1. 31 7月, 2009 5 次提交
    • D
      Disable IPv6 on virtual networks · 65115321
      Daniel P. Berrange 提交于
      If the bridge device is configured to have IPv6 address and
      accept router advertisments, then a malicious guest can send
      out bogus advertisments and hijack/DOS host IPv6 connectivity
      
      * src/network_driver.c: Set accept_ra=0, disable_ipv6=1, autoconf=0
        for IPv6 sysctl on virual network bridge devices
      65115321
    • M
      Fix PCIe FLR detection · a49cf8a5
      Mark McLoughlin 提交于
      PCIe DevCap register is actually 32 bits, not 16 bits. Since FLR is
      bit 28, we clearly are failing to detect FLR support.
      
      Known to fix device reset with some SR-IOV devices.
      
      * src/pci.c: fix pciDetectFunctionLevelReset()
      a49cf8a5
    • M
      Set perms on /var/lib/libvirt/images to 0711 · f4e71577
      Mark McLoughlin 提交于
      Allow qemu user to open images in this dir, but still prevent others
      from listing it.
      
      * libvirt.spec.in: set /var/lib/libvirt/images perms to 0711
      f4e71577
    • D
      Fix problem writing QEMU pidfile · 9a152d48
      Daniel P. Berrange 提交于
      * src/util.c: Don't drop capabilities until after the PID file has
        been written. Kill off child if writing the PID file fails
      * src/qemu_driver.c: Remove bogus trailing '/' in state dir
      9a152d48
    • D
      Allow dnsmasq to provide DNS without DHCP · df3de82c
      Daniel P. Berrange 提交于
      * src/network_driver.c: Always start dnsmasq to allow it to provide
        DNS, even if no DHCP ranges are enabled
      df3de82c
  2. 30 7月, 2009 8 次提交
  3. 29 7月, 2009 19 次提交
  4. 28 7月, 2009 2 次提交
  5. 27 7月, 2009 6 次提交
    • D
      Fix crashes in Xen capabilities code · dd6cd7dd
      Daniel P. Berrange 提交于
      * src/xen_internal.c: Don't free memory now owned by the virCapsPtr
         structure
      * tests/testutilsxen.c: Fix up for change in internal API
      dd6cd7dd
    • D
      Fix typo in xen capabilities code · f055724b
      Daniel P. Berrange 提交于
      f055724b
    • D
      Fill in vCPU <-> pCPU current mapping, and vCPU cpuTime for QEMU · c4a04dc0
      Daniel P. Berrange 提交于
      * src/qemu_driver.c: implement missing features in qemudDomainGetVcpus
        for 'cpu' and 'cpuTime' fields
      c4a04dc0
    • M
      Add support for attaching network/bridge NICs in QEMU driver · 85453c42
      Mark McLoughlin 提交于
      In order to hotplug a network/bridge backed NIC, we need to first create
      the tap file descriptor, add the tap interface to the bridge and then
      pass the file descriptor to the qemu process using the 'getfd' monitor
      command.
      
      Once the tapfd has been accepted, we create the network backend using
      host_net_add, supplying the name assigned to the tapfd. If this fails,
      we need to close the tapfd in qemu using the 'closefd' monitor command.
      
      If the version of qemu does not support the getfd/closefd monitor
      commands we detect "unknown command" in the getfd reply and fail the
      attach operation.
      
      * src/qemu_driver.c: add support for tapfd based hotplug in
        qemudDomainAttachNetDevice()
      85453c42
    • M
      Add SCM_RIGHTS support to QEMU monitor code · 1daaebfa
      Mark McLoughlin 提交于
      Add qemudMonitorCommandWithFd() which allows a file descriptor to be
      sent to qemu over a unix monitor socket using SCM_RIGHTS. See the
      unix(7) and cmsg(3) man pages.
      
      * src/qemu_conf.c: add a scm_fd param to qemudMonitorCommandExtra(),
        add qemudMonitorCommandWithFd(), implement SCM_RIGHTS support in
        qemudMonitorSendUnix()
      1daaebfa
    • M
      Use sendmsg() on QEMU monitor socket · 7d9576ed
      Mark McLoughlin 提交于
      Switch from using write() to using sendmsg() on QEMU's monitor socket
      so that we can add support for SCM_RIGHTS.
      
      * src/qemu_driver.c: add sendmsg() based qemudMonitorSendUnix() and use
        it when the monitor fd is a unix socket
      7d9576ed