat_props,
4791++ host_phys_bits_compat, host_phys_bits_compat_len);
4792++}
4793++DEFINE_I440FX_MACHINE(cosmic_hpb, "pc-i440fx-cosmic-hpb", NULL,
4794++ pc_cosmic_hpb_machine_options);
4795++
4796++static void pc_disco_machine_options(MachineClass *m)
4797++{
4798++ pc_i440fx_3_1_machine_options(m);
4799++ m->desc = "Ubuntu 19.04 PC (i440FX + PIIX, 1996)";
4800++}
4801++DEFINE_I440FX_MACHINE(disco, "pc-i440fx-disco", NULL,
4802++ pc_disco_machine_options);
4803++
4804++static void pc_disco_hpb_machine_options(MachineClass *m)
4805++{
4806++ pc_i440fx_3_1_machine_options(m);
4807++ m->desc = "Ubuntu 19.04 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4808++ m->alias = NULL;
4809++ compat_props_add(m->compat_props,
4810++ host_phys_bits_compat, host_phys_bits_compat_len);
4811++}
4812++DEFINE_I440FX_MACHINE(disco_hpb, "pc-i440fx-disco-hpb", NULL,
4813++ pc_disco_hpb_machine_options);
4814++
4815++static void pc_eoan_machine_options(MachineClass *m)
4816++{
4817++ pc_i440fx_4_0_machine_options(m);
4818++ m->desc = "Ubuntu 19.10 PC (i440FX + PIIX, 1996)";
4819++ m->alias = NULL;
4820++}
4821++DEFINE_I440FX_MACHINE(eoan, "pc-i440fx-eoan", NULL,
4822++ pc_eoan_machine_options);
4823++
4824++static void pc_eoan_hpb_machine_options(MachineClass *m)
4825++{
4826++ pc_i440fx_4_0_machine_options(m);
4827++ m->desc = "Ubuntu 19.10 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4828++ m->alias = NULL;
4829++ compat_props_add(m->compat_props,
4830++ host_phys_bits_compat, host_phys_bits_compat_len);
4831++}
4832++DEFINE_I440FX_MACHINE(eoan_hpb, "pc-i440fx-eoan-hpb", NULL,
4833++ pc_eoan_hpb_machine_options);
4834++
4835++static void pc_focal_machine_options(MachineClass *m)
4836++{
4837++ pc_i440fx_4_0_machine_options(m);
4838++ m->desc = "Ubuntu 20.04 PC (i440FX + PIIX, 1996)";
4839++ m->alias = NULL;
4840++}
4841++DEFINE_I440FX_MACHINE(focal, "pc-i440fx-focal", NULL,
4842++ pc_focal_machine_options);
4843++
4844++static void pc_focal_hpb_machine_options(MachineClass *m)
4845++{
4846++ pc_i440fx_4_0_machine_options(m);
4847++ m->desc = "Ubuntu 20.04 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4848++ m->alias = NULL;
4849++ compat_props_add(m->compat_props,
4850++ host_phys_bits_compat, host_phys_bits_compat_len);
4851++}
4852++DEFINE_I440FX_MACHINE(focal_hpb, "pc-i440fx-focal-hpb", NULL,
4853++ pc_focal_hpb_machine_options);
4854++
4855++static void pc_groovy_machine_options(MachineClass *m)
4856++{
4857++ pc_i440fx_5_0_machine_options(m);
4858++ m->desc = "Ubuntu 20.10 PC (i440FX + PIIX, 1996)";
4859++ m->alias = "ubuntu";
4860++#ifdef CONFIG_MICROVM_DEFAULT
4861++ m->is_default = false;
4862++#else
4863++ m->is_default = true;
4864++#endif
4865++}
4866++DEFINE_I440FX_MACHINE(groovy, "pc-i440fx-groovy", NULL,
4867++ pc_groovy_machine_options);
4868++
4869++static void pc_groovy_hpb_machine_options(MachineClass *m)
4870++{
4871++ pc_i440fx_5_0_machine_options(m);
4872++ m->desc = "Ubuntu 20.10 PC (i440FX + PIIX +host-phys-bits=true, 1996)";
4873++ m->alias = NULL;
4874++ compat_props_add(m->compat_props,
4875++ host_phys_bits_compat, host_phys_bits_compat_len);
4876++}
4877++DEFINE_I440FX_MACHINE(groovy_hpb, "pc-i440fx-groovy-hpb", NULL,
4878++ pc_groovy_hpb_machine_options);
4879++
4880++/*
4881++ * Due to bug 1621042 we have to consider the broken old wily machine
4882++ * type as valid xenial type to ensure older VMs that got created prio
4883++ * to fixing 1621042 will still work.
4884++ * Therefore we have to keep it as-is (sans alias and being default) for
4885++ * the same time we keep the fixed xenial type above.
4886++ *
4887++ * Further bug 1829868 identified issues due to the wily type being released
4888++ * defined as a hybrid of pc_i440fx_2_4_machine_options and pc_compat_2_3.
4889++ * That mismatch caused issues since qemu 2.11 due to some definitions
4890++ * moving between those version references.
4891++ * This introduces pc_i440fx_wily_machine_options which encapsulates the
4892++ * old behavior as it was (this is the purpose of machine types).
4893++ */
4894++static void pc_i440fx_wily_machine_options(MachineClass *m)
4895++{
4896++ PCMachineClass *pcmc = PC_MACHINE_CLASS(m);
4897++ pc_i440fx_2_4_machine_options(m);
4898++ m->hw_version = "2.4.0";
4899++ pcmc->broken_reserved_end = true;
4900++ compat_props_add(m->compat_props, hw_compat_2_3, hw_compat_2_3_len);
4901++ compat_props_add(m->compat_props, pc_compat_2_3, pc_compat_2_3_len);
4902++}
4903++
4904++static void pc_wily_machine_options(MachineClass *m)
4905++{
4906++ pc_i440fx_wily_machine_options(m);
4907++ pc_i440fx_machine_options(m);
4908++ m->desc = "Ubuntu 15.04 PC (i440FX + PIIX, 1996)",
4909++ m->default_display = "std";
4910++}
4911++
4912++DEFINE_I440FX_MACHINE(wily, "pc-i440fx-wily", NULL,
4913++ pc_wily_machine_options);
4914+--- a/hw/i386/pc_q35.c
4915++++ b/hw/i386/pc_q35.c
4916+@@ -545,3 +545,165 @@ static void pc_q35_2_4_machine_options(M
4917+
4918+ DEFINE_Q35_MACHINE(v2_4, "pc-q35-2.4", NULL,
4919+ pc_q35_2_4_machine_options);
4920++
4921++/* Ubuntu machine types */
4922++static void pc_q35_xenial_machine_options(MachineClass *m)
4923++{
4924++ pc_q35_2_5_machine_options(m);
4925++ m->desc = "Ubuntu 16.04 PC (Q35 + ICH9, 2009)";
4926++}
4927++DEFINE_Q35_MACHINE(xenial, "pc-q35-xenial", NULL,
4928++ pc_q35_xenial_machine_options);
4929++
4930++static void pc_q35_yakkety_machine_options(MachineClass *m)
4931++{
4932++ pc_q35_2_6_machine_options(m);
4933++ m->desc = "Ubuntu 16.10 PC (Q35 + ICH9, 2009)";
4934++}
4935++DEFINE_Q35_MACHINE(yakkety, "pc-q35-yakkety", NULL,
4936++ pc_q35_yakkety_machine_options);
4937++
4938++static void pc_q35_zesty_machine_options(MachineClass *m)
4939++{
4940++ pc_q35_2_8_machine_options(m);
4941++ m->desc = "Ubuntu 17.04 PC (Q35 + ICH9, 2009)";
4942++}
4943++DEFINE_Q35_MACHINE(zesty, "pc-q35-zesty", NULL,
4944++ pc_q35_zesty_machine_options);
4945++
4946++static void pc_q35_artful_machine_options(MachineClass *m)
4947++{
4948++ pc_q35_2_10_machine_options(m);
4949++ m->desc = "Ubuntu 17.10 PC (Q35 + ICH9, 2009)";
4950++}
4951++DEFINE_Q35_MACHINE(artful, "pc-q35-artful", NULL,
4952++ pc_q35_artful_machine_options);
4953++
4954++static void pc_q35_bionic_machine_options(MachineClass *m)
4955++{
4956++ pc_q35_2_11_machine_options(m);
4957++ m->desc = "Ubuntu 18.04 PC (Q35 + ICH9, 2009)";
4958++}
4959++DEFINE_Q35_MACHINE(bionic, "pc-q35-bionic", NULL,
4960++ pc_q35_bionic_machine_options);
4961++
4962++static void pc_q35_bionic_hpb_machine_options(MachineClass *m)
4963++{
4964++ pc_q35_2_11_machine_options(m);
4965++ m->desc = "Ubuntu 18.04 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4966++ compat_props_add(m->compat_props,
4967++ host_phys_bits_compat, host_phys_bits_compat_len);
4968++}
4969++DEFINE_Q35_MACHINE(bionic_hpb, "pc-q35-bionic-hpb", NULL,
4970++ pc_q35_bionic_hpb_machine_options);
4971++
4972++static void pc_q35_cosmic_machine_options(MachineClass *m)
4973++{
4974++ /* yes that is "wrong" but has to stay that way for compatibility */
4975++ pc_q35_2_11_machine_options(m);
4976++ m->desc = "Ubuntu 18.10 PC (Q35 + ICH9, 2009)";
4977++}
4978++DEFINE_Q35_MACHINE(cosmic, "pc-q35-cosmic", NULL,
4979++ pc_q35_cosmic_machine_options);
4980++
4981++static void pc_q35_cosmic_hpb_machine_options(MachineClass *m)
4982++{
4983++ pc_q35_2_12_machine_options(m);
4984++ m->desc = "Ubuntu 18.10 PC (Q35 + ICH9, +host-phys-bits=true, 2009)";
4985++ compat_props_add(m->compat_props,
4986++ host_phys_bits_compat, host_phys_bits_compat_len);
4987++}
4988++DEFINE_Q35_MACHINE(cosmic_hpb, "pc-q35-cosmic-hpb", NULL,
4989++ pc_q35_cosmic_hpb_machine_options);
4990++
4991++static void pc_q35_disco_machine_options(MachineClass *m)
4992++{
4993++ pc_q35_3_1_machine_options(m);
4994++ m->desc = "Ubuntu 19.04 PC (Q35 + ICH9, 2009)";
4995++}
4996++DEFINE_Q35_MACHINE(disco, "pc-q35-disco", NULL,
4997++ pc_q35_disco_machine_options);
4998++
4999++static void pc_q35_disco_hpb_machine_options(MachineClass *m)
5000++{
The diff has been truncated for viewing.

Subscribers

People subscribed via source and target branches