[ubuntu/zesty-proposed] libvirt 2.5.0-3ubuntu1 (Accepted)

Christian Ehrhardt christian.ehrhardt at canonical.com
Wed Jan 4 14:11:15 UTC 2017


libvirt (2.5.0-3ubuntu1) zesty; urgency=medium

  * Merged with Debian unstable
    - this picks up a fix for migrations using NFS mounts (LP: #1637601).
  * Remaining changes:
    - Disable sheepdog (universe dependency)
    - Disable libssh2 support (universe dependency)
    - Disable firewalld support (universe dependency)
    - Disable selinux
    - Enable esx support
      - Add build-dep to libcurl4-gnutls-dev (required for esx)
    - Set qemu-group to kvm (for compat with older ubuntu)
    - Added changes to use the upstream apparmor profiles with added
      delta (configurable via apparmor profiles version).
      * d/p/u/000[1-6]-apparmor-*
    - Regularly clear AppArmor profiles for vms that no longer exist
    - Fix name resolution calls from virt-aa-helper profile (LP 1546674).
    - Add missing apparmor rule for debug-threads feature (LP 1615550).
    - Add new block device types to virt-aa-helpers profile (LP 1641618)
    - Additional apport package-hook
    - d/rules: debhelper start virtlogd.socket
    - Add sysvinit script for virtlockd
    - Additional debian/bug-presubj
    - Modifications to adapt for our delayed switch away from libvirt-bin (can
      be dropped after 18.04).
      - d/p/ubuntu/libvirtd-service-add-bin-alias.patch: alias to old
        libvirt-bin name.
      - d/p/ubuntu/libvirtd-init-add-bin-alias.patch: provides for the old
        libvirt-bin name.
    - Wait on socket in sysvinit script
    - Backwards compatible handling of groups (can be dropped after 18.04).
    - config details and autostart of default bridged network. Creating that is
      now the default in general, yet our solution provides the following on
      top as of today:
      - nat only on some ports <port start='1024' end='65535'/>
      - autostart the default network by default
      - do not autostart if 192.168.122.0 is already taken (e.g. in containers)
    - d/p/ubuntu/Allow-libvirt-group-to-access-the-socket.patch: This is
      the group based access to libvirt functions as it was used in Ubuntu
      for quite long.
      - d/p/ubuntu/daemon-augeas-fix-expected.patch fix some related tests
        due to the group access change.
    - d/p/ubuntu/dnsmasq-as-priv-user: configuration to run as extra user
      - d/p/ubuntu/disable-network-test.patch: disable test failing due to
        dnsmasq changes.
    - ubuntu/parallel-shutdown.patch: set parallel shutdown by default.
    - d/p/ubuntu/enable-kvm-spice.patch: compat with older Ubuntu qemu/kvm
      which provided a separate kvm-spice.
    - d/p/ubuntu/storage-default-permission-mode-to-0711: safer default perms
      for storage dirs like /var/lib/libvirt/images.
    - d/p/ubuntu/storage-disable-gluster-test: gluster not enabled, skip test
    - d/p/ubuntu/9031-enable-lxc-apparmor: enable apparmor confinement of
      containers by default.
    - d/p/ubuntu/9032-lxc-allow-no-security-driver: allow empty sec driver for
      libvirt-lxc.
    - d/p/ubuntu/ubuntu_machine_type.patch: accept ubuntu types as pci440fx
    - d/p/ubuntu/ubuntu-libxl-qemu-path.patch: Set common qemu path to match
      Debian/Ubuntu Xen packaging.
    - d/p/ubuntu/ubuntu-libxl-hvmloader-path.patch: Fallback for libxl
      xen paths (LP 1459603)
    - d/p/ubuntu/ubuntu-libxl-Fix-up-VRAM-to-minimum-requirements.patch: auto
      set VRAM to minimum requirements
    - d/p/ubuntu/libxl-no-dm-check.patch: Stop calling emulator to identify
      device-model
    - d/p/ubuntu/xen-default-uri.patch: set default URI on xen hosts
    - fixup tests to match packaging of Xen (mostly different paths)
      - d/p/ubuntu/libxl-fix-test-data.patch
      - d/p/ubuntu/fix-xen-xml-in-tests.patch
    - d/p/ubuntu/Debianize-virtlogd-service.patch: Adapt config file location
      for Debian based systems.
    - d/p/ubuntu/Debianize-virtlockd-init.patch: Fix default config path in
      virtlockd.init for Debian based systems.
    - d/p/ubuntu/9034-complete-9p-support: virt-aa-helper: add l to 9p file
      options.
    - d/p/ubuntu/parallel-shutdown.patch: shut guests down in parallel
    - d/p/ubuntu/virt-aa-helper-no-explicity-deny-for-basefiles.patch: ask for
      no deny rule for readonly disk elements.
    - d/p/ubuntu/virt-aa-helper-add-guest-agent-rule.patch: add virt-aa-helper
      rule allowing all private channel access
    - d/p/ubuntu/libvirtd-service-nolimit.patch: remove proc/file/task limits
      to support huge systems.
    - d/p/ubuntu/virt-aa-helper-apparmor-allow-usr-share-AAVMF-too.patch:
      virt-aa-helper to allow access to aarch64 UEFI images.
    - d/p/ubuntu/libvirtd-service-set-notifyaccess.patch: set NotifyAccess=all
      in libvirtd.service (LP 1574566).
    - d/p/ubuntu/apibuild-skip-libvirt-common.h: drop libvirt-common.h from
      included_files to avoid build failures due to duplicate definitions.
    - Update README.Debian with Ubuntu changes
    - Convert libvirt0, libnss_libvirt and libvirt-dev to multi-arch.
    - Add libxl log directory
    - Enable some additional features on ppc64el and s390x (for arch parity)
      - systemtap, zfs, numa and numad on s390x.
      - systemtap on ppc64el.
  * Dropped Changes:
    - Build depend on gnutls >= 3.5.6-4ubuntu2 (no > 3.5.6 && < 3.5.6-4ubuntu2
      in any release left)
    - Fix parsing non apparmor labels LP:#1633207 (upstream in libvirt 2.5)
    - Ignore newlines in guest list (upstream in libvirt 2.4)
    - Avoid migration postcopy issues by ensuring valid commands (upstream in
      libvirt 2.5)
    - Enable numa for arm64 (in Debian)
    - Fix libvirt start failure when security_driver set (upstream in libvirt
      2.2)
    - virt-aa-helper: Fix upstream implementation of no explicit deny rule
      (upstream in libvirt 2.3)
    - Some useless whitespace damage and no more applicable comments
    - The following patches were part of the Delta but not the series file.
      So they had no effect and can be dropped now:
      - ubuntu/9036-util-prepare-uri-for-libxml2-2.9.2.patch
      - ubuntu/Disable-failing-virnetsockettest.patch
      - ubuntu/dont-include-non-migrateable-features-in-host-model
      - ubuntu/upstream-libxl-Allow-libxl-to-find-pygrub-binary.patch
    - See the 2.1.0-1ubuntu15 and 2.1.0-1ubuntu16 changelogs for related
      pre-merge drops
    - Add build-dep to libxml-libxml-perl (no more needed)
    - apparmor double add /usr/bin/qemu-sparc64 rmix (no function anymore)
    - apparmor /usr/{lib,lib64}/qemu/block-*.so (in Debian)
    - apparmor moving /bin/bash rmix in profile (drop non functional delta)
    - follow Debians style of block-*.so rules for block-extra (drop our
      functionally equivalent adding/moving of rules)
    - follow Debians style of lib/lib64 rules (drop a lot of our functional
      functionally equivalent adding/moving of rules)
    - accept Upstream style to handle libvirt_iohelper and libvirt_parthelper
      (stop removing the two rules without an associated bug to reduce delta)
    - Disabling dep8 smoke tests
  * Added Changes:
    - d/t/control, d/t/smoke-qemu-session: fixup smoke-qemu-session by making
      vmlinuz available and accessible (in discussed with Debian in debbug
      848314)
    - d/t/control, d/t/smoke-lxc: fix up lxc smoke test (in discussed with
      Debian in debbug 848317)

Date: Tue, 03 Jan 2017 13:58:30 +0100
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libvirt/2.5.0-3ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 03 Jan 2017 13:58:30 +0100
Source: libvirt
Binary: libvirt-bin libvirt-clients libvirt-daemon libvirt-daemon-system libvirt0 libvirt-doc libvirt-dev libvirt-sanlock libnss-libvirt
Architecture: source
Version: 2.5.0-3ubuntu1
Distribution: zesty
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Description:
 libnss-libvirt - nss plugin providing IP add ress resolution for virtual machines
 libvirt-bin - programs for the libvirt library
 libvirt-clients - Programs for the libvirt library
 libvirt-daemon - Virtualization daemon
 libvirt-daemon-system - Libvirt daemon configuration files
 libvirt-dev - development files for the libvirt library
 libvirt-doc - documentation for the libvirt library
 libvirt-sanlock - Sanlock plugin for virtlockd
 libvirt0   - library for interfacing with different virtualization systems
Launchpad-Bugs-Fixed: 1637601
Changes:
 libvirt (2.5.0-3ubuntu1) zesty; urgency=medium
 .
   * Merged with Debian unstable
     - this picks up a fix for migrations using NFS mounts (LP: #1637601).
   * Remaining changes:
     - Disable sheepdog (universe dependency)
     - Disable libssh2 support (universe dependency)
     - Disable firewalld support (universe dependency)
     - Disable selinux
     - Enable esx support
       - Add build-dep to libcurl4-gnutls-dev (required for esx)
     - Set qemu-group to kvm (for compat with older ubuntu)
     - Added changes to use the upstream apparmor profiles with added
       delta (configurable via apparmor profiles version).
       * d/p/u/000[1-6]-apparmor-*
     - Regularly clear AppArmor profiles for vms that no longer exist
     - Fix name resolution calls from virt-aa-helper profile (LP 1546674).
     - Add missing apparmor rule for debug-threads feature (LP 1615550).
     - Add new block device types to virt-aa-helpers profile (LP 1641618)
     - Additional apport package-hook
     - d/rules: debhelper start virtlogd.socket
     - Add sysvinit script for virtlockd
     - Additional debian/bug-presubj
     - Modifications to adapt for our delayed switch away from libvirt-bin (can
       be dropped after 18.04).
       - d/p/ubuntu/libvirtd-service-add-bin-alias.patch: alias to old
         libvirt-bin name.
       - d/p/ubuntu/libvirtd-init-add-bin-alias.patch: provides for the old
         libvirt-bin name.
     - Wait on socket in sysvinit script
     - Backwards compatible handling of groups (can be dropped after 18.04).
     - config details and autostart of default bridged network. Creating that is
       now the default in general, yet our solution provides the following on
       top as of today:
       - nat only on some ports <port start='1024' end='65535'/>
       - autostart the default network by default
       - do not autostart if 192.168.122.0 is already taken (e.g. in containers)
     - d/p/ubuntu/Allow-libvirt-group-to-access-the-socket.patch: This is
       the group based access to libvirt functions as it was used in Ubuntu
       for quite long.
       - d/p/ubuntu/daemon-augeas-fix-expected.patch fix some related tests
         due to the group access change.
     - d/p/ubuntu/dnsmasq-as-priv-user: configuration to run as extra user
       - d/p/ubuntu/disable-network-test.patch: disable test failing due to
         dnsmasq changes.
     - ubuntu/parallel-shutdown.patch: set parallel shutdown by default.
     - d/p/ubuntu/enable-kvm-spice.patch: compat with older Ubuntu qemu/kvm
       which provided a separate kvm-spice.
     - d/p/ubuntu/storage-default-permission-mode-to-0711: safer default perms
       for storage dirs like /var/lib/libvirt/images.
     - d/p/ubuntu/storage-disable-gluster-test: gluster not enabled, skip test
     - d/p/ubuntu/9031-enable-lxc-apparmor: enable apparmor confinement of
       containers by default.
     - d/p/ubuntu/9032-lxc-allow-no-security-driver: allow empty sec driver for
       libvirt-lxc.
     - d/p/ubuntu/ubuntu_machine_type.patch: accept ubuntu types as pci440fx
     - d/p/ubuntu/ubuntu-libxl-qemu-path.patch: Set common qemu path to match
       Debian/Ubuntu Xen packaging.
     - d/p/ubuntu/ubuntu-libxl-hvmloader-path.patch: Fallback for libxl
       xen paths (LP 1459603)
     - d/p/ubuntu/ubuntu-libxl-Fix-up-VRAM-to-minimum-requirements.patch: auto
       set VRAM to minimum requirements
     - d/p/ubuntu/libxl-no-dm-check.patch: Stop calling emulator to identify
       device-model
     - d/p/ubuntu/xen-default-uri.patch: set default URI on xen hosts
     - fixup tests to match packaging of Xen (mostly different paths)
       - d/p/ubuntu/libxl-fix-test-data.patch
       - d/p/ubuntu/fix-xen-xml-in-tests.patch
     - d/p/ubuntu/Debianize-virtlogd-service.patch: Adapt config file location
       for Debian based systems.
     - d/p/ubuntu/Debianize-virtlockd-init.patch: Fix default config path in
       virtlockd.init for Debian based systems.
     - d/p/ubuntu/9034-complete-9p-support: virt-aa-helper: add l to 9p file
       options.
     - d/p/ubuntu/parallel-shutdown.patch: shut guests down in parallel
     - d/p/ubuntu/virt-aa-helper-no-explicity-deny-for-basefiles.patch: ask for
       no deny rule for readonly disk elements.
     - d/p/ubuntu/virt-aa-helper-add-guest-agent-rule.patch: add virt-aa-helper
       rule allowing all private channel access
     - d/p/ubuntu/libvirtd-service-nolimit.patch: remove proc/file/task limits
       to support huge systems.
     - d/p/ubuntu/virt-aa-helper-apparmor-allow-usr-share-AAVMF-too.patch:
       virt-aa-helper to allow access to aarch64 UEFI images.
     - d/p/ubuntu/libvirtd-service-set-notifyaccess.patch: set NotifyAccess=all
       in libvirtd.service (LP 1574566).
     - d/p/ubuntu/apibuild-skip-libvirt-common.h: drop libvirt-common.h from
       included_files to avoid build failures due to duplicate definitions.
     - Update README.Debian with Ubuntu changes
     - Convert libvirt0, libnss_libvirt and libvirt-dev to multi-arch.
     - Add libxl log directory
     - Enable some additional features on ppc64el and s390x (for arch parity)
       - systemtap, zfs, numa and numad on s390x.
       - systemtap on ppc64el.
   * Dropped Changes:
     - Build depend on gnutls >= 3.5.6-4ubuntu2 (no > 3.5.6 && < 3.5.6-4ubuntu2
       in any release left)
     - Fix parsing non apparmor labels LP:#1633207 (upstream in libvirt 2.5)
     - Ignore newlines in guest list (upstream in libvirt 2.4)
     - Avoid migration postcopy issues by ensuring valid commands (upstream in
       libvirt 2.5)
     - Enable numa for arm64 (in Debian)
     - Fix libvirt start failure when security_driver set (upstream in libvirt
       2.2)
     - virt-aa-helper: Fix upstream implementation of no explicit deny rule
       (upstream in libvirt 2.3)
     - Some useless whitespace damage and no more applicable comments
     - The following patches were part of the Delta but not the series file.
       So they had no effect and can be dropped now:
       - ubuntu/9036-util-prepare-uri-for-libxml2-2.9.2.patch
       - ubuntu/Disable-failing-virnetsockettest.patch
       - ubuntu/dont-include-non-migrateable-features-in-host-model
       - ubuntu/upstream-libxl-Allow-libxl-to-find-pygrub-binary.patch
     - See the 2.1.0-1ubuntu15 and 2.1.0-1ubuntu16 changelogs for related
       pre-merge drops
     - Add build-dep to libxml-libxml-perl (no more needed)
     - apparmor double add /usr/bin/qemu-sparc64 rmix (no function anymore)
     - apparmor /usr/{lib,lib64}/qemu/block-*.so (in Debian)
     - apparmor moving /bin/bash rmix in profile (drop non functional delta)
     - follow Debians style of block-*.so rules for block-extra (drop our
       functionally equivalent adding/moving of rules)
     - follow Debians style of lib/lib64 rules (drop a lot of our functional
       functionally equivalent adding/moving of rules)
     - accept Upstream style to handle libvirt_iohelper and libvirt_parthelper
       (stop removing the two rules without an associated bug to reduce delta)
     - Disabling dep8 smoke tests
   * Added Changes:
     - d/t/control, d/t/smoke-qemu-session: fixup smoke-qemu-session by making
       vmlinuz available and accessible (in discussed with Debian in debbug
       848314)
     - d/t/control, d/t/smoke-lxc: fix up lxc smoke test (in discussed with
       Debian in debbug 848317)
Checksums-Sha1:
 0cb3af3f6115f7bf1835bc4f8298bcf20056569e 4132 libvirt_2.5.0-3ubuntu1.dsc
 048853b984a6d4ffc2da3a9d001f0e8a3b4d90ff 13638636 libvirt_2.5.0.orig.tar.xz
 5ddb155e2c981402d48389cce6b50ba49966665b 121644 libvirt_2.5.0-3ubuntu1.debian.tar.xz
Checksums-Sha256:
 d65ac23387c6e144024a01028aeba12b1f62a1c2ea9ebf2b242f9934e70627ef 4132 libvirt_2.5.0-3ubuntu1.dsc
 819dffefbfd6ae95dfe1b28cfdee15ebcf9f91bbd732157488a57705bf81cb1e 13638636 libvirt_2.5.0.orig.tar.xz
 2046f47994bb93d3937011b5e8cb74273ea6b59cd63c108719f023b57e8a2d84 121644 libvirt_2.5.0-3ubuntu1.debian.tar.xz
Files:
 2bbedd86f67be769548635611761efc5 4132 libs optional libvirt_2.5.0-3ubuntu1.dsc
 001af1ca2545971c6b46628678fd4afa 13638636 libs optional libvirt_2.5.0.orig.tar.xz
 20d10b1e909b8a1a0e49957a9f474988 121644 libs optional libvirt_2.5.0-3ubuntu1.debian.tar.xz
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=BAlS
-----END PGP SIGNATURE-----


More information about the Zesty-changes mailing list