summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Version 1.14.9.1.14.9Richard W.M. Jones2012-01-1020-745/+748
|
* daemon: debug segv correct use of dereferencing NULL.Richard W.M. Jones2012-01-101-1/+7
| | | | (cherry picked from commit 01e717b3c141c509a7200b0a6c560f75815c08f2)
* launch: move the filename checking to a wrapperWanlong Gao2012-01-101-6/+12
| | | | | | | Move the filename's comma character checking to a wrapper. Signed-off-by: Wanlong Gao <gaowanlong@cn.fujitsu.com> (cherry picked from commit e0c309379556ad50d43a08b4aa4ec0146d2b60d8)
* generator: Create a separate type for optional argumentsMatthew Booth2012-01-1017-197/+177
| | | | | | | | | | | | | | | | | | | | Previously, optional arguments had the same type as regular arguments, but were constrained by various runtime tests to be only Bool, Int, Int64 or String. This change makes the type of optional arguments stronger by giving them their own type. A convenience function, optargs_to_args is defined to convert optargs in the few places where they are genuinely treated identically to mandatory arguments. It also allows for future changes to optional arguments which do not affect mandatory arguments. RWMJ: - removed redundant parens - readded the check for > 64 optargs, but changed it to > 63 - changed the new function to args_of_optargs (cherry picked from commit 0a7b734d2f54d4e98882532da9887feb66c9824a)
* generator: Rename java_structs to camel_structs to better reflect their purposeMatthew Booth2012-01-105-19/+17
| | | | | | This map was originally included just for the java bindings, but is generally useful to any binding which uses camel case by requirement or convention. (cherry picked from commit e24af214fe8f9dccac39ed520b57ce7d458f9fd1)
* launch: add a goto label when add_drive errorWanlong Gao2012-01-101-18/+11
| | | | | | | | Code cleanup. Add a goto label to simplify the code. Signed-off-by: Wanlong Gao <gaowanlong@cn.fujitsu.com> (cherry picked from commit 6f6485ec34f29401bbab65dd4275a3b564ed11b3)
* debian: Add build-dep erlang-dev.Richard W.M. Jones2012-01-101-0/+2
| | | | (cherry picked from commit 49b894599bf82790c83e2949626b7a8958732b6a)
* Update to latest gnulib.Richard W.M. Jones2012-01-101-0/+0
| | | | (cherry picked from commit c51caebea20b499ca0f9e652da0d964689969d79)
* Tempora mutantur, nos et mutamur in illis.Matthew Booth2012-01-101-1/+1
| | | | (cherry picked from commit ebdda911b5dc4e2695413578ed2e0f0b387c0d89)
* build: Fix automake warningsMatthew Booth2012-01-103-8/+12
| | | | (cherry picked from commit c655415dc051b84d6178399e5f7cb76ff7af06c0)
* fish: fix the Ctrl-\ causes guestfish to abort bug(RHBZ#596761)Wanlong Gao2012-01-101-0/+1
| | | | | | | Handle SIGQUIT by guestfish, so that it can't be terminated. Signed-off-by: Wanlong Gao <gaowanlong@cn.fujitsu.com> (cherry picked from commit f49a30eba8bb9f352637c3c24138074bbe3f5555)
* AUTHORS: add the email address for each authorsWanlong Gao2012-01-102-25/+25
| | | | | | | | Add the email address for authors. It would be better. Signed-off-by: Wanlong Gao <gaowanlong@cn.fujitsu.com> (cherry picked from commit 10df9d88ab4191c4092f4a88c7343ab3f5f31a70)
* fish: mount can be used instead of mount-options with libguestfs >= 1.14Richard W.M. Jones2012-01-101-1/+1
| | | | (cherry picked from commit 49218ae6b451004c8f7b5549d5876c8568a7c1a6)
* fish: Fix --format parameter in man page.Richard W.M. Jones2012-01-101-1/+1
| | | | (cherry picked from commit 871e1cfe3ae28028eaa4be7d87d7c43f68b4d5ec)
* lib: Try harder to remove temporary directory along error paths (RHBZ#769680).Richard W.M. Jones2012-01-101-1/+11
| | | | (cherry picked from commit 6032da66819b7ccf99001ba636926100f475cb89)
* lib: Add guestfs___remove_tmpdir helper function.Richard W.M. Jones2012-01-105-46/+35
| | | | | | | | This function does 'rm -rf <dir>' for temporary directories, safely working if '<dir>' contains shell meta-characters. Replace existing code for removing directories with this. (cherry picked from commit 690ff694ca6db586c06ec484ea158261c156aa2f)
* mkfs: optimization and code cleanupWanlong Gao2012-01-101-15/+14
| | | | | | | | | | | | v1->v2: fix a typo pointed by Matt Optimizations by reducing the STREQ operations and do some code cleanup. Signed-off-by: Wanlong Gao <gaowanlong@cn.fujitsu.com> RWMJ: Whitespace changes. (cherry picked from commit 2ac869bcc86fbf0dd7e878f10a2b60769a58c962)
* Fixed checks for libpython featuresHilko Bengen2012-01-101-11/+12
| | | | | | The python3.1 package shipped with Debian/squeeze does not have the 'mu' suffix that was assumed before. (cherry picked from commit ad5b5f96da53a6f51424e22e26f2d8a325eec681)
* docs: Arrange directory names in alphabetical order.Richard W.M. Jones2012-01-101-4/+4
| | | | (cherry picked from commit f5a49bf1cae335889da6be53fd1ca302273be78b)
* extra-tests: Add an extra suppression for OCaml 3.11.2 in RHEL 6.Richard W.M. Jones2012-01-101-0/+7
| | | | (cherry picked from commit a0a8de4253ad545d668977dbf54f90118f601192)
* python: Missing () in guestfs-python(1) examples.Richard W.M. Jones2012-01-101-1/+1
| | | | (cherry picked from commit 3c9dfd1e95fae5c31df1fbcb6bdec2982a69a004)
* Version 1.14.8.1.14.8Richard W.M. Jones2011-12-2218-128/+143
|
* Security: Mitigate possible privilege escalation via SG_IO ioctl ↵Richard W.M. Jones2011-12-221-0/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (CVE-2011-4127, RHBZ#757071) CVE-2011-4127 is a serious qemu & kernel privilege escalation bug found by Paolo Bonzini. http://seclists.org/oss-sec/2011/q4/536 An untrusted guest kernel is able to issue special SG_IO ioctls on virtio devices which qemu passes through to the host kernel without filtering or sanitizing. These ioctls allow raw sectors from the underlying host device to be read and written. Significantly, neither qemu nor the host kernel checks that the range of sectors is within the partition / LV assigned to the guest. For example, if the guest is assigned host partition /dev/sda3, it would be able to read or write any part of /dev/sda including other partitions and the boot sector. Exploits through LVs passed to the guest are also possible, with some limitations. File-backed virtual block devices are not vulnerable. Non-virtio block devices are not vulnerable. This patch mitigates the problem by disabling the SG_IO ioctl passthrough in qemu. Thus if libguestfs is examining an untrusted guest and the libguestfs appliance/daemon is compromised (eg. by executing guest commands, or through some other compromise), then the compromised appliance will not be able to issue the above SG_IO ioctls and exploit the host. Note that this is just mitigation for libguestfs. Users will still want to fully update their host kernel, qemu/KVM and libvirt, in order to prevent other (non-libguestfs) routes to compromise. The following versions of libguestfs (will/have) this patch applied. libguestfs >= 1.15.13 libguestfs >= 1.14.8 libguestfs >= 1.12.11 libguestfs >= 1.10.12 libguestfs >= 1.8.16 Earlier versions may be vulnerable unless a downstream packager has applied this patch. Cc: Hilko Bengen <bengen@hilluzination.de> (cherry picked from commit 9a5f784d511a8f00a8386f316eab41fe660430db)
* Version 1.14.7.1.14.7Richard W.M. Jones2011-12-0918-237/+703
|
* fuse: Return EXIT_FAILURE if fuse_main fails.Richard W.M. Jones2011-12-091-1/+1
| | | | | | | | | | | fuse_main can return any non-zero value on error. In particular on certain sorts of error such as unsupported -o options it returns 1 (not -1). Therefore make sure any non-zero return is turned into EXIT_FAILURE. (Thanks Pádraig Brady) (cherry picked from commit ae45cee728039d7724fc73e5ffb2550c8054d268)
* fish: -i option should fail if / is not mountable, but warn about others.Richard W.M. Jones2011-12-091-1/+7
| | | | | | | | | In particular this stops a problem with guestmount where if the -i option half-recognizes the guest OS, it would mount the disk (and fail, giving only warnings), leaving the mountpoint unusable. (Thanks Pádraig Brady) (cherry picked from commit 54e91da925323642e67b8ce4b95899fe4b7a51c4)
* daemon: Fix utimens so it doesn't hang on named pipes (RHBZ#761460).Richard W.M. Jones2011-12-092-21/+29
| | | | | | | | | | | This also adds comprehensive tests for utimens on regular files, directories (RHBZ#761451), named pipes (RHBZ#761460), symbolic links, block and char devices. Note that there is a small change in the (previously undefined) semantics of this call: It now sets the time on a symbolic link itself, not on what the symbolic link points to. (cherry picked from commit 19e2f5aa4fd4ed70b505661d918b5575616ad441)
* daemon: Allow utimens to work for directories (RHBZ#761451).Richard W.M. Jones2011-12-091-1/+1
| | | | | | | You don't need to open the file O_WRONLY in order to call futimens on the file descriptor. Opening it O_WRONLY fails for directories. Therefore open O_RDONLY instead. (cherry picked from commit 31fba8d8033216f8a288e75fe3f575b73b9ef925)
* copy-in/copy-out: Wait for the tar subprocess only (RHBZ#760669).Richard W.M. Jones2011-12-091-26/+35
| | | | (cherry picked from commit 98edfac1ee70bcf15ee7caebc306e11cdbbb0d9a)
* fish: Improve error messages when no OS / multi-boot OS found with ↵Richard W.M. Jones2011-12-091-2/+30
| | | | | | inspection (RHBZ#760775). (cherry picked from commit 7d3848ddc046f79cc1112809bd9970eea8060018)
* let the user explicitly choose ruby and rake programsHilko Bengen2011-12-095-10/+13
| | | | (cherry picked from commit 41a7a68cf33a174ba950aa29951a07c391a16b4d)
* Version 1.14.6.1.14.6Richard W.M. Jones2011-12-0619-75/+37
|
* Fix rpcgen post-processing for out-of-tree buildsHilko Bengen2011-12-062-2/+2
| | | | (cherry picked from commit 43942b08cfbcf91bef29ec532f3d097a8519c982)
* ruby: Use RSTRING_PTR, RSTRING_LEN for compat with Ruby 1.9 (RHBZ#760000).Richard W.M. Jones2011-12-061-2/+11
| | | | (cherry picked from commit 2972987d0257d9c3d26b53f961e802d121b436cd)
* daemon: Use pkg-config to locate Augeas CFLAGS / libraries.Richard W.M. Jones2011-12-063-18/+16
| | | | | | | | | | | | | | | | | | | Augeas 0.10 depends on libxml2, so this is now required in the appliance (in fact, it was already present). However this exposed two bugs: (1) In libguestfs we use a home-brewed recipe for Augeas flags, resulting in this error: /usr/include/augeas.h:24:25: fatal error: libxml/tree.h: No such file or directory (2) Augeas's own augeas.pc didn't include the libxml2 flags, so it was broken. This requires a patch to Augeas 0.10, see: https://www.redhat.com/archives/augeas-devel/2011-December/msg00008.html Change to using pkg-config to detect Augeas. It is still an optional library. (cherry picked from commit 615924abaa968398d6529529fa2f31ae23de825b)
* extra tests: Test that valgrind and libtool are installed.Richard W.M. Jones2011-12-061-0/+12
| | | | (cherry picked from commit b7addee24d211014086c44bcef6a0c799e4fb987)
* build: Add more suppressions for valgrind testsMatthew Booth2011-12-061-1/+34
| | | | (cherry picked from commit 655f8037def7742a608fb272004eec51424ac31d)
* mkfs: enable to make xfs filesystems when the device already has a filesystemWanlong Gao2011-12-061-0/+3
| | | | | | | | | Just add the -f option to mkfs.xfs to make sure we can make a xfs filesystem when the device already has a filesystem on it. Signed-off-by: Wanlong Gao <gaowanlong@cn.fujitsu.com> (cherry picked from commit 1970a14178b5c53569965d35e54efead6c4c4bdc)
* Version 1.14.5.1.14.5Richard W.M. Jones2011-12-0220-608/+664
|
* libguestfs: Added gnulib includes from builddir, as suggested by the Gnulib ↵Hilko Bengen2011-12-023-2/+3
| | | | | | | | | documentation Since some modules (`getopt', for example) may copy files into the build directory, `top_builddir/lib' is needed as well as `top_srcdir/lib'. -- GNU Gnulib manual, section 2.2 Initial import (cherry picked from commit 1a35ca59088e572c11633e85524bb282cb436186)
* ocaml: Fix OCaml dependencies.Richard W.M. Jones2011-12-021-2/+2
| | | | (cherry picked from commit ce331df0f1857bccebaaddfac79677bc9f527197)
* python: Memory leak: Free roots array along handle close path.Richard W.M. Jones2011-12-021-0/+1
| | | | (cherry picked from commit e7e3a32edc29e3448b1d7efb3f6b53c5173c4e9c)
* perl: Memory leak: Free roots array along handle close path.Richard W.M. Jones2011-12-021-0/+1
| | | | (cherry picked from commit 00c9755ee3bea98968acea47bac858db94f7fbe2)
* ruby: Memory leak: Free roots array along handle close path.Richard W.M. Jones2011-12-021-0/+1
| | | | (cherry picked from commit eb7ec6170eca278fb910e18ca1f7ca81c6b507c0)
* extra tests: Add comments about what is not tested here.Richard W.M. Jones2011-12-021-8/+25
| | | | (cherry picked from commit efef3e3c1205e5476044f41fb88385e3ba07468d)
* extra tests: Absolute path for 'run' command.Richard W.M. Jones2011-12-021-1/+1
| | | | (cherry picked from commit 27d00960c93b26c68fa1f4068502c32a6e3b5e94)
* extra tests: Split up and reorder tests more logically.Richard W.M. Jones2011-12-021-9/+15
| | | | (cherry picked from commit cee513112adcf4084d6be9e3b5037b7b54c9f514)
* extra tests: Test virt-sparsify.Richard W.M. Jones2011-12-024-5/+23
| | | | | | | | | This adds the virt-sparsify --debug-gc option which causes virt-sparsify to call Gc.compact before exiting, allowing GC and memory problems to be tested. Add an extratest which runs virt-sparsify under valgrind. (cherry picked from commit 14b1e7b963cd5446ab76a067085b91925dd5d3e3)
* extra tests: Test virt-resize.Richard W.M. Jones2011-12-024-5/+23
| | | | | | | | | This adds the virt-resize --debug-gc option which causes virt-resize to call Gc.compact before exiting, allowing GC and memory problems to be tested. Add an extratest which runs virt-resize under valgrind. (cherry picked from commit 7708d3e04f6ec3985fd74ee1a44a5615d43065e2)
* ocaml: Load test should call Gc.compact to flag memory errors.Richard W.M. Jones2011-12-021-0/+2
| | | | (cherry picked from commit 082a55f76cd61f3590976f6b095552ea65259ced)