[ubuntu/lunar-proposed] libvirt 9.0.0-1ubuntu1 (Accepted)
Christian Ehrhardt
christian.ehrhardt at canonical.com
Thu Feb 9 12:36:16 UTC 2023
libvirt (9.0.0-1ubuntu1) lunar; urgency=medium
* Merge 9.0.0-1 from Debian testing (LP: #1993412)
Also resolved the ask for a rebuild against recent libxen (LP: #2004163)
Remaining changes:
- libvirt-uri.sh, d/rules: Automatically switch default libvirt URI
for users via user profile (xen URI on dom0, qemu:///system otherwise)
- Disable libssh2 support (universe dependency)
- d/control: add libzfslinux-dev to build-deps
- d/control: drop libvirt-lxc, vbox and xen drivers to suggest
- debian/patches/ubuntu/ovmf_paths.patch: adjust paths to secboot.fd UEFI
Secure Boot enabled variants of the OVMF firmware and variable store for
the paths where we ship these files in Ubuntu.
- Set qemu-group to kvm (for compat with older ubuntu)
- Additional apport package-hook
- Autostart default bridged network (As upstream does, but not Debian).
In addition to just enabling it our solution provides:
+ do not autostart if subnet is already taken (e.g. in guests).
+ iterate some alternative subnets before giving up
- d/p/ubuntu/Allow-libvirt-group-to-access-the-socket.patch: This is
the group based access to libvirt functions as it was used in Ubuntu
for quite a long time.
+ d/p/ubuntu/daemon-augeas-fix-expected.patch fix some related tests
due to the group access change.
+ d/libvirt-daemon-system.postinst: add users in sudo to the libvirt
group.
- Update README.Debian with Ubuntu changes
- d/p/ubuntu/ubuntu_machine_type.patch: accept ubuntu types as pci440fx
- fix autopkgtests (LP 1899180)
+ d/t/control, d/t/smoke-qemu-session: fixup smoke-qemu-session by making
vmlinuz available and accessible (Debian bug 848314)
+ d/t/control: fix smoke-qemu-session by ensuring the service will run
installing libvirt-daemon-system
+ d/t/smoke-lxc: fix smoke-lxc by ignoring potential issues on destroy as
long as the following undefine succeeds
+ d/t/smoke-lxc: use systemd instead of sysV to restart the service
+ d/t/control, d/t/smoke-lxc: retry service restart and skip test if
failing; This was flaky on some release/architectures
+ d/t/smoke-lxc: retry check_domain being flaky on arm64
- dnsmasq related enhancements
+ run dnsmasq as libvirt-dnsmasq (LP: 1743718)
+ d/libvirt-daemon-system.postinst: add libvirt-dnsmasq user and group
+ d/libvirt-daemon-system.postrm: remove libvirt-dnsmasq user and group
on purge
+ d/p/ubuntu/dnsmasq-as-priv-user: write dnsmasq config with user
libvirt-dnsmasq and adapt the self tests to expect that config
+ d/libvirt-daemon-system.postinst: fix old libvirt-dnsmasq users group
+ Add dnsmasq configuration to work with system wide dnsmasq-base
- d/p/ubuntu/set-default-machine-to-ubuntu.patch: to select default
machine type correctly with newer qemu/libvirt
- d/p/ubuntu/lp-1861125-ubuntu-models: recognize Ubuntu models for
(LP 1861125) fixups
- d/p/ubuntu/wait-for-qemu-kvm.patch - avoid hangs on startup (LP 1887592)
- d/libvirt-daemon-system.libvirt-guests.default: shut guests down
in parallel
- Apparmor Delta that is Ubuntu specific or yet to be upstreamed
split into logical pieces. File names in debian/patches/ubuntu-aa/:
+ 0020-virt-aa-helper-ubuntu-storage-paths.patch:
apparmor, virt-aa-helper: Allow various storage pools and image
locations
+ 0029-appmor-libvirt-qemu-Add-9p-support.patch: appmor,
libvirt-qemu: Add 9p support
+ 0031-virt-aa-helper-Ask-for-no-deny-rule-for-readonly-dis.patch:
virt-aa-helper: Ask for no deny rule for readonly disk
+ 0032-apparmor-libvirt-qemu-Allow-reading-charm-specific-c.patch:
apparmor, libvirt-qemu: Allow reading charm-specific ceph config
+ 0033-UBUNTU-only-apparmor-for-kvm.powerpc-LP-1680384.patch: allow
commands executed by ubuntu only kvm wrapper on ppc64el
(LP 1686621 LP 1680384 LP 1784023)
+ 0034-apparmor-virt-aa-helper-access-for-snapped-nova.patch:
apparmor, virt-aa-helper: access for snapped nova
+ lp-1815910-allow-vhost-net.patch: avoid apparmor issues
with vhost-net/vhost-vsock/vhost-scsi hotplug (LP: 1815910)
- libvirt should not use user/group tss for swtpm (LP 1948880)
+ d/libvirt-daemon-system.postinst: own swtpm logdir by user swtpm
+ d/p/u/swtpm-by-swtpm-user.patch: change default spawned swtpm processes
to user swtpm and adapt expected self test result changes triggered by
this
+ d/libvirt-daemon-system.postinst: create user/group swtpm if not present
due to swtpm-tools (LP 1951975)
* Dropped changes [upstream now]:
- d/p/u/tests-Fix-libxlxml2domconfigtest-with-latest-xen.patch: fix FTBFS
with latest libxl [v8.10.0]
- d/p/u/fix-swtpm-pid-duplication.patch: Clean up swtpm pids after a vm
shuts down (LP 1997269) [v8.7.0]
- d/p/u/lp-1993304-apparmor-allow-getattr-on-usb-devices.patch: prevent
apparmor denials on USB forwarding (LP 1993304) [v8.10.0]
- d/p/u/lp-1996176-nodedev-ignore-EINVAL-from-libudev-in-udevEventHandl:
tolerate the impact of too large udev data avoiding a busy loop
(LP 1996176) [v8.10.0]
- d/p/u/lp-1990499-virt-aa-helper-allow-common-riscv64-loader-paths.patch:
easen the use of riscv64 through libvirt (LP 1990499) [v8.9.0]
- d/p/u/lp-1990949-virpcivpd-reduce-errors-in-log-due-to-invalid-VPD.patch:
reduce log noise by invalid VPD data (LP 1990949) [v8.7.0]
* Dropped changes [in Debian now]:
- [f35cf09] d/rules: update path of ci-dashboard removal [8.9.0-1]
- [a54d904] New upstream version 8.6.0 [8.9.0-1]
- patch refreshes and .symbols updated from 8.5.0 -> 8.6.0 [8.9.0-1]
- d/control: suggest swtpm-tools [8.10.0-1]
Date: Wed, 08 Feb 2023 14:54:15 +0100
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libvirt/9.0.0-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 08 Feb 2023 14:54:15 +0100
Source: libvirt
Built-For-Profiles: noudeb
Architecture: source
Version: 9.0.0-1ubuntu1
Distribution: lunar
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Launchpad-Bugs-Fixed: 1993412 2004163
Changes:
libvirt (9.0.0-1ubuntu1) lunar; urgency=medium
.
* Merge 9.0.0-1 from Debian testing (LP: #1993412)
Also resolved the ask for a rebuild against recent libxen (LP: #2004163)
Remaining changes:
- libvirt-uri.sh, d/rules: Automatically switch default libvirt URI
for users via user profile (xen URI on dom0, qemu:///system otherwise)
- Disable libssh2 support (universe dependency)
- d/control: add libzfslinux-dev to build-deps
- d/control: drop libvirt-lxc, vbox and xen drivers to suggest
- debian/patches/ubuntu/ovmf_paths.patch: adjust paths to secboot.fd UEFI
Secure Boot enabled variants of the OVMF firmware and variable store for
the paths where we ship these files in Ubuntu.
- Set qemu-group to kvm (for compat with older ubuntu)
- Additional apport package-hook
- Autostart default bridged network (As upstream does, but not Debian).
In addition to just enabling it our solution provides:
+ do not autostart if subnet is already taken (e.g. in guests).
+ iterate some alternative subnets before giving up
- d/p/ubuntu/Allow-libvirt-group-to-access-the-socket.patch: This is
the group based access to libvirt functions as it was used in Ubuntu
for quite a long time.
+ d/p/ubuntu/daemon-augeas-fix-expected.patch fix some related tests
due to the group access change.
+ d/libvirt-daemon-system.postinst: add users in sudo to the libvirt
group.
- Update README.Debian with Ubuntu changes
- d/p/ubuntu/ubuntu_machine_type.patch: accept ubuntu types as pci440fx
- fix autopkgtests (LP 1899180)
+ d/t/control, d/t/smoke-qemu-session: fixup smoke-qemu-session by making
vmlinuz available and accessible (Debian bug 848314)
+ d/t/control: fix smoke-qemu-session by ensuring the service will run
installing libvirt-daemon-system
+ d/t/smoke-lxc: fix smoke-lxc by ignoring potential issues on destroy as
long as the following undefine succeeds
+ d/t/smoke-lxc: use systemd instead of sysV to restart the service
+ d/t/control, d/t/smoke-lxc: retry service restart and skip test if
failing; This was flaky on some release/architectures
+ d/t/smoke-lxc: retry check_domain being flaky on arm64
- dnsmasq related enhancements
+ run dnsmasq as libvirt-dnsmasq (LP: 1743718)
+ d/libvirt-daemon-system.postinst: add libvirt-dnsmasq user and group
+ d/libvirt-daemon-system.postrm: remove libvirt-dnsmasq user and group
on purge
+ d/p/ubuntu/dnsmasq-as-priv-user: write dnsmasq config with user
libvirt-dnsmasq and adapt the self tests to expect that config
+ d/libvirt-daemon-system.postinst: fix old libvirt-dnsmasq users group
+ Add dnsmasq configuration to work with system wide dnsmasq-base
- d/p/ubuntu/set-default-machine-to-ubuntu.patch: to select default
machine type correctly with newer qemu/libvirt
- d/p/ubuntu/lp-1861125-ubuntu-models: recognize Ubuntu models for
(LP 1861125) fixups
- d/p/ubuntu/wait-for-qemu-kvm.patch - avoid hangs on startup (LP 1887592)
- d/libvirt-daemon-system.libvirt-guests.default: shut guests down
in parallel
- Apparmor Delta that is Ubuntu specific or yet to be upstreamed
split into logical pieces. File names in debian/patches/ubuntu-aa/:
+ 0020-virt-aa-helper-ubuntu-storage-paths.patch:
apparmor, virt-aa-helper: Allow various storage pools and image
locations
+ 0029-appmor-libvirt-qemu-Add-9p-support.patch: appmor,
libvirt-qemu: Add 9p support
+ 0031-virt-aa-helper-Ask-for-no-deny-rule-for-readonly-dis.patch:
virt-aa-helper: Ask for no deny rule for readonly disk
+ 0032-apparmor-libvirt-qemu-Allow-reading-charm-specific-c.patch:
apparmor, libvirt-qemu: Allow reading charm-specific ceph config
+ 0033-UBUNTU-only-apparmor-for-kvm.powerpc-LP-1680384.patch: allow
commands executed by ubuntu only kvm wrapper on ppc64el
(LP 1686621 LP 1680384 LP 1784023)
+ 0034-apparmor-virt-aa-helper-access-for-snapped-nova.patch:
apparmor, virt-aa-helper: access for snapped nova
+ lp-1815910-allow-vhost-net.patch: avoid apparmor issues
with vhost-net/vhost-vsock/vhost-scsi hotplug (LP: 1815910)
- libvirt should not use user/group tss for swtpm (LP 1948880)
+ d/libvirt-daemon-system.postinst: own swtpm logdir by user swtpm
+ d/p/u/swtpm-by-swtpm-user.patch: change default spawned swtpm processes
to user swtpm and adapt expected self test result changes triggered by
this
+ d/libvirt-daemon-system.postinst: create user/group swtpm if not present
due to swtpm-tools (LP 1951975)
* Dropped changes [upstream now]:
- d/p/u/tests-Fix-libxlxml2domconfigtest-with-latest-xen.patch: fix FTBFS
with latest libxl [v8.10.0]
- d/p/u/fix-swtpm-pid-duplication.patch: Clean up swtpm pids after a vm
shuts down (LP 1997269) [v8.7.0]
- d/p/u/lp-1993304-apparmor-allow-getattr-on-usb-devices.patch: prevent
apparmor denials on USB forwarding (LP 1993304) [v8.10.0]
- d/p/u/lp-1996176-nodedev-ignore-EINVAL-from-libudev-in-udevEventHandl:
tolerate the impact of too large udev data avoiding a busy loop
(LP 1996176) [v8.10.0]
- d/p/u/lp-1990499-virt-aa-helper-allow-common-riscv64-loader-paths.patch:
easen the use of riscv64 through libvirt (LP 1990499) [v8.9.0]
- d/p/u/lp-1990949-virpcivpd-reduce-errors-in-log-due-to-invalid-VPD.patch:
reduce log noise by invalid VPD data (LP 1990949) [v8.7.0]
* Dropped changes [in Debian now]:
- [f35cf09] d/rules: update path of ci-dashboard removal [8.9.0-1]
- [a54d904] New upstream version 8.6.0 [8.9.0-1]
- patch refreshes and .symbols updated from 8.5.0 -> 8.6.0 [8.9.0-1]
- d/control: suggest swtpm-tools [8.10.0-1]
Checksums-Sha1:
e68fd4fb12464ef97704f2eb73d9dfcd5ae70dd2 5461 libvirt_9.0.0-1ubuntu1.dsc
43b6ebfd7dc0ff360e75a89b25012f734c76b653 9007104 libvirt_9.0.0.orig.tar.xz
ab3de81884fb1eccb47a102eebfdc31e1af5bf8f 147472 libvirt_9.0.0-1ubuntu1.debian.tar.xz
449780ce977d8552fa82912538918e1850a8f6e7 15971 libvirt_9.0.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
9451d47f860a4df46ff19b177d5fef9424e44ab675cdd4f954fc626196c8fc47 5461 libvirt_9.0.0-1ubuntu1.dsc
deca5cff1b7baac297bca9663907c61f71a47183371dc7ac019c107806d5435a 9007104 libvirt_9.0.0.orig.tar.xz
ff78a1fd974f5446eaef6b3940a30ec6fde90240737e4d12f33ab58d7fe634ec 147472 libvirt_9.0.0-1ubuntu1.debian.tar.xz
cd06b640924671ba15f414b68eaec96e3e7033bb1cf30bbb57f9ed20ad0a4f8b 15971 libvirt_9.0.0-1ubuntu1_source.buildinfo
Files:
14d107e0c708f2c6916c694955028c9f 5461 libs optional libvirt_9.0.0-1ubuntu1.dsc
f0c41217d6dd89ce558465bb3caf6e5c 9007104 libs optional libvirt_9.0.0.orig.tar.xz
9ef31875096349f5e23a34ccb8e0504d 147472 libs optional libvirt_9.0.0-1ubuntu1.debian.tar.xz
3fde923c2db5993873f49147ec25ad36 15971 libs optional libvirt_9.0.0-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>
Vcs-Git: https://git.launchpad.net/~paelzer/ubuntu/+source/libvirt
Vcs-Git-Commit: 4927ebd856af03eafe5c16875c449f4f10910fd1
Vcs-Git-Ref: refs/heads/merge-libvirt-9.0-lunar
More information about the lunar-changes
mailing list