| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
|
|
|
| |
Alpine minirootfs is container-oriented and doesn't include openrc.
The default /sbin/init is a symlink to /sbin/openrc which doesn't
exist, causing a boot loop with:
can't run '/sbin/openrc': No such file or directory
Add init=/bin/sh to the guest kernel cmdline so the guest boots to
a shell prompt instead of failing to find the init system.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Move local wic files to the new expected location files/wic, needed after
the wic migration to a standalone project outside oe-core.
Signed-off-by: Ricardo Salveti <ricardo.salveti@oss.qualcomm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
New version of yq need set CGO_ENABLED="0" when compiling,
and this causes do_compile failure for 32 bits target as below:
-buildmode=pie requires external (cgo) linking, but cgo is not enabled
Tool go's internal linker doesn't support PIE for linux 32 bits target,
so -buildmode=pie requires external (cgo) linking on ARM and x86.
To fix this conflict with CGO_ENABLED="0", remove "-buildmode=pie"
from GOBUILDFLAGS.
Signed-off-by: Li Zhou <li.zhou@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
| |
Incus is only tested and supported on x86-64 and aarch64.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Enable incus VM management with PACKAGECONFIG[vm], which pulls in
qemu, virtiofsd, and ovmf as runtime dependencies.
Usage: PACKAGECONFIG:append:pn-incus = " vm"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
pexpect-based tests covering:
- Daemon startup via systemd
- incus-admin group creation
- incus admin init --minimal
- Alpine container launch, exec, stop, delete
Run: pytest tests/test_incus_runtime.py -v --machine qemux86-64
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Add CONTAINER_PROFILE=incus support so incus can be selected as the
container engine for container-image-host:
require conf/distro/include/container-host-incus.conf
MACHINE = "qemux86-64"
bitbake container-image-host
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Incus is the community fork of LXD, providing a unified experience
for running and managing system containers and virtual machines.
Built on LXC 6.0 with cowsql for distributed cluster state.
Uses go-mod-discovery with hybrid fetch mode for Go module
dependencies.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
Distributed SQLite implementation using the Raft protocol, required
by Incus for cluster database storage.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
C implementation of the Raft consensus protocol, required by cowsql
for distributed SQLite used by Incus.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update the multi-node test fixture to use kernel cmdline parameters
(k3s.role, k3s.node-ip, k3s.node-name) instead of manual IP
configuration and k3s restart. The k3s-role-setup.service handles
networking and role switching automatically on boot.
- Pass kernel_append to K3sRunner for k3s.role and k3s.node-ip
- Remove manual ip-addr-add and k3s stop/restart from fixture
- Use k3s-get-token helper to extract join token on server
- Agent starts k3s agent manually with extracted token (token
not known at boot time)
- Remove _QEMU_ARCH_CONFIG dict (moved to run-qemu-vm.sh script)
All 10 tests pass: 5 single-node + 5 multi-node.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
test_k3s_runtime.py:
- Use run-qemu-vm.sh script for multi-node QEMU launches instead of
inline command building (shared infrastructure with manual testing)
- Resolve script path to absolute for pexpect compatibility
- Accept >= 1 Ready node in single-node test (persistent rootfs state)
README.md:
- Complete rewrite with current build profile workflow
- Document single-node quick start and multi-node cluster setup
- Document kernel cmdline parameters for role-based boot
- Document k3s-get-token helper, packages, and useful commands
- Add automated testing instructions
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
run-qemu-vm.sh:
- Architecture-aware QEMU launcher (x86-64, arm64)
- Finds native QEMU binary and libraries from build sysroots
- Supports KVM auto-detection, socket networking, custom rootfs
- Reusable by both humans and the pytest test suite
run-k3s-multinode.sh:
- Launches server or agent VMs for k3s multi-node testing
- Passes k3s.role, k3s.server, k3s.token, k3s.node-ip, k3s.node-name
via kernel cmdline for automatic guest-side configuration
- Creates rootfs copy for agent VM (can't share ext4 read-write)
- Prints usage instructions when run without arguments
Usage:
Terminal 1: ./scripts/run-k3s-multinode.sh server
Server VM: k3s-get-token
Terminal 2: ./scripts/run-k3s-multinode.sh agent --token <TOKEN>
Server VM: kubectl get nodes
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add infrastructure for booting the same container-image-host image
as either a k3s server or agent, controlled via kernel cmdline
parameters (k3s.role=server|agent).
k3s-role-setup.service / k3s-role-setup.sh:
- Reads k3s.role, k3s.server, k3s.token, k3s.node-name, k3s.node-ip,
k3s.iface from kernel cmdline
- Configures cluster network interface IP via networkd drop-in
- For agent role: masks k3s.service, writes agent environment file,
starts k3s-agent.service
- For server role: masks k3s-agent.service (default)
10-k3s-cluster.network:
- Claims the cluster interface (eth1) via virt_networking bbclass
- Disables DHCP to prevent systemd-networkd from interfering
- Static IP added at boot by role-setup via drop-in
k3s-get-token.sh:
- Helper script to display the server join token
- Waits for token file if k3s is still starting
k3s-agent.service:
- Add EnvironmentFile for /etc/default/k3s-agent (K3S_URL, K3S_TOKEN)
- Add After=k3s-role-setup.service and network-online.target
k3s.service:
- Add After=k3s-role-setup.service
packagegroup-kubernetes.bb:
- k3s-host packagegroup now includes k3s-agent (both roles available)
- Both k3s-host and k3s-node include k3s-net-conf
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
It has been like this for many years now, so clearly not
causing an issue, but we might as well fix it.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix several issues discovered during multi-node testing:
- Find native QEMU binary from build sysroots-components instead of
relying on PATH (qemu-system-native is not in OE build env PATH)
- Set LD_LIBRARY_PATH for native QEMU shared library dependencies
(libSDL2, etc. from native sysroots)
- Add if=virtio to drive parameter so root device appears as /dev/vda
- Add CNI bin dirs to PATH when starting k3s manually (systemd service
has the PATH fix but manual launch does not)
- Wipe server TLS/cred/db state and kubeconfig before restarting with
cluster IPs to avoid stale certificate errors (cert only valid for
DHCP IP, not 192.168.50.1)
- Add --tls-san for cluster IP to server start
- Wipe agent k3s state to avoid "not authorized" from stale tokens
- Remove server-only config.yaml on agent (disable-cloud-controller
flag crashes the agent)
- Set unique --node-name on agent to prevent hostname collision when
both VMs boot from the same image
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Embed system manifests and Helm charts into the k3s binary so that
k3s's deploy.Stage() can extract and process them at runtime with
template variable substitution (e.g., %{SYSTEM_DEFAULT_REGISTRY}%).
Previously, raw manifest files were installed directly to the server
manifests directory, but template variables were not substituted,
causing InvalidImageName errors for system pods. Now manifests are
copied to pkg/deploy/embed/ before Go compilation, matching upstream's
scripts/build workflow.
Traefik ingress controller support is added as a PACKAGECONFIG option
(enabled by default). When enabled, the traefik and traefik-crd Helm
chart tarballs are downloaded during do_fetch and embedded into the
binary at pkg/static/embed/charts/. When disabled, traefik is added
to the disable list in config.yaml.
A default /etc/rancher/k3s/config.yaml is installed that disables the
cloud-controller-manager (not needed for standalone/QEMU environments)
and conditionally disables traefik. The --disable-cloud-controller
flag is removed from k3s.service since it is now in the config file.
To disable traefik:
PACKAGECONFIG:remove:pn-k3s = "traefik"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add test_k3s_runtime.py with 10 tests for k3s single-node and
multi-node verification:
Single-node (5 tests):
- Boot, verify k3s binary and service unit
- Start k3s server, wait for node Ready
- Verify 1 node in Ready state
- Deploy a busybox pod, verify Running
- Delete pod, verify cleanup
Multi-node (5 tests):
- Boot 2 VMs via QEMU socket networking
- Verify inter-VM ping on socket network
- Start k3s server on VM1, join agent on VM2
- Verify 2 nodes Ready
- Deploy 2-replica deployment, verify scheduling
Uses architecture-aware QEMU configuration (x86-64 and arm64
supported). Multi-node tests launch QEMU directly (not runqemu)
to support two concurrent VMs. kubectl commands use KUBECONFIG
instead of embedded 'k3s kubectl' which is not available in the
Yocto build.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Several issues prevented k3s from starting and running pods in the
Yocto image:
k3s.service / k3s-agent.service:
- Add /opt/cni/bin and /usr/libexec/cni to PATH so k3s can find
CNI plugin binaries (host-local, flannel, bridge, etc.)
- Create /run/flannel/subnet.env at startup if not present — k3s's
embedded flannel controller expects this file for CNI configuration
- Add --disable-cloud-controller to server — the cloud controller
manager is for cloud provider integration (AWS/GCP) and causes a
timeout loop in standalone/QEMU environments
k3s_git.bb:
- Create /var/lib/rancher/k3s/server/manifests/ directory — k3s
expects this at startup for auto-deploying system components
- Switch CNI config from cni-containerd-net.conf (containerd bridge
with 10.88.0.0/16 subnet) to cni-flannel.conflist which matches
k3s's flannel networking (10.42.0.0/16 via flannel plugin)
cni-flannel.conflist:
- New flannel CNI config that delegates to the flannel plugin with
hairpin mode, forceAddress, and portmap capabilities
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The k3s-host container profile had VIRTUAL-RUNTIME_container_runtime
set to empty, which meant no OCI runtime (runc or crun) was installed.
containerd's RDEPENDS uses this variable to pull in the runtime, so
k3s pods failed with "runc: executable file not found in $PATH".
Set to virtual-runc which is what k3s expects. The k3s-node profile
inherits from k3s-host so it gets the fix too.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
vruntime.conf:
- Reset all VIRTUAL-RUNTIME_container_* variables to prevent
CONTAINER_PROFILE selections from leaking into vruntime multiconfigs
(e.g., podman profile pulling netavark into vruntime builds)
- Disable ptest for glib-2.0 — its -ptest RDEPENDS chain
(python3-dbusmock -> python3-pygobject -> cairo -> fontconfig)
pulls the entire graphics stack which is masked in vruntime
- OE-core commit 159148f4de2 replaced DISTRO_FEATURES_BACKFILL_CONSIDERED
with DISTRO_FEATURES_OPTED_OUT. The old variable no longer has any
effect, which meant ptest, gobject-introspection-data, wayland, and
other features were no longer being blocked in vruntime builds. This
caused glib-2.0's ptest RDEPENDS to pull in the cairo → fontconfig →
freetype graphics stack, which is masked by the vruntime BBMASK.
- Set PREFERRED_PROVIDER_virtual/runc with strong assignment to
ensure the unified runc recipe is used
vrunner.sh:
- Fix batch import exit code handling: wrap import chain in subshell
and make the images listing best-effort. The previous '&& podman
images' caused false failures when podman images couldn't initialize
its network backend. Using 'exit' was also wrong as the command runs
inside PID 1 init's eval — exit kills init causing kernel panic.
vpdmn-rootfs-image.bb:
- Switch from netavark to CNI networking — netavark's dependency chain
(nmap -> libpcap -> bluez5 -> python3-pygobject -> cairo) cannot be
built under the vruntime BBMASK environment
- Add nsswitch.conf override (files-only backend) to prevent
libnss_systemd segfaults — the vruntime VM uses busybox init with
no systemd running, but libnss_systemd.so is pulled in as a
dependency and segfaults on NSS resolution
vdkr-rootfs-image.bb:
- Document skopeo requirement for batch import
conftest.py:
- Add --k3s-timeout option and k3s/multinode markers for upcoming
K3s test suite
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add includable configuration fragments that replace manual
DISTRO_FEATURES, CONTAINER_PROFILE, and related settings in
local.conf. Fragments are organized as a base + composable deltas:
- meta-virt-host.conf: base for all virtualization work
(virtualization, systemd, seccomp, vmsep, vcontainer, BBMULTICONFIG)
- container-host-{docker,podman,containerd,k3s,k3s-node}.conf:
container engine profiles setting CONTAINER_PROFILE and
profile-specific DISTRO_FEATURES
- xen-host.conf: Xen hypervisor support (xen, vxn distro features,
xen-image-minimal packages)
- meta-virt-dev.conf: QEMU development settings (IMAGE_FSTYPES,
QB_MEM, debug image features)
- container-registry.conf: local dev registry defaults
(insecure localhost:5000)
Profiles are pure deltas and do not auto-include the base to avoid
BitBake duplicate inclusion warnings. Users include meta-virt-host.conf
first, then add profile fragments. The BUILD_PROFILE variable enables
single-line profile switching.
Usage in local.conf:
require conf/distro/include/meta-virt-host.conf
BUILD_PROFILE ?= "podman"
require conf/distro/include/container-host-${BUILD_PROFILE}.conf
Tested with podman, docker, and xen builds.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
`CVE_PRODUCT` has been set to `linuxfoundation:containerd` to align
with the product naming defined in the NVD CPE database for
`containerd`.
Only a single CPE entry exists in the NVD for this product:
`cpe:2.3:a:linuxfoundation:containerd`
The NVD references for this CPE confirm that it corresponds to the
source code used in our recipe.
Signed-off-by: Himanshu Jadon <hjadon@cisco.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
I see a failure in netcf:
| ./bootstrap: .gnulib/gnulib-tool --import --no-changelog --aux-dir build-aux --doc-base doc --lib libgnu --m4-base gnulib/m4/ --source-base gnulib/lib/ --tests-base gnulib/tests --local-dir gl --lgpl=2 --with-tests --makefile-name=gnulib.mk --libtool --import ...
| python3: can't open file '/home/flk/bitbake-builds/poky/build/tmp/work/corei7-64-oe-linux/netcf/0.2.8+git/sources/netcf-0.2.8+git/.gnulib/.gnulib-tool.py': [Errno 2] No such file or directory
| ./bootstrap: gnulib-tool failed
Since the code hasn't been updated in over seven years, and after reading this discussion, perhaps the best solution would be to disable netcf support by default?
https://lists.libvirt.org/archives/list/devel@lists.libvirt.org/message/755CCFUFUW6OTN7CAHB77H7YXQNE5WGG/
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
For ceph, libvirt and openvswitch, 9 CVEs were marked as "unpatched"
whereas they have been patched long ago compared to the versions of
the recipes, because the NVD database does not contain patched version
for those CVEs.
Reviewed-by: Enguerrand de Ribaucourt <enguerrand.de-ribaucourt@savoirfairelinux.com>
Reviewed-by: Erwann Roussy <erwann.roussy@savoirfairelinux.com>
Signed-off-by: Youenn Le Jeune <youenn.lejeune@savoirfairelinux.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
RUNC_VERSION was still set to 1.3.0 from a previous update but the
recipe is now tracking the release-1.5 branch at v1.5.0-rc.1+4.
Update to match the actual upstream version.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update yq from 4.45.1 to 4.52.5 and convert from manual vendoring
(20+ individual git SRC_URI entries) to the go-mod-vcs discovery
system using pure hybrid mode (all gomod://).
This makes future updates trivial via:
bitbake yq -c discover_and_generate
Shortlog of notable changes since 4.45.1:
- Add support for YAML 1.1 octal numbers
- Add --header-preprocess flag
- Add bitwise operators (band, bor, bxor, bnot, bsl, bsr)
- Add shuffle operator for arrays
- Add rotate operator for arrays
- Add limit operator
- Add from_props/to_props for Java properties format
- Add from_csv/to_csv improvements
- Add --csv-separator flag
- Improve JSON output formatting
- Improve error messages for invalid expressions
- Fix various edge cases in YAML/JSON/XML/TOML conversions
- Fix memory leaks in large document processing
- Performance improvements for large files
- Updated Go module dependencies
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
When a recipe uses only gomod:// fetches with no VCS (git://) modules,
GO_MODULE_CACHE_DATA is an empty list. Previously do_create_module_cache
would run with nothing to process and do_sync_go_files would fatal with
"No modules found in cache".
Detect the empty module list and return early with an informational
message in both tasks, allowing pure hybrid recipes (like yq) to
build without workarounds.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update LXCFS from 5.0.4 to 6.0.6 (LTS branch). Existing patches
apply with offset.
Key changes across the 5.0 to 6.0 series:
6.0.x LTS (2024-2029):
- Switch to fuse3 as default (fuse2 still supported)
- Reworked cgroup2 support with improved delegation
- Improved /proc/cpuinfo virtualization for cgroup2
- Improved /proc/meminfo virtualization accuracy
- Improved /proc/stat CPU time virtualization
- Improved /proc/loadavg virtualization
- Improved /proc/uptime per-container tracking
- Improved /sys/devices/system/cpu virtualization
- Better handling of cgroup v1/v2 hybrid setups
- meson build system improvements
- Various memory leak and race condition fixes
- Multiple security hardening improvements
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Shortlog of changes since 1.4.0:
- Implement 'up --no-recreate'
- Add support to set --route of podman network create
- Implement environment variable interpolation to YAML dictionary keys
- Properly surface errors from 'push' command
- Hide stack trace shown on YAML parse error by default
- Migrate to PEP 621 project metadata
- Migrate to SPDX identifier for the license
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update SeaBIOS from 1.16.0 to 1.17.0.
Refresh python3.patch for shifted context.
Shortlog of changes since 1.16.0:
- ahci: Fix hangs due to controller reset
- ahci: add controller reset
- ahci: Power ON + ICC_ACTIVE into port setup code
- Add LBA 64bit support for reads beyond 2TB
- detect physical address space size
- move 64bit pci window to end of address space
- limit address space used for pci devices
- pciinit: don't misalign large BARs
- update pci_pad_mem64 handling
- fix smbios blob length overflow
- check for e820 conflict
- usb-hid: Support multiple USB HID devices via linked list
- boot: Force display of boot menu when boot-menu-wait is negative
- esp-scsi: indicate acceptance of MESSAGE IN phase data
- esp-scsi: terminate DMA transfer when ESP data transfer completes
- vbe: implement function 09h (get/set palette data)
- vbe: Add VBE 2.0+ OemData field
- vgabios: Fix generating modes list for static_functionality
- Various stdvga/vgasrc naming and interface cleanups
- kconfig: fix check-lxdialog.sh to work with gcc 14+
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update all active Go library recipes to their latest releases:
- go-md2man: 1.0.10 → 2.0.7 (update GO_IMPORT for v2 module path)
- go-cli: 1.1.0 → 2.27.7 (moved to github.com/urfave/cli/v2)
- go-connections: 0.2.1 → 0.6.0
- go-dbus: 4.0.0 → 5.2.2 (update GO_IMPORT for v5 module path)
- go-distribution: 2.6.0 → 3.0.0 (repo moved to distribution/distribution)
- go-fsnotify: 1.5.1 → 1.9.0
- go-logrus: 0.11.0 → 1.9.4
- go-mux: unversioned → 1.8.1
- go-patricia: 2.2.6 → 2.3.3
- go-systemd: 4 → 22.7.0 (update GO_IMPORT for v22 module path)
- grpc-go: 1.59.0 → 1.79.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Remove Go library recipes for projects that are archived, deprecated,
or otherwise dead upstream:
- go-capability: No releases ever published, community moved to
github.com/moby/sys/capability
- go-context: Superseded by Go stdlib context.Context (since Go 1.7)
- go-libtrust: Archived on GitHub, no releases ever published
- go-metalinter: Archived and deprecated since 2019, replaced by
golangci-lint
- go-pty: Archived since 2020, moved to github.com/creack/pty
None of these are referenced as build dependencies by any recipe in
meta-virtualization. External consumers should migrate to the
upstream-recommended replacements.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping slirp4netns to version v1.3.3-6-g6be0d53, which comprises the following commits:
b02e000 Revert "CI: temporarily disable release check for PRs"
b0c346d CI: temporarily disable release check for PRs
3d01dce v1.3.3+dev
944fa94 v1.3.3
0422b01 CI: bump up deps
019cd5a bump libslirp to v4.9.1
bf1c767 CI: Enable actions/attest-build-provenance@v2
4523924 v1.3.2+dev
0f13345 v1.3.2
ead6f78 CI: update deps
e859823 bump libslirp to v4.9.0
d1a900b v1.3.1+dev
e5e368c v1.3.1
036c206 CI: bump libslirp to v4.8.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping passt to version 2026_01_20.386b5f5-48-gbc872d9, which comprises the following commits:
bc872d9 treewide: Spell ASSERT() as assert()
451fb76 vu_common: Move iovec management into vu_collect()
f5391ae vu_handle_tx: Pass actual remaining out_sg capacity to vu_queue_pop()
b9d076d virtio: Pass iovec arrays as separate parameters to vu_queue_pop()
47e56fd pif: Remove unused PIF_NAMELEN
b5e6ef4 doc: Fix formatting of (DEPRECATED) notes in man page
744d6df Makefile: Use $^ to avoid duplication in static checker rules
1b32bfe conf: Parse all forwarding options at the same time
ea239bf conf: Don't defer handling of --dns option
ee0e20e fwd: Always open /proc/net{tcp,tcp6,udp,udp6} in pasta mode
d460ca3 fwd: Unify TCP and UDP forwarding tables
bb2e4dd fwd: Split forwarding table from port scanning state
d30e0b7 Fix misnamed field in struct ctx comments
4fa0076 fwd: Don't initialise unused port bitmaps
d2438ef tcp: Remove stale description of port_to_tap field
0294fae conf, fwd: Make overall forwarding mode local to conf path
831e983 netlink: Allow NULL to be passed as addr parameter to nl_addr_get (again)
251e676 netlink: Return prefix length for IPv6 addresses in nl_addr_get()
045560c iov: Add iov_truncate() helper and use it in vu handlers
994bb76 tcp: Avoid comparison of expressions with different signedness in RTT_SET()
ab77097 tcp: Avoid comparison of expressions with different signedness in tcp_timer_handler()
5766fe8 migrate: Rename v1 address functions to v2 for clarity
71a0d6c vu_common: Always set num_buffers in virtio-net header
685864d clang-tidy: Don't insist on #ifdef over #if defined()
9ee7805 fwd, pif: Replace with pif_sock_l4() with pif_listen()
7d0fe08 tcp: Use flow_foreach_of_type() in tcp_{keepalive,inactivity}
adbf5c1 Add missing includes to headers
d2f7c21 tcp: Send TCP keepalive segments after a period of tap-side inactivity
a681e44 tcp: Extend tcp_send_flag() to send TCP keepalive segments
1820103 tcp: Re-introduce inactivity timeouts based on a clock algorithm
e48ce41 tcp: Remove non-working activity timeout mechanism
eb3babf tcp_vu, udp_vu: Fix comment headers for header length functions
66e5941 Fix build when HAS_GETRANDOM is undefined
8636c73 tcp_vu, udp_vu: Account for virtio net header in minimum frame size
de5b694 tcp_vu: vu_pad() expects l2 length
c320191 conf: Support CIDR notation for -a/--address option
02af38d virtio: Introduce VNET_HLEN macro for virtio net header length
812cdb8 tcp: Move tap header update out of tcp_fill_headers()
bebafa7 udp: Split activity timeouts for UDP flows
036fb87 checksum: add VSX fast path for POWER8/POWER9
af7b81b migrate: Use forward table information to close() listening sockets
768baf4 tcp, tcp_splice: Check for failures of shutdown(2)
3581ded tcp: Eliminate FIN_TIMEOUT
e992b14 tcp: Retransmit FINs like data segments
e3f70c0 tcp_splice: Force TCP RST on abnormal close conditions
cce94e9 tcp: Properly propagate tap-side RST to socket side
07390d1 doc: Add test program verifying socket RST behaviour
69ce8ee tcp: Add error checking for flow_epoll_set() in tcp_flow_migrate_target()
386b5f5 flow: Remove EPOLLFD_ID_INVALID
90287c2 tcp: Register fds with epoll at flow creation
0fbd7af tcp_splice: Register fds with epoll at flow creation
cee7eb0 conf, pasta: Add --splice-only option
4a0d507 flow, fwd: Optimise forwarding rule lookup using epoll ref when possible
fe37028 fwd, tcp, udp: Add forwarding rule to listening socket epoll references
01bcdb9 fwd: Remap ports based directly on forwarding rule
f56a822 flow, fwd: Consult rules table when forwarding a new flow from socket
a0af19f fwd: Generate auto-forward exclusions from socket fd tables
03a9c4b conf, fwd: Check forwarding table for conflicting rules
acb7a30 tcp, udp: Remove old auto-forwarding socket arrays
b223bec fwd, tcp, udp: Set up listening sockets based on forward table
0c611bc ip: Add ipproto_name() function
da49557 fwd: Make space to store listening sockets in forward table
e2633b9 conf, fwd: Record "auto" port forwards in forwarding table
9323ab9 conf: Accurately record ifname and address for outbound forwards
bd52f61 conf, fwd: Keep a table of our port forwarding configuration
016e3d7 inany: Extend inany_ntop() to treat NULL as a fully unspecified address
81c97f6 hooks/pre-push: Use mandoc(1) to get HTML anchors to command-line options
a6d92ca selinux: Enable open permissions on netns directory, operations on container_var_run_t
4296a59 igmp: Remove apparently unneeded suppression
fa765d5 epoll_ctl: Move u64 variant first for safer initialisation
4af3d83 treewide: Fix more pointers which can be const
a54274d tcp, udp: Make {tcp,udp}_listen() return socket fds
d5fd945 tcp, udp, conf: Don't silently ignore listens on unsupported IP versions
c0be730 flow: Introduce flow_epoll_set() to centralize epoll operations
23da651 tcp_splice: Refactor tcp_splice_conn_epoll_events() to per-side computation
e0fdfcc udp_flow: Assign socket to flow inside udp_flow_sock()
ab27852 udp_flow: remove unneeded epoll_ref indirection
cce0470 tcp: cleanup timer creation
5614bdc tcp: remove timer update in tcp_epoll_ctl()
faab79c apparmor: Upgrade ABI version to 4.0, explicitly enable user namespace creation
2be0e79 tcp: Fix rounding issue in check for approximating window to zero
b973f4a treewide: Fix places where we incorrectly indented with spaces
b98a2e8 tcp: Remove some no longer used includes
35f63d2 fwd: Minor cleanup to fwd_nat_from_splice()
facc736 fwd: Remove now-unnecessary handling of unspecified oaddr from splice
edac476 udp_vu: Discard datagrams when RX virtqueue is not usable
9ea9dde fwd, tcp, udp: Consolidate epoll refs for listening sockets
3b55ba8 epoll_ctl: Add missing description for flowside field of epoll_ref
ad5670a tcp: Remove unused tcp_epoll_ref
9437fc2 test: Include sshd-auth in mbuto guest image
ac77d0c test: Handle Operating System Command escapes in terminal output
accc331 treewide: Don't rely on terminator records in ip[46].dns arrays
4a0c1a6 migrate: Don't use terminator element for versions[] array
0bd2e68 util: Be more defensive about buffer overruns in read_file()
2aa6323 apparmor: Allow reading TCP RTO sysctl parameters
2ba9fd5 tcp: Update EPOLL_TYPE_TCP_TIMER fd
6292845 udp: Rename udp_sock_init() to udp_listen() with small cleanups
0f4ba61 tcp: Combine tcp_sock_init_one() and tcp_sock_init() into tcp_listen()
75dcbc3 pasta: Warn, disable matching IP version if not supported, in local mode
d2c5133 selinux: Enable read and watch permissions on netns directory as well
b40f5cd tcp: Use less-than-MSS window on no queued data, or no data sent recently
35fa86a conf, fwd: Move initialisation of auto port scanning out of conf()
5be1a22 tcp: Remove extra space from TCP_INFO debug messages (trivial)
87f1a91 pasta: Clean up waiting pasta child on failures
e6612fe treewide: Introduce passt_exit() helper
d6c5b6e tcp: Suppress new instance of cppcheck bug 14191
d04c480 pif: Correctly set scope_id for guest-side link local addresses
696709d tcp: Correct timer expiry value in trace message
c3f1ba7 tcp_splice, flow: Add socket to epoll set before connect(), drop assert
e8b56a3 fedora: Fix build on Fedora 43, selinux_requires_min not available on Copr builders
c93515c tcp: Skip redundant ACK on partial sendmsg() failure
e0f1330 tcp: Send a duplicate ACK also on complete sendmsg() failure
2b5c906 tcp: Allow exceeding the available sending buffer size in window advertisements
cf1925f tcp: Don't limit window to less-than-MSS values, use zero instead
9139e60 tcp: Acknowledge everything if it looks like bulk traffic, not interactive
28f413d tcp: Don't clear ACK_TO_TAP_DUE if we're advertising a zero-sized window
000601b tcp: Adaptive interval based on RTT for socket-side acknowledgement checks
920a479 tcp: Limit advertised window to available, not total sending buffer size
f423e12 tcp: Change usage factor of sending buffer in tcp_get_sndbuf() to 75%
6305b6c tcp, util: Add function for scaling to linearly interpolated factor, use it
5d83844 iov: Fix coding style of basic (non-IOV_TAIL) parts
0cb8f90 tcp, udp: Pad batched frames for vhost-user modes to 60 bytes (802.3 minimum)
68b0a36 tcp, udp: Pad batched frames to 60 bytes (802.3 minimum) in non-vhost-user modes
b9cd36f udp: Fix coding style for comment to enum udp_iov_idx
e3e8af7 tcp: Fix coding style for comment to enum tcp_iov_parts
1e51971 tap: Pad non-batched frames to 802.3 minimum (60 bytes) if needed
822ce09 test: Update Makefile to avoid failing on missing images
4ddd59b conf: Separate local mode for each IP version, don't enable disabled IP version
834982c vu_common: Clarify prototype of vu_collect()
7c7be67 test: Expand tmux right status bar to fit pass/fail/skipped counter and time
aa809d3 tcp: Enable SO_KEEPALIVE if we see keep-alive segments from container / guest
9e2e381 seccomp: Fix build and operation on 32-bit musl targets
fdbb4ef fwd: Preserve non-standard loopback address when splice forwarding
e3c4c41 tcp: Always populate oaddr field for socket initiated flows
cec1ca8 util: Rename sock_l4_dualstack() to sock_l4_dualstack_any()
653705c tcp, udp: Bind outbound listening sockets by interface instead of address
e77cbf0 tcp, udp: Remove fallback if creating dual stack socket fails
e6f6eb2 util: Fix setting of IPV6_V6ONLY socket option
74e6f12 udp: Move udp_sock_init() special case to its caller
c8d4683 udp: Unify some more inbound/outbound parts of udp_sock_init()
860d3b1 tcp: Merge tcp_ns_sock_init[46]() into tcp_sock_init_one()
3b8b834 util, flow, pif: Simplify sock_l4_sa() interface
b0523f6 inany: Let length of sockaddr_inany be implicit from the family
484dcfa flow: Remove bogus @path field from flowside_sock_args
f37db87 conf: More useful errors for kernels without SO_BINDTODEVICE
0ae7b8c util: Extend sock_probe_mem() to sock_probe_features()
10e850a util: Correct error message on SO_BINDTODEVICE failure
1a83487 tcp: Clamp the retry timeout
3dde0e0 tcp: Update data retransmission timeout
0e8df13 tcp: Resend SYN for inbound connections
ffecfaf util: Introduce read_file() and read_file_integer() function
785214c tcp: Rename "retrans" to "retries"
2002c7d arp/ndp: don't send messages on uninitialized tap interface
391c15a test: Fix IPv6 address/prefix mismatch error
95ab87b spec: use %selinux_requires_min macro, drop overlapping dependencies
be1583f fwd: Don't explicitly exclude reverse-direction TCP ports for UDP
fd3fc8d fwd: Exclude ports based on prior mapping state
bdbdf4e Revert "fwd: Update all port maps before applying exclusions"
2c6590d udp: Use IP_FREEBIND for flow sockets as well as listening sockets
75b8bb9 tcp: Properly remove sockets from epoll loop when connection is closed
a36031a seccomp.sh: Quote tr character ranges to prevent glob expansion
1d16439 contrib/selinux: use regex instead of SELinux template
f6b6118 tcp, udp: Don't exclude ports in {tcp,udp}_port_rebind()
81942a2 fwd: Update all port maps before applying exclusions
942bfdb fwd: Check forwarding mode in fwd_scan_ports_*() rather than caller
06c3dcc fwd: Share port scanning logic between init and timer cases
1754f61 fwd: Move port exclusion handling from procfs_scan_listen() to callers
1bc7d54 fwd: Consolidate scans (not rebinds) in fwd.c
260075b tcp, udp, fwd: Run all port scanning from a single timer
1f2c08b icmp: Remove vestiges of ICMP timer
57446ca passt: Move main event loop processing into passt_worker()
aaa8f34 udp: Use epoll instance management for UDP flows
ca93124 icmp: Use epoll instance management for ICMP flows
dd5302d tcp, flow: Replace per-connection in_epoll flag with an epollid in flow_common
05972c7 util: Move epoll registration out of sock_l4_sa()
965ea66 epoll_ctl: Extract epoll operations
8bfa47a util: Simplify epoll_del() interface to take epollfd directly
3a9dbe0 icmp: let icmp use mac address from flowside structure
ad72098 tap: change signature of function tap_push_l2h()
860a487 tcp: forward external source MAC address through tap interface
627d5f7 udp: forward external source MAC address through tap interface
5d35ac3 flow: add MAC address of LAN local remote hosts to flow
7917155 arp/ndp: send ARP announcement / unsolicited NA when neigbour entry added
e456c02 arp/ndp: respond with true MAC address of LAN local remote hosts
45869d6 fwd: Add cache table for ARP/NDP contents
3c46901 netlink: add subscription on changes in NDP/ARP table
3b9c7f8 Add reverse Christmas tree to CONTRIBUTING.md
7bb150c fwd: Fix misspelling
b2ccb6d test: Fix the escaping issue in memory/passt test
812a7c6 test: Update the threshold value for some perf tests
4fb4c31 tap: Update some function comments for accuracy
8a6def6 passt: Rename EPOLL_EVENTS to NUM_EPOLL_EVENTS
720cc0b Fix the wrong command in CONTRIBUTING.md
6d84c90 test: For missing static checkers, skip rather than failing tests
5149f34 test: Add some missing quoting in exeter runner
898cf50 test: Use ${} consistently in lib/exeter
5da0316 isolation: keep CAP_DAC_OVERRIDE initially
518d8c1 tcp: Clarify logic calculating how much guest data to ack
a947839 tcp: On partial send (incomplete sendmsg()), request a retransmission right away
b145441 tcp: Don't consider FIN flags with mismatching sequence
8efa80b tcp: Completely ignore data segment in CLOSE-WAIT state, log a message
b3217aa tcp: Fix ACK sequence on FIN to tap
2a16cdf test: Add linting of Python test scripts
81fd66a test: Don't delete exetool on make clean
2274c3a cppcheck: Suppress variable scope warnings in dhcpv6()
ee9b236 cppcheck: Suppress a buggy cppcheck warning
065d199 cppcheck: Suppress the suppression of a suppression
b4b3b08 clang-tidy: Suppress redundant expression warning
4d9c35b test: Update passt.mbuto and passt.mem.mbuto
a96a962 netlink: Don't require address to be global, just not link local
7086781 test: Fix printf error when debug is enabled
c54ef9e test: Update README.md
f4729be test: Update mbuto profile to fix the symlink of /bin
de28c20 test: Update lib/term for clearer output when DEBUG is enabled
f07d7b0 test: fix 'make assets' failure as root
e81c692 tap: Drop frames if no client connected
623dbf6 Add --stats option to display event statistics
ad4aae7 netlink: Drop nexthop state flags from routes we duplicate
080f176 Add CONTRIBUTING.md
c66be2c selinux: add missing file contexts for Podman
fd1bcc3 selinux: add container_var_run_t type transition
6f23cb9 dhcp: Fix coding style violations in dhcp() function
1f22fde Improve clarity of comment
e2920e3 Send an initial ARP and NDP request to resolve the guest IP address
142b3d8 Fix --no-icmp description and make it imply --no-ndp
07cb07d Introduce constant MAC_BROADCAST
fc0affc Show debug message whenever we observe a new guest MAC address
6cbcccc tcp: Store the owner connections for flags frames
cd2e886 Reduce tcp_buf_discard size
8d2f8c4 tcp: Don't send FIN segment to guest yet if we have pending unacknowledged data
bde1847 tcp: Fast re-transmit if half-closed, make TAP_FIN_RCVD path consistent
660cd69 tcp: Cast operands of sequence comparison macros to uint32_t before using them
25f9354 tcp: Don't try to transmit right after the peer shrank the window to zero
c62fb08 tcp: Fix closing logic for half-closed connections
e86d480 tcp: Rewind sequence when guest shrinks window to zero
1d502be tcp: Factor sequence rewind for retransmissions into a new function
2e3d93b tcp: FIN flags have to be retransmitted as well
d363fb7 test: Fix the download link for debian-11-generic-ppc64el image
c10d8c9 tcp_vu: Pass virtqueue pointer to tcp_vu_sock_recv()
ed18d4c udp_vu: Pass virtqueue pointer to udp_vu_sock_recv()
6239915 vhost-user: Fix VHOST_USER_GET_QUEUE_NUM to return number of queues
f9ee749 Add missing explicit PSH assignment
83afb88 Fix typo in doc comment
00e3580 test: Explicit specify forwarding ports for pasta in log rotation tests
3c44ef8 test: Allow exeter & podman tests to be parallel executed with BATS
ffe34d2 test: Convert build tests to exeter
a58e60e test: Run static checkers as exeter tests
a283ef4 test: Extend test scripts to allow running exeter tests.
ca38be0 packet: Add support for multi-vector packets
3e43e1a packet: Refactor vhost-user memory region handling
1602aa2 packet: remove unused parameter from PACKET_POOL_DECL()
7ae35a9 packet: remove PACKET_POOL() and PACKET_POOL_P()
2eb845a ndp: use iov_tail rather than pool
76de6f5 icmp: use iov_tail rather than pool
42a108b dhcpv6: use iov_tail rather than pool
3a261fd dhcp: use iov_tail rather than pool
c977d1f arp: use iov_tail rather than pool
7e25351 packet: rename packet_data() to packet_get()
9505908 tap: Convert tap6_handler() to iov_tail
a26c608 tap: Convert tap4_handler() to iov_tail
20cd6d0 ip: Use iov_tail in ipv6_l4hdr()
84a4d3e dhcp: Convert to iov_tail
feb3330 dhcpv6: Use iov_tail in dhcpv6_opt()
c4cad31 dhcpv6: Convert to iov_tail
54f15c6 dhcpv6: Extract sending of NotOnLink status
1932832 dhcpv6: move offset initialization out of dhcpv6_opt()
d2c33f4 tcp: Convert tcp_data_from_tap() to use iov_tail
87cc7ab tcp: Convert tcp_tap_handler() to use iov_tail
d9604f0 udp: Convert to iov_tail
e45bf13 icmp: Convert to iov_tail
f8860bb ndp: Convert to iov_tail
1fc944c arp: Convert to iov_tail
6bada9a packet: Add packet_data()
de469a3 packet: Use iov_tail with packet_add()
720d8fc tap: Use iov_tail with tap_add_packet()
70b9c0c iov: Update IOV_REMOVE_HEADER() and IOV_PEEK_HEADER()
066e6b1 iov: Introduce iov_tail_clone() and iov_drop_header().
ea3dd28 arp: Don't mix incoming and outgoing buffers
eef5bb8 build: Fix errors of TCP_REPAIR_* undeclared
b4fc6cd treewide: Flush pcap and log files, if used, before exiting
309eefd selinux: pasta accesses /etc/resolv.conf
a878286 treewide: By default, don't quit source after migration, keep sockets open
79de81e test: Deal with /bin, /sbin unification in Fedora
3757ea3 style: Add parentheses to function names in comments
9e0423e style: Fix 'Return' comment style
0293c6f fedora: Hide restorecon(8) errors in post-transaction scriptlet
98da8a9 fedora: Add container-selinux as dependency for passt-selinux
754c6d7 flow, repair: Proper error handling for missing passt-repair helper on target
a2088fe fedora: Depend on SELinux tools and policy version, drop circular dependency
d21bcd9 fedora: Call %selinux_modules_* macros only once
081df67 conf: flush stdout before early exit
bcb5596 passt-repair: Fix missing newlines in error messages
2c88349 Correct various function comment headers
515b5ee tap: Avoid bogus missingReturn cppcheck warning in tap_l2_max_len()
e019323 fedora: Separately restore context for /run/user in %posttrans selinux
7aeda16 selinux: Transition to pasta_t in containers
3262c9b iov: Standardize function comment headers
b915375 virtio: Correct and align comment headers
2fd0944 vhost_user: Correct and align function comment headers
2046976 codespell: Correct typos in comments and error message
4234ace test: Display count of skipped tests in status and summary
2d3d69c flow: Fix clang error (clang-analyzer-security.PointerSub)
0f7bf10 ndp: Fix Clang analyzer warning (clang-analyzer-security.PointerSub)
a6b9832 virtio: Fix Clang warning (bugprone-sizeof-expression, cert-arr39-c)
570e7b4 dhcpv6: fix GCC error (unterminated-string-initialization)
8ec1341 flow: close socket fd on error
92d5d68 flow: fix wrong macro name in comments
eea8a76 flow: fix podman issue #26073
587980c udp: Actually discard datagrams we can't forward
f0021f9 fwd: fix doc typo
93394f4 selinux: Add getattr to class udp_socket
11be695 flow: fix podman issue #25959
6a96cd9 util: Fix typo, ASSSERTION -> ASSERTION
ea0a124 passt-repair: Hide bogus gcc warning from -Og
aa1cc89 conf: allow --fd 0
436afc3 udp: Translate offender addresses for ICMP messages
08e617e udp: Rework offender address handling in udp_sock_recverr()
4668e91 treewide: Improve robustness against sockaddrs of unexpected family
9128f6e fwd: Split out helpers for port-independent NAT
2340bbf udp: Propagate errors on listening and brand new sockets
cfc0ee1 udp: Minor re-organisation of udp_sock_recverr()
f107a86 udp: Add udp_pktinfo() helper
0498457 udp: Deal with errors as we go in udp_sock_fwd()
3f99558 udp: Pass socket & flow information direction to error handling functions
1bb8145 udp: Be quieter about errors on UDP receive
baf049f udp: Fix breakage of UDP error handling by PKTINFO support
5024908 conf: Honour --dns-forward for local resolver even with --no-map-gw
bbff365 conf: Split add_dns_resolv() into separate IPv4 and IPv6 versions
59cc89f udp, udp_flow: Track our specific address on socket interfaces
695c623 inany: Improve ASSERT message for bad socket family
f4b0dd8 udp: Use PKTINFO cmsgs to get destination address for received datagrams
6693fa1 tcp_splice: Don't clobber errno before checking for EAGAIN
d3f33f3 tcp_splice: Don't double count bytes read on EINTR
ffbef85 conf: Add missing return in conf_nat(), fix --map-guest-addr none
06ef64c udp_flow: Save 8 bytes in struct udp_flow on 64-bit architectures
9725e79 udp_flow: Don't discard packets that arrive between bind() and connect()
9eb5406 udp: Fold udp_splice_prepare and udp_splice_send into udp_sock_to_sock
bd6a41e udp: Rework udp_listen_sock_data() into udp_sock_fwd()
159beef udp_flow: Take pif and port as explicit parameters to udp_flow_from_sock()
fd844a9 udp: Move UDP_MAX_FRAMES to udp.c
fc6ee68 udp: Merge vhost-user and "buf" listening socket paths
0304dd9 udp: Split spliced forwarding path from udp_buf_reply_sock_data()
5221e17 udp: Parameterize number of datagrams handled by udp_*_reply_sock_data()
3a0881d udp: Don't bother to batch datagrams from "listening" socket
84ab130 udp: Polish udp_vu_sock_info() and remove from vu specific code
1d7bbb1 udp: Make udp_sock_recv() take max number of frames as a parameter
d74b5a7 udp: Use connect()ed sockets for initiating side
a7775e9 udp: support traceroute in direction tap-socket
06784d7 passt-repair: Ensure that read buffer is NULL-terminated
684870a udp: Correct some seccomp filter annotations
76e554d udp: Simplify updates to UDP flow timestamp
8aa2d90 udp: Remove redundant udp_at_sidx() call in udp_tap_handler()
3d41e4d passt-repair: Correct off-by-one error verifying name
dec3d73 migrate, tcp: bind() migrated sockets in repair mode
6bfc60b platform requirements: Add test for address conflicts with TCP_REPAIR
8e32881 platform requirements: Add attributes to die() function
2ed2d59 platform requirements: Fix clang-tidy warning
3de5af6 udp: Improve name of UDP related ICMP sending functions
025a3c2 udp: Don't attempt to forward ICMP socket errors to other sockets
42a854a pasta, passt-repair: Support multiple events per read() in inotify handlers
65cca54 udp: correct source address for ICMP messages
664c588 build: normalize arm targets
77883fb udp: Add helper function for creating connected UDP socket
37d78c9 udp: Always hash socket facing flowsides
f67c488 udp: Better handling of failure to forward from reply socket
269cf6a udp: Share more logic between vu and non-vu reply socket paths
d924b7d udp_vu: Factor things out of udp_vu_reply_sock_data() loop
5a977c2 udp: Simplify checking of epoll event bits
89b203b udp: Common invocation of udp_sock_errs() for vhost-user and "buf" paths
cf4d3f0 packet: Upgrade severity of most packet errors
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We refresh patches for context changes, and pick up the following
commits:
0d4c78e15 github: Update all the actions to prepare for Node.js 24.
c052c469b dpctl: Fix memory leak in ipf-get-status command.
f86caea06 netdev-dpdk: Fix vhost_driver_flags data race in destruct.
71dae047d coverage: Fix data race when reading idx_count in coverage_read().
b5f36a6d6 packets: Validate ND option length in packet_set_nd().
920eb244e ovs-router: Fix locking in ovs_router_rule_add().
dd4d9983a ovs-router: Fix --disable-system-route rules filter.
cd7b495e2 tests: Make routing rules checks more resilient.
a51e47506 github: Fix potential 32-bit package installations.
a7cd823a1 python: Fix discarded const qualifier in json_to_python.
00b013a64 ovsdb: raft: Don't grant a pre-vote to a server that is behind.
95473a95e ovsdb-cluster.at: Test disruptive server with outdated log and term.
f559623f9 netdev-linux: Fix IFLA_IF_NETNSID value.
0a88fdec2 Revert "python: Replace deprecated License with License-Expression (PEP 639).".
028e6268c Prepare for 3.7.1.
bdb95cc19 Set release date for 3.7.0.
c1eef6db4 ovs-router: Don't report internal route priority in json output.
8c6ebf895 bond: Fix next_rebalance offset calculation.
f43bde3d5 rhel: Avoid warning about missing .la with Fedora spec.
37e41460e rhel: Remove kernel mentions from the Fedora spec.
a47cf0e6b rhel: Don't ship network scripts on RHEL 9+ and Fedora 41+.
88f327493 rhel: Don't build network scripts package on RHEL 9+ with Fedora spec.
1d57509ef treewide: Fix discarded-qualifers warnings.
431efcdfc ovsdb-server: Fix relay remotes string check.
6d682ae53 dpif-offload: Move port manager into struct dpif_offload.
d56120f43 ofproto-dpif-xlate: Avoid mirroring on recirculation.
1d6a51917 cirrus: Use FreeBSD release images instead of stable snapshots.
97b3a3507 automake: Don't install the libopenvswitchavx512.
fcf733472 dpif-netdev: Fix per-datapath initialization using once framework.
52e740da7 dpif: Always call dpif_offload_set_config().
dbfe60a32 fedora: Fix package install on Fedora 43.
0062d99d4 ipsec: libreswan: Consider active only when child SA is established.
122e79a49 ipsec: libreswan: Silence warning about overriding auto=route in v5.3.
f3d704541 ipsec: libreswan: Fix warning for obsolete keyingtries in v5.
59c56bcf6 system-ipsec.at: Use natural sorting for SA list.
75ba627dc dpif-offload: Take a reference when dumping a collection.
a56bfa103 rconn: Fix fd leak when close monitor.
b672ea19d dpif-offload: Move provider priority to interface level.
e7d7d33f4 ovs-router: Fix JSON type for user in rules/show.
b63ec0e35 dpdk: Avoid maybe uninitialized for found_value variable.
5057e33f9 dpif-offload: Rename offload provider local functions and structures.
bcec20c86 Prepare for 3.7.0.
e03eac274 ovs-router: Fix potential integer overflow.
708c83f20 ovs-router: Fix JSON object leak in ovs/router/rule/show command.
3200111ba ofproto-dpif: Limit recirc_id to 28 bits for TC compatibility.
a9b1b6b5b netdev-offload-tc: Make sure tcf_id chain doesn't exceed upper limit.
39006533f openflow: Increase number of registers to 32.
9604659d4 tests: Fix QoS tests for tc rounding behavior change.
e6cce559c AUTHORS: Add Felix Moebius.
adc588f96 ovsdb: raft: Reset connections with incorrect cluster/server ids.
67e21fdb1 odp-util: Fixes for the set(nsh) action commit.
b21ba0834 tunnels: Don't unwildcard tunnel fields on write.
63469676d Documentation: Document Assisted-by tag.
68f7a6200 python: dns: Do not treat never accessed responses as expired.
289e9f6ba tests: Add a simple DPDK rte_flow test framework.
90b6e83be tests: Fix NSH decap header test for real Ethernet devices.
b8f6e3eee netdev-offload: Fold netdev-offload APIs and files into dpif-offload.
ca7bcdc70 dpif-offload-dummy: Add flow add/del/get APIs.
7bd1867b6 dpif-offload-dpdk: Abstract rte_flow implementation from dpif-netdev.
476123c12 dpif-offload: Move offload_stats_get() API to dpif-offload.
7f0e09ebf dpif_netdev: Fix nullable memcpy in queue_netdev_flow_put().
c443e63c1 dpif-offload: Add inline flow APIs for userspace datapaths.
ce8027140 netdev-offload: Remove the global netdev-offload API.
35b91ea98 dpif-offload: Move the netdev_any_oor() API to dpif-offload.
3792d6310 netdev_dummy: Remove hardware offload override.
fd3f56d1f dpif-offload-tc: Remove netdev-offload dependency.
e1cabfaff dpif-netlink: Remove entangled hardware offload.
98b20d8b1 dpif-offload: Add flow operations to dpif-offload-tc.
84997680f dpif: Add dpif_get_features() API.
5362e83ba dpif-netdev: Remove indirect DPDK netdev offload API calls.
fec8b4d30 dpif-offload: Add port dump APIs to dpif-offload.
9a4dd063b netdev-offload: Temporarily move thread-related APIs to dpif-netdev.
030b9dc97 dpif-offload: Add operate implementation to dpif-offload.
b6ce8be52 dpif-offload: Add API to find offload implementation type.
fba024678 dpif-netlink: Add API to get offloaded netdev from port_id.
9d61b5277 dpif-netlink: Remove netlink-offload integration.
5746e83cf dpif-offload: Move the tc flow dump netdev APIs to dpif-offload.
c766f57d4 dpif-offload: Add flow dump APIs to dpif-offload.
efdd5bf37 dpif-offload: Move hw_post_process netdev API to dpif.
8bf2658c8 dpif-offload: Move the flow_get_n_flows() netdev-offload API to dpif.
389954013 dpif-offload: Call meter netdev-offload APIs via dpif-offload.
d1d989b05 dpif-offload: Call flow-flush netdev-offload APIs via dpif-offload.
08d8a6692 dpif-offload: Introduce provider debug information API.
5c9b96ed5 dpif-offload: Allow per-port offload provider priority config.
134455376 dpif-offload: Validate mandatory port class callbacks on registration.
a23b2f421 dpif-offload-dpdk: Add port management framework.
2180857f3 dpif-offload-tc: Add port management framework.
dd69c0bca dpif-offload: Add port registration and management APIs.
bd6543466 dpif-offload: Add offload provider set_config API.
dc9724b8f dpif-offload: Move hw-offload configuration to dpif-offload.
a13db17b8 dpif-offload: Allow configuration of offload provider priority.
d9cc25e51 dpif-offload: Add provider for dpdk (rte_flow).
df26a15a4 dpif-offload: Add provider for tc offload.
7eb9ffac5 dpif-offload-provider: Add dpif-offload-provider implementation.
7c2a1c865 AUTHORS: Add yaolingfei.
a2d5d84d6 bridge: Enhancement of the validation for controller parameters.
733083653 python: Replace deprecated License with License-Expression (PEP 639).
c14bfc4b3 ovs-router: Add test for lookup with rules.
e2a241560 ovs-router: Introduce ovs/route/rule/{add, del} commands.
18de57d26 ovs-router: Add 'src=src_ip' parameter in ovs/route/lookup.
160e0dca7 ovs-router: Add 'table=id' parameter in ovs/route/{add, del}.
664494694 ovs-router: Add system test for tables and rules.
5c30756a3 ovs-router: Introduce ovs/route/rule/show command.
5a6a2ebb8 ovs-router: Drop 'local' and add 'user' flag to ovs_router_entry.
884567668 ovs-router: Add 'table=id' parameter in ovs/route/show.
e1c267c38 doc: Fix font formatting in ofproto-tnl-unixctl.man.
dc14e92bc route-table: Introduce multi-table route lookup.
d4798b5e7 ovs-router: Add infrastructure for multi-table routing.
ed0f34a17 dp-packet-gso: Fix segment count helpers sign.
b5e6e609c packets: Rework outer checksum helper for Coverity.
921628ff7 NEWS: Deprecate support for AVX512-optimized features.
c34c21bb0 ovsdb: raft: Actually suppress the disruptive server.
f77513b47 netdev-afxdp: Fix impossible typo.
f06d64b84 extract_ofp_fields: Check the OXM extension field range.
4e44e51d1 tunnel: Avoid matching on df and csum flags.
d0f074dec netdev: Use HW segmentation without outer UDP checksum.
ef762327f dp-packet-gso: Refactor software segmentation code.
d88363024 dp-packet: Optimize outer checksum for nested checksums.
9d9f17af8 dp-packet: Strip tunnel info when unneeded.
f8cd315bd dp-packet-gso: Request UDP checksum when needed.
9943a5977 dpif-netdev: Enhance checksum coverage for tunnels.
9d28a3245 dpif-netdev.at: Add helpers for checksum tests.
8813cc6c0 dpif-netdev.at: Rename checksum offloads tests.
4c83fae88 netdev-dpdk: Fix TSO packet length check for tunnels.
63c08daa9 netdev-dpdk: Enforce mono-segment mbufs.
970d9eb94 netdev-dpdk: Fix rx queue fill level with QoS.
40120c91e classifier: Remove leftover bits of classifier partitioning.
5f12cd410 ovsdb: raft: Discard pre-vote replies during the actual election.
167a16a1a netdev-afxdp: Require kernel v5.4+ and need-wakeup.
875d26158 ofproto-dpif-xlate: Log clarification for dp_hash method.
5ee7057fa dpdk: Update to use v25.11.
6a21414f2 NEWS: Deprecate running user-space with OOT Kernel module.
6b5f3d0b8 dpif-netlink-rtnl: Tighten probe for OOT Kernel tunnels.
4727452c2 NEWS: Deprecate Windows support.
5be77f1ec ovsdb-idl: Fix returning non-existent rows from uuid lookup.
fc406ea5d ovsdb: transaction: Fix logging order of duplicate index rows.
0b29edb5c dns-resolve: Do not treat never accessed responses as expired.
5debc2272 AUTHORS: Add MJ Ponsonby.
7f33eed25 dpif: Maintain upcall_pid, mtu and hash.
3fe7c5d32 dpif-netlink: Fix probing for broken meters on Linux v5.10+.
b4c158d97 dpif-netlink: Fix potential leak of a malformed meters netlink reply.
5148ef286 windows: Fix absolute-header.m4 for newer msys2 appearing as cygwin.
5fdcc4518 netdev: Remove legacy duplex API.
d44849b7a netdev: Fix full duplex capability for 25G ports.
ce0eec8f0 netdev-bsd: Cache features and speed.
3edde97a2 netdev-linux: Fix compatibility with older kernels.
12eb60759 netdev: Fix reported rate for Linux and BSD ports.
de6e3ade7 ipf: Work around thread safety warnings with clang 21.
3fa11d1b0 ipf: Fix potential deadlock with the clean thread on exit.
5d0c98d1c dpif-netlink: Fix memory leak when re-add vport channel.
28ec95972 configure: Disable clang 21 warning for uninitialized const fields.
77203b455 thread: Convert init/destroy lock functions to use non-const arguments.
7fb1f600a treewide: Fix clang 21 thread-safety warnings for init/create/destroy.
fb5871eb2 treewide: Remove OVS_GUARDED from RCU-based structure fields.
9bfe33e12 ssl: Support for SNI extension in clients for ssl/tls.
367ddc098 stream-ssl: Fix missing OPT_SSL_CIPHERSUITES in STREAM_SSL_CASES.
ad0d646a3 odp-execute: Fix null pointer dereference on null nlattr.
1577bfe40 netdev-vport: Free error string from str_to_u8() in tunnel config.
9434a69e0 github: Add a job to build on ubuntu-14.04.
efb2c5581 test-psample: Fix missing field initializer warnings on older GCC.
67e5e1998 test-netlink-policy: Fix missing field initializer warnings on older GCC.
367d59960 test-lib-route-table: Add missing RTPROT_BGP definition.
f83d2e4d5 netlink: Fix build on kernels < 4.1 due to missing RTA_VIA.
7fb51c4fd m4: Don't add -mno-avx512f if compiler doesn't support it.
42d99eb38 ovsdb-idl: Add a way to assert IDL txn as read only.
2e28fe3a5 offload-dpdk: Don't use 24bit value as 32bit.
56db5a267 compiler: Avoid 'returns_nonnull' attribute warnings on older GCC.
396ed84b7 treewide: Fix unused result warnings in NDEBUG builds.
1231108f6 ofproto-dpif.at: Wait for logs in select group tests.
0f8202e60 dpif-netdev: Optimize rwlock in port query API.
719c616a2 AUTHORS: Add Ivan Burnin.
c8d2017e2 checkpatch: Set explicit encoding in do_authors_exist.
8ddc9416d AUTHORS: Add Ihar Hrachyshka.
d2622ad07 tests: Remove unnecessary revalidator/wait's.
49d0be1d3 tests: Revalidate on flow change in tunnel-push-pop.
c9e43f319 tests: Ignore no tunnel port error on vswitch stop.
4f68c1ca2 tests: Don't fail when test path contains 'p2' string.
3b17f003c tests: Gracefully handle EADDRINUSE string from musl.
735967610 tests: Handle duration= with no fractional part.
9bd249369 dpdk: Use DPDK 24.11.3 release.
57d62cfd4 AUTHORS: Add Aleksandr Smirnov.
79db89c4b id_pool: Prevent requested ID range overflows uint32.
af403a464 Documentation: Add section about AI assistants.
2c4596732 appveyor: More robust OpenSSL installation wrt path changes.
ca8d92b9c appveyor: Temporarily move to previous image to unblock CI.
cd2ff530d dpdk: Convert dpdk-lcore-mask to DPDK lcore args.
7bf5a8b83 dpdk: Clean up dpdk option map.
f028ba719 vswitch.xml: Update docs for dpdk-lcore-mask.
310fe3224 netdev-dpdk: Remove workarounds for fixed checksum bugs.
0efebaf86 odp-execute: Fix packet length check for TSO packets.
99cac28f7 netdev-dpdk: Fix IP checksum with net/virtio.
c3e16065b netdev-native-tnl: Fix DF bit not being extracted into tunnel flags.
4fe10a771 MAINTAINERS: Move Russell to emeritus status.
9a2169a3f bond: Do not flag a revalidation when adjusting time.
1a8e0153b cirrus: Only update the main FreeBSD repository.
609526ca2 ovsdb: transaction: Silence dereference after null check warning.
7d691c6ea ovsdb: raft: Silence dereference after null check warning.
faca0cc47 ovsdb: relay: Silence dereference before null check warning.
3a5ea5f28 ovsdb: trigger: Silence dereference after null check warning.
1856bfa4d ovsdb: monitor: Silence dereference after null check warning.
fe90fb3ce ofproto: Fix missing lock when reading oftable->vacancy_up/down.
5deb96425 netdev-offload-dpdk: Fix memory leak for matching fragments.
df3703410 AUTHORS: Add Linda Wang.
b1e295d46 netdev-offload-dpdk: Fix vport hw-offload stat.
e0ee785b1 tests: system-traffic: Fix flaky floating IP test.
6e83dafc4 conntrack: Add support for IPv4 EPRT and EPSV.
8c8d16964 AUTHORS: Add Eli Oliver.
d2f1ca089 checkpatch: Add simple python comment spell checking.
e141dc9ae Set release date for 3.6.0.
3ffb1c401 ipf: Complete l4 checksum before frag out.
00dcc546a Documentation: Use @development-tools on dnf5.
270de5dfb ofproto: Move group-modify to mod_start instead of mod_finish.
f8d457ea2 Prepare for post-3.6.0 (3.6.90).
4a2c90ad8 Prepare for 3.6.0.
eeb7d7d99 checkpatch: Separate out the built-in spelling words.
b5f898cc3 AUTHORS: Add Alexandra Rukomoinikova.
6f2ca3fb2 db-ctl-base: Added filter option in show command.
943f9096e ovs-vsctl: Exit with error if postdb checks report errors.
0add983b3 ovsdb: Use table indexes if available for ovsdb_query().
5c4d60671 dpif: Fix infinite netlink loop in dpif_execute_helper_cb.
50e1e57f8 utilities:gdb: Add GDB function to dump Netlink attributes.
6d4044899 docs: Specify retis dependency on USDT probes.
0d9dc8e9c dpif-netlink: Provide original upcall pid in 'execute' commands.
0d5eece55 mcast-snooping: Properly check MLD packet length.
22732c0e6 tests: Add support for running system tests under retis.
049197282 seq: Fix deadlock with the time_init.
1210864a6 netdev-dpdk: Remove unused macro for TSO offloads.
3d2f64e5d ovsdb-idl: Add new functions to check the column type on the server.
f5819e699 json: Store short arrays in-place.
1de4a08c2 json: Use functions to access json arrays.
9669b50f5 json: Store short strings in-place.
6c48b29f5 json: Always use the json_string() method to access the strings.
41a4a3723 sparse/socket.h: Add AF_BRIDGE definition.
83af8ee6f tests: ipsec: Adjust status checks for upcoming Libreswan 5.3.
83de251fa ipsec: libreswan: Remove old certs before importing new ones.
80d723736 cirrus: Update to FreeBSD 14.3 and 13.5.
609060370 netdev-dpdk: Remove limit on maximum descriptors count.
edecb7404 python: idl: Don't notify the application on _Server database updates.
ab062d3cb netdev-dpdk: Adjust IPv4 checksum capability for vhost-user.
dd443c1a7 netdev-dpdk: Stop relying on vhost-user Tx flags.
b8032fac2 dp-packet: Remove direct access to DPDK offloads.
cf7b86db1 dp-packet: Rework TCP segmentation.
e36793e11 dp-packet: Resolve unknown checksums.
2956a6126 dp-packet: Rework L4 checksum offloads.
3daf04a4c dp-packet: Rework IP checksum offloads.
67abd5154 dp-packet: Rework tunnel offloads.
e2200485c dp-packet: Expand offloads preparation helper.
d29ba0abd dp-packet: Add OVS offloading API.
19ef1b1f0 dp-packet: Remove DPDK specific IP version.
52fdeda11 dp-packet: Remove Linux specific L4 offloads.
a86ae3c86 python: Add uuid/convert references to uuid for Row.__str__.
8ee7ecb8a db-ctl-base: Allow retrieving rows of type OVSDB_TYPE_UUID.
8a1a0ea7c AUTHORS: Add Changliang Wu.
aea473429 lldp: Fix out of bound write in chassisid_to_string.
614029aac conntrack: Allow inner NAT of related fragments.
ca9e67c80 daemon-unix: Handle potential negative values from sysconf().
99af7f379 ovsdb: Fix Coverity leak warning by marking code as unreachable.
2c634482f raft: Fix resource leak from ignored ovsdb_log_write_and_free() error.
b90304bfe ovsdb-server: Fix potential memory leak in parse_options().
d1bd62dae ofproto-dpif-upcall: Check odp_tun_key_from_attr() return value.
88737f02e ofproto-dpif-xlate: Fix memory leak in xlate_generic_encap_action().
8fca3f99c lldp: Fix Coverity warning about resource leak in lldp test.
d28382947 sparse: Define new AVX10 includes added in GCC >= 15.
0e419d1b4 sparse: Add workaround for OpenSSL configuration.
8224cd47f tests: tunnel-push-pop: Fix occasional failure of the drop test.
e99ce7d5d flow: Fix checksum offloads with simple match.
48ce3a5a5 dpdk: Use DPDK 24.11.2 release.
b42f9fde4 netdev-dpdk: Fix possible memory leak in vhost stats.
7e3a0b496 AUTHORS: Add Yang Yang.
60a219300 perf-counter: Enable exclude_guest by default.
2df25f970 util: Remove include of itself.
37848e218 util: Ignore return code from str_to_uint().
e180c431b tests: classifier: Add a stress test for prefixes reconfiguration.
6a61a70fc classifier: Fix race for prefix tree configuration.
9234b9b40 tests: classifier: Fix the rule number check during trie verification.
f7711efc9 ovs-router: Fix potential resource leak in JSON output.
5603b869a netdev-linux: Fix offloads for IPv6 UDP packets.
c852a8c76 netdev-native-tnl: Do not validate already checked checksum.
71f3dd3e9 conntrack: Fix embedded checksums in ICMP errors.
4b00509ea conntrack: Do not validate already checked checksum.
8a7f1292d ipf: Consider checksum only for fragmented packets.
585c8088e dpif-netdev: Enhance checksum coverage.
d49994634 flow: Fix bad IP checksum flag.
261f02ba3 ovs-ctl: Allow to set custom core file size for ovs daemons.
d000ff1cd ovs-router: Add JSON output for 'ovs/route/show' command.
6fc522174 ipsec: libreswan: Fix premature reconciliation of just added tunnels.
1b2eff486 github: Add a permanent workaround for malformed /etc/hosts.
28064e9fa AUTHORS: Add Dmitry Porokh.
421c94ee1 ovsdb: Introduce and use specialized uuid print functions.
94500f9bb tests: Run IPv6 ct fragmentation tests in different zones.
8aa649c7b NEWS: Note that OOT kernel module documentation has been removed.
6bd931716 docs: issues: Update for removal of OOT kernel module.
ef6cfc0a0 docs: configuration: Don't document OOT kernel module wrt connecting bridges.
aea939b24 docs: faucet: Remove references to OOT kernel module.
89e8c1249 docs: general: Remove references to kernel module.
68d742e84 debian: Remove documentation of OOT kernel module.
2b9aca477 docs: debian: Remove references to installing kernel module.
e03ccbce6 docs: backporting-patches: Remove documentation of OOT kernel module.
e0c07a8a7 docs: release: Remove documentation of OOT kernel module.
1015b13f0 ofproto-dpif-xlate: Add a drop action for native tunnel failure.
a53d67bf9 python: idl: Clear rows without losing indexes.
f1f214e5c ipsec: libreswan: Fix detection of loaded IPv6 connections.
e017142d1 python: Add example usage section to README.
79be51b9c python: Populate README with minimal context.
816f30b06 python: Add 'long_description' to 'setup.py'.
3e63999f9 python: Don't leave file handles open.
8fffcfcf6 AUTHORS: Add Martin Morgenstern.
8c9e7631c jsonrpc: Maximize receive buffer size.
ca8c27b7c jsonrpc: Add coverage for incomplete receives.
4443433d2 uuid: Fix a warning about zero byte truncation in the template.
fe53b478f dpdk: Fix main lcore on systems with many cores.
20fd9d480 AUTHORS: Add Vasyl Saienko.
96ee23a21 ovs-vtep: Fix vlan binding.
484208bd1 ipf: Maintain packet zone and direction.
056a37d6d ipf: Don't send expired frags.
effb2bb28 Documentation: Use mail-archive.com URLs for openflow-discuss ML links.
88ee8ae05 Documentation: Update links to DPDK documentation.
1e577cfb2 AUTHORS: Add Jay Ding.
6f33ac632 netdev-dpdk: Fix device info return value check.
ae6b778ab utilities: usdt-scripts: Retry on dp cache miss.
340c574e4 utilities: upcall_monitor: Add extra info to pcap.
c2deabc00 utilities: monitor_upcalls: Print ports from drops.
acd6d21e3 utilities: upcall_monitor: Print port names.
93ccf58a9 utilities: upcall_cost: Refactor port mapping cache.
ca804a7be utilities: upcall_monitor: Allow filtering on result.
c40a7ff9b utilities: upcall_monitor: Monitor dropped upcalls.
441407895 utilities: usdt-scripts: Remove sleep in loop.
9d15da43b ovsdb: raft: Fix cluster break down on leaving with some nodes down.
27315463b ovsdb: raft: Add debug logs for role transition.
cae3ff452 ovsdb: raft: Fix multitasking overrun warning when there is no leader.
1724a293d ofproto: Log bond rebalancing stats once in rebalance run.
ce77927bf ofproto-dpif-xlate: Embed support check in put_drop_action.
50dfd1ce3 AUTHORS: Update email for Ian Stokes.
7f4ee4395 python: Disable check for globals with never reassigned names (F824).
ba675897e ofproto-dpif: Fix spelling in comments and the support field macro.
f141b7c35 checkpatch.py: Don't run subject checks in source-file mode.
6403a49f3 rhel/systemd: Change owner recursively and also on /etc/openvswitch.
f3036be65 utilities: Add long poll statistics to the kernel_delay.py script.
2100a0454 tests: ovsdb-idl: Fix flaky insert and delete tests.
0d21dbc24 python: stream: Fix unlink attempt for ptcp IP address.
0b686a29b ofproto-dpif: Fix dp_hash mapping after select group modification.
3dea4e0fc checkpatch.py: Load multiple codespell dictionaries.
a824a6bb2 ovs-tcpdump: Improve 'mirror-to' option.
2d82a431f tests: Disable rate limiting for tests parsing flow dumps from logs.
15b6c25c8 rtnetlink: Add forward declaration of RTPROT_OVN.
defb8f33f datapath-windows: Fix possible null reference in _MapNlAttrToOvsPktExec
69f0acc9a tests: Fix 'ICMP related with SNAT' test case in offload scenario.
b65f324a7 AUTHORS: Add Dima Chumak.
1898112c8 ofproto: Add JSON output for 'fdb/show' command.
69826ad63 appveyor: Fix python PATH for a new pywin32-309.
0bdca8bf5 tests: system-traffic: Remove unnecessary bash dependency.
472847e69 AUTHORS: Add Frank Wagner.
a68887e1f windows: Fixed MSYS detection in CCCL.
caa2c8c77 github: Get sparse from the official GitHub mirror.
b83d3f51e netdev-offload-dpdk: Clean up vlan_push action function.
008759411 route-table: Rename bridge-related variables/arguments to netdev.
71a9720b7 netdev-offload-tc: Add missing comment from commit 273a4fce951a.
d56a5bacd python: ovsdb-idl: Fix persist_uuid references.
5ee2a3892 python: ovsdb-idl: Handle inserts w/o changes.
7b4d3137a stream-ssl: Remove support for deprecated TLSv1 and TLSv1.1.
19b894162 tunnels: Remove support for deprecated STT and LISP.
410e0f519 ofproto-dpif-xlate: Fix source IP lookup for non-bridge ports.
5292eb50a netdev-offload-tc: Only install recirc flows if the parent is present.
0fb370bdc flow: Explicitly pad tcp_flags for TCP and tp_dst for IGMP.
cb9e21dc3 netdev-offload-dpdk: Support offload of clone push_vlan action.
365c2e504 Set release date for 3.5.0.
fd021c97e tests: Use correct arguments to curl.
ac32bbe2c dpif-netdev: Fix Auto Load Balance debug log.
9f7eb58f7 miniflow_extract: Push ct_tp_{src, dst} for later frags.
c77175824 dpif-netdev: Preserve inner offloads on recirculation.
4baddffd5 ovsdb-server: Do not use filename after free.
b9be72920 netdev-vport: Ignore ipsec_ tunnel option prefix for all tunnels.
ce20ca063 ofproto-dpif-xlate: Fix memory leak in xlate_generic_encap_action().
f7c85a730 ofproto: Fix potential NULL pointer dereference in ofproto_type_xx().
9e784ed6c ofproto: Fix potential null-ptr dereference in meter_insert_rule().
5f6b8faca ofproto-dpif-ipfix: Add NULL check to dpif_ipfix_set_options().
68245b0c4 tests: Fix multiple Coverity warnings in test programs.
de39a5587 ovs-vsctl: Fix missing ovs_scan() return checks.
1936de256 nx-match: Fix potential integer underflow.
f2fac92e3 github: Update fedora image to 41.
35f49a595 documentation: Fix Sphinx program directive.
885e117fd documentation: Fix ovs-flowviz warnings on older Sphinx.
ed133507f fedora: Don't generate network-scripts-openvswitch for ver > 40.
481bc0979 route-table: Allow parsing routes without nexthop.
c5b3ac72d vlog: Add user command to inject log message.
cde106949 sparse: Remove wrappers for some DPDK headers.
f0e6638cf netdev-offload-tc: Fix ignore of dl type mask when installing flows.
8011f9ff9 faq: Update DPDK releases for older branches.
3e100bd93 AUTHORS: Add Markus Linnala.
ec8fe88d7 utilities/bashcomp: Do not run ovs-vsctl when not possible.
2472845c3 general: Use ovs_get_program_version().
ad59bb851 ovs-ctl: Allow to set oom-score for ovs daemons.
ae8dafe6b dpdk: Add ovs-appctl dpdk/get-memzone-stats command.
1594c5086 ofproto-macros.at: Fix hex matching in the strip_recird() macro.
a3c06c309 route-table: Use ofpbuf_use_const() for multipath attributes.
be5b46564 route-table: Fix potential memory leak.
f74777da0 route-table: Avoid potential NULL ptr dereference.
e16db1230 ofp-ct: Add missing struct declaration.
caed64d16 Prepare for post-3.5.0 (3.5.90).
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cni to version v0.8.0-340-g7c27007, which comprises the following commits:
f1cb561 docs: Fix broken link to "Version considerations" in SPEC.md
77b1001 spec: update number of specifically defined terms
Bumping cni-plugins.git to version v1.1.0-395-g6d8f05b8, which comprises the following commits:
6d8f05b8 Bump go version to 1.26
f9f86fdf fix revive linter
b2f23299 Update go.mod to Go 1.25.
adc3e6b5 bridge: include attempted IP address in AddrAdd error message
4161e445 build(deps): bump golangci/golangci-lint-action from 8 to 9
dada84a9 CVE-2025-52881: Bump selinux to 1.13.0
dfb1f9ac fix(test): use shorter veth peer name
ccc8314d vrf: fix route filtering to preserve IPAM-configured routes
8c4a6b3b bandwidth: handle nil bandwidth in CHECK
9b3772e1 portmap: ensure nftables backend only intercept local traffic
Bumping flannel-cni-plugin.git to version v1.9.0-flannel1-12-g09e4c7f, which comprises the following commits:
09e4c7f Bump google.golang.org/grpc from 1.69.0 to 1.79.3
99c8f33 Bump golang from 1.25.6-alpine3.22 to 1.25.7-alpine3.22
a1f477f Bump github.com/onsi/ginkgo/v2 from 2.27.5 to 2.28.1
9d9dbae Bump github.com/onsi/gomega from 1.39.0 to 1.39.1
122c4fd Bump alpine from 3.23.2 to 3.23.3
f5fdb63 Bump golang from 1.25.5-alpine3.22 to 1.25.6-alpine3.22
e70badd Bump github.com/onsi/ginkgo/v2 from 2.27.3 to 2.27.5
b84eef9 Bump github.com/onsi/gomega from 1.38.3 to 1.39.0
a10ad00 Bump alpine from 3.23.0 to 3.23.2
8b6781f Bump github.com/onsi/ginkgo/v2 from 2.27.2 to 2.27.3
be2d572 Bump github.com/onsi/gomega from 1.38.2 to 1.38.3
0940aaf Bump github.com/containernetworking/plugins from 1.8.0 to 1.9.0
521b4f6 Bump alpine from 3.22.2 to 3.23.0
dfcb1ec Bump golang from 1.25.4-alpine3.22 to 1.25.5-alpine3.22
5d45388 Bump golang from 1.24.9-alpine3.22 to 1.25.4-alpine3.22
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update from 1.21 to 1.27. Notable changes across versions:
- Add detection for Alibaba Cloud (ARM and x86)
- Add detection for AWS (baremetal, KVM, Xen)
- Add detection for Google Cloud
- Add detection for Nutanix AHV
- Add detection for UpCloud
- Add detection for OCI (Oracle Cloud Infrastructure)
- Add detection for bhyve, VMM (OpenBSD)
- Add detection for illumos lx-branded zones
- Add detection for Xen on ARM
- Add detection for ESX on ARM
- Add detection for Hyper-V on ARM
- Add detection for CRI-O and Podman containers
- Add detection for LDOM (Oracle/Sun)
- Add detection for z/VM (IBM)
- Improved QEMU/KVM detection via SMBIOS
- Support for --root-dir option for offline analysis
- Various bug fixes and test suite improvements
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping virt-viewer to version v11.0-100-ge07dbc9, which comprises the following commits:
e07dbc9 remote-viewer: Simplify oVirt username setting
16dab63 remote-viewer: Update govirt requirement
6557319 ovirt: Remove unused declaration ovirt_foreign_menu_get_gtk_menu
093212d Hide the header bar in full-screen mode.
9f3b839 Don't schedule unreveal timer if not active
6fcd5f4 feat: fix kiosk mode previous toolbar grab mouse cursor
17d8b9f Translated using Weblate (Russian)
bbba3d3 rpm: disable -Werror on Fedora / ELN
c596813 Translated using Weblate (Japanese)
29e7778 Translated using Weblate (Spanish)
a5ce69d Translated using Weblate (Chinese (Traditional) (zh_TW))
cd9b430 Translated using Weblate (Telugu)
f4bc61e Add Ctrl+Alt+Shift+Esc key command for logind's SecureAttentionKey
107f60c data: Add x-scheme-handler/vnc to desktop file
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping virt-manager to version v5.1.0-81-gb2b32ccc7, which comprises the following commits:
b2b32ccc7 tests: properly skip win11 aarch64 test on old osinfo
19f18e9f5 cli: add --boot firmware.enrolled-keys=,firmware.secure-boot=
e5c731787 domain: os: add set_firmware_feature helper
08ec19204 man: virt-install: remove some obscure --boot scearios
3eebb61b7 man: virt-install: change `--boot secure-boot=` docs
09ecf1cfd ci: Install `acl` to get more code coverage
48c9076d5 ci: add `workflow_dispatch` to more workflows
91f506f06 testdriver: add more complete zfs XML
2c87e485e uitests: createvm: add Customize->Add Hardware->TPM case
20d375a04 details: Fix TPM label from `Customize` wizard
23d6f9088 tests: cli: fix aarch64-win11 with latest osinfo-db
d306fb6b2 uitests: Add coverage exclusions
198778dfb uitests: cover NVME disks and controller
98921c4dc uitests: cover USB startup policy
9681c3d43 ui: add USB startup policy mnemonics
b3daef7ef testmock: add --test-options=disable-name-validation
ba532d3ed uitests: relax alert lookup naming
eba62e983 uitests: fix snapshot name validation test
5d7c66378 man: secure-boot: don't mention entrolled-keys
23dd48ae9 cli: add --boot secure-boot option
9ab2918fa virtinst: add support for iommufd
d13271422 virtinst: fix locale when running in flatpak
90e425b59 ui: Show NVMe Controller details
08b547366 virtManager: Add NVMe disk type
97505a9fe virtinst: implement NVMe disk target generation
605b3d807 virtinst: Add NVMe Controller
6f1adcc92 virtinst: Add serial controller option to cli
206e79d50 tests: use Node.path when available
711275b92 tests: handle "collection_path" and "path" for pytest_ignore_collect()
a5a540369 tests: port pytest_ignore_collect() to pathlib
10014e150 addhardware: Add usb as a recommended sound device
606633249 Translated using Weblate (Swedish)
04ab5617a Translated using Weblate (Indonesian)
7fd958770 Translated using Weblate (Estonian)
9a9267470 Translated using Weblate (Turkish)
2af8e00c8 Translated using Weblate (Romanian)
ff0e401ee Translated using Weblate (Chinese (Simplified) (zh_CN))
fe5e1ea17 Translated using Weblate (Portuguese (Brazil))
a91f48faa Translated using Weblate (Portuguese)
0fbc02c6e Translated using Weblate (English (United Kingdom))
0881c9c64 Translated using Weblate (Italian)
4afe2b71e Translated using Weblate (Turkish)
74d5b0f9e Translated using Weblate (Chinese (Simplified) (zh_CN))
cc2bb397e Translated using Weblate (Chinese (Simplified) (zh_CN))
39791b73c Translated using Weblate (Kabyle)
e9bf0bc12 Translated using Weblate (Chinese (Simplified) (zh_CN))
984d20203 Translated using Weblate (Finnish)
d150bab3f Translated using Weblate (German)
43f4c7859 Translated using Weblate (Polish)
7c2bebaee Translated using Weblate (Russian)
f5b56cdec Translated using Weblate (Korean)
904f95291 Translated using Weblate (Swedish)
bc9e5dc15 Translated using Weblate (Spanish)
015fb0b7f Translated using Weblate (Georgian)
3a66f48e2 Translated using Weblate (Ukrainian)
a5553cb91 Translated using Weblate (Romanian)
87298b9c9 Translated using Weblate (Czech)
35ad9057f virtinst: Fix XDG_DATA_HOME handling
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping rootlesskit to version v3.0.0-alpha.2-2-ga313ce8, which comprises the following commits:
3135d58 v3.0.0-alpha.2+dev
48a2131 v3.0.0-alpha.2
cc21afb Build(deps): Bump golang.org/x/sys from 0.39.0 to 0.40.0
0c54ba3 Build(deps): Bump github.com/containers/gvisor-tap-vsock
c62a145 fix(testsuite):fix flaky by ensure port is free to use
bac9c12 Build(deps): Bump golang.org/x/sys from 0.38.0 to 0.39.0
e814ea0 Build(deps): Bump github.com/containernetworking/plugins
d95fa30 Build(deps): Bump golang.org/x/sync from 0.18.0 to 0.19.0
45ea529 Build(deps): Bump actions/setup-go from 5 to 6
8b0d41e Build(deps): Bump actions/checkout from 5 to 6
64d4cd5 v3.0.0-alpha.1+dev
7ae0e6b v3.0.0-alpha.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update oath-toolkit from 2.6.2 to 2.6.14. Drop patches and
workarounds that are no longer needed:
- 0001-oath-fix-macro-definition-error.patch (file removed upstream)
- EXTRA_AUTORECONF m4 workaround (AM_PATH_XML2 dropped in 2.6.7)
- Stale md5sum checksum
Upstream changes since 2.6.2:
2.6.14 (2026-01-27):
- pam_oath: Support null_usersfile_okay parameter
- Build fixes for glibc 2.43
2.6.13 (2025-07-29):
- liboath/libpskc: Fix _FORTIFY_SOURCE build problem
- liboath: Fix --with-openssl builds
- Git hosting moved from gitlab.com to codeberg.org
2.6.12 (2024-10-03):
- pam_oath: Drop privs for usersfile with ${HOME} (CVE-2024-47191)
- liboath: Don't follow symbolic links for usersfile updates (CVE-2024-47191)
- oathtool: Fix test suite on 32-bit big-endian platforms
- libpskc: Fix linker warning with mold, musl implicit declaration
2.6.11 (2024-01-11):
- liboath: Handle invalid base32 encoded secrets
2.6.10 (2024-01-03):
- Build fixes for Windows and Arch Linux
2.6.9 (2023-07-09):
- Improve compatibility with recent libxmlsec
2.6.8 (2023-07-09):
- libpskc: Fixes for recent libxmlsec releases
- pam_oath: Provide fallback pam_modutil_getpwnam implementation
- liboath: Builds on Windows
2.6.7 (2021-05-01):
- pam_oath: Support variables in usersfile string parameter
- build: Drop AM_PATH_XML2 in favor of pkg-config
2.6.6 (2021-01-20):
- oathtool: Handle HOTP --counter values > 0x7FFFFFFFFFFFFFFF
2.6.5 (2020-12-29):
- oathtool: Support reading KEY and OTP from stdin or filename
2.6.4 (2020-11-11):
- Fix libpskc memory corruption bug
- pam_oath: Fail gracefully for missing users
2.6.3 (2020-11-07):
- oathtool: Support TOTP with hash SHA512
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We add gettext as a dependency to fix:
ERROR: libvmi-0.14.0+git-r0 do_configure: QA Issue: AM_GNU_GETTEXT used but no inherit gettext [configure-gettext]
ERROR: libvmi-0.14.0+git-r0 do_configure: Fatal QA errors were found, failing task.
ERROR: Logfile of failure stored in: tmp/work/x86-64-v3-poky-linux/libvmi/0.14.0+git/temp/log.do_configure.3722649
ERROR: Task (recipes-extended/libvmi/libvmi_git.bb:do_configure) failed with exit code '1'
NOTE: Tasks Summary: Attempted 3936 tasks of which 3928 didn't need to be rerun and 1 failed.
Bumping libvmi to version v0.10-1148-g82bbee6, which comprises the following commits:
82bbee6 Fix pointer mismatches, which GCC complains about (#1120)
77a677a Add vmi_map_guest_pfns() function (#1118)
b196d72 Remove old debian from ci (#1119)
872ccc6 Fix NtBuildNumber read (#1114)
f02aeb7 implement Windows PTE resolving (#1074)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We update our python checksum and drop a patch that is no longer needed.
Bumping libvirt to version v12.1.0-107-g9fa6beff05, which comprises the following commits:
9fa6beff05 qemuxmlconftest: Update 's390x' tests using 'virt-4.2' machine type
4537c0b870 qemuMigrationSrcBeginPhase: Don't call 'qemuBlockNodesEnsureActive' with offline VM
59fde80f39 qemuMigrationSrcBeginXML: Don't call 'qemuMigrationSrcBeginPhaseBlockDirtyBitmaps' with offline VM
623844bf2a virsh: migrate: Add support for VIR_MIGRATE_PARAM_MIGRATE_DISKS_TARGET_ZERO
f5fc45efea qemu: migration: Introduce 'VIR_MIGRATE_PARAM_MIGRATE_DISKS_TARGET_ZERO'
6670924a0d virsh: Add support for 'VIR_DOMAIN_BLOCK_COPY_TARGET_ZEROED' as '--dest-is-zero'
aa7d3142aa qemu: Add VIR_DOMAIN_BLOCK_COPY_TARGET_ZEROED flag for virDomainBlockCopy
b7e51e875a qemu: monitor: Add support for 'target-is-zero' option of 'blockdev-mirror'
aba64fc539 qemu: capabilities: Introduce QEMU_CAPS_BLOCKDEV_MIRROR_TARGET_IS_ZERO
f7ae47274a qemuMigrationSrcPerformTunnel: Remove 'migrate_disks' argument
7abfcef53c qemuTranslateSnapshotDiskSourcePool: Use proper error code
d9e2db9445 qemu: conf: Don't use VIR_ERR_INTERNAL_ERROR for config file parsing errors
42ef9a200a qemu: backup: Move setup of VIR_STORAGE_NET_HOST_TRANS_FD to qemuBackupPrepare
231ae15e97 qemuxmlconftest: Add missing test for <readonly> attribute of p9-fs devices
20ecc25b91 qemuBuildFSStr: Properly format 'readonly' attribute
2b03d26471 qemuBuildFSStr: Drop code for VIR_DOMAIN_FS_DRIVER_TYPE_HANDLE
b05fc0eabf qemu: capabilities: Don't advertise support for VIR_DOMAIN_FS_DRIVER_TYPE_HANDLE
df3f46c28c qemu: validate: Reject configs with VIR_DOMAIN_FS_DRIVER_TYPE_HANDLE
954036635a scripts: dtrace2systemtap: Fix argument name extraction regex to avoid '*' in names
95d29b66b4 hyperv: Remove unnecessary hash table size query.
85fdb72ac0 hyperv: use constants for xml namespaces
a561883abf qemu: add automatic port allocation for pull-mode backup NBD servers
36cf50f85b qemu: driver: Setup 'virPortAllocator' for backup NBD server ports
d1c6f0edc1 qemu: conf: add setup for automatic port allocation for pull-mode backup NBD servers
406b7fb0bd tests: Add iommufd fdgroup test
0a83b28795 qemu: Implement iommufd fdgroup
58875a6df6 conf: Add iommufd fdgroup support
fc516031ed qemu: Implement iommufd
c03b8f0804 conf: Introduce domain iommufd element
c1d38e9428 src: Use virHostdevIsPCIDeviceWith* to check for IOMMUFD
d1fb5cf127 qemu: Update qemuDomainNeedsVFIO to ignore PCI hostdev with IOMMUFD
c89b2bf1a8 qemu: Expand call to qemuDomainNeedsVFIO
ffa8020d36 hypervisor: Fix virHostdevNeedsVFIO detection
d0afa0a842 conf: Refactor virHostdevIsPCIDevice
f89e3dbce8 conf: Move and rename virStorageSourceFDTuple object
1a528a4d29 network: Don't enable ip_forward for VIR_NETWORK_FORWARD_OPEN
70b3053057 qemuhotplug: Introduce interface-network-hostdev
685f359eaf qemuhotplugtest: Use fake drivers
605112c584 virnetworkportxml2xmldata: Use different PCI address in plug-hostdev-pci.xml
b01baffbb2 qemuxmlconftest: Separate fake drivers into a separate file
6d6da1cbac tests: Drop WITH_QEMU from qemu specific tests binaries/libraries
cd6a1ba222 networkxmlconftest: s/fail/cleanup/
d9b34ad12b network: Format <ip/> element using virXMLFormatElement()
05cdfcf568 src: Drop NULL check before calling virBufferEscapeString()
54f5032e57 hyperv: Implement virDomainSnapshotGetParent()
1a5f2ad4c8 hyperv: Implement virDomainSnapshotCurrent()/virDomainHasCurrentSnapshot()
09c0b24424 hyperv: implement virDomainSnapshotGetXMLDesc()
00ccf5b2a8 hyperv: implement virDomainListAllSnapshots()/virDomainSnapshotNum()
6abb988fd1 hyperv: Implement domainSnapshotLookupByName()
293bb59e75 viriommufd: Set IOMMU_OPTION_RLIMIT_MODE only when running privileged
1fd9f5a3db qemu: Enable AMD IOMMU XTSUP by default
e1b8853e48 conf: support >255 vcpu w/ amd-iommu xtsup
d47de9e8b9 conf: fix error log for passthrough and xtsup attributes
2842d89706 conf: fix virDomainIOMMUDefEquals for amd_iommu
2e25854933 util: implement virHostCPUGetOnlineBitmap() for FreeBSD
88b5e33b4e rpc: free saved close error in virNetClientDispose
e25b82c5f8 tests: Create fake root dirs later
0b54c9d535 docs: Clarify host-model description in domain capabilities
57e5bb55ce virsh: Add --expand-cpu-features option for domcapabilities
3215fee349 qemu: Implement VIR_CONNECT_GET_DOMAIN_CAPABILITIES_EXPAND_CPU_FEATURES
8aa13d1b16 Introduce EXPAND_CPU_FEATURES flag for domain capabilities
f552faab53 docs: storage: Note that refreshing the storage pool is needed on outside modification
1ee7d7147b util: Move 'virProcessLimitResourceToLabel' into same preprocessor if-block as only caller
97f3fcd294 qemu: monitor: Use 'flat' mode of 'query-block'
3ae6de95f2 qemu: capabilities: Introduce QEMU_CAPS_QUERY_BLOCK_FLAT
e7d959a87f qemucapabilitiestest: Update 'caps_11.0.0_aarch64' to 'v10.2.0-2062-g084a6c6e73"aarch
75edc7ae98 qemucapabilitiestest: Update 'caps_11.0.0_x86_64' to 'v10.2.0-2062-g084a6c6e73"
837463f83f qemu: processShutdownCompletedEvent: Remove inactive VM object after shutdown
89d2948a16 qemu: hotplug: Don't access disk definititon after it was freed after media change
bed561c07a qemuDomainAttachDeviceDiskLive: Remove 'disk' variable
25662b3700 qemu_hotplug: Fix crash when attaching network inteface with hostdev network
2f25afba55 util: extend virHostCPUGetInfo() for FreeBSD
4cb677df95 docs: bhyve: add arm64 guest example
9c304e5cc6 docs: bhyve: fix typo in version number
d760c5c12e docs: bhyve: document NUMA domains configuration
3f3cb3ab51 hyperv: report whether guests have TPM enabled
83621dcb33 qemuhotplugtest: Run "interface-hostdev" test cases only on Linux
f9bb819fc4 qemuhotplugtest: Introduce interface-hostdev test case
662b1f4eb3 virnetdevmock: Mock virNetDevSaveNetConfig() and virNetDevSetNetConfig()
e9798b8397 virpcimock: Create net/ subdir for devices
542230251b virpcimock: Create sriov_totalvfs file and virtfnN symlinks
d8c70c8988 tests: stop mocking virGetUserRuntimeDirectory()
79d97d2b4f tests: point $HOME and $XDG_* into usable fake root directory
f83c0a5e6e consistently use glib g_getenv() instead of libc getenv()
52806b89d6 util: make completely separate functions for WIN32 versions of virGetUser*Directory()
5b1c8c8b86 util: rename virGetUserDirectory(ByUID) to virGetUserHomeDirectory(ByUID)
2dd4298339 remote: reduce scope of userdir in remoteGetUNIXSocketHelper()
86a68ee852 util: reduce scope of rundir in virPidFileConstructPath()
65cd851e57 util: reduce scope/autofree-ify rundir in virDaemonUnixSocketPaths()
331d9fe3ba qemu: support setting default route for passt interfaces inside the guest
acd8e9595f conf/util: fix non-specification of IP route destination address
21c8588683 util: make the route arg to virNetDevIPRouteGetPrefix const
1468f995e7 qemu: only limit IPv4 prefix for slirp
4b5c555e97 qemu: reorganize qemuValidateDomainDeviceDefNetwork()
0ae2dde5a8 qemu: delete passt "repair" socket when appropriate
3ea1550c64 test: Default to ROM type for loader
82b09f105a bhyve: support NUMA configuration for domains
e4b0fdb72f hyperv: implement virDomainDefineXMLFlags()
e62e777d3f hyperv: fix flags passed to virDomainDefParseString()
7aed06b055 hyperv: ensure we don't define multiple domains with the same name
bf27594575 hyperv: improve error message when redefining domain
fa016baf0a util: json: fix memory leak in virJSONValueFromJsonC()
d7b3be8ca3 secret: install service file only if init_script is 'systemd'
03f2672ab4 qemu: Fix IOMMUFD and VFIO security labels
b7483e6558 security: Cleanup hostdev label error logic
75f698c77f security_apparmor: Use g_auto* in AppArmorSetSecurityHostdevLabel
d704458b31 Post-release version bump to 12.2.0
6f0df1af01 Release of libvirt-12.1.0
496cccf47f news: Mention latency histogram support and (managed) save fixes
4a0424e2f3 Translated using Weblate (English (United Kingdom))
39b3b2eb37 fdstream: fix EOF handling when reading data
774241017a fdstream: don't set return value if looping to read more data
656f51dd20 news: document bhyve changes for 12.1.0
b0e57a2b35 NEWS: Document features/improvements/bug fixes I've participated in
2c6fe784ac news: document new hyperv features
4374dbbbf0 qemu_hotplug: enter monitor in order to rollback passed FD
fe782ed334 domain_conf: initialize network hostdev private data
10d5a41231 util: fix use-after-free in virIdentityGetSystem
633ac90d2b vmx: log full .vmx content
3d1e6d92de qemu: Fix job handling when domain dies in post-copy migration
634b40ccab po: Refresh potfile for v12.1.0
dbf3d81d24 Translated using Weblate (Chinese (Simplified) (zh_CN))
82512796fe Translated using Weblate (Spanish)
e943aff795 Translated using Weblate (Spanish)
8a1bd82f50 Translated using Weblate (Spanish)
29a53e39c0 Translated using Weblate (Czech)
92cbb0fcd7 Translated using Weblate (Greek)
f88910b713 Translated using Weblate (Romanian)
e39ce22996 Translated using Weblate (Greek)
b713afcebd Translated using Weblate (Greek)
42eb8b6d0b Translated using Weblate (Swedish)
ce5e429171 Translated using Weblate (Swedish)
d507c85f93 Update translation files
aa48051095 Added translation using Weblate (Chinese (Traditional Han script))
5b6adb61c8 Translated using Weblate (Georgian)
6085f809ad bhyve: Default to ROM type for loader
f051939111 news: Document support for uefi-vars device and firmwares
0151db88c2 virsh: Update for varstore handling
31e40b6229 include: Mention varstore where applicable
bcda5b2efd qemu_command: Use uefi-vars device where appropriate
0ea04024ef tests: Add firmware descriptors for uefi-vars builds
bcbb2667e2 security: Handle varstore file
a32b4a6037 security: Mark ROMs as read only when using AppArmor
5dc97de2c4 qemu: Create and delete varstore file
41fe1199bb qemu: Introduce qemuPrepareNVRAMFileCommon()
0dd118ccee qemu_firmware: Generate varstore path when necessary
df3121d21e qemu: Introduce varstoreDir
da7eb72148 qemu_firmware: Fill in varstore information
fa74aae490 qemu_firmware: Allow matching stateful ROMs
ffe37c6989 qemu_firmware: Use of NVRAM implies stateful firmware
500c010df2 qemu: Fill in varstore element in domcaps
3d6987914b conf: Include varstore element in domcaps
a440ada214 qemu_firmware: Report NVRAM template path for ROMs
cab5b6532d qemu_firmware: Support extended syntax for ROM firmware descriptors
d0c6aa084f qemu_firmware: Consider host-uefi-vars feature in sanity check
91337ee06d qemu_firmware: Split sanity check
83679d7338 qemu_firmware: Parse host-uefi-vars firmware feature
38c4c3f654 tests: Add firmware-auto-efi-enrolled-keys-aarch64
0653a2eae2 tests: Add firmware-auto-efi-varstore-aarch64
d8e0e9c3ce tests: Add firmware-auto-efi-varstore-q35
71d6399068 tests: Add firmware-manual-efi-varstore-aarch64
77b44120c5 tests: Add firmware-manual-efi-varstore-q35
bd35046517 qemu: Validate presence of uefi-vars device
12cdd61383 qemu_capabilities: Introduce QEMU_CAPS_DEVICE_UEFI_VARS
1c2dbdf3ac conf: Update validation to consider varstore element
3feee6d0ab conf: Parse and format varstore element
b5da97c5b9 schema: Introduce osnvram define
ccdff699ac tests: Rename custom JSON firmware descriptors
1504b7f687 conf: Move type=rom default for loader to drivers
375c82a0f8 qemu_firmware: Only set format for custom loader if path is present
a03a820572 docs: Improvement related to firmware selection
38379f59c0 docs: Rename "BIOS bootloader" section to "guest firmware"
4d0c5bc5be hyperv: Add basic domainGetBlockInfo() API implementation
95d8909283 hyperv: Add resource subtype definitions
331a392b96 conf: support windows paths in virDomainDiskByName()
9b5831910f hyperv: add support for secure boot configuration
82ccd68755 hyperv: Clean up unnecessary header includes
c07b4e91e3 qemu: saveimage: Use 'virFileWrapperFd' when loading non-sparse saveimage
0e2ab42778 qemu: driver: Merge 'qemuDomainRestoreInternal' and 'qemuDomainObjRestore'
72a65c6944 qemuSaveImageCreateFd: Handle case when 'virQEMUFileOpenAs' doesn't return a file fd for 'sparse' format
6a2a77b747 virfile: Introduce 'virFileFDIsRegular'
19d684706d qemuMonitorMigrateToFdSet: Drop 'flags' argument
0d3290d152 qemuSaveImageOpen: Remove wrong ATTRIBUTE_NONNULL
e9b931d3e4 virpci: Report an error if virPCIGetVirtualFunctionIndex() fails
edb3350c64 bhyve: implement domainGetVcpuPinInfo
387543c57f bhyve: support vcpu pinning
3ea0a44f7a qemu: Report error aborting stopped postcopy migration
6c2c9e21ac virstorageobj: Make virStoragePoolObjAddVol() report an error on failure
dbdaf22b63 virsh: report "unknown" for autostart when API query fails
da815a6a7b virsh: return failure exit code when UUID fetch fails
f09d02bf0f news: Mention firmwareFeatures element for domaincaps
cf4dfcf795 docs: Document firmwareFeature element for domaincaps
87c072c08b qemu: Fill in firmwareFeature element for domaincaps
928bdc3e67 conf: Add firmwareFeatures element for domaincaps
463322ec48 schema: Add firmwareFeatures element for domaincaps
f335c578d1 tests: fix mocking on macOS
f37e14119c iommufd: fix FD leak in case of error
75db232f90 tests: properly mock VFIO and IOMMU checks
63434db800 qemu: Fill iommufd domain capability
855f8fe9e2 conf: Introduce iommufd enum for domaincaps
5d16bef1a6 qemu_hotplug: Add support to hotplug host device with IOMMUFD
3f7ad3a8a5 qemu_command: Extract building IOMMUFD props to function
300ebf01b8 qemu_hotplug: Remove iommufd object if no longer needed
b21b6dcc72 qemu: Save IOMMUFD state into status XML
f67e4ac4d0 qemu_command: Don't use host property if IOMMUFD is used
4611f227c7 qemu: Convert vfioDeviceFd to qemuFDPassDirect
df59beed37 qemu: Convert IOMMUFD to qemuFDPassDirect
4a80a0468e qemuxmlconftest: Set fake FD for IOMMUFD
15ad45758b qemuxmlconftest: Rename and refactor testSetupHostdevPrivateData
cb23831c02 qemuxmlconftest: Refactor host device preparation
c83b4f367f qemu_process: Refactor qemuProcessOpenVfioFds
d194f362f3 qemu_process: Fix FD leak with multiple host devices using IOMMUFD
7c062bfc4f qemu_domain: Add missing IOMMUFD cleanup
4b176cfc38 conf: Introduce virDomainDefHasPCIHostdevWithIOMMUFD
97eed30948 conf: Introduce virHostdevIsPCIDeviceWithIOMMUFD
3365bff598 util: Use virPCIDevice as argument in virPCIDeviceGetVfioPath
76b720168b qemu_process: Refactor qemuProcessOpenVfioDeviceFd
22c666097c util: Move openning VFIO device to virpci
ff2848827f qemu_process: Refactor qemuProcessOpenIommuFd
c684b83a68 util: Move openning IOMMU device to viriommufd
0c1af67be5 qemu: Move IOMMUFD validation to qemu_validate
4a0ea9bcf1 qemu: Introduce QEMU_CAPS_OBJECT_IOMMUFD
cb33103c4a scripts: avoid matching 'char **' as string for systemtap
5787326541 qemu: Setup disk latency histograms on startup/hotplug/update
b874c944bd Introduce support for disk operation latency histogram collection
ad65b00c13 docs: formatdomain: Reword section about the '<statistics>' element under disk driver
7da1a83914 docs: formatdomain: Fix indentation of docs for <disk><driver><statistics> element
ad4830ce68 qemu: monitor: Add handlers for 'block-latency-histogram-set'
237e49127a Expose latency histograms via 'virConnectGetAllDomainStats'
1c77d396ea qemu: monitor: Extract block latency histogram stats into 'qemuBlockStats'
42a39d703d qemu: process: Rename 'qemuProcessSetupDiskThrottling' to 'qemuProcessSetupDisks'
1789a0f8a3 qemu: Extract disk setup done via QMP into a separate helper
11057abfd1 qemu: Wire up new hyperv host-model mode behavior
380fb89390 conf: Parse hyperv features even for host-model
79b05df9f8 bhyve: improve loader handling on arm64
e23fd0b7fd In virFDStreamRead(), fill buffer from this and next messages
caf74fab50 bhyve: add capability probing for ACPI
fc52d176ce bhyve: do not use deprecated IOAPIC option
eaf1f15173 util: remove duplicate logging of firewall command
53d43ee5da docs: secret: Add documentation of secret encryption feature
eb0b65e07a secret: Add functionality to load and save secrets in encrypted format
bd6c201f9a secret: Rename virSecretObj structure attribute from base64File to secretValueFile
1c86748cf1 secret: Add secret.conf configuration file and parse it
97758bc9a0 secret: Set up default encryption secret key for the virtsecretd service
ffc316e99a util: Add support for GnuTLS decryption
73a52dc108 qemuProcessRefreshDisks: Don't bother to refresh disks on cold boot
536646deaf qemuProcessUpdateVideoRamSize: Remove 'driver' argument and adjust callers
40b7e2a39b qemu: Refactor tray_status handling
b9b9092c9c qemuDomainAttachDiskGeneric: Avoid unneeded disk property refresh after hotplug
bc939353d9 qemuDomainDiskPrivate: Remove unused 'tray' field
8ae3835079 conf: domain: Add VIR_DOMAIN_DISK_TRAY_NONE state for devices without tray
fac54e0d73 qemuDomainDiskInfo: Use proper type for 'io_status'
a94d2b9871 qemuMonitorJSONGetBlockInfo: Don't fail if 'io-status' field gets new values
4666d19617 qemuMonitorJSONHandleMemoryFailure: Simplify error case and value extraction
25922c1fcb qemu: monitor: Add test validating that 'eventHandlers' are properly sorted
6f372d526f qemuMonitorJSONHandleMigrationStatus: Simplify error case
ed94a8336a qemu: Drop 'removable' field from 'qemuDomainDiskInfo'
1292e757c6 qemu: process: Unexport 'qemuProcessRefreshDisks'
5b392ec976 qemuMigrationSrcBegin: Drop disk refresh step
52e09a7875 qemu: Drop 'empty' filed from 'qemuDomainDiskInfo'
56f7dd88d4 qemuProcessRefreshDiskProps: Drop code to remove disk source
074f7fba94 qemu: Remove 'removable' field from 'qemuDomainDiskPrivate'
861be1078e qemuDomainDiskInfo: Drop 'nodename' field
0d3ef7cb71 qemu: Implement support for persistent reservation migration control
b0edb7eb9b qemu: capabilities: Introduce QEMU_CAPS_DEVICE_SCSI_BLOCK_MIGRATE_PR
fb8d697554 qemucapabilitiestest: Update 'caps_11.0.0_aarch64' to 'v10.2.0-1114-gb3abdfa486'
5f5a2b0c8c qemucapabilitiestest: Update 'caps_11.0.0_x86_64' to 'v10.2.0-1114-gb3abdfa486'
06e7fee707 network: add comment to table that it belongs to libvirt
aa802b8723 hyperv: Implement virDomainInterfaceAddresses()
a422ebb178 hyperv: Move MAC parsing into a separate function
7fdc9111d2 virsocketaddr: Introduce virSocketAddrSubnetToPrefix()
fb317b296d datatypes: Declare autofree func for virDomainInterface type
8e377728c5 nwfilter: move shared nwfilter driver functions into nwfilter_tech_driver.c
6e101ad0c7 nwfilter: remove redundant sys/utsname.h include
a82cc0c435 nwfilter: rename generic names to virNWFilter* and CamelCase
7136e9155a docs: add description for USB port matching
f0cdc0fca4 nodedev: add USB port to nodedev XML
b97afe28f5 tests: validate an XML config with USB bus/port set
53e8f30dc8 schema: add USB port attribute
7a888d722c conf: add support for host USB port matching
73677f062f util: implement support for finding host USB devices by port
4b97cdd1a5 util: generalize the host USB device search APIs
93e1f5ee96 virusb test data: add devpath files for port addressing
fc5840b498 qemu: Ignore cmp_legacy CPU flag
afe6e5d260 virsh: Switch cmdDomIfAddr() to vshTable
9373d8da6a qemu_command: Generate granule prop for virtio-iommu
2eea8e3829 qemu_validate: Check whether granule of virtio-iommu is supported
43892d9915 conf: Introduce granule attribute for virtio-iommu
17693931e6 qemu_command: Generate aw_bits prop for virtio-iommu
2fccdda851 conf: Allow aw_bits for virtio-iommu
befdd44bf8 qemu_capabilities: Introduce QEMU_CAPS_VIRTIO_IOMMU_AW_BITS
e1c6e3fef0 conf: Teach virDomainParseMemory() new retval
b4c792313a hyperv: Avoid memleak in hypervDomainDefParsePhysicalDisk
090223d01a src/esx/esx_vi.c: Debug path element comparisons
29aa558642 bhyvexml2xmltest: Avoid leaking driver caps
720f71c1da bhyvexml2argvtest: Avoid leaking firmwareDir
210cae66e0 bhyvexml2argvtest: Don't leak parts of driver config
f0af542077 bhyvexml2argvtest: Avoid leaking driver caps
fcc5910557 bhyvexml2argvmock: Provide virCPUProbeHost()
2f1421d83b bhyve_command: Avoid memleak in bhyveBuildNetArgStr()
df2cb810a3 bhyve_command: Avoid leaking @buf in virBhyveProcessBuildBhyveCmd()
1ce8c35c29 bhyve: Avoid leaking @addrs in bhyveDomainAssignPCIAddresses()
1779a8600f bhyve: Avoid memleak in bhyveParsePassthru()
bf34b90bb4 qemuMigrationDstPrepareAnyBlockDirtyBitmaps: Always consider offered bitmaps
a4f610ff3f qemu: migration: Always offer block dirty bitmaps during migration
0c75fc1747 qemuMigrationDstPrepareAnyBlockDirtyBitmaps: Fix check for existing bitmaps
b2fe3465de qemu: monitor: Detect list of bitmaps from 'qcow2' format specific data
71643c197e qemublocktest: Iterate all nodenames in 'testQemuDetectBitmaps'
864a70114f rpcgen: Pass XDRPROC_T_3ARGS to test_demo.c
2c66b6d72c build: add detection of xdrproc_t arguments count
74fc02d792 tests: qemuxmlconfdata: provide iommufd sample XML and CLI args
7d2f91f9cb qemu: Update Cgroup, namespace, and seclabel for iommufd
2f0999a161 qemu: open iommufd FD from libvirt backend
f623080472 qemu: open VFIO FDs from libvirt backend
f91a07d0c8 qemu: Support per-process memory accounting for iommufd
1043e04e17 qemu: Introduce privateData for hostdevs
fd113055bb qemu: Implement support for associating iommufd to hostdev
203002249b tools: Fix chown syntax in virt-pki-validate.c (dot -> semicolon as owner and group separator)
b9d9ff39d3 qemu: introduce the "virtualization" feature
ca98f39e64 networkxmlconftest: Expect success for "hostdev" case only on Linux
e7c6f06747 ci: regenerate with 'lcitool manifest'
240deda72c tests: Rename networkxml2xmltest to networkxmlconftest
8f5e0903d6 tests: Drop networkxml2conftest
c26c7b1cd3 networkxml2xmltest: Do conf test
ee8381e729 networkxml2xmltest: Sync test cases with networkxml2conftest
369020180a networkxml2xmltest: Store parsed def for future tests
2d6a376ec0 networkxml2xmltest: Dynamically allocate testInfo struct
5b2ed0d137 networkxml2xmltest: Move path generation into testRun()
c24157056f networkxml2xmltest: Introduce testRun()
04034eeb34 networkxml2xmltest: Don't recreate xmlopt object
eff3431dca networkxml2conftest: Allow regenerating more in one run
30baa49454 networkxml2conftest: Allow regenerating hosts file
319bbb5c84 networkxml2conftest: Avoid potential leak
ecb2e06bdf test: wire up networkValidateTests()
4b98a649b3 network: Introduce networkValidateTests()
7c9b883eb3 networkxml2xmltest: Update couple of test cases
d07d7a6842 networkxml2conftest: Fail tests where no dnsmasq would be spawned
82040ddce7 networkxml2conftest: Drop routed-network-no-dns test case
794338569d network: Move decision on dnsmasq need into a separate function
e047ae9ec3 network: Separate private APIs declaration to bridge_driver_priv.h
9d6f5ac1f3 tests: Avoid crossdir inclusion for networkxml2* tests
13889feb14 esx: Switch to creating URLs using virURIFormat
e013d5b5ca esx: Abstract all URL-creation code into one function
38c952d893 esx: Debug URL just before opening with curl
6bb982178b qemuSnapshotUpdateBackingStore: Retry as curent user if qemu-img fails
f1ad521936 virDomainSnapshotDefAssignExternalNames: Improve error message
6bcdf4ee59 qemuSnapshotDiskHasBackingDisk: Use proper 'max_depth' when calling 'virStorageSourceGetMetadata'
452c281aee qemuSnapshotUpdateBackingStore: Remove stale comment
b43aee9cc9 qemuSnapshotDiskHasBackingDisk: Avoid call of virStorageSourceIsSameLocation with NULL argument
65c7369107 qemu: Connect NVMe devices to PCIe bus
27fd2e97b8 Fix printf style used with virDomainIOMMUDef::aw_bits
4009126f17 src: Use device alias when ifname is unset in virDomainInterfaceAddresses()
3a10f435b7 libvirt-domain: Fix documentation of virDomainInterfaceAddresses()
6f07a8e6fc util: Remove @masked argument from virSocketAddrFormatWithPrefix
adcc14e153 qemuDomainSetThrottleGroup: Don't put group name into the 'tunable' event twice
0cd13906dc qemuDomainSetThrottleGroup: Always honour thottle group name passed as argument
fa06437566 qemuDomainSetBlockIoTuneField: Move setting of 'group_name' out of the loop
abcdc9511b qemuDomainSetThrottleGroup: Enforce non-zero 'groupname' string length
27141859f1 qemucapabilitiestest: Add data for the qemu-11.0 dev cycle (aarch64)
2425a570e3 qemucapabilitiestest: Add data for the qemu-11.0 dev cycle (x86_64)
a1476a5afc qemuxmlconftest: Prepare 'fd-memory-numa-topology4' for removal of 'pc-i440fx-5.0'
be58c0eaa2 qemuxmlconftest: Remove specific machine type from 'devices-acpi-index'
f9cec072c4 qemuxmlconftest: Freeze 'cpu-numa-memory-oldstyle' case to qemu-10.2
70d7458186 virnetdevtap: Produce more helpful error message in virNetDevTapCreate()
845210011a esx: Allow connecting to IPv6 server
e0dcf278af bhyve: workaround for the lack of UTC clock on ARM64
7b889af2d2 virt-aa-helper: Ask for no deny rule for readonly disk elements
28482f2630 syntax-check: Introduce sc_prohibit_local_with_subshell rule
2442030856 libvirt-guest.sh.in: Fix logical error in guest_is_on()
8f0cf96b66 libvirt-guests.sh: Declare and assign separately to avoid masking return values
7a0c2fba91 scripts: don't import shutil in meson-warnings.py
50ad6026ad ci: regenerate with 'lcitool manifest'
43358229fe meson: write all warning flags to 'c-warnings.txt'
50640d35ae src: remove some -D defines from compiler args
a643671150 util: Fix max socket calculation
dcffd15520 conf: simplify check for vlan tagging support in virDomainActualNetDefValidate()
91a2d813cb conf: validate that specified interface type supports vlan tags
3190150ebd qemu: use actual/effective vlan when updating OVS-based interface vlan tag
b5a406a768 qemu: update vlan tag of macvtap (direct) passthrough devices during update-device
17976f6b2a qemu: forbid modifying network device portForwards with update-device
2e4abf4479 conf: new function virDomainNetPortForwardIsEqual()
878c5d2fa3 util: fix equivalence of AF_UNSPEC virSocketAddrs
be9885c274 nwfilter: rename ebiptables unit tests and data files
289e4cbc67 domain_logcontext: Don't assume remote driver is always available
5b080bc580 qemucapabilitestest: Add 'caps_10.2.0_aarch64' test data
095e133645 qemucapabilitiesdata: Regenerate 'caps_10.2.0_x86_64' replies
d917bf662b qemu: capabilities: Probe properties of 'scsi-block' and 'scsi-generic' devices
37d51c0d27 qemuSecurityMoveImageMetadata: Move seclabels only to virStorageSource of same type
badb0a8526 Align help text of virt-aa-helper with actual expectated input
05a2ad8321 syntax-check: Introduce sc_prohibit_g_autofree_const rule
adb19c902b network: Drop const for forwardIf in pfAddNatFirewallRules()
973aa66571 hyperv: Drop const for resourceType in hypervDomainAttachSerial()
b3a491284a rpm: disable -Werror on ELN builds
bdcf0c35bb Post-release version bump to 12.1.0
4d93728466 Release of libvirt-12.0.0
0ad017a6de NEWS: Mention shared FS detection race
b84e6d1b31 NEWS: Document features/improvements/bug fixes I've participated in
10a523c62a NEWS: Mention JSON nesting bug and TPM migration quirk with NFS
98329e4f12 Translated using Weblate (Korean)
49b8f0a814 Translated using Weblate (Swedish)
abe668561d Translated using Weblate (Portuguese)
8d5fdea287 news: document bhyve new features for 12.0.0
c44aecc40d Update translation files
0355b2d05a po: Refresh potfile for v12.0.0
e361469ebb Translated using Weblate (Spanish)
981ffc65af Translated using Weblate (Spanish)
80879c113f Translated using Weblate (Spanish)
a1c93eab00 Translated using Weblate (English (United Kingdom))
9ad5974ecb Translated using Weblate (Spanish)
2657b10746 Translated using Weblate (Spanish)
b08fe254d2 Translated using Weblate (Georgian)
c91c477648 Translated using Weblate (Spanish)
e8e555b625 Translated using Weblate (Czech)
855527bab5 Translated using Weblate (Georgian)
20b0880ab6 Translated using Weblate (Czech)
92b77582d4 Translated using Weblate (Swedish)
d557623281 news: Mention improvements and fixes to firmware selection
563a47ea7f qemu_firmware: Allow matching both UEFI and BIOS for ROM loader
9a041e61ec qemu_firmware: Don't skip autoselection for ROM
1b78d647da qemu_firmware: ROM firmware is always in raw format
8d1bfa69b2 tests: Add firmware-manual-efi-tdx
f65ef07dcf tests: Add firmware-manual-efi-sev-snp
0aa3fa2d62 qemu_firmware: Remove NVRAM to loader format copy hack
798528d2b6 qemu_firmware: Take NVRAM format into account when matching
623fc1b4b5 qemu_firmware: Take templateFormat into account when matching
91b6dee6d1 qemu_firmware: Retain user-specified NVRAM format
a92c140956 qemu_firmware: Prefer template format to loader format
ab8efe6fd0 qemu_firmware: Refactor setting NVRAM format
ee4c619b09 qemu_firmware: Simplify handling of legacy paths
3e1c110a4d qemu_firmware: Set templateFormat for custom paths
3acdcd2eb7 qemu_firmware: Introduce qemuFirmwareFillDomainCustom()
9ec9bdc8dc tests: Add firmware-auto-efi-format-mismatch-nvramtemplate
935879fb91 tests: Add firmware-auto-efi-format-nvramtemplate-qcow2
a4f33d7228 tests: Add firmware-auto-efi-format-nvram-raw-nvramtemplate-path
ab92d77339 tests: Add firmware-auto-efi-format-nvram-raw-loader-path
c8536599f2 tests: Add firmware-auto-efi-format-nvram-raw
13ce34e646 tests: Add firmware-manual-efi-nvram-template-nonstandard-legacy-paths
17979f08b9 tests: Add firmware-manual-efi-nvram-template-nonstandard-format
2bd0499294 schemas: Allow templateFormat without template path
876a5d34d4 qemu_firmware: Drop fallback for absent nvramTemplateFormat
3463e543fe qemu_firmware: Ignore stateless/combined when NVRAM is configured
c74adb33e4 domain_validate: Reject ROMs with format other than raw
5bae6e3640 tests: Add firmware-auto-efi-format-loader-qcow2-rom
a5ae34aa74 domain_validate: Reject read/write ROMs
26035762a9 tests: Add firmware-manual-bios-rw
07bcd51bcb tests: Add firmware-auto-bios-rw
46970217a8 domain_validate: Reject NVRAM with read/write firmware
27313799ba tests: Add firmware-manual-efi-rw-nvram
4df091dea4 qemu_firmware: Move copying of nvram.format to loader.format
5b374c5e3f qemu_firmware: Move format=raw compat exception
aaa0db64b4 qemu_firmware: Drop 'nvram' local variable
3f7eea0e17 qemu_firmware: Drop support for kernel descriptors
86a4ede0ec qemu: capabilities: Update 'caps_10.1.0_x86_64+inteltdx' after release
28015f020c qemu: capabilities: Update 'caps_10.2.0_x86_64+mshv' after release
1be917837e qemu: capabilities: Update '10.2' capabilities on x86_64 after release
380764992d qemucapabilitiesdata: Re-generate 'caps_10.2.0_x86_64'
0bdf8188d6 esx_util: Drop extra spacing
6c9d2591c6 esx: URI encode inventory objects twice
ffe74c7c55 esx_util: Introduce esxUtil_EscapeInventoryObject()
871a8f872d qemu: fix locking in qemuProcessHandleMemoryFailure
32749427de network: fix memory leak in leaseshelper.c
d50de61f34 bhyve: report domain capabilities for arm64
1b0c9d21b7 bhyve: tests: add xml2xml arm64 tests
eaeb1712a7 bhyve: tests: prepare for arm64 xml2xml tests
8c971cdce1 bhyve: command: handle arm64 bootloader
24be4b8c0c bhyve: command: make -H and -P args amd64-only
90df4b6795 bhyve: command: handle arm64 console
c3c8c7e8cc bhyve: domain: require ISA controller on x86_64 only
35b99f4994 bhyve: tests: support arch-dependent tests
c957dea309 bhyve: capabilities: fix for arm64
ca3cbae5af virQEMUSaveDataNew: Refactor cleanup
ccf008b85f qemu: snapshot: Check earlier if memory snapshot is possible
ac8d241620 qemuSaveImageCreate: Remove 'driver' argument
a8a62682fd qemuSaveImageCreateFd: Remove 'driver' argument
d4a5183674 qemuMigrationSrcToFile: Remove 'driver' argument
5d0d55f238 qemuMigrationSrcToSparseFile: Remove 'driver' argument
073306b4ad qemuDomainEventEmitJobCompleted: Remove 'driver' argument
256ce775d9 qemuMigrationSrcToLegacyFile: Remove 'driver' argument
c6988fdb2f qemuHotplugAttachDBusVMState: Remove 'driver' argument
a175096c37 qemu: snapshot: Don't overwrite 'ret' in qemuSnapshotCreateActiveExternal
d86259d5a7 docs: bhyve: document virtio-scsi support
790719be6b bhyve: add virtio-scsi support
1001371fba conf: introduce CTL storage type
6df374fefc qemu_validate: Drop VIR_DOMAIN_HYPERV_STIMER dependency on VIR_DOMAIN_HYPERV_VPINDEX
8e9a9f86b0 qemu_validate: Drop VIR_DOMAIN_HYPERV_SYNIC dependency on VIR_DOMAIN_HYPERV_VPINDEX
40f8bed857 libvirt-guests.service: use Type=exec
b3ede6618d tools: check for failure decoding secret base64 value
2d65cdeba8 docs: fix broken UUID example
16804acf14 virjsontest: Add test for nesting depth
b49d41b7e9 util: json: Increase JSON nesting limit when parsing to 300
bfd1a1a885 bhyve: rework capabilities probing
d3735f71ec tests: Remove temporary TZ parsing workaround
a54cafa62b news: Fix indentation
e727c8afad network: Propagate DNS forwarder port into dnsmasq config
72e4efbfa6 network: Introduce port for DNS forwarder
dad8b0fc52 bhyve: bhyvexml2argvtest: fix SLIRP tests
437c135671 docs: drvbhyve: document SLIRP networking
ffa6b2e892 bhyve: implement SLIRP networking
2df30bca10 tests: add capabilities for QEMU v10.1.0 on s390x
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
vgabios 0.8a depends on dev86-native which was removed in a previous
commit (upstream repo deleted). vgabios is a legacy VGA BIOS from 2008
that has been superseded by SeaBIOS which is already a Xen dependency.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Bumping irqbalance to version v1.9.5-5-gcd9212f, which comprises the following commits:
8929e4d Reset banned_cpus explicitly for IRQBALANCE_BANNED_CPULIST
2804ba1 Change warnings about un-affine-able irqs to LOG_DEBUG
cf76396 Update configure.ac/meson.build for irqbalance 1.9.5
907b65f meson: force systemd-service installation with a seperate option
4f53f8c Fix irqbalance for Xen virtual event interrupts
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update ipxe for compatibility with the current OE toolchain:
- Add coreutils-native to DEPENDS for cksum (used by build system
to generate checksums embedded in binary images)
- Drop syslinux and cdrtools-native from DEPENDS, remove
ISOLINUX_BIN from EXTRA_OEMAKE
- Skip ISO and USB image generation from the ALL target - only ROM
files are needed for Xen HVM and the ISO tools
(genisoimage/xorrisofs) are not compatible with cdrtools' mkisofs
- Drop patches applied upstream: gcc-10 warning fix, golan type
casts, fcommon directive, xenver.h typo, old-style function
definition, C23 reserved words, and unsafe function wrapper
- Refresh ipxe-fix-hostcc-nopie-cflags.patch for new line numbers
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping ipxe to version v2.0.0-13-ga0bf3f1cc, which comprises the following commits:
a0bf3f1cc [cloud] Omit uploading empty blocks to EBS snapshots
5921e6b45 [cloud] Add utility to read INT13CON partition in Alibaba Cloud
619b1db1b [bnxt] Update conditions for invoking short commands
c3560072e [cloud] Add utility for importing images to Alibaba Cloud
7b3eb3c86 [undi] Drag in PCI-specific configuration
88d396719 [efi] Add a dummy SBOM PE section
847e09850 [ci] Add a workflow to import images to Google Cloud
013a4a93d [cloud] Specify Google Cloud project explicitly for storage client
e180aa85e [test] Assign unique MAC addresses for test network devices
5edffb26b [ci] Fix family name used for AWS image imports
e9b80ee54 [ci] Add a workflow to import images to AWS EC2
c44d5f96e [cloud] Add ability to upload AMI list to an S3 bucket
33ca177cf [release] Update version number after release
12798ec29 [release] Release version 2.0.0
616506924 [doc] Update change log in preparation for release
94138656d [efi] Do not unconditionally raise back to internal TPL
cbeda2012 [efi] Allow creating an image device handle with no parent device
5a17d8daf [efi] Install protocols onto a dedicated device handle
910d9c5a9 [efi] Allow executing images even with no open network devices
3df8f9c37 [efi] Try all supported autoexec protocols
b677399da [efi] Treat a URI device path as higher priority than a cached DHCP packet
8df45c2f3 [github] Add organization to sponsorship links
608dde2ad [doc] Add contribution guidelines
f7fe2b319 [cachedhcp] Set current working URI to cached DHCP filename
027d0fe24 [ci] Include Secure Boot ISO and USB images in release artifacts
559282d5a [build] Use Markdown consistently within release notes
3680a4ae5 [build] Add support for including a UEFI shim in filesystem images
1fbc3bca7 [efi] Automatically open network device matching loaded image device path
a69afd743 [tftp] Use TFTP server URI only if no other working URI is set
fa993d524 [tls] Transmit a closure alert when closing the connection
4d0b0cd4c [tls] Respond to received closure alerts
efe812637 [cachedhcp] Automatically open network device matching cached DHCPACK
879549da3 [dynui] Allow for duplicate shortcut keys
f00d2079d [doc] Add release process documentation
ad748f0d9 [bnxt] Update link speed definitions
7ce5dbd76 [efi] Allow for the existence of multiple shim lock protocols
596c84ce7 [efi] Support the EFI_PXE_BASE_CODE_TFTP_GET_FILE_SIZE operation
b48965ae5 [xferbuf] Silently discard data written to a void data transfer buffer
3194c8ad0 [xferbuf] Record maximum required size
7948ffe32 [ci] Remove now-redundant "netboot" job
9250a9091 [build] Create util/gensrvimg for building network boot server images
f0ceb70cb [bnxt] Fix memory leak in probe()
a6d393ecc [bnxt] Skip unnecessary calls for VFs
9443f7a2a [tls] Remove current time from client random bytes
1b6d88d64 [ipv6] Obtain MTU setting from NDP
1eb571cef [bnxt] Remove access of deprecated link speed variables
a5e4bb98b [bnxt] Fix typo in function declaration
df5957ccc [bnxt] Fix coding style
9d6831bb0 [bnxt] Correct port index usage
2012ab71d [pxeprefix] Add a minimal iPXE NBP metadata header
47467538f [build] Use little-endian word values in genfsimg
0854850d0 [ci] Add a job to automatically create releases
179366d72 [ci] Remove redundant duplicate creation of version.txt
9e0057a86 [build] Allow for generation of all release information
a82e0b41a [doc] Fix header levels in Markdown files
df2ef86d1 [doc] Update README
53a3365be [doc] Add an initial changelog
8fb90cb40 [build] Allow for construction of a text file containing the version
0cde7ce6d [build] Mark system logger as permitted for UEFI Secure Boot
2184bfdb0 [ci] Create a network bootable files archive as a build artifact
d98278a17 [ci] Include latest iPXE shim in build artifacts
80639a6ca [ci] Use ipxe-builder-utils container for combined BIOS/UEFI images
93fc2123c [ci] Include CA certificate file alongside signed binaries
a956c5fea [ci] Allow for manually triggered workflow runs
21b5bd840 [ci] Add support for building UEFI Secure Boot signed binaries
1d23d5a03 [ci] Schedule Coverity Scan run via GitHub Actions
2161e976c [build] Include USB drivers in the all-drivers build by default
ae8e23a45 [build] Handle all driver list construction via parserom.pl
c9158cb32 [build] Mark Xen HVM files as permitted for UEFI Secure Boot
7caee4489 [ci] Include Linux userspace build artifacts
6dc991d07 [slirp] Disable warnings for uncleanly deprecated libslirp functions
25429d952 [build] Include PCI drivers only in BIOS and UEFI builds
3f12b8b1c [build] Include devicetree drivers in the SBI all-drivers build
81da1a1b6 [dt] Add DT_ROM() and DT_ID() macros
5669c4d52 [build] Include Xen and Hyper-V drivers only in x86 BIOS and UEFI builds
0992d9b56 [build] Include Linux network drivers in the Linux all-drivers build
6e56f7ff2 [linux] Remove unused can_probe field from driver definition
8a1dd5850 [build] Include ISA drivers only in 32-bit BIOS builds
cc4a9df97 [ci] Include Secure Boot build artifacts
cf350b8eb [build] Filter out non-permitted drivers for UEFI Secure Boot
7a2817bbd [build] Drag in Xen and Hyper-V support via network device drivers
99a9e6e43 [build] Construct driver rules for USB devices
e783adcfd [build] Construct driver lists for each bus type
152351219 [build] Allow PCI_ROM() and ISA_ROM() to span multiple lines
4d6c8ab44 [usb] Add USB_ROM() and USB_ID() macros
481e04311 [librm] Work around two errata in the 386's "popal" instruction
cd9b44e57 [syslog] Allow port number to be specified for encrypted syslog server
362b704f8 [ci] Include supported network device list in build artifacts
18fab8dd8 [loong64] Fix error identifier generation for LoongArch64
12b279b4c [ci] Include error identifier list in build artifacts
95e756569 [pci] Ignore invalid subordinate bus numbers
aa06a76eb [ci] Show rolling release publication URL
c18d89570 [efi] Cache identified PCI root bridge I/O protocol handle
30d162ddd [uri] Ensure "##params=" separator is correct
59c67e111 [ci] Run tests on pull requests
5abbcab90 [build] Mark MS-CHAPv2 as permitted for UEFI Secure Boot
9106130f6 [build] Ensure dependencies of version.c are always rebuilt as expected
a565e18f3 [build] Exclude local named config headers from annotation checks
b05a045b4 [ci] Publish rolling release binaries via https://boot.ipxe.org
74e0551ac [ci] Publish rolling release build artifacts with stable URLs
e855c4c64 [ci] Produce combined BIOS/UEFI ISO and USB images
8e10974c8 [ci] Upload a selection of build artifacts from each run
dee71adda [build] Exclude external files from annotation checks
301b1ecf2 [build] Mark compressed image tools as permitted for UEFI Secure Boot
c07fb71a9 [build] Mark FDT management tools as permitted for UEFI Secure Boot
6b17d320d [build] Mark core arm64 files as permitted for UEFI Secure Boot
f1bcd160a [xen] Update to latest stable release headers
8e31ac9fc [build] Mark dummy architecture headers as permitted for UEFI Secure Boot
40c2db9d6 [build] Mark direct kernel loading as forbidden for UEFI Secure Boot
4db03054d [build] Mark GDB stub as forbidden for UEFI Secure Boot
03a906a9f [build] Mark Realtek driver as permitted for UEFI Secure Boot
b7e7f62b8 [efi] Avoid dragging in IPv4, IPv6, and DNS support unconditionally
e31dc79d4 [build] Mark EFI SNP/MNP driver wrappers as permitted for UEFI Secure Boot
641ea020f [prefix] Make unlzma.S compatible with 386 class CPUs
d0ea2b1bb [ci] Use prebuilt containers to build and test iPXE
207c99a47 [build] Allow GITVERSION to be specified as an environment variable
0abef79a2 [build] Do not use "git log" to construct build timestamp
faa42c850 [build] Do not use "git describe" to construct version number
a42a15ae9 [build] Allow for per-architecture sysroots
6eab3dbcd [ci] Update to ubuntu-24.04 GitHub actions runner
05cb93046 [build] Extend default configuration for non-BIOS builds
4157afc12 [usb] Drag in USB commands only when USB support is present
f3abf2b9d [pci] Drag in PCI commands only when PCI support is present
f7f685f8c [build] Canonicalise console type configuration
ce6f574a9 [build] Canonicalise USB configuration
6ad6af198 [build] Canonicalise settings sources configuration
ff80a1758 [build] Sort general configuration in order of approachability
360c0f336 [build] Canonicalise remaining portions of general configuration
d27cf68e0 [build] Canonicalise SAN boot protocol configuration
464916f99 [build] Canonicalise download protocol configuration
f869132d6 [build] Canonicalise network protocol configuration
e72c331aa [build] Canonicalise command list configuration
9f4b9f60f [build] Canonicalise image type configuration
c7403e7e5 [build] Mark more reviewed files as permitted for UEFI Secure Boot
1d5b1d924 [build] Fail Secure Boot builds unless all files are permitted
46510f36a [build] Mark MD4 and MD5 as forbidden for UEFI Secure Boot
adcaaf9b9 [build] Mark known reviewed files as permitted for UEFI Secure Boot
6cccb3bdc [build] Mark core files as permitted for UEFI Secure Boot
1996e214e [build] Check for standalone FILE_LICENCE() and FILE_SECBOOT() declarations
49f700a25 [console] Mark generated keymaps as permitted for Secure Boot
30948987f [build] Mark existing files as explicitly forbidden for Secure Boot
b09af00fa [efi] Mark imported EDK2 headers as permitted for Secure Boot
c5ae9ec99 [efi] Update to current EDK2 headers
e61c636bf [build] Define a mechanism for marking Secure Boot permissibility
9c01c5a5d [neighbour] Treat delayed transmissions as pending operations
2110afb35 [tcp] Report TCP statistics via the "ipstat" command
a8c89276c [malloc] Increase heap size to 4MB
8e557f1ab [tcp] Discard packets that lie immediately before the receive window
ff6d612e7 [neighbour] Add the ability to artificially delay outbound packets
33c832b0d [neighbour] Split out deferred transmission from discovery completion
aabfb8a94 [neighbour] Use discovery protocol field to identify incomplete neighbours
d0e01bb3f [neighbour] Always use network device's own link-layer address
7c39c04a5 [crypto] Allow for zero-length big integer literals
01038893a [test] Update big integer tests to use okx()
383214794 [crypto] Fix identification of non-wrapped elliptic curve identifiers
5aab6b7a3 [crypto] Add ECDSA-based TLS cipher suites
f1e23b53a [test] Add test cases for X.509 certificates with ECDSA signatures
d6eeb9039 [crypto] Add OID-identified algorithms for ECDSA with SHA2 hash family
d14066e92 [crypto] Allow ecPublicKey to be identified as a public-key algorithm
f3147b42a [test] Ensure OID-identified algorithms are present for X.509 tests
aa247f6e3 [x509] Correct debug message
4e3cbeef8 [crypto] Add support for ECDSA signatures
948677fe5 [test] Test verification of constructed signature
cfbf0da93 [crypto] Allow for an explicit representation of point at infinity
af99310f5 [test] Test signature verification independently of signing
3d5cd3d79 [intel] Add PCI ID for I219-V and -LM 24
86c40a8b1 [efi] Retry calls to GetRNG() as needed
fb1188936 [crypto] Generalise rsa_parse_integer() to asn1_enter_unsigned()
c7f129fed [crypto] Allow for addition of arbitrary Weierstrass curve points
1e353ff36 [crypto] Split out Weierstrass point initialisation and finalisation
d3adea838 [crypto] Expose the (prime) group order as an elliptic curve property
80e98dc0d [crypto] Verify that weierstrass_multiply() result is not point at infinity
b362f77bd [test] Allow for elliptic curve tests other than multiplication
e50e30a7f [crypto] Expose the base point as an explicit elliptic curve property
88c3e68df [http] Abort connections after a long period of inactivity
1a789c1da [http] Rename connection retry timer
64f936d5d [crypto] Allow for OID-identified elliptic curve algorithms
e6610b793 [test] Include key matching in existing public-key tests
3e566818f [crypto] Remove obsolete maximum output length method
1ccc320ee [crypto] Construct asymmetric ciphered data using ASN.1 builders
d4258272c [crypto] Construct signatures using ASN.1 builders
8cd963ab9 [crypto] Pass signatures for verification as ASN.1 cursors
c9c028259 [crypto] Restructure handling of ASN.1 bit strings
d73981aec [intel] Add PCI IDs for I225 and I226 chipsets
19dffdc83 [efi] Allow for creating devices with no EFI parent device
dfea3bbfa [pci] Use runtime selectable PCI I/O API for EFI cloud builds
9c1ac48bc [pci] Allow probing permission to vary by range
ff1a17dc7 [pci] Use linker tables for runtime selectable PCI APIs
0cf2f8028 [pci] Allow PCI configuration space access mechanism to vary by range
81496315f [arm] Avoid unaligned accesses for memcpy() and memset()
338347465 [efi] Wrap a selection of runtime services calls
925af2b4d [efi] Allow SAN-booted images to be traced via DEBUG=efi_wrap
0a8e34657 [efi] Add image security database GUID definition
5c135240b [efi] Add Microsoft vendor GUID definition
5154b6fcc [efi] Add storage security command protocol header and GUID definition
27ec3c76a [efi] Update to current EDK2 headers
3a2f75b78 [efi] Mark Arm/ProcessorBind.h as a non-imported header
f0d978d8b [efi] Mark Ip4Config.h as a non-imported header
f9b9ef578 [efi] Mark UgaDraw.h as a non-imported header
c0ac23fc5 [efi] Switch back to VA_START() etc macros for EFIAPI functions
360aa7064 [efi] Skip including the EDK2 ProcessorBind.h header for 32-bit RISC-V
df7f59d47 [pci] Move ECAM pci_can_probe() definition to correct header file
b41bda441 [spcr] Accept alternative type value for a 16550-compatible UART
6d9374e5a [acpi] Allow acpi_ioremap() to map a port I/O address
bd3982b63 [ioapi] Allow iounmap() to be called for port I/O addresses
f2ea97102 [spcr] Use the serial port defined by the ACPI SPCR by default
595ff2403 [spcr] Add support for the ACPI Serial Port Console Redirection table
8fd5e2772 [acpi] Add acpi_ioremap() to map an ACPI-described address
08d4d7fe9 [uart] Make baud rate a property of the UART
a786c8d23 [uart] Support 16550 UARTs accessed via either MMIO or port I/O
f7de1b53d [ioapi] Provide combined MMIO and port I/O accessors
fde35ff00 [pci] Disable decoding while setting a BAR value
606e87ec7 [cloud] Display instance type in AWS EC2
0336e2987 [ena] Leave queue base address empty when creating a low latency queue
0ddd83069 [riscv] Correct page table stride calculation
426c721e3 [librm] Correct page table stride calculation
c8f088d4e [cloud] Display build architecture in AWS EC2
416a2143a [cloud] Remove AWS public image access block only if not already unblocked
ba1846a0d [cloud] Remove AWS public image access block automatically if needed
b2e846821 [ena] Limit receive queue size to work around hardware bugs
846c505ae [ena] Increase transmit queue size to match receive fill level
0ae5e25de [ena] Add memory barrier after writing to on-device memory
c296747d0 [ena] Increase receive fill level
c1badf71c [ena] Add support for low latency transmit queues
0d15d7f0a [ena] Record supported device features
e5e371f48 [ena] Cancel uncompleted transmit buffers on close
dcc5d36ce [ena] Map the on-device memory, if present
510f3e5e1 [ena] Add descriptive messages for any admin queue command failures
3538e9c39 [pci] Record prefetchable memory window for PCI bridges
04a61c413 [ena] Use pci_bar_set() to place device within bridge memory window
94902ae18 [pci] Handle sizing of 64-bit BARs
e80818e4f [tls] Disable renegotiation unless extended master secret is used
57504353f [tls] Refuse to resume sessions with mismatched master secret methods
ab64bc5b8 [tls] Add support for the Extended Master Secret
d6656106e [tls] Generate master secret only after sending Client Key Exchange
4f44f6240 [gve] Rearm interrupts unconditionally on every poll
f5ca1de73 [gve] Use raw DMA addresses in descriptors in DQO-QPL mode
1cc1f1cd4 [gve] Report only packet completions for the transmit ring
d2e1e591a [gve] Use dummy interrupt to trigger completion writeback in DQO mode
c2d7ddd0c [gve] Add missing memory barriers
543829964 [intelxl] Use default dummy MSI-X target address
4224f574d [pci] Map all MSI-X interrupts to a dummy target address by default
ce30ba14f [gve] Select preferred operating mode
74c9fd72c [gve] Add support for out-of-order queues
0d1ddfe42 [gve] Cancel pending transmissions when closing device
cf5349754 [bnxt] Handle link related async events
4508e1023 [gve] Allow for descriptor and completion lengths to vary by mode
20a489253 [gve] Rename GQI-specific data structures and constants
86b322d99 [gve] Allow for out-of-order buffer consumption
b8dd3c384 [gve] Add support for raw DMA addressing
9f554ec9d [gve] Add concept of a queue page list base device address
91db5b68f [gve] Set descriptor and completion ring sizes when creating queues
048a34670 [gve] Add concept of operating mode
610089b98 [gve] Remove separate concept of "packet descriptor"
ee9aea789 [gve] Parse option list returned in device descriptor
6464f2edb [bnxt] Add error recovery support
969ce2c55 [efi] Use current boot option as a fallback for obtaining the boot URI
c10da8b53 [efi] Add ability to extract device path from an EFI load option
5bec2604a [libc] Add wcsnlen()
61b4585e2 [efi] Drag in MNP driver whenever SNP driver is present
a53ec4493 [bnxt] Update CQ doorbell type
8460dc4e8 [dwgpio] Use fdt_reg() to get GPIO port numbers
88ba01176 [fdt] Provide fdt_reg() for unsized single-entry regions
9d4a2ee35 [cmdline] Show commands in alphabetical order
332241238 [digest] Treat inability to acquire an image as a fatal error
6fa901530 [digest] Add "--set" option to store digest value in a setting
f5467d69d [github] Extend sponsorship link
f45782f9f [digest] Add commands for all enabled digest algorithms
2e4e1f7e9 [dwgpio] Add driver for the DesignWare GPIO controller
90fe3a292 [gpio] Add a framework for GPIO controllers
5f10b7455 [fdt] Use phandle as device location
f7a1e9ef8 [dwmac] Show core version in debug messages
01b1028d4 [bnxt] Remove unnecessary test_if macro
6ca7a560a [bnxt] Remove unnecessary I/O macros
be551d420 [serial] Explicitly initialise serial console UART to NULL
a814c4605 [riscv] Place explicitly zero-initialised variables in the .data section
5bda1727b [riscv] Allow for poisoning .bss section before early initialisation
e3a6e9230 [undi] Assume that legacy interrupts are broken for any PCIe device
65b8a6e45 [pxeprefix] Display PCI vendor and device ID in PXE startup banner
fb082bd4c [fdt] Add ability to locate node by phandle
e01e5ff7c [dwusb] Add driver for DesignWare USB3 host controller
6c42ea127 [xhci] Allow for non-PCI xHCI host controllers
eca97c2ee [xhci] Use root hub port number to determine slot type
8a8904aad [efi] Check only the non-extended WaitForKey event
8701863a1 [efi] Allow compiler to perform type checks on EFI_EVENT
1e3fb1b37 [init] Show initialisation function names in debug messages
7ac4b3c6f [efi] Assume that vendor wireless drivers are unusable via SNP
c3376f864 [efi] Drop to external TPL for calls to ConnectController()
c01c3215d [efi] Provide efi_tpl_name() for transcribing TPLs in debug messages
434462a93 [riscv] Ensure coherent DMA allocations do not cross cacheline boundaries
d539a420d [riscv] Support the standard Svpbmt extension for page-based memory types
2aacb346c [riscv] Create coherent DMA mapping of 32-bit address space on demand
0611ddbd1 [riscv] Use 1GB pages for I/O device mappings
c2cdc1d31 [dwmac] Add driver for DesignWare Ethernet MAC
bbabde8ff [riscv] Invalidate data cache on completed RX DMA buffers
634d9abef [riscv] Add optimised TCP/IP checksumming
101ef74a6 [riscv] Provide a DMA API implementation for RISC-V bare-metal systems
22de0c4ed [dma] Use virtual addresses for dma_map()
06083d267 [build] Handle isohybrid with xorrisofs
e223b3251 [riscv] Support explicit cache management operations on I/O buffers
6a75115a7 [riscv] Add support for detecting T-Head vendor extensions
19f1407ad [iobuf] Ensure I/O buffer data sits within unshared cachelines
c21443f0b [uaccess] Allow for coherent DMA mapping of the 32-bit address space
d75d10df1 [riscv] Create coherent DMA mapping for low 4GB of address space
3fd54e4f3 [riscv] Construct invariant portions of page table outside the loop
6bc55d65b [bnxt] Update supported devices array
002062777 [bnxt] Update device descriptions
126366ac4 [bnxt] Remove VLAN stripping logic
4262328c1 [github] Add sponsorship link
54392f0d7 [bnxt] Increase Tx descriptors
e5953ed7e [build] Disable use of common symbols
8df3b9640 [build] Allow for the existence of small-data sections
d3e10ebd3 [legacy] Allocate legacy driver .bss-like segments at probe time
6ea800ab5 [legacy] Rename the global legacy NIC to "legacy_nic"
d0c02e0df [legacy] Allocate extra padding in receive buffers
97f40c5fc [pxe] Use a weak symbol for isapnp_read_port
c33ff76d8 [fdtcon] Add basic support for FDT-based system serial console
9ada09c91 [dwuart] Read input clock frequency from the device tree
0ed1dea7f [uart] Wait for 16550 UART to become idle before modifying LCR
2ce1b185b [serial] Allow platform to specify mechanism for identifying console
5d9f20bbd [dwuart] Add "ns16550a" compatible device ID
d1823eb67 [riscv] Inhibit SBI console when a serial console is active
25fa01822 [riscv] Serialise MMIO accesses with respect to each other
53a3befb6 [dwuart] Add a basic driver for the Synopsys DesignWare UART
cca1cfd49 [uart] Allow for dynamically registered 16550 UARTs
71b4bfb6b [uart] Add support for MMIO-accessible 16550 UARTs
6c8fb4b89 [uart] Allow for the existence of non-16550 UARTs
60e167c00 [uart] Remove ability to use frame formats other than 8n1
5783a10f7 [riscv] Write SBI console output to early UART, if enabled
41e65df19 [riscv] Maximise barrier effects of memory fences
7e96e5f2e [fdt] Allow paths and aliases to be terminated with separator characters
1de3aef78 [bnxt] Remove TX padding
3e8909cf5 [fdtmem] Limit relocation to 32-bit address space
c4a3d438e [dt] Allow for creation of standalone devices
b5fb7353f [ipv4] Add support for classless static routes
e648d23fb [ipv4] Extend routing mechanism to handle non-default routes
96f586466 [ipv4] Add self-tests for IPv4 routing
1ae75a3bd [test] Add infrastructure for test network devices
5b3ebf8b2 [riscv] Support T-Head CPUs using non-standard Memory Attribute Extension
817145fe0 [riscv] Do not set executable bit in early UART page mapping
7df005c4c [riscv] Add fences around early UART writes
88cffd75a [riscv] Zero SATP after any failed attempt to enable paging
bb2011241 [dt] Locate parent node at point of use in dt_ioremap()
1762568ec [fdt] Provide ability to locate the parent device node
d64250918 [fdt] Add tests for device tree creation
3fe321c42 [riscv] Add support for a SiFive-compatible early UART
2e27d772c [riscv] Support mapping early UARTs outside of the identity map
98fdfdd25 [riscv] Add support for writing prefix debug messages direct to a UART
2e8d45aee [riscv] Create macros for writing characters to the debug console
6eb51f1a6 [riscv] Ignore riscv,isa property in favour of direct CSR testing
192cfc3cc [image] Use image name rather than pointer value in all debug messages
eae9a2754 [riscv] Support mapping I/O devices outside of the identity map
6af4a022b [fdtmem] Ignore reservation regions with no fixed addresses
56f5845b3 [riscv] Include carriage returns in libprefix.S debug messages
09140ab2c [memmap] Allow explicit colour selection for memory map debug messages
8d88870da [riscv] Support older SBI implementations
036e43334 [memmap] Rename addr/last fields to min/max for clarity
cd38ed4fa [lkrn] Support initrd construction for RISC-V bare-metal kernels
c713ce5c7 [initrd] Squash and shuffle only initrds within the external heap
4a39b877d [initrd] Split out initrd construction from bzimage.c
11929389e [initrd] Allow for images straddling the top of the reshuffle region
029c7c417 [initrd] Rename bzimage_align() to initrd_align()
9231d8c95 [initrd] Swap initrds entirely in-place via triple reversal
11e01f065 [uheap] Expose external heap region directly
e05604107 [uheap] Prevent allocation of blocks with zero physical addresses
b9095a045 [fdtmem] Allow iPXE to be relocated to the top of the address space
a53456334 [riscv] Speed up memmove() when copying in forwards direction
20d2c0f78 [lkrn] Shut down devices before jumping to kernel entry point
969e8b546 [lkrn] Allow a single initrd to be passed to the booted kernel
9bc559850 [fdt] Allow an initrd to be specified when creating a device tree
c1cd54ad7 [initrd] Move initrd reshuffling to be architecture-independent code
d15a11f3a [image] Use image replacement when executing extracted images
e2f4dba2b [lkrn] Add support for EFI zboot compressed kernel images
ecac4a34c [lkrn] Add basic support for the RISC-V Linux kernel image format
d0c35b682 [bios] Use generic external heap based on the system memory map
140ceeeb0 [riscv] Use generic external heap based on the system memory map
4d560af2b [uheap] Add a generic external heap based on the system memory map
490f1ecad [malloc] Allow heap to specify block and pointer alignments
c6ca3d3af [malloc] Allow for the existence of multiple heaps
83449702e [memmap] Remove now-obsolete get_memmap()
624d76e26 [bios] Use memmap_describe() to find an external heap location
79c30b92a [settings] Use memmap_describe() to construct memory map settings
c8d64ecd8 [bios] Use memmap_describe() to find a relocation address
dbc86458e [comboot] Use memmap_describe() to obtain available memory
d0adf3b4c [multiboot] Use memmap_describe() to construct Multiboot memory map
25ab8f462 [image] Use memmap_describe() to check loadable image segments
a353e7080 [memmap] Use memmap_dump_all() to dump debug memory maps
3812860e3 [bios] Describe umalloc() heap as an in-use memory area
4c4c94ca0 [bios] Update to use the generic system memory map API
3f6ee9573 [fdtmem] Update to use the generic system memory map API
bab3d7671 [memmap] Define an API for managing the system memory map
f6f11c101 [tests] Remove prehistoric umalloc() test code
e0c4cfa81 [fdtmem] Record size of accessible physical address space
64ad1d03c [bios] Rename memmap.c to int15.c
1dd9ac13f [bnxt] Use updated DMA APIs
08edad7ca [bnxt] Return proper error codes in probe
4d39b2dcc [crypto] Remove redundant null pointer check
d1c1e578a [riscv] Add a .pf32 build target for padded parallel flash images
6fd927f92 [riscv] Perform a writability test before applying relocations
4566f5975 [riscv] Avoid potentially overwriting the scratch area during relocation
8e38af800 [riscv] Add a .lkrn build target resembling a Linux kernel binary
17fd67ce0 [riscv] Relocate to a safe physical address on startup
3dfc88158 [riscv] Construct page tables based on link-time virtual addresses
c45dc4a55 [riscv] Allow apply_relocs() to use non-inline relocation records
420e475b1 [riscv] Return accessible physical address space size from enable_paging()
6fe9ce66a [fdtmem] Add ability to parse FDT memory map for a relocation address
2e45106c0 [riscv] Ensure that prefix_virt is aligned on an xlen boundary
95ede670b [riscv] Hold virtual address offset in the thread pointer register
f988ec09e [fdt] Generalise access to "reg" property
3027864f1 [riscv] Use load and store pseudo-instructions where possible
134d76379 [build] Formalise mechanism for accessing absolute symbols
1d58d928f [libc] Display assertion failure message before incrementing counter
8fe3c68b3 [riscv] Add support for disabling 64-bit and 32-bit paging
5b19ddbb3 [riscv] Return virtual address offset from enable_paging()
5e518c744 [riscv] Restore temporarily modified PTE within 32-bit transition code
0279015d0 [uaccess] Generalise librm's virt_offset mechanism for RISC-V
e8a6c2657 [build] Constrain PHYS_CODE() and REAL_CODE() to use i386 registers
12dee2dab [riscv] Add debug printing of hexadecimal values in libprefix.S
72c81419b [riscv] Move prefix system reset code to libprefix.S
764183504 [riscv] Add basic debug progress messages in libprefix.S
9445a9ff4 [riscv] Provide a millicode variant of print_message()
dc9e6f0ed [riscv] Move prefix debug message printing to libprefix.S
b3cbdc86f [riscv] Place prefix debug strings in .rodata
4bef4c806 [riscv] Use compressed relocation records
8f7aa292a [riscv] Place .got and .got.plt in .data
e37e3f17e [riscv] Discard ELF hash tables
70bb5e5e6 [zbin] Allow for constructing compressed dynamic relocation records
98646b9f0 [build] Allow for 32-bit and 64-bit versions of util/zbin
4c11737d5 [riscv] Add support for enabling 32-bit paging
a32f3c2bc [riscv] Add support for enabling 64-bit paging
dad206026 [riscv] Allow for a non-zero link-time address
a4b5dd63c [riscv] Split out runtime relocator to libprefix.S
1534b0a6e [uaccess] Remove redundant virt_to_user() and userptr_t
a169d7359 [uaccess] Reduce scope of included uaccess.h header
05ad7833c [image] Make image data read-only to most consumers
cd803ff2e [image] Add the concept of a static image
330391001 [image] Move embedded images from .rodata to .data
2d9a6369d [test] Separate read-only and writable CMS test images
b6f9e4bab [uaccess] Remove redundant copy_from_user() and copy_to_user()
a69c42dd9 [image] Clear recorded replacement image immediately after consuming
9962c0a58 [bofm] Remove userptr_t from BOFM table parsing and updating
080072384 [bofm] Allow BOFM tests to be run without a BOFM-capable device driver
4e909cc2b [build] Remove some long-obsolete unused header files
6c9dc063f [peerdist] Remove never-used peerdist_msg_blk() macro
54c4217bd [peerdist] Remove userptr_t from PeerDist content information parsing
837b77293 [xferbuf] Simplify and generalise data transfer buffers
43fc51629 [prefix] Remove userptr_t from command line image construction
c9fb94dba [comboot] Remove userptr_t from COM32 API implementation
f001e61a6 [comboot] Remove userptr_t from COMBOOT API implementation
ef9711958 [comboot] Remove userptr_t from COMBOOT image parsing
0b45db397 [uaccess] Remove redundant UNULL definition
6ccb6bcfc [bzimage] Remove userptr_t from bzImage parsing
412ad5601 [initrd] Use physical addresses for calculations on initrd locations
ef3827cf1 [bzimage] Use image name in debug messages
083e273bb [efi] Add ability to reboot to firmware setup menu
7eaa2daf6 [reboot] Generalise warm reboot indicator to a flags bitmask
ba2135d0f [multiboot] Remove userptr_t from Multiboot and ELF image parsing
c8c5cd685 [multiboot] Use image name in Multiboot and ELF debug messages
3befb5eb5 [linux] Enable compiler warnings when building the linux_api.o object
024439f33 [linux] Add missing return statement to linux_poll()
bd4ca67cf [build] Disable gcc unterminated-string-initializer warnings
15c1111c7 [build] Remove unsafe disable function wrapper from legacy NIC drivers
7741756af [build] Prevent the use of reserved words in C23
b816b816a [build] Fix old-style function definition
58e6729cb [build] Fix typo in xenver.h header guard
4c8bf666f [pnm] Remove userptr_t from PNM image parsing
d29651dde [png] Remove userptr_t from PNG image parsing
76a17b098 [fbcon] Avoid redrawing unchanged characters when scrolling
aa3cc56ab [fbcon] Remove userptr_t from framebuffer console drivers
4cca1cadf [efi] Remove userptr_t from EFI PE image parsing
338cebfee [pxe] Remove userptr_t from PXE file API implementation
8b3b4f245 [pxe] Remove userptr_t from PXE API call dispatcher
c1b558f59 [cmdline] Remove userptr_t from "digest" command
0edbc4c08 [nbi] Remove userptr_t from NBI image parsing
3cb33435f [sdi] Remove userptr_t from SDI image parsing
d7c94c4aa [pxe] Remove userptr_t from PXE NBP image parsing
2f11f466e [block] Remove userptr_t from block device abstraction
2742ed5d7 [uaccess] Remove now-obsolete memchr_user()
4f4f6c33e [script] Remove userptr_t from script image parsing
8923a216b [ucode] Remove userptr_t from microcode image parsing
605cff4c8 [ucode] Remove userptr_t from microcode update mechanism
f18c1472e [thunderx] Replace uses of userptr_t with direct pointer dereferences
8ac03b4a7 [exanic] Replace uses of userptr_t with direct pointer dereferences
e8ffe2cd6 [uaccess] Remove trivial uses of userptr_t
945df9b42 [gve] Replace uses of userptr_t with direct pointer dereferences
839540cb9 [umalloc] Remove userptr_t from user memory allocations
0bf0f8716 [smbios] Remove userptr_t from SMBIOS structure parsing
0b3fc48fe [acpi] Remove userptr_t from ACPI table parsing
c059b3417 [deflate] Remove userptr_t from decompression code
b89a34b07 [image] Remove userptr_t from image definition
e98b84f1b [crypto] Remove userptr_t from CMS verification and decryption
3f8937d2f [crypto] Remove userptr_t from ASN.1 parsers
04d0b2fdf [uaccess] Remove redundant read_user()
050df80bb [uaccess] Replace real_to_user() with real_to_virt()
8c31270a2 [uaccess] Remove user_to_phys() and phys_to_user()
4535548cb [uaccess] Remove redundant user_to_virt()
89fe78868 [uaccess] Remove redundant memcpy_user() and related string functions
ef0384918 [uaccess] Remove redundant userptr_add() and userptr_diff()
b65f67d44 [uaccess] Change userptr_t to be a pointer type
71174e19d [uaccess] Add explicit casts to and from userptr_t where needed
63d27c631 [uaccess] Rename userptr_sub() to userptr_diff()
453acba7d [time] Use currticks() to provide the null system time
423cdbeb3 [riscv] Map DEL to backspace on the SBI debug console
1291dc39f [cgem] Add a driver for the Cadence GEM NIC
0c482060d [undi] Work around broken ASUSTeK KNPA-U16 server PXE ROM
758a50486 [efi] Inhibit calls to Shutdown() for wireless SNP devices
b07cc851f [netdevice] Add the concept of an insomniac network device
c88ebf2ac [efi] Allow for custom methods for disconnecting existing drivers
eeec6442d [dt] Provide dt_ioremap() to map device registers
99322fd3b [fdt] Add fdt_cells() to read cell-based properties such as "reg"
2c406ec0b [netdevice] Add missing bus type identifier for devicetree devices
424839c58 [crypto] Allow for explicit control of external trust sources
37e9f785b [dt] Add basic concept of a devicetree bus
d462aeb0c [fdt] Remove concept of a device tree cursor
b1125007c [fdt] Add basic tests for reading values from a flattened device tree
db4934617 [fdt] Avoid temporarily modifying path during path lookup
c887de208 [fdt] Provide fdt_strings() to read string list properties
69af6f0c3 [fdt] Allow for trailing slashes in path lookups
96dfaa7e7 [crypto] Switch to using python-asn1crypto instead of python-asn1
7e64e9b67 [fdt] Populate boot arguments in constructed device tree
d85344888 [fdt] Identify free space (if any) at end of parsed tree
0a48bb321 [x509] Ensure certificate remains valid during x509_append()
a289b4b8c [tls] Support fragmentation of transmitted records
f115cfcf9 [tls] Send an empty client certificate chain if we have no certificate
5818529f3 [iobuf] Limit automatic I/O buffer alignment to page size
7fe467a46 [tls] Encrypt data in place to reduce memory usage
d92551a32 [xfer] Use xfer_alloc_iob() for transmit I/O buffers on stream sockets
3937c893a [isa] Disable legacy ISA device probing by default
4a7f64bf4 [efi] Allow for fact that SNP device may be removed by executed image
18dbd05ed [efi] Check correct return value from efi_pxe_find()
4bcaa3d38 [efi] Disconnect existing drivers on a per-protocol basis
7737fec5c [efi] Define an attachment priority order for EFI drivers
be3322475 [efi] Show all drivers claiming support for a handle in debug messages
ea5762d9d [efi] Return success from Stop() if driver is already stopped
7adce3a13 [efi] Add various well-known GUIDs encountered in WiFi boot
b20f506a7 [efi] Install a device tree for the booted OS, if available
761f43ce1 [fdt] Provide the ability to create a device tree for a booted OS
666929e31 [efi] Create a copy of the system flattened device tree, if present
3860313dd [fdt] Allow for parsing device trees where the length is known in advance
2399c7998 [fdt] Allow for the existence of multiple device trees
09fbebc08 [fdt] Add the "fdt" command
cfd93465e [fdt] Add the concept of an FDT image
98f86b4d0 [efi] Add support for installing EFI configuration tables
f0caf90a7 [efi] Add flattened device tree header and GUID definitions
ec8c5a5fb [efi] Add ACPI and SMBIOS tables as well-known GUIDs
0b606221c [undi] Ensure forward progress is made even if UNDI IRQ is stuck
4134280bc [pxeprefix] Ensure that UNDI IRQ is disabled before starting iPXE
e8365f7a5 [pxeprefix] Work around missing type values from PXENV_UNDI_GET_NIC_TYPE
32a940821 [efi] Allow use of typed pointers for efi_open() et al
37897fbd4 [efi] Eliminate uses of HandleProtocol()
bac318743 [efi] Use efi_open() for all ephemeral protocol opens
5a5e2a1da [efi] Use efi_open_unsafe() for all explicitly unsafe protocol opens
9dd30f11f [efi] Use efi_open_by_driver() for all by-driver protocol opens
4561a0376 [efi] Use efi_open_by_child() for all by-child protocol opens
358db1561 [efi] Create safe wrappers for OpenProtocol() and CloseProtocol()
48d168012 [efi] Remove the efipci_open() and efipci_close() wrappers
328388532 [efi] Avoid function name near-collision
331bbf507 [efi] Remove spurious close of SNP device parent's device path
8249bbc09 [efi] Use driver name only from driver binding handles in debug messages
02ecb23d1 [efi] Get veto candidate driver name via either component name protocol
756e3907f [efi] Get veto candidate driver name from image handle
be5bf0aa7 [efi] Show image address range in veto debug messages
5d64469a9 [efi] Prefer driver name to device path for debug messages
7cda3dbf9 [efi] Attempt to retrieve driver name from image handle for debug messages
1a602c92a [efi] Allow wrapping the global boot services table in situ
f68c8b09e [efi] Fix debug wrappers for CloseEvent() and CheckEvent()
37ea181d8 [efi] Ignore path separator characters in virtual filenames
6e4196baf [efi] Prescroll the display after a failed wrapped ExitBootServices() call
8ea8411f0 [efi] Add EFI_RNG_PROTOCOL_GUID as a well-known GUID
42a29d568 [crypto] Update cmsdetach to work with python-asn1 version 3.0.0
829e2d1f2 [rng] Restore state of IRQ 8 and PIE when disabling entropy gathering
8840de409 [pic8259] Return previous state when enabling or disabling IRQs
d1133956d [contrib] Update bochsrc.txt to work with current versions
ddc2d928d [efi] Accept and trust CA certificates in the TlsCaCertificates variable
aa49ce5b1 [efi] Add TLS authentication header and GUID definitions
2a901a33d [efi] Add EFI_GLOBAL_VARIABLE as a well-known GUID
da3024d25 [cpio] Allow for the construction of pure directories
d6ee9a924 [cpio] Fix calculation of name lengths in CPIO headers
5f3ecbde5 [crypto] Support extracting certificates from EFI signature list images
26a8fed71 [crypto] Allow for parsing of DER data separate from DER images
011c778f0 [efi] Allow efi_guid_ntoa() to be used in non-EFI builds
8706ae36d [efi] Add EFI_SIGNATURE_LIST header and GUID definitions
a3ede1078 [efi] Update to current EDK2 headers
32d706a9f [build] Use -fshort-wchar when building EFI host utilities
82fac5162 [efi] Mark UsbHostController.h as a non-imported header
be3a78eaf [lkrnprefix] Support a longer version string
12ea8c407 [cpio] Allow for construction of parent directories as needed
e7595fe88 [menu] Allow a post-activity timeout to be defined
ccd620054 [crypto] Start up RBG on demand if needed
b35300fc6 [efi] Increase download timeout for autoexec.ipxe
8e6b914c5 [crypto] Support direct reduction only for Montgomery constant R^2 mod N
5056e8ad9 [crypto] Expose shifted out bit from big integer shifts
bd90abf48 [bnxt] Allocate TX rings with firmware input
77cc3ed10 [malloc] Ensure free memory blocks remain aligned
6f076efa6 [malloc] Clean up debug messages
c85de315a [crypto] Add definitions and tests for the NIST P-384 elliptic curve
bc5f3dbe3 [crypto] Add definitions and tests for the NIST P-256 elliptic curve
be9ce4907 [crypto] Add support for Weierstrass elliptic curve point multiplication
66b5d1ec8 [crypto] Add a generic implementation of a Montgomery ladder
c2f21a218 [test] Add generic tests for elliptic curve point multiplication
c9291bc5c [tls] Allow for NIST elliptic curve point formats
df7ec3176 [crypto] Generalise elliptic curve key exchange to ecdhe_key()
cc38d7dd3 [crypto] Add bigint_ntoa() for transcribing big integers
d88eb0a19 [crypto] Extract bigint_reduce_supremum() from bigint_mod_exp()
83ba34076 [crypto] Allow for relaxed Montgomery reduction
c0cbe7c2e [efi] Add EFI_TCG2_PROTOCOL header and GUID definition
8816ddcd9 [efi] Update to current EDK2 headers
97079553b [crypto] Calculate inverse of modulus on demand in bigint_montgomery()
24db39fb2 [gve] Run startup process only while device is open
5202f8334 [crypto] Remove obsolete bigint_mod_multiply()
83ac98ce2 [crypto] Use Montgomery reduction for modular exponentiation
4f7dd7fbb [crypto] Add bigint_montgomery() to perform Montgomery reduction
96f385d7a [crypto] Use inverse size as effective size for bigint_mod_invert()
7c2e68cc8 [crypto] Eliminate temporary working space for bigint_mod_invert()
9cbf5c4f8 [crypto] Eliminate temporary working space for bigint_reduce()
167a08f08 [crypto] Expose carry flag from big integer addition and subtraction
da6da6eb3 [crypto] Add bigint_msb_is_set() to clarify code
e9a23a5b3 [efi] Ensure local drives are connected when attempting a SAN boot
8fc11d8a4 [build] Allow for per-architecture cross-compilation prefixes
19f44d299 [riscv] Check if seed CSR is accessible from S-mode
e0e102ee2 [sbi] Add support for running as a RISC-V SBI payload
7ccd08dbf [build] Allow default platform to vary by architecture
d9c0d26e1 [pci] Provide a null PCI API for platforms with no PCI bus
06a933000 [riscv] Add missing volatile qualifiers on timer and seed CSR accesses
be0c9788a [riscv] Add support for the seed CSR as an entropy source
cd54e7c84 [riscv] Add support for RDTIME as a timer source
b0a8eabbf [riscv] Add support for checking CPU extensions reported via device tree
74710b831 [fdt] Add ability to parse unsigned integer properties
cc45ca372 [pci] Drag in PCI settings mechanism only when PCI support is present
abfa7c3ab [uaccess] Rename UACCESS_EFI to UACCESS_FLAT
33d80b1cd [smbios] Provide a null SMBIOS API for platforms with no concept of SMBIOS
21940425c [riscv] Add support for reboot and power off via SBI
b23204b38 [riscv] Add support for the SBI debug console
fa1c24d14 [crypto] Add bigint_mod_invert() to calculate inverse modulo a power of two
c69f9589c [usb] Expose USB device descriptor and strings via settings
c219b5d8a [usb] Add "usbscan" command for iterating over USB devices
2bf16c6ff [crypto] Separate out bigint_reduce() from bigint_mod_multiply()
f78c5a763 [crypto] Use architecture-independent bigint_is_set()
7e0bf4ec5 [crypto] Rename bigint_rol()/bigint_ror() to bigint_shl()/bigint_shr()
3f4f84392 [crypto] Eliminate temporary carry space for big integer multiplication
8844a3d54 [arm] Support building as a Linux userspace binary for AArch32
e0282688c [arm] Check PMCCNTR availability before use for profiling
5f7c6bd95 [profile] Standardise return type of profile_timestamp()
3def13265 [crypto] Use constant-time big integer multiplication
59d123658 [gve] Allocate all possible event counters
9bb206863 [efi] Remove redundant EFI_BOOT_FILE definitions
c215048dd [riscv] Add support for the RISC-V CPU architecture
68db9a3cb [linux] Allow a sysroot to be specified via SYSROOT=...
670810bed [efi] Use standard va_args macros instead of VA_START() etc
1d43e535f [test] Add tests for 64-bit logical and arithmetic shifts
c85ad1246 [efi] Centralise definition of efi_cpu_nap()
5de5d4626 [libc] Centralise architecture-independent portions of setjmp.h
a1830ff43 [cloud] Add ability to delete old AMI images
49f9e036f [cloud] Add family and architecture tags to AWS snapshots and images
f88761ef4 [ena] Change reported operating system type to "iPXE"
2b8200757 [gdb] Allow CPU architectures to omit support for GDB
804f35cb5 [build] Centralise dummy architecture-specific headers
c7f2e7551 [aqc1xx] Add support for Marvell AQtion Ethernet controller
7f75d320f [etherfabric] Fix use of uninitialised variable in falcon_xaui_link_ok()
301644ab4 [test] Add CMS decryption self-tests
5e69cf08d [crypto] Allow cms_decrypt() to be called on unregistered images
72316b820 [image] Add the "imgdecrypt" command
486b15b3c [crypto] Support decryption of images via CMS envelopes
49404bfea [image] Split image_strip_suffix() out from image_extract()
748cab774 [crypto] Add cmsdetach script for detaching encrypted data from CMS messages
b053ba198 [test] Update CMS self-test terminology
4b4a362f0 [crypto] Allow for extraction of ASN.1 algorithm parameters
bdb5b4aef [crypto] Hold CMS message as a single ASN.1 object
46937a9df [crypto] Remove the concept of a public-key algorithm reusable context
acbabdb33 [tls] Group client and server state in TLS connection structure
c9cac76a5 [tls] Group transmit and receive state in TLS connection structure
be2784649 [gve] Add missing error codes in EUNIQ() list of potential errors
ab5743efc [contrib] Remove obsolete rom-o-matic code
633f4f362 [test] Generalise public-key algorithm tests and use okx()
53f089b72 [crypto] Pass asymmetric keys as ASN.1 cursors
950f6b586 [efi] Allow discovery of PCI bus:dev.fn address ranges
7c82ff0b6 [pci] Separate permission to probe buses from bus:dev.fn range discovery
9d9465b14 [crypto] Fix debug name for empty certificate chain validators
97635eb71 [crypto] Generalise cms_signature to cms_message
998edc6ec [crypto] Add OID-identified algorithms for AES ciphers
3b4d0cb55 [crypto] Pass image as parameter to CMS functions
96fb7a0a9 [crypto] Allow passing a NULL certificate store to x509_find() et al
d85590b65 [crypto] Centralise mechanisms for identifying X.509 certificates
59e2b03e6 [crypto] Extend asn1_enter() to handle partial object cursors
0e73b48f7 [crypto] Clarify ASN.1 cursor invalidation behaviour
309ac8fd2 [crypto] Do not return an error when skipping the final ASN.1 object
a064d3976 [cpuid] Allow hypervisor CPUID leaves to be accessed as settings
121d96b90 [cpuid] Allow reading hypervisor CPUID leaves
c117e6a48 [smbios] Allow reading an entire SMBIOS data structure as a setting
60d682409 [smbios] Avoid reading beyond end of constructed SMBIOS setting
0dc8933f6 [cloud] Add utility to read INT13CON partition in Google Compute Engine
d2d194bc6 [gve] Increase number of receive buffers to reduce packet loss
c7b76e3ad [gve] Add driver for Google Virtual Ethernet NIC
5a9f476d4 [cloud] Add utility for importing images to Google Compute Engine
b66e27d9b [ipv6] Expose router address for DHCPv6 leased addresses
77acf6b41 [ipv4] Support small subnets with no directed broadcast address
821bb326f [hci] Remove the generalised widget user interface abstraction
162cc51b6 [form] Reimplement the "login" user interface
f417f0b6a [form] Add support for dynamically created interactive forms
1c3c5e2b2 [dynui] Add concept of a secret user interface item
039019039 [dynui] Allow for multiple flags on a user interface item
c8e50bb0f [dynui] Generalise mechanisms for looking up user interface items
5719cde83 [dynui] Generalise the concept of a menu to a dynamic user interface
122777f78 [hci] Allow tab key to be used to cycle through UI elements
76e0933d7 [hci] Rename "item" command's first parameter from "label" to "name"
bf98eae5d [hci] Split out msg() and alert() from settings UI code
bb4a10696 [hci] Draw all widgets on the standard screen
e965f179e [libc] Add stpcpy()
dc118c536 [hci] Provide a general concept of a text widget set
d7e58c5a8 [test] Add test cases for editable strings
b01781a2b [hci] Fix semantics of replace_string() to match code comments
cb95b5b37 [efi] Veto the Dhcp6Dxe driver on all platforms
40b511244 [hci] Use dynamically allocated buffers for editable strings
27ecc36c0 [efi] Do not attempt to download autoexec.ipxe without a valid base URI
59f27d693 [netdevice] Add "linktype" setting
165995b7e [efi] Restructure handling of autoexec.ipxe script
b940d5423 [cachedhcp] Allow cached DHCPACK to apply to temporary network devices
b66f6025f [efi] Add the ability to create a temporary MNP network device
b52b4a46d [efi] Allow for allocating EFI devices from arbitrary handles
764e34f15 [http] Add error table entry for HTTP 404 Not Found error
afae88178 [tftp] Add error table entry for TFTP "file not found" error code
43deab89c [efi] Add error table entry for local filesystem EFI_NOT_FOUND error
19f39bc07 [efi] Report local file errors during download, rather than on opening
f39b48d5f [image] Allow opaque URI component to provide image name
37850e0e8 [build] Fix build failures with random versions of gcc
9bbe77669 [efi] Extract basic network settings from loaded image device path
170bbfd48 [efi] Add efi_path_mac() to parse a MAC address from an EFI device path
dcad73ca5 [efi] Add support for driving EFI_MANAGED_NETWORK_PROTOCOL devices
da5188f3e [efi] Allow for drivers to be located via child handles
ca483a196 [efi] Add helper functions for service binding protocols
a15ce0018 [efi] Match chainloaded device by uppermost matching handle
390bce951 [efi] Set current working URI from our own device path URI, if present
1a84facf1 [efi] Add efi_path_uri() to parse a URI from an EFI device path
88c2a01e1 [settings] Expose current working URI and directory URI via settings
926816c58 [efi] Pad transmit buffer length to work around vendor driver bugs
c11734eee [golan] Use ETH_HLEN for inline header size
fa4bda617 [build] Fix building on older versions of gcc
bac967d51 [snp] Allocate additional padding for receive buffers
17882e76a [ucode] Add support for updating x86 microcode
1344e13a0 [bios] Provide a multiprocessor API for BIOS
a67f913d6 [librm] Add support for installing a startup IPI handler
89bb926a0 [efi] Provide a multiprocessor API for EFI
1ab4d3079 [mp] Define an API for multiprocessor functions
df2f23e33 [efi] Update to current EDK2 headers
226531ed3 [ci] Update action versions to silence GitHub warnings
06e229590 [efi] Do not report return status from efi_block_local()
24a855f1f [block] Allow SAN boot device to be identified by filesystem label
62b6d3633 [block] Allow SAN boot device to be identified by an extra filename
cea22d76e [block] Allow SAN boot device to be identified by UUID
c4471e340 [efi] Add efi_path_guid() utility function
636ccb4ca [block] Allow for additional SAN boot parameters alongside filename
b1c13cc43 [efi] Allow booting from local disks via the "sanboot" command
8da22a59e [block] Allow for iteration over SAN device list in drive number order
37edfea72 [efi] Generalise block device boot to support arbitrary EFI handles
eb720d222 [efi] Use file system protocol to check for SAN boot filename existence
75c790448 [block] Use drive number as debug message stream ID
1b23d4de2 [efi] Use long forms of device paths in debug messages
7cd73884e [parseopt] Add parse_uuid() for parsing UUID command-line arguments
0eb8fbd0b [settings] Add parsing for UUID and GUID settings types
da7b26628 [uuid] Add uuid_aton() to parse a UUID from a string
182ee9093 [efi] Work around broken boot services table manipulation by UEFI shim
43e385091 [eap] Add support for the MS-CHAPv2 authentication method
25ffcd79b [eap] Allow MD5-Challenge authentication method to be disabled
834f319f8 [eap] Add progress debug messages
ee6185dcf [efi] Ignore new LoongArch PC-relative relocations and relaxations
e5f3ba0ca [drivers] Sort PCI_ROM() entries numerically
582132fe3 [crypto] Force inlining of trivial wrapper functions
075292cc2 [crypto] Add implementation of MS-CHAPv2 authentication
929f06a76 [crypto] Allow for multiple cross-signed certificate download attempts
943d75b55 [crypto] Add x509_is_self_signed() helper function
3e721e0c0 [crypto] Add x509_truncate() to truncate a certificate chain
e10dfe5dc [list] Add list_for_each_entry_safe_continue()
88b291d64 [list] Add list_is_head_entry()
94b39fbe9 [build] Fix build failures with older versions of gcc
0f5abd8b1 [libc] Allow build_assert() failures to be ignored via NO_WERROR=1
a846c4ccf [bnxt] Add support for BCM957608
e7ae51b0d [crypto] Add implementation of the DES cipher
af4583b21 [test] Remove dummy initialisation vector for ECB-mode AES tests
36a27b22b [crypto] Fix stray references to AES
0cc0f4744 [tls] Tidy up error handling flow in tls_send_plaintext()
65d69d33d [efi] Fix hang during ExitBootServices()
963ec1c4f [tls] Add ECDHE cipher suites
8f6a9399b [tls] Make key exchange algorithms selectable via build configuration
a881a2606 [crypto] Add X25519 OID-identified algorithm and TLS named curve
b234226db [tls] Add support for Ephemeral Elliptic Curve Diffie-Hellman key exchange
8e2469c86 [tls] Split out Diffie-Hellman parameter signature verification
989dbe0bc [tls] Generate key material after sending ClientKeyExchange
6f70e8be8 [tls] Restructure construction of ClientHello message
17135c83f [crypto] Add an abstraction of an elliptic curve
27398f136 [crypto] Check for all-zeros result from X25519 key exchange
de8a0821c [bnxt] Add support for additional chip IDs
2eea04c02 [crypto] Add X25519 key exchange algorithm
908174ec7 [loong64] Replace broken big integer arithmetic implementations
bac13ba1f [crypto] Add bigint_swap() to conditionally swap big integers
13e390d54 [crypto] Add bigint_copy() as a convenient wrapper macro
26d3ef062 [crypto] Allow multiplicand and multiplier to differ in size
4b7d9a6af [libc] Replace linker_assert() with build_assert()
6d29415c8 [libc] Make static_assert() available via assert.h
6ca597eee [build] Fix building with newer binutils
e66552eee [build] Remove unnecessary ".text" directives
08fcb0e8f [eap] Add support for the MD5-Challenge authentication type
c6226f104 [eap] Add support for sending an EAP identity
0abb3e85e [eap] Ignore any received EAP responses
4ed7a5718 [build] Reduce scope of wildcard .gitignore rules
fa6221323 [smbios] Support scanning for the 64-bit SMBIOS3 entry point
119c415ee [intel] Add PCI ID for I219-LM (23)
9e92c3989 [efi] Add potentially missing relocation types
3fc1b407d [efi] Fix Coverity warning about unintended sign extension
0958e0146 [efi] Add relocation types generated by clang
337880dea [build] Use SOURCE_DATE_EPOCH for FAT serial number if it exists
f22879ca9 [efi] Allow compiling elf2efi with clang
98dd25a3b [efi] Avoid modifying PE/COFF debug filename
a147245f1 [efi] Extend PE header size to cover space up to first section
c3dd3168c [efi] Fix dependency list construction in EDK2 header import script
b829b1750 [efi] Maximise image base address
03ff1bb99 [efi] Do not assume canonical PE section ordering
18582a05f [efi] Treat 16-bit sections as hidden in hybrid binaries
6714b20ea [efi] Place PE debug information in a hidden section
b37d89db9 [efi] Fix recorded overall size of headers in NT optional header
cc858acd3 [efi] Write out PE header only after writing sections
b30a0987e [efi] Use load memory address as file offset for hybrid binaries
3d8a61465 [efi] Mark PE images as large address aware
a9e89787d [efi] Set NXCOMPAT bit in PE header
678a60f61 [efi] Treat writable sections as data sections
8c8ead253 [efi] Update to current EDK2 headers
77b07ea4f [cloud] Add utility script to read iPXE output from INT13CON partition
d8f9c221e [cloud] Add ability to overwrite existing AMI images
595b1796f [eapol] Limit number of EAPoL-Start packets transmitted per attempt
1bd01b761 [eapol] Delay EAPoL-Start while waiting for EAP to complete
5524bb983 [pci] Require discovery of a PCI device when determining usable PCI APIs
36e1a559a [pci] Check that ECAM configuration space is within reachable memory
1f3a37e34 [pci] Cache ECAM mapping errors
74ec00a9f [pci] Handle non-zero starting bus in ECAM allocations
f88320313 [pci] Force completion of ECAM configuration space writes
115707c0e [iphone] Add missing va_start()/va_end() around reused argument list
ff0f86048 [libc] Use wall clock time as seed for the (non-cryptographic) RNG
8b14652e5 [eapol] Send EAPoL-Start packets to trigger EAP authentication
56cc61a16 [eap] Define a supplicant model for EAP and EAPoL
cac3a584d [fcoe] Use driver-private data to hold FCoE port structure
8cbf24819 [vmware] Use driver-private data to hold GuestInfo settings block
8b1d34bad [ipv6] Use driver-private data to hold link-local IPv6 settings block
cc1e27e52 [lldp] Use driver-private data to hold LLDP settings block
ae4e85bde [netdevice] Allocate private data for each network upper-layer driver
eeb7cd56e [netdevice] Remove netdev_priv() helper function
0aa2e4ec9 [librm] Use explicit operand size when pushing a label address
9e99a55b3 [virtio] Fix implementation of vpm_ioread32()
c1834f323 [dhcp] Request NTP server option
d5c08f78b [ntp] Define NTP server setting
c30b71ee9 [console] Restore compatibility with "--key" values in existing scripts
f3036fc21 [linux] Set a default MAC address for tap devices
59d065c9a [linux] Fix error control flow in af_packet_nic_probe()
48ae5d536 [linux] Fix error control flow in tap_probe()
6701d91c5 [netdevice] Stop link block timer when device is closed
b5b60ea33 [interface] Fix debug message values for temporary interfaces
824441069 [build] Inhibit more linker warnings about an implied executable stack
daa9e54ab [build] Silence the "creating blib.a" message
3ef4f7e2e [console] Avoid overlap between special keys and Unicode characters
cc07ed7c7 [console] Avoid overlap between remapping flags and character values
6f57d9193 [build] Use separate code segment if supported by linker
e17568ad0 [build] Inhibit linker warnings about an implied executable stack
2524a6055 [build] Avoid using multiple target patterns in pattern rules
280942a92 [loong64] Add support for building EFI binaries
6d98e0ca4 [loong64] Add CPU sleeping API for EFI LoongArch64
0c67a3632 [loong64] Add I/O API for LoongArch64
c57887bfc [ioapi] Centralise definitions for dummy PIO
18af66970 [arm] Add missing arch/arm/core source directory
cfe65aa82 [arm] Remove redundant inclusion of io.h
ae435cb4c [efi] Process veto objects in reverse order of enumeration
f8a0d1c0b [efi] Check for protocols opened by vetoed driver and image handles
f0b102550 [efi] Unload vetoed drivers by image handle rather than driver handle
c832580f1 [efi] Pass more detailed driver information to veto methods
9a118322a [efi] Show manufacturer in veto debug output
2689a6e77 [efi] Always poll for TX completions
4fa4052c7 [efi] Provide read-only access to EFI variables via settings mechanism
25a3d3aca [efi] Veto the VMware UefiPxeBcDxe driver
8ab9bdca4 [efi] Include protocol interface address in debug output
12776acce [efi] Add UefiPxeBcDxe module GUID
367e022b5 [efi] Add HttpBootDxe module GUID
b9a60fb0b [efi] Add new IScsiDxe module GUID
a64764d10 [efi] Add HTTP header and GUID definitions
bc75bbaf1 [efi] Add DNS headers and GUID definitions
e7adf5701 [efi] Add Ip4Config2 header and GUID definition
92ab2de3a [efi] Add IPv6 versions of existing IPv4 headers and GUID definitions
3184ff74e [efi] Update to current EDK2 headers
9cb0a4b8e [efi] Disable static assertions in EFI headers on non-EFI platforms
b0093571f [crypto] Add support for PKCS#8 private key format
6a7f560e6 [efi] Implement "shim" as a dummy command on non-EFI platforms
5b4318143 [efi] Support versions of shim that perform SBAT verification
d2e1601cf [efi] Separate GetMemoryMap() wrapper from shim unlocker
95b8338f0 [efi] Add "shim" command
28184b7c2 [efi] Add support for executing images via a shim
3c214f046 [efi] Add definitions for the UEFI shim lock protocol
ce2200d5f [efi] Add efi_asprintf() and efi_vasprintf()
c4a8d9038 [image] Generalise concept of selected image
79d85e29a [efi] Attempt to detect EFI images that fail Secure Boot verification
d27cd8196 [ci] Work around Ubuntu packaging metadata issues
03eea19c1 [efi] Allow currently selected image to be opened as "grub*.efi"
0bb0aea87 [efi] Allow currently executing image to be opened via virtual filesystem
f9beb20e9 [image] Allow for images to be hidden from lists of all images
f93e6b712 [efi] Show original filenames in debug messages
22cc65535 [efi] Allow downloaded images to take precedence over constructed files
bd1369744 [efi] Allow for sections to be excluded from the generated PE file
9fb28080d [efi] Allow elf2efi to be used for hybrid binaries
1e4c3789e [efi] Shrink size of data directory in PE header
0d04635ef [efi] Remove redundant zero padding in PE header
1d1cf74a5 [tls] Handle fragmented handshake records
aa368ba52 [tls] Pass I/O buffer to received record handlers
2c6a15d2a [tls] Clean up change cipher spec record handling
09e8a1540 [efi] Claim fixed device paths by uninstalling device path protocol
bf25e23d0 [intel] Add workaround for I210 reset hardware bugs
8f1c12011 [dhcp] Unregister ProxyDHCP and PXEBS settings on a successful DHCPACK
54fcb7c29 [efi] Use image name instead of pointer value in debug messages
9e1f7a365 [image] Always unregister currently executing image
e51e7bbad [image] Consistently use for_each_image() to iterate over images
523788ccd [intelx] Add PCI IDs for Intel 82599 10GBASE-T NIC
96bb6ba44 [params] Allow for arbitrary HTTP request headers to be specified
33cb56cf1 [params] Rename "form parameter" to "request parameter"
60531ff6e [http] Use POST method only if the form parameter list is non-empty
04e60a278 [efi] Omit EFI_LOAD_FILE2_PROTOCOL for a zero-length initrd
471599dc7 [efi] Split out EFI_RNG_PROTOCOL as a separate entropy source
7d71cf318 [rng] Allow for entropy sources that fail during startup tests
6625e49ce [tables] Allow any lvalue to be used as a table iterator
9f17d1116 [rng] Allow entropy source to be selected at runtime
2733c4763 [iscsi] Limit maximum transfer size to MaxBurstLength
cff857461 [rng] Add RDRAND as an entropy source
6a004be0c [efi] Support the initrd autodetection mechanism in newer Linux kernels
cf9ad00af [efi] Fix debug message when reading from EFI virtual files
76a286530 [image] Check delimiters when parsing command-line key-value arguments
3c83843e1 [rng] Check for several functioning RTC interrupts
be8ecaf80 [eisa] Check for system board presence before probing for slots
62a1d5c0f [loong64] Add initial support for LoongArch64
84cb77439 [test] Include build architecture in test suite banner
bfa5262f0 [ci] Cache downloaded packages for GitHub actions
ef0a6f479 [ioapi] Move PAGE_SHIFT to bits/io.h
c6901792f [build] Allow for per-architecture unprefixed constant operand modifier
a2bed4393 [xen] Allow for platforms that have no Xen support
7cc305f7b [efi] Enable NET_PROTO_LLDP by default
dc16de320 [lldp] Add support for the Link Layer Discovery Protocol
6c0335adf [ci] Update to ubuntu-22.04 GitHub actions runner
8450fa4a7 [dhcp] Ignore DHCPNAK unless originating from the selected DHCP server
4e456d992 [efi] Do not attempt to drive PCI bridge devices
d405a0bd8 [util] Add support for LoongArch64 binaries
49c13e81b [ci] Update to actions/checkout@v3 to silence GitHub warnings
8b645eea1 [xen] Update to current Xen headers
6f250be27 [efi] Allow autoexec script to be located alongside iPXE binary
b6304f298 [realtek] Explicitly disable VLAN offload
aa85c2918 [efi] Update to current EDK2 headers
66a2ff442 [tests] Verify ability to sleep the CPU
3bcd0d327 [dhcp] Add IANA-defined values for all current EFI client architectures
4bb521a8c [efi] Accept a command line passed to an iPXE image via LoadOptions
b9be45401 [la64] Import LoongArch64 ProcessorBind.h from EDK2 headers
e3d543437 [efi] Update to current EDK2 headers
137ca5d87 [efi] Mark ConsoleControl.h as a non-imported header
900379594 [efi] Remove deleted directories from EDK2 header import script
91944c634 [efi] Allow for whitespace before #include in imported EDK2 header files
dac41fc4e [efi] Detect SPDX licence identifiers in imported EDK2 headers
5220bdc52 [legal] Add missing FILE_LICENCE declaration to efi_path.c
38f54fb41 [legal] Add support for the BSD-2-Clause-Patent licence
5bf8b1152 [efi] Build util/efirom as a host-only binary
2d180ce23 [tcp] Update maximum window size to 2MB
4bffe0f0d [pxe] Discard queued PXE UDP packets when under memory pressure
c5426cdaa [golan] Add new PCI ID for NVIDIA BlueField-3 network device
e72670ad7 [pxe] Avoid drawing menu items on bottom row of screen
68734b9a4 [efi] Bind to only the topmost instance of the SNP or NII protocols
2fef0c541 [efi] Extend efi_locate_device() to allow searching up the device path
1cd0a248c [efi] Add efi_path_prev() utility function
204d39222 [efi] Add efi_path_terminate() utility function
fcfb70bfb [arm] Inhibit linker warnings about an implied executable stack
c5e1f007a [arm] Use -mfloat-abi=soft only for EFI builds
9de6c45dd [arm] Use -fno-short-enums for all 32-bit ARM builds
8f59911b2 [arm] Support building as a Linux userspace binary for AArch64
2061d658b [dhcp] Simplify platform-specific client architecture definitions
2ef5f5e05 [build] Move -Ulinux to common Makefile
475c0dfa8 [linux] Centralise the linker script for Linux binaries
a99e435c8 [efi] Do not rely on ProcessorBind.h when building host binaries
6b977d125 [ena] Allocate an unused Asynchronous Event Notification Queue (AENQ)
08740220b [netdevice] Ensure consistent interpretation of "netX" device name
2dcef4b7a [efi] Create VLAN autoboot device automatically
f07630c74 [vlan] Support automatic VLAN device creation
5a2fa6040 [autoboot] Include VLAN tag in filter for identifying autoboot device
c4c03e5be [netdevice] Allow duplicate MAC addresses
47af48012 [netdevice] Separate concept of scope ID from network device name index
ab1954638 [efi] Disable receive filters to work around buggy UNDI drivers
7147532c3 [cachedhcp] Retain cached DHCPACK after startup if not already consumed
60b5532cf [cachedhcp] Include VLAN tag in filter for applying cached DHCPACK
b9571ca12 [efi] Add efi_path_vlan() utility function
099e4d39b [efi] Expose efi_path_next() utility function
0f3ace92c [efi] Allow passing a NULL device path to path utility functions
d879c8e4d [efi] Provide VLAN configuration protocol
5e62b4bc6 [vlan] Allow external code to identify VLAN priority as well as tag
b0ded89e9 [build] Disable dangling pointer checking for GCC
54c4c1d40 [build] Disable array bounds checking for GCC
563bff472 [intel] Add PCI ID for I219-V and -LM 16,17
2ae535532 [pci] Backup and restore standard config space across PCIe FLR
ca2be7e09 [pci] Allow PCI config space backup to be limited by maximum offset
688646fe6 [tls] Add GCM cipher suites
f5c829b6f [tests] Verify ability to perform in-place encryption and decryption
4acded7e5 [crypto] Support in-place decryption for GCM ciphers
63fdd9b58 [tests] Verify ability to reset cipher initialisation vector
63577207a [crypto] Ensure relevant GCM cipher state is cleared by cipher_setiv()
7256a6eb2 [tls] Allow handshake digest algorithm to be specified by cipher suite
51ecc0549 [tls] Always send maximum supported version in ClientHello
54d83e92f [tls] Add support for AEAD ciphers
186306d61 [tls] Treat invalid block padding as zero length padding
634a86093 [tls] Allow for arbitrary-length initialisation vectors
c453b4c28 [tls] Add MAC length as a cipher suite parameter
b6eef1485 [tls] Abstract out concept of a TLS authentication header
6a360ebfd [tls] Ensure cipher alignment size is respected
30243ad73 [crypto] Add concept of cipher alignment size
d1bc872a2 [tls] Formalise notions of fixed and record initialisation vectors
f8565a655 [tls] Remove support for TLSv1.0
7b60a4875 [efi] Clear DMA-coherent buffers before mapping
f48b01cb0 [bzimage] Fix parsing of "vga=..." when not at end of command line
8fce26730 [crypto] Add block cipher Galois/Counter mode of operation
da81214ce [crypto] Add concept of authentication tag to cipher algorithms
0c383bf00 [crypto] Add concept of additional data to cipher algorithms
8e478e648 [crypto] Allow initialisation vector length to vary from cipher blocksize
52f72d298 [crypto] Expose null crypto algorithm methods for reuse
2c7824273 [tls] Add support for DHE variants of the existing cipher suites
6b2c94d3a [tls] Add support for Ephemeral Diffie-Hellman key exchange
ea33ea33c [tls] Add key exchange mechanism to definition of cipher suite
80c45c5c7 [tls] Record ServerKeyExchange record, if provided
028aac99a [tls] Generate pre-master secret at point of sending ClientKeyExchange
1a7317e7d [tls] Generate master secret at point of sending ClientKeyExchange
18b861024 [crypto] Add Ephemeral Diffie-Hellman key exchange algorithm
007d3cb80 [crypto] Simplify internal HMAC API
88419b608 [test] Add HMAC self-tests
081b3eefc [ena] Assign memory BAR if left empty by BIOS
3aa6b79c8 [pci] Add minimal PCI bridge driver
649176cd6 [pci] Select PCI I/O API at runtime for cloud images
9448ac544 [bios] Allow pcibios_discover() to return an empty range
be667ba94 [pci] Add support for the Enhanced Configuration Access Mechanism (ECAM)
ff228f745 [pci] Generalise pci_num_bus() to pci_discover()
56b30364c [pci] Check for wraparound in callers of pci_find_next()
8fc3c26ea [pci] Allow pci_find_next() to return non-zero PCI segments
6459e3b7b [linux] Add missing PROVIDE_PCIAPI_INLINE() macros
8f5fc1614 [ipv6] Ignore SLAAC on prefixes with an incompatible prefix length
bc19aeca5 [ipv6] Fix mask calculation when prefix length is not a multiple of 8
131daf1aa [test] Validate constructed IPv6 routing table entries
a80124456 [ena] Increase receive ring size to 128 entries
3b81a4e25 [ena] Provide a host information page
9f81e97af [ena] Specify the unused completion queue MSI-X vector as 0xffffffff
6d2cead46 [ena] Allow for out-of-order completions
856ffe000 [ena] Limit submission queue fill level to completion queue size
c5af41a6f [intelxl] Explicitly request a single queue pair for virtual functions
04879352c [intelxl] Allow for admin commands that trigger a VF reset
491c075f7 [intelxl] Negotiate virtual function API version 1.1
b52ea2084 [intelxl] Show virtual function packet statistics for debugging
cad1cc6b4 [intelxl] Add driver for Intel 100 Gigabit Ethernet NICs
6871a7de7 [intelxl] Use admin queue to set port MAC address and maximum frame size
727b034f1 [intelxl] Use admin queue to get port MAC address
06467ee70 [intelxl] Defer fetching MAC address until after opening admin queue
d6e36a2d7 [intelxl] Set maximum frame size to 9728 bytes as per datasheet
99242bbe2 [intelxl] Always issue "clear PXE mode" admin queue command
faf26bf8b [intelxl] Allow expected admin queue command errors to be silenced
f0ea19b23 [intelxl] Increase data buffer size to 4kB
fb69d1400 [intelxl] Separate virtual function driver definitions
c220b93f3 [intelxl] Reuse admin command descriptor and buffer for VF responses
67f8878e1 [intelxl] Handle admin events via a callback
9e46ffa92 [intelxl] Rename 8086:1889 PCI ID to "iavf"
ef7066755 [intelxl] Increase receive descriptor ring size to 64 entries
9f5b9e3ab [intelxl] Negotiate API version for virtual function via admin queue
b4216fa50 [intelxl] Use non-zero MSI-X vector for virtual function interrupts
1b61c2118 [intelxl] Fix invocation of intelxlvf_admin_queues()
a202de385 [intelxl] Use function-level reset instead of PFGEN_CTRL.PFSWR
0965cec53 [pci] Generalise function-level reset mechanism
9dfcdc04c [intelxl] Update list of PCI IDs
d8014b180 [intelxl] Include admin command response data buffer in debug output
319caeaa7 [intelxl] Identify rings consistently in debug messages
814aef68c [intelxl] Add missing padding bytes to receive queue context
725f0370f [intelxl] Fix bit width of function number in PFFUNC_RID register
5d3fad5c1 [intelxl] Fix retrieval of switch configuration via admin queue
d3c8944d5 [acpi] Expose system MAC address via ${sysmac} setting
d72c8fdc9 [cachedhcp] Allow cached DHCPACK to override a temporary MAC address
87f1796f1 [ecm] Treat ACPI MAC address as being a non-permanent MAC address
70995397e [cloud] Allow aws-import script to run on Python 3.6
f58b5109f [acpi] Support the "_RTXMAC_" format for ACPI-based MAC addresses
614c3f43a [acpi] Add MAC address extraction self-tests
1e1b9593e [linux] Add stub phys_to_user() implementation
27825e555 [acpi] Allow for the possibility of overriding ACPI tables at link time
dd3547543 [efi] Support Unicode character output via framebuffer console
ba93c9134 [fbcon] Support Unicode character output
2ff3385e0 [efi] Support Unicode character output via text console
7e9631b60 [utf8] Add UTF-8 accumulation self-tests
3cd3a7326 [utf8] Add ability to accumulate Unicode characters from UTF-8 bytes
2acdc9299 [dns] Always start DNS queries using the first configured DNS server
bc5c612f7 [console] Include mappings for AltGr-Shift-<key>
304333dac [console] Support changing keyboard map at runtime
674963e2a [settings] Always process all settings applicators
11e17991d [console] Ensure that US keyboard map appears at start of linker table
252cff5e9 [xsigo] Avoid storing unused uninitialised fields in gateway address
04288974f [pci] Ensure that pci_read_config() initialises all fields
5d22307c4 [image] Do not clear current working URI when executing embedded image
419b2e71d [console] Fix definition of unreachability for remapped keys
4a37b0500 [console] Add Swedish "se" keymap
5aee6b81d [build] Avoid invoking genkeymap.py via Perl
510f9de0a [console] Ensure that all ASCII characters are reachable in all keymaps
429d4beb8 [console] Remove "az" keymap
a7a79ab12 [console] Fix unreachable characters in "mt" keymap
164db2cc6 [console] Fix unreachable characters in "il" keymap
c7d781929 [console] Treat dead keys as producing their ASCII equivalents
e1cedbc0d [console] Support AltGr to access ASCII characters via remapping
f2a59d597 [console] Centralise handling of key modifiers
871dd236d [console] Allow for named keyboard mappings
115032159 [tables] Add ability to declare static table start and end markers
0bbd89678 [console] Handle remapping of scancode 86
3f05a82fe [console] Update genkeymap to work with current databases
0979b3a11 [efi] Support keyboard remapping via the EFI console
eb92ba0a4 [usb] Handle upper/lower case and Ctrl-<key> after applying remapping
468980db2 [usb] Support keyboard remapping via the native USB keyboard driver
fa708015e [console] Avoid attempting to remap numeric keypad on BIOS console
f51a62bc3 [console] Generalise bios_keymap() as key_remap()
64113751c [efi] Enable IMAGE_GZIP by default for AArch64
bc35b24e3 [prefix] Fix use of writable code segment on 486 and earlier CPUs
6ba671acd [efi] Attempt to fetch autoexec script via TFTP
ec746c000 [efi] Allow for autoexec scripts that are not located in a filesystem
e814d3390 [uri] Allow for relative URIs that include colons within the path
f4f9adf61 [efi] Include Secure Boot Advanced Targeting (SBAT) metadata
fbbdc3926 [build] Ensure version.%.o is always rebuilt as expected
53a5de364 [doc] Update user-visible ipxe.org URIs to use HTTPS
91c77e259 [efi] Do not align VirtualSize for .reloc and .debug sections
f43c2fd69 [settings] Support formatting UUIDs as little-endian GUIDs
9062544f6 [efi] Disable EFI watchdog timer when shutting down to boot an OS
562c74e1e [efi] Run ExitBootServices shutdown hook at TPL_NOTIFY
0f4cc4b5a [build] Include EFI system partition table entry in isohybrid images
a046da21a [efi] Raise TPL during driver unload entry point
3ad27fbe7 [intel] Add PCI ID for Intel X553 0x15e4
b6045a8cb [efi] Modify global system table when wrapping a loaded image
51612b6e6 [efi] Do not attempt to use console output after ExitBootServices()
236299baa [xhci] Avoid DMA during shutdown if firmware has disabled bus mastering
1844aacc8 [uri] Retain original encodings for path, query, and fragment fields
85eb961bf [xhci] Allow for permanent failure of the command mechanism
f24a2794e [virtio] Update driver to use DMA API
2265a6519 [readline] Extend maximum read line length to 1024 characters
05a76acc6 [ecm] Use ACPI-provided system-specific MAC address if present
91e147213 [ecm] Expose USB vendor/device information to ecm_fetch_mac()
0cc4c42f0 [acpi] Allow for extraction of a MAC address from the DSDT/SSDT
02ec659b7 [acpi] Generalise DSDT/SSDT data extraction logic
e09e1142a [efi] Record cached ProxyDHCPOFFER and PXEBSACK, if present
db6310c3e [efi] Use zero for PCI vendor/device IDs when no applicable ID exists
b33cc1efe [build] Fix genfsimg to work with FATDIR with space
4d180be51 [cloud] Retry DHCP aggressively in AWS EC2
c64dfff0a [efi] Match signtool expectations for file alignment
8d08300ad [libc] Allow for externally-defined LITTLE_ENDIAN and BIG_ENDIAN constants
2690f7309 [uri] Make URI schemes case-insensitive
4aa037582 [rdc] Add driver for RDC R6040 embedded NIC
5622575c5 [realtek] Work around hardware bug on RTL8211B
0688114ea [cloud] Show ifstat output after a failed boot attempt
9b6ad2d88 [peerdist] Assume that most recently discovered peer can be reused
51c88a4a6 [build] Fix building on broken versions of GNU binutils
bf4ccd426 [build] Ensure build ID is deterministic
3c040ad38 [efi] Veto the Itautec Ip4ConfigDxe driver
3dd1989ac [libc] Match standard prototype for putchar()
52300ccf9 [base64] Include terminating NUL within base64 character array
92807f575 [rndis] Fix size of reserved fields
065dce8d5 [ath5k] Avoid returning uninitialised data on EEPROM read errors
f3f568e38 [crypto] Add memory output constraints for big-integer inline assembly
74c54461c [build] Use SOURCE_DATE_EPOCH for isohybrid MBR ID if it exists
0d68d7151 [build] Use SOURCE_DATE_EPOCH for .iso timestamps if it exists
e5f025517 [efi] Provide an "initrd.magic" file for use by UEFI kernels
ef9953b71 [efi] Allow for non-image-backed virtual files
bfca3db41 [cpio] Split out bzImage initrd CPIO header construction
fc8bd4ba1 [x509] Use case-insensitive comparison for certificate names
661093054 [libc] Add strncasecmp()
059c4dc68 [bnxt] Use hexadecimal values in PCI_ROM entries
adb2ed907 [intel] Add PCI ID for I219-V and -LM 10 to 15
d7bc9e9d6 [image] Support archive image formats independently of "imgextract" command
62f732207 [image] Propagate trust flag to extracted archive images
191f8825c [image] Allow single-member archive images to be executed transparently
a6a8bb1a9 [undi] Read TSC only when profiling
05fcf1a2f [rng] Check for TSC support before using RTC entropy source
13c1abe10 [prefix] Specify i486 architecture for LZMA decompressor
866fa1ce7 [gzip] Add support for gzip archive images
d093683d9 [zlib] Add support for zlib archive images
5c9c8d2b9 [image] Add "imgextract" command for extracting archive images
de4f31cdc [image] Provide image_set_len() utility function
106f4c539 [cloud] Allow multiple images to be imported simultaneously
1dfc05622 [cloud] Attempt to include CPUID_SETTINGS only for x86 builds
438513f6f [cloud] Autodetect CPU architecture from AMI disk image
6dad316e6 [cloud] Use a sortable default AMI name
e994237c0 [cloud] Add ability to generate Dokuwiki table of AMI images
323af9ee8 [settings] Add --timeout option to "read" command
b2501dd12 [readline] Add an optional timeout to readline_history()
56f7d44fd [efi] Show ACPI address space descriptor ranges in debug messages
3efdbef2f [efi] Always map full length of coherent DMA buffer allocation
e4afaa224 [build] Fix genfsimg to build ISO with long filenames
614d99eba [xen] Avoid infinite loop on allocation failure in xenstore_response()
85d179f2c [xen] Support scatter-gather to allow for jumbo frames
8ca43ccbc [int13] Do not report INT 13 extension support for emulated floppies
3ae83222c [cloud] Enable "poweroff" command in cloud images
78749542f [netdevice] Ensure driver transmit() and poll() will not be re-entered
0be8491b7 [pci] Avoid scanning nonexistent buses when using PCIAPI_DIRECT
c0346dbb4 [intel] Add additional PCI device ID to table
94245624e [efi] Mark PE .reloc and .debug sections as discardable
f1e9e2b06 [efi] Align EFI image sections by page size
1cc875651 [efi] Discard .pci_devlist.* sections for EFI images
1192edf39 [dhcp] Handle DHCPNAK by returning to discovery state
7c8fc2cae [linux] Fail at link time if building slirp.linux without libslirp
65bd5c05d [linux] Do not assume that stat() works on sysfs files
1c4917b6a [linux] Validate length of ACPI table read from sysfs
50d13907c [linux] Place -lslirp at end of linker search list
69ecab263 [linux] Use fstat() rather than statx()
2a2909cd1 [linux] Use generic sysfs mechanism to read SMBIOS table
681600680 [linux] Use generic sysfs mechanism to read ACPI tables
5c8a9905c [linux] Add a generic function for reading files from sysfs
976839ae4 [linux] Free cached ACPI tables on shutdown
3a5840012 [dns] Reduce debug verbosity for DNS server list
7b963310a [linux] Allow arbitrary settings to be applied to Linux devices
8055d5c48 [linux] Add missing pci_num_bus() stub
3b8aff94b [build] Fix building on older versions of gcc
2b5d3f582 [slirp] Add libslirp driver for Linux
916ebef19 [build] Allow __asmcall to be used as a type attribute
c09b62797 [linux] Provide ACPI settings via /sys/firmware/acpi/tables
9776f6ece [acpi] Allow for platforms that provide ACPI tables individually
d175936b7 [acpi] Eliminate redundant acpi_find_rsdt() in acpi_sx()
0956fb52c [acpi] Use a fixed colour for debug messages
f309d7a7b [linux] Use host glibc system call wrappers
040cdd0c6 [linux] Add a prefix to all symbols to avoid future name collisions
16d95227a [bitops] Provide an explicit operand size for bit test instructions
b76281a88 [efi] Compress EFI ROM images
900f1f98d [librm] Test for FXSAVE/FXRSTOR instruction support
e63b8c330 [librm] Add missing __asmcall on init_idt()
22bb29eab [prefix] Add a generic raw image prefix
8446a439b [initrd] Allow for zero-length initrd files
4039b54ba [cloud] Do not enable serial console on EFI platforms
cd3de55ea [efi] Record cached DHCPACK from loaded image's device handle, if present
d562339fc [efi] Defer autoboot link-layer address and autoexec script probing
e39cd79a0 [efi] Split out autoexec script portions of efi_autoboot.c
057674bb1 [pxe] Split out platform-independent portions of cachedhcp.c
19d0fab40 [ath5k] Add missing AR5K_EEPROM_READ in ath5k_eeprom_read_turbo_modes
fa012dd02 [cloud] Enable IPv6 and HTTPS in cloud boot images
d16535aa4 [cloud] Add utility for importing images to AWS EC2
1b99ba2a9 [build] Work around stray sections introduced by some binutils versions
83516ba7f [cloud] Use PCIAPI_DIRECT for cloud images
004924336 [ena] Switch to two-phase reset mechanism
c160fb259 [build] Use .balign directive instead of .align
b539e9a7e [build] Remove support for building with the Intel C compiler
df16df2c8 [build] Report detailed errors when unable to find a usable mkisofs
d79f504c0 [ci] Disable redundant scheduled execution of Coverity Scan
831f17f66 [ci] Disable Travis CI
1259580dd [ci] Add GitHub action for Coverity Scan
eeca29a1e [ci] Add GitHub action for build testing
e8393c372 [build] Work around distros that use -fcf-protection=full by default
e80299c56 [build] Work around -fPIE patched versions of gcc on all architectures
bfb72ec23 [build] Avoid spurious "make clean" when building for the first time
885c6d6e9 [efi] Fix erroneous comparison of a pointer against userptr_t
5bdb75c9d [contrib] Update bochsrc.txt to work with current versions
1af0fe04f [hermon] Add support for ConnectX-3 based cards
0c94659a8 [autoboot] Avoid closing and immediately reopening network device
6f1cb791e [hermon] Avoid parsing length field on completion errors
8747241b3 [hermon] Make hermon_dump_xxx() functions no-ops on non-debug builds
410566cef [hermon] Minimise reset time
7b2b35981 [hermon] Throttle debug output when sensing port type
299c671f5 [hermon] Add a debug notice when initialization is complete
8b07c88df [hermon] Add support for port management event
d948ac6c6 [hermon] Adjust Ethernet work queue size
e62c3e351 [hermon] Use reset value suitable for ConnectX-3
2e3d5909e [hermon] Clean up whitespace in hermon.c
79031fee2 [iscsi] Update link to iBFT reference manual
def46cf34 [hermon] Limit link poll frequency in DOWN state
ba20ba427 [build] Avoid using awk to format build ID as hexadecimal
3a2411b43 [build] Avoid using sha1sum when calculating build ID
82dbca493 [build] Allow BIOS linker script to be used with FreeBSD linker
1fea8ce06 [build] Check for broken elftoolchain version of objcopy
fe52f8e8b [build] Avoid modifying load addresses when stripping .zinfo section
d8dc06fbf [build] Replace random build ID with a deterministic one
bc4979e2c [build] Use $(shell ...) to invoke BUILD_ID_CMD
9d000c9fd [build] Use SOURCE_DATE_EPOCH if it exists
6c91eebd0 [build] Use recursive deletion for "make clean"
5e260c73f [build] Avoid shell brace expansion in "make clean"
f034ae59f [build] Allow elf2efi.c to build on FreeBSD
25b675c3d [build] Ensure that isolinux.bin is modifiable
9557497e7 [build] Add syslinux search locations used on FreeBSD
f4fcd000a [build] Drop timestamps from .a file
43d72d008 [hermon] Perform clean MPT unmap on device shutdown
699b9f1d1 [hermon] Use Ethernet MAC as eIPoIB local EMAC
6cb12ee2b [hermon] Increase polling rate for command completions
7d32225b5 [hermon] Add event queue debug functions
7c40227e1 [hermon] Increase command timeout from 2 to 10 seconds
cd126c41b [hermon] Add assorted debug error messages
ce45c8dc2 [hermon] Show "issuing command" messages only at DBGLVL_EXTRA
a2893dc18 [hermon] Reorganize PCI ROM list and document well-known product names
0e788c8ed [golan] Backport typo fix in nodnic_prm.h: s/HERMON/NODNIC/
36a892a7c [arbel] Clean up whitespace in MT25218_PRM.h header
414c842f0 [hermon] Clean up whitespace in MT25408_PRM.h header
a08244ecc [efi] Use EFI_SIMPLE_TEXT_INPUT_EX_PROTOCOL if available
8488c989c [image] Implicitly trust first embedded image
b9de7e6ed [infiniband] Require drivers to specify the number of ports
4f9fbe6c1 [efi] Fix misleading debug message
f4c3a0147 [ifmgmt] Make "ifstat" show the link-layer protocol for each netdev
42db0bd04 [cmdline] Expose "iflinkwait" as a command
ade4d2b4f [efi] Fix use of uninitialised variable
a3f1e8fb6 [efi] Automatically load "/autoexec.ipxe" when booted from a filesystem
989a7a803 [image] Provide image_memory()
ffc41ae9d [travis] Update to current default build environment
68469d1b1 [build] Report a meaningful error message if isolinux.bin is missing
7c3d186a1 [build] Check that mkisofs equivalent supports the required options
8ef22d819 [tftp] Allow for profiling of client and server turnaround times
b99477b3f [image] Add the "imgmem" command
99ac69b8a [image] Provide image_set_data()
ae73fb5aa [build] Allow an initrd script to be provided via genfsimg
34f51a0dc [build] Fail gracefully when no input files are given to genfsimg
05d7591a7 [build] Use explicit disk geometry for generated FAT filesystem images
a2a6618d4 [build] Fix genfsimg incompatibility with dash shell
565ca3eab [build] Set volume name "iPXE" on FAT filesystem images
117353815 [build] Allow genfsimg to be used on third party UEFI binaries
3a9621a6f [ipv6] Defer router discovery timeout while link is blocked
9a341203d [dhcp] Allow for links that remained blocked for up to three minutes
9c2e8bad1 [eap] Treat an EAP Request-Identity as indicating a blocked link
274ad6901 [eapol] Replace EAPoL code
860620459 [dhcp] Continue transmitting DHCPDISCOVER while link is blocked
0fb37a48a [build] Include xorrisofs as a viable mkisofs equivalent
8e3826aa1 [build] Inhibit spurious array bounds warning on some versions of gcc
a5fb41873 [isa] Add missing #include <config/isa.h>
79c0173d6 [build] Create util/genfsimg for building filesystem-based images
c42f31bc8 [xhci] Avoid false positive Coverity warning
5aa389593 [efi] Leave asynchronous USB endpoints open until device is removed
7ce3b8405 [xhci] Show meaningful error messages after command failures
017b345d5 [xhci] Fail attempts to issue concurrent commands
988d2c13c [efi] Use segment and bus number to identify PCI root bridge I/O protocol
dced22d6d [smbios] Add support for the 64-bit SMBIOS3 entry point
485f8ce55 [efi] Allow for longer device paths in debug messages
da491eaae [sfc] Update email addresses
68f1914aa [x509] Clarify debug message for an untrusted X.509 issuer
ce841946d [golan] Add new PCI IDs
47098d7cb [efi] Allow EFI_USB_IO_PROTOCOL interfaces to be nullified and leaked
6769a7c3c [efi] Skip interface uninstallation during shutdown
fb91542f2 [efi] Nullify interfaces unconditionally on error and shutdown paths
f47a45ea2 [iphone] Add iPhone tethering driver
f43a8f8b9 [crypto] Allow private key to be specified as a TLS connection parameter
6a8664d9e [tls] Include root of trust within definition of TLS session
3475f9162 [x509] Make root of trust a reference-counted structure
e3eedb0be [efi] Avoid using potentially uninitialised driver name in veto checks
39f529349 [x509] Record root of trust used when validating a certificate
6e92d6213 [ocsp] Remove dummy OCSP certificate root
be47c2c72 [http] Hide HTTP transport-layer filter implementation details
1b112e9d1 [asn1] Define ASN1_SHORT() for constructing short tagged values
e4b6328c8 [asn1] Rename ASN1_OID_CURSOR to ASN1_CURSOR
e33f52108 [asn1] Add constant for UTF-8 string tag
25b53afa5 [tls] Allow provision of a client certificate chain
2b6b02ee7 [tls] Use intf_insert() to add TLS to an interface
09fe2bbd3 [interface] Provide intf_insert() to insert a filter interface
cb0ba2f82 [interface] Ignore any attempts to plug in the null interface
b6e2ea03b [efi] Veto the HP XhciDxe Driver
63625b43e [efi] Allow vetoing of drivers that cannot be unloaded
354c252ee [efi] Provide manufacturer and driver names to all veto checking methods
be49380f5 [efi] Split out dbg_efi_opener() as a standalone function
13a6d1729 [xhci] Update driver to use DMA API
6e01b74a8 [dma] Provide dma_umalloc() for allocating large DMA-coherent buffers
a8442750e [efi] Avoid requesting zero-length DMA mappings
a2e5cf1a3 [netdevice] Fix misleading comment on netdev_rx()
9ff61ab28 [netdevice] Do not attempt to unmap a null I/O buffer
8d337ecda [dma] Move I/O buffer DMA operations to iobuf.h
70e6e8324 [dma] Record DMA device as part of DMA mapping if needed
cf12a4170 [dma] Modify DMA API to simplify calculation of medial addresses
24ef74377 [intelxl] Configure DMA mask as 64-bit
9e280aecb [intel] Configure DMA mask as 64-bit
0b5467b65 [efi] Report correct error when failing to unload a vetoed driver
1295b4acf [efi] Allow initialisation via SNP interface even while claimed
03314e8da [intelxl] Update driver to use DMA API
76a7bfe93 [intelxl] Read PCI bus:dev.fn number from PFFUNC_RID register
b6eb17cbd [intelxl] Read MAC address from PRTPM_SA[HL] instead of PRTGL_SA[HL]
e10a40d41 [efi] Avoid dropping below TPL as at entry to iPXE
062711f1c [intel] Use physical addresses in debug messages
810dc5d6c [realtek] Use physical addresses in debug messages
fc5cf18da [efi] Use casts rather than virt_to_bus() for UNDI buffer addresses
83b8c0e21 [efi] Do not populate media header length in PXE transmit CPB
5439329c9 [intel] Update driver to use DMA API
0e2622090 [efi] Rename efi_blacklist to efi_veto
580d9b00d [realtek] Update driver to use DMA API
38a54bd3b [efi] Provide DMA operations for EFI PCI devices
dda03c884 [dma] Define a DMA API to allow for non-flat device address spaces
be1c87b72 [malloc] Rename malloc_dma() to malloc_phys()
36dde9b0b [efi] Retain a long-lived reference to the EFI_PCI_IO_PROTOCOL instance
f560e7b70 [realtek] Reset NIC when closing interface if using legacy mode
9b25f6e5c [efi] Fall back to assuming identity mapping of MMIO address space
16873703d [efi] Avoid dragging in USB subsystem via efi_usb_path()
e5e2f3fba [efi] Fix memory copy length used in efi_nullify_name2()
5b41b9a80 [efi] Nullify interfaces and leak memory on uninstallation failure
86c6c79fc [efi] Allow block devices to provide their own EFI device paths
a2e44077c [infiniband] Allow SRP device to be described using an EFI device path
bf051a76e [fcp] Allow Fibre Channel device to be described using an EFI device path
e6f9054d1 [iscsi] Allow iSCSI device to be described using an EFI device path
334f0074b [efi] Show block device ACPI table contents only at DBGLVL_EXTRA
04cb17de5 [aoe] Allow AoE device to be described using an EFI device path
2d49ce6f0 [efi] Provide utility function to concatenate device paths
6154b1fb2 [efi] Split efi_netdev_path() out to a separate function
b50ad5f09 [http] Allow HTTP connection to be described using an EFI device path
f2c826179 [efi] Provide efi_uri_path() to construct a URI device path
1e8648f61 [usbblk] Allow USB block device to be described using an EFI device path
87e39a9c9 [efi] Split efi_usb_path() out to a separate function
2091288ea [efi] Define an interface operation to describe using an EFI device path
2bf0fd39c [efi] Split device path functions out to efi_path.c
bcf858c56 [efi] Provide EFI_INTF_OP for EFI-only interface operations
c504c1d69 [interface] Allow for the definition of an unused interface operation
49fd66a8c [build] Provide a testable platform macro alongside -DPLATFORM
6ccd5239b [ipv6] Reduce time spent waiting for router discovery
0c25daad3 [efi] Enable NET_PROTO_IPV6 by default
388d65708 [lacp] Ignore (and do not echo) trailing padding on received packets
3d4378991 [lacp] Detect and ignore erroneously looped back LACP packets
02748d0a5 [efi] Defer local download process until file has been opened
6d680bdec [usbblk] Add support for USB mass storage devices
88288407a [usb] Move usbio driver to end of USB driver list
e30c26d01 [usb] Allow endpoints to be refilled to a specified upper limit
ebf016608 [usb] Allow device halt to be cleared independently of host controller
c70b3e04e [efi] Always enable recursion when calling ConnectController()
fbb5989fd [efi] Connect controllers after loading an EFI driver
eede697ec [ncm] Treat a zero divisor as indicating no alignment requirements
022014171 [efi] Fix reporting of USB supported languages array
02280dc64 [efi] Avoid integer underflow on malformed USB string descriptors
7c6fdf57e [usb] Avoid integer underflow on malformed string descriptors
7151fa3ff [efi] Allow DEBUG=efi_wrap to be used independently of a loaded image
8344803c9 [efi] Disconnect controllers before uninstalling EFI_USB_IO_PROTOCOL
8eb19a178 [usb] Show debug message on device removal
627b0ba2a [efi] Report any USB errors as EFI_USB_ERR_SYSTEM
fbb776f2f [efi] Leave USB endpoint descriptors in existence until device is removed
f42ba772c [usb] Reset control endpoints immediately after failure
27e886c67 [efi] Use address offset as reported by EFI_PCI_ROOT_BRIDGE_IO_PROTOCOL
eecb75ba4 [pci] Update drivers to use pci_ioremap()
371af4eef [pci] Define pci_ioremap() for mapping PCI bus addresses
ccfffc797 [efi] Provide a single implementation of efipci_root_close()
fe6993419 [efi] Show memory map returned by wrapped calls to GetMemoryMap
e08ad61bf [efi] Add debug wrappers for all boot services functions of interest
4bd064de2 [build] Fix building on older versions of gcc
ef2c844d0 [efi] Attempt NII initialisation both with and without cable detection
c63e61df7 [efi] Use device path to locate filesystem from which we were loaded
fd47fa8fe [efi] Match EDK2 numbering for USB ports
70b1a641c [comboot] Fix stack pointer retrieval after COM32 binary returns
b76052335 [efi] Check the status code from AllocatePool()
a08ee6e72 [cmdline] Add "--timeout" parameter to "ifconf" command
145311c62 [intelx] Added PCI_ROM entry for Intel x553/x557-AT and x553 (SFP+) NICs
afaf4272b [intel] Set INTEL_NO_PHY_RST on i218v
c4d1ae0fc [intel] Add INTEL_NO_PHY_RST for I218LM
8bc85ec6f [deflate] Fix typo in comment describing length codes
8d243e65c [build] Fix a GNUism that FreeBSD's sed(1) cannot deal with
ee2dc525b [wpa] Fix erroneous debug message in wpa_derive_ptk
0de5e6014 [libc] Fix memcmp() to return proper values
6ec33b8d6 [pcbios] Take alignment into account when checking for available space
45a0ca6de [pcbios] Fix "out of memory" detection when expanding bottom area
cede0c5ba [libgcc] Change __divmoddi4 from int64 [unknown] to int64_t
4277942ac [build] Fix default target in sdsk image
366206517 [dns] Use all configured DNS servers
a95a2eafc [xfer] Remove address family from definition of a socket opener
78ca890c3 [sfc] Add PCI ID for Solarflare SFC9120 and Solarflare SFC9140
1832f8a9b [efi] Claim SNP devices early in efi_download_start()
b6eecb182 [efi] Ensure NUL byte is at lowest address within stack cookie
fcdd9c098 [efi] Distribute available entropy within stack cookie
f7ddda435 [libc] Add bit-rotation functions for unsigned long values
98d49e460 [efi] Avoid setting direction flag on EFI platforms
2f032c84a [libc] Provide an unoptimised generic_memcpy_reverse()
d2fb317fe [crypto] Avoid temporarily setting direction flag in bigint_is_geq()
586b72373 [usb] Leave port enabled after a failed device registration
f727ed8a1 [axge] Reapply USB device configuration when opening network device
0f5d23433 [xhci] Increase link state settling delay to 100ms
e87760183 [usb] Avoid unnecessary calls to usb_hub_set_drvdata()
18d4be8aa [xhci] Set link state to RxDetect after disabling USB3 root hub port
761ed4365 [usb] Do not attempt to disable USB3 hub ports
8ff5babb4 [usb] Add missing usb_recycle() for completed hub interrupt transfers
5d6fb7282 [usb] Clear device endpoint halt before resetting host endpoint
d5874c9f2 [axge] Handle non-gigabit link speeds
2ae5d4338 [efi] Raise TPL during driver entry point
a87537d44 [efi] Detect and disable seriously broken EFI_RNG_PROTOCOL implementations
decee20ec [build] Disable position-independent code for ARM64 EFI builds
8a1d66c7a [golan] Add explicit type casts for nodnic_queue_pair_type
28cf9806d [intel] Avoid spurious compiler warning on GCC 10
f982a7129 [build] Be explicit about -fcommon compiler directive
3f637d746 [ocsp] Accept SHA1 certID responses even if SHA1 is not enabled
a61b27b97 [efi] Enable stack protection where possible
8830f2f35 [parseopt] Treat empty integer strings in user input as invalid
200029701 [util] Treat empty integer strings as invalid
770a7bd43 [snp] Retry initialisation if link is reported as down
7f2006a9a [crypto] Disable MD5 as an OID-identifiable algorithm by default
bb74f0051 [crypto] Ensure that test code drags in required ASN.1 object identifiers
bd7a5e4b9 [crypto] Allow algorithms to be included without being OID-identifiable
dc785b0fb [tls] Default to supporting only TLSv1.1 or above
2dac11eb1 [tls] Allow a minimum TLS protocol version to be specified
9ee70fb95 [efi] Attempt to connect our driver directly if ConnectController fails
6a6def775 [uri] Avoid appearing to access final byte of a potentially empty string
ac28bbb7e [efi] Work around UEFI specification bug in LoadImage for SAN boot
18d2162f6 [efi] Work around UEFI specification bug in LoadImage
d68befef1 [png] Fix potential integer overflow
ebff21a51 [bnxt] Add driver support for Broadcom NetXtreme-E Adapters
bdf0e029a [efi] Disambiguate errors returned by ConnectController
efc1ae5ab [int13con] Create log partition only when CONSOLE_INT13 is enabled
49319f1bc [bios] Define macros for constructing partition table entries
e3ca21107 [iscsi] Eliminate variable-length stack allocation in URI parsing
e2e29e7ae [iscsi] Eliminate variable-length stack allocations in CHAP handlers
446e8f14e [settings] Eliminate variable-length stack allocation
0a7432191 [slam] Allow for the possibility of IPv6 multicast addresses
c5306bcfa [slam] Eliminate variable-length stack allocation
6248ac396 [infiniband] Eliminate variable-length stack allocation
c625681ca [tftp] Eliminate unnecessary variable-length stack allocation
18dc73d27 [travis] Ensure that most recent tag is always available
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping fuse-overlayfs to version v1.16-17-g51108ae, which comprises the following commits:
be604bb man: regenerate
a030601 man: uniformly apply bold attributes
9da0832 man: restore hard word wrapping
da57ec7 man: reformat additions from e58fb12
a1ef9a0 man: rephrase description and other parts
93b3f7e man: refactor fuse-overlayfs.1.md
fe0525a Plugin test
e58fb12 Manpage updates for xino and ino32_t
1f60815 st_ino needs to be unique for all inodes on a device
b2e4dc1 Minor cleanups
eb988de Dockerfile: use ubuntu:<LTS>-<yyyyMMdd> for reproducibility
f3db78e configure.ac: new development release
9ad6545 NEWS: tag 1.16
0f7e9bb Containerfile.cross: update deps
4266f68 main: fix incorrect directory entries due to unstable iteration order
0ea1677 configure.ac: prepare new release cycle
c5f3ef1 NEWS: tag 1.15
6a1040f main: lookup upperdir only for created directories
d5b2cec main: fix layer lookup in make_ovl_node
b88a093 main: use hash_remove instead of hash_delete
ce8d185 lib: update hash module from gnulib
27cabd5 main: Allow escaped colons in directory paths
b31d82f main: use parsed upper layer directory
02a3582 refactor: Remove unnecessary upperdir realpath
5e7f7d7 github: update checkout action
4761dd0 github: update uraimo action
fc6a2b9 github: update upload-artifact action
e1aae5a github: enable unprivileged user namespaces
efb6149 Update AC_INIT to 1.15-dev
6bbd62b main: use extended override xattr
8d33894 github: update run-on-arch-action
cf8269b github: update ubuntu version
af77bb6 tests: bump fedora version
e107b0b Remove unsupported option "lazytime"
33cb788 NEWS: tag 1.14
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Bump the lua max-version check from 5.5 to 5.6 in the pkg-config
patch to allow lua 5.5.0 from OE-core.
Add -Wno-error=discarded-qualifiers to CFLAGS to work around gcc 15
being stricter about const qualifiers in strchr return values. The
upstream code uses -Werror which makes this fatal.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
