2018-03-01 Pavel Hrdina tests: introduce qemucapsfixreplies helper Sometimes we don't regenerate QEMU capabilities replies using QEMU binary but we simply add a new entry manually. In that case you need to manually fix all the replies ids. This helper will do that for you. Reviewed-by: Andrea Bolognani 2018-03-01 Michal Privoznik news: Update release notes Reviewed-by: Andrea Bolognani 2018-03-01 Andrea Bolognani src: Fix checking for clang The check was trying to use the shell variable $CC instead of the make variable $(CC); it also interpreted grep's return code wrong: 1 means the provided pattern was *not* matched. As a result, pdwtags was never run, not even when building with gcc. Reviewed-by: Daniel P. Berrangé 2018-03-01 John Ferlan conf: Fix crash in virDomainDefCompatibleDevice Commit id 'edae027c' blindly assumed that the passed @oldDev parameter would not be NULL when calling virDomainDeviceGetInfo; however, commit id 'b6a264e8' passed NULL for AttachDevice callers under the premise that there wouldn't be a device to check/update against. 2018-02-28 Daniel P. Berrangé travis: test upstart/systemd init script handling Enable testing of both the upstart and systemd init script handling. We test a different one in each scenario. Even though trusty only cares about upstart, it is fine for us to test rules that install systemd, since we're not actually running these scripts for real. Reviewed-by: Andrea Bolognani 2018-02-28 Daniel P. Berrangé travis: test "make install" and "make dist" on macOS We can't use "make distcheck" on macOS because many unit tests fail. We can still get coverage of some of the things "distcheck" validates, by running the "install" and "dist" targets. This is particularly useful because many conditional features are disabled on macOS, and this helps make sure we can still successfully install & dist when these bits are disabled. The default script is getting unreadable since it is all on one long line. Rather than adding further conditional clauses to it, we make use of the travis matrix config override for the script. Reviewed-by: Andrea Bolognani 2018-02-28 Daniel P. Berrangé travis: run "make distcheck" instead of just "make check" Running "make distcheck" includes the "make check", and "make dist" targets. It ensures that we have CLEANFILES and uninstall rules setup correctly, as well as validating VPATH builds succeed. Reviewed-by: Andrea Bolognani 2018-02-28 Daniel P. Berrangé travis: drop precise distro jobs The precise distro is marked deprecated in travis and will be dropped entirely in 2 months time. Reviewed-by: Andrea Bolognani 2018-02-28 Daniel P. Berrangé make: skip pdwtags when building with CLang When building with CLang the structs that are emitted by pdwtags appear in a completely different order than with GCC, which causes the comparison against expected data to fail. Ideally the test would not be sensitive to the ordering, because even future GCC could cause changes, but that's not easy to fix. So for now just skip the test when using clang. Reviewed-by: Andrea Bolognani 2018-02-28 Daniel P. Berrangé docs: remove legacy XHTML declaration We have switched the docs to using the HTML5 doctype declaration in commit b1c81567c7172bc9dcd701cf46ea3f87725d62c7 Author: Daniel P. Berrange Date: Wed Jul 26 18:01:25 2017 +0100 docs: switch to using HTML5 doctype declaration 2018-02-28 Michal Privoznik vshCommandOpt: Do more checking if skipChecks is set Currently if cmd->skipChecks is set (done only from completers) some basic checks are skipped because we're working over partially parsed command. See a26ff63ae4 for more detailed explanation. Anyway, the referenced commit was too aggressive in disabling checks and effectively returned success even in clear case of failure. For instance: # domif-getlink --interface causes virshDomainInterfaceCompleter() to be called, which calls virshDomainGetXML() which eventually calls vshCommandOptStringReq(.., name = "domain"); The --domain argument is required for the command and if not present -1 should be returned to tell the caller the argument was not found. Well, zero is returned meaning the argument was not found but it's not required either. 2018-02-28 Nikolay Shirokovskiy vz: fix ref/unref of domain obj in vzDomainRevertToSnapshot 2018-02-28 Julio Faracco virsh: fixing segfault by pool autocompleter function. The commands which requires a pool to perform any action for a volume is throwing a segfault when you pass the volume name before a pool name or without the argument '--pool'. An example that works: virsh # vol-list loops-pool Name Path ------------------------------------------------------------------- loop0 /mnt/loop0 virsh # vol-info --pool loops-pool lo An example that does not work: virsh # vol-list loops-pool Name Path ------------------------------------------------------------------- loop0 /mnt/loop0 virsh # vol-info lo Segmentation Fault The example 'vol-info' can be executed as 'vol-info loop0 --pool loops-pool'. So, this commit fixes this problem when the arguments are inverted and avoids the segfault. 2018-02-28 Zhangzijian qemu: fix memory leak of @vporttype during migration. 12 bytes in 1 blocks are definitely lost in loss record 188 of 1,145 at 0x4C2B6CD: malloc (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so) by 0x5D2CD77: xmlStrndup (in /lib/x86_64-linux-gnu/libxml2.so.2.7.8) by 0x514E137: virXMLPropString (virxml.c:506) by 0x234F51: qemuMigrationCookieNetworkXMLParse qemu_migration.c:1001) by 0x235FF8: qemuMigrationCookieXMLParse (qemu_migration.c:1333) by 0x236214: qemuMigrationCookieXMLParseStr (qemu_migration.c:1372) by 0x2365D2: qemuMigrationEatCookie (qemu_migration.c:1456) by 0x243DBA: qemuMigrationFinish (qemu_migration.c:6381) by 0x204032: qemuDomainMigrateFinish3 (qemu_driver.c:13228) by 0x521CCBB: virDomainMigrateFinish3 (libvirt-domain.c:4788) by 0x1936DE: remoteDispatchDomainMigrateFinish3 (remote.c:4580) by 0x16DBB1: remoteDispatchDomainMigrateFinish3Helper(remote_dispatch.h:7582) 2018-02-27 Laine Stump nwfilter: save error from DHCP snoop thread to report in main thread A problem encountered due to a bug in libpcap was reported to the caller as: An error occurred, but the cause is unknown This was because the error had been logged in the DHCPSnoop thread. The worker thread handling the API call to start a domain spins up the DHCPSnoop thread which watches for dhcp packets with libpcap, then uses virCondSignal() to notify the worker thread (which has been waiting with virCondWait()). The worker thread knows that there was an error (because threadStatus != THREAD_STATUS_OK), but the error info had been stored in thread-specific storage for the other thread, so the worker thread can only report that there was a failure, but it doesn't know why. The solution is to save the error that was logged (with virErrorPreserveLast() into the object the is used to share info between the threads, then we can set the error in the worker thread using virErrorRestore(). In the case of the error I was looking at, this changed the "unknown" message into: internal error: pcap_setfilter: can't remove kernel filter: Bad file descriptor 2018-02-27 Daniel P. Berrangé storage: fix sheepdog driver / test linking to avoid duplicating source The libvirt_storage_backend_sheepdog_priv.la library depends on symbols provided in the libvirt_driver_storage_impl.la library. As such the latter must be listed 2nd when passed to the linker to avoid symbol resolution problems. This mistake is being masked by the sheepdog driver linking in a second copy of the storage driver code. Remove this duplicate linkage of backend source and fix the test link order. make: fix uninstall of subdirectory data A typo in the uninstall-data-extra rule expansion meant we just called the install rule again, instead of the uninstall rule. While fixing this, just inline the dependancy, since the intermediate install-data-extra rule adds no value. po: refresh translations from zanata 2018-02-26 Nikolay Shirokovskiy lxc: fix rpc event leak on error path in virLXCControllerEventSend Reviewed-by: Daniel P. Berrangé daemon: fix rpc event leak on error path in remoteDispatchObjectEventSend Reviewed-by: Daniel P. Berrangé 2018-02-26 Nikolay Shirokovskiy vz: build fix: handle missing switch enum cases Ensure all enum cases are listed in switch statements, or cast away enum type in places where we don't wish to cover all cases. Build is broken after 67966ad51 [1]. [1] m4: enforce that all enum cases are listed in switch statements Reviewed-by: Daniel P. Berrangé 2018-02-26 Nikolay Shirokovskiy vz: build fix after excluding cross driver headers Build is broken by 5529b057 [1]. [1] cfg: forbid includes of headers in network and storage drivers again Reviewed-by: Daniel P. Berrangé 2018-02-26 Michal Privoznik qemu: Add virConnectPtr back to some migration methods This partially reverts 82592551cb8c4112cfa2264d50b8dce5349533d5. When migrating a domain, qemuMigrationDstPrepareAny() is called which eventually calls qemuProcessLaunch(conn = NULL, flags = VIR_QEMU_PROCESS_START_AUTODESTROY); But the very first thing that qemuProcessLaunch does is check if AUTODESTROY flag is set and @conn is not NULL. Well, it is. Reviewed-by: Daniel P. Berrangé 2018-02-26 Michal Privoznik qemuProcessLaunch: Print all arguments to debug Reviewed-by: Daniel P. Berrangé 2018-02-26 Michal Privoznik qemuMigrationSrcIsSafe: Check local storage more thoroughly https://bugzilla.redhat.com/show_bug.cgi?id=1494454 If a domain disk is stored on local filesystem (e.g. ext4) but is not being migrated it is very likely that domain is not able to run on destination. Regardless of share/cache mode. Reviewed-by: Daniel P. Berrangé 2018-02-23 Jim Fehlig libxl: round memory values to next 1MiB increment libxl requires the memory sizes to be rounded to 1MiB increments. Attempting to start a domain that violates this requirement will fail with the marginally helpful error 2018-02-22 01:55:32.921+0000: xc: panic: xc_dom_boot.c:141: xc_dom_boot_mem_init: can't allocate low memory for domain: Out of memory 2018-02-22 01:55:32.921+0000: libxl: libxl_dom.c:671:libxl__build_dom: xc_dom_boot_mem_init failed: No such file or directory Round the maximum and current memory values to the next 1MiB increment when generating the libxl_domain_config object. 2018-02-23 Daniel P. Berrangé make: split lxc driver build rules into lxc/Makefile.inc.am make: split vz driver build rules into vz/Makefile.inc.am make: split xenapi driver build rules into xenapi/Makefile.inc.am make: split xen driver build rules into xen/Makefile.inc.am make: split libxl driver build rules into libxl/Makefile.inc.am make: split xenconfig driver build rules into xenconfig/Makefile.inc.am make: split bhyve driver build rules into bhyve/Makefile.inc.am make: split qemu driver build rules into qemu/Makefile.inc.am make: split openvz driver build rules into openvz/Makefile.inc.am make: split vbox driver build rules into vbox/Makefile.inc.am make: split vmware driver build rules into vmware/Makefile.inc.am make: split hyperv driver build rules into hyperv/Makefile.inc.am make: split ESX driver build rules into esx/Makefile.inc.am make: split test driver build rules into test/Makefile.inc.am make: split PHyp driver build rules into phyp/Makefile.inc.am make: split UML driver build rules into uml/Makefile.inc.am 2018-02-23 Christian Ehrhardt tools: avoid text spilling into variables While libvirt-guests.sh is running cases can let guest_is_on fail which causes check_guests_shutdown to print output. That output shall not spill into the users of function check_guests_shutdown which is therefore now returning values in a variable like guest_is_on already did. Original-Author: Christian Ehrhardt Modified-By: Jorge Niedbalski 2018-02-23 Daniel P. Berrangé make: fix VPATH install of upstart files 2018-02-23 Jiri Denemark qemu: Fix updating device with boot order Commit v3.7.0-14-gc57f3fd2f8 prevented adding a element to an inactive domain with global element. However, as a result of that change updating any device with boot order would fail with 'boot order X is already used by another device', where "another device" is in fact the device which is being updated. To fix this we have to ignore the device which we're about to update when checking for boot order conflicts. https://bugzilla.redhat.com/show_bug.cgi?id=1546971 2018-02-23 Jiri Denemark Pass oldDev to virDomainDefCompatibleDevice on device update When calling virDomainDefCompatibleDevice to check a new device during device update, we need to pass the original device which is going to be updated in addition to the new device. Otherwise, the function can report false conflicts. The new argument is currently ignored by virDomainDefCompatibleDevice, but this will change in the following patch. https://bugzilla.redhat.com/show_bug.cgi?id=1546971 2018-02-23 Jiri Denemark lxc: Drop useless check in live device update Checking the new device definition makes little sense when lxc driver does not support live device update at all. qemu_hotplug: Drop dead code in net update vm->def->nets[changeidx] can never be NULL for changeidx returned by virDomainNetFindIdx. 2018-02-23 Michal Privoznik libvirt.spec.in: Don't distribute libvirtd.upstart Firstly, for rpm we are building libvirt with --init-script=systemd or --init-script=redhat. So upstart is never enabled. And only due to a bug we installed libvirtd.upstart file. Reviewed-by: Pavel Hrdina 2018-02-22 Jim Fehlig news: libxl now supports setting clock offset and adjustment 2018-02-22 Daniel P. Berrangé make: fix long line in makefile that violate syntax-check rules make: fix another VPATH bug impacting install of sysconf files 2018-02-22 Michal Privoznik src: Clean *.logrotate, .aug and libvirtd.policy files on 'make clean' Before 3f055b5997c we were doing that. However after the commit we are leaving the files behind. 2018-02-22 Daniel P. Berrangé make: fix VPATH build for libvirtd augeas check 2018-02-22 John Ferlan conf,qemu: Check for NULL addrs in virDomainUSBAddressEnsure Rather than having the caller check, if the input @addrs is NULL (e.g. priv->usbaddrs), then just return 0. This also removes the need for ATTRIBUTE_NONNULL which only really helped if someone passed a NULL as a parameter not if the passed parameter is NULL. conf,qemu: Check for NULL addrs in virDomainUSBAddressRelease Rather than having the caller check, if the input @addrs is NULL (e.g. priv->usbaddrs), then just return 0. This also removes the need for ATTRIBUTE_NONNULL which only really helped if someone passed a NULL as a parameter not if the passed parameter is NULL. 2018-02-22 Nikolay Shirokovskiy port allocator: make port range constant object port allocator: remove release functionality from set used Let's use virPortAllocatorRelease instead of virPortAllocatorSetUsed(false). port allocator: drop skip bind check flag This flag is only used for tests. Let's instead overload bind syscall in mocks where it is not done yet. port allocator: remove range check in release function Range check in virPortAllocatorSetUsed is not useful anymore when we manage ports for entire unsigned short range values. port allocator: remove range on manual port reserving Range check in virPortAllocatorSetUsed is not useful anymore when we manage ports for entire unsigned short range values. 2018-02-22 Nikolay Shirokovskiy port allocator: make used port bitmap global Host tcp4/tcp6 ports is a global resource thus we need to make port accounting also global or we have issues described in [1] when port allocator ranges of different instances are overlapped (which is by default for qemu for example). Let's have only one global port allocator object that take care of the entire ports range (0 - 65535) and introduce port range object for clients to specify desired auto allocation band. [1] https://www.redhat.com/archives/libvir-list/2017-December/msg00600.html 2018-02-22 Daniel P. Berrangé rpm: don't enable fuse on RHEL-6 Fuse was recently enabled whereever LXC is enabled: commit 34783a9e6b9c3d8850db878fc323c1ff40703ea6 Author: Jiri Denemark Date: Fri Feb 9 13:42:50 2018 +0100 spec: Enable fuse only if LXC is enabled Unfortunately the version of Fuse in RHEL-6 is too old for libvirt's needs, but we still have LXC enabled there. 2018-02-22 Daniel P. Berrangé daemon: move logrotate files to src/remote/ daemon: move misc libvirtd policy files to src/remote/ daemon: move configuration files to src/remote daemon: move init system files into src/remote/ Move the systemd, sysvinit, upstart and sysconfig files into the src/remote/ directory. daemon: move libvirtd POD manpage into src/remote/ daemon: move libvirtd code into src/remote/ directory Having a daemon/ directory makes little sense from a code structure point of view, as 90% of the code that is built into libvirtd already lives in the src/ directory. The virtlockd and virlogd daemons also live entirely in src/{locking,logging} directories. This moves the source code for libvirtd into src/remote/, alongside the client code. daemon: remove obsolete doc describing daemon threading The THREADS.txt describes the way threading worked in libvirtd many many years ago, long before even the RPC code was modularized. Things have evolved significantly since then, so delete this potentially misleading doc. src: simplify sysconfig file handling in make rules Remove lots of duplication in the sysconfig file handling, so we can add more conf files without modifying so many places. src: simplify sysv init file handling in make rules Remove lots of duplication in the sysv init file handling, so we can add more init files without modifying so many places. src: simplify systemd unit file handling in make rules Remove lots of duplication in the systemd unit file handling, so we can add more unit files without modifying so many places. bhyve: add missing cases for graphics listen type Address warning from -Wswitch-enum by adding missing cases for graphics listen types that are not supported. 2018-02-21 Jim Fehlig libxl: add support for specifying clock offset and adjustment libxl supports setting the domain real time clock to local time or UTC via the localtime field of libxl_domain_build_info. Adjustment of the clock is also supported via the rtc_timeoffset field. The libvirt libxl driver has never supported these settings, instead relying on libxl's default of a UTC real time clock with adjustment set to 0. There is at least one user that would like the ability to change the defaults https://www.redhat.com/archives/libvirt-users/2018-February/msg00059.html Add support for specifying a local time clock and for specifying an adjustment for both local time and UTC clocks. Add a test case to verify the XML to libxl_domain_config conversion. Local time clock and clock adjustment is already supported by the XML <-> xl.cfg converter. What is missing is an explicit test for the conversion. There are plenty of existing tests that all use UTC with 0 adjustment. Hijack test-fullvirt-tsc-timer to test a local time clock with 1 hour adjustment. Reviewed-by: Daniel P. Berrangé 2018-02-21 Ján Tomko virLogGetOutputs: remove unnecessary braces Commit 9275def reduced the if block to one line without removing the braces. 2018-02-21 Daniel P. Berrangé m4: enforce that all enum cases are listed in switch statements As a general rule any time we switch() on something that is an enum, we want to have a case for every enum constant. The -Wswitch warning will report any switch where we've violated this rule, except if that switch has a default case. Unfortunately it is reasonable to want to list all enum constants *and* also have a default case. To get a warning in that scenario requires that we turn on -Wswitch-enum. In a few cases where we explicitly don't want to list all enum cases, we can discard the enum type checking by casting the value to a plain int. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé tools: handle missing switch enum cases Cast away enum type in places where we don't wish to cover all cases. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé xen: handle missing switch enum cases Ensure all enum cases are listed in switch statements. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé security: handle missing switch enum cases Ensure all enum cases are listed in switch statements. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé rpc: handle missing switch enum cases Ensure all enum cases are listed in switch statements. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé qemu: handle missing switch enum cases Ensure all enum cases are listed in switch statements, or cast away enum type in places where we don't wish to cover all cases. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé nwfilter: handle missing switch enum cases Ensure all enum cases are listed in switch statements, or cast away enum type in places where we don't wish to cover all cases. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé lxc: handle missing switch enum cases Ensure all enum cases are listed in switch statements, or cast away enum type in places where we don't wish to cover all cases. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé libxl: handle missing switch enum cases Cast away enum type for libxl scheduler constants since we don't want to cover all of them and don't want build to break when new ones are added. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé hyperv: handle missing switch enum cases Ensure all enum cases are listed in switch statements. This improves debug logging integration with openwsman. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé esx: handle missing switch enum cases Ensure all enum cases are listed in switch statements, or explicitly cast away enum type where we don't want to list all cases. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé conf: handle missing switch enum cases Ensure all enum cases are listed in switch statements. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé util: handle missing switch enum cases Ensure all enum cases are listed in switch statements. Reviewed-by: John Ferlan 2018-02-21 Daniel P. Berrangé util: add a virReportEnumRangeError for bad value reporting To ensure we have standardized error messages when reporting problems with enum values being out of a range, add virReportEnumRangeError(). virReportEnumRangeError(virDomainState, 34); results in a message "internal error: Unexpected enum value 34 for virDomainState" 2018-02-21 Daniel P. Berrangé src: remove WITH_LIBVIRTD condition around hal/udev build Currently building --without-libvirtd causes a failure to link the node device driver: node_device/.libs/libvirt_driver_nodedev_la-node_device_driver.o: In function `nodedevRegister': /home/berrange/src/virt/libvirt/src/node_device/node_device_driver.c:649: undefined reference to `udevNodeRegister' collect2: error: ld returned 1 exit status because it causes us to build the core nodedev driver, but then skip the implementations, despite udev being available. 2018-02-20 Laine Stump nwfilter: assure virNWFilterSnoop(Eth|Dhcp)Hdr structs don't change size These two objects are used to access fields in actual ethernet packets captures with libpcap, so it's essential that they don't change size for any reason. This patch uses gnulib's verify() macro to make sure their sizes don't change. Reviewed-by: Daniel P. Berrangé 2018-02-20 Daniel P. Berrangé Fix build with GCC 8 new switch fallthrough warnings GCC 8 became more fussy about detecting switch fallthroughs. First it doesn't like it if you have a fallthrough attribute that is not before a case statement. e.g. FOO: BAR: WIZZ: ATTRIBUTE_FALLTHROUGH; Is unacceptable as there's no final case statement, so while FOO & BAR are falling through, WIZZ is not falling through. IOW, GCC wants us to write FOO: BAR: ATTRIBUTE_FALLTHROUGH; WIZZ: Second, it will report risk of fallthrough even if you have a case statement for every single enum value, but only if the switch is nested inside another switch and the outer case statement has no final break. This is is arguably valid because despite the fact that we have cast from "int" to the enum typedef, nothing guarantees that the variable we're switching on only contains values that have corresponding switch labels. e.g. int domstate = 87539319; switch ((virDomainState)domstate) { ... } will not match enum value, but also not raise any kind of compiler warning. So it is right to complain about risk of fallthrough if no default: is present. 2018-02-20 Daniel P. Berrangé conf: add enum constants for default controller models The controller model is slightly unusual in that the default value is -1, not 0. As a result the default value is not covered by any of the existing enum cases. This in turn means that any switch() statements that think they have covered all cases, will in fact not match the default value at all. In the qemuDomainDeviceCalculatePCIConnectFlags() method this has caused a serious mistake where we fallthrough from the SCSI controller case, to the VirtioSerial controller case, and from the USB controller case to the IDE controller case. By adding explicit enum constant starting at -1, we can ensure switches remember to handle the default case. Reviewed-by: John Ferlan 2018-02-20 Andrea Bolognani qemu: Simplify modelName stringification There's no need to perform checks before conversion, we can just call virDomainControllerPCIModelNameTypeToString() and check the results later on. Since the variables involved are only used for PCI controllers, we can declare them in the 'case' scope rather than in the function scope to make everything a bit nicer while at it. 2018-02-20 Andrea Bolognani qemu: Move skip for implicit PHB of pSeries guests Performing the skip earlier will help us making the function nicer later on. We also make the condition for the skip a bit more precise, though that'a more for self-documenting purposes and doesn't change anything in practice. qemu: Move 'done' label in qemuBuildControllerDevStr() Even when we skip part of the processing, we still want error checking on the buffer. 2018-02-20 Michal Privoznik storage_conf: Make virStorageAuthDefFormat return void This function returns nothing but zero. Therefore it makes no sense to have it returning an integer. Reviewed-by: Daniel P. Berrangé 2018-02-20 Michal Privoznik virDomainDiskSourceFormatInternal: Avoid leaking @childBuf If formatting of storage encryption or private data fails we must jump to the error label instead of returning immediately otherwise @attrBuf and @childBuf might be leaked. Reviewed-by: Daniel P. Berrangé 2018-02-20 Daniel P. Berrangé daemon: trigger RPC re-generation when Makefile.am changes The src/Makefile.am rules all re-generate the RPC dispatch code whenever the Makefile.am changes, so for consistency do that for daemon/Makefile.am too. Reviewed-by: Pavel Hrdina 2018-02-20 Andrea Bolognani docs: Document pcie-root requirement for q35 guests When you add a bunch of pcie-root-port controllers to a q35 guest in order to have hotplug capabilities, you also need to make sure you're adding the pcie-root controller at the same time or you will get an error. Document this fact. Reviewed-by: Daniel P. Berrangé 2018-02-20 Laine Stump tests: fix bhyve build This file was modified in an editor buffer but not saved prior to commit e62cb4a9b78 (which removed virMacAddr::generated), so the bhyve build would fail. 2018-02-19 Laine Stump conf: move 'generated' member from virMacAddr to virDomainNetDef Commit 7e62c4cd26d (first appearing in libvirt-3.9.0 as a resolution to rhbz #1343919) added a "generated" attribute to virMacAddr that was set whenever a mac address was auto-generated by libvirt. This knowledge was used in a single place - when trying to match a NetDef from the Domain to Delete with user-provided XML. Since the XML parser always auto-generates a MAC address for NetDefs when none is provided, it was previously impossible to make a search where the MAC address isn't significant, but the addition of the "generated" attribute made it possible for the search function to ignore auto-generated MACs. This implementation had a problem though - it was adding a field to a "low level" struct - virMacAddr - which is used in other places with the assumption that it contains exactly a 6 byte MAC address and nothing else. In particular, virNWFilterSnoopEthHdr uses virMacAddr as part of the definition of an ethernet packet header, whose layout must of course match an actual ethernet packet. Adding the extra bools into virNWFilterSnoopEthHdr caused the nwfilter driver's "IP discovery via DHCP packet snooping" functionality to mysteriously stop working. In order to fix that behavior, and prevent potential future similar odd behavior, this patch moves the "generated" member out of virMacAddr (so that it is again really is just a MAC address) into virDomainNetDef, and sets it only when virDomainNetGenerateMAC() is called from virDomainNetDefParseXML() (which is the only time we care about it). Resolves: https://bugzilla.redhat.com/1529338 (It should also be applied to any maintenance branch that applies commit 7e62c4cd26 and friends to resolve https://bugzilla.redhat.com/1343919) 2018-02-19 Andrea Bolognani docs: Fix indentation of inlined JavaScript snippet 2018-02-19 Daniel P. Berrangé qemu: rename migration APIs to include Src or Dst in their name It is very difficult while reading the migration code trying to understand whether a particular function is being called on the src side or the dst side, or either. Putting "Src" or "Dst" in the method names will make this much more obvious. "Any" is used in a few helpers which can be called from both sides. Reviewed-by: John Ferlan 2018-02-19 Peter Krempa qemu: blockcopy: Add check for bandwidth QEMU code does not work well with too big numbers on the JSON monitor so our monitor code supports sending only numbers up to LLONG_MAX. Avoid a weird error message by limiting the size of the 'bandwidth' parameter for block copy. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1532542 2018-02-19 Peter Krempa virsh: Fix internal naming of some blockjob commands The variable names for the options and information about a command should have an underscore in places where the virsh command has a hyphen. The function callback name should capitalize the letter after the hyphen. This was not used in 'blockcommit', 'blockcopy', 'blockjob', 'blockpull', and 'blockresize' commands. 2018-02-19 Andrea Bolognani bhyve: Fix build Commit 2d43f0a2dcfd dropped virDomainDiskTranslateSourcePool()'s first argument but failed to update callers in the bhyve driver. 2018-02-19 Daniel P. Berrangé tests: remove networkRegister() call from qemuxml2argvtest Further cleanup from commit 0c63c117a2d17f66b05dd83e50aa36ac0b0c9843 Author: Daniel P. Berrangé Date: Fri Feb 9 15:08:53 2018 +0000 conf: reimplement virDomainNetResolveActualType in terms of public API 2018-02-19 Daniel P. Berrangé tests: drop linkage to libvirt_driver_network_impl.la The qemuxml2argvtest does not need to link to the network driver after this commit: commit 0c63c117a2d17f66b05dd83e50aa36ac0b0c9843 Author: Daniel P. Berrangé Date: Fri Feb 9 15:08:53 2018 +0000 conf: reimplement virDomainNetResolveActualType in terms of public API 2018-02-19 Daniel P. Berrangé qemu: don't export migration job APIs These APIs are not required anywhere outside the migration code so need not be exported to the rest of the QEMU driver. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé qemu: remove virConnectPtr in some migration methods The qemuMigrationPrecreateStorage method needs a connection to access the storage driver. Instead of passing it around, open it at time of use. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé qemu: remove virConnectPtr from some more startup code paths There's a few places in startup code paths which pass around a virConnectPtr which is no longer required. Specifically, the qemuProcessStart() method now only requires a non-NULL connection if autodestroy is requested. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé qemu: stop passing in virConnectPtr for looking up networks When setting up graphics, we sometimes need to resolve networks, requiring the caller to pass in a virConnectPtr, except sometimes they pass in NULL. Use virGetConnectNetwork() to acquire the connection to the network driver when it is needed. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé qemu: don't pass virConnectPtr around for secrets During domain startup there are many places where we need to acquire secrets. Currently code passes around a virConnectPtr, except in the places where we pass in NULL. So there are a few codepaths where ability to start guests using secrets will fail. Change to acquire a handle to the secret driver when needed. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé conf: stop passing virConnectPtr into virDomainDiskTranslateSourcePool Rather than expecting callers to pass a virConnectPtr into the virDomainDiskTranslateSourcePool() method, just acquire a connection to the storage driver when needed. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé qemu: stop passing virConnectPtr into qemuMonitorStartCPUs There is a long standing hack to pass a virConnectPtr into the qemuMonitorStartCPUs method, so that when the text monitor prompts for a disk password, we can lookup virSecretPtr objects. This causes us to have to pass a virConnectPtr around through countless methods up the call chain....except some places don't have any virConnectPtr available so have always just passed NULL. We can finally fix this disastrous design by using virGetConnectSecret() to open a connection to the secret driver at time of use. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé conf: reimplement virDomainNetResolveActualType in terms of public API Now that we have the ability to easily open connections to secondary drivers, eg network:///system, it is possible to reimplement the virDomainNetResolveActualType method in terms of the public API. This avoids the need to have the network driver provide a callback for it. Reviewed-by: John Ferlan 2018-02-19 Daniel P. Berrangé driver: allow override of connection for secondary drivers When the test suite is running, we don't want to be triggering the startup of daemons for the secondary drivers. Thus we must provide a way to set a custom connection for the secondary drivers, to override the default logic which opens a new connection. This will also be useful for code where we have a whole set of separate functions calls all needing the secret driver. Currently the connection to the secret driver is opened & closed many times in quick succession. This will allow us to pre-open a connection temporarily, improving the performance of startup. Reviewed-by: John Ferlan 2018-02-17 Zhuang Yanying news: Add support for setting Chassis SMBIOS data fields Reviewed-by: John Ferlan 2018-02-17 Zhuang Yanying qemu: Generate SMBIOS Chassis strings command line This wires up the previously added Chassis strings XML schema to be able to generate comamnd line args for QEMU. This requires QEMU >= 2.1 release containing this patch: SMBIOS: Build aggregate smbios tables and entry point https://git.qemu.org/?p=qemu.git;a=commit;h=c97294ec1b9e36887e119589d456557d72ab37b5 Reviewed-by: John Ferlan 2018-02-17 Zhuang Yanying conf: Add support for setting Chassis SMBIOS data fields This type of information defines attributes of a system chassis, such as SMBIOS Chassis Asset Tag. access inside VM (for example) Linux: /sys/class/dmi/id/chassis_asset_tag. Windows: (Get-WmiObject Win32_SystemEnclosure).SMBIOSAssetTag wirhin Windows PowerShell. As an example, add the following to the guest XML Dell Inc. 2.12 65X0XF2 40000101 Type3Sku1 Reviewed-by: John Ferlan 2018-02-16 Daniel P. Berrangé m4: disable gcc8 -Wcast-function-type warnings from -Wextra The -Wextra flag bundle gained a new warning -Wcast-function-type. This complains if you cast between two function prototypes where the number of parameters or their data types are not compatible. Unfortunately we need such "bad" function casts for our event callbacks. It is possible to silence the warning by first casting to the generic "void (*)(void)" function prototype, but that is rather ugly to add throughout libvirt code. 2018-02-14 Peter Krempa virsh: Remove sub-element in virshFindDisk Previously we've removed the data only in virshUpdateDiskXML when changing the disk source for the CDROM since the backing store would be invalid. Move the code into a separate function and callit from virshFindDisk which is also used when detaching disk. The detaching code does not necessarily need to get the full backing chain since it will need to act on the one managed by libvirt anyways and this also takes care of problems when parts of the backing store were invalid due to buggy RBD detection code. 2018-02-14 Peter Krempa util: storage: Remove detected authentication data for backing chains We can't really detect all the authentication data in a sane manner for disk backing chains. Since the old RBD parser parses it in some cases as the argv->XML convertor requires it, we can't just drop it. Instead clear any detected authentication data in the code paths related to disk backing chain lookup and fix the tests to cope with the change. https://bugzilla.redhat.com/show_bug.cgi?id=1544659 2018-02-14 Peter Krempa virsh: detach-disk: Add --print-xml switch Similarly to other commands add an argument which allows to check the XML which would be used to execute the operation instead. virstoragetest: Add test case for NBD over unix socket with new syntax Use the new syntax which uses the 'UnixSocket' type in qemu. 2018-02-14 Peter Krempa storage: Fix formatting and parsing of qemu type 'UnixSocketAddress' The documentation for the JSON/qapi type 'UnixSocketAddress' states that the unix socket path field is named 'path'. Unfortunately qemu uses 'socket' in case of the gluster driver (despite documented otherwise). Add logic which will format the correct fields while keeping support of the old spelling. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1544325 2018-02-14 Jiri Denemark spec: Drop overlapping triggers The postun trigger for libvirt-daemon was defined twice for overlapping ranges of package verions if systemd support was switched off (which happens when building on something ancient, such as RHEL-6). Let's combine the two triggers into the one which is called when libvirt-daemon < 1.3.0 is uninstalled. As a side effect, virtlockd and virtlogd might be reloaded twice after an upgrade from libvirt newer than 1.2.1 and older than 1.3.0 (by postun script from the old libvirt and postun trigger from the new libvirt). Reviewed-by: Daniel P. Berrangé 2018-02-14 Jiri Denemark spec: Fix indentation in daemon's triggerpostun Reviewed-by: Daniel P. Berrangé spec: Prepare for future RHEL Reviewed-by: Daniel P. Berrangé 2018-02-14 Jiri Denemark spec: Drop checks for old Fedora releases The oldest Fedora release supported by the spec file is 26. Checking for anything older makes no sense. Reviewed-by: Daniel P. Berrangé 2018-02-14 Jiri Denemark spec: Build virt-login-shell iff LXC driver is enabled Building virt-login-shell doesn't really make any sense without LXC and doing so even breaks "make rpm" since the associated files are installed but unpackaged (the login-shell sub package already depends on LXC). Reviewed-by: Daniel P. Berrangé 2018-02-14 Jiri Denemark spec: Enable fuse only if LXC is enabled Enabling fuse without LXC does not make a lot of sense because fuse is used only by LXC. Reviewed-by: Daniel P. Berrangé 2018-02-14 Michal Privoznik qemu: Check for down limit of SLIRP prefix too https://bugzilla.redhat.com/show_bug.cgi?id=1515533 We're already checking if IPv4 prefix isn't too long. But we are not checking if it isn't too short. QEMU supports prefixes longer than 4 (including). I haven't find anything similar related to IPv6 in qemu sources. Reviewed-by: John Ferlan 2018-02-14 Peter Krempa qemu: block: Remove misleading part of comment in qemuBlockStorageSourceBuildJSONSocketAddress The array indexes are formatted if the JSON->commandline translator is translating an array type. It does not at all depend on this function. 2018-02-13 Bjoern Walk tests: run virshtest independent of current pwd virshtest execves the virsh binary. Make sure that it finds the binary's location independent of the current working directory by specifying the absolute path as determined by the build environment. Reviewed-by: Marc Hartmayer Reviewed-by: Boris Fiuczynski 2018-02-13 Andrea Bolognani tests: Clean up HPT tests Give them better names and remove some redundancy. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani conf: Improve HPT feature handling Instead of storing separately whether the feature is enabled or not and what resizing policy should be used, store both of them in a single place. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani conf: Improve IOAPIC feature handling Instead of storing separately whether the feature is enabled or not and what driver should be used, store both of them in a single place. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani qemu: Fix GIC behavior for the default case When no GIC version is specified, we currently default to GIC v2; however, that's not a great default, since guests will fail to start if the hardware only supports GIC v3. Change the behavior so that a sensible default is chosen instead. That basically means using the same algorithm whether the user didn't explicitly enable the GIC feature or they explicitly enabled it but didn't specify any GIC version. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani tests: Improve GIC tests Account for the fact that the default might change based on what GIC versions are supported by QEMU. That's not the case at the moment, but it will be soon. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani conf: Integrate all features ABI checks in the switch There are a few stray checks which still live outside of the switch in virDomainDefFeaturesCheckABIStability() for no good reason. Move them inside the switch, and update the error messages to be consistent while at it. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani conf: Validate VIR_DOMAIN_FEATURE_CAPABILITIES properly Unlike most other features, VIR_DOMAIN_FEATURE_CAPABILITIES is of type virDomainCapabilitiesPolicy instead of virTristateSwitch, so we need to handle it separately for the error message to make sense. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani conf: Use switch in virDomainDefFeaturesCheckABIStability() The compiler can make sure we are handling all features. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani qemu: Move GIC checks to qemuDomainDefValidateFeatures() Keep them along with other arch/machine type checks for features instead of waiting until command line generation time. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani qemu: Use switch in qemuDomainDefValidateFeatures() The compiler can make sure we are handling all features. While reworking the logic, also change error messages to a more consistent style. Reviewed-by: John Ferlan 2018-02-13 Andrea Bolognani qemu: Move feature verification from PostParse() to Validate() We want to perform all feature verification in a single spot, but some of it (eg. GIC) is currently being performed at command line generation time, and moving it to PostParse() would cause guests to disappear. Moving verification to Validate() allows us to side-step the issue. Reviewed-by: John Ferlan 2018-02-12 Andrea Bolognani qemu: Fix indentation in qemuBuildControllerDevStr() Add braces around the multi-line body as well, in compliance with our coding style. 2018-02-12 Daniel P. Berrangé Revert "qemu: Expose rx/tx_queue_size in qemu.conf too" This reverts commit 038eb472a0d970a17ccf4343ead0666df5c92f9d. On reflection adding defaults for arbitrary guest XML device config settings to the qemu.conf is not a sustainable path. Removing the support for rx/tx queue size so that it doesn't set a bad precedent. 2018-02-12 John Ferlan qemu: Alter condition to avoid possible NULL deref Commit 'f0f2a5ec2' neglected to adjust the if condition to split out the possibility that the @watchdog is NULL when altering the message to add detail about the model. Just split out the condition and use previous/original message, but with the new message code. Found by Coverity 2018-02-12 Daniel P. Berrangé tests: fix running of qemuxml2argvtest program The previous commit: commit a455d41e3e1c1af3a36ccdbb2e3f2356cc58993e Author: Daniel P. Berrangé Date: Thu Jan 25 09:35:50 2018 +0000 conf: expand network device callbacks to cover resolving NIC type mistakenly dropped qemuxml2argvtest from the tests due to a typo. 2018-02-12 Daniel P. Berrangé log: fix deadlock obtaining hostname (related CVE-2018-6764) The fix for CVE-2018-6764 introduced a potential deadlock scenario that gets triggered by the NSS module when virGetHostname() calls getaddrinfo to resolve the hostname: #0 0x00007f6e714b57e7 in futex_wait #1 futex_wait_simple #2 __pthread_once_slow #3 0x00007f6e71d16e7d in virOnce #4 0x00007f6e71d0997c in virLogInitialize #5 0x00007f6e71d0a09a in virLogVMessage #6 0x00007f6e71d09ffd in virLogMessage #7 0x00007f6e71d0db22 in virObjectNew #8 0x00007f6e71d0dbf1 in virObjectLockableNew #9 0x00007f6e71d0d3e5 in virMacMapNew #10 0x00007f6e71cdc50a in findLease #11 0x00007f6e71cdcc56 in _nss_libvirt_gethostbyname4_r #12 0x00007f6e724631fc in gaih_inet #13 0x00007f6e72464697 in __GI_getaddrinfo #14 0x00007f6e71d19e81 in virGetHostnameImpl #15 0x00007f6e71d1a057 in virGetHostnameQuiet #16 0x00007f6e71d09936 in virLogOnceInit #17 0x00007f6e71d09952 in virLogOnce #18 0x00007f6e714b5829 in __pthread_once_slow #19 0x00007f6e71d16e7d in virOnce #20 0x00007f6e71d0997c in virLogInitialize #21 0x00007f6e71d0a09a in virLogVMessage #22 0x00007f6e71d09ffd in virLogMessage #23 0x00007f6e71d0db22 in virObjectNew #24 0x00007f6e71d0dbf1 in virObjectLockableNew #25 0x00007f6e71d0d3e5 in virMacMapNew #26 0x00007f6e71cdc50a in findLease #27 0x00007f6e71cdc839 in _nss_libvirt_gethostbyname3_r #28 0x00007f6e71cdc724 in _nss_libvirt_gethostbyname2_r #29 0x00007f6e7248f72f in __gethostbyname2_r #30 0x00007f6e7248f494 in gethostbyname2 #31 0x000056348c30c36d in hosts_keys #32 0x000056348c30b7d2 in main Fortunately the extra stuff virGetHostname does is totally irrelevant to the needs of the logging code, so we can just inline a call to the native hostname() syscall directly. 2018-02-12 Peter Krempa qemu: command: Extract formatting of floppy related stuff into a helper The floppy command formatting is special-cased since it does not directly translate to a single '-device' argument. Move the code from qemuBuildDiskDriveCommandLine to a new helper function so that all the related code is together. 2018-02-12 Chen Hanxiao qemu: don't leak in qemuGetDHCPInterfaces when failing to alloc We forgot to free alloced mem when failed to dup ifname or macaddr. Also use VIR_STEAL_PTR to simplify codes. 2018-02-09 Chen Hanxiao util: virnetlink: Fix the parameter description of functions Some of function comments don't have the right named parameters and others are not consistent with the description alignment. This patch fixes this. 2018-02-09 Andrea Bolognani qemu: Remove redundancy from qemuBuildControllerDevStr() Several PCI controllers have the same options, and thus can be handled together. Reviewed-by: John Ferlan 2018-02-09 Andrea Bolognani qemu: Error out on invalid pci-root controller model name This is a hard error, and should be handled as such. Introduced in 24614760228b. Reviewed-by: John Ferlan 2018-02-09 Andrea Bolognani qemu: Fix indentation in qemuDomainDeviceDefValidateControllerPCI() 2018-02-09 Daniel P. Berrangé rpc: export xdr_virNetMessageError for virnetmessagetest on Win32 The Win32 symbol export file format can't do wildcards, so none of the 'xdr_*' symbols are exported from the libvirt DLL. This doesn't matter generally since the RPC client is built into the DLL and we don't build libvirtd on Win32. The virnetmessagetest, however, does require xdr_virNetMessageError to be exported, so just do a hack for that. 2018-02-09 John Ferlan lockd: Install the admin sockets Commit id 'ce7ae55e' added support for the lockd admin socket, but forgot to add the socket to the make and spec files for installation purposes. Reviewed-by: Daniel P. Berrange 2018-02-09 John Ferlan logd: Install the admin sockets Commit id '85d45ff0' added support for the logd admin socket, but forgot to add the socket to the make and spec files for installation purposes. NB: Includes breaking up the long %systemd_ lists across multiple lines for ease of reading Reviewed-by: Daniel P. Berrange 2018-02-09 Daniel P. Berrange docs: document requirement to provide Signed-off-by lines for DCO Document that contributors are required to assert compliance with the Developers Certification of Origin 1.1, by providing Signed-off-by tags for all commit messages. The DCO is formally stating what we have long implicitly expected of contributors in terms of their legal rights to make the contribution. This puts the project in a stronger position should any questions around contributions be raised going forward in the future. 2018-02-09 Daniel P. Berrangé cfg: forbid includes of headers in network and storage drivers again Loadable drivers must never depend on each other. Over time some usage mistakenly crept in for the storage and network drivers, but now this is eliminated the syntax-check rules can enforce this separation once more. 2018-02-09 Daniel P. Berrangé build: passing the "-z defs" linker flag to prevent undefined symbols Undefined symbols are a bad thing in general because they can get resolved in unexpected ways at runtime if multiple sources provide the same symbol name. For example both glibc and libtirpc may provide XDR symbols and we want to ensure that we resolve to libtirpc if that's what we originally built against. The toolchain maintainers thus strongly recommend that all applications use the '-z defs' linker flag to prevent undefined symbols. This is shortly becoming part of the default linker flags for RPMs. As an added benefit this aligns Linux builds with Windows builds, where the linker has never permitted undefined symbols. 2018-02-09 Daniel P. Berrangé build: provide a AM_FLAGS_MOD for loadable modules Dynamic loadable modules all need a common set of linker flags -module -avoid-version $(AM_LDFLAGS) Bundle those up into a $(AM_LDFLAGS_MOD) to avoid repetition. 2018-02-09 Daniel P. Berrangé build: explicitly link all modules with libvirt.so The dlopened modules we currently build all use various symbols from libvirt.so, but don't actually link to it. They rely on the libvirtd daemon re-exporting the libvirt.so symbols. This means that at the time the modules are linked, they contain a huge number of undefined symbols. It also means that these undefined symbols are not versioned, so despite us providing a LIBVIRT_PRIVATE_XXXX version that intentionally changes on every release, the loadable modules could actually be loaded into any libvirtd regardless of version. This change explicitly links all modules against libvirt.so so that they don't rely on the re-export behave and can be fully resolved at build time. This will give us a stronger guarantee modules will actually be loadable at runtime and that we're using modules from the matched build. 2018-02-09 Daniel P. Berrangé storage: export virStoragePoolLookupByTargetPath as a public API The storagePoolLookupByTargetPath() method in the storage driver is used by the QEMU driver during block migration. If there's a valid use case for this in the QEMU driver, then external apps likely have similar needs. Exposing it in the public API removes the direct dependancy from the QEMU driver to the storage driver. conf: move virStorageTranslateDiskSourcePool into domain conf The virStorageTranslateDiskSourcePool method modifies a virDomainDiskDef to resolve any storage pool reference. For some reason this was added into the storage driver code, despite working entirely in terms of the public APIs. Move it into the domain conf file and rename it to match the object it modifies. network: remove conditional declarations The networkDnsmasqConfContents() method is only used by the test suite and that's only built with WITH_NETWORK is set. So there is no longer any reason to conditionalize the declaration of this method. 2018-02-09 Daniel P. Berrangé conf: expand network device callbacks to cover resolving NIC type Currently the QEMU driver will call directly into the network driver impl to modify resolve the atual type of NICs with type=network. It has todo this before it has allocated the actual NIC. This introduces a callback system to allow us to decouple the QEMU driver from the network driver. This is a short term step, as it ought to be possible to achieve the same end goal by simply querying XML via the public network API. The QEMU code in question though, has no virConnectPtr conveniently available at this time. 2018-02-09 Daniel P. Berrangé qemu: replace networkGetNetworkAddress with public API calls The QEMU driver calls into the network driver to get the first IP address of the network. This information is readily available via the formal public API by fetching the XML doc and then parsing it. conf: expand network device callbacks to cover bandwidth updates Currently the QEMU driver will call directly into the network driver impl to modify network device bandwidth for interfaces with type=network. This introduces a callback system to allow us to decouple the QEMU driver from the network driver. conf: introduce callback registration for domain net device allocation Currently virt drivers will call directly into the network driver impl to allocate domain interface devices where type=network. This introduces a callback system to allow us to decouple the virt drivers from the network driver. 2018-02-09 Daniel P. Berrangé build: link libvirt_lxc against libvirt.so Rather than static linking in various of the helper libraries to libvirt_lxc, just link against the main libvirt.so. This is more memory and time efficient because it will already be cached in memory and sharable between processes. CAPNG flags need adding because the LXC code directly calls various libcapng APIs and no longer inherits the CAPNG flags via the statically linked .a libs. 2018-02-09 Daniel P. Berrangé rpc: don't link in second copy of RPC code to libvirtd & lockd plugin The libvirt_driver_remote.la static library is linked into the libvirt.so dynamic library, providing both the generic RPC layer code and the remote protocol client driver. The libvirtd daemon the itself links to libvirt_driver_remote.la, in order to get access to the generic RPC layer code and the XDR functions for the remote driver. This means we get multiple copies of the same code in libvirtd, one direct and one indirect via libvirt.so. The same mistake affects the lockd plugin. The libvirtd daemon should instead just link aganist the generic RPC layer code that's in libvirt.so. This is easily doable if we add exports for the few symbols we've previously missed, and wildcard export xdr_* to expose the auto-generated XDR marshallers. 2018-02-09 Daniel P. Berrangé storage: move storage file backend framework into util directory The QEMU driver loadable module needs to be able to resolve all ELF symbols it references against libvirt.so. Some of its symbols can only be resolved against the storage_driver.so loadable module which creates a hard dependancy between them. By moving the storage file backend framework into the util directory, this gets included directly in the libvirt.so library. The actual backend implementations are still done as loadable modules, so this doesn't re-add deps on gluster libraries. 2018-02-09 Daniel P. Berrangé storage: extract storage file backend from main storage driver backend The storage driver backends are serving the public storage pools API, while the storage file backends are serving the internal QEMU driver and / or libvirt utility code. To prep for moving this storage file backend framework into the utility code, split out the backend definitions. 2018-02-08 Tiago M. Vieira fix regex to check CN from server certificate Currently when the script validates the PKI files and the certificate 'Subject:' field contains RDNs after the Common Name (CN), these values are also included, creating a false result that the CN is not correct. A small change to the sed regex fixes this issue, by extracting only the value for CN and nothing else. The regex is replaced with the exact same regex used to extract the CN value from the client certificate. 2018-02-08 Christian Ehrhardt AUTHORS: Add myself to the list of committers 2018-02-07 Andrea Bolognani util: Fix syntax-check Broken by 759b4d1b0fe5f4d84d98b99153dfa7ac289dd167. 2018-02-07 Lubomir Rintel virlog: determine the hostname on startup CVE-2018-6764 At later point it might not be possible or even safe to use getaddrinfo(). It can in turn result in a load of NSS module. Notably, on a LXC container startup we may find ourselves with the guest filesystem already having replaced the host one. Loading a NSS module from the guest tree would allow a malicous guest to escape the confinement of its container environment because libvirt will not yet have locked it down. 2018-02-07 Viktor Mihajlovski qemu: Limit refresh of CPU halted state to s390 Refreshing the halted state can cause VM performance issues. Since s390 is currently the only architecture with a known interest in the halted state, we're avoiding to call QEMU on other platforms. 2018-02-07 Peter Krempa qemu: domain: Store vcpu halted state as a tristate Since it may be possible that the state is unknown in some cases we should store it as a tristate so that other code using it can determine whether the state was updated. qemu: Remove unused 'cpuhalted' argument from qemuDomainHelperGetVcpus The halted state is no longer extracted using this helper so the argument can be removed. qemu: driver: Extract vcpu halted state directly Don't extract the halted state into a separate array, but rater access the vcpu structures directly. We still need to call the vcpu helper to retrieve the performance statistics though. 2018-02-07 Michal Privoznik conf: Check for NUMA distances in validity check NUMA distances are part of guest ABI (guests can read it directly!) and therefore as such shouldn't change throughout the lifetime of domain. 2018-02-06 Guido Günther apparmor: allow libvirt to send term signal to unconfined Otherwise stopping domains with qemu://session fails like [164012.338157] audit: type=1400 audit(1516202208.784:99): apparmor="DENIED" operation="signal" profile="/usr/sbin/libvirtd" pid=18835 comm="libvirtd" requested_mask="send" denied_mask="send" signal=term peer="unconfined" 2018-02-06 Shivaprasad G Bhat virt-aa-helper: Set the supported features The virt-aa-helper fails to parse the xmls with the memory/cpu hotplug features or user assigned aliases. Set the features in xmlopt->config for the parsing to succeed. Tested-by: Christian Ehrhardt Reviewed-by: Christian Ehrhardt 2018-02-06 John Ferlan qemu: Initialize @priv in qemuDomainCoreDumpWithFormat Fix for a CI build failure docs: Add news article for query memory-only dump processing percentage Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Allow showing the dump progress for memory only dump https://bugzilla.redhat.com/show_bug.cgi?id=916061 If the QEMU version running is new enough (based on the DUMP_COMPLETED event), then we can add a 'detach' boolean to the dump-guest-memory command in order to tell QEMU to run in a thread. This ensures that we don't lock out other commands while the potentially long running dump memory is completed. This allows the usage of a qemuDumpWaitForCompletion which will wait for the event while the qemuDomainGetJobInfoDumpStats can be used via qemuDomainGetJobInfo in order to query QEMU to determine how far along the job is. Now that we have a true async job, we'll only set the dump_memory_only flag only when @detach=false; otherwise, we note that the job is a for stats dump this allows the opposite end for job info to determine what to copy. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Add new parameter to qemuMonitorDumpToFd Add a @detach parameter to the API in order allow running the QEMU code as a thread. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Introduce qemuDomainGetJobInfoDumpStats Add an API to allow fetching the memory only dump statistics for a job via the qemuDomainGetJobInfo API. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Introduce qemuMonitor[JSON]QueryDump Add the query-dump API's in order to allow the dump-guest-memory to be used to monitor progress. This will use the dump stats extraction helper to fill a return buffer. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Introduce qemuProcessHandleDumpCompleted Handle a DUMP_COMPLETED event processing the status, stats, and error string. Use the @status in order to copy the error that was generated whilst processing the @stats data. If an error was provided by QEMU, then use that instead. If there's no async job, we can just ignore the data. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Add support for DUMP_COMPLETED event The event will be fired when the domain memory only dump completes. Fill in a return buffer to store/pass along the dump statistics that will be eventually shared by a query-dump command. Also pass along the status of the filling and any possible error received. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Introduce QEMU_DOMAIN_JOB_STATS_TYPE_MEMDUMP Define the qemuMonitorDumpStats as a new job JobStatsType to handle being able to get memory dump statistics. For now do nothing with the new TYPE_MEMDUMP. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Introduce QEMU_DOMAIN_JOB_STATS_TYPE_SAVEDUMP Add a TYPE_SAVEDUMP so that when coalescing stats for a save or dump we don't needlessly try to get the mirror stats for a migration. Other conditions can still use MIGRATION and SAVEDUMP interchangably including usage of the @migStats field to fetch/store the data. Reviewed-by: Jiri Denemark 2018-02-06 John Ferlan qemu: Convert jobInfo stats into a union Convert the stats field in _qemuDomainJobInfo to be a union. This will allow for the collection of various different types of stats in the same field. When starting the async job that will end up being used for stats, set the @statsType value appropriately. The @mirrorStats are special and are used with stats.mig in order to generate the returned job stats for a migration. Using the NONE should avoid the possibility that some random async job would try to return stats for migration even though a migration is not in progress. For now a migration and a save job will use the same statsType Reviewed-by: Jiri Denemark 2018-02-05 Peter Krempa util: bitmap: Note that shrinking the bitmap requires clearing of unused bits Note the fact that the unused portion of the last element in the bitmap needs to be cleared, since we use functions which process only full-size elements and don't really deal with individual bits. 2018-02-05 Peter Krempa util: bitmap: Use VIR_SHRINK_N in virBitmapShrink The function only reduces the size of the bitmap thus we can use the appropriate shrinking function which also does not have any return value. Since virBitmapShrink now does not return any value callers need to be fixed as well. 2018-02-05 Peter Krempa util: bitmap: Fix value of 'map_alloc' when shrinking bitmap The virBitmap code uses VIR_RESIZE_N to do quadratic scaling, which means that along with the number of requested map elements we also need to keep the number of actually allocated elements for the scaling algorithm to work properly. The shrinking code did not fix 'map_alloc' thus virResizeN might actually not expand the bitmap properly after called on a previously shrunk bitmap. 2018-02-05 Peter Krempa util: bitmap: Add comments for functions which don't have them virBitmap code is thoroughly documented. Add docs for the few functions missing them. util: bitmap: Fix function formatting and spacing util: bitmap: Rename 'max_bit' to 'nbits' 'max_bit' is misleading as the value is set to the first invalid bit as it's used as the number of bits in the bitmap. Rename it to a more descriptive name. 2018-02-05 Martin Kletzander qemu: Refresh capabilities when creating resctrl allocation Since one of the things in capabilities (info from resctrl updated with data about caches) can be change on the system by remounting the /sys/fs/resctrl with different options, the capabilities need to be refreshed. There is a better fix in the works, but it's going to be way bigger than this (hence the XXX note there), so for the time being let's workaround this. And in order not to slow down the domain starting, only get the capabilities if there are any cachetunes. Relates-to: https://bugzilla.redhat.com/show_bug.cgi?id=1540780 2018-02-05 Martin Kletzander util: Check if kernel-provided info is consistent with itself Just in case someone re-mounted /sys/fs/resctrl with different mount options (cdp), add a check here. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1540780 2018-02-05 Marc Hartmayer qemu: Add and use qemuProcessEventFree for freeing qemuProcessEvents Add and use qemuProcessEventFree for freeing qemuProcessEvents. This is less error-prone as the compiler can help us make sure that for every new enumeration value of qemuProcessEventType the qemuProcessEventFree function has to be adapted. All process*Event functions are *only* called by qemuProcessHandleEvent and this function does the freeing by itself with qemuProcessEventFree. This means that an explicit freeing of processEvent->data is no longer required in each process*Event handler. The effectiveness of this change is also demonstrated by the fact that it fixes a memory leak of the panic info data in qemuProcessHandleGuestPanic. Reported-by: Wang Dong Reviewed-by: Boris Fiuczynski 2018-02-05 Marc Hartmayer qemu: Use the return value of virObjectRef directly Use the return value of virObjectRef directly. This way, it's easier for another reader to identify the reason why the additional reference is required. Reviewed-by: Boris Fiuczynski Reviewed-by: Bjoern Walk 2018-02-03 John Ferlan netserver: Remove ServiceToggle during ServerDispose No sense in calling ServiceToggle for all nservices during ServiceDispose since ServerClose calls ServiceClose which removes the IOCallback that's being toggled via ServiceToggle. Reviewed-by: Erik Skultety 2018-02-02 John Ferlan qemu: Add dump completed event to the capabilities Add the DUMP_COMPLETED check to the capabilities. This is the mechanism used to determine whether the dump-guest-memory command can support the "-detach" option and thus be able to wait on the event and allow for a query of the progress of the dump. Reviewed-by: Jiri Denemark 2018-02-02 John Ferlan qemu: Introduce qemuDomainGetJobInfoMigrationStats Extract out the parts of qemuDomainGetJobStatsInternal that get the migration stats. We're about to add the ability to get just dump information. Reviewed-by: Jiri Denemark 2018-02-02 Laine Stump vbox: fix SEGV during dumpxml of a serial port commit 77a12987a48 changed the "virDomainChrSourceDef source" inside virDomainChrDef to "virDomainChrSourceDefPtr source", and started allocating source inside virDomainChrDefNew(), but vboxDumpSerial() was allocating a virDomainChrDef with a simple VIR_ALLOC() (i.e. never calling virDomainChrDefNew()), so source was never initialized, leading to a SEGV any time a serial port was present. The same problem was created in vboxDumpParallel(). This patch changes vboxDumpSerial() and vboxDumpParallel() to use virDomainChrDefNew() instead of VIR_ALLOC(), and changes both of those functions to return an error if virDomainChrDef() (or any other allocation) fails. This resolves: https://bugzilla.redhat.com/1536649 2018-02-02 John Ferlan nwfilter: Remove unnecessary UUID comparison bypass Remove the unnecessary check as since commit id '46a811db07' it is not possible to add or alter a filter using the same name, but with a different UUID. NB: It's not required to provide a UUID for a filter by name, but if one is provided, then it must match the existing. If not provided, then one is generated during ParseXML processing. Reviewed-by: Laine Stump Reviewed-by: Stefan Berger 2018-02-02 John Ferlan util: Remove unnecessary initialization VIR_ALLOC will already initialize, so no need to do it again. 2018-02-02 Marc Hartmayer qemu: Use switch statement for address types in qemuBuildControllerDevStr Use a switch statement instead of if-else-if statements. Move the command line building of the iothread attribute into the common path as the SCSI controller attributes are already validated. 2018-02-02 John Ferlan qemu: Introduce qemuDomainDeviceDefValidateControllerSATA Move the SATA controller check from command line building to controller def validation. This includes copying the SATA skip check found in qemuBuildSkipController. 2018-02-02 John Ferlan qemu: Complete PCI command checks to controller def validate Move the qemuCaps checks over to qemuDomainControllerDefValidatePCI. This requires two test updates in order to set the correct capability bit for an xml2xml test as well as setting up the similar capability for the pseries memlocktest. 2018-02-02 John Ferlan qemu: Move more PCI command checks to controller def validate Excluding the qemuCaps checks, move the remainder of the checks that validate whether the PCI definition is valid or not into qemuDomainControllerDefValidatePCI. 2018-02-02 John Ferlan qemu: Move PCI command modelName TypeToString to controller def validate Similar to the checking the modelName vs. NAME_NONE, let's make the ModelNameTypeToString check more generic too within the checking done in controller validation (with the same ignore certain models. NB: We need to keep the ModelNameTypeToString fetch in command line validation since we use it, but at least we can assume it returns something valid now. 2018-02-02 John Ferlan qemu: Move PCI command modelName check to controller def validate Move the various modelName == NAME_NONE from the command line generation into domain controller validation. Also rather than have multiple cases with the same check, let's make the code more generic, but also note that it was the modelName option that caused the failure. We also have to be sure not to check the PCI models that we don't care about. For the remaining checks in command line building, we can use the field name in the error message to be more specific about what causes the failure. 2018-02-02 John Ferlan qemu: Use virDomainPCIControllerOpts in qemuBuildControllerDevStr Shorten up a few characters and reference the pciopts pointer 2018-02-02 Andrea Bolognani qemu: Add missing checks for pcie-root-port options We format the 'chassis' and 'port' properties on the QEMU command line later on, so we should make sure they've been set. 2018-02-02 John Ferlan qemu: Introduce qemuDomainDeviceDefValidateControllerPCI Move PCI validation checks out of qemu_command into the proper qemu_domain validation helper. Since there's a lot to move, we'll start slow by replicating the pcie-root and pci-root avoidance from qemuBuildSkipController and the first switch found in qemuBuildControllerDevStr. 2018-02-02 John Ferlan qemu: Introduce qemuDomainDeviceDefValidateControllerSCSI Move SCSI validation from qemu_command into qemu_domain. Rename/reorder the args in qemuCheckSCSIControllerIOThreads to match the caller as well as fixing up the comments to remove the previously removed qemuCaps arg. 2018-02-02 John Ferlan qemu: Add check for iothread attribute in validate controller Let's make sure that non SCSI virtio-scsi isn't used for any type other than a virtio-scsi controller. qemu: Adjust SCSI controller switch in qemuBuildControllerDevStr Modify the SCSI controller switch during command line building to account for all virDomainControllerModelSCSI types rather than using the default label. qemu: Move and rename qemuBuildCheckSCSIControllerModel Move to qemu_domain during the validation of controller options and rename qemuDomainCheckSCSIControllerModel. qemu: Introduce qemuDomainDeviceDefValidateControllerAttributes Move the checks that various attributes are not set on any controller other than SCSI controller using virtio-scsi model into the common controller validate checks. 2018-02-02 Martin Kletzander tests: Add test for properly removing cachetune entries Cachetune for unavailable vCPUs should be cleared the same way vcpupin and other things do, so let's add tests for it. 2018-02-02 Martin Kletzander util: Clear unused part of the map in virBitmapShrink Some of the other functions depend on the fact that unused bits and longs are always zero and it's less error-prone to clear it than fix the other functions. It's enough to zero out one piece of the map since we're calling realloc() to get rid of the rest (and updating map_len). Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1540817 2018-02-02 Martin Kletzander util: Fix possible leak in virResctrlAllocMasksAssign Found by coverity. 2018-02-02 Daniel P. Berrangé rpc: fix non-NULL annotations when GNUTLS is disabled The position of various parameters changes depending on the WITH_GNUTLS macro. Reviewed-by: John Ferlan 2018-02-02 Daniel P. Berrangé rpc: assume private data callbacks are always non-NULL Since we annotate the APIs are having non-NULL parameters, we can remove the checks for NULL in the code too. Reviewed-by: John Ferlan 2018-02-02 Daniel P. Berrangé tests: validate private data / pre / post exec hooks for RPC APIs Validate that the virNetServer(Client) RPC APIs are processing the private data callbacks correctly by passing in non-NULL pointers. Reviewed-by: John Ferlan 2018-02-02 Michal Privoznik qemuDomainRemoveMemoryDevice: unlink() memory backing file https://bugzilla.redhat.com/show_bug.cgi?id=1461214 Since fec8f9c49af we try to use predictable file names for 'memory-backend-file' objects. But that made us provide full path to qemu when hot plugging the object while previously we provided merely a directory. But this makes qemu behave differently. If qemu sees a path terminated with a directory it calls mkstemp() and unlinks the file immediately. But if it sees full path it just calls open(path, O_CREAT ..); and never unlinks the file. Therefore it's up to libvirt to unlink the file and not leave it behind. 2018-02-02 Peter Krempa qemu: migration: Refresh device information after transferring state In my first approach in 4b480d10768c I overlooked the comment in qemuMigrationRunIncoming stating that during actual migration the qemuMigrationRunIncoming does not wait until the migration is complete but rather offloads that to the Finish phase of migration. This means that during actual migration qemuProcessRefreshState was called prior to qemu actually transferring the full state and thus the queries did not get the correct information. The approach worked only for restore, where we wait for the migration to finish during qemu startup. Fix the issue by calling qemuProcessRefreshState both from qemuProcessStart if there's no incomming migration and from qemuMigrationFinish so that the code actually works as expected. 2018-02-02 Michal Privoznik qemu: Expose rx/tx_queue_size in qemu.conf too In 2074ef6cd4a2 and c56cdf259 (and friends) we've added two attributes to virtio NICs: rx_queue_size and tx_queue_size. However, sysadmins might want to set these on per-host basis but don't necessarily have an access to domain XML (e.g. because they are generated by some other app). So let's expose them under qemu.conf (the settings from domain XML still take precedence as they are more specific ones). Reviewed-by: John Ferlan 2018-02-01 Jie Wang blockjob: Fix a error checking of blockjob status in some case Commit id 'bc444666f' added a check if the returned data buffer had an error, but failed to adjust the event from VIR_DOMAIN_BLOCK_JOB_COMPLETED to VIR_DOMAIN_BLOCK_JOB_FAILED in order to propagate an error such as "File descriptor in bad state" that may be returned from QEMU when both @offset and @len are set to 0 such as is the case when performing an async block job read on a read only filesystem. Reviewed-by: John Ferlan 2018-02-01 Chen Hanxiao news: Add VIR_ERR_DEVICE_MISSING change as improvements Reviewed-by: John Ferlan 2018-02-01 Chen Hanxiao qemu: Use VIR_ERR_DEVICE_MISSING for various coldplug messages Use the DEVICE_MISSING error code when helpers fail to find the requested device. This makes it easier for consumers to key off the error code rather than the error message. Reviewed-by: John Ferlan 2018-02-01 Chen Hanxiao qemu: Use VIR_ERR_DEVICE_MISSING for various hotplug messages Modify OPERATION_FAILED and INTERNAL_ERROR error codes to use DEVICE_MISSING instead for failures associated with the inability to find the device. This makes it easier for consumers to key off the error code rather than the error message. Reviewed-by: John Ferlan 2018-02-01 Chen Hanxiao qemu: Introduce VIR_ERR_DEVICE_MISSING Add new error code to be able to allow consumers (such as Nova) to be able to key of a specific error code rather than needing to search the error message." Reviewed-by: John Ferlan 2018-02-01 Chen Hanxiao qemu: Add some more details for hotplug errors when device not found More proper/detail error messages updated. Reviewed-by: John Ferlan 2018-02-01 Andrea Bolognani conf: Small indentation and coding style fixes 2018-01-31 Daniel P. Berrangé admin: set XDR_CFLAGS when building admin server The XDR_CFLAGS variable is needed when the XDR headers are not part of the stock glibc install storage: remove virConnectPtr from all backend functions Now that we can open connections to the secondary drivers on demand, there is no need to pass a virConnectPtr into all the backend functions. storage: open nodedev driver connection at time of use Instead of passing around a virConnectPtr object, just open a connection to the nodedev driver at time of use. Opening connections on demand will be beneficial when the nodedev driver is in a separate daemon. It also solves the problem that a number of callers just pass in a NULL connection today which prevents nodedev lookup working at all. storage: open secret driver connection at time of use Instead of passing around a virConnectPtr object, just open a connection to the secret driver at time of use. Opening connections on demand will be beneficial when the secret driver is in a separate daemon. It also solves the problem that a number of callers just pass in a NULL connection today which prevents secret lookup working at all. driver: add some helpers for opening secondary driver connections Various parts of libvirt will want to open connections to secondary drivers. The right URI to use will depend on the context, so rather than duplicating that logic in various places, use some helper APIs. This will also make it easier for us to later pre-open/cache connections to avoid repeated opening & closing the same connectiong during autostart. 2018-01-31 Daniel P. Berrangé secret: allow opening with secret:///system and secret:///session URIs Allow the possibility of opening a connection to only the secret driver, by defining secret:///system and secret:///session URIs and registering a fake hypervisor driver that supports them. The hypervisor drivers can now directly open a secret driver connection at time of need, instead of having to pass around a virConnectPtr through many functions. This will facilitate the later change to support separate daemons for each driver. 2018-01-31 Daniel P. Berrangé nodedev: allow opening with nodedev:///system and nodedev:///session URIs Allow the possibility of opening a connection to only the nodedev driver, by defining nodedev:///system and nodedev:///session URIs and registering a fake hypervisor driver that supports them. The hypervisor drivers can now directly open a nodedev driver connection at time of need, instead of having to pass around a virConnectPtr through many functions. This will facilitate the later change to support separate daemons for each driver. 2018-01-31 Daniel P. Berrangé interface: allow opening with interface:///system and interface:///session URIs Allow the possibility of opening a connection to only the interface driver, by defining interface:///system and interface:///session URIs and registering a fake hypervisor driver that supports them. The hypervisor drivers can now directly open a interface driver connection at time of need, instead of having to pass around a virConnectPtr through many functions. This will facilitate the later change to support separate daemons for each driver. 2018-01-31 Daniel P. Berrangé nwfilter: allow opening with nwfilter:///system URI Allow the possibility of opening a connection to only the storage driver, by defining a nwfilter:///system URI and registering a fake hypervisor driver that supports it. The hypervisor drivers can now directly open a nwfilter driver connection at time of need, instead of having to pass around a virConnectPtr through many functions. This will facilitate the later change to support separate daemons for each driver. 2018-01-31 Daniel P. Berrangé network: allow opening with network:///system and network:///session URIs Allow the possibility of opening a connection to only the network driver, by defining network:///system and network:///session URIs and registering a fake hypervisor driver that supports them. The hypervisor drivers can now directly open a network driver connection at time of need, instead of having to pass around a virConnectPtr through many functions. This will facilitate the later change to support separate daemons for each driver. 2018-01-31 Daniel P. Berrangé network: move driver registration back to end of the file By convention the last thing in the driver.c files should be the driver callback table and function to register it. 2018-01-31 Daniel P. Berrangé storage: allow opening with storage:///system and storage:///session URIs Allow the possibility of opening a connection to only the storage driver, by defining storage:///system and storage:///session URIs and registering a fake hypervisor driver that supports them. The hypervisor drivers can now directly open a storage driver connection at time of need, instead of having to pass around a virConnectPtr through many functions. This will facilitate the later change to support separate daemons for each driver. 2018-01-31 Daniel P. Berrangé storage: move driver registration back to end of the file By convention the last thing in the driver.c files should be the driver callback table and function to register it. 2018-01-31 Daniel P. Berrange util: use union for sockaddr structs to avoid aliasing Some platforms/toolchains will complain about casting sockaddr_storage to sockaddr_un because it breaks strict aliasing rule ../../src/util/virutil.c: In function 'virGetUNIXSocketPath': ../../src/util/virutil.c:2005: error: dereferencing pointer 'un' does break strict-aliasing rules [-Wstrict-aliasing] Change the code to use a union, in the same way that the virsocketaddr.h header does. 2018-01-31 Daniel P. Berrangé tools: unlink bash completion files before symlinking "ln" will not replace an existing symlink, so if you run 'make install' twice, the second time will get an error: ln: failed to create symbolic link 'virsh': File exists We must always remove the symlink target first. 2018-01-31 Daniel P. Berrangé Fixed virGetUNIXSocketPath stub on Win32 The _() macro was not terminated and an argument needs to be marked as unused. 2018-01-31 John Ferlan qemu: Update qemuDomainFindSCSIControllerModel return Now that the controller model is updated during post parse callback, this code no longer needs to fetch the model based on the capabilities and can just return the model directly if the controller is found. Removal of @qemuCaps cascades through various callers which are now updated to not pass the capabilities. 2018-01-31 John Ferlan qemu: Reduce need to call qemuDomainGetSCSIControllerModel Now that post parse processing handles setting the SCSI controller model, there's no need to call qemuDomainGetSCSIControllerModel to get the "default controller" when building the command line controller string or when assigning the spaprvio address since the controller model value will already be filled in. conf: Allow configuration of implicit controller model When an implicit controller is added, the model is defined as -1 (IOW: undefined). So, if an implicit SCSI controller was added, can set the model to the default value if the underlying hypervisor supports it. qemu: Introduce qemuDomainSetSCSIControllerModel During post parse processing, let's force setting the controller model to default value if not already set for defined controllers (e.g. the non implicit ones). 2018-01-31 John Ferlan qemu: Fetch/save the default SCSI controller model during hotplug If we're going to add a controller to the domain, let's set the default SCSI model value if we cannot find another SCSI controller already present. NB: Requires updating the live output test data since the model will now be formatted. 2018-01-31 John Ferlan qemu: Introduce qemuDomainGetSCSIControllerModel Rename and rework qemuDomainSetSCSIControllerModel since we're really not setting the SCSI controller model. Instead the code is either returning the existing SCSI controller model value, the default value based on the capabilities, or -1 with the error set. 2018-01-31 John Ferlan qemu: Introduce qemuDomainFindSCSIControllerModel Rather than repeat multiple steps in order to find the SCSI controller model, let's combine them into one helper that will return either the model from the definition or the default model based on the capabilities. This patch adds an extra check/error that the controller that's being found actually exists. This just clarifies that the error was because the controller doesn't exist rather than the more generic error that we were unable to determine the model from qemuDomainSetSCSIControllerModel when a -1 was passed in and the capabilities were unable to find one. 2018-01-31 John Ferlan conf: Rework and rename virDomainDeviceFindControllerModel As it turns out virDomainDeviceFindControllerModel was only ever called for SCSI controllers using VIR_DOMAIN_CONTROLLER_TYPE_SCSI as a parameter. So rename to virDomainDeviceFindSCSIController and rather than return a model, let's return a virDomainControllerDefPtr to let the caller reference whatever it wants. 2018-01-31 John Ferlan qemu: Split qemuDomainSetSCSIControllerModel Rather than one function serving two purposes, let's split out the else condition which is checking whether the model can be used during command line building based on the capabilities. 2018-01-31 Michal Privoznik virUSBDeviceNew: Construct vroot path properly When starting an LXC container, the /dev entries are created under temp root (/var/run/libvirt/lxc/$name.dev), relabelled and then the root is pivoted. However, when it comes to USB devices which keep path to the device in the structure we need a way to override the default /dev/usb/... path because we want to work with the one under temp root. That's what @vroot argument is for in virUSBDeviceNew. However, what is being passed there is: vroot = /var/run/libvirt/lxc/lxc_0.dev/bus/usb Therefore, constructed path is wrong: dev->path = //var/run/libvirt/lxc/lxc_0.dev/bus/usb//dev/bus/usb/002/002 Reviewed-by: John Ferlan 2018-01-31 Daniel P. Berrangé Check for tabs in augeas files 2018-01-31 Daniel P. Berrange lockd: add support for admin protocol in virtlockd Add a virtlockd-admin-sock can serves the admin protocol for the virtlockd daemon and define a virtlockd:///{system,session} URI scheme for connecting to it. logd: add support for admin protocol in virtlogd Add a virtlogd-admin-sock can serves the admin protocol for the virtlogd daemon and define a virtlogd:///{system,session} URI scheme for connecting to it. 2018-01-31 Daniel P. Berrange rpc: refactor virNetServer setup for post-exec restarts With the current code it is neccessary to call virNetDaemonNewPostExecRestart() and then for each server that needs restarting you are supposed to call virNetDaemonAddSeverPostExecRestart() This is fine if there's only ever one server, but as soon as you have two servers it is impossible to use this design. The code has no idea which servers were recorded in the JSON state doc, nor in which order the hash table serialized its keys. So this patch changes things so that we only call virNetDaemonNewPostExecRestart() passing in a callback, which is invoked once for each server found int he JSON state doc. 2018-01-31 Daniel P. Berrange rpc: add method for checking if a named server exists It is not possible to blindly call virNetDaemonGetServer() because in a post-exec restart scenario, some servers may not exist and this method will pollute the error logs. rpc: annotate various parameters as being required to be non-NULL The server name and client data callbacks need to be non-NULL or the system will crash at various times. This is particularly bad when some of the crashes only occur post-exec restart. rpc: pass virNetServer to post-exec restart callback in typesafe manner The virNetServer class is passing a pointer to itself to the virNetServerClient as a 'void *' pointer. This is presumably due to fact that the virnetserverclient.h file doesn't see the virNetServerPtr typedef. The typedef is easily movable though, which lets us get typesafe parameter passing, removing the confusion of passing two distinct 'void *' pointers to one method. rpc: clarify "void *" values passed to client callbacks util: add virGetUNIXSocketPath helper When receiving multiple socket FDs from systemd, it is critical to know what socket address each corresponds to so we can setup the right protocols on each. admin: add support for post-exec restart callbacks We don't have any per-client private data we need to persist, but the RPC infrastructure requires that we provide the callbacks and serialize an empty JSON object. This makes us future proof going forwards. libvirtd: rename virNetServerClient callback impls to match type names admin: move admins server impl/dispatch into src/admin directory The admin server functionality is a generic concept that should be wired up into all libvirt daemons, but is currently integrated with the libvirtd code. Move it all into the src/admin directory to prepare for broader reuse. 2018-01-31 Michal Privoznik tools: Make symlinks to vsh bash-completion script The bash-completion project documents that only those scripts from $BASH_COMPLETIONS_DIR that share name with the current command for which was hit are loaded [1]. This means, that vsh script we have there is not loaded. We have to create symlinks for virsh and virt-admin. At the same time, we have to create new RPM package because virt-admin and client packages are independent. That means we cannot place the vsh script in either of them. What we can do is to have a different package that contains the completion script and then virt-admin and client packages contain only the symlink and require the bash-completion package. 1: https://github.com/scop/bash-completion#faq 2018-01-31 Michal Privoznik virsh: Offer only persistent domains for autostart The 'autostart' command accepts only persistent domains. Make the completer return only those. virshDomainNameCompleter: Prune accepted flags Only a small subset of VIR_CONNECT_LIST_DOMAINS_* flags are actually used for this completer. Remove the unused ones. Note that this is unrelated to other commands using VIR_CONNECT_LIST_DOMAINS_* (i.e. cmdList) as this commit targets the completer only and nothing else. 2018-01-31 Martin Kletzander qemu: Restore resctrl alloc data after restart During reconnect we need to reconstruct the paths of all cachetunes so that they get cleaned up when the domain is stopped. util: Extract path formatting into virResctrlAllocDeterminePath We can use this from more places later, so just a future code de-duplication. qemu: Restore machinename even without cgroups The virresctrl will use this as well and we need to have that info after restart to properly clean up /sys/fs/resctrl. 2018-01-31 Martin Kletzander util: Don't overwrite mask in virResctrlAllocFindUnused Due to confusing naming the pointer to the mask got copied which must not happen, so use UpdateMask instead of SetMask. That also means we can get completely rid of SetMask. Also don't clear the free bits since it is not used again (leftover from previous versions). 2018-01-31 Martin Kletzander util: Use default group's mask for unspecified resctrl allocations Introduce virResctrlAllocCopyMasks() and use that to initially copy the default group schemata to the allocation before reserving any parts of the cache. The reason for this is that when new group is created the schemata will have unknown data in it. If there was previously group with the same CLoS ID, it will have the previous valies, if not it will have all bits set. And we need to set all unspecified (in the XML) allocations to the same one as the default group. Some non-Linux functions now need to be made public due to this change. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1289368 2018-01-31 Martin Kletzander util: Add helpers for getting resctrl group allocs 2018-01-31 Peter Krempa util: storage: Parse 'lun' for iSCSI protocol from JSON as string or number While the QEMU QAPI schema describes 'lun' as a number, the code dealing with JSON strings does not strictly adhere to this schema and thus formats the number back as a string. Use the new helper to retrieve both possibilities. Note that the formatting code is okay and qemu will accept it as an int. Tweak also one of the test strings to verify that both formats work with libvirt. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1540290 2018-01-31 Peter Krempa util: json: Add helper to return string or number properties as string The helper is useful in cases when the JSON we have to parse may contain one of the two due to historical reasons and the number value itself would be stored as a string. 2018-01-30 Andrea Bolognani conf: Use correct attribute name in error message The feature has an attribute named 'policy', but the error message mentioned the non-existing 'state' attribute instead. 2018-01-30 Peter Krempa storage: util: Properly ignore errors when backing volume is inaccessible Commit 000e9504559 tried to fix improper bracketing when refreshing disk volume stats for a backing volume. Unfortunately the condition is still wrong as in cases as the backing store being inaccessible storageBackendUpdateVolTargetInfo returns -2 if instructed to ignore errors. The condition does not take this into account. Dumping XML of a volume which has inacessible backing store would then result into: # virsh vol-dumpxml http.img --pool default error: An error occurred, but the cause is unknown Properly ignore -2 for backing volumes. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1540022 2018-01-29 Martin Kletzander util: Don't check if entries under /sys/fs/resctrl/(info/) are directories We are skipping non-directories under /sys/fs/resctrl/(info/) since those are not interesting for us. However in tests it can sometimes happen that ent->d_type is 0 instead of 4 (DT_DIR) for directories. I've seen it fail on two machines. Different machines, different systems, I cannot reproduce it even using the same setup. So one of the ways how to work around this is call stat() on it. The other one is not checking if it is a directory since we'll find out eventually when we want to read some files underneath it. 2018-01-29 Martin Kletzander util: Remove unused variable in virResctrlGetInfo util: Make it possible for virResctrlAllocSetMask to replace existing mask This wil be used in the future, but it makes sense for now as well. It makes sure there is no mask leftover that would leak. util: Use "resctrl" instead of "resctrlfs" spelling Pointed out during review on one or two places, but it actually appears in lot more places. So let's be consistent. util: Check for empty allocation instead of just NULL pointer When working on the CAT series one of the changes was that the pointer got allocated in another part of the code, even when resctrl was not available on the host system. However this one particular place neglected that so it needs to be fixed in order to get the proper error message when requesting on HW with no support for it. 2018-01-29 Erik Skultety build: Fix broken build on FreeBSD and OSX after recent nodedev series Commits f83c7c88 and 6eb1f2b9 broke the build on FreeBSD and OSX because of symbols being undefined for those platforms. 2018-01-29 John Ferlan qemu: Fix memory leak in processGuestPanicEvent After processing the processEvent->data for a qemuProcessEventHandler callout, it's expected that the called processEvent->eventType helper will perform the proper free on the data field. In this case it's a qemuMonitorEventPanicInfoPtr. 2018-01-29 Kashyap Chamarthy docs: formatdomain: Document the CPU feature 'name' attribute Currently, the CPU feature 'name' XML attribute, as in: [...] IvyBridge Intel [...] isn't explicitly documented in formatdomain.html. Document it now. 2018-01-29 Erik Skultety conf: nodedev: Update PCI mdev capabilities dynamically Just like SRIOV, a PCI device is only capable of the mediated devices framework when it's bound to the vendor native driver, thus if a driver change occurs, e.g. vendor_native->vfio, we need to refresh some of the device's capabilities to reflect the reality, mdev included. Suggested-by: Wu Zongyong 2018-01-29 Erik Skultety conf: Replace usage of virNodeDevCapMdevType with virMediatedDeviceType Now that we have all the building blocks in place, switch the nodedev driver to use the "new" virMediatedDeviceType type instead of the "old" virNodeDevCapMdevType one. nodedev: udev: Drop the unused mdev type helpers These are not necessary anymore, since these are going to be shadowed by the helpers provided by util/virmdev.c module. util: pci: Introduce virPCIGetMdevTypes helper This is a replacement for the existing udevPCIGetMdevTypesCap which is static to the udev backend. This simple helper constructs the sysfs path from the device's base path for each mdev type and queries the corresponding attributes of that type. util: mdev: Introduce virMediatedDeviceTypeReadAttrs getter This should serve as a replacement for the existing udevFillMdevType which is responsible for fetching the device type's attributes from the sysfs interface. The problem with the existing solution is that it's tied to the udev backend. util: mdev: Introduce virMediatedDeviceType structure This is later going to replace the existing virNodeDevCapMdevType, since: 1) it's going to couple related stuff in a single module 2) util is supposed to contain helpers that are widely accessible across the whole repository. util: mdev: Drop some unused symbols/includes from the header There were some leftovers from early development which never got used. 2018-01-29 Erik Skultety conf: nodedev: Refresh capabilities before touching them Most of them are static, however in case of PCI and SCSI_HOST devices, the nested capabilities can change dynamically, e.g. due to a driver change (from host_pci_driver -> vfio_pci). Suggested-by: Wu Zongyong 2018-01-29 Erik Skultety nodedev: Introduce virNodeDeviceCapsListExport Whether asking for a number of capabilities supported by a device or listing them, it's handled essentially by a copy-paste code, so extract the common stuff into this new helper which also updates all capabilities just before touching them. nodedev: Export nodeDeviceUpdateCaps from node_device_conf.c Since we moved the helpers from nodedev driver to src/conf, the actual 'update' function using those helpers should be moved as well so that we don't need to call back into the driver. nodedev: Move the sysfs-related cap handling to node_device_conf.c The capabilities are defined/parsed/formatted/queried from this module, no reason for 'update' not being part of the module as well. This also involves some module-specific prefix changes. This patch also drops the node_device_linux_sysfs module from the repo since: a) it only contained the capability handlers we just moved b) it's only linked with the driver (by design) and thus unreachable to other modules c) we touch sysfs across all the src/util modules so the module being deleted hasn't been serving its original intention for some time already. nodedev: Drop the nodeDeviceSysfsGetSCSIHostCaps wrapper We can call directly the virNodeDeviceGetSCSIHostCaps helper instead. conf: nodedev: Convert virNodeDevObjHasCapStr to a simple wrapper This patch drops the capability matching redundancy by simply converting the string input to our internal types which are then in turn used for the actual capability matching. conf: nodedev: Rename virNodeDeviceCapMatch to virNodeDevObjHasCap We currently have 2 methods that do the capability matching. This should be condensed to a single function and all the derivates should just call into that using a proper type conversion. conf: nodedev: Rename virNodeDevObjHasCap to virNodeDevObjHasCapStr We currently have 2 methods that do the capability matching. This should be condensed to a single function and all the derivates should just call into that using a proper type conversion. 2018-01-29 Julio Faracco test: Implementing testDomainRename(). There is no method to rename inactive domains for test driver. After this patch, we can rename the domains using 'domrename'. virsh# domrename test anothertest Domain successfully renamed 2018-01-29 Andrea Bolognani tests: Clean up GIC test cases These test cases are supposed to verify GIC support works as expected, and shouldn't concern themselves with other features; we can trim them down significantly, and make them less likely to need updating after unrelated changes. 2018-01-26 ZhiPeng Lu vhost-user: add support reconnect for vhost-user ports For vhost-user ports, Open vSwitch acts as the server and QEMU the client. When OVS crashes or restarts, the QEMU process should be reconnected to OVS. 2018-01-25 John Ferlan docs: Add missing element encryption description term entry Missed adding the "encryption" description term entry to the list of possible sub-elements for disk source. The description details were there, just not the tag. 2018-01-25 Daniel P. Berrangé resctl: stub out functions with Linux-only APIs used The flock() function and d_type field in struct dirent are not portable to the mingw platform. 2018-01-25 Daniel P. Berrange rpc: fix race sending and encoding sasl data The virNetSocketWriteSASL method has to encode the buffer it is given and then write it to the underlying socket. This write is not guaranteed to send the full amount of data that was encoded by SASL. We cache the SASL encoded data so that on the next invocation of virNetSocketWriteSASL we carry on sending it. The subtle problem is that the 'len' value passed into virNetSocketWriteSASL on the 2nd call may be larger than the original value. So when we've completed sending the SASL encoded data we previously cached, we must return the original length we encoded, not the new length. This flaw means we could potentially have been discarded queued data without sending it. This would have exhibited itself as a libvirt client never receiving the reply to a method it invokes, async events silently going missing, or worse stream data silently getting dropped. For this to be a problem libvirtd would have to be queued data to send to the client, while at the same time the TCP socket send buffer is full (due to a very slow client). This is quite unlikely so if this bug was ever triggered by a real world user it would be almost impossible to reproduce or diagnose, if indeed it was ever noticed at all. Reviewed-by: John Ferlan 2018-01-25 Jim Fehlig libxl: resume lock process after failed migration During migration, the lock process is paused in the perform phase but not resumed if there is a subsequent failure, leaving the locked resource unprotected. The perform phase itself can fail, in which case the lock process should be resumed before returning from perform. The finish phase could also fail on the destination host, in which case the migration is canceled in the confirm phase and the VM is resumed. The lock process needs to be resumed there as well. 2018-01-25 Martin Kletzander tests: Clean up and modify some vircaps2xmldata Basically the `cpus` and `tasks` files are not needed, and I've witnessed on a real system that the schemata file may have spaces prepended to a line, so let's adjust at least one test so that it reflects what can happen. Also `000` allocation is invalid and a full mask means it's all free. So adjust for that too. docs: Add CAT (resctrl) support into news.xml 2018-01-25 Martin Kletzander qemu: Add support for resctrl We've been building up to this. This adds support for cputune/cachetune settings for domains in the QEMU driver. The addition into qemuProcessSetupVcpu() automatically adds support for hotplug. For hot-unplug we need to remove the allocation only if all the vCPUs were unplugged. But since the threads are left running, we can't really do much about it now. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1289368 2018-01-25 Martin Kletzander tests: Add virresctrltest This test initializes capabilities from vircaps2xmldata (since it exists there already) and then requests list of free bitmaps (all unallocated space) from virresctrl.c Desirable outputs are saved in virresctrldata. 2018-01-25 Martin Kletzander conf: Add support for cputune/cachetune More info in the documentation, this is basically the XML parsing/formatting support, schemas, tests and documentation for the new cputune/cachetune element that will get used by following patches. 2018-01-25 Martin Kletzander resctrl: Add functions to work with resctrl allocations With this commit we finally have a way to read and manipulate basic resctrl settings. Locking is done only on exposed functions that read/write from/to resctrlfs. Not in functions that are exposed in virresctrlpriv.h as those are only supposed to be used from tests. More information about how resctrl works: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/Documentation/x86/intel_rdt_ui.txt 2018-01-25 Martin Kletzander fixup_resctrlinfo util: Remove now-unneeded resctrl functions conf: Use virResctrlInfo in capabilities util: Add virResctrlInfo This will make the current functions obsolete and it will provide more information to the virresctrl module so that it can be used later. Rename virResctrlInfo to virResctrlInfoPerCache Just to ease the review of following patches. 2018-01-25 Erik Skultety vsh: Cmd aliases lookups should return results for the aliased command Unfortunately, we have a number of aliases in virsh and even though these are not visible any more, we have to support them. The problem is that when trying to print help for the alias, we get SIGSEGV because there isn't any @def structure anymore and we need to query the command being aliased instead. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1538570 2018-01-25 Erik Skultety vsh: Drop redundant definition searches from vshCmd{def,Grp}Help These helpers are called from a single place only - cmdHelp wrapper and just before the wrapper invokes the helpers, it performs the search, either for command group or for the command itself, except the result is discarded and the helper therefore needs to do it again. Drop this inefficient handling and pass the @def structure rather than a name, thus preventing the helper from needing to perform the search again. 2018-01-25 Daniel P. Berrange qemu: add support for generating SMBIOS OEM strings command line This wires up the previously added OEM strings XML schema to be able to generate comamnd line args for QEMU. This requires QEMU >= 2.12 release containing this patch: commit 2d6dcbf93fb01b4a7f45a93d276d4d74b16392dd Author: Daniel P. Berrange Date: Sat Oct 28 21:51:36 2017 +0100 smbios: support setting OEM strings table Reviewed-by: John Ferlan 2018-01-25 Daniel P. Berrange conf: add support for setting OEM strings SMBIOS data fields The OEM strings table in SMBIOS allows the vendor to pass arbitrary strings into the guest OS. This can be used as a way to pass data to an application like cloud-init, or potentially as an alternative to the kernel command line for OS installers where you can't modify the install ISO image to change the kernel args. As an example, consider if cloud-init and anaconda supported OEM strings you could use something like cloud-init:ds=nocloud-net;s=http://10.10.0.1:8000/ anaconda:method=http://dl.fedoraproject.org/pub/fedora/linux/releases/25/x86_64/os use of a application specific prefix as illustrated above is recommended, but not mandated, so that an app can reliably identify which of the many OEM strings are targetted at it. Reviewed-by: John Ferlan 2018-01-25 Shaohe Feng cpu: Add support for al57 Intel features We can start qemu with a "cpu,+la57" to set 57-bit vitrual address space. So VM can be aware that it need to enable 5-level paging. Corresponding QEMU commits: al57 6c7c3c21f95dd9af8a0691c0dd29b07247984122 2018-01-25 Daniel P. Berrangé mailmap: set preferred spelling for my name 2018-01-25 Daniel P. Berrange libxl: add explicit linkage to xenstore library Since commit eee7bd4ecb5a3e83ed47cc89bf0dc4866b4858af Author: Joao Martins Date: Tue Jul 26 00:45:14 2016 +0100 libxl: implement virDomainBlockStats Introduce initial support for domainBlockStats API the libxl driver calls a couple of xenstore APIs, so it must explicitly link to this library rather than rely on indirect linkage via libxl or other xen libraries. Reviewed-by: Jim Fehlig 2018-01-24 Michal Privoznik docs: Mention just implemented completers Reviewed-by: John Ferlan virsh: Introduce virshSnapshotNameCompleter Reviewed-by: John Ferlan 2018-01-24 Michal Privoznik virsh: Introduce virshSecretUUIDCompleter This is a slight change from previous patches since virSecret does not have a name only UUID strings. Reviewed-by: John Ferlan 2018-01-24 Michal Privoznik virsh: Introduce virshNWFilterNameCompleter The virConnectListAllNWFilters() has no extra flags yet, which simplifies things a bit. Reviewed-by: John Ferlan 2018-01-24 Michal Privoznik virsh: Introduce virshNodeDeviceNameCompleter Yet again, we don't need listing by device capabilities, so flags are unused. Reviewed-by: John Ferlan 2018-01-24 Michal Privoznik virsh: Introduce virshNetworkNameCompleter Reviewed-by: John Ferlan virsh: Introduce virshInterfaceNameCompleter Reviewed-by: John Ferlan