From mboxrd@z Thu Jan  1 00:00:00 1970
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: [PATCH] libvirt: Update version to 8.10.0
Date: Mon, 26 Dec 2022 08:38:19 +0000
Message-ID: <bdc880b0-4d86-c3ab-3b83-2d301e17af23@ipfire.org>
In-Reply-To: <20221209214802.3317143-1-adolf.belka@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============6631440237344205487=="
List-Id: <development.lists.ipfire.org>

--===============6631440237344205487==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Reviewed-by: Peter M=C3=BCller <peter.mueller(a)ipfire.org>

> - Update from version 8.9.0 to 8.10.0
> - Update of rootfile
> - Changelog
>     v8.10.0 (2022-12-01)
> 	**New features**
> 		  * Tool for validating SEV firmware boot measurement of QEMU VMs
> 		     The ``virt-qemu-sev-validate`` program will compare a reported SEV/S=
EV-ES
> 		     domain launch measurement, to a computed launch measurement. This
> 		     determines whether the domain has been tampered with during launch.
> 		  * Support for SGX EPC (enclave page cache)
> 		     Users can add a ``<memory model=3D'sgx-epc'>`` device to lauch a VM =
with
> 		     ``Intel Software Guard Extensions``.
> 		  * Support migration of vTPM state of QEMU vms on shared storage
> 		     Pass ``--migration`` option if appropriate in order for ``swtpm`` to
> 		     properly migrate on shared storage.
> 	**Improvements**
> 		  * Mark close callback (un-)register API as high priority
> 		     High priority APIs use a separate thread pool thus can help in elimi=
nating
> 		     problems with stuck VMs. Marking the close callback API as high prio=
rity
> 		     allows ``virsh`` to properly connect to the daemon in case the normal
> 		     priority workers are stuck allowing other high priority API usage.
> 		  * Updated x86 CPU features
> 		     The following features for the x86 platform were added:
> 		      ``v-vmsave-vmload``, ``vgif``, ``avx512-vp2intersect``, ``avx512-fp=
16``,
> 		      ``serialize``, ``tsx-ldtrk``, ``arch-lbr``, ``xfd``, ``intel-pt-lip=
``,
> 		      ``avic``, ``sgx``, ``sgxlc``, ``sgx-exinfo``, ``sgx1``, ``sgx2``,
> 		      ``sgx-debug``, ``sgx-mode64``, ``sgx-provisionkey``, ``sgx-tokenkey=
``,
> 		      ``sgx-kss``, ``bus-lock-detect``, ``pks``, ``amx``.
> 		  * Add support for ``hv-avic`` Hyper-V enlightenment
> 		     ``qemu-6.2`` introduced support for the ``hv-avic`` enlightenment wh=
ich
> 		     allows to use Hyper-V SynIC with hardware APICv/AVIC enabled.
> 		  * qemu: Run memory preallocation with numa-pinned threads
> 		     Run the thread allocating memory in the proper NUMA node to reduce o=
verhead.
> 		  * RPM packaging changes
> 		    - add optional dependancy of ``libvirt-daemon`` on ``libvirt-client``
> 		       The ``libvirt-guests.`` tool requires the ``virsh`` client to work
> 		       properly, but we don't want to require the installation of the dae=
mon
> 		       if the tool is not used.
> 		    - relax required ``python3-libvirt`` version for ``libvirt-client-qem=
u``
> 		       The ``virt-qemu-qmp-proxy`` tool requires python but doesn't stric=
tly
> 		       need the newest version. Remove the strict versioning requirement =
in
> 		       order to prevent cyclic dependency when building.
> 	**Bug fixes**
> 		  * Skip initialization of ``cache`` capabilities if host doesn't support=
 them
> 		     Hypervisor drivers would fail to initialize on ``aarch64`` hosts with
> 		     following error ::
> 		       virStateInitialize:657 : Initialisation of cloud-hypervisor state =
driver failed: no error
> 		     which prevented the startup of the daemon.
> 		  * Allow incoming connections to guests on routed networks w/firewalld
> 		     A change in handling of implicit rules in ``firewalld 1.0.0`` broke
> 		     incomming connections to VMs when using ``routed`` network. This is =
fixed
> 		     by adding a new ``libvirt-routed`` zone configured to once again all=
ow
> 		     incoming sessions to guests on routed networks.
> 		  * Fix infinite loop in nodedev driver
> 		     Certain udev entries might be of a size that makes libudev emit EINV=
AL
> 		     which caused a busy loop burning CPU. Fix it by ignoring the return =
code.
>=20
> Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
> ---
>  config/rootfiles/packages/libvirt | 10 ++++++----
>  lfs/libvirt                       |  6 +++---
>  2 files changed, 9 insertions(+), 7 deletions(-)
>=20
> diff --git a/config/rootfiles/packages/libvirt b/config/rootfiles/packages/=
libvirt
> index 5682b73c8..8b3819aa5 100644
> --- a/config/rootfiles/packages/libvirt
> +++ b/config/rootfiles/packages/libvirt
> @@ -60,6 +60,7 @@ usr/bin/virt-pki-query-dn
>  usr/bin/virt-pki-validate
>  usr/bin/virt-qemu-qmp-proxy
>  usr/bin/virt-qemu-run
> +usr/bin/virt-qemu-sev-validate
>  usr/bin/virt-ssh-helper
>  usr/bin/virt-xml-validate
>  #usr/include/libvirt
> @@ -84,16 +85,16 @@ usr/bin/virt-xml-validate
>  #usr/lib/libvirt
>  #usr/lib/libvirt-admin.so
>  usr/lib/libvirt-admin.so.0
> -usr/lib/libvirt-admin.so.0.8009.0
> +usr/lib/libvirt-admin.so.0.8010.0
>  #usr/lib/libvirt-lxc.so
>  usr/lib/libvirt-lxc.so.0
> -usr/lib/libvirt-lxc.so.0.8009.0
> +usr/lib/libvirt-lxc.so.0.8010.0
>  #usr/lib/libvirt-qemu.so
>  usr/lib/libvirt-qemu.so.0
> -usr/lib/libvirt-qemu.so.0.8009.0
> +usr/lib/libvirt-qemu.so.0.8010.0
>  #usr/lib/libvirt.so
>  usr/lib/libvirt.so.0
> -usr/lib/libvirt.so.0.8009.0
> +usr/lib/libvirt.so.0.8010.0
>  #usr/lib/libvirt/connection-driver
>  usr/lib/libvirt/connection-driver/libvirt_driver_ch.so
>  usr/lib/libvirt/connection-driver/libvirt_driver_interface.so
> @@ -317,6 +318,7 @@ usr/share/libvirt/schemas/nodedev.rng
>  usr/share/libvirt/schemas/nwfilter.rng
>  usr/share/libvirt/schemas/nwfilter_params.rng
>  usr/share/libvirt/schemas/nwfilterbinding.rng
> +usr/share/libvirt/schemas/privatedata.rng
>  usr/share/libvirt/schemas/secret.rng
>  usr/share/libvirt/schemas/storagecommon.rng
>  usr/share/libvirt/schemas/storagepool.rng
> diff --git a/lfs/libvirt b/lfs/libvirt
> index aa28ef2dc..bb7abbb28 100644
> --- a/lfs/libvirt
> +++ b/lfs/libvirt
> @@ -26,7 +26,7 @@ include Config
> =20
>  SUMMARY	   =3D Server side daemon and supporting files for libvirt
> =20
> -VER        =3D 8.9.0
> +VER        =3D 8.10.0
> =20
>  THISAPP    =3D libvirt-$(VER)
>  DL_FILE    =3D $(THISAPP).tar.xz
> @@ -35,7 +35,7 @@ DIR_APP    =3D $(DIR_SRC)/$(THISAPP)
>  TARGET     =3D $(DIR_INFO)/$(THISAPP)
>  SUP_ARCH   =3D x86_64 aarch64
>  PROG       =3D libvirt
> -PAK_VER    =3D 30
> +PAK_VER    =3D 31
> =20
>  DEPS       =3D ebtables libpciaccess libtirpc libyajl ncat qemu
> =20
> @@ -49,7 +49,7 @@ objects =3D $(DL_FILE)
> =20
>  $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE)
> =20
> -$(DL_FILE)_BLAKE2 =3D 537b6badb6171110e99561613fb1318144991107139401296248=
afb747ae6f9cfafcd17b2292b8d8dcc9188ff4206035ea814efa6c129bae50c0518f61be9b81
> +$(DL_FILE)_BLAKE2 =3D 6c99428dd74ae1e535d0918bb48da0a851b03e9dfc38f96fca06=
0a33b6be6c23c8b4a789695e8cf930536c156c8a893e18753a58c8a827f464b83a61b47c4846
> =20
>  install : $(TARGET)
>  check : $(patsubst %,$(DIR_CHK)/%,$(objects))

--===============6631440237344205487==--