1. 23 7月, 2012 1 次提交
    • O
      Desert the FSF address in copyright · f9ce7dad
      Osier Yang 提交于
      Per the FSF address could be changed from time to time, and GNU
      recommends the following now: (http://www.gnu.org/licenses/gpl-howto.html)
      
        You should have received a copy of the GNU General Public License
        along with Foobar.  If not, see <http://www.gnu.org/licenses/>.
      
      This patch removes the explicit FSF address, and uses above instead
      (of course, with inserting 'Lesser' before 'General').
      
      Except a bunch of files for security driver, all others are changed
      automatically, the copyright for securify files are not complete,
      that's why to do it manually:
      
        src/security/security_selinux.h
        src/security/security_driver.h
        src/security/security_selinux.c
        src/security/security_apparmor.h
        src/security/security_apparmor.c
        src/security/security_driver.c
      f9ce7dad
  2. 22 7月, 2012 3 次提交
  3. 21 7月, 2012 13 次提交
    • E
      tests: reduce length of nodeinfodata test names · df80282d
      Eric Blake 提交于
      Commit ddd6bef4 switched to the ustar format to fix an issue where
      'make dist' fails to create a tarball because we have files with
      relative names longer than 100 bytes by the time you include a
      'libvirt-0.9.13' prefix.  Unfortunately, even with ustar format,
      the use of 'tar -ch' tries to convert symlinks to hard links,
      also with a name too long (omitting the -h works, but automake
      automatically passes -h); such symlinks were added in commit
      6dcf98c8, which resulted in 'make dist' breaking again.  The
      solution is to rename the offending symlinks to something shorter,
      by shortening the entire nodeinfodata naming scheme.
      
      * tests/nodeinfotest.c (mymain): Shorten test names.
      (linuxTestNodeInfo): Accommodate new names.
      * tests/nodeinfodata/*: Rename files accordingly.
      df80282d
    • E
      tests: avoid seclabeltest crash · a22a36e8
      Eric Blake 提交于
      Commit a56c3470 introduced a use of random numbers into seclabel
      handling, but failed to initialize the random number generator
      in the testsuite.  Also, fail with usual status, not 255.
      
      * tests/seclabeltest.c (main): Initialize randomness.
      a22a36e8
    • G
      openvz: Implement domainGetHostname · be7e61a6
      Guido Günther 提交于
      be7e61a6
    • G
      openvz: Add openvzVEGetStringParam · 4e846804
      Guido Günther 提交于
      to retrieve a VEs config parameters as a single string. This will be
      used by the upcoming domainGetHostname implementation.
      4e846804
    • G
      remote: Provide RPC call for domainGetHostname · 6869b597
      Guido Günther 提交于
      6869b597
    • G
      virsh: Add domhostname · 0429e5f0
      Guido Günther 提交于
      to query the guest's hostname.
      0429e5f0
    • G
      Add virDomainGetHostname · a91067fa
      Guido Günther 提交于
      to query a guests's hostname. Containers like LXC and OpenVZ allow to
      set a hostname different from the hosts name and QEMU's guest agent
      could provide similar functionality.
      a91067fa
    • D
      Report 'errno' in int1 field of virErrorPtr · 2ef6f69a
      Daniel P. Berrange 提交于
      When reporting a system error (VIR_ERR_SYSTEM_ERROR) via
      virReportSystemError, we should copy the errno value into
      the 'int1' field of the virErrorPtr struct. This allows
      callers to detect certain errno conditions & discard the
      error
      
      * src/util/virterror.c: Place errno value in int1 field
      2ef6f69a
    • D
      Only enforce check for YAJL when starting a VM · 33998759
      Daniel P. Berrange 提交于
      The previous check for YAJL would have many undesirable
      consequences, the most important being that it caused the
      capabilities XML to lose all <guest> elements. There is
      no user visible feedback as to what is wrong in this respect,
      merely a syslog message. The empty capabilities causes
      libvirtd to then throw away all guest XML configs that are
      stored.
      
      This changes the code so that the check for YAJL is only
      performed at the time we attempt to spawn a QEMU process
      
      error: Failed to start domain vm-vnc
      error: unsupported configuration: this qemu binary requires libvirt to be compiled with yajl
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      33998759
    • D
      Use a hash table for storing MCS labels · a56c3470
      Daniel P. Berrange 提交于
      Instead of using an O(n) efficiency linked list for storing
      MCS labels, use a hash table. Instead of having the list
      be global, put it in the SELinux driver private data struct
      to ensure uniqueness across different instances of the driver.
      This also ensures thread safety when multiple hypervisor
      drivers are used in the same libvirtd process
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      a56c3470
    • D
      Fix error handling when adding MCS labels · 2e668a61
      Daniel P. Berrange 提交于
      When adding MCS labels, OOM was not being handled correctly.
      In addition when reserving an existing label, no check was
      made to see if it was already reserved
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      2e668a61
    • D
      Use standard naming prefix for SELinux driver function names · 12b187fb
      Daniel P. Berrange 提交于
      The function names in the SELinux driver all start with
      SELinux or 'mcs' as a prefix. Sanitize this so that they
      all use 'virSecuritySELinux' as the prefix
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      12b187fb
    • D
      Disable NWFilter driver completely when unprivileged · f8ab364c
      Daniel P. Berrange 提交于
      Running libvirtd unprivileged results in a warning message from
      the NWFilter driver
      
        virNWFilterSnoopLeaseFileRefresh:1882 : open("/var/run/libvirt/network/nwfilter.ltmp"): No such file or directory
      
      Since it requires privileged network access, this driver should
      not even run when unprivileged.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      f8ab364c
  4. 20 7月, 2012 22 次提交
  5. 19 7月, 2012 1 次提交