summaryrefslogtreecommitdiffstats
path: root/main/xen
Commit message (Collapse)AuthorAgeFilesLines
...
* xen: XSA-34 and XSA-35Roger Pau Monne2013-01-233-1/+59
| | | | | Security fixes for nested virtualization. This only apply to Xen 4.2.x, only edge and 2.5.x Alpine Linux systems are affected.
* xen: XSA-41 remaining patchesRoger Pau Monne2013-01-183-1/+111
| | | | | | | Some patches where not included in the original XSA, this are the remaining ones (so far). To be applied to edge and 2.5
* xen: XSA-41Roger Pau Monne2013-01-172-1/+75
|
* xen: add XSA-33 patchRoger Pau Monne2013-01-142-1/+24
|
* main/xen: disable on eglibcCarlo Landmeter2013-01-051-0/+2
|
* main/xen: add iproute2 to dependsNatanael Copa2012-12-251-2/+2
| | | | ref #1529
* xen: update to 4.2.1Roger Pau Monne2012-12-1813-1130/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Excerpt from release notes: This fixes the following critical vulnerabilities: * CVE-2012-4535 / XSA-20: Timer overflow DoS vulnerability * CVE-2012-4537 / XSA-22: Memory mapping failure DoS vulnerability * CVE-2012-4538 / XSA-23: Unhooking empty PAE entries DoS vulnerability * CVE-2012-4539 / XSA-24: Grant table hypercall infinite loop DoS vulnerability * CVE-2012-4544,CVE-2012-2625 / XSA-25: Xen domain builder Out-of-memory due to malicious kernel/ramdisk * CVE-2012-5510 / XSA-26: Grant table version switch list corruption vulnerability * CVE-2012-5511 / XSA-27: several HVM operations do not validate the range of their inputs * CVE-2012-5513 / XSA-29: XENMEM_exchange may overwrite hypervisor memory * CVE-2012-5514 / XSA-30: Broken error handling in guest_physmap_mark_populate_on_demand() * CVE-2012-5515 / XSA-31: Several memory hypercall operations allow invalid extent order values * CVE-2012-5525 / XSA-32: several hypercalls do not validate input GFNs We recommend all users of the 4.2.0 code base to update to this point release. Among many bug fixes and improvements (around 100 since Xen 4.2.0): * A fix for a long standing time management issue * Bug fixes for S3 (suspend to RAM) handling * Bug fixes for other low level system state handling * Bug fixes and improvements to the libxl tool stack * Bug fixes to nested virtualization
* xen: security fixesRoger Pau Monne2012-12-047-1/+431
| | | | | | | | | | | This covers: XSA-26 (CVE-2012-5510) XSA-27 (CVE-2012-5511) XSA-29 (CVE-2012-5513) XSA-30 (CVE-2012-5514) XSA-31 (CVE-2012-5515) XSA-32 (CVE-2012-5525)
* xen: add screen as a run time dependencyRoger Pau Monne2012-12-041-2/+2
| | | | screen is needed by xendomains init script. Also bump pkgrel.
* xen: fix xendomains init scriptRoger Pau Monne2012-12-042-4/+4
|
* xen: prevent xenstore from being restaredRoger Pau Monne2012-11-212-6/+7
| | | | | | xenstore should not be restarted. If it is restarted watches are lost, and several key components like kernel backend drivers will cease to work.
* xen: bump pkgrelRoger Pau Monne2012-11-191-1/+1
|
* xen: fix misuse of einfo in xenstore.initdRoger Pau Monne2012-11-192-2/+2
| | | | Signed-off-by: Roger Pau Monne <roger.pau@citrix.com>
* xen: add a bunch of security fixesRoger Pau Monne2012-11-195-0/+144
| | | | | | | | | | This covers: XSA-20 XSA-22 XSA-23 XSA-24 Signed-off-by: Roger Pau Monne <roger.pau@citrix.com>
* xen: prevent qemu daemon from screwing the consoleRoger Pau Monne2012-11-192-2/+5
| | | | | | | Qemu when launched with -nographic and -monitor screws the console badly. Use nohup to prevent that. Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
* xen: fix init scriptsRoger Pau Monné2012-11-021-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | On 02/11/12 12:05, Leonardo Arena wrote: > On Fri, 2012-11-02 at 11:49 +0100, Roger Pau Monne wrote: >> Xen init scripts doesn't need to depend on 'net' >> --- >> Please update APK checksum >> --- >> main/xen/xend.initd | 2 +- >> main/xen/xenstored.initd | 1 - >> 2 files changed, 1 insertions(+), 2 deletions(-) >> >> diff --git a/main/xen/xend.initd b/main/xen/xend.initd >> index 1c667e8..bd5550b 100644 >> --- a/main/xen/xend.initd >> +++ b/main/xen/xend.initd >> @@ -4,7 +4,7 @@ >> # $Header: /var/cvsroot/gentoo-x86/app-emulation/xen-tools/files/xend.initd-r2,v 1.2 2011/09/10 17:22:46 alexxy Exp $ >> >> depend() { >> - need net xenconsoled xenstored >> + need xenconsoled xenstored >> after firewall >> before xendomains sshd >> } >> diff --git a/main/xen/xenstored.initd b/main/xen/xenstored.initd >> index f2c22cc..6187c02 100644 >> --- a/main/xen/xenstored.initd >> +++ b/main/xen/xenstored.initd >> @@ -4,7 +4,6 @@ >> # $Header: /var/cvsroot/gentoo-x86/app-emulation/xen-tools/files/xenstored.initd,v 1.2 2011/04/05 21:25:03 alexxy Exp $ >> >> depend() { >> - need net >> before xendomains xend sshd ntp-client ntpd nfs nfsmount rsyncd portmap dhcp >> } >> > > Applied both patches. On the rush I forgot to increase pkgrel, can you commit this please: Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
* main/xen: update checksumLeonardo Arena2012-11-021-2/+3
|
* xen: fix init scriptsRoger Pau Monne2012-11-022-2/+1
| | | | | | Xen init scripts doesn't need to depend on 'net' Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
* xen: add CVE-2012-4544 fixRoger Pau Monne2012-11-022-0/+366
| | | | Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
* main/xen: rebuild against nss-3.14Natanael Copa2012-10-301-1/+1
|
* xen: update to 4.2.0Roger Pau Monne2012-09-173-11/+10
|
* xen: update to 4.2.0-rc4Roger Pau Monne2012-09-1413-229/+319
| | | | | | Next version (4.2) is scheduled to be released very soon if everything goes ok. This is a very close rc, which we can start testing until 4.2 comes out.
* main/xen: upgrade to 4.1.3Natanael Copa2012-08-136-452/+3
|
* main/xen: use default screendir locationNatanael Copa2012-06-223-4/+9
| | | | Otherwise screen -x will not work without manually setting screen dir
* main/xen: fix xendomains init script to wait for screenNatanael Copa2012-06-212-2/+17
| | | | | | | We need wait til the detatched screen has created the connection sockets before trying to set the opts to it. ref #1181
* main/xen: CVE-2012-0217, CVE-2012-0218, CVE-2012-2934Roger Pau Monne2012-06-123-2/+174
| | | | | | This should be backported to stable. Signed-off-by: Roger Pau Monne <roger.pau@citrix.com>
* main/xen: split out -dev, -libs and -hypervisorNatanael Copa2012-05-231-2/+18
|
* main/xen: fix xenstored init scriptRoger Pau Monne2012-04-302-2/+12
| | | | | | Mount /proc/xen on init if it's not mounted. Signed-off-by: Roger Pau Monne <roger.pau@entel.upc.edu>
* main/xen: use adapted gentoo init.d scriptsNatanael Copa2012-04-0511-212/+254
|
* main/xen: fix xendomains init scriptRoger Pau Monne2012-03-082-27/+36
|
* main/xen: security fix CVE-2012-0029Roger Pau Monne2012-02-232-1/+45
|
* main/xen: update to match new OpenRC and kernel 3.2Roger Pau Monne2012-02-142-18/+15
|
* main/xen: upgrade to 4.1.2Natanael Copa2012-02-1222-1009/+633
|
* main/xen: rebuild against mesa-7.11Natanael Copa2011-10-251-1/+1
|
* main/xen: util-linux-ng was renamed to util-linuxNatanael Copa2011-09-021-1/+1
|
* Starting Xen HVM guests fails when using Xen 4.x and gcc 4.6Guillaume Sellier2011-09-022-1/+736
| | | | | | | | From the Xen FAQ : http://wiki.xensource.com/xenwiki/XenCommonProblems#head-775c8bcbc9f0470082f79af0c7a29a43392960bf Patch found here http://xenbits.xen.org/hg/xen-4.1-testing.hg/raw-rev/1976adbf2b80 I can't test it since I don't have the right hardware. G.
* Xen bump to 4.1.1Guillaume Sellier2011-09-021-1/+1
| | | | with updated checksum (oops)
* bump Xen to 4.1.1Guillaume Sellier2011-09-021-2/+2
| | | | | | | | | | | | | | Xen 4.1.1 is a maintenance release in the 4.1 series and contains: Security fixes including CVE-2011-1583 and CVE-2011-1898 Enhancements to guest introspection (VM single stepping support for very fine-grained access control) Many stability improvements, such as: PV-on-HVM stability fixes (fixing some IRQ issues) XSAVE cpu feature support for PV guests (allows safe use of latest multimedia instructions) RAS fixes for high availability fixes for offlining bad pages changes to libxc, mainly of benefit to libvirt Compatibility fixes for newer Linux guests, newer compilers, some old guest savefiles, newer Python, grub2, some hardware/BIOS bugs.
* Xen APKBUILD updated with the previous init.d patchsGuillaume Sellier2011-09-021-2/+5
|
* make xend init.d depends on xencommonsGuillaume Sellier2011-09-021-1/+1
| | | | | a small patch found on the same web pages https://bugs.gentoo.org/show_bug.cgi?id=336487
* OpenRC xencommons init.d scriptGuillaume Sellier2011-09-021-0/+91
| | | | | Found here https://bugs.gentoo.org/show_bug.cgi?id=361345 a more "gentooïsh" script that the default provided one.
* main/xen: enable x86Natanael Copa2011-08-163-2/+62
|
* main/[various]: rebuild against python-2.7Natanael Copa2011-06-231-1/+1
|
* main/xen: now makedepends on perl apparentlyWilliam Pitcock2011-06-101-1/+1
|
* main/xen: upgrade to 4.1.0William Pitcock2011-06-104-55/+21
|
* main/xen: build fixNatanael Copa2011-04-182-0/+28
| | | | more hacks for blktap
* main/xen: don't use sed in the build systemWilliam Pitcock2011-02-172-1/+14
|
* testing/xen: promote to mainWilliam Pitcock2011-02-179-0/+275