[ubuntu/jammy-proposed] libvirt 8.0.0-1ubuntu1 (Accepted)
Christian Ehrhardt
christian.ehrhardt at canonical.com
Fri Feb 11 06:41:15 UTC 2022
libvirt (8.0.0-1ubuntu1) jammy; urgency=medium
* Merge 8.0.0 from Debian unstable (LP: #1946869)
Among many other fixes and improvements this fixes ceph usage
in regard to apparmor (LP: #1588576)
Remaining changes:
- libvirt-uri.sh: Automatically switch default libvirt URI for users
via user profile (xen URI on dom0, qemu:///system otherwise)
[contains lintian fixups of 6.6.0-1ubuntu1]
- Disable libssh2 support (universe dependency)
- d/control: add libzfslinux-dev to build-deps
- d/control: drop libvirt-lxc, vbox and xen drivers to suggest
- d/control: breaks replaces for augeas lenses move in 6.0.0-1
(follows Debian, droppable >22.04)
- debian/patches/ubuntu/ovmf_paths.patch: adjust paths to secboot.fd UEFI
Secure Boot enabled variants of the OVMF firmware and variable store for
the paths where we ship these files in Ubuntu.
- Set qemu-group to kvm (for compat with older ubuntu)
- Additional apport package-hook
- Autostart default bridged network (As upstream does, but not Debian).
In addition to just enabling it our solution provides:
+ do not autostart if subnet is already taken (e.g. in guests).
+ iterate some alternative subnets before giving up
- d/p/ubuntu/Allow-libvirt-group-to-access-the-socket.patch: This is
the group based access to libvirt functions as it was used in Ubuntu
for quite a long time.
+ d/p/ubuntu/daemon-augeas-fix-expected.patch fix some related tests
due to the group access change.
+ d/libvirt-daemon-system.postinst: add users in sudo to the libvirt
group.
- d/p/u/parallel-shutdown.patch: set parallel shutdown by default.
- Update README.Debian with Ubuntu changes
- d/p/ubuntu/ubuntu_machine_type.patch: accept ubuntu types as pci440fx
- fix autopkgtests (LP 1899180)
+ d/t/control, d/t/smoke-qemu-session: fixup smoke-qemu-session by making
vmlinuz available and accessible (Debian bug 848314)
+ d/t/control: fix smoke-qemu-session by ensuring the service will run
installing libvirt-daemon-system
+ d/t/smoke-lxc: fix smoke-lxc by ignoring potential issues on destroy as
long as the following undefine succeeds
+ d/t/smoke-lxc: use systemd instead of sysV to restart the service
+ d/t/control, d/t/smoke-lxc: retry service restart and skip test if
failing; This was flaky on some release/architectures
+ d/t/smoke-lxc: retry check_domain being flaky on arm64
- dnsmasq related enhancements
[now contains dnsmasq-as-priv-user of 6.6.0-1ubuntu1]
+ run dnsmasq as libvirt-dnsmasq (LP: 1743718)
+ d/libvirt-daemon-system.postinst: add libvirt-dnsmasq user and group
+ d/libvirt-daemon-system.postrm: remove libvirt-dnsmasq user and group
on purge
+ d/p/ubuntu/dnsmasq-as-priv-user: write dnsmasq config with user
libvirt-dnsmasq and adapt the self tests to expect that config
+ d/libvirt-daemon-system.postinst: fix old libvirt-dnsmasq users group
+ Add dnsmasq configuration to work with system wide dnsmasq-base
- d/p/ubuntu/set-default-machine-to-ubuntu.patch: to select default
machine type correctly with newer qemu/libvirt
- d/p/ubuntu/lp-1861125-ubuntu-models: recognize Ubuntu models for
(LP 1861125) fixups
- d/p/ubuntu/wait-for-qemu-kvm.patch - avoid hangs on startup (LP 1887592)
- Apparmor Delta that is Ubuntu specific or yet to be upstreamed
split into logical pieces. File names in debian/patches/ubuntu-aa/:
+ 0020-virt-aa-helper-ubuntu-storage-paths.patch:
apparmor, virt-aa-helper: Allow various storage pools and image
locations
+ 0029-appmor-libvirt-qemu-Add-9p-support.patch: appmor,
libvirt-qemu: Add 9p support
+ 0031-virt-aa-helper-Ask-for-no-deny-rule-for-readonly-dis.patch:
virt-aa-helper: Ask for no deny rule for readonly disk (renamed and
reworded, was virt-aa-helper-no-explicity-deny-for-basefiles.patch)
+ 0032-apparmor-libvirt-qemu-Allow-reading-charm-specific-c.patch:
apparmor, libvirt-qemu: Allow reading charm-specific ceph config
+ 0033-UBUNTU-only-apparmor-for-kvm.powerpc-LP-1680384.patch: allow
commands executed by ubuntu only kvm wrapper on ppc64el
(LP 1686621 LP 1680384 LP 1784023)
+ 0034-apparmor-virt-aa-helper-access-for-snapped-nova.patch:
apparmor, virt-aa-helper: access for snapped nova
+ lp-1815910-allow-vhost-net.patch: avoid apparmor issues
with vhost-net/vhost-vsock/vhost-scsi hotplug (LP: 1815910)
- libvirt should not use user/group tss for swtpm (LP 1948880)
+ d/libvirt-daemon-system.postinst: own swtpm logdir by user swtpm
+ d/p/u/swtpm-by-swtpm-user.patch: change default spawned swtpm processes
to user swtpm
+ d/p/u/swtpm-by-swtpm-user.patch: adapt expected self test results
+ d/control: suggest swtpm-tools
+ d/libvirt-daemon-system.postinst: create user/group swtpm if not present
due to swtpm-tools (LP 1951975)
* Dropped changes [in Debian now]:
- d/control: add libtirpc for rpc.h with glibc >=2.32
- various patch refreshes and .symbols updated from 7.0.0 - 7.6.0
- debian/rules: disable the netcf backend. (LP: 1764314)
- d/libvirt-clients.install: completions no more are symlinked to vsh
- d/rules: disable the now auto-built vstorage backend
- not-installed: split daemon man pages are no yet installed
- d/rules: disable the new Cloud Hypervisor driver
- d/rules: enable more features explicitly
- d/rules: use apparmor_profiles=enabled instead of the now rejected
value true
- rules: Explicitly set remote_default_mode
- rules: Rework installation of AppArmor-related files
- d/control, d/rules: enable libssh (LP 1939416)
* Dropped changes [upstream now]:
- d/p/u/lp-1913266-*: add vsock options to be usable with s390x secure
execution (LP 1913266)
- d/p/u/lp-1927519-virt-aa-helper-Purge-profile-if-corrupted.patch: avoid
issues due to corrupted apparmor profiles (LP 1927519)
- Toleration for qemu >=6.0 handling of props (LP 1932264)
- Persistent vfio-ccw device assignments (LP 1887929)
* Dropped changes [no more needed]:
- remove Debian debian/Revert-m4-virt-xdr-rewrite-XDR-check.patch as with
recent ubuntu glibx 2.32 it is breaking the build
- update d/p/debian/Revert-m4-virt-xdr-rewrite-XDR-check.patch: to detect
XDR functions from glibc
- d/t/smoke-lxc: skip before systemd 248 due to a known bug (LP 1934966)
- d/t/smoke-lxc: skip if cgroup v1&v2 are present (systemd 248
was not enough)
* Added changes:
- d/p/u/dnsmasq-as-priv-user: update for 8.0.0
- Add recent upstream fixes to 8.0
+ d/p/backport/qemuDomainSetupDisk-Initialize-targetPaths.patch to work
in containers like LXD (without guest start would hang).
+ d/p/backport/util-fix-syslog-facility-value.patch to ensure logs
get passed to syslog/journal correctly.
- d/rules, d/libvirt-daemon-system.{postinst,postrm}: never stop
libvirt system services and sockets (LP: #1959054). This allows
to unblock some transitions that wait on libvirt now; The intention is
that it is fixed in debhelper and libvirt reverts this change before
jammy release.
libvirt (8.0.0-1) unstable; urgency=medium
* [a26cc81] New upstream version 8.0.0
* [9f18b0d] patches: Drop backports
* [7ea1214] patches: Add backport/qemu-fix-inactive-snapshot-revert.patch
* [9454a95] patches: Add backport/Revert-report-error-when-[...].patch
* [ec3b590] control: Drop dependency on radvd
- libvirt no longer uses it
* [19eb356] control: Drop build dependency on parted
- The parted binary is only needed at runtime
libvirt (7.10.0-3) unstable; urgency=medium
* [16b245a] control: Improve multiarch support
- Mark libvirt-{daemon-system-systemd,doc} as Multi-Arch: foreign
- Mark libvirt-wireshark as Multi-Arch: same
- Mark libvirt-daemon-driver-* as Multi-Arch: no
* [ef19843] control: Move Recommends on LVM to -daemon package
- It's used by the storage driver, not the client library
* [a10f605] control: Update Uploaders field
- Add Andrea Bolognani, remove Laurent Léonard
* [c74efcb] control: Drop obsolete version constraints
- They're satisfied on our expected backport targets (Debian 11
and Ubuntu 20.04)
* [1ad0b3a] control: Drop all Pre-Depends
- They're not necessary on our expected backport targets
libvirt (7.10.0-2) unstable; urgency=medium
* Team upload
[ Andrea Bolognani ]
* [26f63eb] control: Build-Depend on python3:any to fix cross-building
* [b14268f] patches: Backport fix for CVE-2021-4147
[ Joachim Falk ]
* [9ae5f14] Fix reboot command for LXC containers (Closes: #991773)
libvirt (7.10.0-1) unstable; urgency=medium
* Team upload
* [0817e92] New upstream version 7.10.0
* [2d2fb25] patches: Drop backported patches
libvirt (7.9.0-1) unstable; urgency=medium
* Team upload
* [2c54c68] New upstream version 7.9.0
- Closes: #994061
- Fixes FTBFS (Closes: #997108)
* [6ca05a9] patches: Update ZFS enablement patches
- Replace the Debian-specific patch
debian/Set-defaults-for-zfs-tools.patch
with backported upstream patches
backport/meson-Enable-ZFS-storage-backend-even-more-often.patch
backport/meson-Stop-looking-up-ZFS-programs-at-build-time.patch
* [32a1e7b] patches: Add backport/wireshark-Switch-to-tvb_bytes_to_str.patch
- Needed to build against Wireshark 3.6.0
* [30fdaae] libvirt-daemon-system: Make QEMU cache directory root-owned
- Recent changes in libvirt make it possible to be more strict
* [8c2f99b] tests: No longer skip smoke-lxc with both cgroups v1&v2 present
- The bug that made this workaround necessary has been resolved
* [803bd5a] control: Bump Standards-Version to 4.6.0
- No changes needed
Date: Mon, 24 Jan 2022 08:49:08 +0100
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libvirt/8.0.0-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 24 Jan 2022 08:49:08 +0100
Source: libvirt
Architecture: source
Version: 8.0.0-1ubuntu1
Distribution: jammy
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Closes: 991773 994061 997108
Launchpad-Bugs-Fixed: 1588576 1946869 1959054
Changes:
libvirt (8.0.0-1ubuntu1) jammy; urgency=medium
.
* Merge 8.0.0 from Debian unstable (LP: #1946869)
Among many other fixes and improvements this fixes ceph usage
in regard to apparmor (LP: #1588576)
Remaining changes:
- libvirt-uri.sh: Automatically switch default libvirt URI for users
via user profile (xen URI on dom0, qemu:///system otherwise)
[contains lintian fixups of 6.6.0-1ubuntu1]
- Disable libssh2 support (universe dependency)
- d/control: add libzfslinux-dev to build-deps
- d/control: drop libvirt-lxc, vbox and xen drivers to suggest
- d/control: breaks replaces for augeas lenses move in 6.0.0-1
(follows Debian, droppable >22.04)
- debian/patches/ubuntu/ovmf_paths.patch: adjust paths to secboot.fd UEFI
Secure Boot enabled variants of the OVMF firmware and variable store for
the paths where we ship these files in Ubuntu.
- Set qemu-group to kvm (for compat with older ubuntu)
- Additional apport package-hook
- Autostart default bridged network (As upstream does, but not Debian).
In addition to just enabling it our solution provides:
+ do not autostart if subnet is already taken (e.g. in guests).
+ iterate some alternative subnets before giving up
- d/p/ubuntu/Allow-libvirt-group-to-access-the-socket.patch: This is
the group based access to libvirt functions as it was used in Ubuntu
for quite a long time.
+ d/p/ubuntu/daemon-augeas-fix-expected.patch fix some related tests
due to the group access change.
+ d/libvirt-daemon-system.postinst: add users in sudo to the libvirt
group.
- d/p/u/parallel-shutdown.patch: set parallel shutdown by default.
- Update README.Debian with Ubuntu changes
- d/p/ubuntu/ubuntu_machine_type.patch: accept ubuntu types as pci440fx
- fix autopkgtests (LP 1899180)
+ d/t/control, d/t/smoke-qemu-session: fixup smoke-qemu-session by making
vmlinuz available and accessible (Debian bug 848314)
+ d/t/control: fix smoke-qemu-session by ensuring the service will run
installing libvirt-daemon-system
+ d/t/smoke-lxc: fix smoke-lxc by ignoring potential issues on destroy as
long as the following undefine succeeds
+ d/t/smoke-lxc: use systemd instead of sysV to restart the service
+ d/t/control, d/t/smoke-lxc: retry service restart and skip test if
failing; This was flaky on some release/architectures
+ d/t/smoke-lxc: retry check_domain being flaky on arm64
- dnsmasq related enhancements
[now contains dnsmasq-as-priv-user of 6.6.0-1ubuntu1]
+ run dnsmasq as libvirt-dnsmasq (LP: 1743718)
+ d/libvirt-daemon-system.postinst: add libvirt-dnsmasq user and group
+ d/libvirt-daemon-system.postrm: remove libvirt-dnsmasq user and group
on purge
+ d/p/ubuntu/dnsmasq-as-priv-user: write dnsmasq config with user
libvirt-dnsmasq and adapt the self tests to expect that config
+ d/libvirt-daemon-system.postinst: fix old libvirt-dnsmasq users group
+ Add dnsmasq configuration to work with system wide dnsmasq-base
- d/p/ubuntu/set-default-machine-to-ubuntu.patch: to select default
machine type correctly with newer qemu/libvirt
- d/p/ubuntu/lp-1861125-ubuntu-models: recognize Ubuntu models for
(LP 1861125) fixups
- d/p/ubuntu/wait-for-qemu-kvm.patch - avoid hangs on startup (LP 1887592)
- Apparmor Delta that is Ubuntu specific or yet to be upstreamed
split into logical pieces. File names in debian/patches/ubuntu-aa/:
+ 0020-virt-aa-helper-ubuntu-storage-paths.patch:
apparmor, virt-aa-helper: Allow various storage pools and image
locations
+ 0029-appmor-libvirt-qemu-Add-9p-support.patch: appmor,
libvirt-qemu: Add 9p support
+ 0031-virt-aa-helper-Ask-for-no-deny-rule-for-readonly-dis.patch:
virt-aa-helper: Ask for no deny rule for readonly disk (renamed and
reworded, was virt-aa-helper-no-explicity-deny-for-basefiles.patch)
+ 0032-apparmor-libvirt-qemu-Allow-reading-charm-specific-c.patch:
apparmor, libvirt-qemu: Allow reading charm-specific ceph config
+ 0033-UBUNTU-only-apparmor-for-kvm.powerpc-LP-1680384.patch: allow
commands executed by ubuntu only kvm wrapper on ppc64el
(LP 1686621 LP 1680384 LP 1784023)
+ 0034-apparmor-virt-aa-helper-access-for-snapped-nova.patch:
apparmor, virt-aa-helper: access for snapped nova
+ lp-1815910-allow-vhost-net.patch: avoid apparmor issues
with vhost-net/vhost-vsock/vhost-scsi hotplug (LP: 1815910)
- libvirt should not use user/group tss for swtpm (LP 1948880)
+ d/libvirt-daemon-system.postinst: own swtpm logdir by user swtpm
+ d/p/u/swtpm-by-swtpm-user.patch: change default spawned swtpm processes
to user swtpm
+ d/p/u/swtpm-by-swtpm-user.patch: adapt expected self test results
+ d/control: suggest swtpm-tools
+ d/libvirt-daemon-system.postinst: create user/group swtpm if not present
due to swtpm-tools (LP 1951975)
* Dropped changes [in Debian now]:
- d/control: add libtirpc for rpc.h with glibc >=2.32
- various patch refreshes and .symbols updated from 7.0.0 - 7.6.0
- debian/rules: disable the netcf backend. (LP: 1764314)
- d/libvirt-clients.install: completions no more are symlinked to vsh
- d/rules: disable the now auto-built vstorage backend
- not-installed: split daemon man pages are no yet installed
- d/rules: disable the new Cloud Hypervisor driver
- d/rules: enable more features explicitly
- d/rules: use apparmor_profiles=enabled instead of the now rejected
value true
- rules: Explicitly set remote_default_mode
- rules: Rework installation of AppArmor-related files
- d/control, d/rules: enable libssh (LP 1939416)
* Dropped changes [upstream now]:
- d/p/u/lp-1913266-*: add vsock options to be usable with s390x secure
execution (LP 1913266)
- d/p/u/lp-1927519-virt-aa-helper-Purge-profile-if-corrupted.patch: avoid
issues due to corrupted apparmor profiles (LP 1927519)
- Toleration for qemu >=6.0 handling of props (LP 1932264)
- Persistent vfio-ccw device assignments (LP 1887929)
* Dropped changes [no more needed]:
- remove Debian debian/Revert-m4-virt-xdr-rewrite-XDR-check.patch as with
recent ubuntu glibx 2.32 it is breaking the build
- update d/p/debian/Revert-m4-virt-xdr-rewrite-XDR-check.patch: to detect
XDR functions from glibc
- d/t/smoke-lxc: skip before systemd 248 due to a known bug (LP 1934966)
- d/t/smoke-lxc: skip if cgroup v1&v2 are present (systemd 248
was not enough)
* Added changes:
- d/p/u/dnsmasq-as-priv-user: update for 8.0.0
- Add recent upstream fixes to 8.0
+ d/p/backport/qemuDomainSetupDisk-Initialize-targetPaths.patch to work
in containers like LXD (without guest start would hang).
+ d/p/backport/util-fix-syslog-facility-value.patch to ensure logs
get passed to syslog/journal correctly.
- d/rules, d/libvirt-daemon-system.{postinst,postrm}: never stop
libvirt system services and sockets (LP: #1959054). This allows
to unblock some transitions that wait on libvirt now; The intention is
that it is fixed in debhelper and libvirt reverts this change before
jammy release.
.
libvirt (8.0.0-1) unstable; urgency=medium
.
* [a26cc81] New upstream version 8.0.0
* [9f18b0d] patches: Drop backports
* [7ea1214] patches: Add backport/qemu-fix-inactive-snapshot-revert.patch
* [9454a95] patches: Add backport/Revert-report-error-when-[...].patch
* [ec3b590] control: Drop dependency on radvd
- libvirt no longer uses it
* [19eb356] control: Drop build dependency on parted
- The parted binary is only needed at runtime
.
libvirt (7.10.0-3) unstable; urgency=medium
.
* [16b245a] control: Improve multiarch support
- Mark libvirt-{daemon-system-systemd,doc} as Multi-Arch: foreign
- Mark libvirt-wireshark as Multi-Arch: same
- Mark libvirt-daemon-driver-* as Multi-Arch: no
* [ef19843] control: Move Recommends on LVM to -daemon package
- It's used by the storage driver, not the client library
* [a10f605] control: Update Uploaders field
- Add Andrea Bolognani, remove Laurent Léonard
* [c74efcb] control: Drop obsolete version constraints
- They're satisfied on our expected backport targets (Debian 11
and Ubuntu 20.04)
* [1ad0b3a] control: Drop all Pre-Depends
- They're not necessary on our expected backport targets
.
libvirt (7.10.0-2) unstable; urgency=medium
.
* Team upload
.
[ Andrea Bolognani ]
* [26f63eb] control: Build-Depend on python3:any to fix cross-building
* [b14268f] patches: Backport fix for CVE-2021-4147
.
[ Joachim Falk ]
* [9ae5f14] Fix reboot command for LXC containers (Closes: #991773)
.
libvirt (7.10.0-1) unstable; urgency=medium
.
* Team upload
.
* [0817e92] New upstream version 7.10.0
* [2d2fb25] patches: Drop backported patches
.
libvirt (7.9.0-1) unstable; urgency=medium
.
* Team upload
.
* [2c54c68] New upstream version 7.9.0
- Closes: #994061
- Fixes FTBFS (Closes: #997108)
* [6ca05a9] patches: Update ZFS enablement patches
- Replace the Debian-specific patch
debian/Set-defaults-for-zfs-tools.patch
with backported upstream patches
backport/meson-Enable-ZFS-storage-backend-even-more-often.patch
backport/meson-Stop-looking-up-ZFS-programs-at-build-time.patch
* [32a1e7b] patches: Add backport/wireshark-Switch-to-tvb_bytes_to_str.patch
- Needed to build against Wireshark 3.6.0
* [30fdaae] libvirt-daemon-system: Make QEMU cache directory root-owned
- Recent changes in libvirt make it possible to be more strict
* [8c2f99b] tests: No longer skip smoke-lxc with both cgroups v1&v2 present
- The bug that made this workaround necessary has been resolved
* [803bd5a] control: Bump Standards-Version to 4.6.0
- No changes needed
Checksums-Sha1:
c3bf6c56d056cc7c8542777e643e09c81cfdf70f 5331 libvirt_8.0.0-1ubuntu1.dsc
e440412e9b45d7e24f0ef492d8edf5cf2cbd3f4c 8860124 libvirt_8.0.0.orig.tar.xz
2fecefff06beaa3b9a64ee99c34c99bf6261da97 146216 libvirt_8.0.0-1ubuntu1.debian.tar.xz
e874772b9a9443dc081d88dee87c3282c250dd11 18299 libvirt_8.0.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
bb3b822ef805d37b0032cdff7a8e480aa062b445051d93e33c8973257cbf1f99 5331 libvirt_8.0.0-1ubuntu1.dsc
51e6e8ff04bafe96d7e314b213dcd41fb1163d9b4f0f75cdab01e663728f4cf6 8860124 libvirt_8.0.0.orig.tar.xz
f804b91437d9b4c62f1bee7b3a3f446dde914415becf1fb3f8e4cb0937c8b7f2 146216 libvirt_8.0.0-1ubuntu1.debian.tar.xz
14d96ff0870af622c2e019a3d9a49e27377db608108cfcd0bfe252bc5244bced 18299 libvirt_8.0.0-1ubuntu1_source.buildinfo
Files:
93fb1c73fbfda507bef127021670e962 5331 libs optional libvirt_8.0.0-1ubuntu1.dsc
77b9a8fb57ee8000ea9c4d7c4a5fb2ac 8860124 libs optional libvirt_8.0.0.orig.tar.xz
60a4e69e66109a6d1fc290c82e28782c 146216 libs optional libvirt_8.0.0-1ubuntu1.debian.tar.xz
84303e8b7daf9097089a37aacfadaebb 18299 libs optional libvirt_8.0.0-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>
Vcs-Git: https://git.launchpad.net/~paelzer/ubuntu/+source/libvirt
Vcs-Git-Commit: 1e60cc9411687028e16a0ac7a80bc5a9a1d91633
Vcs-Git-Ref: refs/heads/merge-8.0-jammy
More information about the jammy-changes
mailing list