From nobody Sat May 4 22:32:04 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of redhat.com designates 216.205.24.124 as permitted sender) client-ip=216.205.24.124; envelope-from=libvir-list-bounces@redhat.com; helo=us-smtp-delivery-124.mimecast.com; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 216.205.24.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass(p=none dis=none) header.from=redhat.com ARC-Seal: i=1; a=rsa-sha256; t=1627390150; cv=none; d=zohomail.com; s=zohoarc; b=Zmu5Ly87GAKJTIz2eIILMBY6kVwBBP+shgRrMhtgISQCb5i2bF7EiTnWuEmYHhBacf1l0u9FsTFzoSa/MKYkyA7h6Cv7ARxGcZPrJpT06PDMFDatXPNmmcTKepnjTx/0qS71TKv0Enr9spRW7ruTqRTGuJY37utGDzrOp1yT/cI= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1627390150; h=Content-Type:Content-Transfer-Encoding:Date:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:To; bh=E2l5oWBz4HCMrCmA88onOXV6f76P1G9gruwFFlvd2KA=; b=iReu3Igz99DnL2widjNhF/5OG3JZrI/rCsyfRqX7SOYSFXrQUrWBU2t6h0gCcRqIy9m1Dwz2VPtFdUg0m/K5u1yd/KYs0dI/Q57QZ4SOjLKjSbuXvj9bSi6AONvsT9n+Ua0BdLFEWCKdN2fGJCNmGcgs7fFLC0+3hvKvL63laV0= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 216.205.24.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass header.from= (p=none dis=none) Return-Path: Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [216.205.24.124]) by mx.zohomail.com with SMTPS id 1627390150287549.7978392527571; Tue, 27 Jul 2021 05:49:10 -0700 (PDT) Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-497-mdOTmgTHOwazFVfpSrLhLQ-1; Tue, 27 Jul 2021 08:49:07 -0400 Received: from smtp.corp.redhat.com (int-mx02.intmail.prod.int.phx2.redhat.com [10.5.11.12]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id F33B48799EC; Tue, 27 Jul 2021 12:49:01 +0000 (UTC) Received: from colo-mx.corp.redhat.com (colo-mx02.intmail.prod.int.phx2.redhat.com [10.5.11.21]) by smtp.corp.redhat.com (Postfix) with ESMTPS id CB21060C9F; Tue, 27 Jul 2021 12:49:01 +0000 (UTC) Received: from lists01.pubmisc.prod.ext.phx2.redhat.com (lists01.pubmisc.prod.ext.phx2.redhat.com [10.5.19.33]) by colo-mx.corp.redhat.com (Postfix) with ESMTP id 910E44A7CA; Tue, 27 Jul 2021 12:49:01 +0000 (UTC) Received: from smtp.corp.redhat.com (int-mx03.intmail.prod.int.phx2.redhat.com [10.5.11.13]) by lists01.pubmisc.prod.ext.phx2.redhat.com (8.13.8/8.13.8) with ESMTP id 16RCmqC5021855 for ; Tue, 27 Jul 2021 08:48:52 -0400 Received: by smtp.corp.redhat.com (Postfix) id 6689960854; Tue, 27 Jul 2021 12:48:52 +0000 (UTC) Received: from speedmetal.lan (unknown [10.40.208.38]) by smtp.corp.redhat.com (Postfix) with ESMTP id C181B226E7 for ; Tue, 27 Jul 2021 12:48:51 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1627390149; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=E2l5oWBz4HCMrCmA88onOXV6f76P1G9gruwFFlvd2KA=; b=Z+bfRzNe4elWTBq4dQJTn0khk0ng7gJBLJMBJXsUYMiegRCU7lKLYyhO9S3gx8AW5DfTFh wdgAtKLIjvFElqVUbhEuof5zZ5qgY/Zjw10QxspVxjp1sX0CJpcaHdvljRxv05HDg6qzh9 Uxzngq88Xreh/NrS2TmazIR+QrJSUHE= X-MC-Unique: mdOTmgTHOwazFVfpSrLhLQ-1 From: Peter Krempa To: libvir-list@redhat.com Subject: [PATCH 1/3] NEWS: Use 'code' style for constant names in entry for recent migration fix Date: Tue, 27 Jul 2021 14:48:40 +0200 Message-Id: <75ddfaab83bfdf5e4390c657d0ba7c8c1e15e64c.1627390098.git.pkrempa@redhat.com> In-Reply-To: References: MIME-Version: 1.0 X-Scanned-By: MIMEDefang 2.79 on 10.5.11.13 X-loop: libvir-list@redhat.com X-BeenThere: libvir-list@redhat.com X-Mailman-Version: 2.1.12 Precedence: junk List-Id: Development discussions about the libvirt library & tools List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: libvir-list-bounces@redhat.com Errors-To: libvir-list-bounces@redhat.com X-Scanned-By: MIMEDefang 2.79 on 10.5.11.12 Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=libvir-list-bounces@redhat.com X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Transfer-Encoding: quoted-printable X-ZohoMail-DKIM: pass (identity @redhat.com) X-ZM-MESSAGEID: 1627390150725100001 Content-Type: text/plain; charset="utf-8" Signed-off-by: Peter Krempa Reviewed-by: Erik Skultety --- NEWS.rst | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/NEWS.rst b/NEWS.rst index a7a7022f8d..37f3c48d88 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -23,12 +23,12 @@ v7.6.0 (unreleased) * **Bug fixes** - * qemu: Fix migration with VIR_MIGRATE_NON_SHARED_INC + * qemu: Fix migration with ``VIR_MIGRATE_NON_SHARED_INC`` - libvirt 7.3.0 introduced a bug where VIR_MIGRATE_NON_SHARED_INC would = not - actually migrate the contents of the disk due to broken logic and at t= he - same time could trigger migration of storage when VIR_MIGRATE_TUNNELLE= D is - requested. This release fixes the bug. + libvirt 7.3.0 introduced a bug where ``VIR_MIGRATE_NON_SHARED_INC`` wo= uld + not actually migrate the contents of the disk due to broken logic and = at + the same time could trigger migration of storage when + ``VIR_MIGRATE_TUNNELLED`` is requested. This release fixes the bug. v7.5.0 (2021-07-01) --=20 2.31.1 From nobody Sat May 4 22:32:04 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) client-ip=170.10.133.124; envelope-from=libvir-list-bounces@redhat.com; helo=us-smtp-delivery-124.mimecast.com; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass(p=none dis=none) header.from=redhat.com ARC-Seal: i=1; a=rsa-sha256; t=1627390152; cv=none; d=zohomail.com; s=zohoarc; b=miE35+l0q8PIVpVHtbGZIbhsCFdnbo95SsTdSzyK3Hj1fY0uxY2WErjtjvK2GtXfFCOI+ejcM4FMMX7T4z+L/63PrT7WzbMJ+NrOgBQ5xSdCsssYoFjrTLp1gTCh+kyrBRE3OSyedCaMcVmkmEYj02f0dqkS8UZJv7MkK1MvgZE= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1627390152; h=Content-Type:Content-Transfer-Encoding:Date:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:To; bh=VjiWeqzRzVyiv20LsepcWuwjuB/QdlHVM183nSsJg3g=; b=IRK3y4s+/QFYKfvPKmJPCb131hJU3pRLLJirToVi5AEDBdwNsB1V+RwyPbvVZtH3livw+RzvnuwIzJ1vuLQ42uk+Ovxkxn0YsZRREdQEe1AbCFNwl8j02DTH8fb0hx5tt4WJ1UABKF3R4f1XByrRyM3eYK67QmAue863jj2EpQ4= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass header.from= (p=none dis=none) Return-Path: Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by mx.zohomail.com with SMTPS id 16273901528241013.2115857135045; Tue, 27 Jul 2021 05:49:12 -0700 (PDT) Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-410-ujHQtQBoNo-MtbcfC4pHtQ-1; Tue, 27 Jul 2021 08:49:10 -0400 Received: from smtp.corp.redhat.com (int-mx05.intmail.prod.int.phx2.redhat.com [10.5.11.15]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id E65C18799F0; Tue, 27 Jul 2021 12:49:04 +0000 (UTC) Received: from colo-mx.corp.redhat.com (colo-mx02.intmail.prod.int.phx2.redhat.com [10.5.11.21]) by smtp.corp.redhat.com (Postfix) with ESMTPS id BDE366A901; Tue, 27 Jul 2021 12:49:04 +0000 (UTC) Received: from lists01.pubmisc.prod.ext.phx2.redhat.com (lists01.pubmisc.prod.ext.phx2.redhat.com [10.5.19.33]) by colo-mx.corp.redhat.com (Postfix) with ESMTP id 6138B4A7CD; Tue, 27 Jul 2021 12:49:04 +0000 (UTC) Received: from smtp.corp.redhat.com (int-mx03.intmail.prod.int.phx2.redhat.com [10.5.11.13]) by lists01.pubmisc.prod.ext.phx2.redhat.com (8.13.8/8.13.8) with ESMTP id 16RCmrrr021865 for ; Tue, 27 Jul 2021 08:48:53 -0400 Received: by smtp.corp.redhat.com (Postfix) id 914D11B46C; Tue, 27 Jul 2021 12:48:53 +0000 (UTC) Received: from speedmetal.lan (unknown [10.40.208.38]) by smtp.corp.redhat.com (Postfix) with ESMTP id D635860854 for ; Tue, 27 Jul 2021 12:48:52 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1627390151; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=VjiWeqzRzVyiv20LsepcWuwjuB/QdlHVM183nSsJg3g=; b=gxNrSbCUPCxFSOEHv5ey64NM2C6rngjkVPy3E7NbwJqPNB96hHvChmJznJEq8WxrBjzGvU rU2TBMamQMnTv4ka9gEoKEuiflgRC821Wehml9l/r9/owpunEWmDshfq122xsG0U18nBui 2ZCA5pBFsQwrkVv2mGHR8KPFNzuR4pw= X-MC-Unique: ujHQtQBoNo-MtbcfC4pHtQ-1 From: Peter Krempa To: libvir-list@redhat.com Subject: [PATCH 2/3] NEWS: Mention security bug in storage pool object lookup (CVE-2021-3667) Date: Tue, 27 Jul 2021 14:48:41 +0200 Message-Id: In-Reply-To: References: MIME-Version: 1.0 X-Scanned-By: MIMEDefang 2.79 on 10.5.11.13 X-loop: libvir-list@redhat.com X-BeenThere: libvir-list@redhat.com X-Mailman-Version: 2.1.12 Precedence: junk List-Id: Development discussions about the libvirt library & tools List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: libvir-list-bounces@redhat.com Errors-To: libvir-list-bounces@redhat.com X-Scanned-By: MIMEDefang 2.79 on 10.5.11.15 Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=libvir-list-bounces@redhat.com X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Transfer-Encoding: quoted-printable X-ZohoMail-DKIM: pass (identity @redhat.com) X-ZM-MESSAGEID: 1627390153689100001 Content-Type: text/plain; charset="utf-8" Signed-off-by: Peter Krempa Reviewed-by: Erik Skultety --- NEWS.rst | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/NEWS.rst b/NEWS.rst index 37f3c48d88..d791b34efb 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -11,6 +11,15 @@ For a more fine-grained view, use the `git log`_. v7.6.0 (unreleased) =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D +* **Security** + + * storage: Unlock pool objects on ACL check failures in ``storagePoolLoo= kupByTargetPath`` (CVE-2021-3667) + + A logic bug in ``storagePoolLookupByTargetPath`` where the storage pool + object was left locked after a failure of the ACL check could potentia= lly + deprive legitimate users access to a storage pool object by users who = don't + have access. + * **New features** * qemu: Incremental backup support via ``virDomainBackupBegin`` --=20 2.31.1 From nobody Sat May 4 22:32:04 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) client-ip=170.10.133.124; envelope-from=libvir-list-bounces@redhat.com; helo=us-smtp-delivery-124.mimecast.com; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass(p=none dis=none) header.from=redhat.com ARC-Seal: i=1; a=rsa-sha256; t=1627390155; cv=none; d=zohomail.com; s=zohoarc; b=jBzxYUINGPPyyq2kl+hkCQzZlHXwuyA98XxZVRgkFCYfIWvbS7xYQljHDNmFAOLYodvYAMS2HUEj/armEsVgnA1gSw8scwGuSTx1pP0rbxFqnDmuGXIZm5nzMpTgRtxn/2cPpw4Jpuyh9vNiZQVtGrMuJuAUhLcNitaAMMHqijU= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1627390155; h=Content-Type:Content-Transfer-Encoding:Date:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:To; bh=/yt5FDePTAirStXE22cWBLCbVY/e0uWlwpzRa8o18mA=; b=fZOYia2w1zlrmTj8RGNvng8NR11z94MwizClwD6LVDniX3BMTBMtsJjHvORh1ZgmIz6rGTaTKa6SuJSei/dWs1/5O/c9wgNgCrD5e8LJjexv/3f+02FwTPhW7xFcPVEJgwtq/sYfRoCCbiObpwMvZkk7mcJlvkEDA1cLcovvi0o= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass header.from= (p=none dis=none) Return-Path: Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by mx.zohomail.com with SMTPS id 1627390155600793.6486502263848; Tue, 27 Jul 2021 05:49:15 -0700 (PDT) Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-94-ISwTdwRbOquKpPKgpl2_AQ-1; Tue, 27 Jul 2021 08:49:13 -0400 Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id B9B0F1084F67; Tue, 27 Jul 2021 12:49:07 +0000 (UTC) Received: from colo-mx.corp.redhat.com (colo-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.20]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 9C9EF6E6E2; Tue, 27 Jul 2021 12:49:07 +0000 (UTC) Received: from lists01.pubmisc.prod.ext.phx2.redhat.com (lists01.pubmisc.prod.ext.phx2.redhat.com [10.5.19.33]) by colo-mx.corp.redhat.com (Postfix) with ESMTP id 6A252181A2A6; Tue, 27 Jul 2021 12:49:07 +0000 (UTC) Received: from smtp.corp.redhat.com (int-mx03.intmail.prod.int.phx2.redhat.com [10.5.11.13]) by lists01.pubmisc.prod.ext.phx2.redhat.com (8.13.8/8.13.8) with ESMTP id 16RCmsRx021876 for ; Tue, 27 Jul 2021 08:48:54 -0400 Received: by smtp.corp.redhat.com (Postfix) id 9D40D1B46C; Tue, 27 Jul 2021 12:48:54 +0000 (UTC) Received: from speedmetal.lan (unknown [10.40.208.38]) by smtp.corp.redhat.com (Postfix) with ESMTP id F2E2E60854 for ; Tue, 27 Jul 2021 12:48:53 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1627390154; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=/yt5FDePTAirStXE22cWBLCbVY/e0uWlwpzRa8o18mA=; b=iLzhYe2bz7hy9xbpTf5Neh+7IHq0cHJgjmuoWjffU/MyGryCeJxPq+ADpIiYXfLFCXSpSU 3jbELt+6UTOOleEfg+DomojPJiArytyJJvTZUs8z0c9UtMkFHcE2/NmAXAsqjaENN0IxEd M5jDBsXLaLpRc8gI+92CK6Ku42VzWfw= X-MC-Unique: ISwTdwRbOquKpPKgpl2_AQ-1 From: Peter Krempa To: libvir-list@redhat.com Subject: [PATCH 3/3] NEWS: Mention change to VIR_DOMAIN_EVENT_ID_BLOCK_THRESHOLD Date: Tue, 27 Jul 2021 14:48:42 +0200 Message-Id: In-Reply-To: References: MIME-Version: 1.0 X-Scanned-By: MIMEDefang 2.79 on 10.5.11.13 X-loop: libvir-list@redhat.com X-BeenThere: libvir-list@redhat.com X-Mailman-Version: 2.1.12 Precedence: junk List-Id: Development discussions about the libvirt library & tools List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: libvir-list-bounces@redhat.com Errors-To: libvir-list-bounces@redhat.com X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11 Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=libvir-list-bounces@redhat.com X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Transfer-Encoding: quoted-printable X-ZohoMail-DKIM: pass (identity @redhat.com) X-ZM-MESSAGEID: 1627390156625100005 Content-Type: text/plain; charset="utf-8" Signed-off-by: Peter Krempa Reviewed-by: Erik Skultety --- NEWS.rst | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/NEWS.rst b/NEWS.rst index d791b34efb..618f478b81 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -39,6 +39,13 @@ v7.6.0 (unreleased) the same time could trigger migration of storage when ``VIR_MIGRATE_TUNNELLED`` is requested. This release fixes the bug. + * qemu: Don't emit ``VIR_DOMAIN_EVENT_ID_BLOCK_THRESHOLD`` twice when re= gistered with index + + When registering the threshold event with the index notation (e.g. + ``vda[3]``) libvirt would emit the event also for ``vda`` if the image= is + in the top layer. The intention was to emit two events only when the + original registration was done without the index. + v7.5.0 (2021-07-01) =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D --=20 2.31.1