From: "Peter Müller" <peter.mueller@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: [PATCH] libvirt: Update version to 8.10.0
Date: Mon, 26 Dec 2022 08:38:19 +0000 [thread overview]
Message-ID: <bdc880b0-4d86-c3ab-3b83-2d301e17af23@ipfire.org> (raw)
In-Reply-To: <20221209214802.3317143-1-adolf.belka@ipfire.org>
[-- Attachment #1: Type: text/plain, Size: 6625 bytes --]
Reviewed-by: Peter Müller <peter.mueller(a)ipfire.org>
> - Update from version 8.9.0 to 8.10.0
> - Update of rootfile
> - Changelog
> v8.10.0 (2022-12-01)
> **New features**
> * Tool for validating SEV firmware boot measurement of QEMU VMs
> The ``virt-qemu-sev-validate`` program will compare a reported SEV/SEV-ES
> domain launch measurement, to a computed launch measurement. This
> determines whether the domain has been tampered with during launch.
> * Support for SGX EPC (enclave page cache)
> Users can add a ``<memory model='sgx-epc'>`` device to lauch a VM with
> ``Intel Software Guard Extensions``.
> * Support migration of vTPM state of QEMU vms on shared storage
> Pass ``--migration`` option if appropriate in order for ``swtpm`` to
> properly migrate on shared storage.
> **Improvements**
> * Mark close callback (un-)register API as high priority
> High priority APIs use a separate thread pool thus can help in eliminating
> problems with stuck VMs. Marking the close callback API as high priority
> allows ``virsh`` to properly connect to the daemon in case the normal
> priority workers are stuck allowing other high priority API usage.
> * Updated x86 CPU features
> The following features for the x86 platform were added:
> ``v-vmsave-vmload``, ``vgif``, ``avx512-vp2intersect``, ``avx512-fp16``,
> ``serialize``, ``tsx-ldtrk``, ``arch-lbr``, ``xfd``, ``intel-pt-lip``,
> ``avic``, ``sgx``, ``sgxlc``, ``sgx-exinfo``, ``sgx1``, ``sgx2``,
> ``sgx-debug``, ``sgx-mode64``, ``sgx-provisionkey``, ``sgx-tokenkey``,
> ``sgx-kss``, ``bus-lock-detect``, ``pks``, ``amx``.
> * Add support for ``hv-avic`` Hyper-V enlightenment
> ``qemu-6.2`` introduced support for the ``hv-avic`` enlightenment which
> allows to use Hyper-V SynIC with hardware APICv/AVIC enabled.
> * qemu: Run memory preallocation with numa-pinned threads
> Run the thread allocating memory in the proper NUMA node to reduce overhead.
> * RPM packaging changes
> - add optional dependancy of ``libvirt-daemon`` on ``libvirt-client``
> The ``libvirt-guests.`` tool requires the ``virsh`` client to work
> properly, but we don't want to require the installation of the daemon
> if the tool is not used.
> - relax required ``python3-libvirt`` version for ``libvirt-client-qemu``
> The ``virt-qemu-qmp-proxy`` tool requires python but doesn't strictly
> need the newest version. Remove the strict versioning requirement in
> order to prevent cyclic dependency when building.
> **Bug fixes**
> * Skip initialization of ``cache`` capabilities if host doesn't support them
> Hypervisor drivers would fail to initialize on ``aarch64`` hosts with
> following error ::
> virStateInitialize:657 : Initialisation of cloud-hypervisor state driver failed: no error
> which prevented the startup of the daemon.
> * Allow incoming connections to guests on routed networks w/firewalld
> A change in handling of implicit rules in ``firewalld 1.0.0`` broke
> incomming connections to VMs when using ``routed`` network. This is fixed
> by adding a new ``libvirt-routed`` zone configured to once again allow
> incoming sessions to guests on routed networks.
> * Fix infinite loop in nodedev driver
> Certain udev entries might be of a size that makes libudev emit EINVAL
> which caused a busy loop burning CPU. Fix it by ignoring the return code.
>
> Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
> ---
> config/rootfiles/packages/libvirt | 10 ++++++----
> lfs/libvirt | 6 +++---
> 2 files changed, 9 insertions(+), 7 deletions(-)
>
> diff --git a/config/rootfiles/packages/libvirt b/config/rootfiles/packages/libvirt
> index 5682b73c8..8b3819aa5 100644
> --- a/config/rootfiles/packages/libvirt
> +++ b/config/rootfiles/packages/libvirt
> @@ -60,6 +60,7 @@ usr/bin/virt-pki-query-dn
> usr/bin/virt-pki-validate
> usr/bin/virt-qemu-qmp-proxy
> usr/bin/virt-qemu-run
> +usr/bin/virt-qemu-sev-validate
> usr/bin/virt-ssh-helper
> usr/bin/virt-xml-validate
> #usr/include/libvirt
> @@ -84,16 +85,16 @@ usr/bin/virt-xml-validate
> #usr/lib/libvirt
> #usr/lib/libvirt-admin.so
> usr/lib/libvirt-admin.so.0
> -usr/lib/libvirt-admin.so.0.8009.0
> +usr/lib/libvirt-admin.so.0.8010.0
> #usr/lib/libvirt-lxc.so
> usr/lib/libvirt-lxc.so.0
> -usr/lib/libvirt-lxc.so.0.8009.0
> +usr/lib/libvirt-lxc.so.0.8010.0
> #usr/lib/libvirt-qemu.so
> usr/lib/libvirt-qemu.so.0
> -usr/lib/libvirt-qemu.so.0.8009.0
> +usr/lib/libvirt-qemu.so.0.8010.0
> #usr/lib/libvirt.so
> usr/lib/libvirt.so.0
> -usr/lib/libvirt.so.0.8009.0
> +usr/lib/libvirt.so.0.8010.0
> #usr/lib/libvirt/connection-driver
> usr/lib/libvirt/connection-driver/libvirt_driver_ch.so
> usr/lib/libvirt/connection-driver/libvirt_driver_interface.so
> @@ -317,6 +318,7 @@ usr/share/libvirt/schemas/nodedev.rng
> usr/share/libvirt/schemas/nwfilter.rng
> usr/share/libvirt/schemas/nwfilter_params.rng
> usr/share/libvirt/schemas/nwfilterbinding.rng
> +usr/share/libvirt/schemas/privatedata.rng
> usr/share/libvirt/schemas/secret.rng
> usr/share/libvirt/schemas/storagecommon.rng
> usr/share/libvirt/schemas/storagepool.rng
> diff --git a/lfs/libvirt b/lfs/libvirt
> index aa28ef2dc..bb7abbb28 100644
> --- a/lfs/libvirt
> +++ b/lfs/libvirt
> @@ -26,7 +26,7 @@ include Config
>
> SUMMARY = Server side daemon and supporting files for libvirt
>
> -VER = 8.9.0
> +VER = 8.10.0
>
> THISAPP = libvirt-$(VER)
> DL_FILE = $(THISAPP).tar.xz
> @@ -35,7 +35,7 @@ DIR_APP = $(DIR_SRC)/$(THISAPP)
> TARGET = $(DIR_INFO)/$(THISAPP)
> SUP_ARCH = x86_64 aarch64
> PROG = libvirt
> -PAK_VER = 30
> +PAK_VER = 31
>
> DEPS = ebtables libpciaccess libtirpc libyajl ncat qemu
>
> @@ -49,7 +49,7 @@ objects = $(DL_FILE)
>
> $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
>
> -$(DL_FILE)_BLAKE2 = 537b6badb6171110e99561613fb1318144991107139401296248afb747ae6f9cfafcd17b2292b8d8dcc9188ff4206035ea814efa6c129bae50c0518f61be9b81
> +$(DL_FILE)_BLAKE2 = 6c99428dd74ae1e535d0918bb48da0a851b03e9dfc38f96fca060a33b6be6c23c8b4a789695e8cf930536c156c8a893e18753a58c8a827f464b83a61b47c4846
>
> install : $(TARGET)
> check : $(patsubst %,$(DIR_CHK)/%,$(objects))
prev parent reply other threads:[~2022-12-26 8:38 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-12-09 21:48 Adolf Belka
2022-12-26 8:38 ` Peter Müller [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=bdc880b0-4d86-c3ab-3b83-2d301e17af23@ipfire.org \
--to=peter.mueller@ipfire.org \
--cc=development@lists.ipfire.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox