Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/app-emulation/qemu
Commit message (Collapse)AuthorAgeFilesLines
* app-emulation/qemu: remove unused patchMichael Mair-Keimberger2018-03-291-24/+0
| | | | Closes: https://github.com/gentoo/gentoo/pull/7686
* app-emulation/qemu: x86 stable (bug #649616)Thomas Deutschmann2018-03-291-1/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: Revert: update 2.11.1-r52, 9999Matthias Maier2018-03-272-2/+0
| | | | This reverts commit 289a2b775c75dd1e88aa972642624a0bf692e957.
* app-emulation/qemu: Revert: add rule to fix permissions on /dev/vfio/vfioMatthias Maier2018-03-272-3/+0
| | | | This reverts commit 2fc1bc6c7b1f41a3a7df74ce8e170996eb7e36d9.
* app-emulation/qemu: update 2.11.1-r52, 9999Matthias Maier2018-03-272-0/+2
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: add rule to fix permissions on /dev/vfio/vfioMatthias Maier2018-03-272-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The device node /dev/vfio/vfio gets created on modprobing the vfio* modules. This happens in particular on demand when a qemu vm with PCI passthrough is started up. The default permissios for the freshly created device node is crw-rw-rw- 1 root root 10, 196 Mar 27 08:44 /dev/vfio/vfio This is terrible. This patch adds an udev rules and makes sure that the device node has rw permissions for user root, and group kvm (and no permissions for all). This fixes - startup when a qemu-kvm is started as non-root (provided the user is in group kvm, which is our current policy for accessing /dev/kvm, etc., anyway). - work around this security vulnerability, where /dev/vfio/vfio is created with world writable permissions upon modprobe. [1] Thanks to username234, Kash Pande, Ted Rodgers for discovery and patch! [1] Steps to reproduce: % ls -la /dev/vfio/vfio crw------- 1 root root 10, 196 Mar 27 15:40 /dev/vfio/vfio % modprobe vfio % ls -la /dev/vfio/vfio crw-rw-rw- 1 root root 10, 196 Mar 27 15:41 /dev/vfio/vfio [2] I cannot find an udev rule installed by libvirt/qemu/... that triggers these permissions. Bug: https://bugs.gentoo.org/651668 Package-Manager: Portage-2.3.24, Repoman-2.3.6 RepoMan-Options: --force
* app-emulation/qemu: drop obsolete fileMatthias Maier2018-03-271-1/+0
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: update live ebuildMatthias Maier2018-03-201-0/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: amd64 stable wrt bug #649616Mikle Kolyada2018-03-191-1/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: fix capstone dependencyMatthias Maier2018-03-181-0/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: restore keywordsMatthias Maier2018-03-181-2/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: drop 2.11.1Matthias Maier2018-03-182-803/+0
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: 2.11.1: apply security patchesMatthias Maier2018-03-181-0/+805
| | | | | | | | | | * disable capstone * apply patch for CVE-2018-7550 Bug: https://bugs.gentoo.org/647570 Bug: https://bugs.gentoo.org/649616 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: update live ebuildMatthias Maier2018-03-181-17/+17
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: 2.11.1: New binary blob pinning, CVE patches, maintenanceMatthias Maier2018-03-184-7/+19
| | | | | | | | | | | | | | | | | | | * new binary blobs pinning =sys-firmware/edk2-ovmf-2017_p20180211 =sys-firmware/ipxe-1.0.0_p20180211 =sys-firmware/seabios-1.11.0 =sys-firmware/sgabios-0.1_pre8-r1 =sys-firmware/vgabios-0.7a-r1 keyword ebuild * fix include path for capstone, bug 647570 * add USE=capstone support, bug 647570 * apply patch for CVE-2018-7550 Closes: https://bugs.gentoo.org/647570 Bug: https://bugs.gentoo.org/649616 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: bump pinned firmware versionsMatthias Maier2018-03-141-2/+2
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: bug #647570Zero_Chaos2018-02-173-0/+9
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: Version bump to 2.11.1Patrick McLean2018-02-162-0/+804
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: [QA] Fix DoubleEmptyLineMichał Górny2018-02-152-2/+0
|
* app-emulation/qemu: drop vulnerable versionMatthias Maier2018-02-124-913/+0
| | | | | Bug: https://bugs.gentoo.org/646814 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: x86 stable (bug #646814)Thomas Deutschmann2018-02-121-1/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: amd64 stable wrt bug #646814Agostino Sarubbo2018-02-121-1/+1
| | | | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org> Package-Manager: Portage-2.3.19, Repoman-2.3.6 RepoMan-Options: --include-arches="amd64"
* app-emulation/qemu: 2.11.0-r50: pin new firmware versionsMatthias Maier2018-02-111-0/+804
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: fix dependencies in live ebuildMatthias Maier2018-02-111-2/+3
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: Fix build with latest git:Alexey Sokolov2018-02-112-3/+27
| | | | | | | | | * add hppa to softmmu targets * add aarch64_be to user targets * update the CFLAGS patch Signed-off-by: Matthias Maier <tamiko@gentoo.org> Closes: https://github.com/gentoo/gentoo/pull/7020
* app-emulation/qemu: version bump to 2.11.0, important security fixesMatthias Maier2018-02-113-0/+859
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Added slot operator for libnfs - Added patch for glibc-2.27 compatibility - Added patch for CVE-2017-16845 - Backported upstream msr / spec ctrl patches: 6cfbc54e89 i386: Add EPYC-IBPB CPU model ac96c41354 i386: Add new -IBRS versions of Intel CPU models 1b3420e1c4 i386: Add FEAT_8000_0008_EBX CPUID feature word a2381f0934 i386: Add spec-ctrl CPUID bit a33a2cfe2f i386: Add support for SPEC_CTRL MSR - CVEs addressed by bump: CVE-2017-17381 CVE-2017-18030 CVE-2017-18043 - CVEs addressed by patchset: CVE-2017-15124 CVE-2017-16845 CVE-2018-5683 - CVE-2018-5748 is a libvirt vulnerability, not a qemu issue... Bug: https://bugs.gentoo.org/638506 Bug: https://bugs.gentoo.org/643432 Bug: https://bugs.gentoo.org/646814 Closes: https://bugs.gentoo.org/641100 Closes: https://bugs.gentoo.org/646568 Closes: https://bugs.gentoo.org/646710 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: Make CONFIG_CHECK CPU-model dependentGeorge Gaydarov2017-12-202-2/+10
| | | | | | Closes: https://github.com/gentoo/gentoo/pull/6285 Signed-off-by: George Gaydarov <git@gg7.io> Signed-off-by: Matthias Maier <tamiko@gentoo.org>
* app-emulation/*: Update Manifest hashesMichał Górny2017-12-091-1/+1
|
* app-emulation/qemu: remove unused fileMichael Mair-Keimberger2017-12-061-138/+0
| | | | Closes: https://github.com/gentoo/gentoo/pull/6419
* app-emulation/qemu: drop vulnerable (bug #634148)Matthias Maier2017-11-142-782/+0
| | | | Package-Manager: Portage-2.3.13, Repoman-2.3.4
* app-emulation/qemu: Stable on amd64Manuel Rüger2017-11-131-1/+1
| | | | Package-Manager: Portage-2.3.12, Repoman-2.3.4
* app-emulation/qemu: x86 stable (bug #634148)Thomas Deutschmann2017-11-131-1/+1
| | | | Package-Manager: Portage-2.3.13, Repoman-2.3.4
* app-emulation/qemu: Live ebuild maintennance, bug #631206Matthias Maier2017-11-121-9/+10
| | | | | Closes: https://bugs.gentoo.org/631206 Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: drop vulnerableMatthias Maier2017-11-121-795/+0
| | | | Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: Version bump to 2.10.1, various security fixesMatthias Maier2017-11-125-80/+909
| | | | | | | | Bug: https://bugs.gentoo.org/630432 Bug: https://bugs.gentoo.org/633822 Bug: https://bugs.gentoo.org/634070 Bug: https://bugs.gentoo.org/634148 Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: drop obsolete patchesMatthias Maier2017-11-1213-1007/+0
| | | | Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: drop vulnerable, bug #629350Matthias Maier2017-11-123-1590/+0
| | | | | Bug: https://bugs.gentoo.org/629350 Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: need seavgabios for pseriesRobin H. Johnson2017-11-102-4/+26
| | | | | | | | | | | | | | | | | Emulation of PPC64 pSeries needs a VGA BIOS: $ qemu-system-ppc64 -m 256 -nographic \ -echr 0x05 \ -kernel cirros-0.4.0~pre1-ppc64-kernel \ -initrd cirros-0.4.0~pre1-ppc64-initramfs \ -append rdroot \ -m 256 \ -machine pseries qemu-system-ppc64: Initialization of device VGA failed: failed to find romfile "vgabios-stdvga.bin" Tested on bogsucker.ppc64.dev.g.o by booting CirrOS PPC64 images. Package-Manager: Portage-2.3.8, Repoman-2.3.3 Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
* app-emulation/qemu: Remove bundled copy of libfdtJan Vesely2017-10-282-0/+1580
| | | | | | | Bump min dependency on sys-apps/dtc to 1.4.2. Signed-off-by: Matthias Maier <tamiko@gentoo.org> Closes: https://github.com/gentoo/gentoo/pull/5781
* app-emulation/qemu: x86 stable (bug #629350)Thomas Deutschmann2017-09-231-1/+1
| | | | Package-Manager: Portage-2.3.8, Repoman-2.3.3
* app-emulation/qemu: amd64 stable wrt bug #629350Agostino Sarubbo2017-09-201-1/+1
| | | | | | Package-Manager: Portage-2.3.8, Repoman-2.3.1 RepoMan-Options: --include-arches="amd64" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* app-emulation/qemu: add s390-netboot.img to prestripped listSergei Trofimovich2017-09-042-1/+3
| | | | Package-Manager: Portage-2.3.8, Repoman-2.3.3
* app-emulation/qemu: do not install removed documentationMatthias Maier2017-08-311-1/+0
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: version bump to 2.10.0, bug #629350Matthias Maier2017-08-313-0/+862
| | | | | | | | | This version bump also addresses a number of security issues CVE-2017-12809, bug #628498 CVE-2017-13673, bug #629316 CVE-2017-13711, bug #629350 Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: drop vulnerable 2.9.0-r2, bug #625614Matthias Maier2017-08-311-748/+0
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: stabilize on amd64, x86, bug #625614Matthias Maier2017-08-311-1/+1
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: Remove faulty patchMatthias Maier2017-07-262-602/+0
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: Bugfix: Fix patch fileMatthias Maier2017-07-261-11/+11
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: security patchesMatthias Maier2017-07-264-53/+481
| | | | | | | | CVE-2017-7539, bug #625850 CVE-2017-10664, bug #623016 CVE-2017-10806, bug #624088 Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: drop old patch filesMatthias Maier2017-07-2625-1202/+0
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3