mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 20:59:41 +02:00
4b7ae4b6e9
2527 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
a6ed7b60ff |
containerd: update to 2.0-beta
We refresh our GO_FLAGS patch for new context, and drop the install
of v1 or unversioned shims as the runtime-v1 has been dropped
Bumping containerd to version v2.0.0-beta.0-88-g87bf39a7f, which comprises the following commits:
96aaf5a3b Add core and internal root packages
c0363754f sandbox: get runtime info from sandbox or container
95d2a3b7c upgrade: add cri upgrade test case
0bc963341 runtime/v2: net.Dial gRPC shim sockets before trying grpc
e1b495866 sandbox: keep rootDir and stateDir compatible
b0fef6738 sandbox: migrate sandbox_mode to sandboxer
c8012b6d7 sandbox: make a clear dependency of cri plugins
2ead89509 Support gzip and zstd HTTP transport compression to fetch remote resources
8e567aa58 mv pkg/process cmd/containerd-shim-runc-v2/process
a813097dc Bump up github.com/fsnotify/fsnotify to v1.7.0
c384e3717 containerd-stress: use config address for CRI test
d4c828c2c integration: add new binary upgrade case
8e91edb71 fix(pkg/dialer): minor fix on dialer function for windows
ad3f8c563 tomlext.Duration add MarshalText method
6da015284 go.mod: github.com/containerd/continuity v0.4.3
cd348e6ef .golangci.yml: remove directories that don't exist
4b556a6e0 Bump up golangci-lint to v1.55.2
c51d4f9b6 push: always inherit distribution sources from parent
e15c24655 Move CRI image service into a separate plugin
80dd779de remotes/docker: close connection if no more data
7f410ae05 integration: reproduce #9347
2e9686c05 fix: deflake TestCRIImagePullTimeout/HoldingContentOpenWriter
4aa932337 CI: update Fedora to 39
f6c4de6b5 fix: podsandbox depends on Lease plugin
1b65fe264 fix ticker leak
1af0cba1a Update documentation for containerd v2.0 packages
4f42da416 adopters.md: remove Eliot project
01c442147 Enhance container image unpack client logs
e7390d4ed vendor: upgrade OpenTelemetry to v1.19.0 / v0.45.0
1a1bd6d0a runtime/v2/shim: use structured log for plugin ID
71fd85f5e runtime/v2/shim: run(): remove unused "name" argument
0a59c33be runtime/v2/shim: rename var that shadowed package var
be22e12d5 services/server: use structured log for plugin ID
09de4f1fc services/server: rename var that collided with import
14e621cf9 services/server: gofumpt
32bf805e5 sandbox: add a sandboxService interface to criService
25a4c3d23 sandbox: remove SandboxersServicePlugin
0cf48bab2 sandbox: podsandbox init its own client
7d65a4563 Move runc shim implementation to cmd
e682da76c fix labels in pod sandbox
64c41162c update tests to use labels from cri/labels
7e79225ce refactor labels used in cri server
274a16282 update runc binary to v1.1.10
2e014fa2a cri: fix update of pinned label for images
cb555fa16 golangci-lint: enable depguard to prevent re-introducing libcontainer
dac056fe7 integration: deflake TestIssue9103
7b9fcfd7c add default enable unprivileged icmp/ports
a7cd49c68 expected and actual field position adjustment
e099717f9 validate kernel version for unprivileged icmp/port
76049170b document runtime and shim configuration and selection
2fab240f2 integration: init release upgrade test
2af6db672 switch back from golang.org/x/sys/execabs to os/exec (go1.19)
a596d09ec cri: add deprecation warning for configs
35924bccc cri: add deprecation warning for auths
d7cb25d77 cri: add deprecation warning for mirrors
58cc275eb cri: add ability to emit deprecation warnings
68cac3f62 client: remove obsolete ErrCheckpointRWUnsupported
df19888f8 add warning use inheritable Capabilities
411e2bce4 Remove plugins package
9db21401c Switch to github.com/containerd/plugin
a48ddf4a2 Don't allow io_uring related syscalls in the RuntimeDefault seccomp profile.
2dfae4c4b Prepare release notes for v2.0.0-beta.0
6ca4b5260 Update mailmap
a67efe88d Add tests cases
f1d659dc5 Update package name in Makefile
0ffc3e987 Handle ArgsEscaped for new Sb Server
b85df264e Rename opt to avoid stutter
261e01c2a Move client to subpackage
b6adf43d4 test: use 'Autoclear: ture' in TestRwLoop and add Autoclear test
124d3a20a Sync ops.md, update CLI --help output to be consistent in descriptions
5fdf55e49 Update go module to github.com/containerd/containerd/v2
abfc8be53 Fix lint in integration/client
ddd73ad30 Move protofiles generated into v2 directory
638b474c8 Temporarily remove imgcrypt in CRI to fix circular dependency
192168038 Temporarily remove integration/client submodule
4e3fbd36e vendor: github.com/klauspost/compress v1.17.2
856d1053f vendor: google.golang.org/grpc v1.58.3
466ee870d Check scheme and host of request on push redirect
3fff8b4f6 ctr: new deprecations command
079383dbe dynamic: record deprecation for dynamic plugins
260e71abc server: add ability to record config deprecations
bc861b66f pull: record deprecation warning for schema 1
9aab44673 introspection: add support for deprecations
57c897f10 api/introspection: deprecation warnings in server
240733ce2 warning: new service for deprecations
aff5b809c deprecation: new package for deprecations
d48ceb606 Avoid TLS fallback when protocol is not ambiguous
ed759bae3 Update go fuzz to directly instantiate server
09e40511a fix bug that using invalid token to retry fetching layer
2fea521d0 Disable windows-2019 integration test temporarily
9fc407d8c ci: bump up golangci-lint to v1.55.0
8b4f9656d sandbox: remove ValidateMode as it is not used
337cc2171 pkg/cri: should ignore no sandbox bucket
f515cd5c5 Reorder fields when writing bootstrap params
3d53fbe85 Fix CRI integration tests
f76eaf5a6 Fix 'not a directory' error when restoring bootstrap.json
cf75cfa32 Add more logs around shim restore
8061cb023 Save bootstrap.json instead of address file
e03bf32b8 Switch runc to v3
7a2d801d6 Expose shim instance version
f66c46806 Bridge task service v2
daaf67662 Switch runc shim to task v3
bb64e6a8e Initialize sandbox controller list on CRI server creation
03d81f595 Use cri streaming pkg from k8s staging
b006f1c15 integration/client: replace hardcoded strings for OCI-spec consts
d3f5e0c90 images/archive: replace hardcoded strings for OCI-spec consts
8e7c10c6d CRI: enhance ImageFsInfo() to support multiple snapshotters
e4639ad18 Add exports to proxy plugin config
3986f80c3 go.mod: bump up github.com/opencontainers/image-spec to v1.1.0-rc5
f7c9e9942 vendor: golang.org/x/net v0.17.0
c3652540c vendor: golang.org/x/text v0.13.0
ff602c213 vendor: golang.org/x/sys v0.13.0
39b168cdb vendor: google.golang.org/grpc v1.57.1
930ee552e Fix typos
3ef300ca7 sandbox: remove global variable of podsandbox controller
7bca70c0c sandbox: do not call Connect when loadShim
d2d434b7d sandbox: add all sandbox information to Create method
0707f6869 sandbox: ignore not found error when remove sandbox
2951fb6dc sandbox: support more sandbox controllers
8b3597685 sandbox: add Sandboxer field to sandbox metadata
69e501e7c sandbox: change SandboxMode to Sandboxer
f372b3501 sandbox: add sandboxer field of sandbox requests
a782fd6da Use LOOP_CONFIGURE when creating loop devices
771237563 Add a new image label if it is docker schema 1
5ad6f3432 CRI: use (snapshotter_id, snapshot_key) to uniquely identify snapshots
41b2b2a7b go.mod: bump up github.com/klauspost/compress from v1.17.0 to v1.17.1
4febb0852 deprecated: go-plugin library as runtime plugin
51c9ffe46 remotes: add handling for missing basic auth credentials
4f339b5b5 RELEASES.md: mark legacy CRI as removed status
0a4f79211 Remove use of v1 runtime plugin type for Unix
71f8b4357 Move dynamic plugins to a subpackage
7b2a91821 Generalize the plugin package
a80606bc2 Move plugin type definitions to containerd plugins package
cb969085f Temporarily remove zfs as built in plugin
2486c1298 Exit shim when shutdown manager is done
1b3199324 Rename sbserver to server
4edc6c2d9 Add note about configuration versions in releases
c5c94dc86 Fix CRI tests panic on CI
a3c2c1e4d Clean shell scripts
fa1d3a9cc Fix dependencies after remove
3742f7f0d idmapped: use pidfd to avoid pid reuse issue
2332b9ba1 Remove legacy CRI from CI
536abf1b3 Remove legacy CRI
33b1a833c Move CRI testing package out
016114ff6 Move bandwidth package out of CRI server
3c1e7ffb8 Integration: Alter TestContainerPids for Windows
8f013bb71 Add migration for older configuration versions
313f514fd update to go1.21.3. gp1.20.10
6b752b536 update to go1.21.2, go1.20.9
8f3d1c9d9 add cpu-burst param to ctr command
3ddcd6120 add Duration type to compatible toml v1 version
535916d1d Skip exec.LookPath if a specific gzip implementation is disabled
4b59d67dd add a new flag "skip-reference-check" to skip reference name check
34378ec9b Use Intel ISA-L's igzip if available
7d6369087 Fix windows default path overwrite issue
13dcf558e Fix windows default path overwrite issue
39478eeec go.mod: Bump up github.com/klauspost/compress v1.16.7 to v1.17.0
859c2651e remotes/docker: Fix MountedFrom prefixed with target repository
c85b1d1e4 Bump up golangci-lint to v1.54.2
6169433b6 Fix linter issues for golangci-lint 1.54.2
e3cb7471a CRI: Snapshotter per runtime handler adjustments
42dc8faba Bump x/net to 0.13
79772a0dd remotes: always try to establish tls connection when tls configured
11a7751af *: add runc-fp as runc wrapper to inject failpoint
68dd47ef7 containerd-shim-runc-v2: avoid potential deadlock in create handler
6604ff6c5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0d76fe5c1 Fix some assertions for integ tests
1dced31c3 ci-fix: pin the mingw version 12.2.0.3042023
aae71aa8e update gitignore to indicate that where contributors can use global gitignore
8ffb03d68 cri: stop recommending disable_cgroup
5365f4b29 cri: call RegisterReadiness after NewCRIService
46645b393 Call migrations per version
5518a5026 remotes: simplify mediatype logic
8b105984b pkg/transfer/local: simplify mediatype logic
79acce462 integration: use mediatype helpers
0ba5b4b62 oci: use mediatype helpers
cdba61603 remotes: use mediatype helpers
69034f755 pkg/display: use mediatype helpers
5ab04ac5a pkg/unpack: use mediatype helpers
da1196979 pkg/snapshotters: use mediatype helpers
f1cbc5f90 containerd: use mediatype helpers
4b1bb1293 remove github.com/opencontainers/runc dependency
62f621a34 images: simplify mediatype logic
377c5ca9c images/archive: use mediatype helpers
bb8a472f2 images: use mediatype helpers
e7254406c Require plugins to succeed after registering readiness
62f273d50 Add migrate subcommand to config command
0320ad184 Add config migration to plugin package
f58158e2d Add config migration and bump config version
bf4fbe4e8 docs: Update `transfer` service docs to reflect completed implementations for 1.7
b40e95e0e images: Config: explicitly return nil-error
36c2222d3 Add usage calculation test
3b60e9366 Create new imagetest package
4c344f2fa Add warning for plugin configs with unknown fields
a9ba33f8f Allow for images with artifacts to pull
650148313 Add warning log for unknown config fields
b5615caf1 Update go-toml to v2
8b413daff Remove log package except for exported const used by hcsshim
2f1b92710 Update zfs library to use new log repository
508aa3a1e Move to use github.com/containerd/log
f1070c4e1 docs/userns: Clarify requirements for k8s 1.25/1.26
42eee8bf0 fix: Add `containerd` to the message type reference
9e819fb4a Update CRI image store to not use containerd client
dcb2e7447 Improve doc of func NewNetNS
2ce971d89 Add delete target to image remove
f8fb2dad3 api: update image service to support target in delete request
8e3722c7d CI: Set slow_chown for overlayfs snapshotter
46d3094aa docs/userns: Fix small typo
d008d64a8 docs/userns: Clarify containerd 1.7 limitations
e37908200 docs/userns: Document the need to opt-in for a slow chown
8bf8e2b97 snapshotter: Use capa prefix consistently for capabilities
ec9e0dca9 overlay: Require opt-in if idmap mounts are not supported.
03b9ce56b deprecate logs package, but disable linter (for transitioning)
d69ae811d alias log package to github.com/containerd/log v0.1.0
729c97cf3 Handle unexpected shim kill events
ed5f7e7c8 Update image in client to use new usage package
96a23ccc1 Create new usage package
79f781d00 Refactor: Removing inherently flaky and unused SourceDateEpochOrNow function.
8cbb4ea5d vendor: github.com/containerd/nri v0.5.0
3ca39ef01 fix: Remove `LimitNOFILE` from `containerd.service`
83240a4f7 Bump crun to 1.9
967313049 doc: Add documentation about CRI user namespaces
2e13d3954 pkg/process: Only use idmap mounts if runc supports it
fce1b9507 go.mod: Update runtime spec to include features.MountExtensions
a81f80884 Revert "cri: Throw an error if idmap mounts is requested"
e832605a8 integration: Simplify WithVolumeMount()
24aa808fe integration: Add userns test with volumes
ab5b43fe8 cri/sbserver: Pass down UID/GID mappings to OCI runtime
e916d77c8 platforms: move ToProto, FromProto to api/types
381442945 platforms: remove errdefs dependency
e0b2b17de cri/server: Add tests for the linux-specific parts of VolumeMounts()
10cb112e4 cri/server: Add tests for ContainerMounts()
97dfa7f55 cri/server: Pass down uidMappings to OCI runtime
b42bdd125 release: remove `cri-containerd-*.tar.gz` release bundles
9656b8c0d nri: update mock plugin handlers
6f9de91ef vendor: update github.com/containerd/nri@v0.4.0
f7089ba22 leases: add WithLabel
1480e3bd4 leases: cleanup TestWithLabels
d94a789d1 Fix usages of `mountinfo.PrefixFilter`
45e303eea task: expose criu work path opt
f77185f9e Fix "even if IPv4 comes first" test to have IPv4 first
88a849626 Don't use `To16() != nil` to detect IPv6 addresses
eaf607101 update to go1.21.1, go1.20.8
1a7490c5a Add link to CONTRIBUTING from README
0413f1272 Add contributors guide
05093d7c0 vendor: github.com/cncf-tags/container-device-interface v0.6.1
ac1d556b9 Add image verifier transfer service plugin system based on a binary directory
55b2df560 go.mod: github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.2
a00888db8 fix reference to canonical fieldmask type
0041996ca CI: bump up crun to 1.8.7
4bc0b2660 Revert the removal of the parameter Container
6ec0d4a3a prevent ctr from creating tags with forbidden characters
a4bdbf784 content: reduce the contention between ref lock and boltdb lock
abfabb6d8 contrib/fuzz: fix redeclared issue
295bcec07 snapshotter: implement unit tests for idmapped mounts for overlay
9d01ed1c3 integration: add test for idmapped mounts
e49e6d6fd snapshotter: implement slow path for idmapped mounts check for overlay
1555a31bf mount: support idmapped mount points
723c88ce3 snapshotter: add "--remap-labels" support to overlayfs
e8ddf669f snapshotter: support "remap-ids" capability for overlayfs
ef6b91947 fix(docs): fix on the windows installation script
5d31e9378 pkg/systemd: use sync.Once for systemd detection
7d0ab4fc2 remove uses of github.com/runc/libcontainer/cgroups
9bc6441c2 vendor: github.com/google/uuid v1.3.1
13ff185ba Blockfile: Enlighten blockfile copy on Darwin
a3e8503ed .github: enable fuzz build
cd705af89 metadata: add image delete events during garbage collection
3f9756c18 gc: add support for image expiration
b32638e21 ctr: pull or fetch image metadata by default
20f79300c push: inherit distribution sources from parent
24aca53fa Update use of content.Infoprovider
f8c789f31 content: add InfoProvider interface
02d519ad6 Update hcsshim tag in runhcs-version script
a2817ca16 CRI: Include sandbox ID in failed to load error
492347090 replace reference/docker for github.com/distribution/reference v0.5.0
26dcae2f6 fix ossfuzz building error
19d6c37a3 Revert "log: define G() as a function instead of a variable"
fd5d92a7f Update hcsshim tag versioning to v0.12.0-rc.0
779875a05 Add missing unpacker.Wait for image import
4f5db2bc0 metadata: format unit test output
15b13fb3e Windows: Supply windows shim version via file
7a0ad09a0 make repositories of install dependencies configurable
34def8b33 Remove redundant nil check
fc45365fa Remove most logrus
f9c35feb3 Makefile: allow overriding GO_BUILD_FLAGS via environment
490905be6 go.mod: github.com/containerd/continuity v0.4.2
03abceac5 Update LTS description
34f32043b Blockfile: Expose RecreateScratch option
b4f487ce9 Apply suggestions from code review
1e3540e11 Add stale bot
4e236962f Update critools to 1.28.0
c92f4a160 Update RELEASES
c3f3cad28 Use sandboxed CRI by default
b76cd4d9f replace some fmt.Sprintfs with strconv
bbdbf7ab6 Add inspect image commands
78308b4a4 Add manifest printer library
11a5dd826 snapshots: replace some fmt.Sprintfs with strconv
06765c9ef oci: replace some fmt.Sprintfs with strconv
710d22366 removes/docker: replace some fmt.Sprintfs with strconv
d7bc8694b pkg/cri: replace some fmt.Sprintfs with strconv
73e9cfd1c append k8s 1.28 to releases
6d8329d7f Remove unnecessary joinError unwrap
8399a4ee7 Remove temporary replace
7ad0a6ccf Update to latest releases in RELEASES.md
cd8c8ae4b Remove hashicorp/go-multierror
1571a5aa0 ctr: metrics: drop unused retval from printWindowsStats()
7063ae1f6 Makefile: add rule for installing documentation
de4c338ab Docs: Document proxy plugin diff support
d09f7cbe0 cri: Fix sandbox_mode "shim"
60b2cb143 cmd: containerd: allow building w/o systemd notify
23c95359a Add WithMetaStore to overlay snapshotter to allow bringing your own
0c1ad52ea cri: spec_linux: drop unused retvals
eacd74c2b Go 1.21.0
5756cb00e CI: increase timeout for Binaries
c883410c9 CI: Explicitly upgrade MinGW on Windows 2019 GitHub runners.
0f043ae43 seccomp, apparmor: add go:noinline
5d9bf7d13 CI: temporarily disable ci_fuzz due to incompatibility with recent Go
e2ce4f58f Populate commit memory for windows memory usage stats
823e0420e Fix transfer service dependencies:
cfb30a31a Invoke Stable ABI compatibility function in windows platform matcher
0cea317a5 FreeBSD: set default runtime
def5ff3c4 Sandbox: Add annotations to controller CreateOptions
939ccbed4 Sandbox: Add annotations to CreateSandbox surface
1fd3a4652 archive/tarheader: fix FreeBSD hdr for regular files
f8edd5555 update runc binary to v1.1.9
f35d1f08e go.mod: github.com/opencontainers/runc v1.1.9
00ef8ba99 Vagrantfile: add strace tool
601699a18 integration: add ShouldRetryShutdown case based on #7496
8dcb2a6e6 pkg/cri/sbserver: fix leaked shim issue for podsandbox mode
72bc63d83 pkg/cri/server: fix leaked shim issue
5bdd9ca93 integration: add case to reproduce #7496
b451fa96a bump client-go v0.26.4
a645ff2e6 Update dependencies after protobuf update in hcsshim
e7e5619fe Update hcsshim tag to v0.10.0
54baf766e add metrics for discarding events
189a1599c archive/compression: update out of date RFC draft link
cac8b6f4b Makefile: allow overriding the binary executable target dir
90443f038 CI: update Rocky Linux to 8.8
0a57dc2a0 CI: update Fedora to 38
30dd0a17f CI: install Vagrant from Hashicorp
965641dbc Makefile: allow REVISION be overwritten by environment
fc32197d4 Makefile: fix overriding go command
2d3360ec7 CI: move Vagrant tests to GitHub Actions (larger runners)
4f3c8c468 replace mcr.microsoft.com registry to ghcr.io/containerd registry
d41c62a55 .github/workflows: add dmesg step for integration-linux
fd8778fba delete checkout branch in doc
c62abcb14 docs: document CRI cgroup driver auto detection
c80a3ecaf cri/sbserver: Use platform instead of GOOS for userns detection
157dff281 update to go1.20.7, go1.19.12
687a5f51a fix: allow attaching to any combination of stdin/stdout/stderr
aa8b094ab platforms: clarify docs for amd64/arm64 variant normalization
710d987d2 Fix default platform matcher when ctr import
2d64ab8d7 cri: Don't use rel path for image volumes
85a2c9a01 log: swap logrus functions with their equivalent on default logger
6baff1694 log: add package documentation and summary of package's purpose
238da2c52 log: make Fields type a generic map[string]any
634a4a1bb log: add log.Entry type
dd67240f1 log: define OutputFormat type
778ac302b log: define G() as a function instead of a variable
81ac648d9 log: add all log-levels that are accepted
0b6333a41 log: group "enum" consts and touch-up docs
4a36022e2 log: WithLogger: remove redundant intermediate var
40ee5fb11 log: SetFormat: include returns in switch
6fe7e03b8 log: remove testify dependency
e2ad5a985 removes/docker: remove unnecessary conversion (unconvert)
ed47d6ba7 cri: implement RuntimeConfig rpc
a1cdf60cb docker: add test to ensure not found error is returned by resolve
b4814a29d docker: return most relevant error from docker resolution
7f7ba31b6 cri: fix using the pinned label to pin image
480757135 pkg/epoch: fix Y2038 on 32-bit hosts
98974117b migrate to community owned bucket
a3404ac42 docker: add missing info log for 4XX/5XX responses
850b2e1bf go.mod: update cri-api to v1.28.0-beta.0
480bc8a2b .github/workflows/ci.yml: upgrade Ubuntu from 20.04 to 22.04
bc96b9039 go.mod: github.com/AdamKorcz/go-118-fuzz-build v0.0.0-20230306123547-8075edf89bb0
da2740885 go.mod: google.golang.org/genproto v0.0.0-20230720185612-659f7aaaa771
73dc13ad6 go.mod: github.com/urfave/cli/compare v1.22.14
1c4fc568b go.mod: github.com/prometheus/client_golang/compare v1.16.0
68abb525a go.mod: github.com/minio/sha256-simd v1.0.1
1f2216cc7 go.mod: github.com/klauspost/compress v1.16.7
3c6ab0420 go.mod: dario.cat/mergo v1.0.0
4bda0a69e go.mod: github.com/grpc-ecosystem/go-grpc-middleware v1.4.0
0f033b612 go.mod: github.com/emicklei/go-restful/v3 v3.10.2
90e050298 go.mod: github.com/containernetworking/plugin v1.3.0
0498acefb go.mod: github.com/.../container-device-interface v0.6.0
74b8cb850 go.mod: github.com/opencontainers/runc v1.1.8
895dd2e93 go.mod: github.com/opencontainers/image-spec v1.1.0-rc4
235a4452d go.mod: github.com/opencontainers/runtime-spec v1.1.0
06f18c69d cri: memory.memsw.limit_in_bytes: no such file or directory
f3daf32c7 Fix ro mount option being passed
b2967a8d6 update runc binary to v1.1.8
90ecb8104 fix: `ctr images check` outputs not unpacked images in quite mode
98f27e1d9 Revert "Add support for mounts on Darwin"
e939d1319 Revert "Revert 416899fc8e81a80a4b09b59c801f98d36ddc0e74"
6c9c71112 Revert 416899fc8e81a80a4b09b59c801f98d36ddc0e74
2799b28e6 Add support for mounts on Darwin
56d80f81a Update hcsshim tag to v0.10.0-rc.9
9c673f967 pkg/cri/server: TestImageGetLabels: use registry.k8s.io
f914edf4f [cri] Handle Windows pod transitions gracefully
52ef3468b Update Go to 1.20.6,1.19.11
48cdf1fe2 integration: Enable userns tests for sbserver
9160386ec cri/sbserver: Test net.ipv4.ping_group_range works with userns
1c6e26844 cri/sbserver: Fix net.ipv4.ping_group_range with userns
36a96d7f3 cri/sbserver: Remap snapshots for sbserver too
508e6f6e0 cri/sbserver: Add userns tests to TestLinuxSandboxContainerSpec()
fb9ce5d48 cri/sbserver: Support pods with user namespaces
c99cb95f0 cri/sbserver: Let OCI runtime create netns when userns is used
73c75e2c7 cri/sbserver: Copy userns helpers to podsandbox
0b6a0fe77 cri/sbserver: Move runtimeStart to match position with cri/server
90087ac44 WithRemapperLabels: Update doc to mention overlay supports it
9d9903565 cri: Fix comment typos
9e34b8b44 Uncopypaste parsing of OCI Bundle spec file
232538b76 bugfix(port-forward): Correctly handle known errors
5c480d9c8 Modify loopback size
7ef133ad4 Fix mount pkg typo
83ff030e4 Change http.Header copy to builtin Clone
cdb153ec9 Resolve docker.NewResolver race condition
01a6e1c73 Dedup WithNewSnapshotView
6a913ac82 Cirrus CI: configure apt-get to wait for locks
38f9bc3e0 fix ci Linux Integration test fail
c17d3bdb5 pkg/cri/server: Test net.ipv4.ping_group_range works with userns
9bf5aeca7 pkg/cri/server: Fix net.ipv4.ping_group_range with userns
05fef52b6 vendor: github.com/containerd/zfs v1.1.0
073de9308 Fix the auto restart fail when using LogURI and TTY together
00e5ae211 shim: change ttrpcService and ttrpcServerOptioner to exported interfaces
e9f63f64f update go to go1.20.5, go1.19.10
22a7c63c0 Sandbox: Change to mount.Mount for CreateOptions
51a1e7f0b Fix example shim to actually use its task service
a9cb6090e ci: remove libseccomp-dev installation for nightly
0607e7326 Move GetTopic function out of runc shim
5dedb6d0d archive: use 1970-01-01 as the whiteout timestamp
d6dbc4040 go.mod: Update cgroups to 3.0.2
f3b7436b6 Platforms: Add From/ToProto helpers for types
b3ab1f26c Snapshots: Add From/ToProto helpers for types
0a6b8f0ee OCI: Add From/ToProto helpers for Descriptor
4df27fd77 Update ginkgo to match cri-tools' version
9a202e342 seccomp: always allow name_to_handle_at
55a8102ec mount: Add From/ToProto helpers
e85352183 integration/client: Rework withBytesBuffers
54a93c6c5 Make ptypes.Empty a var in contentserver
cdc90c838 Remove duplicated code in content Copy
50376ec9f remotes: allow FetchByDigest client to pass mediatype as header
0a92661e6 Add a platform.ParseAll helper
e89d7204e MergeStringSlices use sets
8760b8717 pkg/epoch: extract parsing SOURCE_DATE_EPOCH to a function
9924e56f4 pkg/epoch: fix tests on macOS
dfd7ad8b3 Reword Windows file related TODO
44e2b26a8 pkg/epoch: replace some fmt.Sprintfs with strconv
f82d9b799 Integration: Align empty IO func on Windows
f3124d569 Makefile: Remove hcsshim related TODO
2aeac9a8f Remove duplicated writeIndex func
7601dd9a9 Dedup manifest config platform helper
f3df7f739 log when a lease expires
a01118bbe Minor changes to sandbox metadata
f60a4a271 cri: drop unused arg from generateRuntimeOptions
1fb835f04 Remove unnecessary label bucket loop
a207b430e snapshots/blockfile: fix lint issue
59b0b39af vendor: update github.com/containerd/continuity
d358f1680 fix unbound variable
f4ad68d5f fix-push-image-rate
7de95cbc4 snapshots/blockfile: deflaky the testsuite
6dfb16f99 snapshots|pkg: umount without DETACH and nosync after umount
72b7d1650 mount: support direct-io for loopback device
437f13410 Don't run CI on push
e26c97cb8 Save marshalled empty response in streaming service
9e09bfb59 Use RWMutex in NSMap and reduce lock area
38b0f970f No more nondistributable layers in MS registry
d278d37ca Sandbox: Add Metrics rpc for controller
d115129d1 Add configurable mount options to overlay
d56722ef2 Sandbox: Add SandboxMetrics rpc
4bb709c01 avoid "any" as variable name
577696f60 replace some basic uses of fmt.Sprintf()
5cd6210ad runtime/v2/runc: handle early exits w/o big locks
df280942a integration/client: add timeout to `TestShimOOMScore`
6dd529e40 Pass in imagespec.Platform to WithVolumes()
d18026592 release ticker correctly
28a5199ff Add a check to skip stats for containers that are not running
34a93a0c2 task: don't `close()` io before `cancel()`
007c5b6e3 Setup otlp from env
104b9ef9e Update x/sys to 0.8.0
69b451af5 RELEASES.md: de-deprecation of CNI conf_template will be v1.7.3
ab5365222 ctr: update WritePidFile to use atomicfile
c409c631c shim: WritePidFile & WriteAddress use atomicfile
3c4a1ab1c cri: write generated CNI config atomically on Unix
f3ba7c8a3 atomicfile: new package for atomic file writes
28d8c79de Replace atomicBool with the standard library atomic.Bool
fe4f8bd88 Pinned image support
a85b12d4d docs: cherry-pick individual commits instead of merge commit
738c4c6fa Fix issue for HPC pod metrics
52997ea98 remotes/docker: ResolverOptions: fix deprecation comments
a35ead5b9 bugfix: add nil pointer check for cgroup v1 mem usage
2a60fe5a6 Remove events from init context
d3887b2e6 Support CDI devices in ctr --device flag
3ca5b4437 Remove cni conf_template deprecation
94f0af3ec Image.IsUnpacked(): make error-handling more iodiomatic
54658a115 Image: rename variable that shadowed import
d2b7a1e29 cleanup DEPRECATED TLS config
f857626d6 Move PLEG event back to CRI
fc50334ca Generate sandbox exit events from CRI
d2605de73 add handling of a '.' commondir and bounds checking to mount_linux
cf5605459 Move pod sandbox recovery to podsandbox/ package
45dbb4e54 Publish sandbox events
65906335b Add sandbox events protos
21b3318eb Fix several conversions of "ocispec.Image" to "ocispec.Platform"
f2bc73782 Add cpuset-mems flag to 'ctr run' command
f642c0a5f ctr: add cpuset-cpus flag to 'ctr run' command
314d758fa update auths code comment
9702d4aee snapshots/blockfile: use passed in dst in scratchGenerator
bb82f3683 snapshots/blockfile: use loop if options is empty
9287711b7 upgrade registry.k8s.io/pause version
fbb38ab6b Fix the spelling of repository within the NRI plugin documentation.
752e13d9a fix(docs): minor fix on the windows installation steps
c1b926800 Windows Integration: Switch Azure-based CI to vanilla 2019 image.
b9dfd29b7 Update tests to use volume-copy-up:2.2
4bfcac85f notify readiness when registered plugins are ready
7819da843 Document Protocol Buffer Setup
579b5596c Update volume-ownership image with latest hashes
88a3e25b3 Add targetOS to WithVolumes()
c7ec95caf Reword comment and make slight change to code
ec2bec648 Fix non C volumes on Windows
3d7522b7f ctr: allow run to override mounts
7beaa5e85 Add mount options to blockfile snapshotter
261d45efe docs/remote-snapshotter.md: update links and description
7274e33e3 CRI: Make stats respect sandbox's platform
82deabf9d Optimize metadata Schema notes to correctly match metadata structures
a6cd5e3f4 bugfix: resolve symlink when looking up mountpoint
b9f2e48e3 feat: make overlay sync removal configurable
becf04a59 Update to docker/login-action V2
79709a205 disable provenance
1be571b14 Add sync before unmount on snapshotter layer test
b729962e3 Add blockfile snapshotter to snapshotters doc
798dba9fa Add blockfile as a builtin
0c386e2eb Add blockfile snapshotter
d280cb83b chore: update comment for NetworkPluginSetupSerially
f8907ab87 Update volume-copy-up
811456b31 go.mod: github.com/containerd/continuity v0.4.0
6f715ab10 go.mod: github.com/containerd/go-runc v1.1.0
85cf9a09e Bump seccomp version to be the same as one in runc repo
cdaa4025e Fix some typos
3d9dd2022 ctr: fix the cleanup of task
66307d0b4 CRI: Support Linux usernames for !linux platforms
5dbae3819 snapshots/testsuite: Rename: fix fuse-overlayfs incompatibility
df65e321e Simplify closing bundle dir fd
718250b6b Update ttrpc to v1.2.2
7e42dc34d improve container Task comment
4347fc8bc go.mod: github.com/opencontainers/image-spec v1.1.0-rc3
5e054ee63 go.mod: github.com/opencontainers/runtime-spec v1.1.0-rc.2
bb61a6d4b cache diffIDs
6e2c915a4 Bump up golangci-lint to v1.52.2
ecb693ec7 bump typeurl to v2.1.1
f5211ee3f Change to Readdirnames for some cases
e60a17925 .github: disable cache for actions/setup-go@v4
52afa34f5 cri: update WithoutDefaultSecuritySettings comment
6f34da5f8 Cleanup logrus imports
717169bb8 plugin: remove go < 1.8 stub, enable on windows and arm64
28d749c9e move to CRI-TOOLS v1.27.0
27f56e607 Fix umarshal metrics for CRI server
b947a6f52 update go to go1.20.4, go1.19.9
c54b706c0 Add faasd and actuated into the ADOPTERS file
d56466cf3 [transfer] avoid setting limiters when max is 0
2e53c0ec8 Windows integration: fix critest binary path in Azure-based workflow.
9e7f8fe30 Update CRI registry configuration docs
0d975230e Fix panic when remote differ returns empty result
c58a229e5 Run CI when adding to the merge queue
0ba066474 vendor: github.com/opencontainers/runc v1.1.7
cbd10e41a vendor: github.com/opencontainers/runc v1.1.6
27c0fe3eb update runc binary to v1.1.7
4891bba83 Update tar tests to run on Darwin
d9f3e387c Remove entry for container from container store on error
8ba285f6b fix unable to checkpoint the container more than once
370be0c18 Move logrus setup code to log package
92b93e376 cri: Vendor v0.27.1
8c80ccc7f Update external repo links that changed default branch to main
519457e3e ctr: Add sandbox flag to ctr run
c786994ea Update transfer configuration
4e5693938 Add platform config to proxy plugins
4192ca8f8 pkg/cri/server: sub-test uses array and capture range var
8bcfdda39 pkg/cri/sbserver: sub-test uses array and capture range var
745ec84e5 Add diffservice to contrib
3784c1c91 Add proxy differ
cb2c3ec8f oci: partially restore comment on read-only mounts for uid/gid uses
f23816740 go.mod: add comment explaining go-fuzz-headers replace rule
ec9e74ed9 go.mod: remove replace for github.com/opencontainers/runtime-tools
6c40cf305 go.mod: integration: use non-pre-release of containerd
92d1e9bee go.mod: integration: move indirect dependencies to the right group
18d7e84f9 runtime/shim: fix the nil checkpoint options
cd16b31cd Get CDI devices from CRI Config.CDIDevices field
da4de96e2 containerd support k8s 1.27
4b35c3829 update shim example
71ababe30 runtime/shim: remove runc/v2/services
b71f4b751 runtime/shim: rename RunManager to Run
49111b115 update runc binary to v1.1.6
85df1cc6b doc: update CI signal info in README
7e6ab8488 cri: Throw an error if idmap mounts is requested
85afda6f5 cri: Vendor v0.27.0-beta.0 for mounts uid/gid mappings
f7b8b1181 update the version of the runc shim in the readme and examples
dc2fc987c capture desc variable in range variable just in case that it run in parallel mode
05bb52b27 Use t.TempDir instead of os.MkdirTemp
7a7519a78 CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
79cb4b000 [sbserver] handle missing cpu stats
464a4977a [sbserver] Refactor usageNanoCores be to used for all OSes
e0b817ec1 Fix argsEscaped tests
aee358765 Update to setup-go@v4 action
811be6085 Update Azure-based Windows workflow image SKUs.
dfc7590d5 remotes/docker: Add MountedFrom and Exists push status
db223271e Register imagePullThroughput and count with MiB
6f0714efc Use RunWithPrivileges
b41ca1159 Fix access denied on mounted vhdx root
a7fddb40b Use wait instead of a sleep to check for startup delay
d0527e228 Support for dropping inheritable capabilities
0fb2d9132 update go to go1.20.3, go1.19.8
cab056226 oci: Use WithReadonlyTempMount when adding users/groups
c9e5c33a1 UnmountAll is a no-op for missing mount points
8538e7a2a Improve error messages and remove check
ba74cdf15 Make ReadOnly() available on all platforms
7bb2756bc Increase integration test tmieout to 20m
1279ad880 Remove bind code path in mount()
6a5b4c9c2 Remove "bind" code path from diff
76690706f CI: bump up crun to 1.8.3
d373ebc4d Properly mount base layers
ca5605b4a Skip parent layer options on bind mounts
7f82dd91f Add ReadOnly() function
157fe6a13 docs: fix typo in comment of ExitStatus.Exit(Code|Time)
4012c1b85 Remove escalated privileges
54f8abe55 Use DefaultSnapshotter
47dd3dcff use t.Fatal if we cannot enable process privileges
e31bef15f Update continuity
95687a932 Fix go.mod, simplify boolean logic, add logging
7a36efd75 Ignore ERROR_NOT_FOUND error when removing mount
db3279859 Update continuity, go-winio and hcsshim
00efd3e6d Remove unused function
dc980b14a Grant needed privileges for snapshotter tests
feb637f92 Fix layer comparison and enable read-only checks
36dc2782c Use bind filer for mounts
d591bb042 Enable TestSnapshotterClient on Windows
7b36becd2 Run Windows snapshotter through the test suite
ac30eabbd Fix misspelling of 'Native' as 'Naive'
639c5799a Add paired 'mount' log for 'unmount'
8395e3a89 Don't use all-upper-case filenames in snapshot tests
909730dec Skip tests that do not apply to WCOW on Windows
469c13997 Ensure mounts are unmounted before leaving the test
84cc3e496 Unify testutil.Unmount on Windows and Unix
474a257b1 Implement Windows mounting for bind and windows-layer mounts
34b07d3e2 Implement WCOW parentless active snapshots and view snapshots
82ec62b86 fix: cio.Cancel() should close the pipes
ac84bf7c8 Update sbserver to add noexec nodev and nosuid to /etc/resolv.conf mount bind.
126ab72fe Keep linux mounts for linux sandboxes on Windows/Darwin
990199a02 Test to ensure nosuid,nodev,noexec are set on /etc/reolv.conf mount.
96490734b update runc binary to v1.1.5
b55dad06a go.mod: github.com/opencontainers/runc v1.1.5
c89438e83 integration: add container start test using abs runtime path
3557ac884 Extract image service from CRI
97064b077 WithRuntimePath uses the TaskInfo.RuntimePath field
c56f54aa1 devmapper plugin: skip plugin when not configured
a11e47b48 Use built in atomic.Bool
87346df54 Defer uid lookups on Darwin
ae4dbb60d Add noexec nodev and nosuid to sandbox /etc/resolv.conf mount bind.
1be08b10f ctr/tasks: fix unmarshal the task metrics for cgroups v1
8322bcb88 Adds a file header
50b576a94 Adds a dev container and Codespaces docs
0bbca7f1b Cleanup protobuild config
daa3a7665 Add `WithReadonlyTempMount` to create readonly temporary mounts
f48ae2227 fix: Update error message format based on feedback
3193650f1 fix: 'failed to resolve symlink' error messaging
14714b94d Fold the output of `crictl info`
5fdca538d adding cni metadata to the container in the `ctr run --config`
32d431a7c Update crictl doc
690ae58ca Update cri-tools version on windows
5956cdea8 Remove third-party package cri-api
c011502bd Remove cri v1alpha1 services
23d288a80 Remove the CriuPath field from runc's options
62f98a1c1 CRI: Don't always close netConfMonitor channel
a4d33a784 Remove support for config.toml `version = 1`
3e87f05b6 Fix image pulling with Transfer service
c5f1086ad Update docs
fda5c84bc Update gce contrib to use v2 by default
8bd82e355 Remove no_pivot when creating container from CRI
07c2ae12e Remove v1 runctypes
c50a3ef04 Update Makefile and CI
ef516a150 Remove runtime v1
76778aee6 integration: add restart monitor test for paused task
35a103d32 Remove "containerd.io/restart.logpath" label (deprecated since v1.5)
08337f356 Pre-splice strings and determine whether it is a file and check criCleanup err.
e0d9b9663 Fix restarting the paused containers
86fc1ccab Remove `aufs` snapshotter (deprecated since v1.5)
50740a1a0 use strings.Cut instead of strings.Split for parsing imageConfig.User
b39ac5d09 docs: fix typo in comment of plugin.Plugin.Err()
d835fd2a3 Sandbox: Correct/add some fields to Status()
d3e856da7 export: add test for WithSkipDockerManifest
70da5c783 Sandbox: Cleanup shim on Start failure
406583165 archive: consistently respect value of WithSkipDockerManifest
727b25403 fix userstr for dditionalGids on Linux
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Sandeep Gundlupet Raju
|
caa14c63f1 |
zynqmp-xen-qemu.dtsi: Remove device_type dt nodes
Remove device_type device tree nodes as these nodes are no longer required for Xen qemu boot. Signed-off-by: Sandeep Gundlupet Raju <sandeep.gundlupet-raju@amd.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Xiangyu Chen
|
d744f8c4f4 |
libvirt: fix missing dmidecode on arm/aarch64 platform
When using libvirtd on aarch64 platform, after system bootup, the log of libvirtd contains an error as below: libvirtd[417]: internal error: Child process (/usr/sbin/dmidecode -q -t 0,1,2,3,4,11,17) unexpected exit status 127: libvirt: error : cannot execute binary /usr/sbin/dmidecode: No such file or directory After checking the libvirt source code, the arm/aarch64 also try to call dmidecode to get the system information[1], so add the dmidecode as depends under arm and aarch64 platform. Ref: [1] https://github.com/libvirt/libvirt/blob/master/src/util/virsysinfo.c#L429 Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Xiangyu Chen
|
6e69a270b3 |
lxc: add distrosysconfdir option to make sure the lxc configuration in correct folder
After the commit[1] "meson.build: allow explicit distrosysconfdir", the config of lxc would install
to distrosysconfdir[2], if this value not set, it might set to /etc/sysconfig, that cause lxc-net
configuration cannot be found[3] due to our bb file install the lxc-net to /etc/default folder.
Ref:
[1]
|
||
|
Alexander Kanavin
|
edc85da6e4 |
xen-tools: fix python 3.12 build errors
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
1db447e785 |
docker-compose: v2.20.3 -> v2.21.0
- d6f842b0 test: e2e test reliability improvements (#10950) - 4fbbf201 build(deps): upgrade to compose-go v1.18.3 (#10947) - 935d72f4 added the dot at the end of the sentence - 41682acc add support for attributes exposed by `docker ps` - 1054792b align docker compose ps with docker CLI to support --format - 19f66918 watch: only allow a single instance per-project - 186744e0 ci: bump golangci-lint to v1.54.2 - bc9d696f Merge pull request #10922 from thaJeztah/replace_dockerignore - 6204fb1c logs: fix for missing output on container exit (#10925) - 5d732010 replace dockerfile/dockerignore with patternmatcher/ignorefile - 2006f3fe go.mod: github.com/moby/patternmatcher v0.6.0 - 192718c0 go.mod: remove some outdated comments - c79f67fe otel: add `include` to project up span - 3b294bfd build(deps): bump github.com/compose-spec/compose-go from 1.18.1 to 1.18.2 (#10915) - dd34f7a2 include: add experimental support for Git resources (#10811) - caad7271 up: handle various attach use cases better - 792afb8d build: use correct values for proxy variables (#10908) - 150449bb warn user secret uid/gid/mode is not supported Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
9a1f4d91d9 |
docker-compose: drop patches from the removed python version
Drop unused patches from the python version removed in
|
||
|
Chen Qi
|
0eef35edee |
docker: remove unnecessary dependencies
The build is not using the codes from these source packages. Remove the dependencies. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Michal Orzel
|
dbac18c5db |
xen: Set XEN_REL to 4.19 for dev recipes
SRCREV recently updated by commit
|
||
|
Michal Orzel
|
8d018c33b9 |
xen: Bump SRCREV of 4.17 recipes to 4.17.2
Update Xen and tools 4.17 recipes to use the latest 4.17.2 release. Remove no longer needed solaris syntax patch. Signed-off-by: Michal Orzel <michal.orzel@amd.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
68f0fb6f66 |
xen-tools/git: update to latest
Bumping xen to version 4.18.0-rc4-179-gf96e2f6457, which comprises the following commits:
f96e2f6457 xen/MISRA: Remove nonstandard inline keywords
563193de85 x86/apic: Drop the APIC_MSR_BASE constant
e39cbf52b1 x86/apic: Drop atomic accessors
9153b64bea xen: Enable -Wwrite-strings
b1185ce66c arm/efi: Simplify efi_arch_handle_cmdline()
ef2071d45b x86/efi: Simplify efi_arch_handle_cmdline()
858e3bf349 x86/setup: Rework cmdline_cook() to be compatible with -Wwrite-strings
0dd3231330 x86/setup: Clean up cmdline handling in create_dom0()
1e2b13bcf0 xen/arm: gicv3: clean up GICD_CTRL write
8f45862580 xen/xalloc: address violations of MISRA C:2012 Rule 8.2
382257af0c xen/vmap: address violations of MISRA C:2012 Rule 8.2
764851a8be xen/serial: address violations of MISRA C:2012 Rule 8.2
89c1784f5f xen/common: address violations of MISRA C:2012 Rule 8.2
5c72b54b65 x86: add asmlinkage macro to variables only used in asm code
3ea5918ead x86/ACPI: constify acpi_enter_sleep argument
843265ad0b x86/cpuid: enumerate and expose PREFETCHIT{0,1}
9dfc824590 x86emul: deal with decode failure in predicates test
c22fe7213c automation: switch to multi-platform images when possible
3b2ba63994 automation: set architecture in docker files
b78b4de1c5 automation: update tests to use Debian Bookworm
b5739330d7 automation: fix jessie/stretch images to use archive.debian.org apt repos
7440355a29 automation: add Xen timestamps to all tests
24532be907 automation: remove com1= parameter on QEMU smoke tests
b576497e3b automation: remove CR characters from serial output
4b99ce89eb config: update Mini-OS commit
e536a49754 stubdom: Remove caml-stubdom
84915b80a9 x86/hvm: Trivial style cleanup in vlapic.c
0fa916aba8 x86/mm: Fix up bad bool conversion in ept_set_entry()
820ee3ec4d x86: add deviation for asm-only functions
10081c2dc5 arm/platforms: Make compatbile with -Wwrite-strings
6c1d5f6516 arm/duart: make dt_uart_init() compile with -Wwrite-strings
1a177d4669 x86/setup: Make the loader variable const
24b1107449 xen: Drop bool_t
e0d0961f3f xen/treewide: Switch bool_t to bool
de577618c2 x86/treewide: Switch bool_t to bool
ee34444712 x86/ioapic: Check 1k alignment for IO-APIC physical addresses
d9fc66554f x86/traps: More use of nocall
625f2cc66f x86/entry: Use 32bit XOR in handle_ist_exception
7e939abca7 xen: Annotate printk() as cold
71dd0f6e3b x86: Fix XEN_DOMCTL_gdbsx_guestmemio crash
a1f9490ccc docs/misra: exclude three more files
707b8b8717 x86/mem_access: make function static
e7ad219bb2 xen/console: remove stub definition in consoled.h
8b9e6939a0 x86/vm_event: add missing include for hvm_vm_event_do_resume
5c7c09f64e x86/grant: switch included header to make declarations visible
62c84c3031 xen: modify or add declarations for variables where needed
40acb0c111 SUPPORT.md: change current version to 4.19-unstable
983aaa533b xenstored: use correct conversion specifier in the tracing function
c9237aa2cf xen/spinlock: fix coding style issues
fa2da5bce9 xen/arm32: head Split and move MMU-specific head.S to mmu/head.S
a9f931e96f xen/arm32: head: Introduce enable_{boot,secondary}_cpu_mm()
ee0f41fda3 xen/arm: mmu: move MMU specific P2M code to mmu/p2m.{c,h}
1bf5c104fe xen/arm: Rename init_secondary_pagetables() to prepare_secondary_mm()
e6bef277d4 xen/arm: Fold pmap and fixmap into MMU system
672d67f339 xen/arm: Split MMU-specific setup_mm() and related code out
f661a20aa8 xen/arm: Extract MMU-specific MM code
ea59db96a4 xen/arm: Fold mmu_init_secondary_cpu() to head.S
210e83ae56 xen/arm: Split MMU system SMP MM bringup code to mmu/smpboot.c
1bf8a6aafc xen/arm: Split page table related code to mmu/pt.c
cfb777791d amd/iommu: fully initialize array in 'flush_command_buffer'
b264570ba2 x86/sysctl: address a violation of MISRA C:2012 Rule 8.2
05644bd9d2 x86/platform_hypercall: address violations of MISRA C:2012 Rule 8.2
168f87f590 x86/physdev: address violations of MISRA C:2012 Rule 8.2
8976587dc7 x86/pci: address a violation of MISRA C:2012 Rule 8.2
45402cc136 x86/smp: address a violation of MISRA C:2012 Rule 8.2
340a75a4f4 x86/vpmu: address a violation of MISRA C:2012 Rule 8.2
9b1fcb4648 x86/mmconfig: address violations of MISRA C:2012 Rule 8.2
f5b4c5f537 x86/hvm: address violations of MISRA C:2012 Rule 8.2
4709ec8291 xen/sched: fix sched_move_domain()
98758ae489 xen: introduce function type bug_fn_t.
83e9e30510 automation/eclair: add a deviation for MISRA C:2012 Rule 8.6
26cdd09801 xen: address violations of Rule 11.9
71576f8852 automation/eclair: update deviations and accepted guidelines
a2e8d64c80 xen/string: address violations of MISRA C:2012 Rules 8.2 and 8.3
ab9558ef5e xen/compat: use BUILD_BUG_ON in CHECK_SIZE macros
ee409f36b6 xen/types: address Rule 10.1 for DECLARE_BITMAP use
5b2a570f84 x86/io_apic: address violation of MISRA C:2012 Rule 10.1
4bee3b9c2c xen: Add deviations for MISRA C:2012 Rule 7.1
1003608606 xen/x86: address violations of MISRA C:2012 Rule 7.2
652683e1ae x86/hvm: address violations of MISRA C:2012 Rule 7.2
ee7bab7912 x86/vmx: address violations of MISRA C:2012 Rule 7.2
97f8555acb xenstored: print domain id in traces
6cd046c501 xen/arm: Enlarge identity map space to 10TB
02df8ada5a xen/arm: Add macro XEN_VM_MAPPING
9dfcef827c arm32: head: Add missing hunk from previous commit
9b807e23e7 xen/arm32: head: Replace load_paddr with adr_l when they are equivalent
046f13a2b3 xen/arm64: head: only use the macro load_paddr() in the MMU code
c419d2dd35 xen/arm: Skip memory nodes if not enabled
b739e2067b xen/include: add macro ISOLATE_LSB
ef8eba3535 x86/hpet: address violations of MISRA C:2012 Rule 8.2
9c27a730b8 x86/vmce: address violations of MISRA C:2012 Rule 8.2
dc64ba0c41 x86/mcaction: address a violation of MISRA C:2012 Rule 8.2
5310230b61 x86/cpuidle: address violations of MISRA C:2012 Rule 8.2
614417165c x86/domain: address violations of MISRA C:2012 Rule 8.2
21f6d31ed6 x86/mtrr: address violation of MISRA C:2012 Rule 8.2
6f3f60b090 x86/mctelem: address violations of MISRA C:2012 Rule 8.2
fb62aa714d misra: add R21.1 R21.2
06e484767b docs/misra: add R11.1 R11.2 R11.3 R11.6
7ad0c774e4 x86/boot: tidy #include-s
b24a0f3c5e tools: Remove all DECLARE_* op macros in xc
22b773d5c9 x86/psr: address a violation of MISRA C:2012 Rule 8.3
fde774154c x86/xstate: address a violation of MISRA C:2012 Rule 8.3
76fa223438 x86/uaccess: address violations of MISRA C:2012 Rule 8.3
a48bb129f1 x86/spec-ctrl: Remove conditional IRQs-on-ness for INT $0x80/0x82 paths
fe1e4668b3 iommu/amd-vi: use correct level for quarantine domain page tables
fb41228ece docs/sphinx: Fix indexing
ab03b284b4 docs/sphinx: Fix syntax issues in exclude-list.rst
93ad5dd974 docs/sphinx: Fix syntax issues in hyperlaunch.rst
044503f61c docs: Delete kconfig docs to fix licensing violation
8ee1a332b4 docs/misra: Add missing SPDX tags
162a1589e3 xen/set_{c,p}x_pminfo: address violations od MISRA C:2012 Rule 8.3
0e4720655f xen/sched: address violations of MISRA C:2012 Rule 8.2
ecbe563500 x86/msi: address violations of MISRA C:2012 Rules 8.2 and 8.3
06719e449f x86/intel: fix indentation
dec9e02f31 xen: avoid generation of stub <asm/pci.h> header
d0ea916fcd x86: don't allow Dom0 access to ELCR ports
bede1c7e3b exclude-list: generalise exclude-list
d82a8217d5 cppcheck: rework exclusion_file_list.py code
f3795523dc arm/gic: add missing parameter names and uniform function declarations
dc79336075 xen/domain_page: address violations of MISRA C:2012 Rule 8.3
adac94da8b build: Allow setting KBUILD_DEFCONFIG in the environment
f5ff26da32 xen/arm64: domctl: Avoid unreachable code in subarch_do_domctl()
ca1279f879 arm/cpufeature: address violations of MISRA C:2012 Rule 8.2
5704923f94 bitmap: fix nbits signess
25dc15db92 arm/smmu: address violation of MISRA C:2012 Rule 8.2
ffe54cd871 arm/domain: address violations of MISRA C:2012 Rule 8.2
be7f7149c4 arm/vgic-v3: address a violation of MISRA C:2012 Rule 8.2
a17a2b2073 arm/cmpxchg: address violations of MISRA C:2012 Rule 8.2
c07e81f646 arm/p2m: address a violation of MISRA C:2012 Rule 8.2
5d38f3eab0 arm/setup: address violations of MISRA C:2012 Rule 8.2
49604292b0 arm/smpboot: address violations of MISRA C:2012 Rule 8.2
4c910b0461 automation/eclair: update accepted and clean guidelines
78a86b2686 x86/spec-ctrl: Add SRSO whitepaper URL
fab51099a1 ubsan: Fix pointer overflow error message
e3c409d59a x86/x2apic: introduce a mixed physical/cluster mode
de1cc5102b MAINTAINERS: add xen/drivers/char/imx-lpuart.c to ARM section
1f849edc2f golang: Fix bindings after XSA-443
1429f9c548 golang: Fixup binding for Arm FF-A
5ae0a4ad38 AMD/IOMMU: drop tasklet handler forward declaration
b6c7951f23 x86/hvm/dom0: fix PVH initrd and metadata placement
86b06295f6 arch: drop get_processor_id()
ad193a79c2 xenoprof: move asm/ include
7d46710f08 console: conditionalize console_input_domain()
ea3dabfb80 x86/PVH: allow Dom0 ELF parsing to be verbose
9589296e9c build: simplify clean handling of extras directory
ea083911b1 xen/include: make enum perfcounter anonymous
7211904e09 docs/misra: add documentation skeleton for MISRA C:2012 Dir 4.1
202f410721 MAINTAINERS: make Michal Orzel ARM Maintainer
801b804945 x86/time: Fix UBSAN failure in __update_vcpu_system_time()
649c190a1f xen/ppc: Implement a basic exception handler
abb8a88d59 xen/ppc: Add .text.exceptions section for exception vectors
87f37449d5 x86/i8259: do not assume interrupts always target CPU0
26a449ce32 x86/x2apic: remove usage of ACPI_FADT_APIC_CLUSTER
fe0ae3f7dd xen/riscv: introduce identity mapping
af670c14e8 xen/riscv: introduce function for physical offset calculation
86266162fc x86: don't allow Dom0 (direct) access to port F0
306e3dc919 x86/PVH: deny Dom0 access to the ISA DMA controller
9e2c146c38 x86: don't allow Dom0 access to port 92
ee3bcf907a x86: don't allow Dom0 access to port CF9
7b1de98b66 x86/vRTC: minor adjustment to reads from index port
7befef87cc x86/p2m: address violations of MISRA C:2012 Rules 8.2 and 8.3
93ec30bc54 x86/pv-shim: fix grant table operations for 32-bit guests
23eb39acf0 x86/mem_sharing: add missing m2p entry when mapping shared_info page
cfff187ed5 x86/cpu-policy: Adjust CPUID_MAX_SERIALISED_LEAVES to placate MISRA
8e74432dd3 xen/spinlock: fix use of 0 as a null pointer constant
6386f5585c x86/mce: Move MC_NCLASSES into the enum mctelem_class
a944636478 CHANGELOG.md: Start new 4.19.0 section
e4fdec09bb CHANGELOG.md: Finalize the 4.18 release date
bf51f85f20 CHANGELOG: More 4.18 content
d9c1166078 CHANGELOG: Reformat
850382254b docs: Fix IOMMU command line docs some more
df43b54590 automation: fix race condition in adl-suspend test
9659b2a6d7 Set version to 4.18; return ./autogen.sh
7f48e34298 Revert "Config.mk pin QEMU_UPSTREAM_REVISION (prep for Xen 4.18 RC1)"
4294987c7a Set version to 4.19; 4.18 has branched
5415b2b211 docs/arm: Document where Xen should be loaded in memory
d9f07b06cf CHANGELOG.md: Set 4.18 release date and tag
00314e0b35 CHANGELOG.md: Use "xenbits.xenproject.org" in links
da444feb23 CHANGELOG.md: Mention the MISRA-C improvement in 4.18 dev cycle
bad1ac345b x86: support data operand independent timing mode
8a5ef972ba CI: (More) Always pull base image when building a container
474fc7d3c6 iommu/vt-d: fix SAGAW capability parsing
94a5127ebe iommu: fix quarantine mode command line documentation
11f81a5a2c EFI: reduce memory map logging level
196a8fac1c automation: extract QEMU log in relevant hardware tests
cbb0fdc0d7 automation: improve checking for MSI/MSI-X in PCI passthrough tests
9c34956b19 automation: cleanup test alpine install
052813b1d2 automation: hide timeout countdown in log
dfe5bfc3d5 automation: include real-time view of the domU console log too
698b0f5031 console: make input work again for pv-shim
4bb882fe6e x86/pvh: fix identity mapping of low 1MB
7c3616e6f1 x86/microcode: Disable microcode update handler if DIS_MCU_UPDATE is set
001e8678dc x86: Read MSR_ARCH_CAPS immediately after early_microcode_init()
0df74ee09b x86/microcode: Ignore microcode loading interface for revision = -1
f11cb1c247 x86/microcode: WARN->INFO for the "no ucode loading" log message
40387f6206 tools/pygrub: Fix pygrub's --entry flag for python3
26ea12d940 x86/amd: Address AMD erratum #1485
141db3325b xen/pdx: Make CONFIG_PDX_COMPRESSION a common Kconfig option
f51c92383b xen/arm: Check return code from recursive calls to scan_pfdt_node()
e58bd71c09 cxenstored: wait until after reset to notify dom0less domains
7114bbfc84 get_maintainer: Add THE REST for sections with reviewers only
dcaec96ac0 xen/irq: address violations of MISRA C:2012 Rule 8.2
bef218208c x86/paging: address a violation of MISRA C:2012 Rule 8.3
4a106e1fb1 x86/mem_access: address violations of MISRA C:2012 Rule 8.3
0ce2ee7a16 xenalyze: Reduce warnings about leaving a vcpu in INIT
b26a234135 xenalyze: Fix interrupt EIP reporting
4292c54545 xenalyze: Don't expect an HVM_HANDLER trace for PAUSE vmexits
4ef752733b xenalyze: AMD's VMEXIT_VINTR doesn't need a trace record
ea6f4cd304 xenalyze: Only accumulate data from one vmexit without a handler
618826f673 MAINTAINERS: Make Bob Eschleman a reviewer
6432228fb5 xen/arm: vtimer: Don't read/use the secure physical timer interrupt for ACPI
730406ab81 docs/misra: add deviations.rst to document additional deviations.
9a5bbb2d34 xen/arm: Validate generic timer frequency
dc9d9aa62d x86/pv: Correct the auditing of guest breakpoint addresses
5d54282f98 x86/svm: Fix asymmetry with AMD DR MASK context switching
9c114178ff libxl: limit bootloader execution in restricted mode
1f762642d2 libxl: add support for running bootloader in restricted mode
e0342ae555 tools/pygrub: Deprivilege pygrub
990e65c3ad tools/libfsimage: Export a new function to preload all plugins
0710d7d445 tools/pygrub: Open the output files earlier
9f2ff9a7c9 tools/pygrub: Small refactors
f4b504c617 tools/pygrub: Remove unnecessary hypercall
7d85c70431 libfsimage/xfs: Add compile-time check to libfsimage
620500dd1b libfsimage/xfs: Sanity-check the superblock during mounts
ddc45e4eea libfsimage/xfs: Amend mask32lo() to allow the value 32
37fc1e6c1c libfsimage/xfs: Remove dead code
5fc98b9708 iommu/amd-vi: flush IOMMU TLB when flushing the DTE
9713423a06 xen/public: arch-arm: Update list of supported hypercalls
c035151902 x86: Clarify that only 5 hypercall parameters are supported
1357f1fa58 docs/sphinx: Switch hypercall-abi.rst to named footnotes
ffa1437686 tools/xenpvboot: remove as unable to convert to Python 3
baf5d78766 x86/memshr: Fix build in copy_vcpu_settings()
48a3fd1432 domain: expose newly introduced hypercalls as XENFEAT
6ba8384592 domain: fix misaligned unmap address in {,un}map_guest_area()
01343f99de arm/ioreq: guard interaction data on read/write operations
295514ff75 common: convert vCPU info area registration
60e544a8c5 x86: introduce GADDR based secondary time area registration alternative
d5df44275e domain: introduce GADDR based runstate area registration alternative
eadc288cbb domain: map/unmap GADDR based shared guest areas
c4dde71e3e x86/mem-sharing: copy GADDR based shared guest areas
c2e285ea0e x86: update GADDR based secondary time area
e1ddb822ca domain: update GADDR based runstate guest area
c4630e3162 domain: GADDR based shared guest area registration alternative - teardown
826da6e30c x86/shim: zap runstate and time area handles during shutdown
9a499a84a2 mem_sharing/fork: do not attempt to populate vcpu_info page
02c9896636 xen: arm: procinfo.h: Fixed a typo
3d2d9e9022 SUPPORT: downgrade Physical CPU Hotplug to Experimental
5bdfcf7fe8 docs/misra: add rule 2.1 exceptions
0b5bca91aa docs/misra: add rule 11.9
b1c84ab41a docs/misra: add 14.3
2797a71712 xen/ppc: Fix stack initialization in head.S
33cf950085 tools/xenstore: Avoid leaking memory in check_store
a8ab67cae0 Update Xen version to 4.18-rc
520d18e0ff Config.mk pin QEMU_UPSTREAM_REVISION (prep for Xen 4.18 RC1)
a363089e68 xen/common: Add NUMA node id bounds check to page_alloc.c/node_to_scrub
0595f96854 automation: Change build script to use arch defconfig
a1f8b32af0 ARM: GICv3 ITS: flush caches for newly allocated ITT
cbb71b95dd automation: Drop ppc64le-*randconfig jobs
e47f8c6c2a drivers/video: make declarations of defined functions available
d6351a10c8 xen/emul-i8254: remove forward declarations and re-order functions
7e55acb58a xen/numa: address a violation of MISRA C:2012 Rule 8.3
32e1380434 xen/hypercalls: address violations of MISRA C:2012 Rule 8.3
64e18eef5e MAINTAINERS: Remove myself as RISC-V maintainer
88a9501a84 xen/pdx: Reorder pdx.[ch]
63d077ede4 xen/pdx: Standardize region validation wrt pdx compression
bc2cda8c59 xen/mm: Factor out the pdx compression logic in ma/va converters
95a8a2c123 x86/pv: Fix the determiniation of whether to inject #DB
f6b0a80a36 x86/emul: ASSERT that X86EMUL_DONE doesn't escape to callers
e71157d1ac x86/paging: Delete update_cr3()'s do_locking parameter
e282067cf2 credit: Don't steal vcpus which have yielded
58feb9e0ac credit: Limit load balancing to once per millisecond
d09e44e5d8 console/serial: bump buffer from 16K to 32K
405cff8491 xen/arm64: head.S: Fix wrong enable_boot_cpu_mm() code movement
39113a8a23 tools/light: Revoke permissions when a PCI detach for HVM domain
932c3c8b4b README: Remove old note about the build system's python expectation
2a353c048c tools: Don't use distutils in configure or Makefile
9314a61936 tools/python: convert setup.py to use setuptools if available
bbc72a7877 automation: Add python3's setuptools to some containers
e07a276976 x86/APIC: Remove esr_disable
fb0ff49fe9 x86/shadow: defer releasing of PV's top-level shadow reference
9b57c800b7 x86/entry: Partially revert IST-exit checks
ea36ac0de2 xen/ppc: Enable full Xen build
23f2f4a097 xen/ppc: Add stub function and symbol definitions
4a2f68f909 xen/ppc: Define minimal stub headers required for full build
fa6696e63b x86/ACPI: Fix logging of MADT entries
93d2ee85f1 xen/vPCI: address violation of MISRA C:2012 Rule 8.3
b5926c6ecf x86/spec-ctrl: Mitigate the Zen1 DIV leakage
de1d265001 x86/amd: Introduce is_zen{1,2}_uarch() predicates
3ee6066bcd x86/spec-ctrl: Issue VERW during IST exit to Xen
21bdc25b05 x86/entry: Track the IST-ness of an entry for the exit paths
7aa28849a1 x86/entry: Adjust restore_all_xen to hold stack_end in %r14
45f0055735 x86/spec-ctrl: Improve all SPEC_CTRL_{ENTER,EXIT}_* comments
7125429aaf x86/spec-ctrl: Turn the remaining SPEC_CTRL_{ENTRY,EXIT}_* into asm macros
694bb0f280 x86/spec-ctrl: Fold DO_SPEC_CTRL_EXIT_TO_XEN into it's single user
1c18d73774 x86/spec-ctrl: Fix confusion between SPEC_CTRL_EXIT_TO_XEN{,_IST}
2ea38251eb xen/ppc: Implement bitops.h
e4ca4e261d x86/amd: do not expose HWCR.TscFreqSel to guests
c890499871 timer: fix NR_CPUS=1 build with gcc13
ba78957d92 xen/libelf: address violations of MISRA C:2012 Rules 8.2 and 8.3
290f82375d xen/arm: Skip Xen specific nodes/properties from hwdom /chosen node
b5a601093d docs/misra: accept 11.7 and 11.8
6aa25c3218 xen/ppc: Implement atomic.h
38e1da3ee4 x86/efi: address violations of MISRA C:2012 Rule 7.2
e29cb1f96f x86/mcheck: address violations of MISRA C:2012 Rule 7.2
75f42e0401 xen/lib: address violations of MISRA C:2012 Rule 7.2
3667e9bbfc xen/IOMMU: address violations of MISRA C:2012 Rules 8.2 and 8.3
e17706138d x86/msi: rearrange read_pci_mem_bar slightly
8e46c1ddb6 xen/pci: convert pci_find_*cap* to pci_sbdf_t
cb1c77b607 x86/hvm: address violations of MISRA C:2012 Rule 7.3
933a71756c xen/ioreq: address violations of MISRA C:2012 Rule 7.3
21ec0c4226 xen/arm: Handle empty grant table region in find_unallocated_memory()
5e8df433db x86/viridian: address violations of MISRA C:2012 Rule 7.2
7a952cc3ec build: restrict gcc11 workaround to versions earlier than 11.3.0
a22f0de322 x86/viridian: address violations of MISRA C:2012 Rule 7.3
f1546c98e0 tools/xentrace/xentrace_format: Add python 3 compatibility
4d6b0c2ac7 x86: Fix calculation of %dr6/dr7 reserved bits
aa39130d2b x86: Introduce new debug.c for debug register infrastructure
15987cb03f x86: Reject bad %dr6/%dr7 values when loading guest state
ab4f3e3897 xen/PCI: address violations of MISRA C:2012 Rules 8.2 and 8.3
9227a94e28 include: make domain_page.h's stubs properly use type-unsafe MFN <-> virt helpers
7ee3a44971 coverage: update gcov info for newer versions of gcc
745bf2b7de coverage: simplify the logic of choosing the number of gcov counters depending on the gcc version
38cb6be7bc cmdline: move irq-max-guests doc entry
3e73dd889d tools/misc/xencov_split: Add python 3 compatibility
35949b8c58 x86: change parameter name in {hap,shadow}_track_dirty_vram()
4aca8559d6 xen: move arm/include/asm/vm_event.h to asm-generic
56a9e44e7d xen: asm-generic support
bd31678c84 MAINTAINERS: generalize vm-event/monitor entry
49b2d6a529 xen/arm64: Fold setup_fixmap() to create_page_tables()
db5ad6d10f xen/arm: Move MMU related definitions from config.h to mmu/layout.h
6734327d76 xen/arm64: Split and move MMU-specific head.S to mmu/head.S
d52e9afe50 xen/arm: Introduce CONFIG_MMU Kconfig option
d2f8df5b3e xen/arm64: head.S: Introduce enable_{boot,secondary}_cpu_mm()
cba6d44a13 xen/arm: ioreq: add header for 'handle_ioserv' and 'try_fwd_ioserv'
1b715dbeb2 xen/ppc: Drop support for pseries/OpenFirmware
2ed144aff1 automation: Switch ppc64le tests to PowerNV machine type
0dc838d6ae automation: add awk to opensuse images
1f79fce10a x86/io_apic: address violations of MISRA C:2012 Rules 8.2 and 8.3
49caa97143 x86/io: address violations of MISRA C:2012 Rule 8.3
92c6c3cba1 x86/genapic: address a violation of MISRA C:2012 Rule 8.3
03f64b54a1 automation: execute SAF translation before the analysis with ECLAIR
5a415ef2b2 xen: apply deviation for Rule 8.4 (asm-only definitions)
f4b8a52034 Arm: constrain {,u}int64_aligned_t in public header
e18ca23f5f Revert "MAINTAINERS: consolidate vm-event/monitor entry"
b2dd946ece xen/arm: Fix printk specifiers and arguments in iomem_remove_cb()
6242d1b745 xen/arm: ffa: fix guest map RX/TX error code
d8c3ff585b tools/xl: Guard main_dt_overlay() with LIBXL_HAVE_DT_OVERLAY
c0291d6b5c xen: Change parameter of generic_{fls,ffs}() to unsigned int
05a0136761 xen/arm: smmuv3: Add missing U for shifted constant
72af797b7f xen/pci: update PCI_STATUS_* constants
61765a07e3 tools/xl: Add new xl command overlay for device tree overlay support
aa7354beb1 tools/libs/light: Implement new libxl functions for device tree overlay ops
f61243530e tools/libs/ctrl: Implement new xc interfaces for dt overlay
0c0facdab6 xen/arm: Implement device tree node addition functionalities
7e5c4a8b86 xen/arm: Implement device tree node removal functionalities
57d4d7d4e8 arm/asm/setup.h: Update struct map_range_data to add rangeset.
b8de00ff7a common/device_tree: Add rwlock for dt_host
f07bfa2e34 asm/smp.h: Fix circular dependency for device_tree.h and rwlock.h
3b27fff436 xen/smmu: Add remove_device callback for smmu_iommu ops
de89833857 xen/iommu: Introduce iommu_remove_dt_device()
6b0e3b74cb xen/iommu: protect iommu_add_dt_device() with dtdevs_lock
bd4ce8f7e0 xen/iommu: Move spin_lock from iommu_dt_device_is_assigned to caller
25141fed24 xen/device-tree: Add dt_find_node_by_path_from() to find nodes in device tree
d434dc4ac1 libfdt: overlay: change overlay_get_target()
6235b83eba libfdt: Keep fdt functions after init for CONFIG_OVERLAY_DTB.
427b6a571c xen/arm: Add CONFIG_OVERLAY_DTB
8c614471f6 common/device_tree: Export __unflatten_device_tree()
9e9d2c079d xen/arm/device: Remove __init from function type
3ec9528a82 common/device_tree.c: unflatten_device_tree() propagate errors
502c3af88d common/device_tree: handle memory allocation failure in __unflatten_device_tree()
9a216e92de xen/arm: page: Handle cache flush of an element at the top of the address space
74b725a64d xen/ppc: Implement initial Radix MMU support
f805cf3e9b MAINTAINERS: consolidate vm-event/monitor entry
629dd78c36 xen/ppc: Define bug frames table in linker script
08c192cc11 xen/ppc: Add public/arch-ppc.h
6621932264 arm64/vfp: address MISRA C:2012 Dir 4.3
1b7dc185f8 docs/misra: document gcc-specific behavior with shifting signed integers
1f2f5087c0 xen/sched: address violations of MISRA C:2012 Directive 4.10
591fd09ffb docs/misra: add rules 10.1 10.2 10.3 10.4
e5522c71be x86/msi: remove some unused-but-set-variables
709f6c8ce6 x86/irq: fix reporting of spurious i8259 interrupts
8c01f267ef xen/console: Set the default log level to INFO for release builds
47342d8f49 x86/ACPI: Ignore entries with invalid APIC IDs when parsing MADT
067f18c3a7 xen/vpci: address violations of MISRA C:2012 Rule 7.2
5d84f07fe6 xen/pci: drop remaining uses of bool_t
16109296b4 common: Add missing #includes treewide
ccc55b7c61 xen/vpci: address violations of MISRA C:2012 Rule 7.3
ec272d8d4c CI: Always move the bisect build log back
0742b0a081 tools/oxenstored: Additional debugging commands
870d5cd9a9 xen/IOMMU: Switch bool_t to bool
11d9f3ddf5 tools/libs: light: Remove the variable 'domainid' do_pci_remove()
b0cd7499dd docs/misra: add exceptions to rules
6a35ba8872 xen/mem_access: address violations of MISRA C:2012 Rule 7.3
6295f06a34 automation: avoid pipelines on specific branches
7c1bf8661d automation/eclair: avoid unintentional ECLAIR analysis
5c293058b1 tools/xenstore: move xenstored sources into dedicated directory
981b18c07d vpci/msix: make 'get_slot' static
552eb3e5e9 stubdom: remove openssl related clean actions
ba5bae659d Drop remains of prior SCMs
10c83bb0f5 x86/vmx: Revert "x86/VMX: sanitize rIP before re-entering guest"
ed317b8619 libxl/CPUID: drop two more feature flag table entries
43dab6e7ef libxc: remove / adjust xc_get_cpufreq_para()'s BUILD_BUG_ON()s
4442c8dd0b CHANGELOG: Add Intel HWP entry
8409f62a1c xenpm: Add set-cpufreq-cppc subcommand
c80f042da5 libxc: Add xc_set_cpufreq_cppc
d4d2f3f02e xen: Add SET_CPUFREQ_HWP xen_sysctl_pm_op
a93fde4f87 xenpm: Print HWP/CPPC parameters
cf476162b6 libxc: Include cppc_para in definitions
5eba6d3254 cpufreq: Export HWP parameters to userspace as CPPC
09a622e0eb xenpm: Change get-cpufreq-para output for hwp
b9310562ff xen/x86: Tweak PDC bits when using HWP
99c4570f82 cpufreq: Add Hardware P-State (HWP) driver
31e264c672 pmstat&xenpm: Re-arrage for cpufreq union
2381dfab08 xen/sysctl: Nest cpufreq scaling options
01a833e1fa cpufreq: Export intel_feature_detect
86e5be617e cpufreq: Add perf_freq to cpuinfo
b593388986 cpufreq: Allow restricting to internal governors only
a943a4f119 Revert "xen/hypercalls: address violations of MISRA C:2012 Rule 8.3"
18fa101081 xen/hypercalls: address violations of MISRA C:2012 Rule 8.3
18b4f7e1e1 xen/ppc: Relocate kernel to physical address 0 on boot
2115b443ab xen/ppc: Bump minimum target ISA to 3.0 (POWER9)
145a69c094 x86/AMD: extend Zenbleed check to models "good" ucode isn't known for
824b5a40dd build: make cc-option properly deal with unrecognized sub-options
a73560896c CI: Update FreeBSD to 12.4
a7d04b0e79 xen/pci: address a violation of MISRA C:2012 Rule 8.3
b3bb51f718 vm_event: rework inclusions to use arch-indipendent header
db75dfdb11 mem-sharing: move (x86) / drop (Arm) arch_dump_shared_mem_info()
5eb8c15171 x86/hpet: Disable legacy replacement mode after IRQ test
3fae7c56b3 xen/arm64: prepare for moving MMU related code from head.S
bf85271786 xen/public: arch-arm: All PSR_* defines should be unsigned
9fd20ec0bd xen/arm: vgic: Use 'unsigned int' rather than 'int' whenever it is possible
7c15584bdb xen/arm: vmmio: The number of entries cannot be negative
bf0bd6cf59 misra: add more entires to exclude-list.json
6775d81325 automation/eclair: update configuration
b2865c2b6f x86/svm: Fix valid condition in svm_get_pending_event()
cd36188b27 docs/coverage: Drop warning about 2M limit for ARM
5ddac3c285 rombios: Remove the use of egrep
a562afa567 rombios: Avoid using K&R function syntax
e35138a2ff rombios: Work around GCC issue 99578
6fba45ca3b x86emul: rework wrapping of libc functions in test and fuzzing harnesses
5cd6585177 tools/config: add XEN_RUN_STORED to config.h
dc45c3e8de tools/xenstore: introduce get_node_const()
0becb6ca5a tools/xenstore: rework get_node()
f174147e63 tools/xenstore: merge is_valid_nodename() into canonicalize()
154054ea10 tools/xenstore: merge get_spec_node() into get_node_canonicalized()
8a6bc0b8c6 tools/xenstore: introduce read_node_const()
9e70cc33d3 tools/xenstore: alloc new memory in domain_adjust_node_perms()
1a4b7008e9 tools/xenstore: use struct node_hdr in struct node
8cea54cfdc tools/xenstore: don't use struct node_perms in struct node
45ce0cb38f tools/xenstore: rework struct xs_tdb_record_hdr
e95c661889 tools/xenstore: move copying of node data out of db_fetch()
9eb0d66cae tools/xenstore: change talloc_free() to take a const pointer
f39c39ba25 tools/xenstore: let db_delete() return void
6bc3a1cbdc tools/xenstore: remove tdb code
8bf435cdf2 tools/xenstore: drop use of tdb
a9d11f0adc tools/xenstore: add hashtable_replace() function
901a740b32 tools/xenstore: let hashtable_add() fail in case of existing entry
a687272aad tools/xenstore: make hashtable key parameter const
e6cb27f2f2 docs: add Arm FF-A mediator
8abdd8d528 tools: add Arm FF-A mediator
51a3920363 xen/arm: ffa: list current limitations
cd3d2a9d97 xen/arm: ffa: improve lock granularity
195b2adf71 xen/arm: ffa: add support to reclaim shared memory
7fc2a2993d xen/arm: ffa: support sharing memory
8fe046e988 xen/arm: ffa: add ABI structs for sharing memory
8a36b557a5 xen/arm: ffa: add defines for sharing memory
88d750b880 xen/arm: move regpair_to_uint64() and uint64_to_regpair() to regs.h
caf6491e95 xen/arm: ffa: support guest FFA_PARTITION_INFO_GET
38d81e7ccb xen/arm: ffa: support mapping guest RX/TX buffers
4c4887bb7a xen/arm: ffa: send guest events to Secure Partitions
a33f28872c xen/arm: ffa: map SPMC rx/tx buffers
c9a1d98295 xen/arm: ffa: add direct request support
38ba0466a1 IOMMU/x86: fix build with old gcc after IO-APIC RTE changes
0801868f55 tboot: Disable CET at shutdown
ebce4e3a14 libxl: slightly correct JSON generation of CPU policy
d0eabe3eaf x86: address MISRA C:2012 Rule 5.3
18b15f11d8 xen/arm: traps: remove unused function 'dump_guest_s1_walk'
2763c33c6e automation: update jobs to use Debian Bookworm instead of unstable
33a1c443d9 automation: update test-artifacts to use Debian Bookworm instead of unstable
8ab05119df automation: switch from Debian unstable to bookworm
2909596927 Revert "xen/riscv: introduce decode_cause() stuff"
22e71609ad xen/riscv: introduce decode_cause() stuff
86bd2484f3 xen/riscv: introduce <asm/bug.h>
603a24573a xen/riscv: introduce temporary printk stuff
1f44323271 cpufreq: add missing include of header 'pmstat.h'
7a0eb50170 x86/setup: add missing headers
6bccbb1794 x86/hpet: make variable 'per_cpu__cpu_bc_channel' static
d1f6a58dfd build: correct gas --noexecstack check
a9a3b432a8 x86: adjust comparison for earlier signedness change
166eb670e6 x86/vmsi: rename variables to address MISRA C:2012 Rule 5.3
c6bda36af0 xen/arm: Skip inclusion of domU nodes into hwdom dt /chosen node
ac547f0bed xen/arm: Fix initrd placeholders generation in make_chosen_node()
6f9029cf8f automation: use Alpine 3.18 instead of 3.12 for all gitlab jobs
1e7f896de2 automation: upgrade Alpine build and test artifact containers to 3.18
f652fdd94a arm/efi: address MISRA C:2012 Rule 8.4
b70ffd2386 x86/nmi: include missing header with declarations for 'watchdog_*'
24908ef334 xen/arm: mm: add missing extern variable declaration
859c868de4 x86: make some functions and variables static rather than extern
baad64ad38 xen/arm: make declarations visible before function definitions
7b799e8ab3 xen/include: make a declaration of 'get_sec' visible where needed
2a54704bde xen: make 'saved_cmdline' static
dc8d86e03a xen/memory: make 'ioreq_server_max_frames' static
4086857cc1 x86: implement cpuid() in terms of cpuid_count()
751235f6d1 move PAGE_ALIGN() to common header
79c18114c7 automation/eclair: update analyzed builds
257a6e763a automation/eclair: add ECL deviations
f3ab12d216 automation/eclair: update clean guidelines
236fc9fdf9 xen/delay: address MISRA C:2012 Rule 5.3
f70e11db83 move max_page and total_pages to common code
e48acb2afe common: asm/desc.h is an x86-only header
aea61dbb8e common: __u8 is history
75e84d4772 common: move Linux-inherited fixed width type decls to common header
15601eed05 xen/arm64: head: Introduce a helper to flush local TLBs
a8a7c33e7d tools/xl: reject bootloader=pygrub in case pygrub is disabled
df8852543d tools: add configure option for libfsimage
c9a899f7f4 tools: add configure option for disabling pygrub
f974004ccb ns16550: Guard accesses to `vuart` field by CONFIG_ARM
82f7f7be46 libxenstat/Linux: pass nul-terminated string to strpbrk()
76c243b1bc automation: Fix missing smoke.serial in artifacts of qemu arm32 jobs
a9de4b62f4 x86/setup: address MISRA C:2012 Rule 5.3 and 8.3
752fd032bf x86: refactor macros in 'xen-mca.h'
7ee9556518 x86/xstate: address MISRA C:2012 Rule 5.3
f53d0136ae x86/include: address MISRA C:2012 Rule 5.3.
56d690efd3 x86/spec-ctrl: Mitigate Gather Data Sampling
9f585f59d9 x86/spec-ctrl: Enumerations for Gather Data Sampling
2dd06b4ea1 x86/cpu-policy: Hide CLWB by default on SKX/CLX/CPX
220c06e6fe x86/spec-ctrl: Mitigate Speculative Return Stack Overflow
2280b0ee2a x86/spec-ctrl: Enumerations for Speculative Return Stack Overflow
292f68fb77 x86/spec-ctrl: Rework ibpb_calculations()
46c5ef609b subdom: Fix -Werror=address failure in tmp_emulator
bd3ddaf6ee xen/arm: Add Cortex-A77 erratum 1508412 handling
cb827e7a19 x86/cpu: Address a violation of MISRA C:2012 Rule 8.3
ad89640ad7 libxl: Use XEN_LIB_DIR to store bootloader from pygrub
83ea97ecc0 xen/ppc: Implement early serial console on PowerNV
6fc15ec32b xen/ppc: Parse device tree for OPAL node on PowerNV
c99f57a783 xen/ppc: Add OPAL API definition header file
d3be806dae xen/x86: address violations of MISRA C:2012 Rule 7.3
84df4fd56d x86/mm: address violations of MISRA C:2012 Rule 7.3
2cb7d006b5 x86/IOMMU: address violations of MISRA C:2012 Rule 7.3
854c63f82c x86/svm: address violations of MISRA C:2012 Rule 7.3
c44cf8f584 AMD/IOMMU: address violations of MISRA C:2012 Rule 7.3
7d5ef63f08 automation: Advertise that ECLAIR jobs do not need prerequisites
5e7a0614a4 x86/mce: Address violations of MISRA C:2012 Rules 8.2 and 8.3
6456661cd0 x86/mtrr: address MISRA C:2012 Rule 5.3
48627540a1 x86/mce: address MISRA C:2012 Rule 5.3
6759b42fcb xen: change parameter name in monitor_domctl() declaration
65f0d6fc80 x86: Drop opt_pku entirely
767d1a2cfd arm/mm: Document the differences between arm32 and arm64 directmaps
d63ea6c46b libelf: address MISRA C:2012 Rule 5.3
202a341fd4 x86: Address violations of MISRA C:2012 by replacing bool_t uses
0c8d77e117 xen/include: address violations of MISRA C:2012 Rule 7.3
6ad7563727 xen/common: address violations of MISRA C:2012 Rule 7.3
b89d204ee0 xen/arm: address violations of MISRA C:2012 Rule 7.3
680e66544c xen/sched: address violations of MISRA C:2012 Rules 8.2 and 8.3
e26230a349 xen/sched: mechanical renaming to address MISRA C:2012 Rule 5.3
a628e73de1 x86/HVM: drop dead assignments from hvmemul_rep_{movs,stos}()
e55146071d automation: add missing "needs"
4a6448fd64 automation/eclair: avoid failure in case of missing merge point
0d3d7eb82f automation/eclair: add scheduled pipelines
5499c75c21 automation/eclair: add direct link to reports
4d687adc8c automation/eclair: add support for tag pipelines
092cae024a xen/x86: Constify the vCPU parameter for expand_xsave_states()
1aa5acbbec libxl: allow building with old gcc again
4f6afde88b libxl: avoid shadowing of index()
dfc490a374 arm: Avoid using solaris syntax for .section directive
da55d9dc91 x86/gen-cpuid: Avoid violations of Misra rule 1.3
73aea9ada8 x86: Delete str()
abe93fc8aa x86/entry: Rename the exception entrypoints
26638cd9ef x86/traps: Move do_general_protection() earlier
51588938e0 xen/ppc: Switch to medium PIC code model
c6dc0ee76d arm/efi: address MISRA C:2012 Rule 5.3
b3f817a6c5 drivers/char: address MISRA C:2012 Rule 5.3
8d75d8069b xen/common: address MISRA C:2012 Rule 5.3
e35944f37b common: move simple_strto{,u}l{,l}() to lib/
fe212797d7 xen/spinlock: address violations of MISRA C:2012 Rules 8.2 and 8.3
25325ddf2a x86: mechanically rename to address MISRA C:2012 Rule 5.3
1398cf54ef xen/lib: address violations of MISRA C:2012 Rules 8.2 and 8.3
c2026b88b5 xen/arm/IRQ: uniform irq_set_affinity() with x86 version
b524d54373 amd/iommu: rename functions to address MISRA C:2012 Rule 5.3
4b40696fec xen/pci: rename local variable to address MISRA C:2012 Rule 5.3
c0579c65f6 x86/HVM: tidy _hvm_load_entry() for style
fcc205cbcc EFI: address violations of MISRA C:2012 Rules 8.2 and 8.3
3e033172b0 x86/iommu: pass full IO-APIC RTE for remapping table update
7225f13aef x86: avoid Misra Rule 19.1 violations
70eb862b01 x86emul: remove local variable to address MISRA C:2012 Rule 5.3
fca1fa283a x86emul: avoid shadowing to address MISRA C:2012 Rule 5.3
79c3ae4b20 x86/mm: remove variable to avoid shadowing
f7065b24f4 amd: disable C6 after 1000 days on Zen2
4fd1910885 IOMMU: address violations of MISRA C:2012 Rules 8.2 and 8.3
d47e138d10 x86/IRQ: address violations of MISRA C: 2012 Rules 8.2 and 8.3
af6ad28a0f xen/IRQ: address violations of MISRA C: 2012 Rules 8.2 and 8.3
10d25fc47d xl: Add escape character argument to xl console
a07414d989 Config.mk: evaluate XEN_COMPILE_ARCH and XEN_OS immediately
0c594c1b57 build: evaluate XEN_BUILD_* and XEN_DOMAIN immediately
c0dd53b8cb x86/amd: Fix DE_CFG truncation in amd_check_zenbleed()
fff3c99f84 xen/keyhandler: address violations of MISRA C:2012 Rule 8.3 and drop bool_t
b903f0bfa9 xen/arm: mechanical renaming to address MISRA C:2012 Rule 5.3
388506fa2b xenalyze: remove unused defines
a40c3aa126 xentrace: adjust exit code for --help option
58275ab169 xenalyze: sync with vmx.h, use EXIT_REASON_MCE_DURING_VMENTRY
85b0029082 xenalyze: sync with vmx.h, use EXIT_REASON_VMXON
7eb7f7070c xenalyze: sync with vmx.h, use EXIT_REASON_VMXOFF
06ba087a89 xenalyze: sync with vmx.h, use EXIT_REASON_PENDING_VIRT_INTR
f1ea69ebc8 xentrace: use correct output format for pit and rtc
6b49fdfdb4 xentrace: remove unimplemented option from man page
dbd566ab72 xen/notifier: address violations of MISRA C:2012 Rule 8.3
56cc35e83e xen: change names and type qualifiers in copy_domain_page() declaration
d8bd8d2db4 libxl: Add missing libxl__virtio_devtype to device_type_tbl array
a478b38c01 iommu/vtd: rename io_apic_read_remap_rte() local variable
ef7995ed1b x86/ioapic: RTE modifications must use ioapic_write_entry
cdc48cb5a7 x86/ioapic: add a raw field to RTE struct
15d327e3d6 xen/arm/atomic: change parameter name in atomic_cmpxchg() definition
5e213f0f4d xen/arm32: head: Widen the use of the temporary mapping
3e5918d87a device_tree: address violations of MISRA C:2012 Rules 8.2 and 8.3
48b52e9428 xen/arm: Move TEE mediators in a kconfig submenu
3e55f826f4 tools/xenstore: add wrapper for tdb_fetch()
f56aa985ba tools/xenstore: switch get_acc_data() to use name instead of key
42c71d258e tools/xenstore: rename do_tdb_write() and change parameter type
549c4238b9 tools/xenstore: rename do_tdb_delete() and change parameter type
471c2410c8 tools/xenstore: let transaction_prepend() return the name for access
7185eee09c tools/xenstore: replace key in struct node with data base name
d99cf2f8ee tools/xenstore: explicitly specify create or modify for tdb_store()
0400946d53 automation: Add smoke test for ppc64le
baa6ea7003 vpci: add permission checks to map_range()
cef523b4a7 tools/xenstore: fix get_spec_node()
84f2751e10 tools/xenstore: add const to the return type of canonicalize()
58bba23a28 xen/ppc: Implement early serial printk on pseries
01e0e70c9a tools/console: Add escape argument to configure escape character
f126d7eeba maintainers: Add ECLAIR reviewer
9336df4a3e automation: Add ECLAIR pipelines
5b251cbca0 automation: Add xen builds for the ECLAIR analyses
c4392ec832 automation: Add ECLAIR utilities and settings
37c83b946e xen/kernel: change parameter name in add_taint() definition
357ef53512 xen/event: address violations of MISRA C:2012 Rules 8.2 and 8.3
b8cf4dea3c xen: use parameter name 'mcs' in arch_do_multicall_call()
3d2d4ea026 x86/boot: Update construct_dom0() to take a const char *cmdline
90732a8b4c xen/x86: Use const char * for string literals (2)
9895e33742 x86/hvm: Allow hvm_copy_to_guest_*() to come from const sources
9380f06fe8 xen: Drop the (almost) unused extern start[]
4b2cdbfe76 x86/cpu-policy: Advertise MSR_ARCH_CAPS to guests by default
6d21cedbaa libxl: add support for parsing MSR features
d638fe233c libxl: use the cpuid feature names from cpufeatureset.h
e2b1da9b8f libxl: split logic to parse user provided CPUID features
5b80cecb74 libxl: introduce MSR data in libxl_cpuid_policy
4825d19603 libxl: change the type of libxl_cpuid_policy_list
ed742cf1b6 libs/guest: introduce support for setting guest MSRs
1f8a6a99b2 docs/misra: document the usage of array range initializers
89d7903172 docs: Correct name for xen-command-line.pandoc
1b631a67ac xen/cpu: change parameter name in __cpu_up() declaration
0b1171be87 efi: mechanical renaming to address MISRA C:2012 Rule 5.3
9a51409452 docs/misra: add Rule 1.1 and 5.6
f91c5ea970 x86/amd: Mitigations for Zenbleed
3a4e6f67bc xen/ppc: Set up a basic C environment
0c683baa67 common: Move a few more standalone macros from xen/lib.h to xen/macros.h
f0437c378e x86/cpu-policy: address violations of MISRA C:2012 Rule 8.3 on parameter names
c14254065f libxl: arm: Add grant_usage parameter for virtio devices
0c53c638e1 tools/xenstore: fix XSA-417 patch
65fc6d8c92 x86/mtrr: address violations of MISRA C:2012 Rule 8.3 on parameter types
652d8fbb81 x86/HVM: address violations of MISRA C:2012 Rules 8.2 and 8.3
60576722d0 x86/vRTC: move and tidy convert_hour() and {to,from}_bcd()
cd50483537 xen: address MISRA C:2012 Rule 4.1
1ab2ae1610 xen/arm: ffa: add support for FFA_ID_GET
0dacee5cfb xen/arm: ffa: enforce dependency on 4k pages
246fdc288e xen/arm: ffa: add defines for framework direct request/response messages
aaa416d425 xen/arm: ffa: add flags for FFA_PARTITION_INFO_GET
9b6af1deb2 xen/arm: ffa: add remaining SMC function IDs
38846de217 xen/arm: tee: add a primitive FF-A mediator
3069ecdf36 xen/arm: smccc: add support for SMCCCv1.2 extended input/output registers
12e5c93f9d xen/arm: add TEE teardown to arch_domain_teardown()
2d775ee651 xen: Introduce arch_domain_teardown()
4bf014c6f7 x86/HVM/emul: address violations of MISRA C:2012 Rules 8.2 and 8.3
1046c3900b x86: change parameter name of hvm_monitor_msr() declaration
8301187452 docs/misc: fix document typo
55c48d27bd xen/misra: diff-report.py: fix function invocation
43247f4f23 xen/misra: diff-report.py: Fix UnifiedFormatParser change line registration
b1c16800e5 x86: fix early boot output
8bf52f9d83 xen/riscv: add SPDX tag to config.h
8f324b9664 common: move a few macros out of xen/lib.h
408a191b74 mm/pdx: Mark pdx hole description globals readonly after boot
484e88e31d mm/pdx: Add comments throughout the codebase for pdx
168340ced8 x86/ACPI: correct off-by-1 in SGI MMCFG check
62252f58d0 x86/HVM: adjust pIRQ calculation in hvm_inject_msi()
ee7867c6e4 x86: drop old (32-bit-only) MSR definitions
e04cc8a08d xen/ACPI: Remove acpi_get_pxm() entirely
ceab2c1acd xen/ACPI: Use const char * for string literals
993f0ecb6b xen/ACPI: Remove the acpi_string type
d642c07066 xen/x86: Use const char * for string literals
edecca33f9 xen/common: Use const char * for string literals
813da5f0e7 x86/ioapic: sanitize IO-APIC pins before enabling lapic LVTERR/ESR
b5fc8061b7 x86/mce: change parameter names in function definitions to match the corresponding declarations
3148ef6c7b xen/arm: fix violations of MISRA C:2012 Rule 7.2
d27d274ffa xen/arm: Account for domU dtb bootmodule size separately
028c43902b xen/arm: Fix domain_handle_dtb_bootmodule() error path
80248d526c iommu/ipmmu-vmsa: Add missing 'U' in IMTTLBR0_TTBR_MASK for shifted constant
11961f0a67 xen/arm: pci: fix check in pci_check_bar()
728bdd3a33 docs: Fix style in misc/arm/silicon-errata.txt table
2acec87694 x86/APIC: adjustments to error_interrupt() loop
6960e343d6 x86/APIC: modify error_interrupt() to output using single printk()
013670adf5 x86/APIC: include full string with error_interrupt() error messages
ea96231023 xen: fix violations of MISRA C:2012 Rule 3.1
99e4554893 ocaml/libs/xc: Fix NULL dereference with physinfo_arch_caps()
24909098fd docs/misra: add Rule 9.3
0a834e953b xen: fix violations of MISRA C:2012 Rule 7.2
a665d69e88 ACPI/APEI: fix violations of MISRA C:2012 Rule 7.2
d717825a20 x86/monitor: fix violations of MISRA C:2012 Rule 7.2
952ce1f38f xen/public: fix violations of MISRA C:2012 Rule 7.2
02ccfdcf4a xen/pci: fix violations of MISRA C:2012 Rule 7.2
5e6ad30ee5 xen/efi: fix violations of MISRA C:2012 Rule 7.2
4efde79938 xen/device-tree: fix violations of MISRA C:2012 Rule 7.2
82d3665d65 x86/svm: fix violations of MISRA C:2012 Rule 7.2
46e9277223 AMD/IOMMU: fix violations of MISRA C:2012 Rule 7.2
63077bd042 x86/cpufreq: fix violations of MISRA C:2012 Rule 7.2
08e2372c65 xenoprof: default to off
3c911be55f docs/misra: document the C dialect and translation toolchain assumptions.
2402591437 x86/emul: fix violations of MISRA C:2012 Rule 8.3 on parameter names
67f6063b1b docs/misra: add Rule 7.4 and 9.4
b831326ee2 cmdline: only set ask mode if vga= is present
fd62986f6b iommu/amd-vi: avoid pointless flushes in invalidate_all_domain_pages()
9473d9a241 cmdline: parse multiple instances of the vga option
60474e8e28 multiboot2: do not set StdOut mode unconditionally
c93aa5c5d0 multiboot2: parse vga= option when setting GOP mode
886c22f00c ppc: make also linking work with big-endian tool chain
68c85cf3a8 xenstore: talloc.h needs to include stdarg.h
a00f12055d x86/microcode: Allow reading microcode revision even if it can't be updated
1c139701eb xen/types: Rework stdint vs __{u,s}$N types
fe9e78dbd3 treewide: Avoid including asm/types.h
b2e688730a xen/types: Drop #ifdefary for __{SIZE,PTRDIFF}_TYPE__
8720e7f3a4 x86/asm: Introduce a tailcall pseduo-op
dc5e6082f5 xen/arm: Kconfig: ACPI should depend on UEFI
c2ff2ca3a9 xen/arm: smmuv3: fix violations of MISRA C:2012 Rule 3.1
5c02dbd0e0 xen/include: avoid using a compiler extension for BUILD_BUG_ON_ZERO
ac27b3beb9 build: remove TARGET_ARCH, a duplicate of SRCARCH
a6ab7dd061 build: remove TARGET_SUBARCH, a duplicate of ARCH
58e0a3f3b2 build: define ARCH and SRCARCH later
9b0fc8eeb2 xen/riscv: move extern of cpu0_boot_stack to header
afb775d3e5 xen/riscv: add SPDX tags
01a5814d4e libelf: make L1_MFN_VALID note known
12314be574 xen/arm: make ARM_EFI selectable for Arm64
7604056fb7 xen/arm: remove xen_phys_start and xenheap_phys_end from config.h
91957bf3ff xen/arm: vgic: Add missing 'U' in VGIC_ICFG_MASK for shifted constant
248fbb9ee2 tools/python: Fix memory leak on error path
619fe8a261 tools: Fix ifdef for aarch64 that should include also arm
c16460ff07 xen/arm: mm: Add missing ISB in xen_pt_update()
feaa9aca87 xen/arm: pmap: Add missing ISB in arch_pmap_map()
863a42a0c9 xen/arm: page: Consolidate write_pte() and clarify the documentation
d29a767d04 xen/arm64: head: Add missing isb in setup_fixmap()
f5a49eb7f8 xen/arm32: head: Add mising isb in switch_to_runtime_mapping()
f7c24c2907 xen/arm32: head: Add missing isb in setup_fixmap()
abb1522832 xen/arm: Allow the user to build Xen with UBSAN
7356733f72 xen/arm: Rework the code mapping Xen to avoid relying on the size of Xen
78d2de69e5 xen/arm32: head: Don't map too much in boot_third
804145a161 xen/arm64: head: Don't map too much in boot_third
c53384ea2f xen/arm: grant-table: Correct the prototype of the arch helpers
6e06d229d5 xen: Correct comments after renaming xen_{dom,sys}ctl_cpu_policy fields
f51e5d8eae x86/vlapic: Change parameter names in function definitions
02e294de60 x86/hvm: Change parameter names of nestedhvm_vcpu_iomap_get() definition
f319f32347 x86/hvm: Swap parameter names of hvm_copy_context_and_params() declaration
098e27578b x86: Add Kconfig option to require NX bit support
fc3090a47b x86/boot: Clear XD_DISABLE from the early boot path
91d4159a34 tools: Add __AC() macro to common-macros.h
9dd3caf12f {x86,arm}/mm.c: Make populate_pt_range __init
c81b287e00 xenalyze: Basic TRC_HVM_EMUL handling
aab4b38b5d xenalyze: Handle start-of-day ->RUNNING transitions
6aa0c18062 tools/xenstore: remove unused stuff from list.h
63b6419d2a tools/xenstore: split out rest of live update control code
1a7fafdc74 tools/xenstore: split out environment specific live update code
b2126a992f tools/xenstore: replace xs_lib.c with a header
9859a80380 tools/xenstore: remove no longer needed functions from xs_lib.c
bd1001db0a xen/arm: arm32: Allow Xen to boot on unidentified CPUs
2a6da58442 xen/arm32: vfp: Add missing U for shifted constant
3460987c77 xen/arm64: head: Rework PRINT() to work when the string is not withing +/- 1MB
ef62b34aeb xen/arm64: entry: Don't jump outside of an alternative
2b0af6e398 xen/arm32: head: Remove 'r6' from the clobber list of create_page_tables()
02a11313cd xen/arm: Check Xen size when linking
0adb4147fd xen/arm: tlbflush: fix violations of MISRA C:2012 Rule 3.1
160975b898 docs/misra: rules: Remove incorrect deviation guidance
49ecef9fb4 docs/misra: add Rules 8.2, 8.3, 8.14
5b9c96a808 xen/arm: change parameter names in replace_grant_host_mapping().
06ed62d1f3 xen/arm: make parameter names of function declarations consistent.
98ca99685d xen/arm: vgic: change parameter name in 'init' and 'free' functions.
31f54edf7e xen/arm: change parameter name 'pa' in ioremap_addr() definition.
be17548c00 xen/arm: change parameter name 'vcpu' in domain() function definition.
8f47510b84 xen/arm: change names in function access_guest_memory_by_ipa().
6c32a08e2b x86/vpmu: Simplify is_pmc_quirk
5c84f1f636 xen/decompress: Drop bool_t and use bool instead
ef8d841229 automation: Fix KBUILD_DEFCONFIG for *ppc64le jobs
b1a7c2b297 automation: Add QEMU to bullseye-ppc64le
1ec2f5305b maintainers: Add ppc64 maintainer
125a180741 automation: Add ppc64le cross-build jobs
b0582dd686 xen: Add files needed for minimal ppc64le build
7f314e0aa5 build: Drop CONFIG_$ARCH_$(XEN_OS) definitions
14f42af3f5 x86/vPIT: account for "counter stopped" time
1f70315327 x86/vPIT: re-order functions
a6120e3fc8 x86: Use printk_once() instead of opencoding it
e5ba5165ca xen/evtchn: Purge ERROR_EXIT{,_DOM}()
42473bae23 xen/arm: pl011: Add SBSA UART device-tree support
47e3941d2e xen/arm: pl011: Use correct accessors
4fa2272458 xen/arm: debug-pl011: Add support for 32-bit only MMIO
655d0798d2 xen/arm: debug-pl011: Use correct accessors
314a54c1c2 xen/misra: add rules 1.4 and 2.1
d95f436c7d docs/misra: new rules addition
43e863a02d x86/boot: Clean up early error asm
3a07da55e6 xen/riscv: introduce reset_stack() function
652ccd1f4a xen/riscv: add .sbss section to .bss
c6df21062b Config.mk: update OVMF to edk2-stable202305
82b28deb25 iommu/vtd: fix address translation for leaf entries
ea613d2367 SUPPORT.md: write down restriction of 32-bit tool stacks
a17fd0feb6 automation: Disable QEMU build with Clang older than 10.0
7a25a1501c xen/arm: p2m: Enable support for 32bit IPA for ARM_32
7c72147baa xen/arm: Restrict zeroeth_table_offset for ARM_64
c3aabf7bd2 xen/arm: guest_walk: LPAE specific bits should be enclosed within "ifndef CONFIG_PHYS_ADDR_T_32"
b6733ed0cb xen/arm: Introduce choice to enable 64/32 bit physical addressing
6d44fb48bd xen/arm: p2m: Use the pa_range_info table to support arm32 and arm64
e533438e3d automation: Add container for ppc64le builds
e0586a4ff5 x86/cpu-policy: Derive RSBA/RRSBA for guest policies
36525a964f x86/spec-ctrl: Fix up the RSBA/RRSBA bits as appropriate
724c0d94ff x86/spec-ctrl: Rename retpoline_safe() to retpoline_calculations()
3f63f45104 x86/spec-ctrl: Use a taint for CET without MSR_SPEC_CTRL
921afcbae8 x86/spec-ctrl: Fix the rendering of FB_CLEAR
c4e492a139 xen: Append a newline character to panic() where missing
6044b485ba xen/arm: Remove stray semicolon at VREG_REG_HELPERS/TLB_HELPER* callers
4802e4a44e xen/arm: traps: remove inlining of handle_ro_raz()
1512a68721 xen/grant: Purge PIN_FAIL()
9c0b207001 x86/shadow: Don't use signed bitfield in sh_emulate_ctxt
621625f696 x86/p2m.h: Add include guards
a012a4aba1 Arm: drop bogus ALIGN() from linker script
9e9aec6141 spinlock: alter inlining of _spin_lock_cb()
afbfe55544 libxg: shrink variable scope in xc_core_arch_map_p2m_list_rw()
87c621d0ef libxl: drop dead assignment to transaction variable from libxl__domain_make()
2dbc4d4fb5 libxg: drop dead assignment to "rc" from xc_cpuid_apply_policy()
129aba0e79 libxl: drop dead assignments to "ret" from libxl__domain_config_setdefault()
cf584d27f5 xen-mfndump: drop dead assignment to "page" from lookup_pte_func()
2f69ef9680 tools: fix make rpmball
5ecbb77974 iommu/amd-vi: fix checking for Invalidate All support in amd_iommu_resume()
f29363922c x86: minor tidying of identify_cpu()
f4be887879 livepatch: apply_alternatives() is only used for livepatch
7d5e58730d xen/riscv: add __ASSEMBLY__ guard to asm/page.h
f68f4723ec libxl: Call libxl__virtio_devtype.set_default() early enough
5e3463af07 libxl: virtio: Remove unused frontend nodes
128557e3a4 tools/xenstored: Correct the prototype of domain_max_chk()
1a0342507c tools/libs/store: make libxenstore independent of utils.h
0d5dfd2ed6 tools/libs/store: use xen_list.h instead of xenstore/list.h
84ac67cd1e xen/arm: rename guest_cpuinfo in domain_cpuinfo
b4642c32c4 tools/ocaml/xc: Fix xc_physinfo() bindings
961a63e13b CI: Add Ocaml to the alpine containers
5b02f568d3 tools/xenstore: remove support of file backed data base
2b58b249cd tools/xenstore: remove unused events list
38f430ceb2 tools/xenstore: remove stale TODO file
f28a3b49d3 tools/xenstore: switch write limiting to use millisecond time base
f8f4042b39 tools/xenstore: make some write limit functions static
d78c91c406 tools/xenstore: rename hashtable_insert() and let it return 0 on success
9b2c27e277 tools/xenstore: modify interface of create_hashtable()
d3c7262d75 tools/xenstore: do some cleanup of hashtable.c
ea1e8a2daf tools/xenstore: verify command line parameters better
3a82e4501c tools: Move MASK_INSR to common-macros.h
6915a12064 x86/hvm: print valid CR4 bits in case of error
606bb708e1 CI: Fix the github actions Coverity run
0c2d0d32b3 docs: Fix xl.cfg documentation
685048441e tools/xenstore: switch quota management to be table based
561687f6bc tools/xenstore: switch get_optval_int() to get_optval_uint()
564a093c20 tools/xenstore: use generic accounting for remaining quotas
948be0e94d tools/xenstore: remember global and per domain max accounting values
304ed13b9a tools/xenstore: switch transaction accounting to generic accounting
ff7509c2b7 tools/xenstore: add TDB access trace support
a808657252 tools/xenstore: add accounting trace support
e180d3200a tools/xenstore: use accounting data array for per-domain values
d0740236fd tools/xenstore: add current connection to domain_memory_add() parameters
a4ffaa0824 tools/xenstore: use accounting buffering for node accounting
192e2f6a11 tools/xenstore: add framework to commit accounting data on success only
621949547c tools/xenstore: introduce accounting data array for per-domain values
fbec254545 tools/xenstore: manage per-transaction domain accounting data in an array
887b576ba9 tools/xenstore: take transaction internal nodes into account for quota
cb8b18d49a xen/changelog: Add SVE and "dom0" options to the changelog for Arm
870394de44 xen/arm: add sve property for dom0less domUs
b46e8207d0 xen/tools: add sve parameter in XL configuration
56a7aaa16b tools: add physinfo arch_capabilities handling for Arm
9392bf6a3a xen/physinfo: encode Arm SVE vector length in arch_capabilities
fd53bc7af0 xen: enable Dom0 to use SVE feature
f2095a51ac xen/common: add dom0 xen command line argument for Arm
ac5855d5c7 arm/sve: save/restore SVE context switch
3c6e726241 xen/arm: add SVE exception class handling
c5ff38cdd8 xen/arm: Expose SVE feature to the guest
8043e80de9 xen/arm: add SVE vector length field to the domain
ddcbaa42d8 xen/arm: enable SVE extension for Xen
64a647f8d8 maintainers: Add Xen MISRA Analysis Tools section
1d7c45f895 xen/misra: diff-report.py: add report patching feature
43840b53f6 xen/misra: add diff-report.py tool
b35b22acb8 x86/microcode: Add missing unlock in microcode_update_helper()
a5917ca28b xen: Fix incorrect taint constant
e291c4c3e1 x86emul: AVX512-FP16 testing
b3880c365d MAINTAINERS: remove xenstore related files from LIBS
4f86b96779 build: use $(dot-target)
e3631d797d x86emul: handle AVX512-FP16 conversion to/from (packed) int{32,64} insns
ae11304c59 x86emul: handle AVX512-FP16 floating point conversion insns
59c2c9c2a0 x86emul: handle AVX512-FP16 conversion to/from (packed) int16 insns
d14c52cba0 x86emul: handle AVX512-FP16 complex multiplication insns
520f0acc7a x86emul: handle AVX512-FP16 Map6 misc insns
67d458c84a x86emul: handle AVX512-FP16 fma-like insns
da2e0057c7 x86emul: handle AVX512-FP16 move insns
6b4d5c26a6 x86emul: handle AVX512-FP16 Map5 arithmetic insns
b67934082e x86emul: handle AVX512-FP16 insns encoded in 0f3a opcode map
7c6fdc40a0 x86emul: rework compiler probing in the test harness
67fdffef92 automation: zen3 dom0pvh test
71226054f2 x86/ucode: Exit early from early_update_cache() if loading not available
59d0bf6286 xen/cpu-policy: Add an IBRS -> AUTO_IBRS dependency
064f572f96 x86/cpu-policy: Rearrange guest_common_default_feature_adjustments()
dc98fa7444 xentrace: close output file in the function which opened it
f53c498276 xentrace: remove return value from monitor_tbufs
0e0d3c00bc xentrace: allow xentrace to write to stdout
04f25e9048 vPCI: fix test harness build
7a2f0ba0d0 vPCI: add test harness entry to ./MAINTAINERS
465217b0f8 vPCI: account for hidden devices
445fdc641e xen/include/public: fix 9pfs xenstore path description
0f80a46ffa xen/riscv: remove dummy_bss variable
0d74fc2b2f xen/riscv: setup initial pagetables
ec337ce2e9 xen/riscv: align __bss_start
e66003e7be xen/riscv: introduce setup_initial_pages
efadb18dd5 xen/riscv: add VM space layout
94200e1bae x86/spec-ctrl: Update hardware hints
defaf65163 x86/hvm: Expose Automatic IBRS to guests
8347d6bb29 x86: Add bit definitions for Automatic IBRS
05422d276b build: adjust compile.h compiler version command line
352c917acf x86/vPIC: register only one ELCR handler instance
647377ea06 xen/arm: un-break build with clang
2a8a168150 tools/xenstore: remove deprecated parameter from xenstore commands help
ca045140d9 xen/misra: xen-analysis.py: Fix cppcheck report relative paths
8bd504290b xen/misra: xen-analysis.py: Fix latent bug
e56f2106b6 VMX/cpu-policy: disable RDTSCP and INVPCID insns as needed
233a8f20cf VMX/cpu-policy: check availability of RDTSCP and INVPCID
f54dd5b53e xen: dt: Replace u64 with uint64_t as the callback function parameters for dt_for_each_range()
133f6df947 xen/arm: domain_build: Check if the address fits the range of physical address
adbcc656ff xen/arm: smmu: Use writeq_relaxed_non_atomic() for writing to SMMU_CBn_TTBR0
1407cff85f xen/arm: Introduce a wrapper for dt_device_get_address() to handle paddr_t
3d4b02468a xen/arm: Typecast the DT values into paddr_t
f37a598139 xen/arm: domain_build: Track unallocated pages using the frame number
40cd186bfd x86/hvm/ioreq: remove empty line after function declaration
ee045f3a4a vpci/header: cope with devices not having vpci allocated
67c28bfc52 build: use $(filechk, ) for all compat/.xlat/%.lst
1d3668664d x86/shadow: restrict OOS allocation to when it's really needed
8670cbb0b3 docs: fix complex-and-wrong xenstore-path wording
f642e842d3 build: shorten macro references
354be8936d public: fix comment typo regarding IOREQ Server
053ffa783e x86/iommu: adjust type in arch_iommu_hwdom_init()
56c0063f4e xen/misra: xen-analysis.py: Improve the cppcheck version check
cca2361947 automation: Enable parallel build with cppcheck analysis
511b9f286c x86/spec-ctrl: Remove opencoded MSR_ARCH_CAPS check
205a9f9703 x86/tsx: Remove opencoded MSR_ARCH_CAPS check
8f6bc7f9b7 x86/vtx: Remove opencoded MSR_ARCH_CAPS check
a87d131a8c x86/cpufeature: Rework {boot_,}cpu_has()
bbb289f3d5 x86/boot: Expose MSR_ARCH_CAPS data in guest max policies
70553000d6 x86/boot: Record MSR_ARCH_CAPS for the Raw and Host CPU policy
ce8c930851 x86/cpu-policy: MSR_ARCH_CAPS feature names
d9fe459ffa x86/cpu-policy: Infrastructure for MSR_ARCH_CAPS
43912f8dbb x86/boot: Adjust MSR_ARCH_CAPS handling for the Host policy
ef1987fcb0 x86/boot: Rework dom0 feature configuration
380c6c1703 build: hide that we are updating xen/lib/x86
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f85c258408 |
xen: drop unsupported versions
https://xenbits.xen.org/docs/unstable/support-matrix.html Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
bedc8e93cc |
xen: introduce 4.18 recipes
Bumping xen to version 4.18.0-rc4-179-gf96e2f6457, which comprises the following commits:
bad1ac345b x86: support data operand independent timing mode
8a5ef972ba CI: (More) Always pull base image when building a container
474fc7d3c6 iommu/vt-d: fix SAGAW capability parsing
94a5127ebe iommu: fix quarantine mode command line documentation
11f81a5a2c EFI: reduce memory map logging level
196a8fac1c automation: extract QEMU log in relevant hardware tests
cbb0fdc0d7 automation: improve checking for MSI/MSI-X in PCI passthrough tests
9c34956b19 automation: cleanup test alpine install
052813b1d2 automation: hide timeout countdown in log
dfe5bfc3d5 automation: include real-time view of the domU console log too
698b0f5031 console: make input work again for pv-shim
4bb882fe6e x86/pvh: fix identity mapping of low 1MB
7c3616e6f1 x86/microcode: Disable microcode update handler if DIS_MCU_UPDATE is set
001e8678dc x86: Read MSR_ARCH_CAPS immediately after early_microcode_init()
0df74ee09b x86/microcode: Ignore microcode loading interface for revision = -1
f11cb1c247 x86/microcode: WARN->INFO for the "no ucode loading" log message
40387f6206 tools/pygrub: Fix pygrub's --entry flag for python3
26ea12d940 x86/amd: Address AMD erratum #1485
141db3325b xen/pdx: Make CONFIG_PDX_COMPRESSION a common Kconfig option
f51c92383b xen/arm: Check return code from recursive calls to scan_pfdt_node()
e58bd71c09 cxenstored: wait until after reset to notify dom0less domains
7114bbfc84 get_maintainer: Add THE REST for sections with reviewers only
dcaec96ac0 xen/irq: address violations of MISRA C:2012 Rule 8.2
bef218208c x86/paging: address a violation of MISRA C:2012 Rule 8.3
4a106e1fb1 x86/mem_access: address violations of MISRA C:2012 Rule 8.3
0ce2ee7a16 xenalyze: Reduce warnings about leaving a vcpu in INIT
b26a234135 xenalyze: Fix interrupt EIP reporting
4292c54545 xenalyze: Don't expect an HVM_HANDLER trace for PAUSE vmexits
4ef752733b xenalyze: AMD's VMEXIT_VINTR doesn't need a trace record
ea6f4cd304 xenalyze: Only accumulate data from one vmexit without a handler
618826f673 MAINTAINERS: Make Bob Eschleman a reviewer
6432228fb5 xen/arm: vtimer: Don't read/use the secure physical timer interrupt for ACPI
730406ab81 docs/misra: add deviations.rst to document additional deviations.
9a5bbb2d34 xen/arm: Validate generic timer frequency
dc9d9aa62d x86/pv: Correct the auditing of guest breakpoint addresses
5d54282f98 x86/svm: Fix asymmetry with AMD DR MASK context switching
9c114178ff libxl: limit bootloader execution in restricted mode
1f762642d2 libxl: add support for running bootloader in restricted mode
e0342ae555 tools/pygrub: Deprivilege pygrub
990e65c3ad tools/libfsimage: Export a new function to preload all plugins
0710d7d445 tools/pygrub: Open the output files earlier
9f2ff9a7c9 tools/pygrub: Small refactors
f4b504c617 tools/pygrub: Remove unnecessary hypercall
7d85c70431 libfsimage/xfs: Add compile-time check to libfsimage
620500dd1b libfsimage/xfs: Sanity-check the superblock during mounts
ddc45e4eea libfsimage/xfs: Amend mask32lo() to allow the value 32
37fc1e6c1c libfsimage/xfs: Remove dead code
5fc98b9708 iommu/amd-vi: flush IOMMU TLB when flushing the DTE
9713423a06 xen/public: arch-arm: Update list of supported hypercalls
c035151902 x86: Clarify that only 5 hypercall parameters are supported
1357f1fa58 docs/sphinx: Switch hypercall-abi.rst to named footnotes
ffa1437686 tools/xenpvboot: remove as unable to convert to Python 3
baf5d78766 x86/memshr: Fix build in copy_vcpu_settings()
48a3fd1432 domain: expose newly introduced hypercalls as XENFEAT
6ba8384592 domain: fix misaligned unmap address in {,un}map_guest_area()
01343f99de arm/ioreq: guard interaction data on read/write operations
295514ff75 common: convert vCPU info area registration
60e544a8c5 x86: introduce GADDR based secondary time area registration alternative
d5df44275e domain: introduce GADDR based runstate area registration alternative
eadc288cbb domain: map/unmap GADDR based shared guest areas
c4dde71e3e x86/mem-sharing: copy GADDR based shared guest areas
c2e285ea0e x86: update GADDR based secondary time area
e1ddb822ca domain: update GADDR based runstate guest area
c4630e3162 domain: GADDR based shared guest area registration alternative - teardown
826da6e30c x86/shim: zap runstate and time area handles during shutdown
9a499a84a2 mem_sharing/fork: do not attempt to populate vcpu_info page
02c9896636 xen: arm: procinfo.h: Fixed a typo
3d2d9e9022 SUPPORT: downgrade Physical CPU Hotplug to Experimental
5bdfcf7fe8 docs/misra: add rule 2.1 exceptions
0b5bca91aa docs/misra: add rule 11.9
b1c84ab41a docs/misra: add 14.3
2797a71712 xen/ppc: Fix stack initialization in head.S
33cf950085 tools/xenstore: Avoid leaking memory in check_store
a8ab67cae0 Update Xen version to 4.18-rc
520d18e0ff Config.mk pin QEMU_UPSTREAM_REVISION (prep for Xen 4.18 RC1)
a363089e68 xen/common: Add NUMA node id bounds check to page_alloc.c/node_to_scrub
0595f96854 automation: Change build script to use arch defconfig
a1f8b32af0 ARM: GICv3 ITS: flush caches for newly allocated ITT
cbb71b95dd automation: Drop ppc64le-*randconfig jobs
e47f8c6c2a drivers/video: make declarations of defined functions available
d6351a10c8 xen/emul-i8254: remove forward declarations and re-order functions
7e55acb58a xen/numa: address a violation of MISRA C:2012 Rule 8.3
32e1380434 xen/hypercalls: address violations of MISRA C:2012 Rule 8.3
64e18eef5e MAINTAINERS: Remove myself as RISC-V maintainer
88a9501a84 xen/pdx: Reorder pdx.[ch]
63d077ede4 xen/pdx: Standardize region validation wrt pdx compression
bc2cda8c59 xen/mm: Factor out the pdx compression logic in ma/va converters
95a8a2c123 x86/pv: Fix the determiniation of whether to inject #DB
f6b0a80a36 x86/emul: ASSERT that X86EMUL_DONE doesn't escape to callers
e71157d1ac x86/paging: Delete update_cr3()'s do_locking parameter
e282067cf2 credit: Don't steal vcpus which have yielded
58feb9e0ac credit: Limit load balancing to once per millisecond
d09e44e5d8 console/serial: bump buffer from 16K to 32K
405cff8491 xen/arm64: head.S: Fix wrong enable_boot_cpu_mm() code movement
39113a8a23 tools/light: Revoke permissions when a PCI detach for HVM domain
932c3c8b4b README: Remove old note about the build system's python expectation
2a353c048c tools: Don't use distutils in configure or Makefile
9314a61936 tools/python: convert setup.py to use setuptools if available
bbc72a7877 automation: Add python3's setuptools to some containers
e07a276976 x86/APIC: Remove esr_disable
fb0ff49fe9 x86/shadow: defer releasing of PV's top-level shadow reference
9b57c800b7 x86/entry: Partially revert IST-exit checks
ea36ac0de2 xen/ppc: Enable full Xen build
23f2f4a097 xen/ppc: Add stub function and symbol definitions
4a2f68f909 xen/ppc: Define minimal stub headers required for full build
fa6696e63b x86/ACPI: Fix logging of MADT entries
93d2ee85f1 xen/vPCI: address violation of MISRA C:2012 Rule 8.3
b5926c6ecf x86/spec-ctrl: Mitigate the Zen1 DIV leakage
de1d265001 x86/amd: Introduce is_zen{1,2}_uarch() predicates
3ee6066bcd x86/spec-ctrl: Issue VERW during IST exit to Xen
21bdc25b05 x86/entry: Track the IST-ness of an entry for the exit paths
7aa28849a1 x86/entry: Adjust restore_all_xen to hold stack_end in %r14
45f0055735 x86/spec-ctrl: Improve all SPEC_CTRL_{ENTER,EXIT}_* comments
7125429aaf x86/spec-ctrl: Turn the remaining SPEC_CTRL_{ENTRY,EXIT}_* into asm macros
694bb0f280 x86/spec-ctrl: Fold DO_SPEC_CTRL_EXIT_TO_XEN into it's single user
1c18d73774 x86/spec-ctrl: Fix confusion between SPEC_CTRL_EXIT_TO_XEN{,_IST}
2ea38251eb xen/ppc: Implement bitops.h
e4ca4e261d x86/amd: do not expose HWCR.TscFreqSel to guests
c890499871 timer: fix NR_CPUS=1 build with gcc13
ba78957d92 xen/libelf: address violations of MISRA C:2012 Rules 8.2 and 8.3
290f82375d xen/arm: Skip Xen specific nodes/properties from hwdom /chosen node
b5a601093d docs/misra: accept 11.7 and 11.8
6aa25c3218 xen/ppc: Implement atomic.h
38e1da3ee4 x86/efi: address violations of MISRA C:2012 Rule 7.2
e29cb1f96f x86/mcheck: address violations of MISRA C:2012 Rule 7.2
75f42e0401 xen/lib: address violations of MISRA C:2012 Rule 7.2
3667e9bbfc xen/IOMMU: address violations of MISRA C:2012 Rules 8.2 and 8.3
e17706138d x86/msi: rearrange read_pci_mem_bar slightly
8e46c1ddb6 xen/pci: convert pci_find_*cap* to pci_sbdf_t
cb1c77b607 x86/hvm: address violations of MISRA C:2012 Rule 7.3
933a71756c xen/ioreq: address violations of MISRA C:2012 Rule 7.3
21ec0c4226 xen/arm: Handle empty grant table region in find_unallocated_memory()
5e8df433db x86/viridian: address violations of MISRA C:2012 Rule 7.2
7a952cc3ec build: restrict gcc11 workaround to versions earlier than 11.3.0
a22f0de322 x86/viridian: address violations of MISRA C:2012 Rule 7.3
f1546c98e0 tools/xentrace/xentrace_format: Add python 3 compatibility
4d6b0c2ac7 x86: Fix calculation of %dr6/dr7 reserved bits
aa39130d2b x86: Introduce new debug.c for debug register infrastructure
15987cb03f x86: Reject bad %dr6/%dr7 values when loading guest state
ab4f3e3897 xen/PCI: address violations of MISRA C:2012 Rules 8.2 and 8.3
9227a94e28 include: make domain_page.h's stubs properly use type-unsafe MFN <-> virt helpers
7ee3a44971 coverage: update gcov info for newer versions of gcc
745bf2b7de coverage: simplify the logic of choosing the number of gcov counters depending on the gcc version
38cb6be7bc cmdline: move irq-max-guests doc entry
3e73dd889d tools/misc/xencov_split: Add python 3 compatibility
35949b8c58 x86: change parameter name in {hap,shadow}_track_dirty_vram()
4aca8559d6 xen: move arm/include/asm/vm_event.h to asm-generic
56a9e44e7d xen: asm-generic support
bd31678c84 MAINTAINERS: generalize vm-event/monitor entry
49b2d6a529 xen/arm64: Fold setup_fixmap() to create_page_tables()
db5ad6d10f xen/arm: Move MMU related definitions from config.h to mmu/layout.h
6734327d76 xen/arm64: Split and move MMU-specific head.S to mmu/head.S
d52e9afe50 xen/arm: Introduce CONFIG_MMU Kconfig option
d2f8df5b3e xen/arm64: head.S: Introduce enable_{boot,secondary}_cpu_mm()
cba6d44a13 xen/arm: ioreq: add header for 'handle_ioserv' and 'try_fwd_ioserv'
1b715dbeb2 xen/ppc: Drop support for pseries/OpenFirmware
2ed144aff1 automation: Switch ppc64le tests to PowerNV machine type
0dc838d6ae automation: add awk to opensuse images
1f79fce10a x86/io_apic: address violations of MISRA C:2012 Rules 8.2 and 8.3
49caa97143 x86/io: address violations of MISRA C:2012 Rule 8.3
92c6c3cba1 x86/genapic: address a violation of MISRA C:2012 Rule 8.3
03f64b54a1 automation: execute SAF translation before the analysis with ECLAIR
5a415ef2b2 xen: apply deviation for Rule 8.4 (asm-only definitions)
f4b8a52034 Arm: constrain {,u}int64_aligned_t in public header
e18ca23f5f Revert "MAINTAINERS: consolidate vm-event/monitor entry"
b2dd946ece xen/arm: Fix printk specifiers and arguments in iomem_remove_cb()
6242d1b745 xen/arm: ffa: fix guest map RX/TX error code
d8c3ff585b tools/xl: Guard main_dt_overlay() with LIBXL_HAVE_DT_OVERLAY
c0291d6b5c xen: Change parameter of generic_{fls,ffs}() to unsigned int
05a0136761 xen/arm: smmuv3: Add missing U for shifted constant
72af797b7f xen/pci: update PCI_STATUS_* constants
61765a07e3 tools/xl: Add new xl command overlay for device tree overlay support
aa7354beb1 tools/libs/light: Implement new libxl functions for device tree overlay ops
f61243530e tools/libs/ctrl: Implement new xc interfaces for dt overlay
0c0facdab6 xen/arm: Implement device tree node addition functionalities
7e5c4a8b86 xen/arm: Implement device tree node removal functionalities
57d4d7d4e8 arm/asm/setup.h: Update struct map_range_data to add rangeset.
b8de00ff7a common/device_tree: Add rwlock for dt_host
f07bfa2e34 asm/smp.h: Fix circular dependency for device_tree.h and rwlock.h
3b27fff436 xen/smmu: Add remove_device callback for smmu_iommu ops
de89833857 xen/iommu: Introduce iommu_remove_dt_device()
6b0e3b74cb xen/iommu: protect iommu_add_dt_device() with dtdevs_lock
bd4ce8f7e0 xen/iommu: Move spin_lock from iommu_dt_device_is_assigned to caller
25141fed24 xen/device-tree: Add dt_find_node_by_path_from() to find nodes in device tree
d434dc4ac1 libfdt: overlay: change overlay_get_target()
6235b83eba libfdt: Keep fdt functions after init for CONFIG_OVERLAY_DTB.
427b6a571c xen/arm: Add CONFIG_OVERLAY_DTB
8c614471f6 common/device_tree: Export __unflatten_device_tree()
9e9d2c079d xen/arm/device: Remove __init from function type
3ec9528a82 common/device_tree.c: unflatten_device_tree() propagate errors
502c3af88d common/device_tree: handle memory allocation failure in __unflatten_device_tree()
9a216e92de xen/arm: page: Handle cache flush of an element at the top of the address space
74b725a64d xen/ppc: Implement initial Radix MMU support
f805cf3e9b MAINTAINERS: consolidate vm-event/monitor entry
629dd78c36 xen/ppc: Define bug frames table in linker script
08c192cc11 xen/ppc: Add public/arch-ppc.h
6621932264 arm64/vfp: address MISRA C:2012 Dir 4.3
1b7dc185f8 docs/misra: document gcc-specific behavior with shifting signed integers
1f2f5087c0 xen/sched: address violations of MISRA C:2012 Directive 4.10
591fd09ffb docs/misra: add rules 10.1 10.2 10.3 10.4
e5522c71be x86/msi: remove some unused-but-set-variables
709f6c8ce6 x86/irq: fix reporting of spurious i8259 interrupts
8c01f267ef xen/console: Set the default log level to INFO for release builds
47342d8f49 x86/ACPI: Ignore entries with invalid APIC IDs when parsing MADT
067f18c3a7 xen/vpci: address violations of MISRA C:2012 Rule 7.2
5d84f07fe6 xen/pci: drop remaining uses of bool_t
16109296b4 common: Add missing #includes treewide
ccc55b7c61 xen/vpci: address violations of MISRA C:2012 Rule 7.3
ec272d8d4c CI: Always move the bisect build log back
0742b0a081 tools/oxenstored: Additional debugging commands
870d5cd9a9 xen/IOMMU: Switch bool_t to bool
11d9f3ddf5 tools/libs: light: Remove the variable 'domainid' do_pci_remove()
b0cd7499dd docs/misra: add exceptions to rules
6a35ba8872 xen/mem_access: address violations of MISRA C:2012 Rule 7.3
6295f06a34 automation: avoid pipelines on specific branches
7c1bf8661d automation/eclair: avoid unintentional ECLAIR analysis
5c293058b1 tools/xenstore: move xenstored sources into dedicated directory
981b18c07d vpci/msix: make 'get_slot' static
552eb3e5e9 stubdom: remove openssl related clean actions
ba5bae659d Drop remains of prior SCMs
10c83bb0f5 x86/vmx: Revert "x86/VMX: sanitize rIP before re-entering guest"
ed317b8619 libxl/CPUID: drop two more feature flag table entries
43dab6e7ef libxc: remove / adjust xc_get_cpufreq_para()'s BUILD_BUG_ON()s
4442c8dd0b CHANGELOG: Add Intel HWP entry
8409f62a1c xenpm: Add set-cpufreq-cppc subcommand
c80f042da5 libxc: Add xc_set_cpufreq_cppc
d4d2f3f02e xen: Add SET_CPUFREQ_HWP xen_sysctl_pm_op
a93fde4f87 xenpm: Print HWP/CPPC parameters
cf476162b6 libxc: Include cppc_para in definitions
5eba6d3254 cpufreq: Export HWP parameters to userspace as CPPC
09a622e0eb xenpm: Change get-cpufreq-para output for hwp
b9310562ff xen/x86: Tweak PDC bits when using HWP
99c4570f82 cpufreq: Add Hardware P-State (HWP) driver
31e264c672 pmstat&xenpm: Re-arrage for cpufreq union
2381dfab08 xen/sysctl: Nest cpufreq scaling options
01a833e1fa cpufreq: Export intel_feature_detect
86e5be617e cpufreq: Add perf_freq to cpuinfo
b593388986 cpufreq: Allow restricting to internal governors only
a943a4f119 Revert "xen/hypercalls: address violations of MISRA C:2012 Rule 8.3"
18fa101081 xen/hypercalls: address violations of MISRA C:2012 Rule 8.3
18b4f7e1e1 xen/ppc: Relocate kernel to physical address 0 on boot
2115b443ab xen/ppc: Bump minimum target ISA to 3.0 (POWER9)
145a69c094 x86/AMD: extend Zenbleed check to models "good" ucode isn't known for
824b5a40dd build: make cc-option properly deal with unrecognized sub-options
a73560896c CI: Update FreeBSD to 12.4
a7d04b0e79 xen/pci: address a violation of MISRA C:2012 Rule 8.3
b3bb51f718 vm_event: rework inclusions to use arch-indipendent header
db75dfdb11 mem-sharing: move (x86) / drop (Arm) arch_dump_shared_mem_info()
5eb8c15171 x86/hpet: Disable legacy replacement mode after IRQ test
3fae7c56b3 xen/arm64: prepare for moving MMU related code from head.S
bf85271786 xen/public: arch-arm: All PSR_* defines should be unsigned
9fd20ec0bd xen/arm: vgic: Use 'unsigned int' rather than 'int' whenever it is possible
7c15584bdb xen/arm: vmmio: The number of entries cannot be negative
bf0bd6cf59 misra: add more entires to exclude-list.json
6775d81325 automation/eclair: update configuration
b2865c2b6f x86/svm: Fix valid condition in svm_get_pending_event()
cd36188b27 docs/coverage: Drop warning about 2M limit for ARM
5ddac3c285 rombios: Remove the use of egrep
a562afa567 rombios: Avoid using K&R function syntax
e35138a2ff rombios: Work around GCC issue 99578
6fba45ca3b x86emul: rework wrapping of libc functions in test and fuzzing harnesses
5cd6585177 tools/config: add XEN_RUN_STORED to config.h
dc45c3e8de tools/xenstore: introduce get_node_const()
0becb6ca5a tools/xenstore: rework get_node()
f174147e63 tools/xenstore: merge is_valid_nodename() into canonicalize()
154054ea10 tools/xenstore: merge get_spec_node() into get_node_canonicalized()
8a6bc0b8c6 tools/xenstore: introduce read_node_const()
9e70cc33d3 tools/xenstore: alloc new memory in domain_adjust_node_perms()
1a4b7008e9 tools/xenstore: use struct node_hdr in struct node
8cea54cfdc tools/xenstore: don't use struct node_perms in struct node
45ce0cb38f tools/xenstore: rework struct xs_tdb_record_hdr
e95c661889 tools/xenstore: move copying of node data out of db_fetch()
9eb0d66cae tools/xenstore: change talloc_free() to take a const pointer
f39c39ba25 tools/xenstore: let db_delete() return void
6bc3a1cbdc tools/xenstore: remove tdb code
8bf435cdf2 tools/xenstore: drop use of tdb
a9d11f0adc tools/xenstore: add hashtable_replace() function
901a740b32 tools/xenstore: let hashtable_add() fail in case of existing entry
a687272aad tools/xenstore: make hashtable key parameter const
e6cb27f2f2 docs: add Arm FF-A mediator
8abdd8d528 tools: add Arm FF-A mediator
51a3920363 xen/arm: ffa: list current limitations
cd3d2a9d97 xen/arm: ffa: improve lock granularity
195b2adf71 xen/arm: ffa: add support to reclaim shared memory
7fc2a2993d xen/arm: ffa: support sharing memory
8fe046e988 xen/arm: ffa: add ABI structs for sharing memory
8a36b557a5 xen/arm: ffa: add defines for sharing memory
88d750b880 xen/arm: move regpair_to_uint64() and uint64_to_regpair() to regs.h
caf6491e95 xen/arm: ffa: support guest FFA_PARTITION_INFO_GET
38d81e7ccb xen/arm: ffa: support mapping guest RX/TX buffers
4c4887bb7a xen/arm: ffa: send guest events to Secure Partitions
a33f28872c xen/arm: ffa: map SPMC rx/tx buffers
c9a1d98295 xen/arm: ffa: add direct request support
38ba0466a1 IOMMU/x86: fix build with old gcc after IO-APIC RTE changes
0801868f55 tboot: Disable CET at shutdown
ebce4e3a14 libxl: slightly correct JSON generation of CPU policy
d0eabe3eaf x86: address MISRA C:2012 Rule 5.3
18b15f11d8 xen/arm: traps: remove unused function 'dump_guest_s1_walk'
2763c33c6e automation: update jobs to use Debian Bookworm instead of unstable
33a1c443d9 automation: update test-artifacts to use Debian Bookworm instead of unstable
8ab05119df automation: switch from Debian unstable to bookworm
2909596927 Revert "xen/riscv: introduce decode_cause() stuff"
22e71609ad xen/riscv: introduce decode_cause() stuff
86bd2484f3 xen/riscv: introduce <asm/bug.h>
603a24573a xen/riscv: introduce temporary printk stuff
1f44323271 cpufreq: add missing include of header 'pmstat.h'
7a0eb50170 x86/setup: add missing headers
6bccbb1794 x86/hpet: make variable 'per_cpu__cpu_bc_channel' static
d1f6a58dfd build: correct gas --noexecstack check
a9a3b432a8 x86: adjust comparison for earlier signedness change
166eb670e6 x86/vmsi: rename variables to address MISRA C:2012 Rule 5.3
c6bda36af0 xen/arm: Skip inclusion of domU nodes into hwdom dt /chosen node
ac547f0bed xen/arm: Fix initrd placeholders generation in make_chosen_node()
6f9029cf8f automation: use Alpine 3.18 instead of 3.12 for all gitlab jobs
1e7f896de2 automation: upgrade Alpine build and test artifact containers to 3.18
f652fdd94a arm/efi: address MISRA C:2012 Rule 8.4
b70ffd2386 x86/nmi: include missing header with declarations for 'watchdog_*'
24908ef334 xen/arm: mm: add missing extern variable declaration
859c868de4 x86: make some functions and variables static rather than extern
baad64ad38 xen/arm: make declarations visible before function definitions
7b799e8ab3 xen/include: make a declaration of 'get_sec' visible where needed
2a54704bde xen: make 'saved_cmdline' static
dc8d86e03a xen/memory: make 'ioreq_server_max_frames' static
4086857cc1 x86: implement cpuid() in terms of cpuid_count()
751235f6d1 move PAGE_ALIGN() to common header
79c18114c7 automation/eclair: update analyzed builds
257a6e763a automation/eclair: add ECL deviations
f3ab12d216 automation/eclair: update clean guidelines
236fc9fdf9 xen/delay: address MISRA C:2012 Rule 5.3
f70e11db83 move max_page and total_pages to common code
e48acb2afe common: asm/desc.h is an x86-only header
aea61dbb8e common: __u8 is history
75e84d4772 common: move Linux-inherited fixed width type decls to common header
15601eed05 xen/arm64: head: Introduce a helper to flush local TLBs
a8a7c33e7d tools/xl: reject bootloader=pygrub in case pygrub is disabled
df8852543d tools: add configure option for libfsimage
c9a899f7f4 tools: add configure option for disabling pygrub
f974004ccb ns16550: Guard accesses to `vuart` field by CONFIG_ARM
82f7f7be46 libxenstat/Linux: pass nul-terminated string to strpbrk()
76c243b1bc automation: Fix missing smoke.serial in artifacts of qemu arm32 jobs
a9de4b62f4 x86/setup: address MISRA C:2012 Rule 5.3 and 8.3
752fd032bf x86: refactor macros in 'xen-mca.h'
7ee9556518 x86/xstate: address MISRA C:2012 Rule 5.3
f53d0136ae x86/include: address MISRA C:2012 Rule 5.3.
56d690efd3 x86/spec-ctrl: Mitigate Gather Data Sampling
9f585f59d9 x86/spec-ctrl: Enumerations for Gather Data Sampling
2dd06b4ea1 x86/cpu-policy: Hide CLWB by default on SKX/CLX/CPX
220c06e6fe x86/spec-ctrl: Mitigate Speculative Return Stack Overflow
2280b0ee2a x86/spec-ctrl: Enumerations for Speculative Return Stack Overflow
292f68fb77 x86/spec-ctrl: Rework ibpb_calculations()
46c5ef609b subdom: Fix -Werror=address failure in tmp_emulator
bd3ddaf6ee xen/arm: Add Cortex-A77 erratum 1508412 handling
cb827e7a19 x86/cpu: Address a violation of MISRA C:2012 Rule 8.3
ad89640ad7 libxl: Use XEN_LIB_DIR to store bootloader from pygrub
83ea97ecc0 xen/ppc: Implement early serial console on PowerNV
6fc15ec32b xen/ppc: Parse device tree for OPAL node on PowerNV
c99f57a783 xen/ppc: Add OPAL API definition header file
d3be806dae xen/x86: address violations of MISRA C:2012 Rule 7.3
84df4fd56d x86/mm: address violations of MISRA C:2012 Rule 7.3
2cb7d006b5 x86/IOMMU: address violations of MISRA C:2012 Rule 7.3
854c63f82c x86/svm: address violations of MISRA C:2012 Rule 7.3
c44cf8f584 AMD/IOMMU: address violations of MISRA C:2012 Rule 7.3
7d5ef63f08 automation: Advertise that ECLAIR jobs do not need prerequisites
5e7a0614a4 x86/mce: Address violations of MISRA C:2012 Rules 8.2 and 8.3
6456661cd0 x86/mtrr: address MISRA C:2012 Rule 5.3
48627540a1 x86/mce: address MISRA C:2012 Rule 5.3
6759b42fcb xen: change parameter name in monitor_domctl() declaration
65f0d6fc80 x86: Drop opt_pku entirely
767d1a2cfd arm/mm: Document the differences between arm32 and arm64 directmaps
d63ea6c46b libelf: address MISRA C:2012 Rule 5.3
202a341fd4 x86: Address violations of MISRA C:2012 by replacing bool_t uses
0c8d77e117 xen/include: address violations of MISRA C:2012 Rule 7.3
6ad7563727 xen/common: address violations of MISRA C:2012 Rule 7.3
b89d204ee0 xen/arm: address violations of MISRA C:2012 Rule 7.3
680e66544c xen/sched: address violations of MISRA C:2012 Rules 8.2 and 8.3
e26230a349 xen/sched: mechanical renaming to address MISRA C:2012 Rule 5.3
a628e73de1 x86/HVM: drop dead assignments from hvmemul_rep_{movs,stos}()
e55146071d automation: add missing "needs"
4a6448fd64 automation/eclair: avoid failure in case of missing merge point
0d3d7eb82f automation/eclair: add scheduled pipelines
5499c75c21 automation/eclair: add direct link to reports
4d687adc8c automation/eclair: add support for tag pipelines
092cae024a xen/x86: Constify the vCPU parameter for expand_xsave_states()
1aa5acbbec libxl: allow building with old gcc again
4f6afde88b libxl: avoid shadowing of index()
dfc490a374 arm: Avoid using solaris syntax for .section directive
da55d9dc91 x86/gen-cpuid: Avoid violations of Misra rule 1.3
73aea9ada8 x86: Delete str()
abe93fc8aa x86/entry: Rename the exception entrypoints
26638cd9ef x86/traps: Move do_general_protection() earlier
51588938e0 xen/ppc: Switch to medium PIC code model
c6dc0ee76d arm/efi: address MISRA C:2012 Rule 5.3
b3f817a6c5 drivers/char: address MISRA C:2012 Rule 5.3
8d75d8069b xen/common: address MISRA C:2012 Rule 5.3
e35944f37b common: move simple_strto{,u}l{,l}() to lib/
fe212797d7 xen/spinlock: address violations of MISRA C:2012 Rules 8.2 and 8.3
25325ddf2a x86: mechanically rename to address MISRA C:2012 Rule 5.3
1398cf54ef xen/lib: address violations of MISRA C:2012 Rules 8.2 and 8.3
c2026b88b5 xen/arm/IRQ: uniform irq_set_affinity() with x86 version
b524d54373 amd/iommu: rename functions to address MISRA C:2012 Rule 5.3
4b40696fec xen/pci: rename local variable to address MISRA C:2012 Rule 5.3
c0579c65f6 x86/HVM: tidy _hvm_load_entry() for style
fcc205cbcc EFI: address violations of MISRA C:2012 Rules 8.2 and 8.3
3e033172b0 x86/iommu: pass full IO-APIC RTE for remapping table update
7225f13aef x86: avoid Misra Rule 19.1 violations
70eb862b01 x86emul: remove local variable to address MISRA C:2012 Rule 5.3
fca1fa283a x86emul: avoid shadowing to address MISRA C:2012 Rule 5.3
79c3ae4b20 x86/mm: remove variable to avoid shadowing
f7065b24f4 amd: disable C6 after 1000 days on Zen2
4fd1910885 IOMMU: address violations of MISRA C:2012 Rules 8.2 and 8.3
d47e138d10 x86/IRQ: address violations of MISRA C: 2012 Rules 8.2 and 8.3
af6ad28a0f xen/IRQ: address violations of MISRA C: 2012 Rules 8.2 and 8.3
10d25fc47d xl: Add escape character argument to xl console
a07414d989 Config.mk: evaluate XEN_COMPILE_ARCH and XEN_OS immediately
0c594c1b57 build: evaluate XEN_BUILD_* and XEN_DOMAIN immediately
c0dd53b8cb x86/amd: Fix DE_CFG truncation in amd_check_zenbleed()
fff3c99f84 xen/keyhandler: address violations of MISRA C:2012 Rule 8.3 and drop bool_t
b903f0bfa9 xen/arm: mechanical renaming to address MISRA C:2012 Rule 5.3
388506fa2b xenalyze: remove unused defines
a40c3aa126 xentrace: adjust exit code for --help option
58275ab169 xenalyze: sync with vmx.h, use EXIT_REASON_MCE_DURING_VMENTRY
85b0029082 xenalyze: sync with vmx.h, use EXIT_REASON_VMXON
7eb7f7070c xenalyze: sync with vmx.h, use EXIT_REASON_VMXOFF
06ba087a89 xenalyze: sync with vmx.h, use EXIT_REASON_PENDING_VIRT_INTR
f1ea69ebc8 xentrace: use correct output format for pit and rtc
6b49fdfdb4 xentrace: remove unimplemented option from man page
dbd566ab72 xen/notifier: address violations of MISRA C:2012 Rule 8.3
56cc35e83e xen: change names and type qualifiers in copy_domain_page() declaration
d8bd8d2db4 libxl: Add missing libxl__virtio_devtype to device_type_tbl array
a478b38c01 iommu/vtd: rename io_apic_read_remap_rte() local variable
ef7995ed1b x86/ioapic: RTE modifications must use ioapic_write_entry
cdc48cb5a7 x86/ioapic: add a raw field to RTE struct
15d327e3d6 xen/arm/atomic: change parameter name in atomic_cmpxchg() definition
5e213f0f4d xen/arm32: head: Widen the use of the temporary mapping
3e5918d87a device_tree: address violations of MISRA C:2012 Rules 8.2 and 8.3
48b52e9428 xen/arm: Move TEE mediators in a kconfig submenu
3e55f826f4 tools/xenstore: add wrapper for tdb_fetch()
f56aa985ba tools/xenstore: switch get_acc_data() to use name instead of key
42c71d258e tools/xenstore: rename do_tdb_write() and change parameter type
549c4238b9 tools/xenstore: rename do_tdb_delete() and change parameter type
471c2410c8 tools/xenstore: let transaction_prepend() return the name for access
7185eee09c tools/xenstore: replace key in struct node with data base name
d99cf2f8ee tools/xenstore: explicitly specify create or modify for tdb_store()
0400946d53 automation: Add smoke test for ppc64le
baa6ea7003 vpci: add permission checks to map_range()
cef523b4a7 tools/xenstore: fix get_spec_node()
84f2751e10 tools/xenstore: add const to the return type of canonicalize()
58bba23a28 xen/ppc: Implement early serial printk on pseries
01e0e70c9a tools/console: Add escape argument to configure escape character
f126d7eeba maintainers: Add ECLAIR reviewer
9336df4a3e automation: Add ECLAIR pipelines
5b251cbca0 automation: Add xen builds for the ECLAIR analyses
c4392ec832 automation: Add ECLAIR utilities and settings
37c83b946e xen/kernel: change parameter name in add_taint() definition
357ef53512 xen/event: address violations of MISRA C:2012 Rules 8.2 and 8.3
b8cf4dea3c xen: use parameter name 'mcs' in arch_do_multicall_call()
3d2d4ea026 x86/boot: Update construct_dom0() to take a const char *cmdline
90732a8b4c xen/x86: Use const char * for string literals (2)
9895e33742 x86/hvm: Allow hvm_copy_to_guest_*() to come from const sources
9380f06fe8 xen: Drop the (almost) unused extern start[]
4b2cdbfe76 x86/cpu-policy: Advertise MSR_ARCH_CAPS to guests by default
6d21cedbaa libxl: add support for parsing MSR features
d638fe233c libxl: use the cpuid feature names from cpufeatureset.h
e2b1da9b8f libxl: split logic to parse user provided CPUID features
5b80cecb74 libxl: introduce MSR data in libxl_cpuid_policy
4825d19603 libxl: change the type of libxl_cpuid_policy_list
ed742cf1b6 libs/guest: introduce support for setting guest MSRs
1f8a6a99b2 docs/misra: document the usage of array range initializers
89d7903172 docs: Correct name for xen-command-line.pandoc
1b631a67ac xen/cpu: change parameter name in __cpu_up() declaration
0b1171be87 efi: mechanical renaming to address MISRA C:2012 Rule 5.3
9a51409452 docs/misra: add Rule 1.1 and 5.6
f91c5ea970 x86/amd: Mitigations for Zenbleed
3a4e6f67bc xen/ppc: Set up a basic C environment
0c683baa67 common: Move a few more standalone macros from xen/lib.h to xen/macros.h
f0437c378e x86/cpu-policy: address violations of MISRA C:2012 Rule 8.3 on parameter names
c14254065f libxl: arm: Add grant_usage parameter for virtio devices
0c53c638e1 tools/xenstore: fix XSA-417 patch
65fc6d8c92 x86/mtrr: address violations of MISRA C:2012 Rule 8.3 on parameter types
652d8fbb81 x86/HVM: address violations of MISRA C:2012 Rules 8.2 and 8.3
60576722d0 x86/vRTC: move and tidy convert_hour() and {to,from}_bcd()
cd50483537 xen: address MISRA C:2012 Rule 4.1
1ab2ae1610 xen/arm: ffa: add support for FFA_ID_GET
0dacee5cfb xen/arm: ffa: enforce dependency on 4k pages
246fdc288e xen/arm: ffa: add defines for framework direct request/response messages
aaa416d425 xen/arm: ffa: add flags for FFA_PARTITION_INFO_GET
9b6af1deb2 xen/arm: ffa: add remaining SMC function IDs
38846de217 xen/arm: tee: add a primitive FF-A mediator
3069ecdf36 xen/arm: smccc: add support for SMCCCv1.2 extended input/output registers
12e5c93f9d xen/arm: add TEE teardown to arch_domain_teardown()
2d775ee651 xen: Introduce arch_domain_teardown()
4bf014c6f7 x86/HVM/emul: address violations of MISRA C:2012 Rules 8.2 and 8.3
1046c3900b x86: change parameter name of hvm_monitor_msr() declaration
8301187452 docs/misc: fix document typo
55c48d27bd xen/misra: diff-report.py: fix function invocation
43247f4f23 xen/misra: diff-report.py: Fix UnifiedFormatParser change line registration
b1c16800e5 x86: fix early boot output
8bf52f9d83 xen/riscv: add SPDX tag to config.h
8f324b9664 common: move a few macros out of xen/lib.h
408a191b74 mm/pdx: Mark pdx hole description globals readonly after boot
484e88e31d mm/pdx: Add comments throughout the codebase for pdx
168340ced8 x86/ACPI: correct off-by-1 in SGI MMCFG check
62252f58d0 x86/HVM: adjust pIRQ calculation in hvm_inject_msi()
ee7867c6e4 x86: drop old (32-bit-only) MSR definitions
e04cc8a08d xen/ACPI: Remove acpi_get_pxm() entirely
ceab2c1acd xen/ACPI: Use const char * for string literals
993f0ecb6b xen/ACPI: Remove the acpi_string type
d642c07066 xen/x86: Use const char * for string literals
edecca33f9 xen/common: Use const char * for string literals
813da5f0e7 x86/ioapic: sanitize IO-APIC pins before enabling lapic LVTERR/ESR
b5fc8061b7 x86/mce: change parameter names in function definitions to match the corresponding declarations
3148ef6c7b xen/arm: fix violations of MISRA C:2012 Rule 7.2
d27d274ffa xen/arm: Account for domU dtb bootmodule size separately
028c43902b xen/arm: Fix domain_handle_dtb_bootmodule() error path
80248d526c iommu/ipmmu-vmsa: Add missing 'U' in IMTTLBR0_TTBR_MASK for shifted constant
11961f0a67 xen/arm: pci: fix check in pci_check_bar()
728bdd3a33 docs: Fix style in misc/arm/silicon-errata.txt table
2acec87694 x86/APIC: adjustments to error_interrupt() loop
6960e343d6 x86/APIC: modify error_interrupt() to output using single printk()
013670adf5 x86/APIC: include full string with error_interrupt() error messages
ea96231023 xen: fix violations of MISRA C:2012 Rule 3.1
99e4554893 ocaml/libs/xc: Fix NULL dereference with physinfo_arch_caps()
24909098fd docs/misra: add Rule 9.3
0a834e953b xen: fix violations of MISRA C:2012 Rule 7.2
a665d69e88 ACPI/APEI: fix violations of MISRA C:2012 Rule 7.2
d717825a20 x86/monitor: fix violations of MISRA C:2012 Rule 7.2
952ce1f38f xen/public: fix violations of MISRA C:2012 Rule 7.2
02ccfdcf4a xen/pci: fix violations of MISRA C:2012 Rule 7.2
5e6ad30ee5 xen/efi: fix violations of MISRA C:2012 Rule 7.2
4efde79938 xen/device-tree: fix violations of MISRA C:2012 Rule 7.2
82d3665d65 x86/svm: fix violations of MISRA C:2012 Rule 7.2
46e9277223 AMD/IOMMU: fix violations of MISRA C:2012 Rule 7.2
63077bd042 x86/cpufreq: fix violations of MISRA C:2012 Rule 7.2
08e2372c65 xenoprof: default to off
3c911be55f docs/misra: document the C dialect and translation toolchain assumptions.
2402591437 x86/emul: fix violations of MISRA C:2012 Rule 8.3 on parameter names
67f6063b1b docs/misra: add Rule 7.4 and 9.4
b831326ee2 cmdline: only set ask mode if vga= is present
fd62986f6b iommu/amd-vi: avoid pointless flushes in invalidate_all_domain_pages()
9473d9a241 cmdline: parse multiple instances of the vga option
60474e8e28 multiboot2: do not set StdOut mode unconditionally
c93aa5c5d0 multiboot2: parse vga= option when setting GOP mode
886c22f00c ppc: make also linking work with big-endian tool chain
68c85cf3a8 xenstore: talloc.h needs to include stdarg.h
a00f12055d x86/microcode: Allow reading microcode revision even if it can't be updated
1c139701eb xen/types: Rework stdint vs __{u,s}$N types
fe9e78dbd3 treewide: Avoid including asm/types.h
b2e688730a xen/types: Drop #ifdefary for __{SIZE,PTRDIFF}_TYPE__
8720e7f3a4 x86/asm: Introduce a tailcall pseduo-op
dc5e6082f5 xen/arm: Kconfig: ACPI should depend on UEFI
c2ff2ca3a9 xen/arm: smmuv3: fix violations of MISRA C:2012 Rule 3.1
5c02dbd0e0 xen/include: avoid using a compiler extension for BUILD_BUG_ON_ZERO
ac27b3beb9 build: remove TARGET_ARCH, a duplicate of SRCARCH
a6ab7dd061 build: remove TARGET_SUBARCH, a duplicate of ARCH
58e0a3f3b2 build: define ARCH and SRCARCH later
9b0fc8eeb2 xen/riscv: move extern of cpu0_boot_stack to header
afb775d3e5 xen/riscv: add SPDX tags
01a5814d4e libelf: make L1_MFN_VALID note known
12314be574 xen/arm: make ARM_EFI selectable for Arm64
7604056fb7 xen/arm: remove xen_phys_start and xenheap_phys_end from config.h
91957bf3ff xen/arm: vgic: Add missing 'U' in VGIC_ICFG_MASK for shifted constant
248fbb9ee2 tools/python: Fix memory leak on error path
619fe8a261 tools: Fix ifdef for aarch64 that should include also arm
c16460ff07 xen/arm: mm: Add missing ISB in xen_pt_update()
feaa9aca87 xen/arm: pmap: Add missing ISB in arch_pmap_map()
863a42a0c9 xen/arm: page: Consolidate write_pte() and clarify the documentation
d29a767d04 xen/arm64: head: Add missing isb in setup_fixmap()
f5a49eb7f8 xen/arm32: head: Add mising isb in switch_to_runtime_mapping()
f7c24c2907 xen/arm32: head: Add missing isb in setup_fixmap()
abb1522832 xen/arm: Allow the user to build Xen with UBSAN
7356733f72 xen/arm: Rework the code mapping Xen to avoid relying on the size of Xen
78d2de69e5 xen/arm32: head: Don't map too much in boot_third
804145a161 xen/arm64: head: Don't map too much in boot_third
c53384ea2f xen/arm: grant-table: Correct the prototype of the arch helpers
6e06d229d5 xen: Correct comments after renaming xen_{dom,sys}ctl_cpu_policy fields
f51e5d8eae x86/vlapic: Change parameter names in function definitions
02e294de60 x86/hvm: Change parameter names of nestedhvm_vcpu_iomap_get() definition
f319f32347 x86/hvm: Swap parameter names of hvm_copy_context_and_params() declaration
098e27578b x86: Add Kconfig option to require NX bit support
fc3090a47b x86/boot: Clear XD_DISABLE from the early boot path
91d4159a34 tools: Add __AC() macro to common-macros.h
9dd3caf12f {x86,arm}/mm.c: Make populate_pt_range __init
c81b287e00 xenalyze: Basic TRC_HVM_EMUL handling
aab4b38b5d xenalyze: Handle start-of-day ->RUNNING transitions
6aa0c18062 tools/xenstore: remove unused stuff from list.h
63b6419d2a tools/xenstore: split out rest of live update control code
1a7fafdc74 tools/xenstore: split out environment specific live update code
b2126a992f tools/xenstore: replace xs_lib.c with a header
9859a80380 tools/xenstore: remove no longer needed functions from xs_lib.c
bd1001db0a xen/arm: arm32: Allow Xen to boot on unidentified CPUs
2a6da58442 xen/arm32: vfp: Add missing U for shifted constant
3460987c77 xen/arm64: head: Rework PRINT() to work when the string is not withing +/- 1MB
ef62b34aeb xen/arm64: entry: Don't jump outside of an alternative
2b0af6e398 xen/arm32: head: Remove 'r6' from the clobber list of create_page_tables()
02a11313cd xen/arm: Check Xen size when linking
0adb4147fd xen/arm: tlbflush: fix violations of MISRA C:2012 Rule 3.1
160975b898 docs/misra: rules: Remove incorrect deviation guidance
49ecef9fb4 docs/misra: add Rules 8.2, 8.3, 8.14
5b9c96a808 xen/arm: change parameter names in replace_grant_host_mapping().
06ed62d1f3 xen/arm: make parameter names of function declarations consistent.
98ca99685d xen/arm: vgic: change parameter name in 'init' and 'free' functions.
31f54edf7e xen/arm: change parameter name 'pa' in ioremap_addr() definition.
be17548c00 xen/arm: change parameter name 'vcpu' in domain() function definition.
8f47510b84 xen/arm: change names in function access_guest_memory_by_ipa().
6c32a08e2b x86/vpmu: Simplify is_pmc_quirk
5c84f1f636 xen/decompress: Drop bool_t and use bool instead
ef8d841229 automation: Fix KBUILD_DEFCONFIG for *ppc64le jobs
b1a7c2b297 automation: Add QEMU to bullseye-ppc64le
1ec2f5305b maintainers: Add ppc64 maintainer
125a180741 automation: Add ppc64le cross-build jobs
b0582dd686 xen: Add files needed for minimal ppc64le build
7f314e0aa5 build: Drop CONFIG_$ARCH_$(XEN_OS) definitions
14f42af3f5 x86/vPIT: account for "counter stopped" time
1f70315327 x86/vPIT: re-order functions
a6120e3fc8 x86: Use printk_once() instead of opencoding it
e5ba5165ca xen/evtchn: Purge ERROR_EXIT{,_DOM}()
42473bae23 xen/arm: pl011: Add SBSA UART device-tree support
47e3941d2e xen/arm: pl011: Use correct accessors
4fa2272458 xen/arm: debug-pl011: Add support for 32-bit only MMIO
655d0798d2 xen/arm: debug-pl011: Use correct accessors
314a54c1c2 xen/misra: add rules 1.4 and 2.1
d95f436c7d docs/misra: new rules addition
43e863a02d x86/boot: Clean up early error asm
3a07da55e6 xen/riscv: introduce reset_stack() function
652ccd1f4a xen/riscv: add .sbss section to .bss
c6df21062b Config.mk: update OVMF to edk2-stable202305
82b28deb25 iommu/vtd: fix address translation for leaf entries
ea613d2367 SUPPORT.md: write down restriction of 32-bit tool stacks
a17fd0feb6 automation: Disable QEMU build with Clang older than 10.0
7a25a1501c xen/arm: p2m: Enable support for 32bit IPA for ARM_32
7c72147baa xen/arm: Restrict zeroeth_table_offset for ARM_64
c3aabf7bd2 xen/arm: guest_walk: LPAE specific bits should be enclosed within "ifndef CONFIG_PHYS_ADDR_T_32"
b6733ed0cb xen/arm: Introduce choice to enable 64/32 bit physical addressing
6d44fb48bd xen/arm: p2m: Use the pa_range_info table to support arm32 and arm64
e533438e3d automation: Add container for ppc64le builds
e0586a4ff5 x86/cpu-policy: Derive RSBA/RRSBA for guest policies
36525a964f x86/spec-ctrl: Fix up the RSBA/RRSBA bits as appropriate
724c0d94ff x86/spec-ctrl: Rename retpoline_safe() to retpoline_calculations()
3f63f45104 x86/spec-ctrl: Use a taint for CET without MSR_SPEC_CTRL
921afcbae8 x86/spec-ctrl: Fix the rendering of FB_CLEAR
c4e492a139 xen: Append a newline character to panic() where missing
6044b485ba xen/arm: Remove stray semicolon at VREG_REG_HELPERS/TLB_HELPER* callers
4802e4a44e xen/arm: traps: remove inlining of handle_ro_raz()
1512a68721 xen/grant: Purge PIN_FAIL()
9c0b207001 x86/shadow: Don't use signed bitfield in sh_emulate_ctxt
621625f696 x86/p2m.h: Add include guards
a012a4aba1 Arm: drop bogus ALIGN() from linker script
9e9aec6141 spinlock: alter inlining of _spin_lock_cb()
afbfe55544 libxg: shrink variable scope in xc_core_arch_map_p2m_list_rw()
87c621d0ef libxl: drop dead assignment to transaction variable from libxl__domain_make()
2dbc4d4fb5 libxg: drop dead assignment to "rc" from xc_cpuid_apply_policy()
129aba0e79 libxl: drop dead assignments to "ret" from libxl__domain_config_setdefault()
cf584d27f5 xen-mfndump: drop dead assignment to "page" from lookup_pte_func()
2f69ef9680 tools: fix make rpmball
5ecbb77974 iommu/amd-vi: fix checking for Invalidate All support in amd_iommu_resume()
f29363922c x86: minor tidying of identify_cpu()
f4be887879 livepatch: apply_alternatives() is only used for livepatch
7d5e58730d xen/riscv: add __ASSEMBLY__ guard to asm/page.h
f68f4723ec libxl: Call libxl__virtio_devtype.set_default() early enough
5e3463af07 libxl: virtio: Remove unused frontend nodes
128557e3a4 tools/xenstored: Correct the prototype of domain_max_chk()
1a0342507c tools/libs/store: make libxenstore independent of utils.h
0d5dfd2ed6 tools/libs/store: use xen_list.h instead of xenstore/list.h
84ac67cd1e xen/arm: rename guest_cpuinfo in domain_cpuinfo
b4642c32c4 tools/ocaml/xc: Fix xc_physinfo() bindings
961a63e13b CI: Add Ocaml to the alpine containers
5b02f568d3 tools/xenstore: remove support of file backed data base
2b58b249cd tools/xenstore: remove unused events list
38f430ceb2 tools/xenstore: remove stale TODO file
f28a3b49d3 tools/xenstore: switch write limiting to use millisecond time base
f8f4042b39 tools/xenstore: make some write limit functions static
d78c91c406 tools/xenstore: rename hashtable_insert() and let it return 0 on success
9b2c27e277 tools/xenstore: modify interface of create_hashtable()
d3c7262d75 tools/xenstore: do some cleanup of hashtable.c
ea1e8a2daf tools/xenstore: verify command line parameters better
3a82e4501c tools: Move MASK_INSR to common-macros.h
6915a12064 x86/hvm: print valid CR4 bits in case of error
606bb708e1 CI: Fix the github actions Coverity run
0c2d0d32b3 docs: Fix xl.cfg documentation
685048441e tools/xenstore: switch quota management to be table based
561687f6bc tools/xenstore: switch get_optval_int() to get_optval_uint()
564a093c20 tools/xenstore: use generic accounting for remaining quotas
948be0e94d tools/xenstore: remember global and per domain max accounting values
304ed13b9a tools/xenstore: switch transaction accounting to generic accounting
ff7509c2b7 tools/xenstore: add TDB access trace support
a808657252 tools/xenstore: add accounting trace support
e180d3200a tools/xenstore: use accounting data array for per-domain values
d0740236fd tools/xenstore: add current connection to domain_memory_add() parameters
a4ffaa0824 tools/xenstore: use accounting buffering for node accounting
192e2f6a11 tools/xenstore: add framework to commit accounting data on success only
621949547c tools/xenstore: introduce accounting data array for per-domain values
fbec254545 tools/xenstore: manage per-transaction domain accounting data in an array
887b576ba9 tools/xenstore: take transaction internal nodes into account for quota
cb8b18d49a xen/changelog: Add SVE and "dom0" options to the changelog for Arm
870394de44 xen/arm: add sve property for dom0less domUs
b46e8207d0 xen/tools: add sve parameter in XL configuration
56a7aaa16b tools: add physinfo arch_capabilities handling for Arm
9392bf6a3a xen/physinfo: encode Arm SVE vector length in arch_capabilities
fd53bc7af0 xen: enable Dom0 to use SVE feature
f2095a51ac xen/common: add dom0 xen command line argument for Arm
ac5855d5c7 arm/sve: save/restore SVE context switch
3c6e726241 xen/arm: add SVE exception class handling
c5ff38cdd8 xen/arm: Expose SVE feature to the guest
8043e80de9 xen/arm: add SVE vector length field to the domain
ddcbaa42d8 xen/arm: enable SVE extension for Xen
64a647f8d8 maintainers: Add Xen MISRA Analysis Tools section
1d7c45f895 xen/misra: diff-report.py: add report patching feature
43840b53f6 xen/misra: add diff-report.py tool
b35b22acb8 x86/microcode: Add missing unlock in microcode_update_helper()
a5917ca28b xen: Fix incorrect taint constant
e291c4c3e1 x86emul: AVX512-FP16 testing
b3880c365d MAINTAINERS: remove xenstore related files from LIBS
4f86b96779 build: use $(dot-target)
e3631d797d x86emul: handle AVX512-FP16 conversion to/from (packed) int{32,64} insns
ae11304c59 x86emul: handle AVX512-FP16 floating point conversion insns
59c2c9c2a0 x86emul: handle AVX512-FP16 conversion to/from (packed) int16 insns
d14c52cba0 x86emul: handle AVX512-FP16 complex multiplication insns
520f0acc7a x86emul: handle AVX512-FP16 Map6 misc insns
67d458c84a x86emul: handle AVX512-FP16 fma-like insns
da2e0057c7 x86emul: handle AVX512-FP16 move insns
6b4d5c26a6 x86emul: handle AVX512-FP16 Map5 arithmetic insns
b67934082e x86emul: handle AVX512-FP16 insns encoded in 0f3a opcode map
7c6fdc40a0 x86emul: rework compiler probing in the test harness
67fdffef92 automation: zen3 dom0pvh test
71226054f2 x86/ucode: Exit early from early_update_cache() if loading not available
59d0bf6286 xen/cpu-policy: Add an IBRS -> AUTO_IBRS dependency
064f572f96 x86/cpu-policy: Rearrange guest_common_default_feature_adjustments()
dc98fa7444 xentrace: close output file in the function which opened it
f53c498276 xentrace: remove return value from monitor_tbufs
0e0d3c00bc xentrace: allow xentrace to write to stdout
04f25e9048 vPCI: fix test harness build
7a2f0ba0d0 vPCI: add test harness entry to ./MAINTAINERS
465217b0f8 vPCI: account for hidden devices
445fdc641e xen/include/public: fix 9pfs xenstore path description
0f80a46ffa xen/riscv: remove dummy_bss variable
0d74fc2b2f xen/riscv: setup initial pagetables
ec337ce2e9 xen/riscv: align __bss_start
e66003e7be xen/riscv: introduce setup_initial_pages
efadb18dd5 xen/riscv: add VM space layout
94200e1bae x86/spec-ctrl: Update hardware hints
defaf65163 x86/hvm: Expose Automatic IBRS to guests
8347d6bb29 x86: Add bit definitions for Automatic IBRS
05422d276b build: adjust compile.h compiler version command line
352c917acf x86/vPIC: register only one ELCR handler instance
647377ea06 xen/arm: un-break build with clang
2a8a168150 tools/xenstore: remove deprecated parameter from xenstore commands help
ca045140d9 xen/misra: xen-analysis.py: Fix cppcheck report relative paths
8bd504290b xen/misra: xen-analysis.py: Fix latent bug
e56f2106b6 VMX/cpu-policy: disable RDTSCP and INVPCID insns as needed
233a8f20cf VMX/cpu-policy: check availability of RDTSCP and INVPCID
f54dd5b53e xen: dt: Replace u64 with uint64_t as the callback function parameters for dt_for_each_range()
133f6df947 xen/arm: domain_build: Check if the address fits the range of physical address
adbcc656ff xen/arm: smmu: Use writeq_relaxed_non_atomic() for writing to SMMU_CBn_TTBR0
1407cff85f xen/arm: Introduce a wrapper for dt_device_get_address() to handle paddr_t
3d4b02468a xen/arm: Typecast the DT values into paddr_t
f37a598139 xen/arm: domain_build: Track unallocated pages using the frame number
40cd186bfd x86/hvm/ioreq: remove empty line after function declaration
ee045f3a4a vpci/header: cope with devices not having vpci allocated
67c28bfc52 build: use $(filechk, ) for all compat/.xlat/%.lst
1d3668664d x86/shadow: restrict OOS allocation to when it's really needed
8670cbb0b3 docs: fix complex-and-wrong xenstore-path wording
f642e842d3 build: shorten macro references
354be8936d public: fix comment typo regarding IOREQ Server
053ffa783e x86/iommu: adjust type in arch_iommu_hwdom_init()
56c0063f4e xen/misra: xen-analysis.py: Improve the cppcheck version check
cca2361947 automation: Enable parallel build with cppcheck analysis
511b9f286c x86/spec-ctrl: Remove opencoded MSR_ARCH_CAPS check
205a9f9703 x86/tsx: Remove opencoded MSR_ARCH_CAPS check
8f6bc7f9b7 x86/vtx: Remove opencoded MSR_ARCH_CAPS check
a87d131a8c x86/cpufeature: Rework {boot_,}cpu_has()
bbb289f3d5 x86/boot: Expose MSR_ARCH_CAPS data in guest max policies
70553000d6 x86/boot: Record MSR_ARCH_CAPS for the Raw and Host CPU policy
ce8c930851 x86/cpu-policy: MSR_ARCH_CAPS feature names
d9fe459ffa x86/cpu-policy: Infrastructure for MSR_ARCH_CAPS
43912f8dbb x86/boot: Adjust MSR_ARCH_CAPS handling for the Host policy
ef1987fcb0 x86/boot: Rework dom0 feature configuration
380c6c1703 build: hide that we are updating xen/lib/x86
639932d071 x86: do away with HAVE_AS_NEGATIVE_TRUE
b06c951a0c maintainers: add regex matching for xsm
c7908869ac pci: fix pci_get_pdev() to always account for the segment
c2eae2614c sched/null: avoid crash after failed domU creation
569df1847c docs: fix xenstore-paths doc structure
753d903a6f automation: allow to rerun build script
816d279746 automation: update documentation about how to build a container
bdf48bf170 docs/misra: adds Mandatory rules
b046f7e374 xen/misra: xen-analysis.py: use the relative path from the ...
069cb96fbd xen/misra: xen-analysis.py: allow cppcheck version above 2.7
45bfff6511 xen/misra: xen-analysis.py: fix parallel analysis Cppcheck errors
42abf5b9c5 tools: drop bogus and obsolete ptyfuncs.m4
9d628ff6cc tools: Fix install.sh for systemd
99ab02f63e tools: convert bitfields to unsigned type
c8e4bbb5b8 x86: Add support for CpuidUserDis
1240932a8d x86: Refactor conditional guard in probe_cpuid_faulting()
eda98ea870 x86/amd: fix legacy setting of SSBD on AMD Family 17h
8f9c8274a4 automation: remove python2 from opensuse images
4299578191 automation: provide diffutils and ghostscript in opensuse images
fc1b512680 automation: add x86_64 tests on a AMD Zen3+ runner
d6f0c82539 automation: enable earlyprintk=xen for both dom0 and domU in hw tests
3e02611fac automation: make console options configurable via variables
be6aa637db automation: add a Dom0 PVH test based on Qubes' runner
56e2c8e586 x86/cpuid: Calculate FEATURESET_NR_ENTRIES more helpfully
b8be19ce43 xen/arm: domain_build: Fix format specifiers in map_{dt_}irq_to_domain()
5b34e896a3 xen/arm: domain_build: Propagate return code of map_irq_to_domain()
c07365f189 xen/arm: smmuv3: Advertise coherent table walk if supported
b3e4a6def6 xen/arm: smmuv3: Constify arm_smmu_get_by_dev() parameter
4c507d8a6b iommu/amd-vi: fix assert comparing boolean to enum
d9dcd45c56 SUPPORT.md: explicitly mention EFI (secure) boot status
cb781ae2c9 xen/arm: pci: fix -Wtype-limits warning in pci-host-common.c
bdb1184d4f domctl: bump interface version
5b49f5e09d x86: Add AMD's CpuidUserDis bit definitions
31c6554974 domctl: Modify XEN_DOMCTL_getdomaininfo to fail if domid is not found
3b5201e8cf tools: Use new xc function for some xc_domain_getinfo() calls
cb860a95a9 tools: Modify single-domid callers of xc_domain_getinfolist()
694d79ed5a x86/ucode: Refresh raw CPU policy after microcode load
ed6b7c0266 automation: xilinx: Add GEM passthrough test
6b88d10721 automation: xilinx: Set up bridging only for a default test case
8b1ac353b4 docs/man: fix xenstore-write synopsis
be1fdacf54 LICENSES: Remove the use of deprecated SPDX tags
6b9781d96a LICENSES: Improve the legibility of these files
a16fb78515 ns16550: enable memory decoding on MMIO-based PCI console card
fb751d9a24 acpi: add TPM2 interface definition
5828b94b25 acpi: make TPM version configurable
e93e635e14 libacpi: switch to SPDX
96467d7d77 build: omit "source" symlink when building hypervisor in-tree
e1b8adf9f3 build: don't export building_out_of_srctree
b95a72bb5b tools/xen-ucode: print information about currently loaded ucode
161c37d020 x86/platform: introduce XENPF_get_ucode_revision
f1e574fa6d tools/xenctrl: add xc_get_cpu_version()
99a9c3d714 tools/libs/guest: assist gcc13's realloc analyzer
646d28cb2a libxl: fix matching of generic virtio device
0956aa2219 x86/mm: replace bogus assertion in paging_log_dirty_op()
eaa324bfeb x86/trampoline: load the GDT located in the trampoline page
0946068e7f x86/head: check base address alignment
19c6cbd909 xen/vcpu: ignore VCPU_SSHOTTMR_future
f8135d234a docs: allow generic virtio device types to contain device-id
b033eddc97 xen/sysctl: fix XEN_SYSCTL_getdomaininfolist handling with XSM
60b18e55c2 xen/riscv: update two license headers
82417e0fd8 x86/mm: drop log-dirty-enable's log_global parameter
ef841d2a23 automation: optimize build jobs order
c17473dcc5 automation: move test artifacts jobs to the top
6a47ba2f78 MAINTAINERS: add more xenstore files
5a8efb1bd0 tools: Make init-xenstore-domain use xc_domain_getinfolist()
e522c98c30 tools: Refactor console/io.c to avoid using xc_domain_getinfo()
7c7c436ccb tools: Create xc_domain_getinfo_single()
4af349a404 tools: Make some callers of xc_domain_getinfo() use xc_domain_getinfolist()
8e974df445 automation: include tail of serial log in the gitlab outout
3822b16a17 automation: PCI passthrough tests on ADL hw
937e73feca automation: wait for the login prompt as test end marker
ac58d7fda6 CI: Remove all use of /bin/false as a ROM
09c7179f0a xen/misra: xen-analysis.py: fix return error on PhaseExceptions
dde20f7dc1 stubdom: fix errors in newlib:makedoc
860fb990bd stubdom: fix errors in newlib:cygmon-gmon.c
2ffa3b2d68 libxl: Print device_kind as a string
ed70714236 libxl: device_backend_callback() print rc on error
18a36b4a9b tools: ipxe: update for fixing build with GCC12
360df0f845 automation: re-enable building SeaBIOS in Alpine container
fec83b86b4 automation: add runtime qemu dependencies to test container
9699347677 automation: specify explicit dom0 mem size for ADL tests
f6c3cb2162 x86/shadow: restore dropped check in sh_unshadow_for_p2m_change()
ffc3ca75e2 x86/shadow: "monitor table" is a HVM-only concept
f514bab30e x86: add support for crash dump analysis with xen.efi
7c3e99b642 x86: detect CMOS aliasing on ports other than 0x70/0x71
913751d7af x86/msi: clear initial MSI-X state on boot
c6c8c0808f Revert "xen/arm32: head: Widen the use of the temporary mapping"
dff17457c4 xen/arm64: smpboot: Directly switch to the runtime page-tables
c4b72c4a54 xen/arm64: mm: Rework switch_ttbr()
1c78d76b67 xen/arm64: mm: Introduce helpers to prepare/enable/disable the identity mapping
9d267c049d xen/arm64: Rework the memory layout
eed3ae84bc xen/arm32: head: Widen the use of the temporary mapping
b33a5c5929 tools/xenstore/xenstored_control.c: correctly print time_t
3adcfbd316 xen/arm: fix uninitialized use warning
0678220def xen/arm: mark __guest_cmpxchg always_inline
e74360e4ba xen/livepatch: Fix .altinstructions safety checks
418cf59c4e arm/alternatives: Rename alt_instr fields which are used in common code
cfa2bb82c0 xen/ELF: Fix ELF32 PRI formatters
569632a583 CHANGELOG: add gnttab_max_{maptrack_,}frames option changes
768846690d x86: fix build with old gcc after CPU policy changes
741599fa52 x86: cpu{id,}_policy_updated() can be static
224211c55b tests/cpu-policy: fix "run" goal
8676092a0f x86/livepatch: Fix livepatch application when CET is active
cbe828581b xen: update CONFIG_DEBUG_INFO help text
14a9f07d99 xen: move CONFIG_DEBUG_INFO out of EXPERT section
3146c0f101 xen/riscv: add explicit check that .got{.plt} is empty
c57cd4d45c xen/riscv: add EMBEDDED_EXTRA_CFLAGS to CFLAGS
1213ebfb9f xen/arm: vpl011: Do not try to handle TX FIFO status when backend in Xen
d3784f16bb xen/arm: vpl011: Handle correctly TXFE when backend in Xen
005e84e695 xen/arm: vpl011: Fix misleading comments
65c4e7472c x86emul: support AVX-NE-CONVERT insns
842acaa743 x86emul: support AVX-VNNI-INT8
da232f1f11 x86emul: support AVX-IFMA insns
5eb6bd7454 x86emul: introduce stub_exn field in state structure
3a407e70f7 x86emul: drop regs field from emulator state structure
07b167d17e x86emul: support WRMSRNS
7d5e60c525 xen/efi: fix uninitialized use warning
9bbada6eb5 x86emul: switch split-off files to SPDX
6ded4451de x86emul/fuzz: correct header (symlink) dependencies
44843cee3d ARM+RISC-V: BSS handling improvements
3e25767ea5 xen/arm: Extend the memory overlap check to include EfiACPIReclaimMemory
4f6a291582 xen/arm: Extend the memory overlap check to include bootmodules
6f7d56ccd3 xen/arm: Add memory overlap check for bootinfo.reserved_mem
9c962e07fb xen/arm: Clean-up in p2m_init() and p2m_final_teardown()
4dbcb06536 xen/arm: Defer GICv2 CPU interface mapping until the first access
5ee30222c6 xen/arm: Rename vgic_cpu_base and vgic_dist_base for new vGIC
603956258c xen/arm: Reduce redundant clear root pages when teardown p2m
18c128ba66 x86/hvm: Disallow disabling paging in 64bit mode
8363b1f62e automation: switch ADL hw tests to debug build
f872a624cb CI: Update FreeBSD to 13.2
5ea03c570c xen/x86: Replace GPL v2.0+ license boilerplate with an SPDX tag in *.h
f68674efb7 xen/x86: Replace GPL v2.0+ license boilerplate with an SPDX tag in *.c
406f0f593e xen/x86: Replace GPL v2.0 license boilerplate with an SPDX tag in *.h (part 3)
0f10cd10f4 xen/x86: Replace GPL v2.0 license boilerplate with an SPDX tag in *.h
831a1c2da0 xen/x86: Replace GPL v2.0 license boilerplate with an SPDX tag in *.c (part 3)
fc269f81fd xen/x86: Replace GPL v2.0 license boilerplate with an SPDX tag in *.c
a778dbdf44 LICENSES: Clarify that the SPDX tag GPL-2.0 is deprecated
ddaf7bb0cf x86/svm: Provide EXITINFO decodes for Exceptions/NPF intercepts
a5087069a8 x86/svm: Provide EXITINFO decodes for MOV CR intercepts
d357f5f1e6 x86/emul: Use existing X86_EXC_* constants
881ba20eb0 x86/treewide: Drop the TRAP_* legacy names
55c6d4e225 Revert "x86emul/test: drop bogus .PHONY"
48d76e6da9 tools/libs/guest: Fix build following libx86 changes
994c1553a1 x86: Remove temporary {cpuid,msr}_policy defines
1b67fccf3b libx86: Update library API for cpu_policy
a16dcd48c2 tools/fuzz: Rework afl-policy-fuzzer
441b1b2a50 x86/emul: Switch x86_emulate_ctxt to cpu_policy
8eb56eb959 x86/boot: Merge CPUID policy initialisation logic into cpu-policy.c
4f20f596ce x86/boot: Move MSR policy initialisation logic into cpu-policy.c
1027df4c00 x86: Out-of-inline the policy<->featureset convertors
66c5c99656 x86: Drop struct old_cpu_policy
c9985233ca x86: Merge xc_cpu_policy's cpuid and msr objects
bd13dae348 x86: Merge a domain's {cpuid,msr} policy objects
6bc3336679 x86: Merge the system {cpuid,msr} policy objects
03812da375 x86: Merge struct msr_policy into struct cpu_policy
743e530380 x86: Rename struct cpuid_policy to struct cpu_policy
21e3ef57e0 x86: Rename {domctl,sysctl}.cpu_policy.{cpuid,msr}_policy fields
c2ec94c370 x86: Rename struct cpu_policy to struct old_cpuid_policy
415f7d9404 Revert "Revert "build: Change remaining xenbits.xen.org link to HTTPS""
658fcb7ac9 x86emul: correct AVX512VL+VPCLMUL test descriptions
d5e1795ab4 x86/PV: ignore PAE_MODE ELF note for 64-bit Dom0
24c471b6f4 x86emul/test: drop bogus .PHONY
32a183ca4b x86emul/fuzzer: re-arrange cleaning
bfa2e6a246 x86/emul: Fix test harness build with blk.c moved out of x86_emulate.c
720ebfbad3 xen/x86: switch to use generic implemetation of bug.h
71efa7b868 xen: change <asm/bug.h> to <xen/bug.h>
faafb5cb73 xen/arm: remove unused defines in <asm/bug.h>
60a9b07150 xen: introduce CONFIG_GENERIC_BUG_FRAME
de7d113212 x86emul: move various utility functions to separate source files
c80243f943 x86emul: move x86_emul_blk() to separate source file
1939403104 x86emul: split off insn decoding
8f196c12ee x86emul: split off FPU opcode handling
0bae69c96b x86emul: split off opcode 0fc7 handling
3e957de632 x86emul: split off opcode 0fae handling
9ace97ab9b x86emul: split off opcode 0f01 handling
d6e0b4c41a bump default SeaBIOS version to 1.16.2
dc7be3979c x86/shadow: drop redundant present bit checks from FOREACH_PRESENT_L<N>E() "bodies"
4179f58371 x86/shadow: rename SHADOW_FOREACH_L<N>E() to FOREACH_PRESENT_L<N>E()
64c2191616 xen/arm: Use the correct format specifier
12c5eea3ca tools/ocaml/mmap: Drop the len parameter from Xenmmap.write
f41c88a6fc x86emul: pull permission check ahead for REP INS/OUTS
eef4608fe7 xen/arm: irq: Constify the first parameter of platform_get_irq_byname()
08bbc1c02d xen/arm: vpl011: Fix domain_vpl011_init error path
3643eed7d0 xen/arm: domain_build: Check return code of domain_vpl011_init
f6b801c36b tools/xenstore: fix quota check in acc_fix_domains()
7a502b4fbc vpci/msix: restore PBA access length and alignment restrictions
e692b22230 ns16550: correct name/value pair parsing for PCI port/bridge
747b86153e tools/xenstore: remove stale comment in create_node()
b177892d2d vpci/msix: handle accesses adjacent to the MSI-X table
231ab79704 include: don't mention stub headers more than once in a make rule
0c2fe426bc x86/monitor: add new monitor event to catch I/O instructions
fc84960385 CI: Minor updates to buster-gcc-ibt
7a29837572 CI: Remove llvm-8 from the Debian Stretch container
c3724462f1 configure: Drop --enable-githttp
631369b38e x86/boot: Restrict directmap permissions for .text/.rodata
fc2e1f3aad x86/ucode: Fix error paths control_thread_fn()
0ab316e7e1 automation: add a smoke and suspend test on an Alder Lake system
c51a823946 automation: update x86-64 tests to Linux 6.1.19
b1f11273d5 x86/vmx: Don't spuriously crash the domain when INIT is received
b5cc3c25a2 Revert "build: Change remaining xenbits.xen.org link to HTTPS"
054acfc444 misc: Replace git:// and http:// with https://
04988f1c59 configure: Replace git:// and http:// with https://
47ee23f05a configure: Do not try to use broken links
e1d7508444 build: Change remaining xenbits.xen.org link to HTTPS
eb23eef476 build: Use HTTPS for all xenbits.xen.org Git repos
79493f2b33 xen/trace: Minor code cleanup
2992f4dcd5 xen/credit2: Remove tail padding from TRC_CSCHED2_* records
83af664db3 xen/memory: Remove tail padding from TRC_MEM_* records
6835f93573 xen/trace: Don't over-read trace objects
715b92ba30 x86/hvm: Improve hvm_set_guest_pat() code generation again
6e8973b96c x86/boot: Factor move_xen() out of __start_xen()
6d14cb105b x86/shadow: Fix build with no PG_log_dirty
136f69dc66 x86/hvmloader: Don't override stddef.h
90b1307ffb x86/hvmloader: Don't build as PIC
d7aaecd3e1 xen: Modify domain_crash() to take a print string
bc3c133841 x86/nospec: Fix evaluate_nospec() code generation under Clang
efe8de1f91 tools/migration: Fix iovec handling in send_checkpoint_dirty_pfn_list()
8e7b7a7cd6 xen/riscv: Fix early_puts() newline handling
cc338b48dc xen/check-endbr.sh: Explain the purpose of the script
d33ccc9875 xen/argo: Fixes to argo_dprintk()
9fa4258753 x86/shadow: OOS mode is HVM-only
36053bddde x86/shadow: purge {write,cmpxchg}_guest_entry() hooks
809882cb34 tools/libs/vchan: remove private offsetof() definition
6ca13bec08 tools/libfsimage: remove private offsetof() definition
606ff39a11 tools/hvmloader: remove private offsetof() definition
ea0358b666 tools: add container_of() macro to xen-tools/common-macros.h
32eafe88aa tools: get rid of additional min() and max() definitions
1bbfdc1636 x86/PV: conditionalize arch_set_info_guest()'s call to update_cr3()
189e4dd36a x86/shadow: replace memcmp() in sh_resync_l1()
55ec42b857 x86/shadow: fold/rename sh_unhook_*_mappings()
2896224a4e x86/shadow: fix and improve sh_page_has_multiple_shadows()
95b757598f tools/xl: rework p9 config parsing
4bad14a133 tools/xl: make split_string_into_pair() more usable
4fe3c78d81 tools: use libxenlight for writing xenstore-stubdom console nodes
49de6749ba VT-d: fix iommu=no-igfx if the IOMMU scope contains fake device(s)
eee0d79134 tools/xl: allow split_string_into_pair() to trim values
7fa8b6cda9 move {,vcpu_}show_execution_state() declarations to common header
5b18843067 tools: rename xen-tools/libs.h file to common-macros.h
245d030f4a x86/spec-ctrl: Defer CR4_PV32_RESTORE on the cstar_enter path
ab2d47eb13 x86/HVM: serialize pinned cache attribute list manipulation
d484dcca79 x86/HVM: bound number of pinned cache attribute regions
33fb3a6612 x86/shadow: account for log-dirty mode when pre-allocating
f71f8e95c3 x86/vmx: Provide named fields for IO exit qualification
0d2686f6b6 AMD/IOMMU: without XT, x2APIC needs to be forced into physical mode
0bbf102d87 automation: arm64: Create test jobs for testing static shared memory on qemu
0511403a0d automation: arm64: Create test jobs for testing static heap on qemu
c2581c58be xen/console: skip switching serial input to non existing domains
b190af7d3e libacpi: fix PCI hotplug AML
cfa0409f7c xen/riscv: initialize .bss section
537ed7a41b xen/riscv: read/save hart_id and dtb_base passed by bootloader
d1e6767459 xen/riscv: disable fpu
9bf21fcaef automation: Drop sles11sp4 dockerfile
9c00618251 tools: Use -s for python shebangs
c82aff87f1 tools/python: Drop shebangs from library files
fd8fecb97b tools/python: Improve unit test handling
8d14976d37 tools/pygrub: Factor out common setup.py parts
1b00068420 tools: Delete trailing whitespace in python scripts
5d22d69b30 tools/misc: Drop xencons
397f9e57aa tools/python: Drop pylintrc
df9369154a x86/svm: Provide EXITINFO decodes for IO intercetps
36e49fc8cb CHANGELOG: mention xl/libxl SMBIOS support
4e4a3eeaa8 x86/shadow: drop zero initialization from shadow_domain_init()
0e1d55d970 x86/paging: move and conditionalize flush_tlb() hook
d0816a9085 x86/paging: move update_paging_modes() hook
6b41622ae0 x86/paging: drop set-allocation from final-teardown
462de8ad45 x86/paging: fold most HAP and shadow final teardown
5d8f05e106 x86: don't include processor.h from system.h
bdb7a95e65 console: use more appropriate domain RCU-locking function
b2ea81d2b9 xen/grants: repurpose command line max options
fc750656aa libxl: Fix libxl__device_pci_reset error messages
38bdfa44cc xl/libxl: Add OEM string support to smbios
9aeb3a20c4 xl/libxl: Add ability to specify SMBIOS strings
d03246206c golang/xenlight: Extend KeyedUnion to support Arrays
391f1e135f arch/arm: time: Add support for parsing interrupts by names
91cecd4efc arch/arm: irq: Add platform_get_irq_byname() implementation
de819c96c8 flask/label-pci: Allow specifying optional irq label
402195e56d bunzip: work around gcc13 warning
e6e92adf47 build: run targets cscope,tags,... using tree-wide approach
f8c4317295 VT-d: constrain IGD check
4252432be8 x86emul/test: suppress GNU ld 2.39 warning about RWX load segments
be62b1fc2a x86/altp2m: help gcc13 to avoid it emitting a warning
4b0422f70f core-parking: fix build with gcc12 and NR_CPUS=1
7d43e4b2aa x86/platform: make XENPF_get_dom0_console actually usable
f69c599159 x86/pvh: report ACPI VFCT table to dom0 if present
433d012c6c x86/sysctl: Retrofit XEN_SYSCTL_cpu_featureset_{pv,hvm}_max
ec3474e1dd tools/xen-cpuid: Rework the handling of dynamic featuresets
4a55779402 tools/xen-cpuid: Support dash as a bitmap separator
d04ae78c34 x86/spec-ctrl: Enumerations for DDP controls
9276e832ae x86/spec-ctrl: Add BHI controls to userspace components
7a59096258 tools/tests: remove vhpet tests
746774cd17 automation: introduce a dom0less test run on Xilinx hardware
3c55057bab automation: add Ubuntu container for Xilinx hardware tests
dd0f000aaf automation: Add missing and drop obsoleted aliases from containerize
002641a8b7 xen/arm: check max_init_domid validity
31270f11a9 x86/HVM: purge dubious lastpage diagnostic
068314888c cppcheck: globally suppress unusedStructMember
88f6053166 misra: add entries to exclude-list.json
e81c9fdd7c cppcheck: add a way to exclude files from the scan
380a8c0c65 xen/arm: Ensure the start *(.proc.info) of is 4-byte aligned
b84fdf521b automation: Rework archlinux container
26ecc08b98 automation: Always pull base image when building a container
976ae57b30 x86/vpmu: rename {svm,vmx}_vpmu_initialise to {amd,core2}_vpmu_initialise
1c2cb0b82a half-revert "change assorted xenbits.xen.org links to HTTPS"
a4557f515f change assorted xenbits.xen.org links to HTTPS
f1315e48a0 x86/ucode/AMD: late load the patch on every logical thread
bfc3780f23 automation: Add container and build jobs to run cppcheck analysis
6342f96689 automation: expand arm32 dom0 test adding xl domain creation
a0c3b87a76 automation: add binaries/ to artifacts for Yocto arm32 job
adfb590ec3 automation: move yocto jobs to build stage
49b1cb2741 x86/vmx: declare nvmx_enqueue_n2_exceptions() static
fdc25bd5da x86/vmx: move vmx_update_debug_state() in vmcs.c and declare it static
275d13184c libs/guest: Fix leak on realloc failure in backup_ptes()
1868d7f226 libs/guest: Fix resource leaks in xc_core_arch_map_p2m_tree_rw()
35b3208a74 CI: Simplify RISCV smoke testing
5f74a1a198 x86/svm: Decouple types in struct nestedsvm
4d6df4ec75 x86/setup: drop stale declarations of __bss_{start,end}[]
db3897746c x86/shadow: drop dead code from HVM-only sh_page_fault() pieces
1950d8c351 x86/shadow: mark more of sh_page_fault() HVM-only
4e8205f4fd x86/shadow: move dm-mmio handling code in sh_page_fault()
608f85a181 x86/svm: move nestedsvm declarations used only by svm code to private header
d2b2d61de7 x86/svm: Remove the asm/hvm/svm/emulate.h header
40840455ad x86/svm: Remove the asm/hvm/svm/asid.h header
aa0a7ad1ab x86/svm: delete header asm/hvm/svm/intr.h
ba9a8ae440 x86/svm: move declarations used only by svm code from svm.h to private header
7b66792ea7 automation: Remove non-debug x86_32 build jobs
ba2370a55f automation: Remove expired root certificates used to be used by let's encrypt
3817e3c1b4 automation: Remove testing on Debian Jessie
083f745621 automation: Use EOL tag for Jessie container
9afcf3046b x86/asm: ELF metadata for simple cases
de6fda801c xen/compiler: Clang 14 and later understands attribute((error))
43e1387130 x86/vmx: Correct the declaration of vmx_asm_vmexit_handler()
b97e2fe7b9 tools: Use PKG_CONFIG_FILE instead of PKG_CONFIG variable
53f0d02040 xen: Fix Clang -Wunicode diagnostic when building asm-macros
a2adacff0b xen: Work around Clang-IAS macro \@ expansion bug
5e7667ea2d CI: Update FreeBSD to 13.1
91d4d9506a x86/svm: opencode SVM_PAUSE{FILTER,THRESH}_INIT
2869349f0c x86: perform mem_sharing teardown before paging teardown
c15e2d4c1c CI: Drop gettext from containers
64e39c35f0 automation: Add more aliases in containerize
a6b1e2b80f automation: Remove clang-8 from Debian unstable container
0d83a431e9 automation: Ensure that all packages are up-to-dates in CentOS 7 container
ba512629f7 automation: Remove CentOS 7.2 containers and builds
40c12ba546 x86/MSI: drop "packed" attribute from message data/address structures
353b8cc568 x86/extable: hide use of negative offset from array start
b77ed96fce libelf: relax ELF_PADDR_OFFSET && !VIRT_BASE check for PVH
43ae13269e x86/Hyper-V: use standard C types in hyperv-tlfs.h
c76e4ff7d5 x86/svm: Remove regs param from asm-called functions
d58f3941ce x86/MSI: use standard C types in structures/unions
f4ef8a41b8 x86/ucode/AMD: apply the patch early on every logical thread
03430abdf5 x86: use standard C types in struct cpuinfo_x86
a90a0018f6 x86/svm: cleanup svm.c
406cea1970 docs/process: branching-checklist: Add a list of accounts at the beginning
e1d08321ef docs/proces: branching-checklist: Update the section "add to patchbot"
7708b13acf docs/process: branching-checklist: Remove section about the cambridge colo
163b3cf7af docs/process: branching-checklist: Reword the section about Config.mk
e2312e41f0 tools: Remove the use of K&R functions
22b2fa4766 xen/x86: Remove the use of K&R functions
f5c1a6374a libs: Fix unstable libs build with LLVM, auto-generate version-script
720944ea26 xen/common: rwlock: Constify the parameter of _rw_is{,_write}_locked()
543f426ece xen/common: Constify the parameter of _spin_is_locked()
2e52dcc853 x86/vlapic: call vmx_vlapic_msr_changed through an hvm_function callback
727bf4cd07 ACPI/CPER: use standard C types
91c45cfbab xen/arm: Print return code from domain_create and construct_dom{0,U} on panic
768e405fea automation: Add a true dom0less test on arm32
d28b226244 automation: Add a gzip compressed kernel image test on arm32
a6ce51ac3d automation: Add a static memory allocation test on arm32
42ea8ddab8 automation: Add arm32 dom0less testing
a35fccc8df automation: Switch arm32 cross builds to run on arm64
5b9bb91abb build: make FILE symbol paths consistent
1f5747ee92 credit2: respect credit2_runqueue=all when arranging runqueues
63305e5392 x86/spec-ctrl: Mitigate Cross-Thread Return Address Predictions
9b70bc6d96 x86/iommu: make AMD-Vi and Intel VT-d support configurable
bb1057ed40 x86/dpci: move hvm_dpci_isairq_eoi() to generic HVM code
0d57bba8ad x86/iommu: call pi_update_irte through an hvm_function callback
9cf1318a32 x86/iommu: make code addressing CVE-2011-1898 no VT-d specific
80b83a3c94 x86/iommu: snoop control is allowed only by Intel VT-d
c609108b21 x86/shadow: make iommu_snoop usage consistent with HAP's
f4f498d08d build: move double-$ into as-option-add
9f8b53bf16 xen/public: fix 9pfs documentation of connection sequence
80653bd654 xen/public: fix 9pfs Xenstore entry documentation
5a703566eb x86/shadow: re-work 4-level SHADOW_FOREACH_L2E()
888aaa2d69 x86/shadow: rename hash_domain_foreach()
39bd52c91e x86/shadow: drop hash_vcpu_foreach()
d04a6ee164 x86/shadow: replace sh_reset_l3_up_pointers()
e16f103d69 xen/riscv: mask all interrupts
72c9ea1f88 xen/riscv: introduce exception handlers implementation
acb37235fb riscv: add temporary riscv64_defconfig alias
01e7477d1b x86/shskt: Disable CET-SS on parts susceptible to fractured updates
b4a23bf629 x86/cpuid: Infrastructure for leaves 7:1{ecx,edx}
789ed08abb docs: clarify xenstore permission documentation
d184b26db2 SUPPORT.md: update version to 4.18-unstable
e51d31f79e tools/ocaml: Drop libxl and xentoollog bindings
bf652a50fb libs/util: Fix parallel build between flex/bison and CC rules
52493ec3e3 libs/util: Remove unused headers in libxlu_pci.c
5b46dd85d0 tools/xenstored: hashtable: Constify the parameters of hashfn/eqfn
4e0e7a29d2 docs/process: branching-checklist: Clarify steps to add the branch in osstest
6a6ae4ac34 docs/process: branching-checklist: Remove reference to root
f87a15f5cc docs/process: branching-checklist: Remove reference to qemu-ijw.git
5dbe775c2b docs/process: branching-checklist: Use consistent indentation
4e0b4ccfc5 x86/paging: return -EINVAL for paging domctls for dying domains
26f99e055d tools/helpers: don't log errors when trying to load PVH xenstore-stubdom
e1528c54d3 ns16550: remove unneeded truncation check in the DT init code
35f867133f xen/riscv: introduce exception context
bd960d6128 xen/riscv: add <asm/csr.h> header
2b38576556 xen/riscv: add <asm/asm.h> header
7174971f5f automation: add RISC-V smoke test
46a78347e2 xen/riscv: introduce early_printk basic stuff
6d317b10f8 xen/arm: Add support for booting gzip compressed uImages
3da5c20cd9 xen/arm: Move kernel_uimage_probe definition after kernel_decompress
b9adcb5ab9 xen/device_tree: remove incorrect and unused dt_irq() and dt_irq_flags() macros
97266d2ac7 xen/device_tree: add parentheses around macro parameters
78c04e24ad libs/light: Makefile cleanup
a2a5d091d0 libs/light: Rework targets prerequisites
826b270337 xen/riscv: introduce empty <asm/cache.h>
a49cf4fb61 xen/riscv: introduce empty <asm/string.h>
aa492912a6 xen/riscv: add <asm/riscv_encoding.h header
48aabc5de2 xen/riscv: change ISA to r64G
c0e202194b x86: do not include asm/hvm/support.h when not used
be4be3238d libxl/x86: use public interface TSC mode definitions
98d95437ed libs: Fix auto-generation of version-script for unstable libs
6c707d4573 x86/time: use public interface TSC mode definitions
7cf218fc07 x86/hygon: do not include asm/hvm/support.h when not used
d476bba90c tools/symbols: drop asm/types.h inclusion
3a59443c1d tools/xenmon: Fix xenmon.py for with python3.x
d69ccf52ad tools/ocaml/libs: Fix memory/resource leaks with caml_alloc_custom()
5fb7851ff2 tools/ocaml/xc: Don't reference Custom objects with the GC lock released
9e7c74e6f9 tools/ocaml/xc: Don't reference Abstract_Tag objects with the GC lock released
4250683842 tools/ocaml/xc: Fix binding for xc_domain_assign_device()
40893f5ac6 tools/ocaml/evtchn: Misc cleanup
2636d8ff7a tools/ocaml/evtchn: Don't reference Custom objects with the GC lock released
36eb2de31b tools/ocaml/libs: Allocate the correct amount of memory for Abstract_tag
ff8b560be8 tools/ocaml/libs: Don't declare stubs as taking void
e6f07052ce tools/oxenstored: validate config file before live update
ea250e81cf tools/ocaml: run 'make format' on OCaml files
aad8c1276c tools/ocaml: add 'make format' for OCaml files
df4daa15ee build: compat-xlat-header.py: optimisation to search for just '{' instead of [{}]
e0cfbcfa57 build: replace get-fields.sh by a python script
d1d3fb1cd5 build: include/compat, remove typedefs handling
f28fe0849b Changelog: Add details about new features for SPR
39ee93d212 .gitignore: only ignore hidden dependency files
b7b4a0a623 public/x86: add TSC defines for cpuid leaf 4
ad58142e73 xen/public: move xenstore related doc into 9pfs.h
207e584bd6 x86/vpmu: remove unused svm and vmx specific headers
efce419283 x86/emulate: remove unused svm specific header
897257ba49 tools/python: change 's#' size type for Python >= 3.10
a21c9e6ddf xen/cppcheck: add parameter to skip given MISRA rules
94f154f168 xen/cppcheck: sort alphabetically cppcheck report entries
4a1bceded2 Add more rules to docs/misra/rules.rst
78e93e6e57 xen/arm: Probe the load/entry point address of an uImage correctly
10b80ee558 x86/shadow: Fix PV32 shadowing when CONFIG_HVM is enabled
1e454c2b5b libxl: fix guest kexec - skip cpuid policy
10ced96ce9 Revert "tools/xenstore: simplify loop handling connection I/O"
3b760245f7 automation: Modify static-mem check in qemu-smoke-dom0less-arm64.sh
87ee7a817d automation: rename RISCV_64 container and jobs
fbd9b5fb4c xen/arm32: head: Remove restriction where to load Xen
dea9dddece xen/arm32: head: Introduce an helper to flush the TLBs
b0a42e1973 xen/arm32: head: Jump to the runtime mapping in enable_mmu()
6a03544e80 xen/arm32: head: Replace "ldr rX, =<label>" with "mov_w rX, <label>"
975bc94242 xen/arm: Clean-up the memory layout
5e5d1a43e1 xen/arm: flushtlb: Reduce scope of barrier for the TLB range flush
d56c70b6e1 xen/arm32: flushtlb: Reduce scope of barrier for local TLB flush
cbfaf6ccd2 xen/arm64: flushtlb: Implement the TLBI repeat workaround for TLB flush by VA
7c43885147 xen/arm64: flushtlb: Reduce scope of barrier for local TLB flush
352c89f72d ns16550: fix an incorrect assignment to uart->io_size
aa7d3432ca ns16550: fix the use of simple_strtoul() for parsing u64
d60324d8af build: fix building flask headers before descending in flask/ss/
1d60c20260 x86/hvm: Support PKS for HAP guests
e96f634b3d x86/pagewalk: Support PKS
59bbbb823d x86/hvm: Enable guest access to MSR_PKRS
b5afdd2e1b x86/hvm: Context switch MSR_PKRS
80ff09ffe2 x86: Initial support for WRMSRNS
c04b84ec74 x86/prot-key: Split PKRU infrastructure out of asm/processor.h
cd8fc0e9f3 x86/prot-key: Enumeration for Protection Key Supervisor
c4f9a3bad3 x86/boot: Sanitise PKRU on boot
5f08bc9404 x86/vmx: Partially revert "x86/vmx: implement Notify VM Exit"
b5d8b03db1 x86/shadow: Drop dubious lastpage diagnostic
848ca4e75f x86/hvm: Drop pat_entry_2_pte_flags
273bde319f xen/version: Drop bogus return values for XENVER_platform_parameters
56f3782633 Revert "xen/arm: Use the correct format specifier"
93017efd7c xen/arm: Harden setup_frametable_mappings
b2220f8525 xen/arm32: Remove unused macro FRAMETABLE_VIRT_END
1b9d4ec26b xen/arm64: Fix incorrect DIRECTMAP_SIZE calculation
89cc5d96a9 xen/arm: domain_build: Replace use of paddr_t in find_domU_holes()
13bfdceda0 xen/arm: Use the correct format specifier
5f5d25c84c tools/xenstore: make output of "xenstore-control help" more pretty
67617067f0 tools/xenstore: let check_store() check the accounting data
1d2355d1c6 tools/xenstore: introduce trace classes
46d9608906 tools/xenstore: switch hashtable to use the talloc framework
473ae5b7f3 tools/xenstore: don't let hashtable_remove() return the removed value
22f3c41dd7 tools/xenstore: let chk_domain_generation() return a bool
e91406f56a tools/xenstore: make domain_is_unprivileged() an inline function
a401b48f37 tools/xenstore: replace literal domid 0 with dom0_domid
4c1f92d664 tools/xenstore: change per-domain node accounting interface
c5bbae7bc5 tools/xenstore: move changed domain handling
4db46b0495 tools/xenstore: replace watch->relative_path with a prefix length
d6bb63924f tools/xenstore: introduce dummy nodes for special watch paths
ab5fa21c8d tools/xenstore: make log macro globally available
a1a618208b tools/xenstore: add hashlist for finding struct domain by domid
9260e41e73 tools/xenstore: remove all watches when a domain has stopped
1d4994ac79 tools/xenstore: let talloc_free() preserve errno
90caa47aa3 xen/riscv: introduce sbi call to putchar to console
0c9c951e6f xen/riscv: introduce asm/types.h header file
ee8c636dd4 xen/include: change <asm/types.h> to <xen/types.h> in early_printk.h
f8fdceefbb x86/shadow: fix PAE check for top-level table unshadowing
41dbbfb596 x86/acpi: separate AMD-Vi and VT-d specific functions
686b80c1ae x86/iommu: iommu_igfx and iommu_qinval are Intel VT-d specific
0b5475996c x86/iommu: amd_iommu_perdev_intremap is AMD-Vi specific
1d99732f2b x86/shadow: further correct MMIO handling in _sh_propagate()
321b1b5eb3 include/types: move stddef.h-kind types to common header
1894049fa2 x86/shadow: L2H shadow type is PV32-only
20279afd73 x86: split populating of struct vcpu_time_info into a separate function
f588e7b7cb xen/arm: Add 0x prefix when printing memory size in construct_domU
229ebd517b xen/arm: linker: The identitymap check should cover the whole .text.header
22a9981ba2 xen/arm: linker: Indent correctly _stext
3edca52ce7 x86/vmx: Support for CPUs without model-specific LBR
e94af0d58f x86/vmx: Calculate model-specific LBRs once at start of day
e6ee01ad24 xen/version: Drop compat/kernel.c
73f0696dc1 public/version: Change xen_feature_info to have a fixed size
6bec713f87 include/compat: produce stubs for headers not otherwise generated
661489874e x86/shadow: call sh_detach_old_tables() directly
d212336378 x86/shadow: reduce effort of hash calculation
2497cb4282 x86/shadow: drop a few uses of mfn_valid()
c47e5d94d0 x86/iommu: introduce AMD-Vi and Intel VT-d Kconfig options
83d9679db0 xen/riscv: introduce stack stuff
fd42170b15 xen: Remove the arch specific header init.h
e66d450b6e tools: Fix build with recent QEMU, use "--enable-trace-backends"
4d975798e1 x86/S3: Restore Xen's MSR_PAT value on S3 resume
4c5edd2449 xen: Drop $ARCH/trace.h
692d04a9ca automation: add qemu-system-riscv to riscv64.dockerfile
da95e36975 automation: temporarily disable CONFIG_COVERAGE for RISC-V randconfig jobs
c9e4365d34 MAINTAINERS: Clarify check-in requirements for mixed-author patches
38525f6f73 xen/include: include <asm/types.h> in <xen/early_printk.h>
ba6d62ad71 x86/shadow: sh_remove_all_mappings() is HVM-only
065be673bb x86/shadow: correct shadow type bounds checks
e4fb175048 x86/shadow: simplify conditionals in sh_{get,put}_ref()
eb47953c55 x86/shadow: move bogus HVM checks in sh_pagetable_dying()
0dcc86d0c0 x86/shadow: convert sh_audit_flags()'es 1st parameter to domain
2b21cbbb33 automation: Add RISC-V 64 cross-build tests for Xen
bb62c25e3e xen/riscv: Initial RISC-V support to build/run minimal Xen
671f50ffab hvmloader: use memory type constants
40b05620e2 x86/mm: avoid hard-coding PAT in get_page_from_l1e()
c1df06afe5 CI: Simplify the MUSL check
df57a2c8da CI: Fix build script when CROSS_COMPILE is in use
d329ca6baf CI: Express HYPERVISOR_ONLY in build.yml
2eb7502421 CI: Only calculate ./configure args if needed
b676255684 CI: Remove guesswork about which artefacts to preserve
7b20009a81 CI: Drop automation/configs/
7eef80e06e xen/riscv: Introduce asm/page-bits.h
84ece04e7f xen/arm: vpl011: add ASSERT_UNREACHABLE in vpl011_mmio_read
b8d5ea6de0 xen/arm: vpl011: emulate non-SBSA registers as WI/RAZ
03697629bc xen/common: page_alloc: Re-order includes
43b5d7b14c x86/shadow: don't open-code copy_domain_page()
4fec945409 x86/shadow: adjust and move sh_type_to_size[]
f90a265f5b x86/PV: drop dead paging_update_paging_modes() call during Dom0 construction
5d58062192 x86/paging: fold HAP and shadow memory alloc related fields
ee17d521b8 public: misra rule 20.7 fix on memory.h
e03427ebb6 public: misra rule 20.7 fix on errno.h
9c57a29737 xen/arm: Allow to set grant table related limits for dom0less domUs
dc380df12a x86/ucode: load microcode earlier on boot CPU
44a6871a5b x86/ucode: allow cpu_request_microcode() to skip memory allocation
1233294a8d xen/multiboot: add proper struct definitions to typedefs
4b40d68e66 x86: derive XEN_MSR_PAT from its individual entries
b7dd0f590a x86: replace EPT_EMT_* constants with X86_MT_*
6eaaa1fcb9 x86: replace MTRR_* constants with X86_MT_* constants
60b8f9a739 x86: replace PAT_* with X86_MT_*
4714ae256f x86: add memory type constants
0fc5fa9333 xen/arm: smmuv3: mark arm_smmu_disable_pasid __maybe_unused
8b03f3ec04 xsm/flask: mkflash.sh: Use const when generating initial_sid_to_string[]
f1b9a28922 automation: Add test jobs to run XTF hypercall xen_version test
99ba7abbda automation: Add support for using XTF for arm64 testing
01f139215e tools/ocaml/xb: Drop Xs_ring.write
2e173b8383 tools/ocaml/xenctrl: Fix unused value warning
4a25935323 tools/ocaml/xenstored: Use ocamldep -sort for linking order
d2ccc63711 tools/ocaml/xb,mmap: Use Data_abstract_val wrapper
5f05b22931 tools/golang: Refresh bindings following virtio changes
68b2672a63 x86/boot: Relocate Xen using memcpy() directly
da5092e7d6 NUMA: replace phys_to_nid()
ad15a0a8ca x86/time: prevent overflow with high frequency TSCs
573279cde1 x86/vmx: implement Notify VM Exit
d329b37d12 x86/vmx: introduce helper to set VMX_INTR_SHADOW_NMI
f7d07619d2 x86/vmx: implement VMExit based guest Bus Lock detection
12b593ca0d x86/mm: avoid phys_to_nid() calls for invalid addresses
c8aaebccc8 tools/libxl: Fix virtio build error for 32-bit platforms
32b61bcafc efi: avoid hard-coding the various PAT constants
1ca8af08df p2m-pt: avoid hard-coding Xen's PAT
88168c418c xen/arm: mm: Allow dump_hyp_walk() to work on the current root table
0e506697d0 xen/arm: mm: Allow xen_pt_update() to work with the current root table
9487a6d62a xen/arm: Enable use of dump_pt_walk() early during boot
0dba9a071a xen/arm: efi-boot misra rule 4.1 fix
291c13af55 xen/Arm: GICv3: Enable GICv3 for AArch32
cd590560ad xen/Arm: GICv3: Define macros to read/write 64 bit
7587f76ebf xen/Arm: GICv3: Define remaining GIC registers for AArch32
b3e52ffe34 xen/Arm: GICv3: Define ICH_AP0R<n> and ICH_AP1R<n> for AArch32
1419b7a655 xen/Arm: GICv3: Define ICH_LR<n>_EL2 on AArch32
469100f014 xen/Arm: vGICv3: Fix emulation of ICC_SGI1R on AArch32
3f92d294b6 xen/Arm: GICv3: Fix GICR_{PENDBASER, PROPBASER} emulation on 32-bit host
a4c99f4cf5 xen/Arm: vGICv3: Adapt emulation of GICR_TYPER for AArch32
cc0c93b4eb xen/Arm: vreg: Support vreg_reg64_* helpers on AArch32
60baf1c14b xen/Arm: GICv3: Do not calculate affinity level 3 for AArch32
49dd246715 xen/Arm: vGICv3: Sysreg emulation is applicable for AArch64 only
549b042943 drivers/char: support up to 1M BAR0 of xhci
dd54ea500b docs: add documentation for generic virtio devices
953efa0b7b xl: add support to parse generic virtio device
43ba5202e2 libxl: add support for generic virtio device
db75092aea tools/xenstore: enhance hashtable implementation
bb65cbd81c tools/xenstore: preserve errno across corrupt()
6a0d1914f0 tools/xenstore: let tdb_logger() preserve errno
8d7acf3f7d EFI: relocate the ESRT when booting via multiboot2
630dc3798e libxl: abort on memory allocation errors
bc19af0bd4 xen: Justify linker script defined symbols in include/xen/kernel.h
a0998df973 tools/misra: fix skipped rule numbers
01b4592114 xen/Makefile: remove Cppcheck invocation from the Makefile
02b26c02c7 xen/scripts: add cppcheck tool to the xen-analysis.py script
b4465e73b1 xen/scripts: add xen-analysis.py for coverity and eclair analysis
9699351942 docs: do not install .deps files
b08600e2d6 x86/tboot: actually wipe contexts
8301856bd9 x86/tboot: correct IOMMU (VT-d) interaction
4384d96c1c x86/mm: PGC_shadowed_pt is used by shadow code only
c44c0dc358 x86/mm: rename PGC_page_table to PGC_shadowed_pt
f00ad745cf x86/tboot: drop failed attempt to hash shadow page tables
c243c0bb2a xen: introduce a Kconfig option to configure NUMA nodes number
d46b1f5c29 xen/x86: move NUMA process nodes nodes code from x86 to common
cfee463c11 xen/x86: use arch_get_ram_range to get information from E820 map
e9c72d524f xen/x86: Use ASSERT instead of VIRTUAL_BUG_ON for phys_to_nid
eac84d9d57 xen/x86: move generically usable NUMA code from x86 to common
9bbfd7b14c xen/x86: Provide helpers for common code to access acpi_numa
f86d0a1ff2 xsm/flask: misra rule 8.4 fix
15dccc881d automation: Add CI test jobs for Yocto
4755d10e9c automation: Add a clean rule for containers
8a6bce7c76 automation: Create Yocto docker images
d25aeb176e add SPDX to arch/arm/*.c
72cfe1c3ad automation: Remove installation of packages from test scripts
1ed7da3010 automation: Install packages required by tests in containers
54073350ba x86/boot: Drop pte_update_limit from physical relocation logic
8d30b9e32c xen/arm: Do not route NS phys timer IRQ to Xen
d7669c1014 Use EfiACPIReclaimMemory for ESRT
db92cb450d x86/tboot: Drop mfn_in_guarded_stack()
af50d9be43 CHANGELOG: Start new "unstable" section
0829a2f3fc CHANGELOG: Set 4.17 release date and tag
11b4ff6484 x86/platform: protect XENPF_get_dom0_console if CONFIG_VIDEO not set
a44734df6c ioreq_broadcast(): accept partial broadcast success
51c5b8b9af xen: remove trigraphs from comments
60737ee9c5 x86/HVM: drop stale check from hvm_load_cpu_msrs()
b926dbccca libxl: arm: make creation of iommu node independent of disk device
866ce2657e libxl: arm: Split make_virtio_mmio_node()
bb46e38970 libxl: arm: Create alloc_virtio_mmio_params()
3d0290e528 xen/arm: Define WLEN_8 macro and use it in debug-pl011
dae2839c54 xen/arm: debug-pl011.inc: Use macros instead of hardcoded values
2d2fda0223 xen/arm: Drop early_uart_init macro from debug-meson.inc
4c2f82d95e xen/arm: Fix unreachable panic for vpl011 vIRQ
718eb7513a GICv3: Emulate GICD_IGRPMODR as RAZ / WI
34f8b971b2 xen/arm: Enforce alignment check in debug build for {read, write}_atomic
a6da84524c x86/mm/shadow: do not open-code PAGE_CACHE_ATTRS
53ba5e1b48 x86/mm/shadow: avoid assuming a specific Xen PAT
4dd160583c x86/platform: introduce hypercall to get initial video console settings
f5d0279839 x86/HVM: don't mark evtchn upcall vector as pending when vLAPIC is disabled
9d67161388 xen/page_alloc: relax the BUILD_BUG_ON() in xenheap_max_mfn()
1043dfb165 gnttab: don't silently truncate GFNs in compat setup-table handling
3ea18e9e26 x86/p2m: don't calculate page owner twice in p2m_add_page()
bad55986f1 x86/MSR: use latched "current"
83c822a13f bump default SeaBIOS version to 1.16.1
e9a78d2dc2 CODING_STYLE: list further brace placement exceptions
ded355eaa4 CODING_STYLE: explicitly call out label indentation
32ae027f81 unify update_runstate_area()
15241c9267 process/release-technician-checklist: Explain how the banner in README is generated
68f551ec5f Arm/P2M: reduce locking in p2m_{alloc,free}_page()
a51a244b9d Arm64: make setup_virt_paging()'s pa_range_info[] static
10acd21795 tools/ocaml/xenctrl: Add hvm_param_{get,set} bindings
ff95dae53e tools/ocaml/xenctrl: Add binding for xc_evtchn_status
d2162d884c tools/oxenstored: Render backtraces more nicely in Syslog
133f35f0f0 x86/HVM+shim: fix build when !CONFIG_GRANT_TABLE
a93864955e x86/APIC: make a few interrupt handler functions static
831419f829 x86/Viridian: don't mark IRQ vectors as pending when vLAPIC is disabled
f1d7aac1e3 x86/HVM: don't mark external IRQs as pending when vLAPIC is disabled
b39e638525 x86/pvh: do not forward MADT Local APIC NMI structures to dom0
e267d11969 x86/irq: do not release irq until all cleanup is done
f0752bc3b8 xen/notifier: simplify using notifier_[to|from]_errno()
0f1dec89d3 xen/sched: try harder to find a runnable unit in rt_schedule()
a2f5203141 xen/gnttab: reduce size of struct active_grant_entry
a87d6f0fbd xen: add knownalive_domain_from_domid() helper
6b09ca19d9 xen/locks: add dynamic lock recursion checks
5488cc3a4d gnttab: bail from GFN-storing loops early in case of error
432ffda15f gnttab: no need to translate handle for gnttab_get_status_frames()
1527066a7e Introduce more MISRA C rules to docs/misra/rules.rst
200fd08714 automation: test.yaml: Introduce templates to reduce the overhead
9b29d5b7ee automation: Rename qemu-smoke-arm32.sh to qemu-smoke-dom0-arm32.sh
e0a3988347 automation: Rename qemu-alpine-arm64.sh to qemu-smoke-dom0-arm64.sh
50f8e191e6 automation: Rename qemu-smoke-arm64.sh to qemu-smoke-dom0less-arm64.sh
ed02c50684 automation: qemu-alpine-arm64: Cleanup and fixes
93f1431264 automation: qemu-smoke-arm32.sh: Modify script to use ImageBuilder
a143142682 automation: Add Arm containers to containerize script
673f21c6ca automation: Add debug versions of Arm tests
a0030a83e8 automation: qemu-smoke-arm64.sh: Increase RAM size
5b7fdf2f38 automation: Add randconfig build jobs for arm64 alpine container
8b3c06a3e5 tools/ocaml/xenctrl: OCaml 5 support, fix use-after-free
acd3fb6d65 tools/oxenstored/syslog: Avoid potential NULL dereference
ee7815f49f tools/oxenstored: Set uncaught exception handler
3f02e0a70f tools/oxenstored: Log live update issues at warning level
9b224c2529 tools/oxenstored: Keep /dev/xen/evtchn open across live update
df2db174b3 tools/oxenstored: Rework Domain evtchn handling to use port_pair
aecdc28d95 tools/oxenstored: Implement Domain.rebind_evtchn
31fbee749a tools/oxenstored: Rename some 'port' variables to 'remote_port'
9804a5db43 tools/oxenstored: Bind the DOM_EXC VIRQ in in Event.init()
b45bfaf359 tools/oxenstored: Style fixes to Domain
9bafe4a533 tools/ocaml/evtchn: Extend the init() binding with a cloexec flag
7ba68a6c55 tools/ocaml/evtchn: Add binding for xenevtchn_fdopen()
22d5affdf0 tools/ocaml/evtchn: OCaml 5 support, fix potential resource leak
ee36179371 tools/oxenstored: Fix incorrect scope after an if statement
95db09b1b1 tools/ocaml/xenctrl: Use larger chunksize in domain_getinfolist
c3b6be714c tools/ocaml/xenctrl: Make domain_getinfolist tail recursive
25b55688e1 tools/include: fix clean and rework COPYING for installed Xen public header
72269801cc Set version to 4.18; return ./autogen.sh
aab5341204 Set version to 4.18; 4.17 has branched
7190edeaaf Revert "Config.mk pin QEMU_UPSTREAM_REVISION (prep for Xen 4.17 RC1)"
ddcc208ccd docs/misc/arm: Update references to Linux kernel docs
e5f93e0269 Changelog: Add __ro_after_init and CET
991f5037c8 CHANGELOG: Add missing entries for work during the 4.17 release
345135942b xen/flask: Wire up XEN_DOMCTL_{get,set}_paging_mempool_size
8746d3e255 tools/libxl: Fixes to libxl__domain_set_paging_mempool_size()
8cdfbf95b1 libs/light: Propagate libxl__arch_domain_create() return code
57f07cca82 efifb: ignore frame buffer with invalid configuration
db8fa01c61 xen/arm: Correct the p2m pool size calculations
7c3bbd940d xen/arm, libxl: Revert XEN_DOMCTL_shadow_op; use p2m mempool hypercalls
bd87315a60 tools/tests: Unit test for paging mempool size
22b20bd98c xen: Introduce non-broken hypercalls for the paging mempool size
e5ac68a011 x86/hvm: Revert per-domain APIC acceleration support
f5d56f4b25 xen: Used SPDX identifier in public headers
4ea75e9a90 Rework COPYING installed in /usr/include/xen/, due to several licences
8e75d6c36b xen: Add licence header to device_tree_defs.h
c62748312e tools/include/xen-foreign: Add SPDX identifier to generated headers
224dab9416 xen: Used SPDX identifier in some public headers
97abc04e38 xen: Add licence information to public/errno.h
764146ed8a x86/spec-ctrl: Fill in whitepaper URL
2a98e98f96 Introduce CC-BY-4.0 license under LICENSES/
e6440e2a72 amd: remove VIRT_SC_MSR_HVM synthetic feature
b2030e6730 amd/virt_ssbd: set SSBD at vCPU context switch
aa717d803e xen/arm: vGICv3: Restore the interrupt state correctly
c805ceb0b2 CHANGELOG: update link for RELEASE-4.16.0
17dfc79ce9 Add SPDX to CODING_STYLE
7b068ac890 Remove extra copies of licenses and license headers
63ca22f920 Add licenses under LICENSES
08c6f57cfe arm: fix Kconfig symbol dependency on arm features
a4180b03ff kexec: restore hypercall 1st arg's type
8febf78f1e Revert "x86/HVM: also dump stacks from show_execution_state()"
aa1bf38585 tools/hotplug: fix systemd unit dependencies
124492eff8 tools/ocaml/xenstored/store.ml: fix build error
2b27967fb8 x86/spec-ctrl: Mitigate IBPB not flushing the RSB/RAS
24496558e6 x86/spec-ctrl: Enumeration for IBPB_RET
e61a789813 xen/arm: add iounmap after initrd has been loaded in domain_build
a43e2b02df xen/arm: vGICv3: Emulate properly 32-bit access on GICR_PENDBASER
37f82facd6 xen/sched: migrate timers to correct cpus after suspend
9f3e585ff5 xen: fix generated code for calling hypercall handlers
8e35b1a98d drivers/char: suspend handling in XHCI console driver
2d9b369913 IOMMU/VT-d: wire common device reserved memory API
0751a75e39 tools/xenstore: call remove_domid_from_perm() for special nodes
1283af6465 tools/xenstore: remove XEN_LIB_STORED and XENSTORED_ROOTDIR
0d251a1dd1 hvm/msr: load VIRT_SPEC_CTRL
2dd823ca72 tools/xenstore: harden transaction finalization against errors
13ac37f141 tools/xenstore: fix deleting node in transaction
ae34df4d82 tools/ocaml: Ensure packet size is never negative
db471408ed tools/ocaml/xenstored: Fix quota bypass on domain shutdown
d084d2c6df docs: enhance xenstore.txt with permissions description
d174fefa90 tools/xenstore: make the internal memory data base the default
755d3f9deb tools/xenstore: remove nodes owned by destroyed domain
297ac246a5 tools/xenstore: use treewalk for creating node records
ea16962053 tools/xenstore: use treewalk for deleting nodes
a07cc0ec60 tools/xenstore: use treewalk for check_store()
70f719f52a tools/xenstore: simplify check_store()
0d7c5d19bc tools/xenstore: add generic treewalk function
0c00c51f3b tools/xenstore: don't let remove_child_entry() call corrupt()
da8ee25d02 tools/xenstore: remove recursion from construct_node()
ab12821822 tools/xenstore: fix checking node permissions
2a587de219 tools/xenstore: don't use conn->in as context for temporary allocations
c7bc20d8d1 SUPPORT.md: clarify support of untrusted driver domains with oxenstored
9284ae0c40 tools/ocaml: Limit maximum in-flight requests / outstanding replies
19171fb5d8 tools/ocaml/xb: Add BoundedQueue
c0a86a4627 tools/ocaml: Change Xb.input to return Packet.t option
4a8bacff20 tools/ocaml: GC parameter tuning
329f4d1a65 tools/ocaml/xenstored: Check for maxrequests before performing operations
84734955d4 tools/ocaml/xenstored: Synchronise defaults with oxenstore.conf.in
9c484bef83 tools/xenstore: add control command for setting and showing quota
1da16d5990 tools/xenstore: add exports for quota variables
00e9e32d02 tools/xenstore: add memory accounting for nodes
7f9978a2cc tools/xenstore: add memory accounting for watches
f6d0013364 tools/xenstore: add memory accounting for responses
0d4a8ec7a9 tools/xenstore: add infrastructure to keep track of per domain memory usage
60e2f6020d tools/xenstore: move the call of setup_structure() to dom0 introduction
268369d8e3 tools/xenstore: limit max number of nodes accessed in a transaction
dbef1f7482 tools/xenstore: simplify and fix per domain node accounting
3047df38e1 tools/xenstore: fix connection->id usage
b5c0bdb96d tools/xenstore: don't buffer multiple identical watch events
36de433a27 tools/xenstore: limit outstanding requests
5285dcb1a5 tools/xenstore: let unread watch events time out
3a96013a3e tools/xenstore: reduce number of watch events
ead062a68a tools/xenstore: add helpers to free struct buffered_data
9bfde319db tools/xenstore: split up send_reply()
5d71766bd1 tools/xenstore: Fail a transaction if it is not possible to create a node
1cd3cc7ea2 tools/xenstore: create_node: Don't defer work to undo any changes on failure
3b5beaf490 x86/vmx: Revert "VMX: use a single, global APIC access page"
1d7fbc535d x86/pv-shim: correct ballooning down for compat guests
a0bfdd201e x86/pv-shim: correct ballooning up for compat guests
9272225ca7 x86/pv-shim: correctly ignore empty onlining requests
7abd7bc162 vpci: refuse BAR writes only if the BAR is mapped
53d9133638 pci: do not disable memory decoding for devices
48980cf24d common: map_vcpu_info() wants to unshare the underlying page
20cf0ab774 Arm32: prune (again) ld warning about mismatched wchar_t sizes
b80d4f8d2e x86: also zap secondary time area handles during soft reset
2ca833688a vpci: include xen/vmap.h to fix build on ARM
bad4832710 CI: Drop more TravisCI remnants
26bf76b48b vpci: introduce a local vpci_bar variable to modify_decoding()
c14aea137e vpci/msix: remove from table list on detach
6ccb5e308c vpci: don't assume that vpci per-device data exists unconditionally
ef9cc669ba automation: Build Xen according to the type of the job
aef07fd186 automation: Explicitly enable NULL scheduler for boot-cpupools test
4ff0811a2b libs/light: Fix build, fix missing _libxl_types_json.h
a92dc2bb30 x86/shadow: drop (replace) bogus assertions
fce1f381f7 xen/sched: fix restore_vcpu_affinity() by removing it
73c62927f6 xen/sched: fix race in RTDS scheduler
f324300c83 EFI: don't convert memory marked for runtime use to ordinary RAM
974c8d810a xen/arm: p2m: fix pa_range_info for 52-bit pa range
e034704644 xen/arm: mark handle_linux_pci_domain() __init
f838b95677 tools/ocaml/xenstored: fix live update exception
0c06760be3 tools/xendomains: Restrict domid pattern in LIST_GREP
7110192b1d tools/oxenstored: Fix Oxenstored Live Update
e9444d8742 test/vpci: enable by default
1cfccd4b07 test/vpci: fix vPCI test harness to provide pci_get_pdev()
b71419530d test/vpci: add dummy cfcheck define
c7cff11888 xen/arm: p2m: Populate pages for GICv2 mapping in p2m_init()
3783e58331 arm/p2m: Rework p2m_init()
cc4747be8b tools: Workaround wrong use of tools/Rules.mk by qemu-trad
5310a3aa50 tools: Rework linking options for ocaml binding libraries
3f9d53af25 tools/golang/xenlight: Rework gengotypes.py and generation of *.gen.go
68d19cfb90 libs/light: Rework generation of include/_libxl_*.h
9eb46d3f98 libs/light: Rework acpi table build targets
6aabee32b5 tools/include: Rework Makefile
13c05b9efa libs: Avoid exposing -Wl,--version-script to other built library
4834dd5521 git-checkout.sh: handle running git-checkout from a different directory
4c1a3cca79 libs/light/gentypes.py: allow to generate headers in subdirectory
f3fae4184f tools/hotplug: Generate "hotplugpath.sh" with configure
40d96f0c7d tools: Remove -Werror everywhere else
e4f5949c44 tools: Add -Werror by default to all tools/
fcdb9cdb95 tools: Introduce $(xenlibs-ldflags, ) macro
a2e8156ba4 tools/xentrace: rework Makefile
3a206abcd7 tools/debugger/gdbsx: Fix and cleanup makefiles
197f612b77 argo: Remove reachable ASSERT_UNREACHABLE
171d4d24f8 x86/mwait-idle: make SPR C1 and C1E be independent
08acdf9a26 x86/mwait-idle: disable IBRS during long idle
0fa9c3ef1e x86/mwait-idle: add AlderLake support
13ecd1c216 x86/mwait-idle: add core C6 optimization for SPR
9fc9a5c216 x86/mwait-idle: add 'preferred-cstates' command line option
0823d57d71 tools/ocaml/xc: Address ABI issues with physinfo arch flags
1f232670f8 tools/ocaml/xc: Fix code legibility in stub_xc_domain_create()
448d28309f VMX: correct error handling in vmx_create_vmcs()
87a20c98d9 x86emul: respect NSCB
6e3aab858e gnttab: correct locking on transitive grant copy error path
cbea5a1149 xen/arm: Allocate and free P2M pages from the P2M pool
cf2a68d2ff xen/arm, libxl: Implement XEN_DOMCTL_shadow_op for Arm
55914f7fc9 xen/arm: Construct the P2M pages pool for guests
156a239ea2 libxl, docs: Add per-arch extra default paging memory
8a2111250b xen/x86: p2m: Add preemption in p2m_teardown()
e7aa55c0aa x86/p2m: free the paging memory pool preemptively
f50a2c0e1d x86/p2m: truly free paging pool memory for dying domains
ff600a8cf8 x86/p2m: refuse new allocations for dying domains
b7f93c6afb x86/shadow: tolerate failure in shadow_prealloc()
eac000978c x86/shadow: tolerate failure of sh_set_toplevel_shadow()
5b44a61180 x86/HAP: adjust monitor table related error handling
1df52a2702 x86/p2m: add option to skip root pagetable removal in p2m_teardown()
3202084566 xen/arm: p2m: Handle preemption when freeing intermediate page tables
3ebe773293 xen/arm: p2m: Prevent adding mapping when domain is dying
9029bc265c Update Xen version to 4.17-rc
b4ddd34d3a Config.mk pin QEMU_UPSTREAM_REVISION (prep for Xen 4.17 RC1)
66a5633aa0 x86/NUMA: correct off-by-1 in node map population
3161231abc xen/arm: fix booting ACPI based system after static evtchn series
efc220bcbd xen: Add static event channel in SUPPORT.md on ARM
1666086b00 x86/NUMA: improve memnode_shift calculation for multi node system
38e1276db4 Arm/vGIC: adjust gicv3_its_deny_access() to fit other gic*_iomem_deny_access(
b1f4b45d02 x86/NUMA: correct off-by-1 in node map size calculation
defa4e51d2 x86/vpmu: Fix race-condition in vpmu_load
fb7485788f automation: Information about running containers for a different arch
a210e94af3 xen/arm: domain_build: Always print the static shared memory region
b726541d94 x86: wire up VCPUOP_register_vcpu_time_memory_area for 32-bit guests
9214da34a3 x86: re-connect VCPUOP_send_nmi for 32-bit guests
c4e5cc2ccc x86/ept: limit calls to memory_type_changed()
9982fe275b arm/vgic: drop const attribute from gic_iomem_deny_access()
0db195c1a9 x86/NUMA: correct memnode_shift calculation for single node system
e1de23b7c1 MAINTAINERS: ARINC 653 scheduler maintainer updates
3ab6ea992b tools: remove xenstore entries on vchan server closure
211d8419ef CI: Force CONFIG_XEN_IBT in the buster-gcc-ibt test
1686272d52 automation: qemu-smoke-arm{32/64}.sh: Fix typo in DEBIAN_FRONTENT
13a7c0074a Build: Drop -no-pie from EMBEDDED_EXTRA_CFLAGS
5e936d11b1 drivers/char: Fix build when CET-IBT is enabled
bd68a5f397 automation: Use custom build jobs when extra config options are needed
bfd3e9945d build: fix x86 out-of-tree build without EFI
6cecffc7a6 xsm/flask: adjust print messages to use %pd
bebaf7c296 drivers/char: add console=ehci as an alias for console=dbgp
72cab2289e drivers/char: allow driving the rest of XHCI by a domain while Xen uses DbC
7aadb75e28 drivers/char: fix handling cable re-plug in XHCI console driver
d88e2aa4ea drivers/char: add RX support to the XHCI driver
3a1a7b809f drivers/char: mark DMA buffers as reserved for the XHCI
3fd9456f2d IOMMU/AMD: wire common device reserved memory API
faccb3a08b IOMMU: add common API for device reserved memory
022e40edd4 drivers/char: allow using both dbgp=xhci and dbgp=ehci
c1db78cae1 build: correct cppcheck-misra make rule
3007efadf7 xsm/flask: correcting initial sid assignment on context allocation
942ac5fc15 xen/arm, device-tree: Make static-mem use #{address,size}-cells
cc80e2bab0 xen/pci: replace call to is_memory_hole to pci_check_bar
943941fb7a xen/arm: pci: modify pci_find_host_bridge_node argument to const pdev
826956157d xen: Add static memory sharing in SUPPORT.md
09c0a8976a xen/arm: enable statically shared memory on Dom0
c7fe72607a xen/arm: create shared memory nodes in guest device tree
b7133c10a3 xen/arm: set up shared memory foreign mapping for borrower domain
041957bad3 xen/arm: Add additional reference to owner domain when the owner is allocated
5951b856d8 xen/arm: introduce put_page_nr and get_page_nr
83d55ba817 xen/arm: allocate static shared memory to a specific owner domain
5597f32f40 xen/arm: assign static shared memory to the default owner dom_io
1d98281adf xen/arm: introduce static shared memory
52daa6a848 xen/gnttab: fix gnttab_acquire_resource()
9066d877bf docs/device-tree: Place the static-heap dt-binding in proper place
36e3f41587 automation: Add a new job for testing boot time cpupools on arm64
e17ca18747 automation: qemu-smoke-arm64: Silence ifconfig error messages
d884311077 automation: qemu-alpine-arm64-gcc: Use kernel 5.19
6bc1c1aba0 tools/xenstore: add migration stream extensions for new features
f541464af3 xen/arm: Handle static heap pages in boot and heap allocator
f030935efb xen/arm: mm: Rename xenheap_* variable to directmap_*
4596329291 docs, xen/arm: Introduce static heap memory
d0d81052b4 xen/arm: bootfdt: Make process_chosen_node() return int
1fe16b3ed7 xen/arm: introduce xen-evtchn dom0less property
4a6d155a84 xen/arm: introduce new xen,enhanced property value
7ba046a538 xen/evtchn: modify evtchn_bind_interdomain to support static evtchn
5324b179e4 xen/evtchn: modify evtchn_alloc_unbound to allocate specified port
0a8ef2fa45 xen/evtchn: restrict the maximum number of evtchn supported for domUs
4e1eade78e xen/evtchn: Add an helper to reserve/allocate a port
5d1cfe844e xen/evtchn: Make sure all buckets below d->valid_evtchns are allocated
64e302157a .gitignore: add init-dom0less
f2bf0a45b0 xen: add macro for version number string
3a2feae17e tools/xenstore: add documentation for extended watch command
4d4cf97d41 tools/xenstore: add documentation for new set/get-quota commands
ace1d2eff8 tools/xenstore: minor fix of the migration stream doc
ecd6b97599 Config.mk: correct PIE-related option(s) in EMBEDDED_EXTRA_CFLAGS
172015009a xen: retrieve reserved pages on populate_physmap
142578a506 xen: rename free_staticmem_pages to unprepare_staticmem_pages
508d2d297f xen: introduce prepare_staticmem_pages
b01721f077 xen: unpopulate memory when domain is static
5ebd3da7c9 xen/arm: introduce CDF_staticmem
d58b6aef96 xen: do not free reserved memory into heap
654f406d51 xen/arm: smmuv3: Avoid open coded arithmetic in memory allocation
eabda52f21 xen/arm: smmuv3: Fix fall-through warning for Clang
96a0f2a264 xen/arm: smmuv3: Remove unnecessary oom message
6717b8e6a9 xen/arm: smmuv3: Change *array into *const array
f9f03811be xen/arm: smmuv3: Remove the unused fields for PREFETCH_CONFIG command
ae4ee09eb3 xen/arm: smmuv3: Remove the page 1 fixup
19f609249a xen/arm: smmuv3: Move definitions to a header
56995f06fe xen/arm: smmuv3: Ensure queue is read after updating prod pointer
1b11b5ab42 xen/arm: smmuv3: Fix endianness annotations
b0cec9d37f xen/arm: smmuv3: Fix l1 stream table size in the error message
0b5034946f automation: only filter build-*/ in gitignore
48f35317c2 x86/public: move XEN_ACPI_ in a new header
ad0838f449 xsm/flask: fix MISRA C 2012 Rule 20.7 violations
d844736896 xen/sched: fix cpu hotplug
d42be6f834 xen/sched: carve out memory allocation and freeing from schedule_cpu_rm()
a83fa1e2b9 xen/sched: introduce cpupool_update_node_affinity()
e997d05592 xen/arm32: traps: Dump more information for hypervisor data abort
e1710891c7 xen/arm: Tweak the dump page-table walk output
3babad2af8 xen/arm32: head: Move earlyprintk messages to .rodata.str
a571c1aab5 xen/arm32: heap: Rework adr_l so it doesn't rely on where Xen is loaded
f93f7f70de xen/arm32: head: Introduce get_table_slot() and use it
0f94a5a7fb xen/arm64: head: Introduce get_table_slot() and use it
471721c341 xen/arm64: head: Don't set x22 and update the documentation
ace4030223 xen/arm: Support properly __ro_after_init on Arm
cbb35e7280 Arm32: correct string.h functions for "int" -> "unsigned char" conversion
c3bd0b83ea x86/CPUID: surface suitable value in EBX of XSTATE subleaf 1
1d5b8c434d arm/processor: fix MISRA C 2012 Rule 20.7 violations
7bb36cbb93 arm/vgic: fix MISRA C 2012 Rule 20.7 violation
335f3f62b6 arm/gic_v3_its: fix MISRA C 2012 Rule 20.7 violations
8ac5bb92f3 xen: add field "flags" to cover all internal CDF_XXX
7d3f8a2a26 xen: do not merge reserved pages in free_heap_pages()
fc151829ba xen/arm: smmu: Set s2cr to type fault when the devices are deassigned
399bcbf281 x86/domain: Fix struct domain memory corruption when building PV guests
8d9006cf41 x86/entry: Fix !PV build
696ee5ca9f xen/rbtree: fix MISRA C 2012 Rule 20.7 violation
c5659ef2da xen/elf: fix MISRA C 2012 Rule 20.7 violations
722a61dbb5 xenbaked: properly use time_t in dump_stats()
f4036c96de tools/console: Use $(xenlibs-ldlibs,)
e792843922 tools/helper: Cleanup Makefile
7f2a5e368e tools: Introduce $(xenlibs-ldlibs, ) macro
d2b396d47b tools: Introduce $(xenlibs-rpath,..) to replace $(SHDEPS_lib*)
58ce731fac arm/domain: fix comment for arch_set_info_guest
f6cd15188e amd/msr: implement VIRT_SPEC_CTRL for HVM guests using legacy SSBD
15f3a67e7e amd/msr: allow passthrough of VIRT_SPEC_CTRL for HVM guests
8ffd5496f4 amd/msr: implement VIRT_SPEC_CTRL for HVM guests on top of SPEC_CTRL
8c5d17f5a4 Temporarily revert "amd/msr: implement VIRT_SPEC_CTRL for HVM guests on top of SPEC_CTRL"
bc7f400b96 Temporarily revert "amd/msr: allow passthrough of VIRT_SPEC_CTRL for HVM guests"
c254f3b45c Temporarily revert "amd/msr: implement VIRT_SPEC_CTRL for HVM guests using legacy SSBD"
6c0a14d324 libxl: use time_t for qmp_synchronous_send()'s last parameter
2891f116e7 console/client: properly use time_t in get_pty_fd()
6c987150cf x86: rework hypercall argument count table instantiation & use
fe3f50726e x86/entry: move .init.text section higher up in the code for readability
f2d947ac07 x86/P2M: allow 2M superpage use for shadowed guests
6270081c57 x86/shadow: slightly consolidate sh_unshadow_for_p2m_change() (part III)
241702e064 x86/shadow: slightly consolidate sh_unshadow_for_p2m_change() (part II)
0caf699e69 x86/shadow: slightly consolidate sh_unshadow_for_p2m_change() (part I)
62ca138c2c tools/libxl: Replace deprecated -soundhw on QEMU command line
f2beaf876d build: Fix missing MAKEFLAGS --no-print-directory
0f2611c524 x86/traps: Make nmi_show_execution_state() more useful
283abca299 xen/arm: rename PGC_reserved to PGC_static
ee8d9d0c1c drivers/char: make serial_parse_handle take const argument
deb23751e1 drivers/char: add support for selecting specific xhci
3a669ea835 drivers/char: reset XHCI ports when initializing dbc
791f216361 drivers/char: add support for USB3 DbC debugger
e450af698f tools/flask/utils: list build targets in $(TARGETS)
646589ac14 amd/msr: implement VIRT_SPEC_CTRL for HVM guests using legacy SSBD
a2eeaa6906 amd/msr: allow passthrough of VIRT_SPEC_CTRL for HVM guests
ebaaa72ee0 amd/msr: implement VIRT_SPEC_CTRL for HVM guests on top of SPEC_CTRL
7547268c35 libs/libs.mk: Rework target headers.chk dependencies
5e49cfcaf0 libs/libs.mk: Remove the need for $(PKG_CONFIG_INST)
cccced3434 libs/libs.mk: Rename $(LIB) to $(TARGETS)
dda9c42bd7 tools/libs/util: cleanup Makefile
50f34b69c8 .gitignore: Cleanup ignores of tools/libs/*/{headers.chk,*.pc}
73447cddf6 tools/xentop: rework makefile
becde88538 tools/xenpaging: Rework makefile
4aa436df4b tools/libfsimage: Cleanup makefiles
290a9b91d9 tools/hotplug: cleanup Makefiles
2d696fc3d0 tools/fuzz/x86_instruction_emulator: rework makefile
f4caaef48e tools/firmware/hvmloader: rework Makefile
8eb15275cd x86/mm: re-arrange type check around _get_page_type()'s TLB flush
3dc26edbb5 x86/build: Clean up boot/Makefile
1ab7c128d9 x86/build: Don't convert boot/{cmdline,head}.bin back to .S
1af4e0189f x86/msi: Switch msi_info to using pci_sbdf_t
0c614af4a7 config/x86: tidy {Free,Open}BSD LDFLAGS_DIRECT handling
f5234f3633 PCI: bring pci_get_real_pdev() in line with pci_get_pdev()
a37f9ea7a6 PCI: fold pci_get_pdev{,_by_domain}()
8cf6e07389 PCI: simplify (and thus correct) pci_get_pdev{,_by_domain}()
3eb1865ae3 build/x86: suppress GNU ld 2.39 warning about RWX load segments
31b41ce858 x86/amd: only call setup_force_cpu_cap for boot CPU
b874e47eb1 x86/spec-ctrl: Enumeration for PBRSB_NO
4a2217c970 arm/gic: fix MISRA C 2012 Rule 20.7 violation
fc9e089ad2 arm/vgic: fix coding style in macro REG_RANK_INDEX()
41fcb3af8a tools/libxl: Replace deprecated -sdl option on QEMU command line
c79e4d209b xen/sched: setup dom0 vCPUs affinity only once
4735553ec1 x86/CPUID: AVX512-FP16 definitions
d7c3c845c4 xen/arm: vreg: Fix MISRA C 2012 Rule 20.7 violation
ea2353a7fb xen/arm: regs: Fix MISRA C 2012 Rule 20.7 violation
e83cd54611 x86: Expose more MSR_ARCH_CAPS to hwdom
3caa5a3f03 docs: correct x86 MCE command line option info
5ee8b18411 xen/cpu: undefine MASK_DECLARE_ macros after their usage
e99709a86d xen/cpu: fix MISRA C 2012 Rule 20.7 violation
f3eafc58f4 x86/kexec: Add the '.L_' prefix to is_* and call_* labels
89805b35ce automation: qemu-smoke-arm64: Run ping test over a pv network interface
40cd0e968f automation: qemu-smoke-arm64: Use kernel 5.19
6d6aee437e automation: disable xen,enhanced in qemu-smoke-arm64
7ade30a145 tools/ocaml/libs/xb: hide type of Xb.t
a0aeab27ee tools/ocaml: fix compiler warnings
d91312bfe7 tools/ocaml/*/Makefile: generate paths.ml from configure
da74c951e4 xen/wait: Describe RSB safety
e570e8d520 x86/spec-ctrl: Use IST RSB protection for !SVM systems
cc7410683d ChangeLog: mention IOMMU superpage support
33bd9c9186 xen/hypfs: check the return value of snprintf to avoid leaking stack accidently
7177b2c326 xen/compiler: fix MISRA C 2012 Rule 20.7 violation
e2bd45f4ca tools/xenstore: add documentation for new set/get-feature commands
1f7543c039 xen/char: mvebu-uart: Fix MISRA C 2012 Rule 20.7 violation
5b9eca17cb xen/char: imx-lpuart: Fix MISRA C 2012 Rule 20.7 violation
7c5b25c303 tools: use $(PYTHON) to call cppcheck tools
8a5116371d doc: Add git commands to generate Fixes
01ca29f0b1 sched: dom0_vcpus_pin should only affect dom0
2f2b76d47c tools/ocaml: do not run ocamldep during make clean
9875c69c4b evtchn: convert domain event lock to an r/w one
800f21499e arm/vgic-v3: fix virq offset in the rank when storing irouter
4d96a4fe2a xen/efi: efibind: fix MISRA C 2012 Directive 4.10 violation
9dc3f006a8 automation: qemu-smoke-arm64.sh: Fix the number of cpus in the device tree
1971609550 automation: qemu-smoke-arm64.sh: Rename the device tree to avoid confusion
d7cb99c378 automation: qemu-smoke-arm64.sh: Remove some stale comments
2ce6a719a0 xen/arm: domain: Fix MISRA C 2012 Rule 8.7 violation
7451fdeb69 xen/arm: mm: Reduce the area that xen_second covers
68b01ef0b3 xen/arm: mm: Move domain_{,un}map_* helpers in a separate file
8417757310 xen: Rename CONFIG_DOMAIN_PAGE to CONFIG_ARCH_MAP_DOMAIN_PAGE and...
04248b82f9 xen/arm32: mm: Consolidate the domheap mappings initialization
6dc9a1fe98 xen/arm: Remove most of the *_VIRT_END defines
062790aca6 arm/atomic: fix MISRA C 2012 Rule 20.7 violation
124f138b37 xsm/dummy: fix MISRA C 2012 Directive 4.10 violation
9ff3231f95 x86/shadow: drop CONFIG_HVM conditionals from sh_update_cr3()
5b04fe7864 x86/shadow: don't open-code shadow_remove_all_shadows()
8a3b89e430 x86/shadow: exclude HVM-only code from sh_remove_shadows() when !HVM
3629759626 x86/shadow: properly handle get_page() failing
108e6f282d automation: arm64: Create a test job for testing static allocation on qemu
37339ba9ef automation: Remove XEN_CONFIG_EXPERT leftovers
ca45d3cb45 libxl/arm: Create specific IOMMU node to be referred by virtio-mmio device
2128143c11 libxl: Introduce basic virtio-mmio support on Arm
66dd1c62b2 libxl: Add support for Virtio disk configuration
f732240fd3 x86/PV: correct post-preemption progress recording in iommu_memory_setup()
b06edbf70e mm: enforce return value checking on get_page()
cdfe7b0507 x86/shadow: drop shadow_prepare_page_type_change()'s 3rd parameter
13316827fa x86/msr: fix X2APIC_LAST
b1f0183e50 x86/vpmu: Fix build following vmfork addition
f61c54967f x86/pv: Inject #GP for implicit grant unmaps
a9949efb28 x86/mm: correct TLB flush condition in _get_page_type()
5707470bf3 common/memory: Fix ifdefs for ptdom_max_order
bd0bb8a005 page-alloc: fix initialization of cross-node regions
f1c719d5cd include: correct re-building conditions around hypercall-defs.h
e625ddee27 Arm32: restore proper name of .dtb section start symbol
755087eb9b xen/mem_sharing: support forks with active vPMU state
7c5e3cc07d golang/xenlight: Update generated code
fbf8e40f3b VT-d: fold dma_pte_clear_one() into its only caller
e0a417ce62 IOMMU/x86: add perf counters for page table splitting / coalescing
3eb5c23542 VT-d: replace all-contiguous page tables by superpage mappings
0f91f75eb7 AMD/IOMMU: replace all-contiguous page tables by superpage mappings
00c400edd7 VT-d: free all-empty page tables
2d1bb66d87 AMD/IOMMU: free all-empty page tables
a81d9f9baa IOMMU/x86: prefill newly allocate page tables
8c6a4963f0 x86: introduce helper for recording degree of contiguity in page tables
2e70db30b3 VT-d: allow use of superpage mappings
4b7c48b4ba AMD/IOMMU: allow use of superpage mappings
6fc03330cd IOMMU/x86: new command line option to suppress use of superpage mappings
5a991ad8a5 IOMMU/x86: support freeing of pagetables
c1e1564c89 IOMMU/x86: perform PV Dom0 mappings in batches
c519819ff5 iommu: add preemption support to iommu_{un,}map()
fcd27b3c75 automation: use "needs" instead of "dependencies" for test jobs
aa45ffc115 automation: only run test artifact jobs when needed
22c7a22331 automation: add a templates for test jobs
da8ff5be79 automation: fix typo in .gcc-tmpl
d2cc5633e2 xen/arm: mm: Add more ASSERT() in {destroy, modify}_xen_mappings()
72b02bc75b xen/heap: pass order to free_heap_pages() in heap init
24a53060bd xen/heap: Split init_heap_pages() in two
7a2b7edad5 xen: page_alloc: Don't open-code IS_ALIGNED()
71320946d5 xen/gnttab: Store frame GFN in struct page_info on Arm
5a4a2cef08 xen/arm: Harden the P2M code in p2m_remove_mapping()
52196c8cd9 docs: document dom0less + PV drivers
6fe2e39a02 x86: also suppress use of MMX insns
d620c66bdb x86emul: add memory operand low bits checks for ENQCMD{,S}
c16a9eda77 x86/spec-ctrl: Make svm_vmexit_spec_ctrl conditional
addb336f4a x86/spec-ctrl: Consistently halt speculation using int3
e500b6b8d0 tools/xl: use sparse init for dom_info, remove duplicate vars
0a85463954 Revert "tools/xenstore: add documentation for ..."
9723507daf x86: deal with gcc12 release build issues
fdbf8bdfeb x86/spec-ctrl: correct per-guest-type reporting of MD_CLEAR
59ec934d53 x86: log non-responding CPUs in fatal_trap()
0e60f1d9d1 sched/credit: fix MISRA C 2012 Rule 8.7 violation
4f67f1cbb6 vm_event: fix MISRA C 2012 Rule 8.7 violation
c3cad613dd EFI: strip xen.efi when putting it on the EFI partition
d8f8cb8bdd xl: move freemem()'s "credit expired" loop exit
3db29e8fac tools/xenstore: add documentation for extended watch command
6574f38779 tools/xenstore: add documentation for new set/get-quota commands
1a564e4b3b tools/xenstore: add documentation for new set/get-feature commands
660d69cd5a xen/wait: Minor asm improvements
d93a8c481c xen/wait: Extend the description of how this logic actually works
7a105f7c76 xen/wait: Drop vestigial remnants of TRAP_regs_partial
0af91dc032 xen: Fix latent check-endbr.sh bug with 32bit build environments
b2ebe879a4 xen: Fix check-endbr.sh with mawk
a5fb66f451 Revert "xen/arm: mm: Add more ASSERT() in {destroy, modify}_xen_mappings()"
9b962e6183 xen/arm: mm: Add more ASSERT() in {destroy, modify}_xen_mappings()
25424d1a6b xen/arm: head: Add missing isb after writing to SCTLR_EL2/HSCTLR
d07358f2dc xen/arm32: head.S: Introduce a macro to load the physical address of a symbol
ab2977b027 README: State POSIX compatibility as a requirement for AWK
f717590f57 xen: Introduce $AWK in check-endbr.sh
355caa9ef2 xen/arm: traps: Fix MISRA C 2012 Rule 8.4 violation
6655eb8109 xen/arm: avoid overflow when setting vtimer in context switch
d8cb7e0f06 x86/spec-ctrl: Mitigate Branch Type Confusion when possible
9deaf2d932 x86/spec-ctrl: Enable Zen2 chickenbit
76cb04ad64 x86/cpuid: Enumeration for BTC_NO
53a570b285 x86/spec-ctrl: Support IBPB-on-entry
e9b8d31981 x86/spec-ctrl: Rework SPEC_CTRL_ENTRY_FROM_INTR_IST
a8e5ef079d x86/spec-ctrl: Rename opt_ibpb to opt_ibpb_ctxt_switch
76d6a36f64 x86/spec-ctrl: Rename SCF_ist_wrmsr to SCF_ist_sc_msr
5796912f72 x86/spec-ctrl: Rework spec_ctrl_flags context switching
033ae6f88b xen/build: remove unneeded enumeration in clean-files of xen/include/Makefile
134d53f577 tools/init-xenstore-domain: fix memory map for PVH stubdom
e58370df76 xl: relax freemem()'s retry calculation
a7f006bb31 MAINTAINERS: Make Daniel P. Smith sole XSM maintainer
dc7da0874b EFI: preserve the System Resource Table for dom0
d778089ac7 libxl: check return value of libxl__xs_directory in name2bdf
d693b22733 tools/helpers: fix build of xen-init-dom0 with -Werror
ee38108991 tools/fuzz/libelf: rework makefile
27357c394b x86/spec-ctrl: Add fine-grained cmdline suboptions for primitives
382326cac5 xen/cmdline: Extend parse_boolean() to signal a name match
4cdb519d79 x86/spec-ctrl: Honour spec-ctrl=0 for unpriv-mmio sub-option
2ce11ce249 x86/HVM: allow per-domain usage of hardware virtualized APIC
6b2b9b3405 x86: report Interrupt Controller Virtualization capabilities
a58fca51ab docs: add reference to release cycle discussion
6899af7609 tools/examples: cleanup Makefile
524cf4da66 tools/console: have one Makefile per program/directory
796dae0fe4 xen/x86: remove cf_check attribute from hypercall handlers
39fc5f5c02 xen/arm: call hypercall handlers via generated macro
8523851dbc xen/x86: call hypercall handlers via generated macro
f9db6bc39d xen: use generated prototypes for hypercall handlers
eca1f00d02 xen: generate hypercall interface related code
e1664942b2 xen: include compat/platform.h from hypercall.h
7e21b25059 xen: harmonize return types of hypercall handlers
980bfb1ac9 Config.mk: use newest Mini-OS commit
f81fcc3919 update SUPPORT.md for static allocation
2b5c2c64a9 xen/pv_console: Fix MISRA C 2012 Rule 2.1 violation
46cbd76faf xen/time: fix MISRA C 2012 Rule 8.7 violation
eb40ae41b6 x86/Kconfig: add option for default x2APIC destination mode
8eeae8c2b4 libxc: fix compilation error with gcc13
7860497200 Revert "EFI: preserve the System Resource Table for dom0"
61ff273322 xen/common: Use unsigned int instead of plain unsigned
54d8f27d04 tools/libxl: report trusted backend status to frontends
a4d4c541f5 xen/arm32: avoid EFI stub wchar_t size linker warning
c4184bf305 public: constify xsd_errors[]
2b1ee38612 tools/helpers: fix snprintf argument in init-dom0less.c
8d410ac2c1 EFI: preserve the System Resource Table for dom0
4df2e99d73 console/serial: set the default transmit buffer size in Kconfig
a0bb0960e5 flask: implement xsm_set_system_active
4b540e8c9f xsm: create idle domain privileged and demote after setup
4a0da1c741 docs/misra: Add instructions for cppcheck
57caa53753 xen: Add MISRA support to cppcheck make rule
bf2f989531 public/io: xs_wire: Document that new errors should be added at the end
ee11f092b5 xen: arm: Don't use stop_cpu() in halt_this_cpu()
8d57812839 public/io: xs_wire: Allow Xenstore to report EPERM
60d1adfa18 x86/ept: fix shattering of special pages
fef244b179 x86/spec-ctrl: Knobs for STIBP and PSFD, and follow hardware STIBP hint
ffc7694e0c x86/spec-ctrl: Only adjust MSR_SPEC_CTRL for idle with legacy IBRS
93aa071f66 xen/arm: smmu-v3: Fix MISRA C 2012 Rule 1.3 violations
8c99264c67 acpi: drop the unneeded casts to unsigned
e8dca8e701 xsm/flask: Use unsigned int instead of plain unsigned
63e165e891 include/public: Use uint32_t instead of unsigned (int)
586868cb35 include/xen: Use unsigned int instead of plain unsigned
056cb4c360 xen/domain: Use unsigned int instead of plain unsigned
05fb789e83 xen/arm: Use unsigned int instead of plain unsigned
2c62623c59 arm64/traps: fix MISRA C 2012 Rule 8.4 violations
1fd3698175 iommu: fix MISRA C 2012 Rule 8.7 violation
56ff13f640 page_alloc: fix MISRA C 2012 Rule 8.7 violation
53e5d2166a tools/xenstore: modify feature bit specification in xenstore-ring.txt
8a96c0ea79 xen: move do_vcpu_op() to arch specific code
026007376e x86: correct asm() constraints when dealing with immediate selector values
0544c4ee4b xen/arm: irq: Initialize the per-CPU IRQs while preparing the CPU
7c1f724dd9 xen/arm: vtimer: Remove duplicate header
6b2372e296 xen/arm: vtimer: Fix MISRA C 2012 Rule 8.4 violation
21a41a6164 xen/common: gunzip: Fix MISRA C 2012 Rule 8.4 violation
ab6c273ebc xen/lib: list-sort: Fix MISRA C 2012 Rule 8.4 violation
f8af00d1a6 xen/arm: shutdown: Fix MISRA C 2012 Rule 8.4 violation
7e1ed5e934 xen/common: device_tree: Fix MISRA C 2012 Rule 8.7 violation
db3382dd4f tools/xenstored: Harden corrupt()
61ac7919a6 build,include: rework shell script for headers++.chk
f4e6748993 maintainers: add me as reviewer for Mini-OS
21b4d45bbf x86emul/test: improve failure location identification for FMA sub-test
65f684b728 xen/arm: smpboot: Allocate the CPU sibling/core maps while preparing the CPU
15d93068e3 x86/mm: Add an early PGT_validated exit in _get_page_type()
9d067857d1 tools/include: drop leading underscore from xen_list header
c9040f25be xen/x86: use INFO level for node's without memory log message
b660e19d0f xen/x86: add detection of memory interleaves for different nodes
94a03b2254 xen/x86: use paddr_t for addresses in NUMA node structure
e8f1c8118f xen/arm: use !CONFIG_NUMA to keep fake NUMA API
1f0a8e28ba xen: decouple NUMA from ACPI in Kconfig
15e64b8a09 xen: introduce an arch helper for default dma zone status
53701ecb8f xen/arm: Keep memory nodes in device tree when Xen boots from EFI
7f96859b0d xen: reuse x86 EFI stub functions for Arm
0c5304d14a tools/ocaml: fix build dependency target
41156021e2 stubdom: xenlibs linkfarm, ignore non-regular files
b5965be94c stubdom: build xenstore*-stubdom using new Makefile.common
ce4dfcb6ff tools/xenstore: introduce Makefile.common to be used by stubdom
cfa5e1d250 tools/libs: create Makefile.common to be used by stubdom build system
1489a2a084 stubdom: introduce xenlibs.mk
9ae030da5c libs/stat: Fix and rework perl-binding build
1e98396145 libs/stat: Fix and rework python-bindings build
4541f16427 libs/store: use of -iquote instead of -I
74c01e32ad libs/guest: rework CFLAGS
58be08a0e5 libs/guest: rename ELF_OBJS to LIBELF_OBJS
5e7d75f2cb libs: Rename $(SRCS-y) to $(OBJS-y)
a03b3552d4 libs,tools/include: Clean "clean" targets
b978a348eb libs: Remove need for *installlocal targets
128b7e6448 libs: rename LDUSELIBS to LDLIBS and use it instead of APPEND_LDFLAGS
7526269792 tools/xenstore: Cleanup makefile
d6d0cb659f ehci-dbgp: fix selecting n-th ehci controller
4ccfee0a08 x86/spec-ctrl: More MSR_ARCH_CAPS enumerations
8c24b70fed x86/spec-ctrl: Add spec-ctrl=unpriv-mmio
2ebe8fe9b7 x86/spec-ctrl: Enumeration for MMIO Stale Data controls
e06b95c1d4 x86/spec-ctrl: Make VERW flushing runtime conditional
3c2a14ea81 arm: Define kconfig symbols used by arm64 cpufeatures
9ebd9550f6 arm: add ISAR2, MMFR0 and MMFR1 fields in cpufeature
fabbe7e0fe xen/arm: Add sb instruction support
d9094358f8 xen/arm: Sync sysregs and cpuinfo with Linux 5.18-rc3
8c1d9760b1 build: remove auto.conf prerequisite from compat/xlat.h target
95b0d7bbdd build: fix exporting for make 3.82
e8e6e42279 tools/xenstore: simplify loop handling connection I/O
e2d2b9fd7a x86/hvm: widen condition for is_hvm_pv_evtchn_domain() and report fix in CPUID
80ad8db8a4 IOMMU/x86: work around bogus gcc12 warning in hvm_gsi_eoi()
162dea4e76 add more MISRA C rules to docs/misra/rules.rst
c9a707df83 xen/arm: mm: Re-implement setup_frame_table_mappings() with map_pages_to_xen()
26a470875b xen/arm: mm: Rework setup_xenheap_mappings()
942eb0a831 xen/arm64: mm: Add memory to the boot allocator first
38ed4a4876 xen/arm32: setup: Move out the code to populate the boot allocator
de5fdb562c xen/arm: mm: Use the PMAP helpers in xen_{,un}map_table()
53098ba581 xen/arm: mm: Clean-up the includes and order them
4f17357b52 xen/arm: add Persistent Map (PMAP) infrastructure
e051b5cd10 xen/arm: gicv2: Rename gicv2_map_hwdown_extra_mappings
a6f7ed5fc7 xen/arm: traps: Fix reference to invalid erratum ID
b8bc4588b3 x86emul/test: encourage compiler to use more embedded broadcast
2730650c9c x86/mm: further simplify cleanup_page_mappings()
81a739a993 Revert "IOMMU/x86: perform PV Dom0 mappings in batches"
c2095ac76b x86/mm: account for PGT_pae_xen_l2 in recently added assertion
c1c9cae3a9 x86/pv: Track and flush non-coherent mappings of RAM
062868a5a8 x86/amd: Work around CLFLUSH ordering on older parts
9a67ffee33 x86: Split cache_flush() out of cache_writeback()
ae09597da3 x86: Don't change the cacheability of the directmap
1be8707c75 x86/page: Introduce _PAGE_* constants for memory types
8cc5036bc3 x86/pv: Fix ABAC cmpxchg() race in _get_page_type()
9186e96b19 x86/pv: Clean up _get_page_type()
59fbdf8a36 VT-d: fold iommu_flush_iotlb{,_pages}()
79faa321f2 IOMMU: fold flush-all hook into "flush one"
8dac2928c2 SUPPORT.md: extend security support for x86 hosts to 12 TiB of memory
f3185c165d IOMMU/x86: perform PV Dom0 mappings in batches
7158e80c88 IOMMU/x86: restrict IO-APIC mappings for PV Dom0
28e13c7f43 build: xen/include: use if_changed
be464973e4 tools/libxl: optimize domain creation skipping domain cpupool move
7ac12e3634 xen/arm: Allow setting the number of CPUs to activate at runtime
e7f144f808 xen/arm: Move fixmap definitions in a separate header
77f00c2f02 xen/arm: mm: Allow page-table allocation from the boot allocator
922936dc06 xen/arm: mm: Allocate xen page tables in domheap rather than xenheap
aafcc54689 xen/arm32: mm: Re-implement setup_xenheap_mappings() using map_pages_to_xen()
f8c818848f xen/arm: mm: Re-implement early_fdt_map() using map_pages_to_xen()
6eb5a93964 xen/arm: mm: Don't open-code Xen PT update in remove_early_mappings()
07d11f63d0 xen/arm: mm: Avoid flushing the TLBs when mapping are inserted
d1459136f3 xen/arm: mm: Add support for the contiguous bit
677b3f8f7b xen/arm: mm: Allow other mapping size in xen_pt_update_entry()
5047cd1d5d xen/common: Use enhanced ASSERT_ALLOC_CONTEXT in xmalloc()
e890b68599 page_alloc: assert IRQs are enabled in heap alloc/free
8c1cc69748 docs/misra: add Rule 5.1
4b08435f58 docs/misra: introduce rules.rst
cea9ae0622 x86/spec-ctrl: Enumeration for new Intel BHI controls
58ce5b6c33 x86: harden use of calc_ler_msr()
7fbebfa540 libxl: don't leak self pipes
108d145df8 tools/libs/ctrl: rename and export do_memory_op as xc_memory_op
09a6a71097 init-dom0less: better snprintf checks
49dd52fb13 tools/xenstore: fix event sending in introduce_domain()
9f735ee490 x86/flushtlb: remove flush_area check on system state
54e3d5e0fb x86/mm: rename FLUSH_FORCE_IPI to FLUSH_NO_ASSIST
890b23a433 build: fix make warning if there is no cppcheck
f64c55b2f1 tools/xl: sort create command options
b22db3fcba xen/iommu: dt: Check the return value of xsm_deassign_dtdevice()
49399b101e xen/arm: setup: nr_banks should be unsigned int
ec53e0c4ea tools: add example application to initialize dom0less PV drivers
fc2b57c9af xenstored: send an evtchn notification on introduce_domain
79eb2871f2 xen/arm: configure dom0less domain for enabling xenstore after boot
5eedfe7728 xen: introduce xen,enhanced dom0less property
2a2447757b xen/arm: implement domU extended regions
d43d2b6056 xen/dt: of_property_read_string return -ENODATA when !length
ec0cce125b AMD/IOMMU: return old PTE from {set,clear}_iommu_pte_present()
0e461c2d7f AMD/IOMMU: walk trees upon page fault
ba3fcb5f52 IOMMU: have iommu_{,un}map() split requests into largest possible chunks
e0de7c2ee6 IOMMU: add order parameter to ->{,un}map_page() hooks
09e4ac7bc0 IOMMU: simplify unmap-on-error in iommu_map()
d029b9cf13 AMD/IOMMU: correct potentially-UB shifts
444b555dc9 PCI: don't allow "pci-phantom=" to mark real devices as phantom functions
6a2ea1a237 ns16550: use poll mode if INTERRUPT_LINE is 0xff
488a15a669 xen/cpupool: limit number of cpupools
77bbea1baf tools/libs/light: update xenstore entry when setting max domain memory
c038304b46 VT-d: fix !HVM build
43aa3f6e72 xen/build: Add cppcheck and cppcheck-html make rules
540645212a x86/monitor: Add new monitor event to catch all vmexits
b7d885695f tools/libxc: change xc_memshr_fork_reset API to match hypervisor
c8040aefe6 tools/ocaml: Fix stubs the introduction of domain_create.cpupool_id
2fa561c5d3 xen/cpupool: Reject attempts to add a domain to CPUPOOLID_NONE
6f98832133 cirrus-ci: add FreeBSD 14 task
c154abe99d x86/mm: Remove unnecessary mfn_valid() call from get_page_from_l1e()
25c160a74f x86/mwait-idle: add missing newline
ae49ee66cf x86/cpuid: expose MCDT_NO to guests
1f0b1f5cce ns16550: add more device IDs for Intel LPSS UART
62d22296a9 build: silence GNU ld warning about executable stacks
68f5aac012 build: suppress GNU ld warning about RWX load segments
69589c374a xen/arm: gic-v3-lpi: Allocate the pending table while preparing the CPU
aa1cba100b xen/arm: Avoid overflow using MIDR_IMPLEMENTOR_MASK
17060df97c docs: fix path to code in migration doc
a250debd2a xen/arm: Print a 64-bit number in hex from early uart
0086803a0d xen/arm: Defer request_irq on secondary CPUs after local_irq_enable
207abdb38e xen/arm: gnttab: use static inlines for gnttab_{release_}host_mapping*
407b13a71e xen/arm: p2m don't fall over on FEAT_LPA enabled hw
0badfb110f xen/cpupool: Allow cpupool0 to use different scheduler
92ea9c54fc arm/dom0less: assign dom0less guests to cpupools
544e8af41e xen/cpupool: Don't allow removing cpu0 from cpupool0
a6dc3b947c xen/cpupool: Create different cpupools at boot time
d54aed35ba xen/sched: retrieve scheduler id by name
a32769dd24 xen/sched: create public function for cpupools creation
5b9647f771 tools/cpupools: Give a name to unnamed cpupools
95604873cc arm/its: enable LPIs before mapping the collection table
577797a94a docs: Fix SUPPORT matrix generation after a5968a553f6a
b7e0d89788 xen: io: Fix race between sending an I/O and domain shutdown
ef98495a16 MAINTAINERS: add myself as reviewer for IOMMU vendor independent code
944e389daa bump default SeaBIOS version to 1.16.0
90ba9a2da2 x86: avoid SORT_BY_INIT_PRIORITY with old GNU ld
c1d5e4021c tools/xenstore: don't let special watches be children of /
af570d1c90 xen/arm: Advertise workaround 1 if we apply 3
a5968a553f SUPPORT.MD: Correct the amount of physical memory supported for Arm
5d2d5365ff optee: immediately free RPC buffers that are released by OP-TEE
702c9a800e linker/lld: do not generate quoted section names
c70c4b624f kconfig: detect LD implementation
3c245bc3a2 scripts/add_maintainers.pl: add -o as an alternative to --patchdir
ce59e472b5 x86/msr: handle reads to MSR_P5_MC_{ADDR,TYPE}
ad4312d764 IOMMU/x86: disallow device assignment to PoD guests
fe234237b6 Revert "page_alloc: assert IRQs are enabled in heap alloc/free"
e574773590 MAINTAINERS: add Rahul as SMMU maintainer
d711a8e527 x86/mem_sharing: make fork_reset more configurable
54a71fe63b PCI: replace "secondary" flavors of PCI_{DEVFN,BDF,SBDF}()
ee68339aee PCI: replace stray uses of PCI_{DEVFN,BDF}2()
2c99281085 x86+libxl: correct p2m (shadow) memory pool size calculation
9c432b876b x86/mwait-idle: add SPR support
3f6aef8a7a x86/mwait-idle: switch to asm/intel-family.h naming
6cf1398ba9 xen/public: add new macro to ring.h
da28439ba5 drivers/exynos4210: Remove unused-but-set variable
1f71c11b88 platforms/omap: Remove unused-but-set variable
1afe559054 platforms/xgene: Make use of dt_device_get_address return value
4026c0d4c4 xen/sched: Remove unused-but-set variable
2845588e39 xen/arm: smmu.c: Remove unused-but-set variable
9b4f9b9af2 efi/boot.c: Remove unused-but-set variable
2a2de68a60 xen/arm: bootfdt.c: Remove unused-but-set variable
53b705d02c xen/arm64: io: Handle data abort due to cache maintenance instructions
fa6dc0879f page_alloc: assert IRQs are enabled in heap alloc/free
fbd2445558 xen/arm: alternative: Don't call vmap() within stop_machine_run()
163071b180 EFI: don't mistakenly delete a file we never installed
0f4fd6b6d8 libxl: retry QMP PCI device_add
010bc50ada x86/vmx: add hvm functions to get/set non-register state
3f5d614663 Revert "page_alloc: assert IRQs are enabled in heap alloc/free"
88a037e2cf page_alloc: assert IRQs are enabled in heap alloc/free
c266f97414 xsm/flask: code style formatting
fa4d84e6dd IOMMU: make domctl handler tolerate NULL domain
9cd7e31b3f xen/iommu: cleanup iommu related domctl handling
2419a159fb tools/libs/light: don't set errno to a negative value
438e96ab47 tools/libs/guest: don't set errno to a negative value
a0fb7e0e73 tools/libs/ctrl: don't set errno to a negative value
60245b71c1 tools/libs/evtchn: don't set errno to negative values
d6f3f1277a xen: Split x86/debugger.h into common and arch specific parts
8bbc990772 x86/debugger: Misc cleanup prior to splitting
30122012db x86/gdbstub: Clean up includes
4de0f05fcf x86/gdbsx: Move domain_pause_for_debugger() into gdbsx
203156ef36 x86/gdbsx: Rename debug.c to gdbsx.c
af8b805c15 x86/debugger: Remove debugger_trap_entry()
b3234f193a xen/build: Fix MAP rule when called in isolation
54279f87ec x86/build: make linking work again with ld incapable of generating build ID
c8a25eb617 AMD/IOMMU: drop stray TLB flush
36992d809d IOMMU: have vendor code announce supported page sizes
4e977a70ad VT-d: limit page table population in domain_pgd_maddr()
c71e55501a VT-d: have callers specify the target level for page table walks
5fafa6cf52 AMD/IOMMU: have callers specify the target level for page table walks
43f3d51139 gitlab-ci: add an ARM32 qemu-based smoke test
f1e4efafd6 gitlab-ci: add qemu-system-arm to the existing tests-artifacts container
fdef107edd x86/build: Rework binary conversion for boot/{cmdline,reloc}.c
e1e7219821 xen/build: Fix dependency for the MAP rule
78e072bc37 x86/mm: avoid inadvertently degrading a TLB flush to local only
a1545fbf45 VT-d: refuse to use IOMMU with reserved CAP.ND value
376f0c1b69 VT-d: plug memory leaks in iommu_alloc()
d94a997379 VT-d: drop ROOT_ENTRY_NR
02b0e2d030 IOMMU/x86: drop locking from quarantine_init() hooks
075817681c include/public: add command result definitions to vscsiif.h
e9935146cd xen/arm: Add i.MX lpuart early printk support
44e17aa60d xen/arm: Add i.MX lpuart driver
7e2a2defeb xen/arm: Make use of DT_MATCH_TIMER in make_timer_node
2ce9afd68e xen: cleanup gdbsx_guest_mem_io() call
f00daf1fb3 xen: fix XEN_DOMCTL_gdbsx_guestmemio crash
b881cb95cb x86/debug: Drop unnecessary include of compile.h
e509b5f932 IOMMU: log appropriate SBDF
e687e72174 AMD/IOMMU: replace a few PCI_BDF2()
7115fa562f build: adding out-of-tree support to the xen build
5b752808ff MAINTAINERS: add myself as Continuous Integration maintainer
f44201124e tools/xl: fix vif and vcpupin parse tests
a859b0b0d7 x86/boot: LEA -> MOV in video handling code
0faf37e743 x86/boot: obtain video info from boot loader
927aee5982 x86/boot: make "vga=current" work with graphics modes
5e3a6606be xen: Populate xen.lds.h and make use of its macros
6af59c45a4 xen: Introduce a header to store common linker scripts content
8847ec08fd SUPPORT.md: add Dom0less as Supported
2e6f95a942 x86/irq: skip unmap_domain_pirq XSM during destruction
347d36c2ec x86/P2M: the majority for struct p2m_domain's fields are HVM-only
c479415610 x86/P2M: p2m.c is HVM-only
512699aa51 paged_pages field is MEM_PAGING-only
5ca3be305d shr_pages field is MEM_SHARING-only
819cdc5a73 x86/p2m: re-arrange {,__}put_gfn()
aa70b89599 x86/P2M: derive HVM-only variant from __get_gfn_type_access()
c9e802e916 x86/P2M: p2m_get_page_from_gfn() is HVM-only
e2b2ff6779 x86/P2M: split out init/teardown functions
26c719f67e x86/P2M: PoD, altp2m, and nested-p2m are HVM-only
033ff90aa9 x86/P2M: p2m_{alloc,free}_ptp() and p2m_alloc_table() are HVM-only
21e9f2e212 x86/mm: split set_identity_p2m_entry() into PV and HVM parts
9120b5737f livepatch: avoid relocations referencing ignored section symbols
0dc1f929e8 livepatch: do not ignore sections with 0 size
d3f61beea4 vPCI: fix MSI-X PBA read/write gprintk()s
15a0578ca4 build: shuffle main Makefile
1188c24ef7 build: specify source tree in include/ for prerequisite
d55a304340 build: rework "headers*.chk" prerequisite in include/
bc8d05dd2d build: replace $(BASEDIR) and use $(srctree)
915e67b75c build: replace $(BASEDIR) by $(objtree)
d4012d5008 x86/cpuid: Clobber CPUID leaves 0x800000{1d..20} in policies
99d829dba1 VT-d: avoid infinite recursion on domain_context_mapping_one() error path
608394b906 VT-d: avoid NULL deref on domain_context_mapping_one() error paths
445ab9852d VT-d: don't needlessly look up DID
72919c762f platform/cpufreq: add public defines for CPUFREQ_SHARED_TYPE_
609b8b0153 EFI: correct indentation in efi_tables()
7451cdf204 x86/boot: fold two MOVs into an ADD
c4cac1f48a x86/boot: fold/replace moves in video handling code
2f576a65a0 x86/boot: fold branches in video handling code
3b91082bb8 x86/boot: simplify mode_table
3d486def50 x86/EFI: retrieve EDID
0e58a6ceb6 x86/mm: move guest_physmap_{add,remove}_page()
fa4b4fa61d x86/P2M: introduce p2m_{add,remove}_page()
0cd09bf305 x86/P2M: rename p2m_remove_page()
14dd241aad IOMMU/x86: use per-device page tables for quarantining
a038b514c1 AMD/IOMMU: abstract maximum number of page table levels
54c5cef492 IOMMU/x86: drop TLB flushes from quarantine_init() hooks
97af062b89 IOMMU/x86: maintain a per-device pseudo domain ID
7131163c48 VT-d: prepare for per-device quarantine page tables (part II)
eb19326a32 VT-d: prepare for per-device quarantine page tables (part I)
1fa6e9aa36 AMD/IOMMU: re-assign devices directly
8f41e481b4 VT-d: re-assign devices directly
a680b8134b VT-d: drop ownership checking from domain_context_mapping_one()
eba09b9dd7 IOMMU/x86: tighten iommu_alloc_pgtable()'s parameter
3221f270cf VT-d: fix add/remove ordering when RMRRs are in use
78a40f8b5d VT-d: fix (de)assign ordering when RMRRs are in use
d9eca7bb6c VT-d: correct ordering of operations in cleanup_domid_map()
4f4db53784 x86/hap: do not switch on log dirty for VRAM tracking
120e26c2bb x86/time: use fake read_tsc()
472839e61c include: move STR() and IS_ALIGNED()
5c04f6b487 x86/APIC: make connections between seemingly arbitrary numbers
3f3906b462 x86/APIC: calibrate against platform timer when possible
39341fba7c build: grab common EFI source files in arch specific dir
e270af9428 tools/firmware: do not add a .note.gnu.property section
7225f6e0cd tools/firmware: fix setting of fcf-protection=none
d62a34423a libxl: Re-scope qmp_proxy_spawn.ao usage
d2ecf97f91 libxl: Don't segfault on soft-reset failure
e7cfcdc671 libxl: constify libxl__stubdomain_is_linux
e45ad0b1b0 xl: Fix global pci options
8a87b9a0fb livepatch: account for patch offset when applying NOP patch
04f34f84aa livepatch: fix typos
8eec96b7b8 build: generic top-level rule to build individual files
8ebee382b9 xen: don't include asm/hypercall.h from C sources
fc90d75c2b x86/cet: Remove XEN_SHSTK's dependency on EXPERT
0e03ff97de xen/arm: set CPSR Z bit when creating aarch32 guests
1c80f13a6e build: provide and export ADDR2LINE
a62ebaf3c9 xen/arm: rename do_phydev_op() to do_arm_physdev_op()
69e4628093 x86/build: also handle .comment.* in linker script
a2b8da2574 x86/build: work around older GNU ld not leaving .got.plt empty
b68664ab89 x86/hvm: Annotate hvm_physdev_op() with cf_check
8aa0e9d2d1 evtchn/fifo: Don't set PENDING bit if guest misbehaves
fdfb07eb28 xen/arm64: io: Handle the abort due to access to stage1 translation table
5e9c429ad4 xen/arm64: io: Emulate instructions (with invalid ISS) on MMIO region
6974c75180 xen/x86: Livepatch: support patching CET-enhanced functions
37786b23b0 x86/cet: Remove writeable mapping of the BSPs shadow stack
89a24719b6 x86/cet: Use dedicated NOP4 for cf_clobber
e421ed0f68 x86/cet: Clear IST supervisor token busy bits on S3 resume
7b41b91fd2 x86emul/test: correct VCVTUSI2S{S,D} comments in predicates test
59d4341950 x86emul/test: correct VSCALEF{P,S}{S,D} entries in predicates test
4a07bab33b xen: switch non style compliant hypercall handler parameter types
a3ba3ed0f4 MAINTAINERS: Propose Henry Wang as the new release manager
c7a80bc50a Arm: arrange to have linker script honor dependencies (again)
46d5cec7e0 ns16550: add support for Intel LPSS UART
0be65a773d x86/APIC: skip unnecessary parts of __setup_APIC_LVTT()
07aebcd55f Revert "xen/arm64: io: Support instructions (for which ISS is not valid) on emulated MMIO region using MMIO/ioreq handler"
133ba7ae76 Revert "xen/arm64: io: Handle the abort due to access to stage1 translation table"
fef5531fd8 xen/arm64: io: Handle the abort due to access to stage1 translation table
9e5a68a665 xen/arm64: io: Support instructions (for which ISS is not valid) on emulated MMIO region using MMIO/ioreq handler
f9dd8436e3 xen/arm64: Decode ldr/str post increment operations
dedb0aa42c x86/build: use --orphan-handling linker option if available
e2589ef652 IOMMU/x86: tidy adjust_irq_affinities hook
7b4b36fcba pci/ats: do not allow broken devices to be assigned to guests
3f80988698 x86/vmx: remove dead code to create domains without a vLAPIC
23658e8232 x86/time: further improve TSC / CPU freq calibration accuracy
6ff9a7e62b livepatch: set -f{function,data}-sections compiler option
4267a33b19 xen/build: put image header into a separate section
7f5b2448bd x86/kexec: Fix kexec-reboot with CET active
5142dc5c25 livepatch: resolve old address before function verification
b4f2116060 vpci/msix: fix PBA accesses
8d03080d2a x86/spec-ctrl: Cease using thunk=lfence on AMD
c0a56ea0fd xen/arm: Allow to discover and use SMCCC_ARCH_WORKAROUND_3
62c91eb66a xen/arm: Add Spectre BHB handling
4b68d12d98 xen/arm: Add ECBHB and CLEARBHB ID fields
599616d70e xen/arm: move errata CSV2 check earlier
35d1b85a6b xen/arm: Introduce new Arm processors
9d4a44380d x86/cet: Force -fno-jump-tables for CET-IBT
4cb8d7a067 xz: fix spelling in comments
9a46de64b8 xz: move s->lzma.len = 0 initialization to lzma_reset()
0a21660515 xz: validate the value before assigning it to an enum variable
10454f381f xz: avoid overlapping memcpy() with invalid input with in-place decompression
bbd9f36bca decompressors: fix spelling mistakes
22d5d1c0d1 xz: fix XZ_DYNALLOC to avoid useless memory reallocations
c9875a8cce xz: add fall-through comments to a switch statement
a9c8432e2a x86/tboot: adjust Kconfig default
1145d94c73 x86: also discard .fini_array in linker script
248496f890 x86emul: correct a few scalar insn comments
ccb6f9a558 x86emul/test: correct VRNDSCALES{S,D} entries in predicates test
b7a7e346c7 x86: drop use of CONSTRUCTORS from linker script
dc762a509d x86/time: add CF-clobber annotations
e1cafab334 build: export potentially overridden tool chain components
d58a509e01 build,x86: remove the need for build32.mk
1f410b0c74 xen/arm: mm: Encode existing constraints of the memory layout
b692523faf xen/arm: gic: Introduce GIC_PRI_{IRQ/IPI}_ALL
3e56754b08 xen/cet: Fix __initconst_cf_clobber
4b7fd8153d x86: fold sections in final binaries
97b80c7881 x86/altcall: silence undue warning
da5827fff3 docs: correct "gnttab=" documented default
5e326b6169 docs: document patch rules
faecea18d2 xen/arm32: head: Don't set r12 and update the documentation
767bae66e1 xen/arm64: head: Mark the end of subroutines with ENDPROC (take two)
84c3eb3a9c xen/arm32: head: Mark the end of subroutines with ENDPROC (take two)
0c18fb7632 xen/arm: Remove unused BOOT_RELOC_VIRT_START
6e3f36387d x86/spec-ctrl: Disable retpolines with CET-IBT
e0a514d2f4 x86/CPUID: correct FEATURESET_7d2 comment
59c00502b2 vpci/msix: reduce indentation in msix_write PBA handling
4388144c44 xen/arm: p2m: Replace level_{orders, masks} arrays with XEN_PT_LEVEL_{ORDER, MASK}
315c26f98d xen/arm: lpae: Use the generic helpers to defined the Xen PT helpers
f7b7e2b9ad xen/arm: lpae: Rename LPAE_ENTRIES_MASK_GS to LPAE_ENTRY_MASK_GS
10f1f7b010 build: fix auto defconfig rule
7d9589239e x86/CET: Fix S3 resume with shadow stacks active
f0f2f42c21 xen/public: add comment to struct xen_mem_acquire_resource
676450d246 MAINTAINERS: update TXT section
cbd0874fef x86/altp2m: p2m_altp2m_propagate_change() should honor present page order
1449f6873d build: rework coverage and ubsan CFLAGS handling
2c8708956e build: use main rune to build host binary x86's mkelf32 and mkreloc
17f5c11521 build: rework "clean" to clean from the root dir
42989ff5ca build: clean-up "clean" rules of duplication
913b8be1c7 build: generate x86's asm-macros.h with filechk
109980738e build: add headers path to CFLAGS once for all archs
e3ef0917bb build: start building the tools with the main makefiles
446108a1bb build: handle always-y and hostprogs-always-y
44f231cd88 build: remove KBUILD_ specific from Makefile.host
5c5e101298 xen/tools/kconfig: fix build with -Wdeclaration-after-statement
317c98cb91 build: hook kconfig into xen build system
04787e095a build: rename __LINKER__ to LINKER_SCRIPT
06ef696c85 build: introduce if_changed_deps
7a3bcd2bab build: build everything from the root dir, use obj=$subdir
27060920a7 build: rework test/livepatch/Makefile
91fa912206 x86: make embedded endbr64 check compatible with older GNU grep
bed9ae54df x86/time: switch platform timer hooks to altcall
9ba4c52998 xen/mm: pg_offlined can be defined as bool in free_heap_pages()
66b467a0e8 xen/arm: Rename psr_mode_is_user to regs_mode_is_user
526731c559 xen/arm: Rename psr_mode_is_32bit to regs_mode_is_32bit
20c9e4581a docs: add some clarification to xenstore-migration.md
f1097988b9 xen/mm: Remove always true ASSERT() in free_heap_pages()
93189e8c8b tools/configure.ac: Create ZLIB_LIBS and ZLIB_CFLAGS
45f6ff1255 x86/cpuid: replace more cpufeat_word() uses
73ba368e76 x86: drop NOP_DS_PREFIX
e67ab91fc4 x86/mwait-idle: re-order state entry/exit code a little
81c416dca2 x86/perfc: fold HVM's VM-exit counter arrays
fdeaceee71 SVM: sync VM-exit perf counters with known VM-exit reasons
fe60fab042 x86/hvm: Drop get_shadow_gs_base() hook and use hvm_get_reg()
f04231775c x86/IOMMU: Use altcall, and __initconst_cf_clobber
e826cf7351 x86/vpmu: Harden indirect branches
8f473f92e5 x86/ucode: Use altcall, and __initconst_cf_clobber
8bf7240842 x86/hvm: Use __initdata_cf_clobber for hvm_funcs
7a7b2be413 xsm: Use __initconst_cf_clobber for xsm_ops
37ed5da851 x86/altcall: Optimise away endbr64 instruction where possible
12e3410e07 x86/altcall: Check and optimise altcall targets
a0d8a94360 xen/altcall: Use __ro_after_init now that it exists
cdbe2b0a1a x86: Enable CET Indirect Branch Tracking
d37a8a067e x86/EFI: Disable CET-IBT around Runtime Services calls
311434bfc9 x86/setup: Rework MSR_S_CET handling for CET-IBT
e702e36d1d x86/entry: Make IDT entrypoints CET-IBT compatible
17d77ec62a x86/entry: Make syscall/sysenter entrypoints CET-IBT compatible
0d101568d2 x86/emul: Update emulation stubs to be CET-IBT compatible
4046ba9744 x86: Introduce helpers/checks for endbr64 instructions
809beac3e7 x86/traps: Rework write_stub_trampoline() to not hardcode the jmp
48cdc15a42 x86/alternatives: Clear CR4.CET when clearing CR0.WP
9851bc4939 x86/setup: Read CR4 earlier in __start_xen()
4d037425dc x86: Build check for embedded endbr64 instructions
5d59421815 x86: Use control flow typechecking where possible
640ce8af9c x86/bugframe: CFI hardening
954bb07fdb x86/stack: CFI hardening
07d6c4fa3e x86/misc: CFI hardening
031ea741c2 x86/time: CFI hardening
e236fb0798 x86/pt: CFI hardening
47fa059e4e x86/dpci: CFI hardening
ab340ffdd8 x86/psr: CFI hardening
c028bde9a6 x86/apei: CFI hardening
287f541c6e x86/irq: CFI hardening
84667b15cd x86/p2m: CFI hardening
b0331a678e x86/hap: CFI hardening
5ea8917662 x86/shadow: CFI hardening
82081d6ef7 x86/logdirty: CFI hardening
ba2aec1b7a x86/guest: CFI hardening
78f14da74c x86/cpu: CFI hardening
8ec706d902 x86/pmu: CFI hardening
f716c734e9 x86/mce: CFI hardening
5b587af6a7 x86/hvmsave: CFI hardening
f8840cabc6 x86/quirks: CFI hardening
afaa75410e x86/idle: CFI hardening
142923eaaf x86/mtrr: CFI hardening
b1a7d40f30 x86/nmi: CFI hardening
15b6600980 x86/apic: CFI hardening
98f9385580 x86/power: CFI hardening
ce25a24c1f x86/ucode: CFI hardening
d5905b4dde x86/emul: CFI hardening
ed907a0214 x86/hvm: CFI hardening for device emulation
b158e72abe x86/hvm: CFI hardening for hvm_funcs
e88a591461 x86: CFI hardening for request_irq()
66342fb5de xen/misc: CFI hardening
780c89eefa xen/console: CFI hardening
17a69ac9d1 xen/video: CFI hardening
991a06d71a xen/iommu: CFI hardening
b22f4b696d xen/decompress: CFI hardening
4ed7d5525f xen/vpci: CFI hardening
ef0434ae38 xen/keyhandler: CFI hardening
69f14d2ad9 xen/tasklet: CFI hardening
0cccb0416e xen/hypfs: CFI hardening
fcbae94ea4 xen/evtchn: CFI hardening
15268d2ea3 xen/sched: CFI hardening
a096eaf12a xsm: CFI hardening
c9e0a06259 xsm/flask/ss: CFI hardening
078dfe2fe0 xen: CFI hardening for open_softirq()
4ea76ad847 xen: CFI hardening for IPIs
d910f5ce77 xen: CFI hardening for call_rcu()
17bafcdcc8 xen: CFI hardening for init_timer()
19804ed029 xen: CFI hardening for continue_hypercall_on_cpu()
56773dfd5d xen: CFI hardening for acpi_table_parse()
22939d3c83 xen: CFI hardening for notifier callbacks
7629460eeb xen: CFI hardening for __initcall()
17f0c6176e xen: CFI hardening for custom_param()
517b9114bf xen: CFI hardening for x86 hypercalls
3667f7f8f7 x86: Introduce support for CET-IBT
7764fd93cf x86/kexec: Annotate embedded data with ELF metadata
69a85336f6 x86: Don't use the hypercall table for calling compat hypercalls
e7db635f44 x86/pv-shim: Don't modify the hypercall table
44d6b07584 xen/xsm: Move {do,compat}_flask_op() declarations into a header
8cb0341a61 xen/sort: Switch to an extern inline implementation
210f27e55a cirrus: update FreeBSD to 12.3
95d9ab4614 x86/Kconfig: introduce option to select retpoline usage
9412486707 x86/clang: add retpoline support
e245bc1543 x86/retpoline: split retpoline compiler support into separate option
32c91e445d CI: Coverity tweaks
5de3325886 xen: Rename asprintf() to xasprintf()
39bcecb9a8 tests/resource: Initialise gnttab before xenforeignmemory_map_resource()
686f13cfce CI/Coverity: Do not build QEMU, SeaBIOS or OVMF
f05a7fa208 CI: add github workflow to run Coverity scans
76ce1cb1e3 CI: Clean up alpine containers
47052d8cca CI: Add gnu grep to alpine containers
8dc4429480 x86: replace a few do_div() uses
ea140035d0 video/vesa: adjust (not just) command line option handling
7f7e55b85f video/vesa: drop "vesa-remap" command line option
6ba7010642 video/vesa: drop "vesa-mtrr" command line option
f627a39c5e video/vesa: unmap frame buffer when relinquishing console
0e07d47048 x86: move .text.kexec
81d195c6c0 x86: introduce ioremap_wc()
8518f96f13 IOMMU/PCI: propagate get_device_group_id() failure
89d5b779a8 VT-d: replace flush_all_cache()
3330013e67 VT-d / x86: re-arrange cache syncing
f559232206 x86/cpuid: add CPUID flag for Extended Destination ID support
07449ecfa4 tools/libxl: don't allow IOMMU usage with PoD
aeaed47023 tools/xenstore: add error indicator to ring page
6bd1b4d35c x86/console: process softirqs between warning prints
26f8eead2b rwlock: remove unneeded subtraction
3e548a6379 x86/Intel: re-indent family 6 switch() in intel_log_freq()
035ab75d8e build: fix enforce unique symbols for recent clang version
83a0353f49 build: rework cloc recipe
14b9b35b4e build: prepare to always invoke $(MAKE) from xen/, use $(obj)
8fd1aeb8f4 build: set ALL_OBJS in main Makefile; move prelink.o to main Makefile
4ec51e8780 xen/docs: Document how to do passthrough without IOMMU
3580c8b2df xen/arm: if direct-map domain use native UART address and IRQ number for vPL011
4809f9ec7d xen/arm: if direct-map domain use native addresses for GICv3
ba41731323 xen/arm: gate make_gicv3_domU_node with CONFIG_GICV3
c4f2a96102 xen/arm: if direct-map domain use native addresses for GICv2
489859a336 xen/arm: add ASSERT_UNREACHABLE in allocate_static_memory
75591dcfe0 xen/arm: introduce direct-map for domUs
ba560aa0bd xen/arm: introduce new helper parse_static_mem_prop and acquire_static_memory_bank
02d552627c xen/arm: Allow device-passthrough even the IOMMU is off
80e2005373 xen: introduce CDF_directmap
6f815e86ef xen: introduce internal CDF_xxx flags for domain creation
e7c2017cf4 MAINTAINERS: make Bertrand ARM maintainer
94334d854b x86emul: fix SIMD test overriding of VBROADCASTS{S,D}
eddf13b5e9 x86emul: fix VPBLENDMW with mask and memory operand
71760cf0fe x86emul: work around gcc11 bug in SIMD tests
793456d7aa cpuid: initialize cpuinfo with boot_cpu_data
e6e3cf191d x86/Intel: also display CPU freq for family 0xf
9112d19853 x86/Intel: skip CORE_THREAD_COUNT read on family 0xf
a8b31239ae x86/Intel: skip PLATFORM_INFO reads on family 0xf
87319afb96 xen/serial: scif: add support for HSCIF
da4c512b05 x86/Intel: don't log bogus frequency range on Core/Core2 processors
185250ec78 xen: add option to disable GNTTABOP_transfer
551b0e6de5 x86/mm: tidy XENMEM_{get,set}_pod_target handling
470f260d53 x86/P2M: move map_domain_gfn() (again)
26294494ff x86/P2M: drop a few CONFIG_HVM
52ce1c9784 x86/spec-ctrl: Support Intel PSFD for guests
f3709b15fc x86/cpuid: Infrastructure for cpuid word 7:2.edx
4b45c4faa8 tests/tsx: Extend test-tsx to check MSR_MCU_OPT_CTRL
ad9f7c3b2e x86/tsx: Cope with TSX deprecation on WHL-R/CFL-R
4116139131 x86/tsx: Move has_rtm_always_abort to an outer scope
39a40f3835 x86/spec-ctrl: Clean up MSR_MCU_OPT_CTRL handling
345746045b tools/configure.ac: Replace macro AC_HELP_STRING
e62cc29f9b tools/libs: Fix build dependencies
bfb148a0fc tools/include: remove xen-external directory
8bd039921a tools/libs/evtchn: use _xen_list.h
4721d93233 tools/libs/toolcore: replace _xentoolcore_list.h with _xen_list.h
9096f0e01e tools/libs/light: replace _libxl_list.h with _xen_list.h
9b8dcd08e6 tools/include: generate a _xen_list.h file
10d33220f2 dom0/pvh: fix processing softirqs during memory map population
f97c1abf29 xen/smp: Speed up on_selected_cpus()
e9b3216414 x86/hvm: Fix boot on systems where HVM isn't available
820cc39343 tools/guest: Fix comment regarding CPUID compatibility
75cc460a1b xen/pci: detect when BARs are not suitably positioned
d055114f6d vpci: shrink critical section in vpci_{read/write}
b17e0ec72e x86/mwait-idle: enable interrupts before C1 on Xeons
ef0f94a48f memory: XENMEM_add_to_physmap (almost) wrapping checks
e3abdc626a EFI: always map EfiRuntimeServices{Code,Data}
9ce3ef20b4 x86/vmx: Drop spec_ctrl load in VMEntry path
a7e7c7260c x86/cpuid: Enable MSR_SPEC_CTRL in SVM guests by default
22b9add22b x86/msr: AMD MSR_SPEC_CTRL infrastructure
614cec7d79 x86/svm: VMEntry/Exit logic for MSR_SPEC_CTRL
378f2e6df3 x86/spec-ctrl: Use common MSR_SPEC_CTRL logic for AMD
00f2992b6c x86/spec-ctrl: Record the last write to MSR_SPEC_CTRL
71fac402e0 x86/spec-ctrl: Don't use spec_ctrl_{enter,exit}_idle() for S3
5d9eff3a31 x86/spec-ctrl: Introduce new has_spec_ctrl boolean
ec083bf552 x86/spec-ctrl: Drop use_spec_ctrl boolean
15b7611efd x86/cpuid: Advertise SSB_NO to guests by default
481ee6125a iommu/arm: Remove code duplication in all IOMMU drivers
c52af96fdc iommu/ipmmu-vmsa: Use refcount for the micro-TLBs
c78901ab09 gitignore: remove stale entries
d9d3496e81 tools/libs/light: don't touch nr_vcpus_out if listing vcpus and returning NULL
f66e3d6afc IOMMU/x86: switch to alternatives-call patching in further instances
c5539e6e7b VMX: sync VM-exit perf counters with known VM-exit reasons
21170a738c public: add XEN_RING_NR_UNCONSUMED_*() macros to ring.h
aa390d513a build: fix exported variable name CFLAGS_stack_boundary
7be85daac5 build: avoid re-executing the main Makefile by introducing build.mk
672f2198f4 build: set XEN_BUILD_EFI earlier
2a565f9b40 automation: remove python-dev from debian unstable build containers
969a57f73f x86/msr: Fix migration compatibility issue with MSR_SPEC_CTRL
d940ce8e2a x86/Intel: use CPUID bit to determine PPIN availability
e1828e3032 x86/cpuid: Infrastructure for leaf 7:1.ebx
e3662437eb x86/cpuid: Disentangle logic for new feature leaves
b4c669fd7e x86/vmx: Fold VMCS logic in vmx_{get,set}_segment_register()
0bdc43c8de libxl: force netback to wait for hotplug execution before connecting
df6f5cd9e5 x86/Intel: IceLake D + Sapphire Rapids Xeons also support PPIN
0a71ca9ab4 xen: Replace arch_mfn_in_directmap() with arch_mfns_in_directmap()
9511120a45 iommu/ipmmu-vmsa: Set IPMMU bit IMSCTLR_USE_SECGRP to 0
095d665d77 iommu/ipmmu-vmsa: Add Renesas R8A779F0 (R-Car S4) support
6e94086a86 iommu/ipmmu-vmsa: Add utlb_offset_base
255000e8d7 iommu/ipmmu-vmsa: Calculate context registers' offset instead of a macro
ec4add8d1c iommu/ipmmu-vmsa: Add light version of Linux's ipmmu_features
a23e7a88bc iommu/ipmmu-vmsa: Add helper functions for "uTLB" registers
cbba37c8a3 iommu/ipmmu-vmsa: Add helper functions for MMU "context" registers
cf61c9378d iommu/ipmmu-vmsa: Remove all unused register definitions
9480a1a519 passthrough/x86: stop pirq iteration immediately in case of error
975a8fb45c xen/grant-table: Only decrement the refcounter when grant is fully unmapped
a428b913a0 xen/arm: p2m: Always clear the P2M entry when the mapping is removed
329b7bed80 x86/pvh: print dom0 memory map
2d5fc9120d x86/pvh: fix population of the low 1MB for dom0
ec32910f4f x86/time: drop pmt_scale_r
dd8238a611 From: Artem Bityutskiy <artem.bityutskiy@linux.intel.com> x86/mwait-idle: add SnowRidge C-state table
83512756a1 x86/mwait-idle: switch to using bool
73394e18bc x86/mwait-idle: stop exposing platform acronyms
5e73b2594c x86/time: minor adjustments to init_pit()
8593782ace x86/APIC: drop 32-bit days remnants
0731a56c7c x86/APIC: no need for timer calibration when using TDT
fe9be76d88 tools/xenstore: fix error handling of check_store()
447d514efe tools/xenstore: drop DEFINE_HASHTABLE_* macros and usage intro
b977929d36 tools/xenstore: fix hashtable_expand() zeroing new area
65e7c9410b tools/xenstore: merge hashtable_private.h into hashtable.c
d9bc1888d2 xen/x86: import intel-family.h from Linux
c1c059fdfd tools/xenstore: use talloc_asprintf_append() in do_control_help()
13caa58579 x86: Fix build with the get/set_reg() infrastructure
0626219dcc x86/hvm: Drop hvm_{get,set}_guest_bndcfgs() and use {get,set}_regs() instead
81f0eaadf8 x86/spec-ctrl: Fix NMI race condition with VT-x MSR_SPEC_CTRL handling
95b13fa43e x86/spec-ctrl: Drop SPEC_CTRL_{ENTRY_FROM,EXIT_TO}_HVM
6536688439 x86/msr: Split MSR_SPEC_CTRL handling
88d3ff7ab1 x86/guest: Introduce {get,set}_reg() infrastructure
4e1df69cc9 x86/hvm: Drop .is_singlestep_supported() callback
9b7cdb83fc Config.mk: update seabios to 1.15.0
2fc98a9587 libs/guest: move cpu policy related prototypes to xenguest.h
d4fb2cc5c0 x86/mwait-idle: Adjust the SKX C6 parameters if PC6 is disabled
d05c67efd9 x86/mwait-idle: add Icelake-D support
b07050e1e8 x86/mwait-idle: update ICX C6 data
07d134e174 x86/mwait-idle: mention assumption that WBINVD is not needed
ec43f0886e tools/libs/gnttab: remove old mini-os callback
9375860ada tools/libs/evtchn: remove old mini-os callback
fa52b153c5 config: use more recent mini-os commit
444597436d tools/libs/ctrl: remove file related handling
11788ab3b9 tools/libs/gnttab: decouple more from mini-os
93753cecc8 tools/libs/evtchn: decouple more from mini-os
aa61568ac6 config: use more recent mini-os commit
ad47bc9a97 x86/APIC: mark wait_tick_pvh() __init
369a01ce84 MAINTAINERS: email address update in TXT section
5fdd3a45bd MAINTAINERS: update my email address
27a63cdac3 x86/HVM: convert remaining hvm_funcs hook invocations to alt-call
299deb9dd9 build: adjust include/xen/compile.h generation
9ce0a5e207 x86/hvm: Improve hvm_set_guest_pat() code generation
ddf820e1d6 x86/hvm: Rework nested hap functions to reduce parameters
32a971bfa6 x86/hvm: Simplify hvm_enable_msr_interception()
73ee2795aa libxl/PCI: Fix PV hotplug & stubdom coldplug
6bce8cc005 build: correct usage comments in Kbuild.include
a5c9a80af3 x86/time: improve TSC / CPU freq calibration accuracy
467191641d x86/time: use relative counts in calibration loops
2e8aa1663c tools/libs/evtchn: Deduplicate xenevtchn_fd()
0cf6521ea9 MAINTAINERS: requesting to be TXT reviewer
35d15b27c9 tools/debugger: fix make distclean
77a69c2dc7 x86/paging: replace most mfn_valid() in log-dirty handling
dc773e0e89 x86/paging: tidy paging_mfn_is_dirty()
22891e12a4 SUPPORT.md: limit support statement for Linux and Windows frontends
b8428a858a x86/viridian: EOI MSR should always happen in affected vCPU context
ced5685208 x86/altp2m: p2m_altp2m_get_or_propagate() should honor present page order
6330e328ba tools/xen-detect: avoid possible pitfall with cpuid()
31f3bc97f4 x86/spec-ctrl: Fix default calculation of opt_srb_lock
06cc1f886f tools/libxc: Drop copy-in in xc_physinfo()
af0c5430a8 xenperf: omit meaningless trailing zeroes from output
78688ffa7e libxc: avoid clobbering errno in xc_domain_pod_target()
7cd0a787bb VT-d: shorten vtd_flush_{context,iotlb}_reg()
635de3c928 VT-d: use DMA_TLB_IVA_ADDR()
7762b7a1ec VT-d: properly parenthesize a number of macros
5b3f42001a xenperf: name "newer" hypercalls
0ea20d3647 VT-d: avoid allocating domid_{bit,}map[] when possible
4a59e6bb3a x86/EPT: squash meaningless TLB flush
f1e268b9fd mm: introduce INVALID_{G,M}FN_RAW
fa2f4c39c4 x86/perfc: conditionalize HVM and shadow counters
8e3edefb88 x86/traps: Clean up diagnostics
327db3837a x86/traps: Drop exception_table[] and use if/else dispatching
52c06465fc xen/domain: Remove function pointers from domain pause helpers
32365f3476 xen/arm64: Zero the top 32 bits of gp registers on entry...
c81fc9f313 tools/xenstore: drop support for running under SunOS
1c4589280a hvmloader: tidy pci_mem_{start,end}
ea187c0b7a revert "hvmloader: PA range 0xfc000000-0xffffffff should be UC"
f3999bc2e0 arm/efi: Handle Xen bootargs from both xen.cfg and DT
f1f38e26c3 xen/arm: increase memory banks number define value
4feacc9526 x86/cpuid: Advertise SERIALIZE by default to guests
5bd2b82df2 x86/cpuid: Introduce dom0-cpuid command line option
94c3df9188 x86/cpuid: Factor common parsing out of parse_xen_cpuid()
c17072fc16 x86/cpuid: Split dom0 handling out of init_domain_cpuid_policy()
b1e37d8402 stubdom: only build libxen*.a from tools/libs/
fc93c3ac4f tools/Rules.mk: Cleanup %.pc rules
e2ddc82be4 libs/toolcore: don't install xentoolcore_internal.h anymore
6176020902 libs: Remove both "libs" and "build" target
0ac694803c tools/xcutils: rework Makefile
e10ef07578 tools/vchan: Collect targets in TARGETS
41da0c21ee tools/misc: rework Makefile
2400a9a365 tools/debugger: Allow make to recurse into debugger/
dca4416a78 tools/include/xen-foreign: avoid to rely on default .SUFFIXES
aff380118b tools/Rules.mk: introduce FORCE target
021cd1c4b4 tools: Use config.h from autoconf instead of "buildmakevars2header"
e7fe314870 tools/xl: Remove unnecessary -I. from CFLAGS
ba9e57ef6d tools/ocaml: Remove generation of _paths.h
5a8b28bfd4 tools/libacpi: cleanup Makefile, don't check for iasl binary
c1634f0c86 tools/flask/utils: remove unused variables/targets from Makefile
a4885765ee tools/libs: Don't recursively expand MAJOR ?= $(shell ...)
989289e23f tools/libxl: Don't read STORE/CONSOLE_PFN from Xen
fa3cc3ff3b xen/build: Fix `make cscope` rune
c5f39993e4 xen: make some per-scheduler performance counters sched global ones
dc27c174b2 xen/arm: do not map PCI ECAM and MMIO space to Domain-0's p2m
b881096763 xen/arm: account IO handler for emulated PCI host bridge
cd54f8095e xen/arm: setup MMIO range trap handlers for hardware domain
1050a7b91c xen/arm: add pci-domain for disabled devices
8b3cbdbe78 arm/traps: remove debugger_trap_fatal() calls
9956fdc70f Arm: drop memguard_{,un}guard_range() stubs
fdf0149456 x86: drop MEMORY_GUARD
163db6a72b x86/PVH: permit more physdevop-s to be used by Dom0
5b226ca74b x86/PVH: improve Dom0 memory size calculation
a6d21af4a1 build: adjust $(TARGET).efi creation in arch/arm
19427e439e build: generate "include/xen/compile.h" with if_changed
725381a5ea xen: move include/asm-* to arch/*/include/asm
72f12ac6a3 build: factorise generation of the linker scripts
249e0f1d8f x86/cpuid: Fix TSXLDTRK definition
1382241fe8 perfc: drop calls_to_multicall performance counter
668dd44902 x86/perfc: add hypercall performance counters for hvm, correct pv
7b99e72585 x86emul: drop "seg" parameter from insn_fetch() hook
c49ee0329f SUPPORT.md: limit security support for hosts with very much memory
53ed194539 x86/monitor: don't open-code hvm_has_set_descriptor_access_exiting()
7dc0233f53 vpci: fix function attributes for vpci_process_pending
d828caa9ae tools/libfsimage: Fix SONAME
df3e1a5efe x86/HVM: permit CLFLUSH{,OPT} on execute-only code segments
c6cec7af28 EFI: constify EFI_LOADED_IMAGE * function parameters
29e31aaf5d MAINTAINERS: widen Anthony's area
7621880de0 x86: avoid wrong use of all-but-self IPI shorthand
ab6ba8c675 perfc: conditionalize credit/credit2 counters
22592f1c5e libxc: correct bounce direction in xc_get_device_group()
1384d4e1e4 tools/firmware/hvmloader: remove "subdirs-*" prerequisite
c2a535325e tools: remove some unneeded subdir-distclean-* targets
d739f78ef6 libs/store: Remove PKG_CONFIG_REMOVE
bca2eab9b5 libs/stat: Remove duplicated CFLAGS from deps
3e87c09ddd libs/light: Remove -I.
7db8ea9ad8 libs/light: Remove non-existing CFLAGS_libxl.o var
4d1586c7b4 libs/guest: Drop spurious include in Makefile
0f4c576473 libs/libs.mk: Remove generic variable that already exist
870cbd1c82 libs: Remove -Iinclude from CFLAGS
e0c9bd3d67 libs: Remove _paths.h from libs ctrl and util.
ec47d17d22 tools/Rules.mk: Remove $(CFLAGS.opic) from %.opic: %.S
7164316178 tools/configure.ac: Remove left over system_aio
92f3b438f3 .gitignore: Non existing toolcore/include files.
0a20a53df1 tools/libs/light: set video_mem for PVH guests
f10202d5c7 tools/libs/ctrl: Save errno only once in *PRINTF() and *ERROR()
1d896a0ef7 tools: set event channel HVM parameters in libxenguest
1e8b732de1 tools/helpers: fix PVH xenstore-stubdom console parameters
a0c3cd03ce x86/build: Move exception tables into __ro_after_init
c62d634cce xen/arm: process pending vPCI map/unmap operations
608531a0cc MAINTAINERS: Resign from my maintainership roles
f0abfb5eca EFI: drop copy-in from QueryVariableInfo()'s OUT-only variable bouncing
1f9540cd8e EFI: move efi-boot.h inclusion point
311297f421 x86/HVM: fail virt-to-linear conversion for insn fetches from non-code segments
c80878c320 x86/mm: don't open-code p2m_is_pod()
8553b17cc2 x86/PoD: HVM guests can't pin their pages
b4411416fe x86/shadow: defer/avoid paging_mfn_is_dirty() invocation
ea0c08bc77 x86/vPMU: Drop supported parameter from the wrmsr path
5f4f6c5104 xsm: Drop extern of non-existent variable
d6385ea15f xsm: Switch xsm_ops to __alt_call_maybe_initdata
7b57956b20 xen/arm: do not use void pointer in pci_host_common_probe
7cfe450be3 xen/arm: rename DEVICE_PCI to DEVICE_PCI_HOSTBRIDGE
1b78d4c636 gnttab: remove guest_physmap_remove_page() call from gnttab_map_frame()
620ed2c8c7 docs/efi: Fix wrong compatible in dts example
a44d428158 arm/vgic: Fix reference to a non-existing function
6a6ab829b6 x86/Viridian: fold duplicate vpset retrieval code
1f1179c619 x86/alternatives: adjust alternative_vcall0()
3950f2485b x86/x2APIC: defer probe until after IOMMU ACPI table parsing
d159edac73 VT-d: introduce helper to convert DID to domid_t
bbcea43d83 VT-d: tidy domid map handling
75a16d4c5f x86/vPMU: move vpmu_ops to .init.data
8c20aca675 x86/vPMU: invoke <vendor>_vpmu_initialise() through a hook as well
d95cf9d605 x86/vPMU: convert vendor hook invocations to altcall
5ecc5c30ef MAINTAINERS: remove Josh from ARINC 653 maintainers
d0887cc6b1 Revert "domctl: improve locking during domain destruction"
2f531c122e x86: limit number of hypercall parameters to 5
3c42cc803c x86/HVM: skip offline vCPU-s when dumping VMCBs/VMCSes
adb715db69 x86/HVM: also dump stacks from show_execution_state()
c037dfb909 x86/PV: properly set shadow allocation for Dom0
05657c6d18 x86/boot: Support __ro_after_init
8de86b5cd4 x86/boot: Adjust .text/.rodata/etc permissions in one place
c182e89d0b x86/boot: Drop xen_virt_end
ffa5d037c7 x86/boot: Fix data placement around __high_start()
3099ff3ce1 x86/boot: Better describe the pagetable relocation loops
a15b143a5f x86/boot: Drop incorrect mapping at l2_xenmap[0]
eb41074692 bitops: Fix incorrect value in comment
6c1c97e24f CHANGELOG.md: Start new "unstable" section
eef266eb77 CHANGELOG.md: Set 4.16 version and date
e058b2d4e5 CHANGELOG: add missing entries for work during the 4.16 release cycle
9012687f05 arm/efi: Improve performance requesting filesystem handle
ad9cf6bde5 Update libfdt to v1.6.1
e7f147bf4a x86/crash: Drop manual hooking of exception_table[]
04c48ccd75 x86/traps: Drop dummy_nmi_callback()
d9f60a924c x86/traps: Collect PERFC_exceptions stats for IST vectors too
8969d58404 x86/dom0: Fix command line parsing issues with dom0_nodes=
11d9e114b5 x86/hvm: Remove callback from paging->flush_tlb() hook
245a320ce2 x86/IO-APIC: Drop function pointers from __ioapic_{read,write}_entry()
f03567bd7e xen/wait: Remove indirect jump
06c30ad766 xen/smp: Support NULL IPI function pointers
6de7e460c3 x86/ACPI: drop dead interpreter-related code
b8a13f487a x86/APIC: rename cmdline_apic
0ee901ce4b x86/APIC: drop probe_default()
501f70b16a x86/APIC: drop {acpi_madt,mps}_oem_check() hooks
56829b6ff9 x86/APIC: drop clustered_apic_check() hook
5d9974916b x86/cpufreq: Drop opencoded CPUID handling from powernow
4dd16c4415 x86/cpufreq: Rework APERF/MPERF handling
eed4f94ddb x86/cpufreq: Clean up powernow registration
ee3407bb05 xen/xsm: Improve fallback handling in xsm_fixup_ops()
28959fe442 xen/xsm: Drop xsm_hvm_control() hook
d868feb95a xen/xsm: Complete altcall conversion of xsm interface
5c7c78d0be x86/altcall: allow compound types to be passed
0e6c87b93e Revert "x86/CPUID: shrink max_{,sub}leaf fields according to actual leaf contents"
5449ba84e9 VT-d: conditionalize IOTLB register offset check
08826a044e VT-d: correct off-by-1 in fault register range check
859d11b279 VT-d: prune SAGAW recognition
8c6ea4a784 x86/Viridian: drop dead variable updates
857fee7784 x86/Viridian: fix error code use
49857c5e4f MAINTAINERS: declare REMUS support orphaned
e6252a51fa VT-d: don't leak domid mapping on error path
9fdc10abe9 VT-d: split domid map cleanup check into a function
b111a41acd VT-d: properly reserve DID 0 for caching mode IOMMUs
d5c39d5f8d VT-d: don't needlessly engage the untrusted-MSI workaround
0e74f62d03 VT-d: prune super-page related capability macros
e1e1da600b add .gitignore entries for *.[is] below xen
5168b6ee91 x86: modify hvm_memory_op() prototype
95d1511fe0 x86/PV: drop "vcpu" local variable from show_guest_stack()
a5706b80f4 Set version to 4.17: rerun autogen.sh
8579d208ab Set version to 4.17; 4.16 has branched
4fe6e73a8c Revert "Config.mk: pin QEMU_UPSTREAM_REVISION (prep for Xen 4.16 RC1)"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
e3bae02214 |
xen/git: update to latest
Bumping xen to version 4.18.0-rc4-179-gf96e2f6457, which comprises the following commits:
bad1ac345b x86: support data operand independent timing mode
8a5ef972ba CI: (More) Always pull base image when building a container
474fc7d3c6 iommu/vt-d: fix SAGAW capability parsing
94a5127ebe iommu: fix quarantine mode command line documentation
11f81a5a2c EFI: reduce memory map logging level
196a8fac1c automation: extract QEMU log in relevant hardware tests
cbb0fdc0d7 automation: improve checking for MSI/MSI-X in PCI passthrough tests
9c34956b19 automation: cleanup test alpine install
052813b1d2 automation: hide timeout countdown in log
dfe5bfc3d5 automation: include real-time view of the domU console log too
698b0f5031 console: make input work again for pv-shim
4bb882fe6e x86/pvh: fix identity mapping of low 1MB
7c3616e6f1 x86/microcode: Disable microcode update handler if DIS_MCU_UPDATE is set
001e8678dc x86: Read MSR_ARCH_CAPS immediately after early_microcode_init()
0df74ee09b x86/microcode: Ignore microcode loading interface for revision = -1
f11cb1c247 x86/microcode: WARN->INFO for the "no ucode loading" log message
40387f6206 tools/pygrub: Fix pygrub's --entry flag for python3
26ea12d940 x86/amd: Address AMD erratum #1485
141db3325b xen/pdx: Make CONFIG_PDX_COMPRESSION a common Kconfig option
f51c92383b xen/arm: Check return code from recursive calls to scan_pfdt_node()
e58bd71c09 cxenstored: wait until after reset to notify dom0less domains
7114bbfc84 get_maintainer: Add THE REST for sections with reviewers only
dcaec96ac0 xen/irq: address violations of MISRA C:2012 Rule 8.2
bef218208c x86/paging: address a violation of MISRA C:2012 Rule 8.3
4a106e1fb1 x86/mem_access: address violations of MISRA C:2012 Rule 8.3
0ce2ee7a16 xenalyze: Reduce warnings about leaving a vcpu in INIT
b26a234135 xenalyze: Fix interrupt EIP reporting
4292c54545 xenalyze: Don't expect an HVM_HANDLER trace for PAUSE vmexits
4ef752733b xenalyze: AMD's VMEXIT_VINTR doesn't need a trace record
ea6f4cd304 xenalyze: Only accumulate data from one vmexit without a handler
618826f673 MAINTAINERS: Make Bob Eschleman a reviewer
6432228fb5 xen/arm: vtimer: Don't read/use the secure physical timer interrupt for ACPI
730406ab81 docs/misra: add deviations.rst to document additional deviations.
9a5bbb2d34 xen/arm: Validate generic timer frequency
dc9d9aa62d x86/pv: Correct the auditing of guest breakpoint addresses
5d54282f98 x86/svm: Fix asymmetry with AMD DR MASK context switching
9c114178ff libxl: limit bootloader execution in restricted mode
1f762642d2 libxl: add support for running bootloader in restricted mode
e0342ae555 tools/pygrub: Deprivilege pygrub
990e65c3ad tools/libfsimage: Export a new function to preload all plugins
0710d7d445 tools/pygrub: Open the output files earlier
9f2ff9a7c9 tools/pygrub: Small refactors
f4b504c617 tools/pygrub: Remove unnecessary hypercall
7d85c70431 libfsimage/xfs: Add compile-time check to libfsimage
620500dd1b libfsimage/xfs: Sanity-check the superblock during mounts
ddc45e4eea libfsimage/xfs: Amend mask32lo() to allow the value 32
37fc1e6c1c libfsimage/xfs: Remove dead code
5fc98b9708 iommu/amd-vi: flush IOMMU TLB when flushing the DTE
9713423a06 xen/public: arch-arm: Update list of supported hypercalls
c035151902 x86: Clarify that only 5 hypercall parameters are supported
1357f1fa58 docs/sphinx: Switch hypercall-abi.rst to named footnotes
ffa1437686 tools/xenpvboot: remove as unable to convert to Python 3
baf5d78766 x86/memshr: Fix build in copy_vcpu_settings()
48a3fd1432 domain: expose newly introduced hypercalls as XENFEAT
6ba8384592 domain: fix misaligned unmap address in {,un}map_guest_area()
01343f99de arm/ioreq: guard interaction data on read/write operations
295514ff75 common: convert vCPU info area registration
60e544a8c5 x86: introduce GADDR based secondary time area registration alternative
d5df44275e domain: introduce GADDR based runstate area registration alternative
eadc288cbb domain: map/unmap GADDR based shared guest areas
c4dde71e3e x86/mem-sharing: copy GADDR based shared guest areas
c2e285ea0e x86: update GADDR based secondary time area
e1ddb822ca domain: update GADDR based runstate guest area
c4630e3162 domain: GADDR based shared guest area registration alternative - teardown
826da6e30c x86/shim: zap runstate and time area handles during shutdown
9a499a84a2 mem_sharing/fork: do not attempt to populate vcpu_info page
02c9896636 xen: arm: procinfo.h: Fixed a typo
3d2d9e9022 SUPPORT: downgrade Physical CPU Hotplug to Experimental
5bdfcf7fe8 docs/misra: add rule 2.1 exceptions
0b5bca91aa docs/misra: add rule 11.9
b1c84ab41a docs/misra: add 14.3
2797a71712 xen/ppc: Fix stack initialization in head.S
33cf950085 tools/xenstore: Avoid leaking memory in check_store
a8ab67cae0 Update Xen version to 4.18-rc
520d18e0ff Config.mk pin QEMU_UPSTREAM_REVISION (prep for Xen 4.18 RC1)
a363089e68 xen/common: Add NUMA node id bounds check to page_alloc.c/node_to_scrub
0595f96854 automation: Change build script to use arch defconfig
a1f8b32af0 ARM: GICv3 ITS: flush caches for newly allocated ITT
cbb71b95dd automation: Drop ppc64le-*randconfig jobs
e47f8c6c2a drivers/video: make declarations of defined functions available
d6351a10c8 xen/emul-i8254: remove forward declarations and re-order functions
7e55acb58a xen/numa: address a violation of MISRA C:2012 Rule 8.3
32e1380434 xen/hypercalls: address violations of MISRA C:2012 Rule 8.3
64e18eef5e MAINTAINERS: Remove myself as RISC-V maintainer
88a9501a84 xen/pdx: Reorder pdx.[ch]
63d077ede4 xen/pdx: Standardize region validation wrt pdx compression
bc2cda8c59 xen/mm: Factor out the pdx compression logic in ma/va converters
95a8a2c123 x86/pv: Fix the determiniation of whether to inject #DB
f6b0a80a36 x86/emul: ASSERT that X86EMUL_DONE doesn't escape to callers
e71157d1ac x86/paging: Delete update_cr3()'s do_locking parameter
e282067cf2 credit: Don't steal vcpus which have yielded
58feb9e0ac credit: Limit load balancing to once per millisecond
d09e44e5d8 console/serial: bump buffer from 16K to 32K
405cff8491 xen/arm64: head.S: Fix wrong enable_boot_cpu_mm() code movement
39113a8a23 tools/light: Revoke permissions when a PCI detach for HVM domain
932c3c8b4b README: Remove old note about the build system's python expectation
2a353c048c tools: Don't use distutils in configure or Makefile
9314a61936 tools/python: convert setup.py to use setuptools if available
bbc72a7877 automation: Add python3's setuptools to some containers
e07a276976 x86/APIC: Remove esr_disable
fb0ff49fe9 x86/shadow: defer releasing of PV's top-level shadow reference
9b57c800b7 x86/entry: Partially revert IST-exit checks
ea36ac0de2 xen/ppc: Enable full Xen build
23f2f4a097 xen/ppc: Add stub function and symbol definitions
4a2f68f909 xen/ppc: Define minimal stub headers required for full build
fa6696e63b x86/ACPI: Fix logging of MADT entries
93d2ee85f1 xen/vPCI: address violation of MISRA C:2012 Rule 8.3
b5926c6ecf x86/spec-ctrl: Mitigate the Zen1 DIV leakage
de1d265001 x86/amd: Introduce is_zen{1,2}_uarch() predicates
3ee6066bcd x86/spec-ctrl: Issue VERW during IST exit to Xen
21bdc25b05 x86/entry: Track the IST-ness of an entry for the exit paths
7aa28849a1 x86/entry: Adjust restore_all_xen to hold stack_end in %r14
45f0055735 x86/spec-ctrl: Improve all SPEC_CTRL_{ENTER,EXIT}_* comments
7125429aaf x86/spec-ctrl: Turn the remaining SPEC_CTRL_{ENTRY,EXIT}_* into asm macros
694bb0f280 x86/spec-ctrl: Fold DO_SPEC_CTRL_EXIT_TO_XEN into it's single user
1c18d73774 x86/spec-ctrl: Fix confusion between SPEC_CTRL_EXIT_TO_XEN{,_IST}
2ea38251eb xen/ppc: Implement bitops.h
e4ca4e261d x86/amd: do not expose HWCR.TscFreqSel to guests
c890499871 timer: fix NR_CPUS=1 build with gcc13
ba78957d92 xen/libelf: address violations of MISRA C:2012 Rules 8.2 and 8.3
290f82375d xen/arm: Skip Xen specific nodes/properties from hwdom /chosen node
b5a601093d docs/misra: accept 11.7 and 11.8
6aa25c3218 xen/ppc: Implement atomic.h
38e1da3ee4 x86/efi: address violations of MISRA C:2012 Rule 7.2
e29cb1f96f x86/mcheck: address violations of MISRA C:2012 Rule 7.2
75f42e0401 xen/lib: address violations of MISRA C:2012 Rule 7.2
3667e9bbfc xen/IOMMU: address violations of MISRA C:2012 Rules 8.2 and 8.3
e17706138d x86/msi: rearrange read_pci_mem_bar slightly
8e46c1ddb6 xen/pci: convert pci_find_*cap* to pci_sbdf_t
cb1c77b607 x86/hvm: address violations of MISRA C:2012 Rule 7.3
933a71756c xen/ioreq: address violations of MISRA C:2012 Rule 7.3
21ec0c4226 xen/arm: Handle empty grant table region in find_unallocated_memory()
5e8df433db x86/viridian: address violations of MISRA C:2012 Rule 7.2
7a952cc3ec build: restrict gcc11 workaround to versions earlier than 11.3.0
a22f0de322 x86/viridian: address violations of MISRA C:2012 Rule 7.3
f1546c98e0 tools/xentrace/xentrace_format: Add python 3 compatibility
4d6b0c2ac7 x86: Fix calculation of %dr6/dr7 reserved bits
aa39130d2b x86: Introduce new debug.c for debug register infrastructure
15987cb03f x86: Reject bad %dr6/%dr7 values when loading guest state
ab4f3e3897 xen/PCI: address violations of MISRA C:2012 Rules 8.2 and 8.3
9227a94e28 include: make domain_page.h's stubs properly use type-unsafe MFN <-> virt helpers
7ee3a44971 coverage: update gcov info for newer versions of gcc
745bf2b7de coverage: simplify the logic of choosing the number of gcov counters depending on the gcc version
38cb6be7bc cmdline: move irq-max-guests doc entry
3e73dd889d tools/misc/xencov_split: Add python 3 compatibility
35949b8c58 x86: change parameter name in {hap,shadow}_track_dirty_vram()
4aca8559d6 xen: move arm/include/asm/vm_event.h to asm-generic
56a9e44e7d xen: asm-generic support
bd31678c84 MAINTAINERS: generalize vm-event/monitor entry
49b2d6a529 xen/arm64: Fold setup_fixmap() to create_page_tables()
db5ad6d10f xen/arm: Move MMU related definitions from config.h to mmu/layout.h
6734327d76 xen/arm64: Split and move MMU-specific head.S to mmu/head.S
d52e9afe50 xen/arm: Introduce CONFIG_MMU Kconfig option
d2f8df5b3e xen/arm64: head.S: Introduce enable_{boot,secondary}_cpu_mm()
cba6d44a13 xen/arm: ioreq: add header for 'handle_ioserv' and 'try_fwd_ioserv'
1b715dbeb2 xen/ppc: Drop support for pseries/OpenFirmware
2ed144aff1 automation: Switch ppc64le tests to PowerNV machine type
0dc838d6ae automation: add awk to opensuse images
1f79fce10a x86/io_apic: address violations of MISRA C:2012 Rules 8.2 and 8.3
49caa97143 x86/io: address violations of MISRA C:2012 Rule 8.3
92c6c3cba1 x86/genapic: address a violation of MISRA C:2012 Rule 8.3
03f64b54a1 automation: execute SAF translation before the analysis with ECLAIR
5a415ef2b2 xen: apply deviation for Rule 8.4 (asm-only definitions)
f4b8a52034 Arm: constrain {,u}int64_aligned_t in public header
e18ca23f5f Revert "MAINTAINERS: consolidate vm-event/monitor entry"
b2dd946ece xen/arm: Fix printk specifiers and arguments in iomem_remove_cb()
6242d1b745 xen/arm: ffa: fix guest map RX/TX error code
d8c3ff585b tools/xl: Guard main_dt_overlay() with LIBXL_HAVE_DT_OVERLAY
c0291d6b5c xen: Change parameter of generic_{fls,ffs}() to unsigned int
05a0136761 xen/arm: smmuv3: Add missing U for shifted constant
72af797b7f xen/pci: update PCI_STATUS_* constants
61765a07e3 tools/xl: Add new xl command overlay for device tree overlay support
aa7354beb1 tools/libs/light: Implement new libxl functions for device tree overlay ops
f61243530e tools/libs/ctrl: Implement new xc interfaces for dt overlay
0c0facdab6 xen/arm: Implement device tree node addition functionalities
7e5c4a8b86 xen/arm: Implement device tree node removal functionalities
57d4d7d4e8 arm/asm/setup.h: Update struct map_range_data to add rangeset.
b8de00ff7a common/device_tree: Add rwlock for dt_host
f07bfa2e34 asm/smp.h: Fix circular dependency for device_tree.h and rwlock.h
3b27fff436 xen/smmu: Add remove_device callback for smmu_iommu ops
de89833857 xen/iommu: Introduce iommu_remove_dt_device()
6b0e3b74cb xen/iommu: protect iommu_add_dt_device() with dtdevs_lock
bd4ce8f7e0 xen/iommu: Move spin_lock from iommu_dt_device_is_assigned to caller
25141fed24 xen/device-tree: Add dt_find_node_by_path_from() to find nodes in device tree
d434dc4ac1 libfdt: overlay: change overlay_get_target()
6235b83eba libfdt: Keep fdt functions after init for CONFIG_OVERLAY_DTB.
427b6a571c xen/arm: Add CONFIG_OVERLAY_DTB
8c614471f6 common/device_tree: Export __unflatten_device_tree()
9e9d2c079d xen/arm/device: Remove __init from function type
3ec9528a82 common/device_tree.c: unflatten_device_tree() propagate errors
502c3af88d common/device_tree: handle memory allocation failure in __unflatten_device_tree()
9a216e92de xen/arm: page: Handle cache flush of an element at the top of the address space
74b725a64d xen/ppc: Implement initial Radix MMU support
f805cf3e9b MAINTAINERS: consolidate vm-event/monitor entry
629dd78c36 xen/ppc: Define bug frames table in linker script
08c192cc11 xen/ppc: Add public/arch-ppc.h
6621932264 arm64/vfp: address MISRA C:2012 Dir 4.3
1b7dc185f8 docs/misra: document gcc-specific behavior with shifting signed integers
1f2f5087c0 xen/sched: address violations of MISRA C:2012 Directive 4.10
591fd09ffb docs/misra: add rules 10.1 10.2 10.3 10.4
e5522c71be x86/msi: remove some unused-but-set-variables
709f6c8ce6 x86/irq: fix reporting of spurious i8259 interrupts
8c01f267ef xen/console: Set the default log level to INFO for release builds
47342d8f49 x86/ACPI: Ignore entries with invalid APIC IDs when parsing MADT
067f18c3a7 xen/vpci: address violations of MISRA C:2012 Rule 7.2
5d84f07fe6 xen/pci: drop remaining uses of bool_t
16109296b4 common: Add missing #includes treewide
ccc55b7c61 xen/vpci: address violations of MISRA C:2012 Rule 7.3
ec272d8d4c CI: Always move the bisect build log back
0742b0a081 tools/oxenstored: Additional debugging commands
870d5cd9a9 xen/IOMMU: Switch bool_t to bool
11d9f3ddf5 tools/libs: light: Remove the variable 'domainid' do_pci_remove()
b0cd7499dd docs/misra: add exceptions to rules
6a35ba8872 xen/mem_access: address violations of MISRA C:2012 Rule 7.3
6295f06a34 automation: avoid pipelines on specific branches
7c1bf8661d automation/eclair: avoid unintentional ECLAIR analysis
5c293058b1 tools/xenstore: move xenstored sources into dedicated directory
981b18c07d vpci/msix: make 'get_slot' static
552eb3e5e9 stubdom: remove openssl related clean actions
ba5bae659d Drop remains of prior SCMs
10c83bb0f5 x86/vmx: Revert "x86/VMX: sanitize rIP before re-entering guest"
ed317b8619 libxl/CPUID: drop two more feature flag table entries
43dab6e7ef libxc: remove / adjust xc_get_cpufreq_para()'s BUILD_BUG_ON()s
4442c8dd0b CHANGELOG: Add Intel HWP entry
8409f62a1c xenpm: Add set-cpufreq-cppc subcommand
c80f042da5 libxc: Add xc_set_cpufreq_cppc
d4d2f3f02e xen: Add SET_CPUFREQ_HWP xen_sysctl_pm_op
a93fde4f87 xenpm: Print HWP/CPPC parameters
cf476162b6 libxc: Include cppc_para in definitions
5eba6d3254 cpufreq: Export HWP parameters to userspace as CPPC
09a622e0eb xenpm: Change get-cpufreq-para output for hwp
b9310562ff xen/x86: Tweak PDC bits when using HWP
99c4570f82 cpufreq: Add Hardware P-State (HWP) driver
31e264c672 pmstat&xenpm: Re-arrage for cpufreq union
2381dfab08 xen/sysctl: Nest cpufreq scaling options
01a833e1fa cpufreq: Export intel_feature_detect
86e5be617e cpufreq: Add perf_freq to cpuinfo
b593388986 cpufreq: Allow restricting to internal governors only
a943a4f119 Revert "xen/hypercalls: address violations of MISRA C:2012 Rule 8.3"
18fa101081 xen/hypercalls: address violations of MISRA C:2012 Rule 8.3
18b4f7e1e1 xen/ppc: Relocate kernel to physical address 0 on boot
2115b443ab xen/ppc: Bump minimum target ISA to 3.0 (POWER9)
145a69c094 x86/AMD: extend Zenbleed check to models "good" ucode isn't known for
824b5a40dd build: make cc-option properly deal with unrecognized sub-options
a73560896c CI: Update FreeBSD to 12.4
a7d04b0e79 xen/pci: address a violation of MISRA C:2012 Rule 8.3
b3bb51f718 vm_event: rework inclusions to use arch-indipendent header
db75dfdb11 mem-sharing: move (x86) / drop (Arm) arch_dump_shared_mem_info()
5eb8c15171 x86/hpet: Disable legacy replacement mode after IRQ test
3fae7c56b3 xen/arm64: prepare for moving MMU related code from head.S
bf85271786 xen/public: arch-arm: All PSR_* defines should be unsigned
9fd20ec0bd xen/arm: vgic: Use 'unsigned int' rather than 'int' whenever it is possible
7c15584bdb xen/arm: vmmio: The number of entries cannot be negative
bf0bd6cf59 misra: add more entires to exclude-list.json
6775d81325 automation/eclair: update configuration
b2865c2b6f x86/svm: Fix valid condition in svm_get_pending_event()
cd36188b27 docs/coverage: Drop warning about 2M limit for ARM
5ddac3c285 rombios: Remove the use of egrep
a562afa567 rombios: Avoid using K&R function syntax
e35138a2ff rombios: Work around GCC issue 99578
6fba45ca3b x86emul: rework wrapping of libc functions in test and fuzzing harnesses
5cd6585177 tools/config: add XEN_RUN_STORED to config.h
dc45c3e8de tools/xenstore: introduce get_node_const()
0becb6ca5a tools/xenstore: rework get_node()
f174147e63 tools/xenstore: merge is_valid_nodename() into canonicalize()
154054ea10 tools/xenstore: merge get_spec_node() into get_node_canonicalized()
8a6bc0b8c6 tools/xenstore: introduce read_node_const()
9e70cc33d3 tools/xenstore: alloc new memory in domain_adjust_node_perms()
1a4b7008e9 tools/xenstore: use struct node_hdr in struct node
8cea54cfdc tools/xenstore: don't use struct node_perms in struct node
45ce0cb38f tools/xenstore: rework struct xs_tdb_record_hdr
e95c661889 tools/xenstore: move copying of node data out of db_fetch()
9eb0d66cae tools/xenstore: change talloc_free() to take a const pointer
f39c39ba25 tools/xenstore: let db_delete() return void
6bc3a1cbdc tools/xenstore: remove tdb code
8bf435cdf2 tools/xenstore: drop use of tdb
a9d11f0adc tools/xenstore: add hashtable_replace() function
901a740b32 tools/xenstore: let hashtable_add() fail in case of existing entry
a687272aad tools/xenstore: make hashtable key parameter const
e6cb27f2f2 docs: add Arm FF-A mediator
8abdd8d528 tools: add Arm FF-A mediator
51a3920363 xen/arm: ffa: list current limitations
cd3d2a9d97 xen/arm: ffa: improve lock granularity
195b2adf71 xen/arm: ffa: add support to reclaim shared memory
7fc2a2993d xen/arm: ffa: support sharing memory
8fe046e988 xen/arm: ffa: add ABI structs for sharing memory
8a36b557a5 xen/arm: ffa: add defines for sharing memory
88d750b880 xen/arm: move regpair_to_uint64() and uint64_to_regpair() to regs.h
caf6491e95 xen/arm: ffa: support guest FFA_PARTITION_INFO_GET
38d81e7ccb xen/arm: ffa: support mapping guest RX/TX buffers
4c4887bb7a xen/arm: ffa: send guest events to Secure Partitions
a33f28872c xen/arm: ffa: map SPMC rx/tx buffers
c9a1d98295 xen/arm: ffa: add direct request support
38ba0466a1 IOMMU/x86: fix build with old gcc after IO-APIC RTE changes
0801868f55 tboot: Disable CET at shutdown
ebce4e3a14 libxl: slightly correct JSON generation of CPU policy
d0eabe3eaf x86: address MISRA C:2012 Rule 5.3
18b15f11d8 xen/arm: traps: remove unused function 'dump_guest_s1_walk'
2763c33c6e automation: update jobs to use Debian Bookworm instead of unstable
33a1c443d9 automation: update test-artifacts to use Debian Bookworm instead of unstable
8ab05119df automation: switch from Debian unstable to bookworm
2909596927 Revert "xen/riscv: introduce decode_cause() stuff"
22e71609ad xen/riscv: introduce decode_cause() stuff
86bd2484f3 xen/riscv: introduce <asm/bug.h>
603a24573a xen/riscv: introduce temporary printk stuff
1f44323271 cpufreq: add missing include of header 'pmstat.h'
7a0eb50170 x86/setup: add missing headers
6bccbb1794 x86/hpet: make variable 'per_cpu__cpu_bc_channel' static
d1f6a58dfd build: correct gas --noexecstack check
a9a3b432a8 x86: adjust comparison for earlier signedness change
166eb670e6 x86/vmsi: rename variables to address MISRA C:2012 Rule 5.3
c6bda36af0 xen/arm: Skip inclusion of domU nodes into hwdom dt /chosen node
ac547f0bed xen/arm: Fix initrd placeholders generation in make_chosen_node()
6f9029cf8f automation: use Alpine 3.18 instead of 3.12 for all gitlab jobs
1e7f896de2 automation: upgrade Alpine build and test artifact containers to 3.18
f652fdd94a arm/efi: address MISRA C:2012 Rule 8.4
b70ffd2386 x86/nmi: include missing header with declarations for 'watchdog_*'
24908ef334 xen/arm: mm: add missing extern variable declaration
859c868de4 x86: make some functions and variables static rather than extern
baad64ad38 xen/arm: make declarations visible before function definitions
7b799e8ab3 xen/include: make a declaration of 'get_sec' visible where needed
2a54704bde xen: make 'saved_cmdline' static
dc8d86e03a xen/memory: make 'ioreq_server_max_frames' static
4086857cc1 x86: implement cpuid() in terms of cpuid_count()
751235f6d1 move PAGE_ALIGN() to common header
79c18114c7 automation/eclair: update analyzed builds
257a6e763a automation/eclair: add ECL deviations
f3ab12d216 automation/eclair: update clean guidelines
236fc9fdf9 xen/delay: address MISRA C:2012 Rule 5.3
f70e11db83 move max_page and total_pages to common code
e48acb2afe common: asm/desc.h is an x86-only header
aea61dbb8e common: __u8 is history
75e84d4772 common: move Linux-inherited fixed width type decls to common header
15601eed05 xen/arm64: head: Introduce a helper to flush local TLBs
a8a7c33e7d tools/xl: reject bootloader=pygrub in case pygrub is disabled
df8852543d tools: add configure option for libfsimage
c9a899f7f4 tools: add configure option for disabling pygrub
f974004ccb ns16550: Guard accesses to `vuart` field by CONFIG_ARM
82f7f7be46 libxenstat/Linux: pass nul-terminated string to strpbrk()
76c243b1bc automation: Fix missing smoke.serial in artifacts of qemu arm32 jobs
a9de4b62f4 x86/setup: address MISRA C:2012 Rule 5.3 and 8.3
752fd032bf x86: refactor macros in 'xen-mca.h'
7ee9556518 x86/xstate: address MISRA C:2012 Rule 5.3
f53d0136ae x86/include: address MISRA C:2012 Rule 5.3.
56d690efd3 x86/spec-ctrl: Mitigate Gather Data Sampling
9f585f59d9 x86/spec-ctrl: Enumerations for Gather Data Sampling
2dd06b4ea1 x86/cpu-policy: Hide CLWB by default on SKX/CLX/CPX
220c06e6fe x86/spec-ctrl: Mitigate Speculative Return Stack Overflow
2280b0ee2a x86/spec-ctrl: Enumerations for Speculative Return Stack Overflow
292f68fb77 x86/spec-ctrl: Rework ibpb_calculations()
46c5ef609b subdom: Fix -Werror=address failure in tmp_emulator
bd3ddaf6ee xen/arm: Add Cortex-A77 erratum 1508412 handling
cb827e7a19 x86/cpu: Address a violation of MISRA C:2012 Rule 8.3
ad89640ad7 libxl: Use XEN_LIB_DIR to store bootloader from pygrub
83ea97ecc0 xen/ppc: Implement early serial console on PowerNV
6fc15ec32b xen/ppc: Parse device tree for OPAL node on PowerNV
c99f57a783 xen/ppc: Add OPAL API definition header file
d3be806dae xen/x86: address violations of MISRA C:2012 Rule 7.3
84df4fd56d x86/mm: address violations of MISRA C:2012 Rule 7.3
2cb7d006b5 x86/IOMMU: address violations of MISRA C:2012 Rule 7.3
854c63f82c x86/svm: address violations of MISRA C:2012 Rule 7.3
c44cf8f584 AMD/IOMMU: address violations of MISRA C:2012 Rule 7.3
7d5ef63f08 automation: Advertise that ECLAIR jobs do not need prerequisites
5e7a0614a4 x86/mce: Address violations of MISRA C:2012 Rules 8.2 and 8.3
6456661cd0 x86/mtrr: address MISRA C:2012 Rule 5.3
48627540a1 x86/mce: address MISRA C:2012 Rule 5.3
6759b42fcb xen: change parameter name in monitor_domctl() declaration
65f0d6fc80 x86: Drop opt_pku entirely
767d1a2cfd arm/mm: Document the differences between arm32 and arm64 directmaps
d63ea6c46b libelf: address MISRA C:2012 Rule 5.3
202a341fd4 x86: Address violations of MISRA C:2012 by replacing bool_t uses
0c8d77e117 xen/include: address violations of MISRA C:2012 Rule 7.3
6ad7563727 xen/common: address violations of MISRA C:2012 Rule 7.3
b89d204ee0 xen/arm: address violations of MISRA C:2012 Rule 7.3
680e66544c xen/sched: address violations of MISRA C:2012 Rules 8.2 and 8.3
e26230a349 xen/sched: mechanical renaming to address MISRA C:2012 Rule 5.3
a628e73de1 x86/HVM: drop dead assignments from hvmemul_rep_{movs,stos}()
e55146071d automation: add missing "needs"
4a6448fd64 automation/eclair: avoid failure in case of missing merge point
0d3d7eb82f automation/eclair: add scheduled pipelines
5499c75c21 automation/eclair: add direct link to reports
4d687adc8c automation/eclair: add support for tag pipelines
092cae024a xen/x86: Constify the vCPU parameter for expand_xsave_states()
1aa5acbbec libxl: allow building with old gcc again
4f6afde88b libxl: avoid shadowing of index()
dfc490a374 arm: Avoid using solaris syntax for .section directive
da55d9dc91 x86/gen-cpuid: Avoid violations of Misra rule 1.3
73aea9ada8 x86: Delete str()
abe93fc8aa x86/entry: Rename the exception entrypoints
26638cd9ef x86/traps: Move do_general_protection() earlier
51588938e0 xen/ppc: Switch to medium PIC code model
c6dc0ee76d arm/efi: address MISRA C:2012 Rule 5.3
b3f817a6c5 drivers/char: address MISRA C:2012 Rule 5.3
8d75d8069b xen/common: address MISRA C:2012 Rule 5.3
e35944f37b common: move simple_strto{,u}l{,l}() to lib/
fe212797d7 xen/spinlock: address violations of MISRA C:2012 Rules 8.2 and 8.3
25325ddf2a x86: mechanically rename to address MISRA C:2012 Rule 5.3
1398cf54ef xen/lib: address violations of MISRA C:2012 Rules 8.2 and 8.3
c2026b88b5 xen/arm/IRQ: uniform irq_set_affinity() with x86 version
b524d54373 amd/iommu: rename functions to address MISRA C:2012 Rule 5.3
4b40696fec xen/pci: rename local variable to address MISRA C:2012 Rule 5.3
c0579c65f6 x86/HVM: tidy _hvm_load_entry() for style
fcc205cbcc EFI: address violations of MISRA C:2012 Rules 8.2 and 8.3
3e033172b0 x86/iommu: pass full IO-APIC RTE for remapping table update
7225f13aef x86: avoid Misra Rule 19.1 violations
70eb862b01 x86emul: remove local variable to address MISRA C:2012 Rule 5.3
fca1fa283a x86emul: avoid shadowing to address MISRA C:2012 Rule 5.3
79c3ae4b20 x86/mm: remove variable to avoid shadowing
f7065b24f4 amd: disable C6 after 1000 days on Zen2
4fd1910885 IOMMU: address violations of MISRA C:2012 Rules 8.2 and 8.3
d47e138d10 x86/IRQ: address violations of MISRA C: 2012 Rules 8.2 and 8.3
af6ad28a0f xen/IRQ: address violations of MISRA C: 2012 Rules 8.2 and 8.3
10d25fc47d xl: Add escape character argument to xl console
a07414d989 Config.mk: evaluate XEN_COMPILE_ARCH and XEN_OS immediately
0c594c1b57 build: evaluate XEN_BUILD_* and XEN_DOMAIN immediately
c0dd53b8cb x86/amd: Fix DE_CFG truncation in amd_check_zenbleed()
fff3c99f84 xen/keyhandler: address violations of MISRA C:2012 Rule 8.3 and drop bool_t
b903f0bfa9 xen/arm: mechanical renaming to address MISRA C:2012 Rule 5.3
388506fa2b xenalyze: remove unused defines
a40c3aa126 xentrace: adjust exit code for --help option
58275ab169 xenalyze: sync with vmx.h, use EXIT_REASON_MCE_DURING_VMENTRY
85b0029082 xenalyze: sync with vmx.h, use EXIT_REASON_VMXON
7eb7f7070c xenalyze: sync with vmx.h, use EXIT_REASON_VMXOFF
06ba087a89 xenalyze: sync with vmx.h, use EXIT_REASON_PENDING_VIRT_INTR
f1ea69ebc8 xentrace: use correct output format for pit and rtc
6b49fdfdb4 xentrace: remove unimplemented option from man page
dbd566ab72 xen/notifier: address violations of MISRA C:2012 Rule 8.3
56cc35e83e xen: change names and type qualifiers in copy_domain_page() declaration
d8bd8d2db4 libxl: Add missing libxl__virtio_devtype to device_type_tbl array
a478b38c01 iommu/vtd: rename io_apic_read_remap_rte() local variable
ef7995ed1b x86/ioapic: RTE modifications must use ioapic_write_entry
cdc48cb5a7 x86/ioapic: add a raw field to RTE struct
15d327e3d6 xen/arm/atomic: change parameter name in atomic_cmpxchg() definition
5e213f0f4d xen/arm32: head: Widen the use of the temporary mapping
3e5918d87a device_tree: address violations of MISRA C:2012 Rules 8.2 and 8.3
48b52e9428 xen/arm: Move TEE mediators in a kconfig submenu
3e55f826f4 tools/xenstore: add wrapper for tdb_fetch()
f56aa985ba tools/xenstore: switch get_acc_data() to use name instead of key
42c71d258e tools/xenstore: rename do_tdb_write() and change parameter type
549c4238b9 tools/xenstore: rename do_tdb_delete() and change parameter type
471c2410c8 tools/xenstore: let transaction_prepend() return the name for access
7185eee09c tools/xenstore: replace key in struct node with data base name
d99cf2f8ee tools/xenstore: explicitly specify create or modify for tdb_store()
0400946d53 automation: Add smoke test for ppc64le
baa6ea7003 vpci: add permission checks to map_range()
cef523b4a7 tools/xenstore: fix get_spec_node()
84f2751e10 tools/xenstore: add const to the return type of canonicalize()
58bba23a28 xen/ppc: Implement early serial printk on pseries
01e0e70c9a tools/console: Add escape argument to configure escape character
f126d7eeba maintainers: Add ECLAIR reviewer
9336df4a3e automation: Add ECLAIR pipelines
5b251cbca0 automation: Add xen builds for the ECLAIR analyses
c4392ec832 automation: Add ECLAIR utilities and settings
37c83b946e xen/kernel: change parameter name in add_taint() definition
357ef53512 xen/event: address violations of MISRA C:2012 Rules 8.2 and 8.3
b8cf4dea3c xen: use parameter name 'mcs' in arch_do_multicall_call()
3d2d4ea026 x86/boot: Update construct_dom0() to take a const char *cmdline
90732a8b4c xen/x86: Use const char * for string literals (2)
9895e33742 x86/hvm: Allow hvm_copy_to_guest_*() to come from const sources
9380f06fe8 xen: Drop the (almost) unused extern start[]
4b2cdbfe76 x86/cpu-policy: Advertise MSR_ARCH_CAPS to guests by default
6d21cedbaa libxl: add support for parsing MSR features
d638fe233c libxl: use the cpuid feature names from cpufeatureset.h
e2b1da9b8f libxl: split logic to parse user provided CPUID features
5b80cecb74 libxl: introduce MSR data in libxl_cpuid_policy
4825d19603 libxl: change the type of libxl_cpuid_policy_list
ed742cf1b6 libs/guest: introduce support for setting guest MSRs
1f8a6a99b2 docs/misra: document the usage of array range initializers
89d7903172 docs: Correct name for xen-command-line.pandoc
1b631a67ac xen/cpu: change parameter name in __cpu_up() declaration
0b1171be87 efi: mechanical renaming to address MISRA C:2012 Rule 5.3
9a51409452 docs/misra: add Rule 1.1 and 5.6
f91c5ea970 x86/amd: Mitigations for Zenbleed
3a4e6f67bc xen/ppc: Set up a basic C environment
0c683baa67 common: Move a few more standalone macros from xen/lib.h to xen/macros.h
f0437c378e x86/cpu-policy: address violations of MISRA C:2012 Rule 8.3 on parameter names
c14254065f libxl: arm: Add grant_usage parameter for virtio devices
0c53c638e1 tools/xenstore: fix XSA-417 patch
65fc6d8c92 x86/mtrr: address violations of MISRA C:2012 Rule 8.3 on parameter types
652d8fbb81 x86/HVM: address violations of MISRA C:2012 Rules 8.2 and 8.3
60576722d0 x86/vRTC: move and tidy convert_hour() and {to,from}_bcd()
cd50483537 xen: address MISRA C:2012 Rule 4.1
1ab2ae1610 xen/arm: ffa: add support for FFA_ID_GET
0dacee5cfb xen/arm: ffa: enforce dependency on 4k pages
246fdc288e xen/arm: ffa: add defines for framework direct request/response messages
aaa416d425 xen/arm: ffa: add flags for FFA_PARTITION_INFO_GET
9b6af1deb2 xen/arm: ffa: add remaining SMC function IDs
38846de217 xen/arm: tee: add a primitive FF-A mediator
3069ecdf36 xen/arm: smccc: add support for SMCCCv1.2 extended input/output registers
12e5c93f9d xen/arm: add TEE teardown to arch_domain_teardown()
2d775ee651 xen: Introduce arch_domain_teardown()
4bf014c6f7 x86/HVM/emul: address violations of MISRA C:2012 Rules 8.2 and 8.3
1046c3900b x86: change parameter name of hvm_monitor_msr() declaration
8301187452 docs/misc: fix document typo
55c48d27bd xen/misra: diff-report.py: fix function invocation
43247f4f23 xen/misra: diff-report.py: Fix UnifiedFormatParser change line registration
b1c16800e5 x86: fix early boot output
8bf52f9d83 xen/riscv: add SPDX tag to config.h
8f324b9664 common: move a few macros out of xen/lib.h
408a191b74 mm/pdx: Mark pdx hole description globals readonly after boot
484e88e31d mm/pdx: Add comments throughout the codebase for pdx
168340ced8 x86/ACPI: correct off-by-1 in SGI MMCFG check
62252f58d0 x86/HVM: adjust pIRQ calculation in hvm_inject_msi()
ee7867c6e4 x86: drop old (32-bit-only) MSR definitions
e04cc8a08d xen/ACPI: Remove acpi_get_pxm() entirely
ceab2c1acd xen/ACPI: Use const char * for string literals
993f0ecb6b xen/ACPI: Remove the acpi_string type
d642c07066 xen/x86: Use const char * for string literals
edecca33f9 xen/common: Use const char * for string literals
813da5f0e7 x86/ioapic: sanitize IO-APIC pins before enabling lapic LVTERR/ESR
b5fc8061b7 x86/mce: change parameter names in function definitions to match the corresponding declarations
3148ef6c7b xen/arm: fix violations of MISRA C:2012 Rule 7.2
d27d274ffa xen/arm: Account for domU dtb bootmodule size separately
028c43902b xen/arm: Fix domain_handle_dtb_bootmodule() error path
80248d526c iommu/ipmmu-vmsa: Add missing 'U' in IMTTLBR0_TTBR_MASK for shifted constant
11961f0a67 xen/arm: pci: fix check in pci_check_bar()
728bdd3a33 docs: Fix style in misc/arm/silicon-errata.txt table
2acec87694 x86/APIC: adjustments to error_interrupt() loop
6960e343d6 x86/APIC: modify error_interrupt() to output using single printk()
013670adf5 x86/APIC: include full string with error_interrupt() error messages
ea96231023 xen: fix violations of MISRA C:2012 Rule 3.1
99e4554893 ocaml/libs/xc: Fix NULL dereference with physinfo_arch_caps()
24909098fd docs/misra: add Rule 9.3
0a834e953b xen: fix violations of MISRA C:2012 Rule 7.2
a665d69e88 ACPI/APEI: fix violations of MISRA C:2012 Rule 7.2
d717825a20 x86/monitor: fix violations of MISRA C:2012 Rule 7.2
952ce1f38f xen/public: fix violations of MISRA C:2012 Rule 7.2
02ccfdcf4a xen/pci: fix violations of MISRA C:2012 Rule 7.2
5e6ad30ee5 xen/efi: fix violations of MISRA C:2012 Rule 7.2
4efde79938 xen/device-tree: fix violations of MISRA C:2012 Rule 7.2
82d3665d65 x86/svm: fix violations of MISRA C:2012 Rule 7.2
46e9277223 AMD/IOMMU: fix violations of MISRA C:2012 Rule 7.2
63077bd042 x86/cpufreq: fix violations of MISRA C:2012 Rule 7.2
08e2372c65 xenoprof: default to off
3c911be55f docs/misra: document the C dialect and translation toolchain assumptions.
2402591437 x86/emul: fix violations of MISRA C:2012 Rule 8.3 on parameter names
67f6063b1b docs/misra: add Rule 7.4 and 9.4
b831326ee2 cmdline: only set ask mode if vga= is present
fd62986f6b iommu/amd-vi: avoid pointless flushes in invalidate_all_domain_pages()
9473d9a241 cmdline: parse multiple instances of the vga option
60474e8e28 multiboot2: do not set StdOut mode unconditionally
c93aa5c5d0 multiboot2: parse vga= option when setting GOP mode
886c22f00c ppc: make also linking work with big-endian tool chain
68c85cf3a8 xenstore: talloc.h needs to include stdarg.h
a00f12055d x86/microcode: Allow reading microcode revision even if it can't be updated
1c139701eb xen/types: Rework stdint vs __{u,s}$N types
fe9e78dbd3 treewide: Avoid including asm/types.h
b2e688730a xen/types: Drop #ifdefary for __{SIZE,PTRDIFF}_TYPE__
8720e7f3a4 x86/asm: Introduce a tailcall pseduo-op
dc5e6082f5 xen/arm: Kconfig: ACPI should depend on UEFI
c2ff2ca3a9 xen/arm: smmuv3: fix violations of MISRA C:2012 Rule 3.1
5c02dbd0e0 xen/include: avoid using a compiler extension for BUILD_BUG_ON_ZERO
ac27b3beb9 build: remove TARGET_ARCH, a duplicate of SRCARCH
a6ab7dd061 build: remove TARGET_SUBARCH, a duplicate of ARCH
58e0a3f3b2 build: define ARCH and SRCARCH later
9b0fc8eeb2 xen/riscv: move extern of cpu0_boot_stack to header
afb775d3e5 xen/riscv: add SPDX tags
01a5814d4e libelf: make L1_MFN_VALID note known
12314be574 xen/arm: make ARM_EFI selectable for Arm64
7604056fb7 xen/arm: remove xen_phys_start and xenheap_phys_end from config.h
91957bf3ff xen/arm: vgic: Add missing 'U' in VGIC_ICFG_MASK for shifted constant
248fbb9ee2 tools/python: Fix memory leak on error path
619fe8a261 tools: Fix ifdef for aarch64 that should include also arm
c16460ff07 xen/arm: mm: Add missing ISB in xen_pt_update()
feaa9aca87 xen/arm: pmap: Add missing ISB in arch_pmap_map()
863a42a0c9 xen/arm: page: Consolidate write_pte() and clarify the documentation
d29a767d04 xen/arm64: head: Add missing isb in setup_fixmap()
f5a49eb7f8 xen/arm32: head: Add mising isb in switch_to_runtime_mapping()
f7c24c2907 xen/arm32: head: Add missing isb in setup_fixmap()
abb1522832 xen/arm: Allow the user to build Xen with UBSAN
7356733f72 xen/arm: Rework the code mapping Xen to avoid relying on the size of Xen
78d2de69e5 xen/arm32: head: Don't map too much in boot_third
804145a161 xen/arm64: head: Don't map too much in boot_third
c53384ea2f xen/arm: grant-table: Correct the prototype of the arch helpers
6e06d229d5 xen: Correct comments after renaming xen_{dom,sys}ctl_cpu_policy fields
f51e5d8eae x86/vlapic: Change parameter names in function definitions
02e294de60 x86/hvm: Change parameter names of nestedhvm_vcpu_iomap_get() definition
f319f32347 x86/hvm: Swap parameter names of hvm_copy_context_and_params() declaration
098e27578b x86: Add Kconfig option to require NX bit support
fc3090a47b x86/boot: Clear XD_DISABLE from the early boot path
91d4159a34 tools: Add __AC() macro to common-macros.h
9dd3caf12f {x86,arm}/mm.c: Make populate_pt_range __init
c81b287e00 xenalyze: Basic TRC_HVM_EMUL handling
aab4b38b5d xenalyze: Handle start-of-day ->RUNNING transitions
6aa0c18062 tools/xenstore: remove unused stuff from list.h
63b6419d2a tools/xenstore: split out rest of live update control code
1a7fafdc74 tools/xenstore: split out environment specific live update code
b2126a992f tools/xenstore: replace xs_lib.c with a header
9859a80380 tools/xenstore: remove no longer needed functions from xs_lib.c
bd1001db0a xen/arm: arm32: Allow Xen to boot on unidentified CPUs
2a6da58442 xen/arm32: vfp: Add missing U for shifted constant
3460987c77 xen/arm64: head: Rework PRINT() to work when the string is not withing +/- 1MB
ef62b34aeb xen/arm64: entry: Don't jump outside of an alternative
2b0af6e398 xen/arm32: head: Remove 'r6' from the clobber list of create_page_tables()
02a11313cd xen/arm: Check Xen size when linking
0adb4147fd xen/arm: tlbflush: fix violations of MISRA C:2012 Rule 3.1
160975b898 docs/misra: rules: Remove incorrect deviation guidance
49ecef9fb4 docs/misra: add Rules 8.2, 8.3, 8.14
5b9c96a808 xen/arm: change parameter names in replace_grant_host_mapping().
06ed62d1f3 xen/arm: make parameter names of function declarations consistent.
98ca99685d xen/arm: vgic: change parameter name in 'init' and 'free' functions.
31f54edf7e xen/arm: change parameter name 'pa' in ioremap_addr() definition.
be17548c00 xen/arm: change parameter name 'vcpu' in domain() function definition.
8f47510b84 xen/arm: change names in function access_guest_memory_by_ipa().
6c32a08e2b x86/vpmu: Simplify is_pmc_quirk
5c84f1f636 xen/decompress: Drop bool_t and use bool instead
ef8d841229 automation: Fix KBUILD_DEFCONFIG for *ppc64le jobs
b1a7c2b297 automation: Add QEMU to bullseye-ppc64le
1ec2f5305b maintainers: Add ppc64 maintainer
125a180741 automation: Add ppc64le cross-build jobs
b0582dd686 xen: Add files needed for minimal ppc64le build
7f314e0aa5 build: Drop CONFIG_$ARCH_$(XEN_OS) definitions
14f42af3f5 x86/vPIT: account for "counter stopped" time
1f70315327 x86/vPIT: re-order functions
a6120e3fc8 x86: Use printk_once() instead of opencoding it
e5ba5165ca xen/evtchn: Purge ERROR_EXIT{,_DOM}()
42473bae23 xen/arm: pl011: Add SBSA UART device-tree support
47e3941d2e xen/arm: pl011: Use correct accessors
4fa2272458 xen/arm: debug-pl011: Add support for 32-bit only MMIO
655d0798d2 xen/arm: debug-pl011: Use correct accessors
314a54c1c2 xen/misra: add rules 1.4 and 2.1
d95f436c7d docs/misra: new rules addition
43e863a02d x86/boot: Clean up early error asm
3a07da55e6 xen/riscv: introduce reset_stack() function
652ccd1f4a xen/riscv: add .sbss section to .bss
c6df21062b Config.mk: update OVMF to edk2-stable202305
82b28deb25 iommu/vtd: fix address translation for leaf entries
ea613d2367 SUPPORT.md: write down restriction of 32-bit tool stacks
a17fd0feb6 automation: Disable QEMU build with Clang older than 10.0
7a25a1501c xen/arm: p2m: Enable support for 32bit IPA for ARM_32
7c72147baa xen/arm: Restrict zeroeth_table_offset for ARM_64
c3aabf7bd2 xen/arm: guest_walk: LPAE specific bits should be enclosed within "ifndef CONFIG_PHYS_ADDR_T_32"
b6733ed0cb xen/arm: Introduce choice to enable 64/32 bit physical addressing
6d44fb48bd xen/arm: p2m: Use the pa_range_info table to support arm32 and arm64
e533438e3d automation: Add container for ppc64le builds
e0586a4ff5 x86/cpu-policy: Derive RSBA/RRSBA for guest policies
36525a964f x86/spec-ctrl: Fix up the RSBA/RRSBA bits as appropriate
724c0d94ff x86/spec-ctrl: Rename retpoline_safe() to retpoline_calculations()
3f63f45104 x86/spec-ctrl: Use a taint for CET without MSR_SPEC_CTRL
921afcbae8 x86/spec-ctrl: Fix the rendering of FB_CLEAR
c4e492a139 xen: Append a newline character to panic() where missing
6044b485ba xen/arm: Remove stray semicolon at VREG_REG_HELPERS/TLB_HELPER* callers
4802e4a44e xen/arm: traps: remove inlining of handle_ro_raz()
1512a68721 xen/grant: Purge PIN_FAIL()
9c0b207001 x86/shadow: Don't use signed bitfield in sh_emulate_ctxt
621625f696 x86/p2m.h: Add include guards
a012a4aba1 Arm: drop bogus ALIGN() from linker script
9e9aec6141 spinlock: alter inlining of _spin_lock_cb()
afbfe55544 libxg: shrink variable scope in xc_core_arch_map_p2m_list_rw()
87c621d0ef libxl: drop dead assignment to transaction variable from libxl__domain_make()
2dbc4d4fb5 libxg: drop dead assignment to "rc" from xc_cpuid_apply_policy()
129aba0e79 libxl: drop dead assignments to "ret" from libxl__domain_config_setdefault()
cf584d27f5 xen-mfndump: drop dead assignment to "page" from lookup_pte_func()
2f69ef9680 tools: fix make rpmball
5ecbb77974 iommu/amd-vi: fix checking for Invalidate All support in amd_iommu_resume()
f29363922c x86: minor tidying of identify_cpu()
f4be887879 livepatch: apply_alternatives() is only used for livepatch
7d5e58730d xen/riscv: add __ASSEMBLY__ guard to asm/page.h
f68f4723ec libxl: Call libxl__virtio_devtype.set_default() early enough
5e3463af07 libxl: virtio: Remove unused frontend nodes
128557e3a4 tools/xenstored: Correct the prototype of domain_max_chk()
1a0342507c tools/libs/store: make libxenstore independent of utils.h
0d5dfd2ed6 tools/libs/store: use xen_list.h instead of xenstore/list.h
84ac67cd1e xen/arm: rename guest_cpuinfo in domain_cpuinfo
b4642c32c4 tools/ocaml/xc: Fix xc_physinfo() bindings
961a63e13b CI: Add Ocaml to the alpine containers
5b02f568d3 tools/xenstore: remove support of file backed data base
2b58b249cd tools/xenstore: remove unused events list
38f430ceb2 tools/xenstore: remove stale TODO file
f28a3b49d3 tools/xenstore: switch write limiting to use millisecond time base
f8f4042b39 tools/xenstore: make some write limit functions static
d78c91c406 tools/xenstore: rename hashtable_insert() and let it return 0 on success
9b2c27e277 tools/xenstore: modify interface of create_hashtable()
d3c7262d75 tools/xenstore: do some cleanup of hashtable.c
ea1e8a2daf tools/xenstore: verify command line parameters better
3a82e4501c tools: Move MASK_INSR to common-macros.h
6915a12064 x86/hvm: print valid CR4 bits in case of error
606bb708e1 CI: Fix the github actions Coverity run
0c2d0d32b3 docs: Fix xl.cfg documentation
685048441e tools/xenstore: switch quota management to be table based
561687f6bc tools/xenstore: switch get_optval_int() to get_optval_uint()
564a093c20 tools/xenstore: use generic accounting for remaining quotas
948be0e94d tools/xenstore: remember global and per domain max accounting values
304ed13b9a tools/xenstore: switch transaction accounting to generic accounting
ff7509c2b7 tools/xenstore: add TDB access trace support
a808657252 tools/xenstore: add accounting trace support
e180d3200a tools/xenstore: use accounting data array for per-domain values
d0740236fd tools/xenstore: add current connection to domain_memory_add() parameters
a4ffaa0824 tools/xenstore: use accounting buffering for node accounting
192e2f6a11 tools/xenstore: add framework to commit accounting data on success only
621949547c tools/xenstore: introduce accounting data array for per-domain values
fbec254545 tools/xenstore: manage per-transaction domain accounting data in an array
887b576ba9 tools/xenstore: take transaction internal nodes into account for quota
cb8b18d49a xen/changelog: Add SVE and "dom0" options to the changelog for Arm
870394de44 xen/arm: add sve property for dom0less domUs
b46e8207d0 xen/tools: add sve parameter in XL configuration
56a7aaa16b tools: add physinfo arch_capabilities handling for Arm
9392bf6a3a xen/physinfo: encode Arm SVE vector length in arch_capabilities
fd53bc7af0 xen: enable Dom0 to use SVE feature
f2095a51ac xen/common: add dom0 xen command line argument for Arm
ac5855d5c7 arm/sve: save/restore SVE context switch
3c6e726241 xen/arm: add SVE exception class handling
c5ff38cdd8 xen/arm: Expose SVE feature to the guest
8043e80de9 xen/arm: add SVE vector length field to the domain
ddcbaa42d8 xen/arm: enable SVE extension for Xen
64a647f8d8 maintainers: Add Xen MISRA Analysis Tools section
1d7c45f895 xen/misra: diff-report.py: add report patching feature
43840b53f6 xen/misra: add diff-report.py tool
b35b22acb8 x86/microcode: Add missing unlock in microcode_update_helper()
a5917ca28b xen: Fix incorrect taint constant
e291c4c3e1 x86emul: AVX512-FP16 testing
b3880c365d MAINTAINERS: remove xenstore related files from LIBS
4f86b96779 build: use $(dot-target)
e3631d797d x86emul: handle AVX512-FP16 conversion to/from (packed) int{32,64} insns
ae11304c59 x86emul: handle AVX512-FP16 floating point conversion insns
59c2c9c2a0 x86emul: handle AVX512-FP16 conversion to/from (packed) int16 insns
d14c52cba0 x86emul: handle AVX512-FP16 complex multiplication insns
520f0acc7a x86emul: handle AVX512-FP16 Map6 misc insns
67d458c84a x86emul: handle AVX512-FP16 fma-like insns
da2e0057c7 x86emul: handle AVX512-FP16 move insns
6b4d5c26a6 x86emul: handle AVX512-FP16 Map5 arithmetic insns
b67934082e x86emul: handle AVX512-FP16 insns encoded in 0f3a opcode map
7c6fdc40a0 x86emul: rework compiler probing in the test harness
67fdffef92 automation: zen3 dom0pvh test
71226054f2 x86/ucode: Exit early from early_update_cache() if loading not available
59d0bf6286 xen/cpu-policy: Add an IBRS -> AUTO_IBRS dependency
064f572f96 x86/cpu-policy: Rearrange guest_common_default_feature_adjustments()
dc98fa7444 xentrace: close output file in the function which opened it
f53c498276 xentrace: remove return value from monitor_tbufs
0e0d3c00bc xentrace: allow xentrace to write to stdout
04f25e9048 vPCI: fix test harness build
7a2f0ba0d0 vPCI: add test harness entry to ./MAINTAINERS
465217b0f8 vPCI: account for hidden devices
445fdc641e xen/include/public: fix 9pfs xenstore path description
0f80a46ffa xen/riscv: remove dummy_bss variable
0d74fc2b2f xen/riscv: setup initial pagetables
ec337ce2e9 xen/riscv: align __bss_start
e66003e7be xen/riscv: introduce setup_initial_pages
efadb18dd5 xen/riscv: add VM space layout
94200e1bae x86/spec-ctrl: Update hardware hints
defaf65163 x86/hvm: Expose Automatic IBRS to guests
8347d6bb29 x86: Add bit definitions for Automatic IBRS
05422d276b build: adjust compile.h compiler version command line
352c917acf x86/vPIC: register only one ELCR handler instance
647377ea06 xen/arm: un-break build with clang
2a8a168150 tools/xenstore: remove deprecated parameter from xenstore commands help
ca045140d9 xen/misra: xen-analysis.py: Fix cppcheck report relative paths
8bd504290b xen/misra: xen-analysis.py: Fix latent bug
e56f2106b6 VMX/cpu-policy: disable RDTSCP and INVPCID insns as needed
233a8f20cf VMX/cpu-policy: check availability of RDTSCP and INVPCID
f54dd5b53e xen: dt: Replace u64 with uint64_t as the callback function parameters for dt_for_each_range()
133f6df947 xen/arm: domain_build: Check if the address fits the range of physical address
adbcc656ff xen/arm: smmu: Use writeq_relaxed_non_atomic() for writing to SMMU_CBn_TTBR0
1407cff85f xen/arm: Introduce a wrapper for dt_device_get_address() to handle paddr_t
3d4b02468a xen/arm: Typecast the DT values into paddr_t
f37a598139 xen/arm: domain_build: Track unallocated pages using the frame number
40cd186bfd x86/hvm/ioreq: remove empty line after function declaration
ee045f3a4a vpci/header: cope with devices not having vpci allocated
67c28bfc52 build: use $(filechk, ) for all compat/.xlat/%.lst
1d3668664d x86/shadow: restrict OOS allocation to when it's really needed
8670cbb0b3 docs: fix complex-and-wrong xenstore-path wording
f642e842d3 build: shorten macro references
354be8936d public: fix comment typo regarding IOREQ Server
053ffa783e x86/iommu: adjust type in arch_iommu_hwdom_init()
56c0063f4e xen/misra: xen-analysis.py: Improve the cppcheck version check
cca2361947 automation: Enable parallel build with cppcheck analysis
511b9f286c x86/spec-ctrl: Remove opencoded MSR_ARCH_CAPS check
205a9f9703 x86/tsx: Remove opencoded MSR_ARCH_CAPS check
8f6bc7f9b7 x86/vtx: Remove opencoded MSR_ARCH_CAPS check
a87d131a8c x86/cpufeature: Rework {boot_,}cpu_has()
bbb289f3d5 x86/boot: Expose MSR_ARCH_CAPS data in guest max policies
70553000d6 x86/boot: Record MSR_ARCH_CAPS for the Raw and Host CPU policy
ce8c930851 x86/cpu-policy: MSR_ARCH_CAPS feature names
d9fe459ffa x86/cpu-policy: Infrastructure for MSR_ARCH_CAPS
43912f8dbb x86/boot: Adjust MSR_ARCH_CAPS handling for the Host policy
ef1987fcb0 x86/boot: Rework dom0 feature configuration
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
62ac94c50d |
runc-opencontainers: update to 1.1.10
Bumping runc to version v1.1.10-2-gf3446b1e, which comprises the following commits:
be887840 VERSION: back to development
18a0cb0f VERSION: release 1.1.10
b426e9b7 libct/cgroups.OpenFile: clean "file" argument
8214e634 libct/cg: support hugetlb rsvd
f8be7009 [1.1] tests/int/helpers: add get_cgroup_path
1f66027a ci/gha: fix downloading Release.key
5a5b2cc3 Fix directory perms vs umask for tmpcopyup
b365458f fix a typo in cloned_binary.c: re-use -> reuse
8f66c9fb fix two typos
016b2b42 Handle kmem.limit_in_bytes removal
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2e11f93ab4 |
crun: update to v1.11.2
Bumping crun to version 1.11.2-7-gff2b74f, which comprises the following commits:
2cc04ea systemd: fallback to system bus
767ba88 Fix build without libcap
98d9cc9 systemd, cgroup: configure cgroups before joining them
ab0edee NEWS: tag 1.11.2
c965462 src: fix codespell error
267f2c5 make: fix clang-format
6e65f5e cgroup: fix crash on cgroup v1 without cpu resources
57e6f9c terminal: adopt ptsname_r POSIX specified return value
6674353 fix: remove the redundant header file
1084f95 NEWS: tag 1.11.1
4cbc9ad linux: force remount with mounts from parent
11f8d3d NEWS: tag 1.11
f8e4f4e cgroup: honor cpu burst
8b44699 systemd: set CPUQuota and CPUPeriod on the scope
5a0ede2 systemd, cgroupv1: set the cpuset data also on the scope
20bb4aa systemd, cgroupv2: set the cpuset data also on the scope
970d20e tests: fix ioprio test
3b874c2 linux: append tmpfs mode if missing for mounts
863008d init: add new function to check file mode
7c3393c cgroup: always use the user session for rootless
c60c9f2 Update nixpkgs
c053c83 NEWS: tag 1.10
2cc7390 linux: new mount option "copy-symlink"
33cabe6 tests: fix test name
9ee3460 linux: fix error propagation
53c28d9 utils: export safe_readlinkat
a549ce0 tests: skip ioprio tests as rootless
1466b7b linux: Fix -Wunused-result compiler warnings when run './configure' only
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c43ce48045 |
moby: update to v24.0.7
Bumping moby to version v24.0.7, which comprises the following commits:
05d7386665 daemon: daemon.containerRestart: don't cancel restart on context cancel
dd37b0b960 vendor: github.com/klauspost/compress v1.17.2
7058c0d24d vendor: github.com/klauspost/compress v1.16.5
57bd388582 daemon: overlay2: Write layer metadata atomically
05d95fd503 daemon: release sandbox even when NetworkDisabled
2783345d3a daemon/c8d: Use non cancellable context in defers
a9e20aeaed daemon/containerd: rename some vars that collided with imports
a8d0a58b24 daemon/containerd: newROLayerForImage: remove unused args
c981f8aff7 daemon/containerd: log errors when releasing leases
73814c48df internal: Add compatcontext.WithoutCancel
535b70e90c Update check-config.sh
dde5995051 vendor: golang.org/x/net v0.17.0
8864727bae vendor: golang.org/x/crypto v0.14.0
81d73e17f7 vendor: golang.org/x/text v0.13.0
d8c62df0b6 vendor: golang.org/x/sys v0.13.0
d7a1fcef8f vendor: golang.org/x/net v0.13.0, golang.org/x/crypto v0.11.0
a22da0d5c4 vendor: golang.org/x/text v0.11.0
85234039a6 vendor: golang.org/x/crypto v0.9.0
9702281ba0 vendor: golang.org/x/sys v0.10.0
01860dc813 vendor: golang.org/x/crypto v0.3.0
daf599ea0a replace dockerfile/dockerignore with patternmatcher/ignorefile
1dffa3a814 vendor: github.com/moby/patternmatcher v0.6.0
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
19039eae0b profiles/apparmor: deny /sys/devices/virtual/powercap
164a1a0f14 oci/defaults: deny /sys/devices/virtual/powercap
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
a215d8320e |
buildah: drop statically linked x86 entrypoint
commit e89fac6c9bf8d0b [Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`] added a statically linked x86 entrypoint binary This entrypoint is not currently used in the tested / supported worflows. To avoid packaging QA warnings on non-x86 architectures, we remove the binary during the compilation phase. If it does need to be rebuilt in the future, buildah's Makefiles will have to be changed to not test the host for architecture support, and use the OE defined target arch and cross compilers instead. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5587dd1535 |
podman: fix documentation build issues
podman commit dfec510b41b5 [go-md2man: use vendored-in version, not
system] removes the shell test for go-md2man, which means our native
executable is not found.
While we could export GOMD2MAN and point it to our sysroot version
(${RECIPE_SYSROOT_NATIVE}/usr/bin/go-md2man), we could run into the
issues with formatting that the podman commit is trying to avoid.
If we pass our build host architecture to the build, it will be
used and the executable created as part of the compilation.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Peter Marko
|
9232b20362 |
grpc-go: Upgrade 1.41.0 -> 1.59.0
CVE: CVE-2023-44487
Bumping grpc-go to version v1.59.0, which comprises the following commits:
7765221f Change version to 1.59.0 (#6695)
e88f12e0 server: prohibit more than MaxConcurrentStreams handlers from running at once (#6703) (#6704)
be7919c3 transport: Pass Header metadata to tap handle. (#6652)
e3f1514c Reapply "status: fix/improve status handling (#6662)" (#6673) (#6688)
696faa98 client: add a test for NewSubConn / StateListener / cc.Close racing (#6678)
318c717a readme: fix badges (#6687)
39972fdd github: add code coverage with codecov.io (#6676)
93dbc059 xds: move virtual host matcher test to the xdsresource package (#6680)
2c004697 github: update actions/setup-go and actions/checkout (#6675)
1f73ed5f Replace the gRFC pull request with the permanent link. (#6674)
9e1fc3e9 Revert "status: fix/improve status handling (#6662)" (#6673)
0772ed73 status: fix/improve status handling (#6662)
1466283c internal/idle: add a test that invokes ClientConn methods concurrently (#6659)
fd9ef726 interop: implement rpc-behavior for UnaryCall() (#6575)
c6264a9f examples: add an example of flow control behavior (#6648)
ee4b62c7 encoding: fix mention of DecompressedSize in docstring (#6665)
09792b58 test: move codec tests to a separate file (#6663)
57cb4d80 internal/backoff: add a helper to run a function with backoff (#6661)
5e4402ff attributes: avoid the use of %#v formatting verb (#6664)
147bd859 balancer: add a warning for balancer names that contain upper case letters (#6647)
4ced6016 googlec2p: remove support for the experimental scheme (#6645)
a758b625 xds/googledirectpath: fix google-c2p resolver test case involving bootstrap env config (#6657)
e61a14d7 fix testing parameter on xds_client_custom_lb_test (#6646)
58e2f2b1 attributes: print typed nil values instead of panic (#6574)
fe0dc227 interop/grpc_testing: regenerate pb.gos (#6653)
130bc428 Improve testutils.MarshalAny (#6617)
3156151a grpclb: teach the manual resolver to handle restarts (#6635)
1457a961 balancer/weightedroundrobin: fix ticker leak on update (#6643)
92f5ba97 xdsclient: completely remove the old WatchCluster API (#6621)
94d8074c grpclb: some minor cleanups (#6634)
1880bd6f resolver/manual: support restarts, required for channel idleness (#6638)
9deee9ba idle: use LB policy close event as a proxy for channel idleness (#6628)
2d1bb21e grpc: ensure transports are closed when the channel enters IDLE (#6620)
552525e5 interop/xds_federation: remove binary file (#6622)
82a568dd cdsbalancer: switch cluster watch to generic xDS client API (#6600)
03172006 health/grpc_health_v1: update pb.go (#6616)
57dcb71f interop/xds: improve error message (#6614)
254bccb3 idle: decrement active call count for streaming RPCs only when the call completes (#6610)
b0a946cf xds: fix hash policy header to skip bin headers and use extra metadata (#6609)
1e0d82e9 balancer/leastrequest: Cache atomic load and also add concurrent rpc test (#6602)
8eb4ac4c grpc: Change server stream context handling (#6598)
e498bbc9 leastrequest: fix data race in leastrequest picker (#6587)
778e6381 balancergroup: improve observability around balancer cache behavior (#6597)
aa6ce35c vet: ensure all usages of grpc_testing package are renamed when importing (#6595)
d045b41c interop/grpc_testing: regenerate pb.gos (#6596)
61b7baa4 grpc_test: rename import for grpc_testing (#6594)
18059002 deps: update dependencies for all modules (#6582)
9362f261 grpc: re-enable channel idleness by default (#6585)
8b1a6710 stream: swallow Header errors as we used to; RecvMsg can still return it (#6586)
23ac72b6 update pb.gos by running regenerate.sh (#6584)
2ce7ecd1 cdsbalancer: test cleanup part 3/N (#6564)
7afbb9b9 Change version to 1.59.0-dev (#6581)
4c9777ce clusterresolver: fix deadlock when dns resolver responds inline with update or error at build time (#6563)
81b9df23 idle: move idleness manager to separate package and ~13s of tests into it (#6566)
7d35b8ec test: speed up TestServiceConfigTimeoutTD from 1.8s to 0.03s (#6571)
d51b3f41 interop/grpc_testing: update protos from grpc-proto repo (#6567)
fe1519ec client: fix ClientStream.Header() behavior (#6557)
8a2c2205 cdsbalancer: test cleanup part 2/N (#6554)
7f66074c vet.sh: fix interface{} check for macos (#6561)
b07bf5d0 cdsbalancer: test cleanup part 1/N (#6546)
33f9fa2e test: speed up two tests (#6558)
aca07ce9 xds/internal/xdsclient: Add least request support in xDS (#6517)
e5d8eac5 test: improve and speed up channelz keepalive test (#6556)
ebf0b4e3 idle: speed up test by 5x even while running 2x more iterations (#6555)
7d3996fd grpctest: use an interface instead of reflection (#6553)
cc705fe4 interop: regenerate pb.gos (#6551)
3e925040 status: optimize GRPCStatus() calls (#6539)
402ba09a pick_first: de-experiment pick first (#6549)
2821d7fa resolver: remove outdated Target examples (#6547)
53d1f23a benchmark: update proper benchmark binary to use larger buffers (#6537)
fbff2abb *: update `interface{}` to `any` and `go.mod` version to `go 1.19` (#6544)
e40da661 clientconn: release lock when returning from enterIdleMode() (#6538)
dbbc983c balancer/leastrequest: Add least request balancer (#6510)
a0100790 *: remove references to old versions of go (#6545)
03d32b9c orca: update example and interop to use StateListener (#6529)
c2bc22c7 testing: update Go versions tested to 1.19-1.21 (#6543)
879faf6b test: update client state subscriber test to be not flaky and more stressful about rapid updates (#6512)
f3e94ec1 xds: improve error message when matched route on client is not of type RouteActionRoute (#6248)
bb410670 balancergroup: do not cache closed sub-balancers by default (#6523)
68704f8e gracefulswitch, stub: remove last UpdateSubConnState references (#6533)
49006996 balancer/rls, xds/wrrlocality: stop forwarding UpdateSubConnState calls (#6532)
ebc3c514 internal/balancergroup: remove usage of UpdateSubConnState (#6528)
5da2731c balancer/weightedtarget: stop forwarding UpdateSubConnState calls (#6525)
182b0add interop/grpc_testing: regenerate protos (#6534)
e2741524 rls: fix flaky test introduced by #6514 (#6535)
61a1f779 balancer/weightedroundrobin: migrate to StateListener (#6530)
175c84c1 xds/ringhash: use StateListener instead of UpdateSubConnState (#6522)
3fa17cc1 test: speed up test that was taking 10 seconds to timeout (#6531)
694cb64c xds/clusterresolver: stop forwarding UpdateSubConnState calls (#6526)
8f51ca8f tests: stop using UpdateSubConnState (#6527)
cea77bb0 xds/clustermanager: stop forwarding UpdateSubConnState calls (#6519)
ce684134 xds/priority: stop forwarding UpdateSubConnState calls (#6521)
dceb6eef xds/clusterimpl: stop forwarding UpdateSubConnState calls (#6518)
8def12a4 xds/outlierdetection: Stop handling UpdateSubConnState forwarding (#6520)
67a8e73f multiple/test: use stub balancer instead of defining wrapped balancers (#6514)
92b481a6 test: allow set request/response size in interop soak test (#6513)
07609e1b benchmark: restore old buffer size values for published benchmarks (#6516)
2059c6e4 grpc: report connectivity state changes on the ClientConn for Subscribers (#6437)
4832debd test: clean up deadlines set in tests (#6506)
9c46304f xds/cdsbalancer: stop handling subconn state updates (#6509)
e9a4e942 base: update base balancer for new APIs (#6503)
6c0c69ef all: replace RemoveSubConn with Shutdown as much as possible (#6505)
28ac6efe xdsclient: make watch timer a no-op if authority is closed (#6502)
d06ab0d4 pickfirst: receive state updates via callback instead of UpdateSubConnState (#6495)
7aceafcc balancer: add SubConn.Shutdown; deprecate Balancer.RemoveSubConn (#6493)
4fe8d3d3 balancer: fix tests not properly updating subconn states (#6501)
8ebe4620 outlierdetection: fix unconditional calls of child UpdateSubConnState (#6500)
5d3d9d7c grpc: perform a blocking close of the balancer in ccb (#6497)
ecc5645b clusterresolver: fix a flaky test (#6499)
b9356e3d client: fix race between connection error and subconn shutdown (#6494)
2db7b17a test/xds: increase default test timeout (#6498)
8f496b2a test/kokoro: Add bootstrap generator test into Go Kokoro script (#6463)
02463732 testutils: remove TestSubConns for future extensibility (#6492)
c6354049 balancer: add StateListener to NewSubConnOptions for SubConn state updates (#6481)
94df716d resolver: State: add Endpoints and deprecate Addresses (#6471)
20c51a9f pickfirst: add tests for resolver error scenarios (#6484)
b8d36caf pickfirst: add prefix logging (#6482)
5ce5686d pickfirst: guard config parsing on GRPC_EXPERIMENTAL_PICKFIRST_LB_CONFIG (#6470)
41d12327 resolver/weighted_round_robin: remove experimental suffix from name (#6477)
2aa26156 clusterresolver: comply with A37 for handling errors from discovery mechanisms (#6461)
d7f45cdf xds/server: create the xDS client when the xDS enabled gRPC server is created (#6446)
f1fc2ca3 clientconn: add channel ID to some idleness logs (#6459)
9bb44fbf transport: use a sync.Pool to share per-connection write buffer (#6309)
d524b409 multiple: update dependencies after 1.57 branch cut (#6452)
7aab9c05 stats: Add RPC event for blocking for a picker update (#6422)
02946a3f resolver: remove deprecated AddressType (#6451)
919fe359 Change version to 1.58.0-dev (#6450)
94890820 github: replace deprecated command with environment file (#6417)
d1868a53 clusterresolver: add logs for dns discovery mechanism error cases (#6444)
8e9c8f8e grpc: do not use balancer attributes during address comparison (#6439)
db32c5bf Fix preloader mode in benchmarks (#6359)
f0280f9d xds: require EDS service name in new-style CDS clusters (gRFC A47) (#6438)
bf5b7aec clusterresolver: handle EDS nacks and resource-not-found errors correctly (#6436)
fc0aa468 client: encode the authority by default (#6428)
11feb0a9 resolver: delete Target.Scheme and Target.Authority (#6363)
df3e0214 status: fix panic when servers return a wrapped error with status OK (#6374)
acbfcbb8 internal/grpcsync: refactor test (#6427)
51042db7 internal/grpcsync: Provide an internal-only pub-sub type API (#6167)
620a118c xds/internal/balancer/clusterimpl: Switch cluster impl child to graceful switch (#6420)
6b8f4274 orca: remove useless log statement (#6424)
ea492f55 xdsclient: indicate authority serverURI in authority + transport logs (#6425)
67e881c3 xds: E2E Test for Audit Logging (#6377)
07718ef6 internal/xds/rbac: Add support for string matcher in RBAC header matching (#6419)
575a9365 xds: Fail xDS Server Serve() if called after Stop() or GracefulStop() (#6410)
7eb57278 xds: switch EDS watch to new generic xdsClient API (#6414)
e8599844 server: with TLS, set TCP user timeout on the underlying raw connection (#5646) (#6321)
1634254a rpc_util: Reuse memory buffer for receiving message (#5862)
789cf4e3 reflection: rename proto imports for disambiguation in import script (#6411)
0673105e clusterresolver: switch a couple of tests to e2e style (#6394)
0b3a81ea clusterresolver: remove priority LB related tests (#6395)
dd931c80 xds: clusterresolver e2e test cleanup (#6391)
10f5b50a [PSM interop] Don't fail target if sub-target already failed (#6390)
963238a6 clusterresolver: move tests around to different files (#6392)
f24b4c7e clusterresolver: remove redundant tests (#6388)
a9c79427 benchmark: Add support for Poisson load in benchmark client (#6378)
dd350d02 stats/opencensus: Fix flaky metrics test (#6372)
642dd63a reflection: expose both v1 and v1alpha reflection services (#6329)
3c6084b7 xds/outlierdetection: fix config handling (#6361)
3e8eca80 Revert "client: encode the authority by default (#6318)" (#6365)
1c0572a5 benchmark: fix package used to reference service to use grpc suffix instead of pb (#6362)
7a7caf36 protoc-gen-go-grpc: Update README.md file (#6349)
89790ea9 grpclb: fix typo (#6356)
907bdaa1 alts: Read max number of concurrent ALTS handshakes from environment variable. (#6267)
2ac1aaed weightedroundrobin: prefer application_utilization to cpu_utilization (#6358)
7aeea8f4 orca: add application utilization and range checking (#6357)
6578ef72 client: handle empty address lists correctly in addrConn.updateAddrs (#6354)
761c084e xds/ringhash: cache connectivity state of subchannels inside picker (#6351)
1b666637 benchmark: Add sleepBetweenRPCs and connections parameters (#6299)
81c513a4 opencensus: stop overwriting ctx parameter in tests (#6350)
68576b3c client: encode the authority by default (#6318)
c9d3ea56 deps: google.golang.org/genproto to latest in all modules (#6319)
02188e64 Change version to 1.57.0-dev (#6346)
8edfa1a1 authz: End2End test for AuditLogger (#6304)
2b1d70be xds: enable RLS in xDS by default (#6343)
47f8ed81 interop: Don't fail target if sub-target already failed (#6332)
1f23f6c2 client: fix Connect to handle channel idleness properly (#6331)
3ea58ce4 client: disable channel idleness by default (#6328)
6c2529bc xds: support pick_first custom load balancing policy (A62) (#6314)
9b9b364f internal/envconfig: Set Custom LB Env Var to true by default (#6317)
e325737c alts: Fix flaky ALTS TestFullHandshake test. (#6300)
4d3f221d xds/internal/xdsclient: Add support for String Matcher Header Matcher in RDS (#6313)
157db190 stats/opencensus: Fix flaky test span (#6296)
f19266cc xds: support built-in Stdout audit logger type (#6298)
59134c30 client: add support for pickfirst address shuffling from gRFC A62 (#6311)
a6e1acfc grpc: support sticky TF in pick_first LB policy (#6306)
2ae10b28 xdsclient: remove interface check related to ResourceData (#6308)
e9799e79 client: support a 1:1 mapping with acbws and addrConns (#6302)
2a266e78 authz: use pointer to to structpb.Struct instead of value (#6307)
511a9635 interop: let the interop client send additional metadata, controlled by a flag (#6295)
9b7a947c grpc: support channel idleness (#6263)
098b2d00 xds/internal/balancer/outlierdetection: Switch Outlier Detection to use new duration field (#6286)
417d4b68 examples: add error_handling example; move errors to error_details (#6293)
390c392f authz: Rbac engine audit logging (#6225)
52fef6da authz: Stdout logger (#6230)
92e65c89 test/kokoro: Add custom_lb_test to the xds_k8s_lb job (#6290)
756119c7 xds/outlierdetection: forward metadata from child picker (#6287)
8eba9c2d github: upgrade to v3 of checkout & setup-go (#6280)
24fd2521 proto: update generated code to match grpc-proto changes (#6283)
4eb88d7d cleanup: use new Duration type in base ServiceConfig (#6284)
1230f0e4 xds/internal/xdsclient: Split registry up and two separate packages (#6278)
0bdae480 interop: fix interop_test.sh shutdown (#6279)
5dcfb37c interop: hold lock on server for OOB metrics updates; share 30s timeout (#6277)
68381e7b xds: WRR in xDS (#6272)
fd376a5c test: fix flaky TimeoutOnDeadServer test; some cleanups (#6276)
1db474c8 weightedroundrobin: fix duration format in lb config (#6271)
523dcddf weightedroundrobin: fix test race accessing timeNow (#6269)
1536887c interop/xds: Add Custom LB needed for interop test (#6262)
7d613442 examples: fix authz example to receive streaming error properly (#6270)
afcbdc9a xds/internal/xdsclient/xdslbregistry: Continue in converter if type not found (#6268)
b3fbd87a interop: add ORCA test cases and functionality (#6266)
5e587344 xds: Add support for Custom LB Policies (#6224)
5c4bee51 balancer/weightedroundrobin: add load balancing policy (A58) (#6241)
c44f77e1 grpc: use CallbackSerializer in balancer wrapper (#6254)
f193ec01 orca: fix race when calling listeners coincides with updating the run goroutine (#6258)
417cf846 test: deflake TestBalancerProducerHonorsContext (#6257)
1f3fe1c8 Update ClientStream.SendMsg doc (#6247)
ccad7b75 grpc: use CallbackSerializer in resolver_wrapper (#6234)
47b3c554 orca: fix race at producer startup (#6245)
56b33d5c server/transport: send appropriate debug_data in GOAWAY frames (#6220)
add90153 orca: allow a ServerMetricsProvider to be passed to the ORCA service and ServerOption (#6223)
40d01479 googledirectpatph: enable ignore_resource_deletion in bootstrap (#6243)
ed3ceba6 balancer: make producer RPCs block until the SubConn is READY (#6236)
b153b006 multiple: standardize import renaming for typed structs (#6238)
713bd041 orca: minor cleanups (#6239)
21a339ce grpc: handle RemoveSubConn inline in balancerWrapper (#6228)
b1538271 xds: make glaze happy for test packages (#6237)
019acf2e stubserver: add option for allowing more services to be registered (#6240)
cf89a0b9 authz: Swap to using the correct TypedConfig in audit logger parsing (#6235)
df821471 internal: Document gcp/observability 1.0 dependencies in /internal (#6229)
da1a5eb2 tests: nix TestClientDoesntDeadlockWhileWritingErroneousLargeMessages (#6227)
e853dbf0 authz: add conversion of json to RBAC Audit Logging config (#6192)
497436ce xds/internal/balancer/outlierdetection: Change string to String (#6222)
de11139a clusterresolver: improve tests (#6188)
eff0942e xds/internal/xdsclient: Custom LB xDS Client Changes (#6165)
8628e075 xds/internal/balancer/outlierdetection: Add Channelz Logger to Outlier Detection LB (#6145)
83c460b8 authz: Move audit package (#6218)
8c70261b grpc: ClientConn cleanup in prep for channel idleness (#6189)
2cd95c75 gcp/observability: remove redundant import (#6215)
16651f60 go.mod: update all dependencies (#6214)
ca604628 stubserver: Stop server when StartClient failed (#6190)
7dfd7183 internal/buffer: add Close method to the Unbounded buffer type (#6161)
ebeda756 tests: defalke TestTimerAndWatchStateOnSendCallback (#6206)
0ed709c4 Change version to 1.56.0-dev (#6213)
875c97a9 examples/features/observability: use observability module v1.0.0 (#6210)
aa8c137d authz: add audit logging APIs (#6158)
b91b8842 gcp/observability: Have o11y module point to grpc 1.54 and opencensus 1.0.0 (#6209)
eab9e20d test/kokoro: increase PSM Security test timeout to 4h (#6193)
d90621f9 remove the unnecessary call to ResetTimer and StopTimer (#6185)
fe72db95 testing: add helpers to start test service, and retrieve port (#6187)
5a50b970 Revert "Revert "credentials/alts: defer ALTS stream creation until handshake …" (#6179)
89ec9609 grpc: read the service config channel once instead of twice (#6186)
6237dfe7 internal/stubserver: Close Client Conn in error handling of Start (#6174)
06de8f85 alts: Add retry loop when making RPC in ALTS's TestFullHandshake. (#6183)
6eabd7e1 server: use least-requests loadbalancer for workers (#6004)
8374ff8f Export the unwrapResource method, to allow callers outside of the package (#6181)
efb2f459 test/xds: Fix test_grpc import path (#6180)
81b30924 security/advancedtls: add TlsVersionOption to select desired min/max TLS versions (#6007)
17b693d7 alts: Perform full handshake in ALTS tests. (#6177)
01f8b866 Add documentation on some anti-patterns (#6034)
3489bb7d xdsclient/test: deflake TestWatchResourceTimerCanRestartOnIgnoredADSRecvError (#6159)
bfb57b8b testing: delete internal copy of test service proto, and use canonical one (#6164)
10401b92 stats/opencensus: the backend to Sent. Attempt. and Recv. (#6173)
b0a8b1b9 Use string instead of enum for xds resource type (#6163)
1d5b73a1 xds: add stop to avoid hanging in TestServeWithStop (#6172)
ea0a0383 xds/xdsclient: ignore resource deletion as per gRFC A53 (#6035)
a51779df xdsclient/test: deflake TestTimerAndWatchStateOnSendCallback (#6169)
e9799199 internal/grpcsync: move CallbackSerializer from xdsclient/internal to here (#6153)
c2899ddd examples/features/observability: Point o11y example to latest gcp/observability module (#6162)
113d75fb gcp/observability: Add isSampled bool to log entries (#6160)
4a125956 stats/opencensus: Switch helper to return Span Context from context (#6156)
c3f1d5e5 gcp/observability: Set the opencensus_task label only for metrics, not tracing and logging (#6155)
42dd7ac9 Use anypb.New instead of ptypes.MarshalAny (#6074)
415ccdf1 go.mod: update all dependencies after 1.54 branch cut (#6132)
a357bafa status: FromError: return entire error message text for wrapped errors (#6150)
44cebb8f xds: enable XDS federation by default (#6151)
c018273e examples: Add observability example (#6149)
277bb642 Revert "credentials/alts: defer ALTS stream creation until handshake time (#6077)" (#6148)
0fdfd402 gcp/observability: Generate unique process identifier unconditionally (#6144)
1d20f1b5 security/advancedtls: swap from deprecated pkix.CertificateList to x509.RevocationList (#6054)
a8a25ce9 transport: use prefix logging (#6135)
9c25653b cdsbalancer: improve log messages (#6134)
a02aae61 CONTRIBUTING.md: remove duplicated bullet point (#6139)
cdab8ae5 clusterresolver: push empty config to child policy upon removal of cluster resource (#6125)
7651e620 transport: add a draining state check before creating streams (#6142)
a2ca46c4 examples: organize READMEs better (#6121)
4efec30e stats/opencensus: remove leading slash for per call metrics (#6141)
78099db0 gcp/observability: Switch hex encoding to string() method (#6138)
70c52915 observability: remove import replace directive and switch it to point to latest commit (#6122)
66e35339 status: handle wrapped errors (#6031)
a75fd73d Change version to 1.55.0-dev (#6131)
b638faff stats/opencensus: Add message prefix to metrics names (#6126)
c84a5005 credentials/alts: defer ALTS stream creation until handshake time (#6077)
6f44ae89 metadata: add benchmark test for FromIncomingContext and ValueFromIncomingContext (#6117)
a1e657ce client: log last error on subchannel connectivity change (#6109)
36fd0a43 gcp/observability: Add compressed metrics to observability module and synchronize View data with exporter (#6105)
52ca9571 xds: make comparison of server configs in bootstrap more reliable (#6112)
7507ea6b gcp/observability: Change logging schema and set queue size limit for logs and batching delay (#6118)
16c3b7df examples: add example for ORCA load reporting (#6114)
b458a4f1 transport: stop always closing connections when loopy returns (#6110)
11e2506c tests: Scale down keepalive test timings (#6088)
5796c409 interop/observability: Pass interop parameters to client/server as-is (#6111)
abd4db22 xdsclient/tests: fix flaky test NodeProtoSentOnlyInFirstRequest (#6108)
3633361c tests: support LRS on the same port as ADS (#6102)
0558239a Update CONTRIBUTING.md (#6089)
22608213 go.mod: upgrade golang.org/x/net to address CVE-2022-41723 (#6106)
60a1aa38 testutils: add support for creating endpoint resources with options (#6103)
92d9e77a xds: NACK route configuration if sum of weights of weighted clusters exceeds uint32_max (#6085)
d02039b6 Deflake the integration test. (#6093)
55d87834 gcp/observability: Link logs and traces by logging Trace and Span IDs (#6056)
ad4057fc transport: stop returning errors that are always nil (#6098)
558e1b6f examples/authz: add token package docstring (#6095)
33df9fc4 credentials/xds: improve error message upon SAN matching failure (#6080)
32921935 xdsclient: handle race with watch timer handling (#6086)
e83e34be xds/resolver/test: use a non-blocking send instead of closing the channel (#6082)
b46bdef1 interop/observability: add GCP Observability Testing Client/Server (#5979)
f3116846 stats/opencensus: New uncompressed metrics and align with tracing spec (#6051)
cc320bf8 grpc: Log server trailers before writing status (#6076)
b9e6d59a xdsclient: send Node proto only on first discovery request on ADS stream (#6078)
ae4a2315 ringhash: ensure addresses are consistenly hashed across updates (#6066)
52dcd147 xdsclient: move tests from `e2e_test` to `tests` directory (#6073)
d8f80bb0 stats/opencensus: Added client api latency and upgrade go.mod (#6042)
a8b32264 gcp/observability: Disable logging and traces on channels to cloud ops backends (#6022)
20141c25 examples: add an example to illustrate authorization (authz) support (#5920)
8c374f76 clusterresolver: cleanup resource resolver implementation (#6052)
1d16ef5b metadata: Lowercase appended metadata (#6071)
8ba23be9 cmd/protoc-gen-go-grpc: bump -version to 1.3.0 for release (#6064)
a1693ec5 fakeserver: remove ADS and LRS v2 support (#6068)
832ecc25 channelz: use protocmp.Transform() to compare protos (#6065)
28b6bcf9 xds/xdsclient: improve failure mode behavior (gRFC A57) (#5996)
d53f0ec3 test: move compressor tests out of end2end_test.go (#6063)
dba41efd metadata: fix validation issues (#6001)
75bed1de test: move e2e health checking tests out of end2end_test.go (#6062)
0586c51d internal/transport: reduce running time of test from 5s to 1s (#6061)
7437662f internal/transport: Fix flaky keep alive test (#6059)
681b1338 admin/test: split channelz imports (#6058)
1093d3ac channelz: remove dependency on testing package (#6050)
3775f633 xdsclient/transport: reduce chattiness of logs (#5992)
6fe609da xdsclient: minor cleanup in eds parsing (#6055)
5353eaa4 testing: add helpers to configure cluster specifier plugin type (#5977)
8702a2eb stats/opencensus: Add top level call span (#6030)
85b95dc6 gcp/observability: Register new views (#6026)
abff344e stats/opencensus: Add per call latency metric (#6017)
0f02ca5c gcp/observability: Switch observability module to use new opencensus instrumentation code (#6021)
6d612a3e resolver: update Resolver.Scheme() docstring to mention requirement of lowercase scheme names (#6014)
30d8c0a0 xds/internal/xdsclient: NACK empty clusters in aggregate clusters (#6023)
081499f2 xds: remove support for v2 Transport API (#6013)
dd12def8 stats/opencensus: Add OpenCensus traces support (#5978)
f4feddb3 github: update tests to use go version 1.20 (#6020)
81534105 client: Add dial option to disable global dial options (#6016)
55dfae6e resolver: document handling UpdateState errors by resolvers (#6002)
ceb3f071 client: Revert dialWithGlobalOption (#6012)
d655f404 internal/transport: fix severity of log when receiving a GOAWAY with error code ENHANCE_YOUR_CALM (#5935)
b81e8b62 metadata: slightly improve operateHeaders (#6008)
e9d9bd04 tests: reduce the degree of stress testing in long running tests (#6003)
f8552261 github: update codeQL action to v2 (#6009)
f69e9ad8 stats/opencensus: Add OpenCensus metrics support (#5923)
3151e834 cmd/protoc-gen-go-grpc: export consts for full method names (#5886)
d6dabba0 xds/server: reduce chattiness of logs (#5995)
09540972 server: expose API to set send compressor (#5744)
a7058f7b xds/csds: switch tests to use the new generic xdsclient API (#6000)
37111547 xdsclient/bootstrap: reduce chattiness of logs (#5991)
d103fc70 xdsclient/xdsresource: reduce chattiness of logs (#5993)
6a707eb1 client: add an option to disable global dial options (#5990)
c813c17a Change version to 1.54.0-dev (#5985)
2a1e9348 server: after GracefulStop, ensure connections are closed when final RPC completes (#5968)
e2d69aa0 tests: fix spelling of variable (#5966)
a6376c98 xds/resolver: cleanup tests to use real xDS client 3/n (#5953)
bf8fc46f xds/resolver: cleanup tests to use real xDS client 5/n (#5955)
3930549b resolver: replace resolver.Target.Endpoint field with Endpoint() method (#5852)
894816c4 grpclb: rename `grpclbstate` package back to `state` (#5962)
e5a0237a encoding: fix duplicate compressor names (#5958)
4adb2a7a xds/resolver: cleanup tests to use real xDS client 2/n (#5952)
52a8392f gcp/observability: update method name validation (#5951)
4075ef07 xds: fix panic involving double close of channel in xDS transport (#5959)
7bf6a58a gcp/observability: Cleanup resources allocated if start errors (#5960)
bc9728f9 xds/resolver: cleanup tests to use real xDS client 4/n (#5954)
6e749384 xds/resolver: cleanup tests to use real xDS client (#5950)
9b9b3812 server: fix a few issues where grpc server uses RST_STREAM for non-HTTP/2 errors (#5893)
ace80823 xdsclient: close func refactor (#5926)
9326362a transport: fix maxStreamID to align with http2 spec (#5948)
4e4d8288 xds interop: Fix buildscripts not continuing on a failed test suite (#5937)
379a2f67 *: add missing colon to errorf messages to improve readability (#5911)
cde2edce Revert "xds interop: Fix buildscripts not continuing on a failed test suite (#5932)" (#5936)
78ddc05d xdsclient: fix race in load report implementation (#5927)
2a9e970f xds interop: Fix buildscripts not continuing on a failed test suite (#5932)
9228cffc rls: fix a data race involving the LRU cache (#5925)
be06d526 binarylog: consistently rename imports for binarylog proto (#5931)
bf3ad352 *: update all dependencies (#5924)
6de8f50f transport: drain client transport when streamID approaches maxStreamID (#5889)
42b7b633 stats/opencensus: OpenCensus instrumentation api (#5919)
974a5ef8 grpc: document defaults in MaxCallMsgSize functions (#5916)
9b73c42d test/xds: add tests for scenarios where authority in resource name is not specified in bootstrap config (#5890)
3b2da532 xdsclient: handle resource not found errors correctly (#5912)
f2fbb0e0 Deprecate use of `ioutil` package (#5906)
8ec85e42 priority: improve and reduce verbosity of logs (#5902)
12b8fb52 test: move e2e HTTP header tests to http_header_end2end_test.go (#5901)
f1a9ef9c stream: update ServerStream.SendMsg doc (#5894)
c90744f1 oauth: mark `NewOauthAccess` as deprecated and update examples to use `TokenSource` (#5882)
0e5421c1 internal/envconfig: add convenience boolFromEnv to improve readability (#5887)
4565dd70 ringhash: allow overriding max ringhash size via environment variable (#5884)
94a65dca rls: deflake tests (#5877)
08479c5e xdsclient: resource agnostic API implementation (#5776)
07ac97c3 transport: simplify httpClient by moving onGoAway func to onClose (#5885)
5ff7dfcd rls: propagate headers received in RLS response to backends (#5883)
f94594d5 interop: add test client for use in xDS federation e2e tests (#5878)
68b388b2 balancer: support injection of per-call metadata from LB policies (#5853)
4f16fbe4 examples: update server reflection tutorial (#5824)
b2d4d5db test: fix raceyness check to deflake test http server (#5866)
54b7d03e grpc: Add join Dial Option (#5861)
70617b11 vet & github: run vet separately from tests; make vet-proto only check protos (#5873)
81ad1b55 *: update all dependencies (#5874)
357d7afc Change version to 1.53.0-dev (#5872)
a0e8eb9d test: rename race.go to race_test.go (#5869)
ae86ff40 benchmark: fix typo in ClientReadBufferSize feature name (#5867)
e53d28f5 xdsclient: log node ID with verbosity INFO (#5860)
9373e5cb transport: Fix closing a closed channel panic in handlePing (#5854)
2f413c45 transport/http2: use HTTP 400 for bad requests instead of 500 (#5804)
5003029e testutils: do a better job of verifying pick_first in tests (#5850)
3e27f899 binarylog: Account for key in metadata truncation (#5851)
f54bba9a test/xds: minor cleanup in xDS e2e test (#5843)
a9709c3f Added logs for reasons causing connection and transport close (#5840)
aba03e1a xds: pass options by value to helper routines which setup the management server in tests (#5833)
638141fb examples: add feature/cancellation retry to example test script (#5846)
22c1fd2e deps: update golang.org/x/net to latest in all modules (#5847)
19490352 ringhash: add logs to surface information about ring creation (#5832)
f7c110af test: remove use of deprecated WithInsecure() API (#5836)
a2054471 examples: add new example to show updating metadata in interceptors (#5788)
001d234e rls: Fix regex in rls test (#5834)
73619713 rls: use a regex for the expected error string (#5827)
617d6c8a security/advancedtls: add test for crl cache expiration behavior (#5749)
ef51864f grpclb: improve grpclb tests (#5826)
fa99649f xdsclient: deflake new transport ack/nack tests (#5830)
99ba9823 transport/server: flush GOAWAY before closing conn due to max age (#5821)
20c937ee transport: limit AccountCheck tests to fewer streams and iterations to avoid flakes (#5828)
110ed9e6 xdsclient: resource-type-agnostic transport layer (#5808)
c91396d4 pickfirst: do not return initial subconn while connecting (#5825)
94f0e7fa benchmark: add a feature for read and write buffer sizes (#5774)
087387ca Deflake Outlier Detection xDS e2e test (#5819)
dd123b7f testutils/pickfirst: move helper function to testutils (#5822)
be202a26 examples: add an example to illustrate the usage of stats handler (#5657)
9f97673b test: move e2e goaway tests to goaway_test.go (#5820)
0fe49e82 grpc: Improve documentation of read/write buffer size server and dial options (#5800)
09fc1a34 interop: update Go version in docker container used for psm interop (#5811)
adfb9155 server: fix ChainUnaryInterceptor and ChainStreamInterceptor to allow retrying handlers (#5666)
e0a9f111 reflection: split grpc and pb imports (#5810)
6f96f961 reflection: update proto (#5809)
6e43203e reflection: generate protobuf files from grpc-proto (#5799)
0abb6f9b xdsclient: resource type agnostic WatchResource() API (#5777)
3011eaf7 test/tools: update staticcheck version to latest (#5806)
fefb3ec0 test/tools: update everything to latest versions except staticcheck (#5805)
50be6ae2 go.mod: update all dependencies (#5803)
ff146806 Cap min and max ring size to 4K (#5801)
0238b6e1 transport: new stream with actual server name (#5748)
817c1e8c passthrough: return error if endpoint is empty and opt.Dialer is nil when building resolver (#5732)
56ac86fa xdsclient: wait for underlying transport to close (#5775)
457c2f54 benchmark: use default buffer sizes (#5762)
689d061d Cleanup usages of resolver.Target's Scheme and Authority (#5761)
5331dbd3 outlierdetection: remove an unused variable in a test (#5778)
81db2506 Change version to 1.52.0-dev (#5784)
72812fe3 gcp/observability: filter logging from cloud ops endpoints calls (#5765)
0ae33e69 xdsclient: remove unused test code (#5772)
824f4491 go.mod: upgrade x/text to v0.4 to address CVE (#5769)
7f23df02 xdsclient: switch xdsclient watch deadlock test to e2e style (#5697)
32f969e8 o11y: Added started rpc metric in o11y plugin (#5768)
b597a8e1 xdsclient: improve authority watchers test (#5700)
e41e8940 orca: create ORCA producer for LB policies to use to receive OOB load reports (#5669)
36d14dbf Fix binary logging bug which logs a server header on a trailers only response (#5763)
fcb8bdf7 xds/google-c2p: validate url for no authorities (#5756)
040b795b xdsclient/e2e_test: use SendContext() where appropriate (#5729)
0d6481fb target: replace parsedTarget.Scheme to parsedTarget.URL.Scheme (#5750)
fdcc01b8 transport/test: implement staticcheck suggestion (#5752)
aa44ccaf google-c2p: use new-style resource name for LDS subscription (#5743)
c858a770 balancer/weightedtarget: fix ConnStateEvltr to ignore transition from TF to Connecting (#5747)
64df6526 google-c2p: include federation env var in the logic which determines when to use directpath (#5745)
3c09650e balancer/weightedtarget: use ConnectivityStateEvaluator (#5734)
3fd80b0c Fix flaky test MultipleClientStatsHandler (#5739)
26071c24 google-c2p resolver: add authority entry to bootstrap config (#5680)
9127159c client: synchronously verify server preface in newClientTransport (#5731)
f51d2126 xdsclient: improve RDS watchers test (#5692)
7c168026 tests: refactor tests to use testutils helper functions (#5728)
28fae96c xdsclient: improve federation watchers test (#5696)
f88cc659 xdsclient: improve EDS watchers test (#5694)
439221d8 xdsclient: add a convenience type to synchronize execution of callbacks (#5702)
dbb8e2bf xdsclient: improve CDS watchers test (#5693)
79ccdd8f clientconn: go idle if conn closed after preface received (#5714)
778860e6 testing: update Go to 1.19 (#5717)
eb8aa319 weightedtarget: return a more meaningful error when no child policy is reporting READY (#5391)
bb3d7394 fakeserver: add v3 support to the xDS fakeserver implementation (#5698)
912765f7 xds: move bootstrap config generating utility package to testutils (#5713)
f52b910b o11y: Fixed o11y bug (#5720)
00d1830c Fix o11y typo (#5719)
e163a908 xds/xdsclient: add EDS resource endpoint address duplication check (#5715)
9eba5743 xds: de-experimentalize google c2p resolver (#5707)
8b3b10bd gcp/observability: implement public preview config syntax, logging schema, and exposed metrics (#5704)
8062981d vet: workaround buggy mac git grep behavior (#5716)
e81d0a27 xdsclient: improve LDS watchers test (#5691)
7b817b4d client: set grpc-accept-encoding to full list of registered compressors (#5541)
c6724519 xds/xdsclient: add sum of EDS locality weights check (#5703)
c03925db priority: release references to child policies which are removed (#5682)
5fc798be Add binary logger option for client and server (#5675)
12db695f grpc: restrict status codes from control plane (gRFC A54) (#5653)
202d355a Change version to 1.51.0-dev (#5687)
1451c62c internal/transport: optimize grpc-message encoding/decoding (#5654)
be4b63b1 test: minor test cleanup (#5679)
d83070ec Changed Outlier Detection Env Var to default true (#5673)
54521b22 client: remove trailing null from unix abstract socket address (#5678)
36e48107 orca: cleanup old code, and get grpc package to use new code (#5627)
e8866a83 build: harden GitHub Workflow permissions (#5660)
8458251c xdsclient: ignore routes with cluster_specifier_plugin when GRPC_EXPERIMENTAL_XDS_RLS_LB is off (#5670)
a238ceba xDS: Outlier Detection Env Var not hardcoded to false (#5664)
b1d7f56b transport: Fix deadlock in transport caused by GOAWAY race with new stream creation (#5652)
9c3e589d rls: delegate pick to child policy as long as it is not in TransientFailure (#5656)
7da8a056 xds: Enable Outlier Detection interop tests (#5632)
21f0259e test: loosen metadata error check to reduce dependence on exact library errors (#5650)
552de120 orca: fix package used to reference service to use pb suffix instead of grpc (#5647)
87d1a90a orca: fix package used to reference service to use grpc suffix instead of pb (#5645)
60eecd91 metadata: add ValueFromIncomingContext to more efficiently retrieve a single value (#5596)
2ebd5943 Documentation/proxy: update due to Go 1.16 behavior change (#5630)
1530d3b2 gcp/observability: fix End() to cleanup global state correctly (#5623)
f7d20367 xds: add Outlier Detection Balancer (#5435)
182e9df1 Grab comment from proto file, similar to protoc-gen-go (#5540)
60a3a7e9 cleanup: fixes for issues surfaced by vet (#5617)
99ae81bf roundrobin: optimization of the roundrobin implementation. (#5607)
aee9f0ed orca: server side custom metrics implementation (#5531)
ddcda5f7 alts: do not set WaitForReady on handshaker RPCs (#5620)
d875a0e8 xdsclient: NACK cluster resource if config_source_specifier in lrs_server is not self (#5613)
c351f37d chore: remove duplicate word in comments (#5616)
f0f9f00f test/kokoro: enable pod log collection in the buildscripts (#5608)
1dd02563 ringhash: implement a no-op ExitIdle() method (#5614)
fe592260 clusterresolver: deflake eds_impl tests (#5562)
d5dee5fd xds/ringhash: make reconnection logic work for a single subConn (#5601)
b225ddaa transport: update http2 spec document link (#5597)
641dc871 transport: add peer information to http2Server and http2Client context (#5589)
02fbca0f xds/resolver: generate channel ID randomly (#5591)
97cb7b16 xds/clusterresolver: prevent deadlock of concurrent Close and UpdateState calls (#5588)
c56f196d internal/fakegrpclb: don't listen on all adapters (#5592)
3f5b7ab4 internal/transport: fix typo (#5566)
c11858e8 Publish arm64 binaries to GitHub releases (#5561)
802b32e0 Change version to 1.50.0-dev (#5585)
92cee344 gcp/observability: Add logging filters for logging, tracing, and metrics API calls (#5582)
c7fe135d O11Y: Added support for custom tags (#5565)
7981af40 test/kokoro: add missing image tagging to the xDS interop url map buildscript (#5569)
6f34b7ad xdsclient: NACK endpoint resource if load_balancing_weight is specified and is zero (#5568)
f9409d38 ringhash: handle config updates properly (#5557)
946dde00 xdsclient: NACK endpoint resources with zero weight (#5560)
b89f49b0 xdsclient: deflake Test/LDSWatch_PartialValid (#5552)
9bc72deb grpc: remove mentions of WithBalancerName from comments (#5555)
a077b946 Switched unlock to defer in newAddrConn (#5556)
57aaa10b test: move clientconn state transition test to test/ directory (#5551)
23f015c3 priority: sync priority with child in use (#5549)
c14e29e6 rls: suppress picker updates from children when handling config updates (#5539)
02f1a7ac grpc: prevent a nil stats handler from causing a panic (#5543)
1ec054bb transport/server: fix race that could cause a stray header to be sent (#5513)
2f60cb8b test: improve the logic for checking round_robin (#5534)
fd4700cf xdsclient: cleanup listener watchers test (#5506)
e72cb1c1 xdsclient: organize existing contents better with new files (#5533)
b695a7f2 test/interop: increase pick_first timeout (#5529)
9a689dc4 xdsclient: change receiver on BootstrapConfig() to be consistent (#5532)
ae261b06 xds: Fixed GoLang regression for Outlier Detection (#5537)
fdc5d2f3 xds/clustermanager: pause picker updates during UpdateClientConnState (#5528)
86117db5 balancer/weightedtarget: pause picker updates during UpdateClientConnState (#5527)
679138d6 gcp/observability: Add support for Environment Variable GRPC_CONFIG_OBSERVABILITY_JSON (#5525)
d0f3c561 interop client: fixes for interop soak test (#5502)
6dd40ad6 Change the log-level when a new ServerTransport cannot be created (#5524)
f601dfac test/kokoro: Add missing secondary_kube_context to xds LB tests (#5508)
3a77d291 xdsclient: fix LRS stream leaks when errors are encountered (#5505)
30d54d39 client: fix stream creation issue with transparent retry (#5503)
96aa657b xds: readd NewXDSResolverWithConfigForTesting() (#5504)
4f47c8c1 test/xds: wait for all ACKs before forcing stream restart (#5500)
a094a109 Fix race between activeStreams and bdp window size (#5494)
5e15eac0 xdsclient: handle empty authority in new style resource names (#5488)
c4023787 doc: remove comment about obsolete GRPC_GO_RETRY env var (#5495)
9ba66f1b xdsclient: use top-level server list if authority specific list is empty (#5491)
e02f27d9 internal: move baseContentType comment where it should be (#5486)
50170888 internal/xds: generate an entry in the authorities map with empty string key (#5493)
2c0949c2 all: update to 'go 1.17' to enable module graph pruning (#5477)
38df45ca xdsclient: move XDSClient interface definition to client.go (#5479)
03fee09e balancer: fix connectivity state aggregation algorithm to follow the spec (#5473)
0d04c6f5 ringhash: don't recreate subConns when update doesn't change address information (#5431)
a6dcb714 xdsclient: don't reset version info after stream restart (#5422)
8c494a9a Change version to 1.49.0-dev (#5484)
5770b1de xds: drop localities with zero weight at the xdsClient layer (#5476)
423cd8e3 interop: update proto to make vet happy (#5475)
c9b16c88 transport: remove unused `bufWriter.onFlush()` (#5464)
755bf5a1 fix typo in the binary log (#5467)
15739b5c health: split imports into healthpb and healthgrpc (#5466)
c075d201 interop client: provide new flag, --soak_min_time_ms_between_rpcs (#5421)
4b750055 clusterresolver: merge P(p)arseConfig functions (#5462)
d883f3d5 test/xds: fail only when state changes to something other than READY and IDLE (#5463)
c6ee1c71 xdsclient: only include nodeID in error strings, not the whole nodeProto (#5461)
06ad0b82 internal/proto: remove obsolete test and service_config.pb.go (#5459)
5cdb09fa outlierdetection: fix package level comments (#5457)
28de4866 interop: update grpc_testing proto (#5451)
b288a240 interop testing: log the peer address in interop soak client (#5419)
3e7b97fe xds/priority: bug fix and minor behavior change (#5417)
29d9970c xds: Outlier Detection configuration in Cluster Resolver Balancer (#5371)
1dabf545 test/kokoro: use standard TESTING_VERSION in the new framework builds (#5434)
f14d6112 resolver: minor improvements to AddressMap (#5426)
c0198a9c ringhash: use grpctest.Tester in unit tests (#5428)
f229f9c7 weightedroundrobin: update comments to indicate where addrInfo is stored (#5427)
71f16a1d internal/proto: pull in recent changes to service config proto (#5424)
584d9cd1 gcp/observability: update log name (#5414)
9ee2f146 gcp/observability: Implement tracing/metrics via OpenCensus (#5372)
34e4fc3b rls: use UNAVAILABLE instead of status from control plane (#5400)
a0d5484e interop: remove duplicated xDS tests in GCE framework (#5395)
ca5cc0bc credentials/google: support new-style xDS cluster names (#5399)
cbcceaf7 gracefulswitch: fix exit idle race (#5384)
ea86bf74 stats: add support for multiple stats handlers in a single client or server (#5347)
13b378bc internal: add global DialOptions and ServerOptions for all clients and servers (#5352)
70a80552 xds/priority: clean up tests (#5387)
e41f8685 test/xds: move tests to a package with _test suffix (#5382)
da6ef005 xds/clusterresolver: reuse child policy names for the same locality (#5367)
6e253e8a interop: update proto by running regenerate.sh (#5381)
a45cd25f xds: Enable aggregate and logical dns clusters by default (#5380)
c0e35731 xds: move e2e tests into grpc/test/xds directory (#5363)
c6c0a06d Change version to 1.48.0-dev (#5379)
ed752259 Don't call cmp in non testing file (#5370)
081c6884 client: fix hctx leakage in addrConn.createTransport (#5337)
30b9d59a client/SubConn: do not recreate addrConn if UpdateAddresses is called with the same addresses (#5373)
459729d6 xds/priority: avoid sending duplicate updates to children (#5374)
9f4b31a1 Added HTTP status and grpc status to POST check (#5364)
333a441e xds/ringhash: update connectivity state aggregation, and make sure at least one SubConn is connecting in TF (#5338)
e23132c6 Added support for metadata matcher invert (#5345)
d9b952b1 xds/resolver: use correct resource name in log message (#5357)
db79903a xds/priority: start the init timer when a child switch to Connecting from non-transient-failure state (#5334)
462d8676 xds: Add Outlier Detection configuration and CDS handling (#5299)
5c46f1aa xdsclient/csds: fix leaked metadata (#5339)
ee67b3d8 xds: Handle loops and ignore duplicates in aggregated cluster handling (#5317)
799605c2 client: fix potential panic during RPC retries (#5323)
78b13f27 xds/client: hold authority mutex before making a new authority (#5331)
de73b2b6 examples: improve error messages (#5329)
dc86d5de internal/proto: update generated code (#5332)
7567a5d9 documentation: fix typo in RegisterCodec godoc (#5306)
3bf6719f test/interop: register RLS to the interop test client (#5272)
8d68434c gcp/observability: correctly test this module in presubmit tests (#5300)
ebd09839 xds/eds: reject EDS resources with multiple instances of the same locality in the same priority (#5303)
9711b148 server: clarify documentation around setting and sending headers and ServerStream errors (#5302)
924e4849 server: return better status for context err when writing header (#5292)
5682cc6a Change version to 1.47.0-dev (#5298)
4467a29d gcp/observability: implement logging via binarylog (#5196)
18fdf542 cmd/protoc-gen-go-grpc: allow hooks to modify client structs and service handlers (#5240)
337b815c interop: build client without timeout; add logs to help debug failures (#5294)
e583b196 xds: Add RLS in xDS e2e test (#5281)
0066bf69 grpc: perform graceful switching of LB policies in the `ClientConn` by default (#5285)
3cccf6a4 xdsclient: always backoff between new streams even after successful stream (#5280)
4e780933 xds: ignore routes with unsupported cluster specifiers (#5269)
99aae344 cluster manager: Add Graceful Switch functionality to Cluster Manager (#5265)
42cadc17 test: cleanup balancer switching tests (#5271)
b6873c00 grpc: move to `TransientFailure` in `pick_first` LB policy when all addresses are removed (#5274)
474948a9 github: run all testing jobs to completion even if one fails (#5282)
c57d2b13 clientconn: fix target parsing tests to be tolerant to new url.URL field OmitHost (#5279)
562e12f0 test: use channelz instead of stats handler to determine RPC count (#5275)
e63e1230 advancedtls: remove the usage of CDP in CRL enforcement (#5218)
3a74cd52 balancergroup: Add trigger point to gracefully switch a child (#5251)
34660d10 test: use `t.Fatal` instead of `panic` for service config parsing errors (#5266)
96bdede4 pickfirst: cleanup tests (#5263)
e49486de test: add a test for clientConn close with pending RPC (#5264)
2fccb822 metadata: copy slices in FromContext() functions (#5267)
9d088969 github: update to test with Go 1.18 (#5262)
597e5d1b don't apply defaultSC upon receipt of invalid service config (#5257)
51ddcbad xds: suppress redundant updates only when we are SERVING (#5258)
4635bf28 make the RLS LB policy name available in the internal package (#5259)
50d0d0a5 server: set TCP_USER_TIMEOUT socket option for linux (#5219)
7840bd63 grpc: add a comment explaining why updateClientConnState is handled inline (#5261)
7ea4af98 internal/googlecloud: refactor OS-dependent code (#5239)
1ffd63de binarylog: generalize binarylog's MethodLogger preparing for new observability features (#5244)
63bdcbcc xds/interop: add xds_k8s_lb test suite (#5250)
89f31959 interop/client: simplify fallback test client and parameterize fallback deadline (#5248)
8078d1d5 balancergroup: Switched subBalancerWrapper to wrap a gracefulswitch.Balancer (#5245)
6131e9d4 examples: regenerate certs to use SHA256 signing algorithm (#5256)
f95b001a xds: avoid log spam during server mode switches (better A36 compliance) (#5215)
97c31434 xds/client: accept resources wrapped in discoverypb.Resource message (#5242)
6c3ccbe8 grpc: remove remaining usages of grpc.WithInsecure() (#5246)
fbe4ccbc xds/client: include Node ID in error messages from the XdsClient (#5223)
c4cabf78 grpc: handle invalid service configs by applying the default if available (#5238)
94ee3865 test: cleanup roundrobin tests to use stubserver (#5236)
23cc28fd security/authorization: upgrade cel-v0.10.1 and fix breaking API change. (#5243)
84793b56 xds/client: reset backoff when a message is received, even when the message is invalid (#5241)
722367c4 proto: regenerate proto to pick up latest (#5237)
eead9a82 grpc: delete deprecated API WithBalancerName() (#5232)
cf6d4d5a grpc: document ClientConn fields (#5227)
431ea809 internal/balancer: Add graceful switch LB policy (#5207)
63af9747 internal: update service config proto (#5222)
87b0a8d6 test: use real grpc.Server in call tests (#5213)
6b15b135 channelz: replace deprecated timestamp API with recommended ones (#5212)
6f314bd7 reflection: add comments on protos (#5209)
328efcc9 example: add mutual TLS example (#5194)
e601f1ae fix: does not validate metadata keys and values (#4886)
a73725f4 channelz: include channelz identifier in logs (#5192)
02f384d4 xds: rename rls proto import (#5205)
fd1f9881 Change version to 1.46.0-dev (#5204)
011544f7 authz: add additional logs to sdk authz (#5094)
18564ff6 reflection: improve server implementation (#5197)
ec717cad xds: minor cleanup in xdsclient bootstrap code (#5195)
ebc30b8f reflection: use protobuf/reflect instead of go reflection, fix dynamic messages (#5180)
46009ac9 transport: Add an Unwrap method to ConnectionError (#5148)
75fd0240 remove sdk term from grpc authz (#5191)
a354b1ee channelz: rename NewChannelzStorage to NewChannelzStorageForTesting (#5190)
0e055491 Format directory/file references (#5184)
c44f627f cleanup: replace grpc.WithInsecure with insecure.NewCredentials (#5177)
91967153 xds/priority: log warnings instead of errors (#5185)
1a633098 xds: Add support for Outlier Detection configuration in xdsclient (#5183)
2af7b5e6 xds/interop: update RPC timeout in blackhole after fallback case (#5174)
f664adfe benchmark: update client to include xds library (#5169)
c7f7d3a7 xds/bootstrap: add plugin system for credentials specified in bootstrap file (#5136)
2209ed9e cmd/protoc-gen-go-grpc: add hooks to allow overriding generated code (#5056)
f68fb05c leakcheck: ignore http read/write goroutine (#5182)
98079086 rls: support `routeLookupChannelServiceConfig` field (#5176)
593ff8d0 rls: service field in RLS request must not contain slashes (#5168)
e2fc510d internal/proto: update generated code (#5172)
3b70fe08 xds: fix broken test "unknown field EnableLRS in struct" (#5170)
d31dbe7a xds/resource: accept Self as LDS's RDS config source and CDS's EDS config source (#5152)
0a68f8af xds/federation: support federation in LRS (#5128)
61a6a06b server: handle context errors returned by service handler (#5156)
e2771749 xds/bootstrap: escape authority when populating resource name template (#5160)
231ca3b2 security/advancedtls: fix CRL issuer comparison (#5130)
449f1b22 grpclb: rename LB policy config field to `serviceName` (#5166)
546e6aeb proto: incorporate recent service config proto definition changes (#5167)
5b376823 Let helloworld example listen to all hosts (#5089)
9cb41138 xdsclient: make Close() idempotent (#5149)
6f54b5dd recommend the use `go test` commands instead of `make test` (#5151)
fa62572a rls: make the data cache purge ticker a field in rlsBalancer (#5154)
f93e8e67 rls: return status error from server interceptor in test (#5153)
61a352e9 rls: move RLS LB policy implementation out of internal (#5143)
475c62a8 testing: fix potential problems in testFlowControlAccountCheck (#5105)
5350e746 xds/controller: fix test nil panic on stream errors (#5144)
eb6ff1ae xds: update RPC timeout in blackhole case (#5126)
aad573d8 rls: LB policy implementation (#4992)
a0029942 internal/proto: update generated code (#5125)
c1198288 xdsclient: allow overriding grpc.Dial function for the xDS controller. (#5108)
f231ac52 wrr: improve randomWRR performance (#5067)
0145b50c use insecure.NewCredentials() instead of grpc.WithInsecure (#5087)
b49c0c99 xds/clusterresolver: set ClusterName for DNS child (#5119)
9353ae3b credentials/google: stub out the oauth package in test (#5118)
13c41bce Change version to 1.45.0-dev (#5122)
77b478d7 xds/federation: e2e tests (#5103)
907a202a attributes: document that some value types (e.g. `map`s) must implement Equal (#5109)
2fb1ac85 test: fix potential goroutine leak in TestUpdateAddresses_RetryFromFirstAddr (#5023)
afded723 xds/federation: update xdsclient to support multi authority (#5042)
b0694409 credentials/google: use grpctest.Tester for tests in this package (#5098)
fbaf7c55 authz: update representation of allow authenticated in SDK (#5052)
344b93a2 testdata: use SHA256 as signing algorithm in testdata certs (#5074)
4d58dd98 dialoptions.go: Fix WithBlock godoc (#5073)
78df8ec0 test/kokoro: Use xds-test-server-5 as the GCE interop server (#5071)
db9fdf70 insecure: remove experimental notice (#5069)
b3d19efe rls: move the data cache implementation into the rls package (#5060)
ec7cf6c9 grpclb: fix possible nil before conversion in TestDropRequest (#5022)
8ae11f46 grpc: minor improvement on WithInsecure() document (#5068)
7506755e internal/resolver: fix possible goroutine leak in TestSafeConfigSelector (#5058)
956c5948 rls: minor config processing changes (#5061)
c285fc70 cmd/protoc-gen-go-grpc: update version for release (#5070)
51835dc0 xds: Remove WithBlock option from the fallback test client (#5066)
ce152f20 xds: Add xds dependency to the fallback test client (#5062)
029b8227 xds: Add RLS Cluster Specifier Plugin (#5004)
50f82701 rls: control channel implementation (#5046)
7c8a9321 testing: fix goroutine leak in TestClientUpdatesParamsAfterGoAway (#5024)
a32d2778 xds/client: send connection errors to all watchers (#5054)
c18e2a28 cmd/protoc-gen-go-grpc: update google.golang.org/protobuf to v1.27.1 (#5053)
5d90b32d authz: fix regex expression match (#5035)
fd4e3bdc xds: Added env var for RLS in xDS (#5050)
bd707697 test: cleanup roundrobin_test (#5005)
d35aff3c xds/federation: resource name parsing (#4991)
62f73ecd xds/client: move xdsclient.New tests to controller.New (#5037)
40916aa0 transport: better error message when per-RPC creds fail (#5033)
1ec7a893 xds/client: send NewStream errors to the watchers (#5032)
ccc060cb grpclog.DepthLoggerV2: Correct comment: formats like fmt.Println (#5038)
a722e6aa xds/c2p: replace C2P resolver env var with experimental scheme suffix (#5044)
f5dc086d internal/balancergroup: eliminate race in exitIdle (#5012)
ac4edd2a Change version to 1.44.0-dev (#5041)
3786ae17 xds/resolver: Add support for cluster specifier plugins (#4987)
512e8947 rls: support extra_keys and constant_keys (#4995)
f3bbd120 xds/bootstrap_config: add a string function to server config (#5031)
46935b96 fix possible nil before casting (#5017)
c2bccd0b xds/kokoro: install go 1.17, and retry go build (#5015)
872a6f12 xds/c2p: fix default client resource template, and xds-client target scheme (#5010)
58beff18 balancergroup: add method to exitIdle a sub-balancer (#4994)
6f8796bc rls: double import rls protos (#5003)
d542bfce status: support wrapped errors in FromContextError (#4977)
f45e6179 rls: move pb.gos to grpc/internal/proto/grpc_lookup_v1 (#4993)
295d7e66 internal: move leakcheck to t.Cleanup (#4989)
23becb71 examples: Fix server port in route_guide example to work with client (#4975)
bdf8336f xds/client: cleanup Dump to remove unnecessary version field (#4978)
b2317c76 test/kokoro: rename xds_k8s to psm-security as part of tech-debt cleanup and name clarity (#4979)
cf8b64e2 internal: add log when service config is disabled (#4973)
6e79bc8a xdsclient: add Cluster Specifier Name to Route (#4972)
82d8af8b balancer: add Authority field to balancer.BuildOptions (#4969)
ea068ed2 rpc_util: Change error message to indicate size after decompression (#4918)
d61c7ae8 internal: merge xds/envconfig into env package (#4923)
6a896a3e pickfirst: check b.sc before calling Connect (#4971)
52d94167 xds/client: move transport_helper from xdsclient to a separate struct (#4968)
6603e730 xds: Added validation and construction of RBAC matcher engine to ParseConfig (#4964)
d57363ab xds: Add Cluster Specifier Plugin to xdsclient (#4967)
dd767416 grpc: implement WithInsecure() using the insecure package (#4718)
c25a52b7 config: remove retry disable via environment variable (#4922)
714ba8d5 xds: move balancergroup and weightedtarget our of xds directory (#4966)
14ebd917 lint: fix some unused parameter issues (#4956)
59e024e4 xds/client: move watchers from xdsclient to a separate struct (#4963)
bac0a7e4 transport: pass handshake info with attributes to custom dialers (#4938)
82c28251 xds/federation: support new bootstrap fields and protect them by an env var (#4936)
c53203c5 xds/federation: support populating resource template in xds-resolver (#4900)
79e9c957 xds/client: move unmarshal functions and types to a separate package (#4904)
3fa19881 internal: update pb.go (#4962)
878cea23 kokoro: Enable xds authz_test (#4954)
5841c8c7 xds/balancergroup: remove xds dependency from balancergroup (#4955)
3b94303f grpc: stabilize WithConnectParams DialOption (#4915)
c105005d xds: NACK missing route specifier server side (#4925)
670c133e transport/http2_server : Move up streamID validation in operate headers (#4873)
29deb6bf xds/bootstrap: refactor to support top level and per-authority server config (#4892)
1163cfab xds: move LocalTCPListener to internal/testutils (#4920)
467630fc examples: remove usage of WithBlock in examples (#4858)
6d465fe9 grpclb: move restartableListener to testutils (#4919)
d6aca733 Change version to 1.43.0-dev (#4912)
bb655a91 internal: update rls.pb.go (#4913)
2d7bdf2d xds: Set RBAC on by default (#4909)
d47437c9 xds: Fix invert functionality for header matcher (#4902)
9fa26982 xds/csds: populate new GenericXdsConfig field (#4898)
6e8625df doc: promote WithDisableRetry to stable; clarify retry is enabled by default (#4901)
f1d87c14 client: properly disable retry if GRPC_GO_RETRY=off (#4899)
03753f59 creds/google: fix CFE cluster name check (#4893)
4f21cde7 authz: support empty principals and fix rbac authenticated matcher (#4883)
f00baa6c resolver: replace AddressMap.Range with Keys (#4891)
2a312458 client: don't force passthrough as default resolver (#4890)
bd0f8815 grpclb: recover after receiving an empty server list (#4879)
0d503075 xds/priority: handle new low priority when high priority is in Idle (#4889)
fbf9b563 grpc: stabilize WithDefaultServiceConfig and improve godoc (#4888)
3b1d3e48 examples: update load balancing example to use loadBalancingConfig (#4887)
01ed6485 update go.mod to point to latest cncf/udpa repo (#4884)
3d9e9c42 logging: enable json logging in xds server container (#4885)
4757d024 xds: Make regex matchers match on full string, not just partial match (#4875)
d590071c status: clarify FromError docstring (#4880)
36d87572 attributes: add Equal method; resolver: add AddressMap and State.BalancerAttributes (#4855)
3db1cb09 xds/clusterimpl: fix SubConn wrapper returned by picker during race (#4876)
7e5fcc68 rls: update rls proto (#4877)
3bae5f5b xds: use protos from cncf/xds instead of cncf/udpa (#4866)
aaff9e7a grpc: better RFC 3986 compliant target parsing (#4817)
45097a8a Revert "kokoro: remove expired letsencrypt.org cert and update" (#4860)
2fe71180 xds/e2e: move flag check to each test, and call t.Skip() (#4861)
ea41fbfa examples: unix abstract socket (#4848)
6c56e211 grpclb: add `target_field` to service config (#4847)
49f63887 grpclog: support formatting output as JSON (#4854)
b99d1040 authz: create file watcher interceptor for gRPC SDK API (#4760)
03ca7b7d Added logs to rbac (#4853)
524d10cb kokoro: source test driver install script from core repo (#4825)
b9d7c74e xds: local interop tests (#4823)
404d8fd5 Added imports for HTTP Filters (#4850)
d16cfedb Rename env var (#4849)
4bd99953 xds: suppress redundant resource updates using proto.Equal (#4831)
ee479e63 creds/google: replace NewComputeEngineCredsWithOptions with NewDefaultCredentialsWithOptions (#4830)
02da6251 github: increase timeout for codeql and disable for PRs (#4841)
f2974e77 kokoro: remove expired letsencrypt.org cert and update (#4840)
f068a13e server: add missing conn.Close if the connection dies before reading the HTTP/2 preface (#4837)
09970207 xds: remove race in TestUnmarshalCluster_WithUpdateValidatorFunc (#4836)
b9f62538 rls: pull proto changes made in grpc-proto/pull/98 (#4832)
69e1b54d test: fix stayConnected to call Connect after state reports IDLE (#4821)
127c052c credentials/google: introduce a new API `NewComputeEngineCredsWithOptions` (#4767)
2ae5ac16 xds: nack if certprovider instance name is missing in bootstrap config (#4799)
adb21c46 rls: improve config parsing (#4819)
e6d0d281 internal: log SubConn type if it's not the expected type (#4813)
34df1b42 xds: Small RBAC Changes defined in A41 (#4818)
75f1d4b9 transport: call stats handler for trailers before closeStream (#4816)
08927214 xds/rds: NACK unknown route action cluster specifier (#4788)
710419d3 advancedtls: add revocation support to client/server options (#4781)
4555155a xds: Small changes at xDS RBAC Layer (#4815)
689f7b15 transport: logic specified in A41 to support RBAC xDS HTTP Filter (#4803)
11437f66 test: add option to make httpServer wait for END_STREAM; fix RetryStats race (#4811)
6ff68b48 channelz: recommend using admin.Register instead (#4797)
78d3aa8b grpc: cleanup parse target and authority tests (#4787)
83a34615 xds: have separate tests for RBAC on and off (#4807)
d7208f02 github: set a shorter timeout on testing jobs (#4806)
32cd3d61 interop: don't use WithBlock dial option in the client (#4805)
d623accd xds: fix parent balancers to handle Idle children (#4801)
e6246c22 server: optimize chain interceptors (-1 allocation, -10% time/call) (#4746)
458ea764 xds: Added validations for HCM to support xDS RBAC Filter (#4786)
1f12bf44 transport: fix a typo in http2_server.go (#4745)
606403de transport: fix log spam from Server Authentication Handshake errors (#4798)
616977cc Change version to 1.42.0-dev (#4793)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Peter Marko
|
11d15351a2 |
grpc-go: add grpc to CVE_PRODUCT
Some cves are reported with "cpe:2.3🅰️grpc:grpc:*:*:*:*:*:go:*:*" See https://nvd.nist.gov/vuln/detail/CVE-2023-44487 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
92a7e8ec46 |
kernel: allow configuration to be skipped .. but warn
Allow the kernel include file to be skipped, even if a kernel is capable of merging and using the fragments in the layer and kernel-cache. Setting SKIP_META_VIRT_KERNEL_INCLUDE="t" in a kernel bbappend, or in a configuration file will inhibit the generated / detected include file. BUT If that opt-out is done, we warn, as the user has explicitly disabled safeguards that help ensure that subtle runtime issues aren't introduced. BUT If someone really knows what they are doing, they don't want the warning to be present in each build. So setting META_VIRT_KERNEL_CHECK_WARNING_INHIBIT="t" will inhibit the message. At that point, you have jumped through all the hoops and you are free to ensure your kernel configuration is correct using other means. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
f7bffb351c |
docs: add SECURITY.md and rename README.md
To be compliant with the recent yocto project security processes, add a SECURITY.md file that explains what to do if an issue is detected. This also renames README to README.md to be similar to other layers. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Joshua Watt
|
115f6367f3 |
classes/image-oci: Map image architecture correctly
OCI requires that the architecture [1] be a valid GOARCH [2]. To correctly perform this mapping, use the go library code from OE core. [1]: https://github.com/opencontainers/image-spec/blob/main/config.md#properties [2]: https://go.dev/doc/install/source#environment Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
185d07f863 |
kernel/yocto-cfg-fragments: update to 6.5 kernel
Bumping the standalone fragments recipe to pickup the latest 6.5 fragments. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Joshua Watt
|
4275f25388 |
classes/image-oci-umoci: Replace ":" in image file name
The OCI_IMAGE_TAG variable can contain a ":" if the user wants to give
the image a name and a tag, as in:
OCI_IMAGE_TAG = "${IMAGE_BASENAME}:latest"
However, while this is valid for tag name, the ":" is illegal in OCI
image file names so replace it with "_" when naming the symlinks
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Changqing Li
|
d1d50f9861 |
cni: clean dir ${B}/plugins before do_compile
Clean dir ${B}/plugins before do_compile to avoid cni generated binaries
like /usr/libexec/cni/bridge has wrong dynamic linker path and reports
error like: /usr/libexec/cni/bridge: no such file or directory".
Reproduce steps:
1. bitbake cni
2. enable usrmerge feature in local.conf
3. bitbake cni
After step 2, GOBUILDFLAGS changed,
"-I /lib64/ld-linux-aarch64.so.1" -> "/usr/lib/ld-linux-aarch64.so.1"
But "go build" seems only check if the cached packagefile changed, since
all not changed, the dynamic linker still use the old one, maybe go
build should improve this.
Clean dir ${B}/plugins to trigger rebuild of the binaries here.
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Kai Kang
|
e26e780674 |
runv: set COMPATIBLE_HOST
runv rdepends on qemu, so update COMPATIBLE_HOST for runv to accord with qemu. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
710f858012 |
umoci & buildah & podman-tui: mark incompatible with mips
Since the runtime dependency skopeo has been marked incompatible with mips, mark for umoci accordingly. buildah and podman-tui rdepends on podman which has been marked incompatible with mips, so mark for them too. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Joshua Watt
|
e133bbf7bb |
classes/image-oci-umoci: Allow labels to have spaces
Quote the label argument passed to umoci to allow it to correctly handle
spaces. Note that this requires that OCI_IMAGE_LABELS have the argument
quoted with single quotes, as in:
OCI_IMAGE_LABELS = "org.opencontainers.image.description='${SUMMARY}'"
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Joshua Watt
|
d8a2857633 |
classes/image-oci-umoci: Allow environment variables to have spaces
Quote the environment variable argument passed to umoci to allow it to
correctly handle spaces. Note that this requires that OCI_IMAGE_ENV_VARS
have the argument quoted with single quotes, as in:
OCI_IMAGE_ENV_VARS = "FOO='bar bat'"
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Leonard Anderweit
|
28e044b98e |
podman-compose: Actually update to v1.0.6
Commit |
||
|
Bruce Ashfield
|
d9af8d1514 |
podman: update to 4.7.1
Bumping libpod to version v4.7.1-6-g85b5f5723, which comprises the following commits:
d1cb93d79 rtd: implement v2 build file
8d045d4c9 Adjust to path name change for resolved unit
eb5b5dbc8 Switch version to 4.7.2-dev
ef83eeb9c New version: v4.7.1
cc5acabf0 Update RELEASE_NOTES.md for v4.7.1
456450438 compat API: speed up network list
a2efda96d inspect: ignore ENOENT during device lookup
f931f08a7 test/system: --env-file test fixes
297a66c30 Revert "feat(env): support multiline in env-file"
46a85e054 Revert "docs(env-file): improve document description"
6afddf430 Revert "fix(env): parsing --env incorrect in cli"
c5ca7e5fc [CI:DOCS] update swagger version on docs.podman.io
51ee25d3f Fix locale issues with WSL version detection
4d15c88a9 switch version to 4.7.1-dev
073183fe1 Bump to v4.7.0
44f727fb0 [CI:DOCS] v4.7.0 RELEASE_NOTES update
2d32314d2 rpm: remove gvproxy subpackage
a2697c028 packit: tag @containers/packit-build team on copr build failures
54ce0ca7c specgen, rootless: fix mount of cgroup without a netns
d2f9af717 pass --syslog to the cleanup process
133e3a4f2 fix --authfile auto-update test
2c62815e1 version: switch back from -rc1 to -dev
7845dd175 New pre-release: v4.7.0-rc1
49f76e95e [CI:DOCS] Update release notes for v4.7.0-rc1
fa6f94001 Cirrus: Update operating branch
0728a10c6 Move podman build opts to common file
8a9f778e2 Add ability for machine rm -f for WSL
919dce131 Plumbing to run machine tests with hyperv
ade0c4932 CI: trace setup and runner scripts
c37443e8b Bump to Buildah v1.32.0
9b36f334d [CI:DOCS] bump release notes on main with the latest release
cae110f8b fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc5
4a2a423df Add --filter pod= autocompletion
075cf2254 e2e: ExitCleanly(): manual test fixes
db5adca73 e2e: continuing ExitCleanly(): just the replacements
c689fb4a5 Fix some spelling and formatting
522e0f43f Add support for Ulimit in quadlet
b1e3e8d97 Run codespell on code
6b7f718b4 wire in new buildah build options
f9aba28ca make golangci-lint happy
c1b6effac add !remote tag to pkg/specgen/generate
3acee29cf pkg/specgen: do not depend on libimage for remote
2c2299ad8 bump buildah to latest
bf86ed72c [CI:DOCS] restart.md: migrate to container unit
304b22729 fix(deps): update module k8s.io/kubernetes to v1.28.2
4ed3273f6 Add support for PidsLimit in quadlet
70560f916 Add DNS fields to Container and Network unit groups
777b5efa4 [CI:DOCS] update API docs version list
7b9114023 Try to fix broken CI (gvisor-something)
df011f437 e2e: more ExitCleanly(): manual test fixes
cb1cb338c e2e: more ExitCleanly(): dumb string replacements
62ac96e12 e2e: create_test: use ExitCleanly()
b0f77acd1 e2e: diff_test: use ExitCleanly()
5920bfa2e The `podman init` command cannot modify containers.
639a1a029 bump c/common to latest main
806c5de12 Podmansh: use podmansh_timeout
eefaa512a e2e: more ExitCleanly(): low-hanging fruit
9b17d6cb0 vendor: update checkpointctl to v1.1.0
cdcf18b86 kube: add DaemonSet support for generate
75b4679a7 vendor of containers/(common, storage, image)
19bd9b33d libpod: move oom_score_adj clamp to init
4f017236e e2e: commit_test: use ExitCleanly()
3a4be5e90 e2e: container_clone_test.go: use ExitCleanly()
8cb14e54a e2e: use ExitCleanly() in cleanup_test.go
925794c6a Ensure HC events fire after logs are written
65a64da27 [CI:DOCS] podman-systemd.unit: fix equivalents
d9a85466a Add support for kube TerminationGracePeriodSeconds
5eb0a53a0 Update podman-kube-play.1.md.in
c2cd93cdc Split up alt binaries to speed up build
7bf9f302a Switch installer task to EC2
fbbad0439 pod: fix duplicate volumes from containers.conf
0c75eac63 tests: add test for pod cgroups
b8f6a12d0 libpod: create the cgroup pod before containers
331b3c216 cmd, specgen: allow cgroup resources without --infra
83334fb4e specgen: allow --share-parent with --infra=false
5de8f4aba libpod: allow cgroup path without infra container
5121c9eb0 libpod: check if cgroup exists before creating it
38209ef49 libpod: refactor platformMakePod signature
627ac1c96 libpod: destroy pod cgroup on pod stop
9a347619d utils: export MoveUnderCgroup
556db46a6 libpod: refactor code to new function
65bddfcd2 e2e: use ExitCleanly() in checkpoint tests
479680232 [CI:DOCS]Remove use of --latest|-l from tutorial
afeab39d1 CI test runner: upgrade tests rely on system tests
59bd6a74a run --rmi: "cannot remove" is a warning, not an error
70cf9740f StopContainer: display signal num when name unknown
6f913f5f3 URGENT: fix broken CI
b83485022 Add support for kube securityContext\.procMount
589867d71 podman: don't restart after kill
2d7d8d1d1 Tmpfs should not be mounted noexec
c2575f726 sys tests: run_podman: check for unwanted warnings/errors
1211518e8 chore(deps): update dependency setuptools to ~=68.2.0
465150f10 e2e: use ExitCleanly() in attach & build tests
27495981c Some distros do not default to docker.io for shortname searches
30abd7f1a security: accept empty capabilities list
c32cfb1d0 systests: random_free_port: fix EADDRINUSE flake
a5798e9f5 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
dbfc3e7e0 Restrict fcos_test to amd64, arm64
7b2fc5f8d fix(deps): update github.com/containers/libhvee digest to 56fb235
0a913d578 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
f9fd40221 fix(deps): update module golang.org/x/tools to v0.13.0
71549c642 Ignore spurious container-removal errors
e5bf0f96d fix(deps): update module golang.org/x/net to v0.15.0
fdf694fcf systests: manifest zstd test: lots of tiny cleanups
9730c0373 vendor: update github.com/opencontainers/runc to main
e825bd5d5 [skip-ci] Update actions/checkout action to v4
8b4a79a74 linux, rootless: clamp oom_score_adj if it is too low
681b6db3f machine: increase max number of inotify instances
302d15334 fix(deps): update module golang.org/x/term to v0.12.0
f094884c1 Remove redundant nil checks in system connection remove
17037af48 fix(deps): update module golang.org/x/text to v0.13.0
1d51cd14a fix(deps): update module golang.org/x/sys to v0.12.0
f542d21a7 fix(deps): update github.com/containers/libhvee digest to 2bf7930
d4fedb288 docs(readme): fix a broken link
50cd072bf [CI:BUILD] Podman FCOS image from main
58a0b7ac8 Update golang.org/x/exp digest to d852ddb
fe7bafb83 Add port forwarding and gvproxy machine test
702709a91 libpod: do not parse --hostuser in base 8
13342e503 fix: default typo
3a6fc8d2b Add Japanese locale and translation of index
39c5b7fac remove rh.container.bot@gmail.com
a62abfe3d Tweaks and cleanups to prepare hyperv for CI
a0738e7e6 system tests: housekeeping: various small fixes
4082b67f6 CI: e2e: first use of new ExitCleanly() matcher
6cbd17c0f CI: e2e: new ginkgo matcher, ExitCleanly()
da1246d58 CI: e2e: fetch the standard system-test image
d20b5869f kube play: fix pull policy
18d35b612 Fix gidmap command in example
e66c04c1f vendor containers/common@12405381ff
b95ae3b4a manifest,push: support add_compression from containers.conf
1085177fe hyperv ignition: use gvforwarder instead of vm
2a8e6acec Set remote username earlier for hyperv
26cefcbf9 Added an additional troubleshooting problem and solution
a3c2d6ad2 Remove a dependency on libimage from pkg/bindings
f1c24df4f Rename parameter in pkg/bindings
259ab8594 Remove a dependency on libimage from pkg/api/handlers
4cac1d3bc Don't re-inspect an image
99834947d Cirrus: Remove multi-arch podman image builds
91b8bc7f1 uid/gid mapping flags
18c2a2be8 [DOC] Clarify default behaviour on uidmap
60e3b5ef1 Update containers/common to latest
fe3c4562f update libhvee
1b45fd723 /_ping handler: return OSType http header
2dbb0b096 e2e: fix race condition (kube play + logs)
fe11db1e8 Update module github.com/vbauerster/mpb/v8 to v8.6.0
7ef97fa49 Kube - support List documents
346e5e52e kube down/play --replace: handle absent objects
0938ee189 push, manifest-push: --force-compression must be true with --compression-format
4b347609d oci: print stderr only after checking state
461230c49 Updated docs to reflect pod spec sysctls support added in v4.6
b8146a8a2 [CI:BUILD] Packit: Disable unexpected journal message check for cockpit-podman
a6f2f5854 [CI:BUILD] Packit: Restrict cockpit tests to recent Fedoras
b6b300c79 Update machine init/set tests
da81bc13a Add rootful status to machine inspect
d3618719b Dedup and refactor image acquisition
adf34cbd7 Share podman sock bindings with other WSL distros
db95e678a Fix user-mode validation check
d898ae7f9 system tests: try to fix sdnotify flakes
ecf9f9fd8 Cirrus: Disable only hello multiarch build
f32e954b8 Set StopTimeout for service-container started under podman kube play
d2ec127c1 Set StopTimeout for compat API if not set by client
6f284dbd4 podman exec should set umask to match container
2c5c2d213 [CI:BUILD] Packit: run cockpit-podman tests in PRs
52ed7fce2 Add infra-name annotations to kube gen/play
a5f6a4a3b kube: notifyproxy: close once
7a94f8c12 system service: unset NOTIFY_SOCKET
638f994c2 Update module k8s.io/kubernetes to v1.28.1
7c9c96981 API attach: return vnd.docker.multiplexed-stream header
60e58f059 test/apiv2/60-auth.at: use `doesnotexists.podman.io`
61dd7f80c e2e tests: use registry:2.8.2 (was 2.8)
243f365aa create apiutils package
c5b4eb943 api docs: document stream format
70f77efef Revert "Remove `hello` multi-arch image build"
82bd56be7 manifest-push: add support for --force-compression
469ace091 push: add support for --force-compression
202cc433a Update module github.com/onsi/ginkgo/v2 to v2.12.0
7e0130f75 Remove `hello` multi-arch image build
1b0e64a10 hack/perf/system-df.sh: add `df` benchmarks
148d95d8d Expand env variables for cmds/entrypoint with format $(ENV)
e092f887f vendor c/storage@6902c2d
c416e4576 Ignore the resource limits on cgroups V1 rootless systems
9e680cbc6 Fixups for stopping gvproxy
21c9517b5 Revert "GHA: Closed issue/PR comment-lock test"
f0e8e79c9 GHA: Closed issue/PR comment-lock test
5477fd38a GHA: Add workflow to lock closed issues/PRs
75ce47347 [CI:DOCS] update auto-update docs
85d0df330 chore(deps): update dependency containers/automation_images to v20230816
bc35e28c0 fix(deps): update module github.com/google/uuid to v1.3.1
3d00744d2 libpod: sum per-interface network stats for FreeBSD
5eee8825e Set default Umask for `podman kube play`
ef8f4db81 [CI:BUILD] rpm: spdx compatible license field
e9539768c chore(deps): update dependency golangci/golangci-lint to v1.54.2
63a8926e9 Implement automatic port reassignment on Windows
45ce4834a Add support for ramfs as well as tmpfs in volume mounts
bdc304058 Validate current generation of WSL2 with user-mode-networking
67756ac60 use container restart policy if user specifies one
0772d8ddb Stop gvproxy on hyperv machine stop
50136ea86 [CI:BUILD] rpm: depend on man-db
36e09f18b Update machine list test
8b2990131 Update machine start tests
c3dbfa9a1 Update machine rm tests
c726cf810 libpod: improve conmon error handling
ed1f514d5 cirrus setup: install en_US.UTF-8 locale
8f85aaf07 fixup "podman logs with non ASCII log tag" tests
27b41f087 libpod: use /var/run instead of /run on FreeBSD
9b4f1cdb9 cirrus/lib.sh: extend env to passthrough at start for locale work
ff66f31dd libpod: correctly pass env so alternative locales work
29c298856 cgroups_linux: use SessionBusPrivateNoAutoStartup
362747cfa podmansh man page UID=$(id -u lockedu) is not allowed
e38cf33a6 CI: systests: remove pasta ICMP tests
7103fdb3f podman.1.md: Fix formatting of exit code 127, clarify wording of `exit code` example.
896cab612 document available secret drivers
53dd37cc4 pkg/specgen: add support for read-only root on FreeBSD
d5841ed52 add --module flag
6a3f09e8a Update dependency setuptools to ~=68.1.0
1d5890bcd Add riscv64 architecture to the cross build target
252f51de8 GetFcosArch add `riscv64` arch
98e7d7af0 Update WSL backend to be compat with FCOS defaults
9e14e3ebe enabled hyperv image downloads
3e2e360b9 fix(deps): update module github.com/containers/ocicrypt to v1.1.8
abd35d4d3 [CI:DOCS] Fix git build example in build page
0c52d1004 CI: e2e manifest_test: use image from quay
31dc42224 Cirrus: Remove EC2 experimental flag
4c7546cb3 sphinx: skip options include dir
345b9b029 Update rootfs.md: Fix formatting and wording of idmap option
f33b01b73 fix: Docker API compatible bool deserialization
4cb2d48ca Revert "compat,build: pull must accept string"
68bd81470 Add missing verb in machinectl example
78d6cd4c9 [CI:DOCS] Update Release Notes and Release Process
b6349017a chore(deps): update dependency golangci/golangci-lint to v1.54.1
4b80492bd fix podman top missing output flake
5908999e6 New partial-line test is flaking
555b4f930 [CI:BUILD] Packit: add back fedora-eln targets
f0dac3677 Cirrus: Prune defunct job + fix noop alias
1947f035c Bump bundled gvproxy to 0.7.0
df28df1ae systests: tests for --env and --env-file
bcebcad1f Update system connection add & remove
310f971fc Add tests for podman farm
dce3ef3c4 Add podman farm update command
44a704dfc Add podman farm remove command
59a8140f1 Add podman farm list command
6fcdf1a19 Add podman farm create command
1d5ef29f0 Add podman farm subcommand
23d5b5008 CI: e2e: add delay before podman logs or journalctl
2951316b2 Add completion for Farms
b672ddc79 Vendor c/common changes
3963c5639 chore(deps): update dependency golangci/golangci-lint to v1.54.0
a55c2636d file logger: fix podman logs --tail with partial lines
7ce654fea fix(env): parsing --env incorrect in cli
4c4bc0922 Update docker.io/library/golang Docker tag to v1.21
f55c48ad3 podman stop --cidfile missing --ignore
7ef03517f Skip podman exec cannot be invoked on Debian
95ceacefb Re-enable checkpoint test on Debian SID
c193dbd94 Require a non-generic reason for non-Fedora skip
d79e3a23d CI FIXME removal/update.
5ec856652 Update dependency containers/automation_images to v20230807
7988dd82c [skip-ci] Update dawidd6/action-send-mail action to v3.8.0
8a410784b [CI:DOCS] fixed couple typos in build docs
282594e58 Stop timer in function waitPidStop
7c0bccaf7 packit: Build PRs into default packit COPRs
afaeedef7 Add support for host-gateway
2de22ebf0 Ensure volumes-from mounts override image volumes
03d7a5120 Minor: Include shasums in GHA workflow artifacts
d63ac0652 Minor: Add important comment to windows GHA workflow
9d7fe4e90 Minor: Update/fix dry-run input descriptions
518daef72 [CI:DOCS] Quadlet - provide more information about network files
819129b0d man-page xref: check for duplicate entries
39641482c cp: close temporary file on error path
018fdb48e Makefile: work around the lack of 'man -l' on FreeBSD
0b7769fda Update module golang.org/x/net to v0.14.0
ec5a9b9cc libpod: fix a crash in 'kube generate' on FreeBSD
23c5890f2 remove temporary files when copy [NO NEW TESTS NEEDED]
fab62f816 Update module golang.org/x/sys to v0.11.0
b46d72fec [ci] Remove the podman socket in remove_packaged_podman_files()
706c51b52 [ci] Correct the podman systemd file names
dd4f47dd9 Always show RemoteSocket.Exists in json
fc7c6efd3 Fail if ssh key exists
69e883493 Fix regression for hyperv
803a49da4 [CI:BUILD] Makefile: rpm target generates correct version
1a63c1b23 Fix nits in #19480
1e5453943 Add support for passing container stop timeout as -1 (infinite)
d50054f1e pkg/specgen: Add device support for FreeBSD
f5058f148 [CI:DOCS] man: remove duplicate entry .LastUp
a8974d4a3 CI: e2e: remove useless test
53d44a65e Check tty flag to set default terminal in Env
62a22c5d6 Run codespell on code
44f159ed3 Deprecate podman generate systemd
346f9cb4e manifest/push: add support for --add-compression
8ccda1ee8 [CI:DOCS]Update Release Notes
b91599742 CI: sys: quadlet %T test: do not rely on journal
4d69f0146 GHA: Support testing build/sign workflows
15f35d354 Remove unnecessary backslashes
18e75daa5 [docs] Use code blocks for commands in podman-completion
f3ebd798c Make podman run --rmi automatically set --rm
8b7701f52 machine: QEMU: recover from failed start
49b8b971a vendor: bump c/image to v5.26.1-0.20230801083106-fcf7f0e1712a
bfd2a8cad secret: add support for `--ignore` with rm
21ebe0e90 Move `writeConfig` logic to shared function
597ccff0b Move some logic of `setRootful` to a common file
98cf8462a move `removeFilesAndConnections` to a common file
75a8f13c4 Move `waitAPIAndPrintInfo` to common file
55c7b5cec Move `addSSHConnectionsToPodmanSocket` code to shared file
0489d3aa6 Update module golang.org/x/net to v0.13.0
d74c225f4 chore(deps): update dependency containers/automation_images to v20230726
27d79e1fc Skip pasta local forwarder test on debian SID
b69cd8d84 Skip broken/flaky blkio-weight test
822f2f495 Skip tarball re-inport test in rawhide for CI
851cd9cca Cleanup CIDFile on podman-remote run --rm command
a237c3f46 CI: e2e: remove workaround for missing login file
42ad0c6e7 vendor: bump c/image and c/common
5b7dce8a3 Add support for confined users
78b850c48 Cirrus: Temp. disable rawhide validation task
def70012b Limit git-validation to 'short-subject'
33b8c451e Fix up man page and add test on globs
850482b31 Move alternate image acquisition to separate function
906af5bbc Move `getDevNullFiles` into a common file
89f1fdc7f Update github.com/digitalocean/go-qemu digest to 2e3d018
d6847b19c Convert QEMU functions to methods with documentation
6930f39a6 Update docs/source/markdown/podman-build.1.md.in
e1114f03c do not redefine gobuild for eln
39341f283 Set default userns from containers.conf file
4f1f88d7c Mention TimeoutStartSec in quadlet man page
ada71889c inspect with network=none show SandboxKey netns path
93f4cc1b5 [CI:DOCS] GHA: Use stable go for Mac/Win builds
ff7d287fc Breakup AppleHV machine funcs
64873e322 Codespell fixups
acbe7703f Update docs/source/markdown/podman-stats.1.md.in
0b7157e3b CI: e2e: reenable containerized checkpoint tests
c67ef7c1a docs(env-file): improve document description
4ee31dc37 Don't log EOF error when using podman --remote build with an empty context directory.
f2794f9a8 API: kill: return 409 on invalid state
170a78631 feat(env): support multiline in env-file
19deb6a34 Adds documentation to new functions that were added
481143e58 `startHostNetworking`: get DevNull files
13da82466 `Remove`: remove network and ready sockets from registry
d896431b2 `Remove`: remove files and connections
32265e1f6 `Remove`: collect files to destroy
381b103dd `Init`: read and split ign file
aa6827a67 `Init`: write ign config
cc30639d7 `Init`: add network and registry socks to registry
78d3b549c `Init`: add SSH conns to podman sock
630e7ba39 Improve the description of fields in podman-stats man page
22a8b6886 make /dev & /dev/shm read/only when --read-only --read-only-tmpfs=false
663fe9446 Mention no comment lines in Containerfile.in podman-build man page
e973d15c3 [CI:BUILD] RPM: define gobuild macro for rhel/centos stream
837bc2568 Fix HyperV loadMachineFromJSON function name
416a471ee machine: QEMU: lock VM on stop/rm/set
bb57c1631 libpod: add 'pod top' support on FreeBSD
f592c33fb [CI:DOCS] Build and Sign Mac Pkginstaller
f540bbffa Make sure users changes --authfile before checking
8757fe88a github: add issue type as link to podman github discussions
3523b9b05 Break QEMU `config.go` code into its own functions
c341a0ffe machine: QEMU: lock VM on start
afe8d5d84 libpod: fix 'podman kube generate' on FreeBSD
0fefcf8a4 Add glob support to podman run/create --mount
d6815da8c kube: add DaemonSet support
239a5b64a Fix artifacts script after removal of msitools msi build
e335a66a9 System tests: quadlet: fix race in %T test
d6a32a3da If quadlets have same name, only use first
db0ba9b25 Add support for mounts listed in containers.conf
6dda21984 Update vendor of containers/common
33891e8e9 System tests: add test tags
5ba055937 [CI:DOCS] socket_activation.md: increase socat timeout
dfec510b4 go-md2man: use vendored-in version, not system
a92bb3219 CI: use different TMPDIR on prior-fedora
6894e2031 system tests: authfile-exists: minor cleanup
d70f15cc0 start(): don't defer event
de122bb44 Fix: use --all in podman stats to get all containers stats
349d775de Verify authfile exists if user specifies it
e0ef23955 libpod: don't generate errors for createTimer etc.
0cfd12786 add "healthy" sdnotify policy
cbc96a7b4 Remove LICENSE and general doc files that are installed by the main package
37f0e9620 Add missing `
2f21df7b3 Remove legacy msitools based msi installer
ac212605c Remove any quotes around distribution id
e596b17fb add a podman-compose command
eee2817de pkg/specgen: Don't crash for device spec with...
d2796c6c1 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
f4fbd6fd0 Update vendor of containers/(storage,image)
d4fc66af9 Clean up /var/tmp/ when using oci-archives when creating containers
49257a3c5 [CI:BUILD] RPM: separate out gvproxy for copr and rawhide
b57091ac9 Reduce qemu machine function sizes
baf30e612 [CI:DOCS] migrate socket_activation.md to quadlet
7314569cb [CI:DOCS] Update kube play volume support
b5ce0ab2d Fix language, typos and markdown layout
cb5450af7 [CI:DOCS] Add note about QUADLET_UNIT_DIRS to simplify quadlet debug
0bb73bf55 Add note on debugging quadlet unit files
d4cfc498d Remove unnecessary use of the word "please".
a6a207673 libpod: fix FreeBSD 'podman-remote top' default behaviour
709beb6c0 fix(deps): update module github.com/onsi/gomega to v1.27.9
3e534eff9 Add support for ShmSize to quadlet
4b9f670ca Quadlet system test - force journald log driver for short lived containers
731bd7d94 fix(deps): update module github.com/containers/libhvee to v0.4.0
413552e10 quadlet recursively scan for unit files
ce736413b Ensure that we appropriately warn that TCP is insecure
558a70262 systests: quadlet: fixes for RHEL8
8d190704a Quadlet - Allow setting Service WorkingDirectory for Kube units
24bf6fc24 Quadlet system test - do not rely on journalctl in kube file tests
3d6bc2f86 Fix markdown in docs for podman-network-create
11ffea313 Man pages: check for corrupt tables
1d14bb7a8 quadlet systest: fix broken tmpdir references
e55e128fc Add `since` as valid filter option for `volume` subcommands
6df17332b Podmansh: Better error, increase timeout to 30s
96241159a Fix multiple filter options logic for `podman volume ls `
00a5b0709 Add bash-completion for podman inspect
3b6343202 Fix windows installer
d7e25e14a Add missing reserved annotation support to `play`
d2862c7dd Avoid progress hang with empty files
5c0912b07 Revert the usage of `home.GetConfigHome()`
5aa52659b Fix bug report issue template README link
47997857f Replace error check for non-existent file
8febb6aa1 Emergency gating-test fixes for RHEL8
d8d600b1d Add progress bar for decompress image
46058cfed refactor: move progressbar to a function
ca9874ab7 Use pkg/homedir to get the home config directory
7fb17ae78 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.2
a224ff731 Should be checking tmpfs versus type not source
9e60f3ec5 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.1
b4ffbcdfd Enabled arm64 arch for podman applehv provider
4e4078dbb [CI:BUILD] Packit: remove pre-sync action
d0602e8f7 Add `--podman-only` flag to `podman generate kube`
13a950016 Update vendor containers/(common, buildah, image, storage)
f256f4f95 Use constants for mount types
310a8f103 libpod: use define.TypeBind when resolving container paths
1e9410094 Tests: remove/update obsolete skips
a3bbc3a2c Fix trust not using local policy file
0997cf012 Fix `podman container prune` docs for `--filter`
a8d8c9497 Add more tests for liveness probes with default hostname & named ports
383d683f8 docs: podman-build --network add slirp and pasta
5e64cbf35 docs: podman run --network mention comma separted names
1443e2918 Podman machine AppleHV pass number 3
315a7887a Makefile: `package` -> `rpm`
85d936133 network create: document --internal better
e43127e0b pkg/specgen: fix support for --rootfs on FreeBSD
8c16322a8 machine start: qemu: wait for SSH readiness
12dc546fc [CI:BUILD] Packit: downstream task action fix
2b2c4453f Fix container errors not being sent via pod removal API
6ec261e7a Add missing return after utils.InternalServerError()
d1950869a Update cmd/podman/login.go
cce8501a5 [CI:DOCS] Reformat and reorder table with --userns options
d497eb369 Add secret support to podman login
2a9b9bb53 netavark: macvlan networks keep custom nameservers
c6b5b9a02 remote: fix podman-remote play kube --userns
441af003a fix(deps): update container-device-interface to v0.6.0
656ad760f go mod: no longer use 1.18
aeef403cd fix(deps): update module github.com/containers/libhvee to v0.3.0
6fd4ae6d2 chore(deps): update module github.com/gin-gonic/gin to v1.9.1 [security]
0dcfe6e06 Run codespell on code
3ad55f48b system service: unset listen fds on tcp
f1c68b79e add hostname to network alias
b6ec2127b libpod: set cid network alias in setupContainer()
4e96686e9 AppleHV enablement pass #2
72a1857e4 e2e: Fetch the correct user name
7b54fd84e Add `--no-trunc` flag to maintain original annotation length
600de05e3 Fix TCP probes when the optional host field is not given
ac3a115c3 Add support for using port names in Kubernetes health probes
4494cefbc Fix: cgroup is not set: internal libpod error after os reboot
932fae402 Allow setting volume and network names in Quadlet
427b959a1 pasta tests: automatically determine test parameters
97fd03ccd test/e2e: wait for socket
a69194b02 manifest inspect: support authentication
70428baef api: fix slow version endpoint
f8213a6d5 libpod: don't make a broken symlink for /etc/mtab on FreeBSD
499b8d13c CI: remove build without cgo task
42ea0bf9c libpod: use io.Writer vs io.WriteCloser for attach streams
597ebeb60 top: do not depend on ps(1) in container
3f8ee70d0 make --syslog errors non fatal
dbec2b5aa api: fix doc for default ps_args
1b7eb44d3 Fixes typo in the path where quadlet looks for files
efefd8cf5 Add --replace flag to podman secret create
eec438222 [CI:DOCS] uidmap man pages: fix corrupt italics
8d24e2838 [skip-ci] Update github/issue-labeler action to v3.2
f9077689e [CI:DOCS] podman-system-service.1.md: document systemd usage
dd16661b1 fix(deps): update module github.com/docker/docker to v24.0.4+incompatible
65136521e fix(deps): update module github.com/docker/docker to v24.0.3+incompatible
fa654e985 Use bytes size consistently instead of human size
dee94ea69 bugfix: do not try to parse empty ranges
9e4045768 [CI:BUILD] Packit: fix pre-sync action for downstream tasks
531fb21d0 fix(deps): update module golang.org/x/tools to v0.11.0
ab2fa45ad fix(deps): update module golang.org/x/net to v0.12.0
459b1578c fix(deps): update module golang.org/x/term to v0.10.0
99f93d55c e2e: fix two toolbox flakes
fc5aa9c9c test/e2e: use GinkgoT().TempDir() over MkdirTemp()
ea8992cb4 test/e2e: use random ImageCacheDir
17a06d343 test/e2e: remove RHEL7 workaround
bc22aefce test/e2e: remove unnecessary code in SynchronizedAfterSuite
ff7790038 test/e2e: do not use /tmp for podman commands
db7cb1dbf test/tools: vendor ginkgo v2.11
c20612bab test/e2e: write timings directly to file
a0b765552 machine start: qemu: adjust backoffs
d874790bc auto update: fix usage of --authfile
ba1355b23 system tests: refactor registry code
94b321337 fix(deps): update module golang.org/x/text to v0.11.0
644f7cd9b pkg/specgen: properly identify image OS on FreeBSD
a3a62275c libpod: use new libcontainer BlockIO constructors
2d68c3add [CI:BUILD] Minor: Don't confuse osx-debugging
5aabc5088 [CI:DOCS] Better document the default value of --userns
e4644c3cb Cirrus: build FreeBSD binaries in a VM
92fc0f481 Makefile: add support for building freebsd release tarballs
4a5396b46 [CI:DOCS] uidmap man pages: fix corrupt tables
5a8e092a2 fix(deps): update github.com/crc-org/vfkit digest to c9a4b08
d0359fcca fix(deps): update module github.com/containers/buildah to v1.31.0
300eb36b4 fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
94e59bd2f Use /proc/self/gid_map as intended, not uid_map
a16488f89 fix(command): ignore `--format` in `podman search --list-tags`
9fb2f8e10 podman machine start: fix ready service
8408ad498 Makefile: don't rely on the non-standard -r flag for ln
39624473b pasta: Create /etc/hosts entries for pods using pasta networking
fe0de8b9f fix(deps): update module github.com/containers/libhvee to v0.2.0
2393fe453 pasta tests: add sanity check for test name vs function
4da3e47b6 pasta tests: cleanup + 1 new test
43b9426fc cmd/podman, pkg/domain/infra: sockets should live in /var/run on FreeBSD
e3f2a97d1 cmd/podman/system: add API server support on FreeBSD
0d7da5c0b [CI:DOCS] Document support of pod security context IDs
f64a1a1cc rootless: use default_rootless_network_cmd config
e4efd709d Revert^3 "pasta: Use two connections instead of three in TCP range forward tests"
17cd5aecb pasta: Workaround occasional socat failures in CI
13c7d05cc pasta: Remove some leftover code from pasta bats tests
bc58dae36 Bump c/image to v5.26.0, c/common 0.54.0
2cb549339 fix(deps): update module github.com/coreos/stream-metadata-go to v0.4.3
bf60bb073 Display secret to user in inpspect
448e01566 [CI:BUILD] RPM: Fix koji and ELN issues
8fb719a9e e2e: systemd test: major fixes
865d77e94 pkg/specgen: add support for 'podman run --init' on FreeBSD
74b4615aa Bump version after v4.6 branch cut
b6e636cbe Remove 'inspecting object' from inspect errors
fe8355be7 pasta: Fix pasta tests to work on hosts with multiple interfaces
d15cca024 [CI:DOCS] fix command incorrect in windows
bcb89fc8b Fix readonly=false failure
609c47ae6 pkg/specgen: Add support for Linux emulation on FreeBSD
cf9ebcddf Fix up podmansh man page
05eb3e6f1 Make Podman/Buildah use same DecryptConfig/EncryptConfig funcs
f5cc0487e Fixes for vendoring Buildah
0f4c86e26 vendor in latest buildah
6eaf8a271 tests: fix "Storing signatures" check
b80fd54a5 update c/image and c/storage to latest
eeb7aeb49 Kube quadlets can support autoupdate as well as containers
2160a114c debug tail 800 lines flake
dd81f7ac6 Pass in correct cwd value for hooks exe
227c07aeb specgen: honor --device-cgroup-rule with a new user namespace
0220f3338 specgen, rootless: raise error with --device-cgroup-rule
db37d66cd make image listing more resilient
17a18b16c Update module google.golang.org/protobuf to v1.31.0
bc5269f18 Trim whitespace from unit files while parsing
516034215 Re-organize hypervisor implementations
ba3da15e0 play.go: remove volumes on down -f
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Jörg Sommer
|
002aaf7029 |
packagegroup-container: require ipv6 for podman
The recipe *podman* requires the distro feature *ipv6*. Using a distro
without it causes the build of *packagegroup-container* fails, even if
*packagegroup-podman* is not used:
ERROR: Nothing RPROVIDES 'podman' (but /build/../work/layers-3rdparty/meta-virtualization/recipes-core/packagegroups/packagegroup-container.bb RDEPENDS on or otherwise requires it)
podman was skipped: missing required distro feature 'ipv6' (not in DISTRO_FEATURES)
NOTE: Runtime target 'podman' is unbuildable, removing...
Missing or unbuildable dependency chain was: ['podman']
NOTE: Runtime target 'packagegroup-docker' is unbuildable, removing...
Missing or unbuildable dependency chain was: ['packagegroup-docker', 'podman']
Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2474e287c9 |
umoci: allow encoding of multiple entrypoint or cmd arguments
umoci can encode both entrypoint and cmd lists into the oci image. This is done by using the --config.entrypoint and --config.cmd arguments multiple times. We can split our OCI_* variables on space and support multiple arguments in either command and keep compatibility with existing users. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
58a5300e7a |
kubernetes: update to 1.28.2
Bumping kubernetes to version v1.28.2-44-ge3b5e621f07, which comprises the following commits:
b5e28b1cdd6 [go] Bump images, dependencies and versions to go 1.20.10
1cd2ac99542 .: bump golang.org/x/net to v0.17.0
cecc0e93916 Mark a volume as uncertain-attached after detach error
15101d92e18 Unit & integration tests for OpenAPIV2 AddUpdateAPIService
9f4011446a2 Fix 120878 - Refactor cacheabledownloader so handler can be updated and fix AddUpdateAPIService to update handler
489c08ddf47 Fix 120739 - Prevent AddUpdateAPIService from blocking on updating spec
d35a00e218c Fix 120758 - prevent cache Load on uninitialized spec
985ef265511 Add nil checks for hpa object target type values
88669d0a23b Make a certain ipv4-vs-ipv6 config error non-fatal, for backward compat
84a3ad3573b [go] Bump images, versions and deps to use Go 1.20.9
63fcac91c42 Only configure swap if available on node
07a74666cb2 Use local isCgroup2UnifiedMode consistently
57bbc335fd7 cronjob controller: ensure already existing jobs are added to Active list of cronjobs
8ea9b219c69 reintroduce resourcequota.NewMonitor
794d56966e8 change rolling update logic to exclude sunsetting nodes
a08ec1215fe vsphere: adapt to govmomi bump
ef63f36ff82 .: bump govmomi to v0.30.6
aba7c443072 Increase range of job_sync_duration_seconds
bcaa53c9c10 sync Service API status rest storage
a68748c7cd0 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.2
89a4ea3e1e4 Release commit for Kubernetes v1.28.2
0c6a0c3f69b kubeadm: remove reference of k8s.io/kubernetes/pkg/apis/core/v1
47507f9f022 fix race on etcd client constructor for healthchecks
7d33fba21a8 e2e pods: fix WaitForPodsResponding retry
2480fce67f5 kmsv2: reload metrics bug fix backport
110a6fe8a9f scheduler: start scheduling attempt with clean UnschedulablePlugins
0aebbad4731 fix(queue_test): make sure the first bind failure via counter
798a0abe368 [go] Bump images, versions and deps to use Go 1.20.8
62321a9201c scheduler: unit test case for concurrent event with other pod
e5b981ebcd7 scheduler: fix tracking of concurrent events
16298b54483 fix verify errors
38904e5f2d1 remove used vars
ce017591468 sort stability list of metrics in the shell command
b5fd7e9f23c Feature-gate SidecarContainers code in pkg/kubelet/kuberuntime
958c30349fa Add an e2e test for the pod sandbox changed scenario
ac67de196ff fix: concurrent map writes in e2e test
19c4cf0f1a0 Automated cherry pick of #119776: Fix a job quota related deadlock (#120319)
dda909d6c51 TopologyAwareHints: Take lock in HasPopulatedHints
8656da75f2a Fallback to legacy discovery on a wider range of conditions in aggregator
526e25b685a Fix OpenAPI aggregation cleanup
0bca3b0e4de apiextensions-apiserver: generate applyconfigurations
8c7c4f3fc4d Revert to json-patch 4.12.0
a4fdac21a98 update build cross image to the correct release branch image
fc184558921 Mark Job onPodConditions as optional in pod failure policy
955843efcf3 Incorporating feedback on 119341
4c8b24d8618 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.1
8dc49c4b984 Release commit for Kubernetes v1.28.1
ad60b95eb63 Add wait for cache sync
175bbaa8894 check for overflow
f3f88b8e7b5 Fix CEL cost handling of zero length replacement strings
90715527543 Use env varaibles for passing path
53902ce5ede Use environment varaibles for parameters in Powershell
e8abf3c441c e2e framework util subtle bug checking endpoints
a1fdd1152d9 Pass Pinned field to kubecontainer.Image
27e6c94259f prep for go1.21: use -e in go list
04de4683cb1 kubeadm: fix nil pointer when etcd member is already removed
8fd45c6bd0f update to golangci-lint v1.54.1 + go-ruleguard v0.4.0
cce3f6ffa79 Make gomaxprocs install optional, limit to tests
20b69aea685 Drop [Feature: tag to make sure this tests runs on pre-submits
58ac6e12ccc Statefulset should wait for new replicas when removing .start.ordinal
e7cfe85b9c1 e2e WaitForServiceEndpointsNum take into account the address family
96696c15f89 fix: when PreFilter returns UnschedulableAndUnresolvable, copy the state in all nodes in statusmap
d20fe4d8487 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0
855e7c48de7 Release commit for Kubernetes v1.28.0
b4053c3b293 Fix a bug that PostFilter plugin may not function if previous PreFilter plugins return Skip
b4fac632cd1 Remove release-notes for the PR#118895
5f7b27f4ade Remove release-notes for the PR#118895
87caf500e1f Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0-rc.1
c5048f41fe3 CHANGELOG: Update directory for v1.28.0-rc.1 release
add7e14df11 Release commit for Kubernetes v1.28.0-rc.1
c6efaf16c1e apiserver/etcd3: fix segv during metric collection
6ddcdef29ae kube-proxy: fix combination of --config and logging command line flags
0d90d1ffa5e Revert "Merge pull request #118895 from RyanAoh/kep-1860"
1876ddf7149 Avoid returning nil responseKind in v1beta1 aggregated discovery
55ca1a6ee15 Remove leases test case from AdmissionWebhookMatchConditions suit
050c0437e60 fix: broadcast when pod is pushed back to activeQ directly in AddUnschedulableIfNotPresent
9bc857d6d90 [releng] Update publishing-bot rules for release branches to Go 1.20.7
38a81ca04f3 Bump distroless-iptables to 0.2.7
ae86051ec5a Bump protoc
ab26637eae4 Add test coverage of result size of string operations
8e72718249e Bump cel-go to v0.16.1
72c8cf9fce7 [go] Bump images, versions and deps to use Go 1.20.7
2ceca1c78db e2e WaitForServiceEndpointsNum should watch EndpointSlices
2f30fae0e8b scheduler: fix data race after binding failure
1b90dff5276 .*: bump golang.org/x/net to v0.13.0
73107c1b755 Update OWNERS
53c8872cc18 Update OWNERS
2a82aac5248 Update CHANGELOG-1.28.md for KMSv2KDF
294c7df3285 Avoid pulling node-problem-detector through CDN
b4ef4015a29 Avoid pulling mounter.tar through the CDN
cfcbce31a39 apiextensions: fix validation error for status.storedVersions
936819c21bc docs: update release note for KMSv1 deprecation
6689fd97469 DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates
a65d2075072 calculate the correct machine-type
182a4f858a3 API warn non-ExternalName services w/ externalName
7bd0a857e30 API warn ExternalName services with externalIPs
dd8a64d7e15 publishing-bot rules for release-1.28 branch
a005617111c CHANGELOG: Update directory for v1.28.0-rc.0 release
7d13c9b096b set map to nil if an empty string is passed
eb4063f0ced Add cases to tests `AdmissionWebhook` MatchConditions size limit (#119404)
ef4907eddd7 Add e2e tests for admission webhooks MatchCondition fields (#118319)
a248c4de521 test: fix NodeLogQuery tests to query the correct node for logs
45710678b30 Release commit for Kubernetes v1.28.0-rc.0
67769438e1d kmsv2 test feature enablement disablement and restart
18a7025383c update documentation with descriptions
7e0a9a7f4e7 Use statusReason for reason under x-kubernetes-validations (#119544)
3b9af471185 add admission policy integration test all resources
22bf29ad22f Treat empty string as nil in fuzzer for CEL Reason field
a164005cc09 Fix non-test code relying on test-code
e1b0bc3d0a7 bugfix: use matched resource for AdmissionRequest.resource, not the resource it was converted from
5e2e8c80647 bump validatingadmissionpolicy alpha->beta
1c99f9591b0 add node-env and instance-type flags to node-e2e tests
d6479587445 update codegen
ef8670c946d refactor: replace usage of v1alpha1 with v1beta1
294f5c9a42f make update
ae185e91186 e2e: test LastPhaseTransitionTime field when binding PV
a9c3444a47b test: add coverage for pv status update and create strategy
bf49c727ba1 kmsv2: KDF based nonce extension
aa65bab4269 implement pv last phase transition time
c97eb2b5cb0 Fix XValidations deepcopy to copy contents of nested pointers
76eefd3a012 CHANGELOG: Update directory for v1.28.0-beta.0 release
1b4de065df4 add LastPhaseTransitionTime field to PersistentVolume
5310dd7ff53 add PersistentVolumeLastPhaseTransitionTime feature gate
a31fee98f09 rename function for dropping disabled fields
dbea2791129 Fix the flaky TestJobApiBackoffReset test
8f35fceae37 update vendor to use containerd cgroups
c4bf42199a0 do not touch swap for cgroup v1 if swap not enabled
74fcf3e7668 implementation of PodReplacementPolicy kep in the job controller
cb6d7fbe66c update documented metrics
f50e74206e1 Address comment
c46ffc2b422 Refactor jsonpath parser and add tests.
b3b775baa51 test: adjust tests for v1beta1 validatingadmissionpolicy
88becfc0ba5 api: add v1beta1 ValidatingAdmissionPolicy/Binding types and storage
b5e9e0168cf feature: add multiple params capability to VAP controller
3f63a2d17d4 refactor: make scope of ParamKind available to vap controller
6323c106e9b refactor: use the provided sharedInformerFactory for params
9a595209bd2 update-codegen
c8dbf4712cf add namespaceParamRef to v1alpha1 and internal
03aad1f823c Fix the semantic meaning of etcd server within component statuses and metrics.
e0a6eb93a1f node_e2e: Fix createStaticSystemNodeCriticalPod's invalid spec
2863b3d1ab7 Revert "refactor: simplify RunScorePlugins for readability + performance"
3685e5e5a9c CHANGELOG: Update directory for v1.24.16 release
51bfe417b81 CHANGELOG: Update directory for v1.25.12 release
c575a1e31aa CHANGELOG: Update directory for v1.26.7 release
ba01bfcdc6c CHANGELOG: Update directory for v1.27.4 release
ce929520376 add podReplacementPolicy and terminating field to job api
35d0af9243c Include ignored pods when computing backoff delay for Job pod failures
ee82654e398 Add pod_swap_usage_bytes as an expected metric in e2e test
81abfca4078 Add a haveKeys() helper function to match multiple keys
1000ed64e09 Use debian-base instead of distroless for conformance image
d6e525877b5 [KEP-2876]Add reason and fieldPath into CRD validation rules (#118041)
b1d685a05fe apiextensions: validate status updates with status schema
06a81d13959 cmd/kubelet: implement drop-in configuration directory for kubelet
c1aef65640b Add integration test
cd5f3d9f9d5 Add impl for uvip
2c8288ac873 feat: improves metric and logging
0449cef8fd5 Increase timeout for DRA kubelet plugin client
a15c27661e6 Job controller implementation of backoff limit per index (#118009)
b5012ba1e2d Mark existing NodeLogQuery e2e tests as [LinuxOnly] since they do not run on Windows
bfb2c6a22a2 update go.mod
668497e7550 use ratcheting schema validator when feature is enabled
e0f9db42ace add ratcheting schema validator using new openapi hooks
6f238334ab4 add CRDValidationRatcheting feature gate
635875ad521 refactor: convert slices to []interface before inserion into VendorExtensible
9ee6d97fc05 refactor: add ValidateCustomResourceUpdate to support future validators for CRD Updates
a8a2fb317c8 Add tracking and reporting of executing requests
1351845133b Update cri-api change in v1.28.0
59b4951c649 Expose commit memory used in WindowsMemoryUsage struct
0ec99fb0b24 Kubelet DRA: fix failing test cases
f6431c61386 DRA: don't query claims from API server
cf0b74774f6 Extend the API for the Job job-index-failure-count annotation
d281daee335 Prefer pods without a deletion timestamp over pods with a deletion timestamp when getting an ordered list of active pods.
0372e4b6620 add unit test for dra/manager.go.
fcbfdc17106 Extend the Job API for BackoffLimitPerIndex
3fd40ffb0ef addons/metrics-server: fix nanny rbac permissions
056c19e8b39 Add slash ended urls for service-account-issuer-discovery to match API in swagger (#117511)
89ab733760a Improve docs on framework.CycleState
4da418aba7f refactor: cleanup to NewSchemaValidator takes JSONSchemaProps
ba581300213 refactor: rename apiservervalidation -> apiextensionsvalidation
735be024cf9 Make CRDs built and aggregated lazily for oasv2
ea23e13463f Update OpenAPI Aggregator
850dc6123af Remove ability to re-enable serving deprecated policyv1beta1 APIs
e7be841957d cli-runtime: make VerifiableQueryParam shared-parameter aware
a4a607198a1 hack/update-openapi-spec.sh
961c1503b5b Bump kube-openapi
4cb5547f934 Adjust summary API e2e test
e429793db1e Unit tests: node swap usage resource metric
1d368420b28 Add a node swap usage resource metric (/metrics/resource)
7d187f967ba Unit tests: CRI swap stats
59e3e3897e3 Add SwapStats to summary API through CRI
87ff9c45256 Add swap statistics to CRI-API
053d7ac61f5 Unit tests: cadvisor swap stats
c74ee8045de Add SwapStats to summary API through cadvisor
a05d200ac89 Add SwapStats to NodeStats, PodStats and ContainerStats
d029f0ef060 Add restartable init container lifecycle hook e2e tests
f17e9117776 Add restartable init container probe e2e tests
9d6c1030db0 Generate containers ready condition including restartable init containers
3bf282652f0 Allow restartable init containers to have lifecycle
7ef2d674e24 Allow restartable init containers to have livenessProbe
2c8b37498e5 Allow restartable init containers to have readinessProbe
8b20dbd0d16 Add validateStartupProbe
c7e7eee554a feature(scheduling_queue): track events per Pods (#118438)
91ea8043355 Replace lavalamp with jpbetz as feature-approver for api-machinery
94c8ad289bb Enable admissionWebhookMatchCondition by default
4321d8c60f3 Graduate NodeSwap to Beta1
f1e7386fbc4 Deprecate now-unused kubelet iptables flags
d486736dd38 Remove IPTablesOwnershipCleanup checks and dead code
77cbd86b0b1 Add metrics for cloud-provider node sync, update.
d3c506133f1 Skip apiserver_admission_webhook_request_total during context-canceled
7698fe76397 Add StatefulSet pod index as pod label (#119232)
2e217e8cea1 Reduce duplication between helpers for checking featuregate
7edd72f7805 Update generated documentation
137474e2839 Fix validation options for old pvc
d765fa6b747 Update generated stuff after changing comments
f01a1faa8cb Update comments about allocatedResourceStatus
c072e5b3a7e Update test generated data for 1.26 branch
db8998265e9 Update 1.27 generated data
6a780f57ce5 Update generated data
e0111871149 Update code to use new generic allocatedResourceStatus field
d3ef2d4fe95 priority & fairness: support dynamically configuring work estimator max seats
9189c3d5599 fix tests
aa788219f46 fix metric names
d32aa62d844 promote beta metrics
65ce7222ced All sig node approvers should be able to merge changes to CRI API
9cb2c103107 Adding node feature owners
00de051729a Make matchConditionsFeatureGateInitiallyEnabled a boolean instead
48eee4eed86 Fix e2e tests for overriding timoutGracePeriodSeconds of probes
0074b24ca42 Graduate AdmissionWebhookMatchCondition to beta
bfa62e0009a kubelet: retry RuntimeConfig call and prep for nil values from GetLinux
6aeff13def3 Never drop the `terminationGracePeriodSeconds` of a probe
d0952686f68 CRI: add cavieats about cgroup driver field
d7797fbc616 kubelet: get cgroup driver config from CRI
fd434003f3f kubelet: initialization of runtime service earlier in the startup
37330a13924 Add KubeletCgroupDriverFromCRI feature gate
d2d5e2e27dc Add CRI fake runtimes for RuntimeConfig rpc
0f05a92ce68 cri-api: add rpc for querying runtime configuration
660be4484b4 Update publishing-bot rules for release branches to Go 1.20.6
be01f4a0838 KEP-3178 IPTablesOwnershipCleanup to GA
ff62cca47b8 Bump distroless-iptables to 0.2.6
229eb93a834 DRA: report NodePrepareResource errors
b57c7e2fe4b Add CDI devices to device plugin API
b1850497b4b Integration tests for IP mode field
7eab0d7a0de Proxy changes for IP mode field
7c6e399b228 Generated code for IP mode field
e6863757f4f Add IP mode field
e38ab6d3671 Add PodGC changes for PodReplacementPolicy
169abcc0398 openapi: reference shared parameters
6c0ea702d43 Conditionally serialize flushFrequency as int
19f61caabee aggregate kube-proxy metrics
bd9b78d6861 kubeadm: remove the limitation that the 'ignorePreflightErrors' field can not be set to 'all' in kubeadm config file, and keep CLI / config consistent
6b3ce3004db Add integration tests for match conditions feature gate enablement
b883f305011 kubeadm: Support `kubeadm config validate` for ResetConfiguration
171b19d9fe1 fix histogram vec compare using ignore fields
9b6af80a631 upgrade prometheus common to v0.44.0
8f9e2cb8a80 kubeadm: Support `kubeadm config migrate` for ResetConfiguration
22f0f2e210f kubeadm: add 'kubeadm config print reset-defaults' command for ResetConfiguration
13172cba5c0 ValidatingAdmissionPolicy: support namespace access (#118267)
df0d51d3b35 add some detailed message for dup container ports(steal from thockin)
1732b23a343 Ignore context canceled from validate and mutate webhook failopen metric
90ab7580aae add list of served versions to storage version
9564bdc39de Ensure final diff is used for setting expectations for Job pod creation
8a4a29d5917 remove todo/spelling
bef43788fc0 update histogram
01b9f4b6eb8 matchCondition metrics
5f37c102cb5 revert changes in staging
d9bd413f991 Proactively bump golang.org/x/net to v0.12.0
883d0c3b717 Add a dummy implementation of proxyutil.LineBuffer
34640772ed4 implement SchedulerQueueingHints feature gate
619be9c1537 Add a swap e2e test
4b6314f815b Unit test: Swap - Limited/Unlimited Swap, cgroups v1/v2, etc
a30410d9ceb LimitedSwap: Automatically configure swap limit for Burstable QoS Pods
e4da568f331 Make kuberuntime unit tests environment independent + support cgroup v2
f37aec6c57f Add LIMITED_SWAP env var to enable limited swap
0ed7bdb057e Update vendor
69c4bc29f55 [go] Bump images, versions and deps to use Go 1.20.6
2a907e60043 kubeadm: fix fuzzing for ResetConfiguration
2e6715bc77b kubeadm: implementation of `ResetConfiguration` API types
037847066ce replace strings.Index with strings.Contains instead
3e2a1a7b9ce Regenerate
b2613dd381b Add e2e to check that hostIPs and Downward API works
14b09c414ac Add DownwardAPI validation for status.hostIPs
335d905ce95 Downward API support for status.hostIPs
bf030fd68ab Add validate HostIPs
267e76a66e2 Add status.hostIPs in validEnvDownwardAPIFieldPathExpressions
c287943bdd5 Add status.hostIPs in ConvertDownwardAPIFieldLabel
7a81ef6406c Add fuzzer for PodStatus
e6bdd224c17 Add HostIPs for kubelet
dacb6890027 Add dropDisabledStatusFields
e061143de7f Add HostIPs field and update PodIPs field
c2c001a243a Add FeatureGate PodHostIPs
ce90eb2cc2f Fix validation to use field.Forbidden instead of Required
7305c967101 QueueSet and controller part of borrowing by exempt PLs
2069835094d Tolerate only the two allowed field changes
3754d2da20f apf: allow admin to change the Exempt field only of the exempt pl
f8e4e8abac8 apf: add validation to exempt for borrowing
f78d6062eb8 Update generated code for APF borrowing by exempt
a9d8cace1f5 Fix AutoUpdateAnnotationKey, NominalConcurrencyShares
3d3240c8b43 apf: add API changes for borrowing by exempt pl
b635f2a401f ValidatingAdmissionPolicy: Variable Composition (#118642)
49d03468021 Pre-allocate webhook accessors arrays for mutating and validating webhooks
037091284e2 fix unit test bug
423f4dfc798 Add quantity library to CEL (#118803)
a1a5f49bb9c remove statefulset label added to wrong branch
1ae60c0ed16 use job completion index annotation as label
131216fa8f2 chore: hashes keyID
049614f884e ValidatingAdmissionPolicy controller for Type Checking (#117377)
d25075f3424 update generated list of stable metrics
c291e6355c4 feat: implements metrics for encryption config hot reload
be2e5417ea2 allow api-approvers to approve directories touched by generation
80ab8f0542f dra: handle scheduled pods in kube-controller-manager
cffbb1f1b29 dra controller: enhance testing
5cec6d798c3 dra: revamp event handlers in kube-controller-manager
0bb419b1498 promote the following APF metrics to beta:
39207dada25 Add integration test for node authorizer claim references
4121c1fc79a auth: don't allow kubelet to from modify ResourceClaimStatuses
c688478a28b Fix lifecycle generator to check the version correctly (#119268)
ddc0d947900 dra API: ensure that pod status contains no duplicate resource claims
052b06bdad3 Remove test Pods sharing a single local PV
22d8ae1ba6e Enable NewVolumeManagerReconstruction
9914909f5aa Define tcpProtocol in one place in the unit tests rather than many
967ef293786 Remove/clarify two FIXME comments in the proxier unit test
14375947869 Remove some stray references to the ProxyTerminatingEndpoints feature gate
7e3b53042b1 Pass Job context down to firstPendingIndexes
4835d9e1371 Belatedly clean up some "Endpoints" vs "EndpointSlice" distinctions in the unit tests
4d8f569b037 Remove KUBECTL_EXPLAIN_OPENAPIV3 environment variable
c5147c91b88 controlplane: kubernetes.default controller stop polling
9f5b6db8be8 test: azure: check error for cloud detection.
1db11c07ff2 node authorizer: limit kubelet access to ResourceClaim objects
71ef0dafa72 add flag 'logging-format' to kube-proxy
c550c17f7f0 accept int or string flush frequency
148acc8632c enable arm64 support for GCE node configuration
75186b1c32a Fix, deprecate apiserver_flowcontrol_request_concurrency_limit
c52911e59ad docs: add comment describing `LoadConfigFromFile`
5c18810f357 chore: update license date for configfile tests
72aeb961322 test: add tests for `LoadConfigFromFile`
b3373ae2738 refactor: make only `LoadConfigFromFile` public - `loadConfig` can be made public again when needed (not required now)
8e284389a5d feat: make `loadConfig` and `loadConfigFile` public functions - so that users who import kube-scheduler libraries can use these functions to read kube scheduler config
0599b3caa0f change the QueueingHintFn to pass a logger
39bb8f4bb1d Implement ConsistentListFromCache feature gate
0695853a306 Improve naming and code comments
08d40f53a7a dra: test with and without immediate ReservedFor
98ba89d31d5 resourceclaim controller: avoid caching deleted pod unnecessarily
28b6c906966 Move DeleteFunc logging to level 2
761016482da Properly setup mutatingWebhookConfigurationManager{}
747dbd9b6b7 run `./hack/verify-gofmt.sh`
1eb60939fe5 Add smart reload for `MutatingWebhooks`
aeefb762ece Properly handle parameter in `shareInformer.DeleteFunc`
a01a8cb07e7 Fix webhook accessors caching pattern
7d3d44af776 Add webhookAccessors smart reloads unit tests
c6f36e8702a Fix deadlock issue
99875b3fb73 Webhook Accessors Smart Recompilation
7d064812bb4 kube-controller-manager: finish conversion to contextual logging
d743c50bb9e kubelet: support batched prepare/unprepare in v1alpha3 DRA plugin API
7a63997c8a1 Improve apiserver storage size metric to allow it's graduation
610509fedd9 Update standard app protocols
f1f2fa9da8a kube-apiserver/corerest: split apart generic code
01c3a51a780 node: podresources: getallocatable: move to GA
c1decb6763d Fix TestConditionalProgressRequester and TestWaitUntilFreshAndListTimeout flakes
1b8ddf6b79a podgc controller: convert to contextual logging
f924bf95df9 dynamic resource allocation: Improve code coverage of state checkpoint
c635a7e7d83 node: devicemgr: topomgr: add logs
d78671447f2 e2e: node: add test to check device-requiring pods are cleaned up
5cf50105a2b e2e: node: devices: improve the node reboot test
b926aba2689 e2e: node: devicemanager: update tests
3bcf4220ece kubelet: devices: skip allocation for running pods
ab3a0b78ea3 Match both old and new kubectl version for a while in e2e
c143a875edb dra e2e: fix "reallocation works" flake
6f1a29520fe scheduler/dra: reduce pod scheduling latency
e01db325735 scheduler util: handle cache.DeletedFinalStateUnknown in As
ef48efc736c scheduler dynamicresources: minor logging improvements
363874e9b56 setcap: update to debian bookworm v1.0.0
19869478c11 Migrate /pkg/controller/disruption to structured and contextual logging
b81f07ac9a6 Add enj to apiserver options approver
6d6595d0f6e Add jpbetz as approver of apiserver integration tests
43b509de420 staging: Add endpointslice to publishing data.
7c873327b67 Convert controller name to reconciler variable.
29fad383dab move endpointslice reconciler to staging endpointslice repo
c0030a4d27e Add support for watchlist to APF
9759fc3c230 Fix the converts an empty string to nil.
22c66784e03 staging: add endpointslice repo
a34e06e74c7 kube-apiserver/corerest: structure Config
75e3576523f kube-apiserver: rewire service controllers: kubernetesservice + IP repair
f22aa42aa81 bump go.mod cadvisor to v0.47.3
f855a23b455 topologymanager: promote TopologyManagerPolicyOptions feature to beta
3267dd9d529 kubectl delete: Introduce new interactive flag for interactive deletion (#114530)
23833b9c81c topologymanager: Increase TopologyManager test coverage by adding negative test cases around NUMA topology discovery
998654e0443 topologymanager: fix TopologyManagerPolicyBetaOptions not being enabled by default
fec25785ee6 dra: store generated ResourceClaims in cache
ba810871ada dra e2e: check that not generating a ResourceClaim works
0fc62d5ded0 dra: generated files
444d23bd2f1 dra: generated name for ResourceClaim from template
98461be8ffa Implement conditionalProgressRequester that allows requesting watch progress notification if watch cache is not fresh
cd14e97ea80 Add a builder for ContainerAllocateResponse objects
db2a1edbdd6 Generate empty cdi annotations
f0e3c32fe56 Move CDI annotation code to utils package
354b6c409f5 Rename updateReconstructedFromAPIServer
1903f5aa2ad Rename volumesNeedDevicePath
7cd60df4aa1 Update volumesInUse after attachability is confirmed
0a2272dc68d Add uncertain state of volume attach-ability
bf48165232f Remarks to syncJobCtx
990339d4c3e Introduce syncJobContext to limit the number of function parameters
94b782680c0 Update publishing-bot rules for release branches to Go 1.20.5
f443c458afe move non-graceful node shutdown to GA
645cb907320 migrated pkg/controller/endpointslicemirroring to contextual logging
98c6e25c371 update name of pod index label
09849b09cf4 migrated pkg/controller/endpointslice to contextual logging
de076430957 Document address family of listening INET sockets
08dd657a71c Implement metrics agreed on the KEP
9b1c4c7b57f Implement KEP-3836
cca66011067 Add reason to force detach metric
e655931274f expended type checking.
8fb5b6eb4c1 node-e2e: Add container lifecycle e2e tests for preStop hook
47ef977ddd5 Direct reference to the packages
7286d122fb7 Mark pods with restartable init containers as `UnschedulableAndUnresolvable`
0a987079128 Sidecar: Update printPod to show restartable init container information
ea1eb7f8f79 implement sidecar resource calculation
03c22176877 Sidecar: Add e2e tests
b94fa250c27 Sidecar: Implement lifecycle of the restartable init container
c187b381173 Sidecar: Generated code
5d26bcd468b Sidecar: API changes
10dc1ca0846 Skip GracefulNodeShutdown on older systemd versions
f7a1fb76f4f Only declare job as finished after removing all finalizers
3f07fc3acc9 Remove long/golang version information making short the default
3a5268502f3 Remove deprecated scheduler CLI flags
68ed020b2a3 Split IptablesRulesTotal metric into two different metrics
bc059817dc5 fix: Add "metav1.CauseType" to "field.ErrorType" map
c0eb0caf4ac Support fine-gained rescheduling in ReservePlugin
d7708e79d32 Use cmp diff
278a8376e17 Fix: fiterror in permit plugin not handled perfectly
14bd9bc127e CHANGELOG: Update directory for v1.28.0-alpha.4 release
2fe38f93e53 feat: Append job creation timestamp to cronjob annotations (#118137)
1acdb4ae86e [KMSv2] Mark KMS v1beta1 as deprecated with no further fixes (#119007)
02c59710eaa Test the IptablesRulesTotal metric in TestSyncProxyRulesRepeated
ecf0cee91ce update comment on feature flag
3a02ecb3418 check test case param instead of feature flag in unit test code
b10cc642b56 DRA controller: batch resource claims for Allocate
be0db3f93d7 clean up the implementation around QueueingHintFn
5175752df74 Issue 4230: remove readiness check for cache exclusion
132d477cb7a use stopCh to avoid goroutine leak in tests
20a25cbfcfb Add user specified image to CRI `ContainerConfig`
65e818d4ecf Introduce apiserver_flowcontrol_current_executing_seats metric
1bf2f6c9c05 feat(NodePorts): return Skip status in PreFilter
dfc1838379f Migrated pkg/controller/volume|util|replicaset|nodeipam to contextual logging
6c0387d0047 Migrated pkg/controller/endpoint to contextual logging
3cf2822bc58 Migrated pkg/controller/garbagecollector to contextual logging
921b7e6e8f7 remove equalReady and replace with k8 util function
a647f9febbf default enabled pod index for test cases, add test case disabling it
322da7c1aae fix gc metrics
02efe09abe3 component-base/logs: improve handling of re-applying a configuration
1240a29af9c Hide numberOfMissedSchedules as an algorithm internal number
c733c57962f pkg/controlplane: wire core storage as RESTStorageProvider
65b34221ebb kube-apiserver: remove IP repair plumbing from kubernetes service controller
9dcc57ede62 Stop using deprecated API
5e1777be529 Update debian-base to bookworm
a514f40131c dra resourceclaim controller: delete generated claims when pod is done
e8a0c42212d dra resourceclaim controller: remove reservation for completed pods
7f5a02fc7e4 dra resourceclaim controller: enhance logging
d1ba893ad8e dra resourceclaim controller: refactor isPodDone
e2900da46aa Remove unnecessary utiliptables.Interface arg from local detectors
7690c6e8121 Simplify getDualStackLocalDetectorTuple
cefd50a753e Improve the single-stack LocalDetector behavior
bfccfa7016b Add names to the getLocalDetector unit tests, use t.Run
16e9cc42c1a e2e node: remove unused test/e2e_node/gcp
932d0337b82 e2e: detect unexpected command line arguments
68aee61d4f7 SPLIT: kube-apiserver/corerest: split out service IP setup logic
443bf3b01b0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/cache
dad3e4d2112 SPLIT: kube-apiserver/corerest: split constructor
31943cc3f44 kubeadm: check the GV after the config migration
b4f479d1f29 bump npd to v0.8.13
a556feb7cbe run hack/update-vendor.sh to fix verify master
4149933ed2e kube-apiserver: move "public IP matches IP family" check to option validation
616c9599880 FIXUP: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
c26e1ba10c3 [UT] increase coverage kubeadm/app/phases/dns
b36fdd68b72 Test consistent List
01b1174c114 kubeadm: fix "migrate config --allow-experimental-api" to print v1beta4 kubeadm configurations instead of v1beta3
18f2e9055fc Add OIDC integration tests
c68a6b07456 kubeadm: fix fuzzing for ExtraEnvs defined in the control plane component
80b035a116a kubeadm: Support custom env in control plane component
6b01ece5806 scheduler-perf: fix perfdash display problem
29e5771aa4d scheduler-perf: shorten "Name" label in metrics
e08bd3bc263 Simplify DeleteCollection
7b62d000a4d MOVE: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
2b03f04ce58 Initialize the AuditEvent with the AuditContext (#113611)
c903c29c3b1 e2e: support admissionapi.LevelRestricted in test/e2e/framwork/pod
19cb6d036ae kube-apiserver/corerest: remove redundant interface
ede17eace45 test-e2e: Retrigger the RBD image post merge job
a966d186083 Double-check the proxy configuration vs the available IP families
36e458612a9 cmd/kube-apiserver: move back master count variable from generic controlplane
1cfb932111e kubectl: Allow parallelizing diffing
bcbc12cd79c Fix `should be able to create and delete a critical pod` test
4517d3004ad bump kube-dns to v1.22.23
985cf718a43 [Dual-stack] Fix generateAPIPodStatus() of kubelet handling Secondary IP hostIPs order may not be be consistent. If secondary IP is before primary one, current logic adds primary IP twice into PodIPs, which leads to error: "may specify no more than one IP for each IP family". In this case, the second IP shouldn't be added.
f6a86bb2030 fix indent error
c143710ecf1 upgrade npd image version to v0.8.13 for kubemark
96694514a75 Remove csiDriver Conformance test
bb0c3a08189 Remove proxyutil.IsProxyableIP / IsProxyableHostname
59592ba4639 Add OIDC test server
1f2bf32e95f Figure out single-stack/dual-stack support before creating the proxier
8abfa89e82b Move proxy platformSetup call, and do LocalDetector setup from there
ebb0fdd4f6f Don't explicitly filter config.NodePortAddresses by IP family
a74b9fde3aa Don't pass around full node in proxy constructor, just pass PodCIDRs
0537c1da563 kubeadm: move migrate / validate tests out of config_tests.go
b01a4145b2c Install ecr-credential-provider during node e2e tests
4e6aa5fb861 kube-proxy service health: add new return header with number of local endpoints
a5df442be78 flowcontrol: copy object before passing it to client-go Create to avoid data race
ea34d039256 integration testing: configure gRPC logging during init
1c48b7ec144 Add servedVersions info in StorageVersion API
d548983dbb2 Use table-driven table for TestPerPodSchedulingMetrics
e0af0a5a455 add test case param for feature flag
d68f5f0d921 fix tests
44f1c4dd94d fix duplicate metrics issue
84b3d9b7b7e remove legacy NetworkPolicy tests
0eeca0987a6 fix tests
04ea1d506b4 promote sli metrics to beta
f96d83af668 Copy container logs for easier debugging
dfc150ca182 e2e: node: podresources: cooldown the rate limit
f7cf9effa33 fix kubelet podWorkers.SyncKnownPods() typo
52ef833b6c2 Bump cadvisor version in tests to v0.47.2
8266c4d934d Generalize watch storage tests
d53762ec3a5 remove unnecessary comment in pkg/scheduler/framework.QueueingHintFn
1b47e6433b8 dra delayed allocation: deallocate when a pod is done
dbdd861ea36 chore: address review feedback
72294e4eff0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/queue/
f269acd12b2 Make QueueSet support exempt behavior; use it
931456a1427 Simplify the node name for metrics - just use localhost
3e5fafd57ab Drop docker.log and add cloud-init-output.log
1c7e87cff27 client-go: add DNS resolver latency metrics (#115357)
150f732c7ee [StructuredAuthenticationConfig] wire request context to claim resolver
4a5a242a68d dra e2e: using logging for background activity
f1700e4b95b Cache authz decisions within validating policy admission.
60fb8f2fbc5 Exclude terminal pods from Daemonset e2e tests
24f4785e3eb kubeadm: remove unused Kind and Resource functions from output API
16fdd3e5eef apiserver: introduce larger buckets for flowcontrol request_wait_duration_seconds bucket
90f82d05ce2 kubeadm: remove unused Kind and Resource functions from kubeadm internal API
fd15c6791a4 kubeadm: restore and generalize the TestMigrateOldConfig test
d616cf72a3b Add unit tests for parallel StatefulSet create & delete
c6079843792 apiserver: introduce larger buckets for request_filter_duration_seconds metric
ef265101648 Return Skip in PodTopologySpread#PreScore under specific conditions
732775ee7d1 Paginate within DeleteCollection call.
0d41d509d2d scheduler_perf: replace gomega.Eventually with wait.PollUntilContextTimeout
cecebe8ea2f scheduler_perf: add TestScheduling integration test
dfd646e0a89 scheduler_perf: fix namespace deletion
d9c16a1cedd scheduler_perf: fix goroutine leak in runWorkload
2e7f37353cb test/integration: avoid errors in fake PC controller during shutdown
812556365b6 kubeadm: backdate generated CAs by 5 minutes
44692a486f9 client-go: allow to set NotBefore in NewSelfSignedCACert()
cfa2fa6d774 put feature gate in alphabetical order
860aab842db fix a reference to the wrong variable name
a75b00ea39d Better URL for scraping metrics from kubelet
685b0c5efa1 Bump to latest node-problem-detector version with arm64
cad338890df add test for apiservices.apiregistration.k8s.io discoverability in openapi/v3
9e3b5b65838 update openapi
ad2b4368e21 expose apiregistration.k8s.io into OpenAPIV3
bb8766daaf6 feature flags should be ordered alphabetically
7f4c187ab26 kubectl explain should work for both cluster and namespace resources and without a GET method
a9afaa1eee9 add feature gate
dfce076c6cf Update the template.pot file with latest message IDs.
a4519665fe0 Skip terminal Pods with a deletion timestamp from the Daemonset sync (#118716)
9c7166ff639 wait for eventhandlers to sync before run scheduler
bde66bfb55c kubelet dra: restore skipping of unused resource claims
874daa8b52c kubelet dra: fix checking of second pod which uses a claim
6c587b43e92 Cleanup pods at the end in Pod conditions e2e node test
56c5c8f7eef Revert "Make CA valid 1 hour in the past"
ecd727e4c75 Fix PodGC test when PodDisruptionConditions disabled (#118805)
bdbf07525fa test: remove exception comments in discovery tests
6fd830a075f hack/tools: bump golangci-lint and consequently staticcheck
1af54256969 hack: disable gomega.Consistently/Eventually check due to false positives
f618e613322 e2e: replace gomega.HaveLen(0) with gomega.BeEmpty()
e7df337ebad e2e: replace gomega.Equal(true/false) with gomega.BeTrue/BeFalse()
8b33e8bdd1b e2e: fix gomega.Expect calls without assertions
0ef1f2f2d89 Set AWS specific credential provider when running there
b0f694f50ac CHANGELOG-1.27: Add note for AWS in-tree provider removal
af1c9e49c49 Update schedule logic to properly calculate missed schedules
0033f658085 increase the log level for the GetTargetNodeName error message
08198fe22b5 Extend Large Create Timeout to 60 min
9354e78289f no-op: split transformer interface
21760534157 add completion index as pod label
8083d0d22e2 pkg/controlplane/apiserver: remove temporary import restriction of cmd/kube-apiserver
764da8a01dc FIXUP: cmd/kube-apiserver/app/options: split apart controlplane part
1b3779baa0d MOVE: cmd/kube-apiserver/app/options: split apart controlplane part
3df92362abd fix openapi/v3 non local apiservices aggregation
4298953c26c kubeadm: remove unused Kind and Resource functions from v1beta4 API
6e079545c48 cmd/kube-apiserver: move options completion into options package
f04484fe775 kubeadm: add the --allow-experimental-api flag to "config" commands
0774f779d5c kubeadm: add v1beta4 to the kubeadm API scheme
38222014c61 kubelet pod-resources: add e2e for KubeletPodResourcesGet feature
f7239e40959 Better back off delays and connection timeout to talk to containerd
e4f93d8a82d ipallocator bug if ips has leading zeros
89a9e480f9b fix: update deployment e2e tests
41d961758ee update cri-api change in v1.27
22258a263f4 Fix stable metric finder for NewDesc with custom import name
13842746227 Update metric documentation
45aa59946af Refactor FindAttachablePluginBySpec out of CSI code path
07f38a3ec18 add test
6f8d38406a7 feature(scheduler): implement ClusterEventWithHint to filter out useless events
531d38e323c features: rename UserNamespacesStatelessPodsSupport
556d713a4ad apis: drop check for volumes with user namespaces
8ed23558b44 Do not set jm.syncJobBatchPeriod=0 if not needed
17013d39604 Review remarks to improve HandlePodCleanups in kubelet
e3ee9b9adc1 Fix the deletion of rejected pods
c91c578795c scheduler_perf: skip expensive cleanup during benchmarks
92a35f5bca9 Usse generics to simplify pkg/registry/flowcontrol/ensurer
902c711fb49 Unset gated pod info timestamp in addToActiveQ
56cb4c93918 [bug] Update DefaultObjectDescriber to handle interface params (#118190)
1053d1bbcf5 CEL lib: Expose errors on authz decisions instead of raising them from check().
406899360b5 Refactor shouldDelegateList/shouldListFromStorage to better explain decisions
e4cf103c9b9 Test all cases for LIST request cache bypass
7f532891c9c e2e tests: set all PSa labels instead of just enforcing
a9af2de8fdd Refactor WithRequireLeader to make it part of the etcd store
1bd3f072fa7 stop ignoring storage class selection errors
e5cbc51d29d e2e framework: allow setting all PSa labels at once
edb59e9bc75 kubeadm: move token defaulting and related constants to token package
ec70b2ec801 e2e dra: add "kubelet must skip NodePrepareResource if not used by any container"
fdd992da865 upgrade image addon-manager/kube-addon-manager:v9.1.6 to v9.1.7
420fbd11e44 ignore Histogram for prometheus client v1.16.0
c98e72841b1 Add a connection backoff to talk to CRI impls
409bc8ccc05 deps: Bump to cAdvisor v0.47.2
f72c2c2b7d2 add process start to prometheus handler opts
bbc7ca94a42 CHANGELOG: Update directory for v1.28.0-alpha.3 release
ab75e48494c storage: stop using deprecated io/ioutil
687ca0e0bb2 fix(script): handle wait_for_success failed condition
eecac058718 kubeadm: add v1beta4 API boilerplate
63e5b6bdb24 Parallel StatefulSet pod create & delete
2fb472c83cd Refactor StatefulSet controller update logic
784a309b917 Do not error in Job controller sync when there are pod failures
f2e3157df0a Remove AdvancedAuditing feature gate.
bbae445d172 fix metrics test with 1.16.0 prometheus client
180c2332bf8 [UT] increase coverage ut for kubeadm/app/features
564c236ce28 Do NOT prepull images for e2e-node jobs
c84b5b0a99f Cleanup unnecessary renames of variable t
c9b01dd9778 Fix race in logging expectations
3dd1bac4dce Set small DefaultJobPodFailureBackOff in Job integration tests
85d9339ef8f add KCM names into CCM cmd allowed import-restrictions
3b55f20bd34 update vendor
4e6a3fb9c10 deduplicate cloud provider controller names
e5f5a9bfdbe use controller names for CLI FlagSets to show the names in help
cd56748ec57 reference controllers correctly from CLI help
9fd8f568fe0 introduce CCM controller aliases and unify controller names
94792d85dea simplify TestValidateControllersOptions test
97309511366 introduce KCM controller aliases and unify controller names
ba1755132e1 support controller name aliases in GenericControllerManagerConfigurationOptions
2596245f5a7 Replace deprecated sets.Int with sets.Set[int] in Job integration tests
e5116a39c96 fix: kubectl expose fails for apps with same-port, different-protocol
958c8fb6950 Make use of `k8s.io/utils/pointer.Duration`
ede2ec22b68 kubeadm: drop older etcd versions from kubeadm support
8cd65e9cee6 reorder hack/unwanted-dependencies.json map keys and arrays
f44029705f9 exit 1 if status are not as expected(order)
a1e0aa0e504 DRA Node E2E: add NodeAlphaFeature to fix CI
74c5ff97f18 Lower the constants for the rate limiter in Job controller
f54c15d4e80 Change the fieldpath in the deprecated plugin response
471fd1ae8a1 deprecate RBD plugin from available in-tree drivers
c51a422d787 Cleanup job controller handling of backoff
fff5b35023b Adding review changs to update
889ecf865b7 always execute condition for wait.PollUntilContextTimeout with immediate=true
5aa5f1abc9c update prometheus/client_golang v1.14.0 to v1.16.0
5bde9404a09 Remove unused error return value from internal function
8636f9353a8 CHANGELOG: Update directory for v1.27.3 release
763555814b5 CHANGELOG: Update directory for v1.26.6 release
3bf93156d80 Update pending_eligible_endpoints.yaml to match APISnoop
ff2a1f0167f CHANGELOG: Update directory for v1.25.11 release
a29be0cfb00 update container runtime flags to use containerd instead of docker
89adbc6e5b5 check for AWS environment before running sudo
7f650acb3c1 CHANGELOG: Update directory for v1.24.15 release
a83edd35c4a DRA Node E2E: relabel test suite to fix CI
c27f9fdeb79 Add warnings for big number of completions and parallelism
a86380c7813 Update CLI help text for grammar and consistency
96e7d5f1f25 Bump iscsi test server image
e0f273ffdaf use ingress-gce-glbc v1.23.1 image for CI
e213448db12 Updated kubectl explain help output
7bc449d7e0c add contextual logging to job-controller
cfbc5dc54f8 mount-utils: fix linter warnings in tests
8ced101db53 mount-utils: stop using ioutil in tests
699d118d85f mount-utils: stop using ioutil
b690450e846 mount-utils: don't reread mountinfo on newer kernels
8c79a911331 mount-utils: isMountPointMatch: simplify and speedup
404e844468b mount-utils: add isMountPointMatch test and benchmark
4bb02392793 mount-utils: IsMountPoint: fix
167252fb5e0 mount-utils: format with gofumpt
55b690ee018 kmsv2: no-op refactor priming logic into its own function
15003c609d0 kmsv2: refine probing logic to avoid slow starts
d8150b81601 kmsv2: add a sanity check to confirm that new state is always valid
8c06ca68d7d Details added in kubectl explain help
4960207b317 DRA Node E2E: test NodePrepareResource timeout
5c5f6e8fe2f DRA Node E2E: add NodePrepareResourceCalled API
673d0aaa60c DRA Node E2E: add call blocking to the Kubelet plugin APIs
a60314c47ef Make etcd component status consistent with health probes
e1735b98637 Make CA valid 1 hour in the past
5e048041e40 remove helper function for unused storage feature in pkg/proxy/util
e1aef2ac917 Bump publishing bot rules for Go 1.19 branches
9cb52a6872c Fix the flaky legacy_service_account_token_clean_up_test.
4e20a8f52bc kill all processes in a container in the event of OOM
0222e6d4ae3 Update kind details for DRA e2e
75cf25c0e7f iscsi: use dbus from the host
f7a5817bc65 e2e storage: terminate worker quietly on test completion
22de2c27d1b scheduler: improve cache_test.go - Add test name to enhance test readability - Remove redundant test tables
325205efb72 Migrated pkg/controller/endpoint to contextual logging
be14b026e33 fix the integration test
a7eb7ed5c6a refactor: simplify RunScorePlugins for readability + performance
587f992a7b2 e2e: deflake a HPA CPU test by stabilizing cpu consumption
672614b57e8 apf: refactor bootstrap ensure strategy
910630fbea2 kubelet: mark '--azure-container-registry-config' flag as deprecated
5e6ae25a33b Updates chairs, tech leads for sig cloud provider
34368884783 move luxas as an emeritus approver of test/e2e/lifecycle
e97d9803f2f add SataQiu as a test/e2e/lifecycle approver
4977189c1b0 Fix ginkgo noColor deprecation warning
e6bc945a61b Add startup probe in integration test
ea1de7517ee CHANGELOG: Update directory for v1.28.0-alpha.2 release
7ccc2317839 add test for authorizer type checking.
54cae706786 Pass the mandatory parameters to support testing on ARM64
fdc49f5257c Return deprecation warning for storageOS,PhotonPD,ScaleIO..etc
151509fb74d Remove unreachable warning on volume name dup
d73923c8ebf fix 'pod' in kubelet prober metrics
0ddaa7f7c9f Fix warnings on "duplicate" env vars
4820cc852a0 Minor fix on variable
a6f5abfb81e Updating names from webhookconversion to conversionwebhook
0fe84ff7cb1 Re-add the legacy wsstream package and deprecate it
8f3109da791 Refactor wsstream library from apiserver to apimachinery
6d4abd7e7b6 bump distroless-iptables to v0.2.5
04fa4184ed3 add support for authorizer to type checking.
e5a15c87e9d Ensure timeout test handlers don't complete before timing out.
f2a64cb91d7 fix Cronjob status.lastSuccessfulTime not populated by a manually triggered job
2f6b1d3c0fb Ensure Job sync invocations are batched by 1s periods
ed429c4388a replace node-role.kubernetes.io/master taint with node-role.kubernetes.io/control-plane for gce kubelet flags
b1da721bdd7 Update vendor with hack/update-vendor.sh
88b69cdd0e6 Fix flaky persistent volumes e2e test
d9e12db547e Bump images, versions and deps to use Go 1.20.5
ea6495e8284 Remove StartupProbe on debug with pod copy
ac15d697578 remove RetroactiveDefaultStorageClass feature gate checks
6afb363ca17 test: remove RetroactiveDefaultStorageClass feature gate
97a81a59f62 test: correct validation test error message
42722ffef02 graduate RetroactiveDefaultStorageClass feature to GA in 1.28
7f87ec9406a storage: Add MadhavJivrajani as reviewer
7ac36bd0720 test/integration: use t.Log in TestAPIServiceWaitOnStart
77cf37ee543 STRUCTURE: cmd/kube-apiserver: move admission construction back from controlplane
7961812bed8 STRUCTURE: cmd/kube-apiserver: move OpenAPI construction back from controlplane
43be9c3a0ac MOVE: cmd/kube-apiserver: move genericapiserver construction into controlplane package
9be6e7bb339 STRUCTURE: cmd/kube-apiserver/app: stratify construction with options/config/server
e6ed4c7934d CLEANUP: cmd/kube-apiserver/app: remove trivial funcs
f7d4e90b5c4 MOVE: cmd/kube-apiserver/app.createAPIExtensionsConfig -> pkg/controlplane
087fbc9304f Remove invalid merge key
4962e6eacb9 Squash detectNodeIP and nodeIPTuple together
b5db644422d Add merge map key validation to StorageVersions
58162ffd63b DRA: add node tests
b69b34bec64 Move a kube-proxy unit test to the correct file
4bee9b2b352 structured logging in proxy/ipvs/ipset
26801d6541a kube-proxy avoid race condition using LocalModeNodeCIDR
4dbece1e203 e2e-framework: remove node-role.kubernetes.io/master taint from non-blocking-taints
dddbecb47e2 prune's xml files to display only top level tests and failed sub-tests
8b0a6ed6999 re-send the shutdown signal in case the dbus restart is not done
4d0e25151db Fix SELinux contexts used in e2e tests
010343562c6 dependencies: update github.com/dustin/go-humanize v1.0.1
743e5525edb fix eviction failing test for nil feature gates assignment
6d66fbc6b67 storage: Move cacher tests to reside with the cacher code
70978e4af61 cacher: Move common testing utils to a single file
bdfb96c57d3 chore: os.SEEK_END os.SEEK_SET and use b.Logf(...) instead of b.Log(fmt.Sprintf(...))
7a80d7c839c add warning for duplicate containers[*].ports with the same port, protocol, hostPort, and hostIP
923db7bd8e0 chore: use strings.Contains instead
e9e4acb1dde k8s.io/apiserver: remove skewed completion from EtcdOptions
4d85a1f00cb storage: Implement TestWatchFromZero for cacher
2e76ac31fd8 Replace os.Setenv with testing.T.Setenv in tests
ac5ce5cbce7 Replace os.Setenv with testing.T.Setenv in tests
b274a9bf7c4 remove csidriver endpoints from pending_eligible_endpoints.yaml
5d4bf0b6f90 Promote CSIDriver e2e test to Conformance
3085b57869a Do not copy bytes for cached serializations
c009667c6c6 deprecate CephFS plugin from available in-tree drivers.
1fcfd1d5090 pkg/util/iptables: use buf.String() instead of string(buf.Bytes())
9eaa50cc829 Rename scheduler queue variables for consistency
6195f96e56e minor fix comments in netpol so its easy to understand the tests for newcomers, remove one misleading comment (#118264)
410b6023d6f scheduler: fix code style issues for pkg/scheduler
71ab7dc791f Remarks
70d3bb43e56 Adjust the algorithm for computing the pod finish time
b994e639a6b Add mininumKubelet tag into ReadWriteOncePod test
db9fcfeed29 Move cri/streaming to k8s.io/kubelet staging repository
da4a8d831b9 kubectl: use bytes.Buffer.String
8e4228a8c1f remove CSI-migration gate
a5c4fbe9791 chore(fix): test jsonpath condition parsing errors
9d3e55ec431 Support JSONPath condition without value
f520f6fd06c Add Pod Termination e2e tests to test termination grace period seconds
b4dfae25dee fix terminationGracePeriod blocked by preStop
fd92acba5a8 chore: should use buf.String() instead of string(buf.Bytes())
20866b3f85a dryrun: Don't reuse current object for conversion
f351c6d1ecc k8s.io/apiserver: apply storage object count tracker implicitly
45c9e066164 Fix errant debugging code in codegen
a51be9786ba remove enabled by default beta resources that have been removed
f4d326a1fcc verify: produce JUnit file also for pull-kubernetes-verify-strict-lint
a4ea058cc75 feature(scheduler_perf): distinguish result in scheduler_scheduling_attempt_duration_seconds metric result
322968e9b38 Update unwanted dependencies per CI instructions
2111e79f56a Update gnostic references
1993a4cb379 vendor
0b4efddae01 verify: nicer failure message rendering in Prow
dbbb21469f4 verify: pick relevant lines from verify-golangci-lint.sh as failure message
d6168bb6587 Add ephemeralcontainer to imagepolicy securityaccount admission plugin
70ff750c755 chore: io/ioutil deprecated
1ce285ad3df Revert "removed the deprecated `azureFile` in-tree storage plugin"
daa71159077 kubeadm: add deprecation message for UpgradeAddonsBeforeControlPlane feature gate
a6c7f63b188 Set the node-ips annotation correctly with CloudDualStackNodeIPs
d49c43abde5 kubeadm: add integration test to ensure that the supported etcd version is always available for the stable Kubernetes version
6d23da045fc Migrated pkg/scheduler/framework/plugins/interpodaffinity to use contextual logging
db2389ba9c8 kube-proxy: remove log warning about not using config file
15aa00fc836 Remove unused `getSeccompProfilePath` helper function
d0a64739e2c e2e dra: collect and check GRPC calls
68901de8981 Enable optionals and add tests
5c0b59891d6 Bump cel-go to v0.16.0
5b3510c0b67 Fixing gmsa-webhook install steps for Windows GMSA full tests
c539c739161 Changes to buckets and comments
35d2431b3a8 informer: fix race against Run and SetTransform/SetWatchErrorHandler
64269620597 Changes to histogram buckets
c48c4c679ad Fix ginkgo deprecation warning
5a14573258b clean: use info instead of error to log queue closed message when scheduler exit
f2a5e247ebf add pacoxu to kubeadm approvers list
705c6ff315b Review comments, added metric namespace, moved utility functions, and etc
a8ef109aca0 CHANGELOG: Update directory for v1.28.0-alpha.1 release
369e3faa4ff Moving Kubelet Credential Provider test to common so that it can be run both as Node and Cluster test
2d8c820741d move pkg/util/ipset inside pkg/proxy/ipvs
85e0d8c8b14 Revert "kubeadm: add --feature-gates flag for kubeadm upgrade node"
f3ba9353363 Consistently use proxyutil as the name for pkg/proxy/util
b3111170f8e remove Ephemeral Containers form list
64c9070f8d0 add pod containers[*].port duplicate warning
f9ae3e774d0 testutil: use contextual logging
534f5edb53c Cleanup boilerpate.py
d9e2583af16 test/e2e: replace deprecated ioutil
4b4b3b71b78 clean up dead code
4523a301c87 kubeadm: enable --feature-gates flag for kubeadm upgrade node
074900e81bd scheduler: update the scheduler interface and cache methods to use contextual logging
0951204298a kubeadm: Supports() return true for all alpha/beta/ga/deprecated
c6aaa1eab04 kubeadm: lower the log level of EtcdSupportedVersion warning message as it is a kubeadm internal warning
4e6d929580a deprecate csi migration for ceph rdb
11a40406a1f Promote Ephemeral containers e2e test to Conformance
bf116e85943 Optimize reflect checks further, save item type information
12e3d9fcc4c Implement WithAlloc variants for EachListItem and ExtractList
efc601302ad Extract List reflect optimization
b8a3bd673dc Add WithAlloc interface and stub implementations with base benchmarks
4aa5441de2e Move pkg/util/ipvs inside pkg/proxy/ipvs
0535e742241 feature(schedule_one): use heap to find the highest score node
532fe3c9653 Add kerthcet and sanposhiho as SIG scheduling approvers
8df1a5e6dcb Webhook conversion metrics
a045fedd025 Update google.golang.org/genproto
455169bd66a e2e storage: add missing error checking for WaitForVolumeAttachmentTerminated
d76043958fb Follow up from dynamic retryAfter
510287d3444 Fix the git-repo test error caused by the correct use of loop variables
926bc9bf8e5 Update podFailurePolicy comment from alpha-level to beta
7d2e1888f8a Chore: fix the example about how to use PollUntilContextTimeout
4d2ff08bfa1 e2e-framework: code cleanup for mismatched comments
15678e4a67e Optimize usage message of commands which have subcommands.
6a867eacd85 kubeadm: warning only for deprecated FG
4dfc684b342 Set kube-proxy memory request to 50Mi
5d18f471494 Improve clarity and guidance in provisioner waiting message
7a6b4a9215e dra scheduler plugin test: fix loopvar bug and "reserve" expected data
e31b2080f5a e2e framework retry on Service unavailable errors
a50549cc906 e2e rc: if the pods are running but not ready the test will fail
133eff3df49 implement LegacyServiceAccountTokenCleanUp alpha
a6003ae1e11 fix unknown field error in rs e2e
27057def059 Signature fix for registeropenapi
4373ae05f34 Update vendor
72e4c9a82ac kubeadm: add the "config validate" subcommand
f4891842194 Delete CRDs created during field validation tests.
2ea6896f90c Add warning log callback in client-go loading rules (#117233)
485d1631cd3 Remove Azure file in-tree storage plugin
2eed9b4143a Should get ENABLE_CLIENT_GO_WATCH_LIST_ALPHA when new reflector
e2ed8f8c3ca style: correct the sentence
08139044040 Fix: Restricted profile comply with PSS (#117543)
c68f8586580 proxy/ipvs: github user name change: daman1807 -> aroradaman
05b3beb7f02 Create e2e test for CSIDriver endpoints
d459b4429f4 integration: remove special verbosity for garbagecollector and graph_builder
931cc96b8d4 remote windows condition when #116693 is merged
0bff705acd8 Preserve code blocks in templates.Normalizer (#118029)
7470a94f5a9 add some log for debuging
6232ac734a0 Merge duplicated Linux/Windows kube-proxy setup code
08ce5805769 Add ProxyServer.platformSetup
e0b7f31ce6e use standard base image in dra dev
149f4878a70 Simplify DeferCleanup.
dbb6d25f13b e2e: apply timeout for CSI Storage Capacity test only to node
1c05cf1d516 kube-scheduler: NewFramework function to pass the context parameter
1b206399f6a fix using stale binaries in local-up-cluster
ece68cf8337 Fix update-vendor.sh logging
cba8c1f5e2e Fixing windows memory allocation e2e tests after a refactor
96d48de9b97 add OWNERS for cmd/prune-junit-xml
86a258b13a2 kmsv2: ignore cache key expiration on reads
89439b570fc test/e2e: use agnhost latest version in the manifest
b30720fc9f0 Add test for starting kubelet with a CSI volume mounted
ad9e264c3cc test/e2e: Use json.NewSerializerWithOptions in place of json/yaml newSerializers.
048938f1d85 hpa: cleanup `currentReplicas` code
0f5535ea259 registry/core/service: remove incorrect comments
2db577a560c scheduler-perf: inject "benchmark" as name into JSON result filename
0789bbe9f7a Update k8s.po
b6364dddfe6 update webhook test to go 1.21
d8db9640fab kubeadm: remove function pointer comparison in phase test
2658a2b627f Make connection lost retryable in webhook
ed26fcf5b87 cleanup useless null pointer check about nodeInfo.Node() from snapshot for in-tree plugins
e21cf9a54e9 Setup e2e_node to support testing on ARM64
ec8d94f2057 Grab logs from all the containers when DNS related tests fail
182cd425d3b graduate LegacyServiceAccountTokenTracking to GA
337728b0255 Improve backoff policy in reflector.
0fe27a06f99 Cleanup the Job controller handling of terminating pods
c74790e266a remove redundunt type conversion, unused variable...etc
07c94553608 fix apiserver InstallAPIGroups slices out of range
aa11cc69696 Mark grpc-gateway v1 as an unwanted dependency
19ae2de19cb kubeadm: speedup init by 0s or 20s
e4102d5e300 Test APIService safe handling at startup
3be3997193a Fix waiting for CRD sync at server start
71ec9df5b61 update image tags in manifests to reflect the version listed in the source
a10ff53d8e6 Reword the event message to read better for a single secret
b2eae2f92e9 Support podman for building release images
6b4251c0fdf Remove statefulset from logcheck.conf
3f1d8e7aeb4 Apply to use contextual logging for all loggers in statefulSet
d9b941b7827 Remove undesired verbose fields from log
bea71a3e4ee remove unused pv informer from expand_controller
4c9887e3ebd Updating the nodeAffinity of gated pods having nil affinity should be allowed
a0f14c1c5ea CHANGELOG: Update directory for v1.25.10 release
bab8002fb38 CHANGELOG: Update directory for v1.24.14 release
80b9c853613 belated cleanup of some kube-proxy stuff for old versions
e553fe1fff0 CHANGELOG: Update directory for v1.27.2 release
c9e4de90dbe CHANGELOG: Update directory for v1.26.5 release
526d45416fb update err status code check in transformation metrics
5a75a03a774 Improve warning message
b76ef2e095f fix: move to `dl.k8s.io` from `kubernetes-release` bucket
fc4fb004cf6 add reviewers and labels to yamlfmt
93462377120 Update docker/containerd/runc versions and capture more logs
885f3d7a7df Sort and limit to the describers the return (string, error)
9e9a6cde4b8 test/integration/scheduler: fix data races
b035c373db8 build latest sample-api-server for test/e2e
bafae5c0764 rename err to lookupErr
8b9cbe62025 fix false positive kubectl plugin unit tests
b9950b5192d Drop zeitgeist from tools go.mod
36f0caf7ecd remove GlusterFS references from test/e2e/* comments/descriptions
d83c3ce7ca8 make rbd and iscsi test images in parity with the test code
9de2846c72c remove glusterdynamic provisioner images reference from tests
763e7923fb9 e2e: replace ubuntu-slim with agnhost in hpa cm noExporterDeployment
261de704c25 kubeadm: fix a bug where the static pod changes detection logic is inconsistent with kubelet
666be79d670 legacy names of volume plugins have been gone a LONG time
8b4840aa374 clean up unsupport etcd version
e0ebac6c9ca drop redundant NArg check when looping Args
82c40e3697e drop redundant NArg check when looping Args
829bcea7634 remove vestigial BUILD file
0616d15712b Fix perf-test by increasing the error margin
46ed70ecac5 Bump runc to v1.1.7
51d79c4d6b0 e2e: use gomega.Expect instead of deprecated framework.Expect*
1daf74d25c4 Initialize data if nil
b81cfb9cb8c Update vendor
15c5713015e managedfields: Remove gvk from SkipNonApplied
b52e57c589a managedfields: Improve/strengthen version checking for Apply
559d12fcce0 managedfields: Create NewFakeFieldManager
45853e20ae5 openapi: Create client -> TypeConverter function
45603efecb7 Create e2e test for PodEphemeralcontainers endpoints
ebaf49dbd70 Export DefaultServerUrlFor utility function
5519b89a28e Validate lock identity
e3eb4bd0c56 updating dependencies.yaml for etcd v3.5.9 version
c99cf53a108 e2e: deflake hpa e2e custom metrics tests
247ea7fc780 use upstream etcd github path instead of redirecting one
6616e1f2385 update etcd version in install.sh to 3.5.9
0e456dcf866 Clarify localhost nodeport comments/errors
a744a186b67 Rename GetNodeAddresses to GetNodeIPs, return net.IP
2ca215fd994 Add NodePortAddresses.MatchAll()
d6e488b998e Changing annotate PrintFlags from annotate to annotated
d8e82b1417c e2e: use gomega.Expect instead of framework.ExpectEqual in windows/*
8c6c1e53194 plugin_evaluation_total metric support preScore/score
3680a5230c3 Bump docker/distribution to 2.8.2
3ac74973610 Chore: cleanup in interpodaffinity
073b4cf66ad test/e2e/dra: fix kind cluster creation
3b69fa2fa54 dependencies: update github.com/mitchellh/go-wordwrap v1.0.1
19ae103e829 emit warning on deprecated annotation volume.beta.kubernetes.io/storage-class
517c5b75c5d Update unwanted deps
d6d1dbdd82a Update kube-openapi, drop mapstructure
a52dcd0d9f3 Add DelayCacheUntilActive option to start informers after leader election
7c554ea1d91 Regenerate discovery fixtures
2ab6fd3590b Capture discovery API output in test fixtures
3867569ae27 codegen
0819d342040 using parsers in applyDefaultImageTag
7da7468a3fc cleanup: duplicate request_test TestRequestAbsPathPreservesTrailingSlash
f0f92853ad8 Add api-machinery TL owners permissions for jpbetz
e4dd6f68dc8 remove CSIStorageCapacity featuregate
9ac657bb94e Make NodePortAddresses explicitly IP-family-specific
f7bb9a9a0a7 Remove a mostly-unused variable in the ipvs proxy
1ca8f84eede Scheduler: Pass the supported nodeSelectorOperators to the field.NotSupported
d85b91f343b scheduler-perf: measure workload runtime and relabel workloads
aa405c8aac6 Allow runtimes to provide additional context on CRI pull errors
83fb5a50bc9 dependencies: bump k8s.io/utils
daebf1c735d Simplify plugin resolution check function
f562375c8a6 add changelog for kube-addon-manager v9.1.7
be4c4a51ea2 Update pending_eligible_endpoints.yaml
d34d4755ae2 Promote APIResources e2e test to Conformance
6e2ea32fc89 feature(DynamicResources): return Skip in PreFilter
a0133b7cc47 proxy/ipvs: added daman1807 as reviewer
dcefc42b35a update vendor dependencies for the change
ae749238786 etcd depdencies are updated to v3.5.9
13cef6a7549 cleanup unused variables for v1beta2 component config
815578295ae Revert "support short name for flowschema and prioritylevelconfiguration"
72202f9a007 Revert "add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations"
45836971f27 cli: replace intstr.FromInt with intstr.FromInt32
8580c116d5c fix: use dl.k8s.io, not kubernetes-release bucket
ef9f8d7c0c8 kubeadm: Remove leading zeros from etcd member ID in log messages
ff4c6916ec7 kubeadm: Fix log message when etcd member is added as learner
196e2f041b1 Update the cgroups v2 toleration in local-up-cluster
7248b9263f0 Fix comments on InformerFor
6ac1bae2815 test: Improve debug output of init container tests
1f16d711857 kubelet: Rename PodManager DeletePod to RemovePod
166256f73e8 kubelet: Reduce the interface pod.Manager consumers accept
8bd94dfa762 kubelet: Organize and document kubelet pod-related members
bb568844b67 kubelet: Separate the MirrorClient from the PodManager
80b1aca580b kubelet: Remove dispatchWork and inline calls to UpdatePod
e7207c85467 kubelet: Merge orphaned mirror pod names into GetPodsAndMirrorPods
f8086f2dac1 kubelet: Convert IsMirrorOf to a function
02960a8253e kubelet: Remove unused mirrorPodFunc in eviction
1168b118750 Stabilize local-up-cluster in our CI
3dc4eea8896 proxy/service_health: release read lock early
655f2f74010 replace build to build.sh
cc1251123ba use wait to avoid blocking the SIGTERM handler
808098c4c69 proxy/ipvs: healthzServer for instantiating the proxier
4b50c4bb016 Update --image-gc-low-threshold option's description
3da79e2850d OpenAPI V3 invalid document checks
cbe825b2b6c ginkgo update to v2.9.4 and gomega to 1.27.6
feb63fb0285 e2e_kubeadm: stop using deprecated framework.ExpectEqual
7681135f1b1 etcd: Build image 3.5.9-0
7a4787ade10 openconsensus update to v0.24.0
82d1e356de4 deps: go-gcfg update to the v1.2.3
f03b5cdc083 update containerd/ttrpc to v1.2.2
dd49af86b7b [UT] add ut for pkg/client/conditions
f7948c6e2e4 use kubectl v1.27.1 in cluster addon manager
eb1483fe64d user --prune-allowlist in kube-addons.sh
20602c819be e2e framework: remove dependency on k8s.io/kubernetes/pkg/api/v1/pod
2e2afc7fd27 Job: Use generic Set in validation
1ffe3f467e8 lavalamp is taking a long break
1ea17254bf0 hack/tools: bump logcheck to v0.5.0
3fa55d469c7 fix a bug where the AttachedVolume is not printed correctly in the log
8c82855467b When expecting pods count only active ones
de882f5193b Job: Replace deprecated pointer utils with supported ones
8f11f5bb2b5 DRA: use containerd 1.7 in kind image
123845da886 Log a warning if a ImagePullSecrets does not exist
3f3e1d507d0 add new metrics for the internal client-go transport generator
e7c679c362c cidrset, multicidrset: directly use getIndexForIP method
fe728996ca8 scheduler test: call frameworkruntime.WithLogger function for contextual logging
b4563925678 Migrated `pkg/scheduler/framework/runtime` to use contextual logging
bfb4f8b7071 etcd version monitor build go version update to 1.19.9
0ae902fca4c update golang version of etcd build to 1.19.9
3b634de6ffc test/e2e/dra: update README
5fdeaa8e42c update for feedback
6f23c774085 QueryParamVerifier falls back on invalid v3 document
d5f4b9634c6 DRA: fix image build on Mac
569695b0226 e2e/network: setting --max-time for curl
5fd5768ef32 kubeadm: Make etcd member removal idempotent
164113bc1c3 fix a bug where the KubeletConfiguration is not printed correctly in the log
a5575425b03 add no resources found message to rollout-status command (#117884)
c0611b6bb33 Return Skip in InterPodAffinity#PreScore under specific conditions
11f1d241654 unit tests: Fixes kubelet util unit tests for Windows
3a394bbeada fix:translations zh_CN LC_MESSAGES k8s.po error
4634073d0b9 Use getter function for plugin subcommand resolution
2c03afac4c8 apimachinery/util: stop using deprecated io/ioutil
e3d5feb76c4 fix HPA plain metric calculate
6607834207a Use the same report files as before
9150e6b55a1 s/of referencedFrom/from referenceFrom/
4bbf611773d Retool validation for pod HostNetwork ports
ec3379a717e Do hostNet Pod-ports -> hostPorts in Pod defaults
ef796dca9bb Simpler openapi gen - subprojects do themselves
93b2845bec7 Codegen: subprojects openapi
4909dbd0d7f Deprecate generate*groups.sh -> kube_codegen.sh
c3971002c9d MinimizeIPTablesRestore to GA
8f229057484 [refactor] refactoring flags and options in Expose cmd
82e3fa0930e fix fd leaks and failed file removing for main pkg and cmd
5289a7b029f fix fd leaks and failed file removing for test directory
b94c6daa0b7 fix fd leaks and failed file removing for pkg kubectl and pod-security-admission
982d2966cd3 fix fd leaks and failed file removing for pkg controller-manager and apiserver
73aeed8766c fix fd leaks and failed file removing for pkg client-go
f49cc5eb113 add remove_file in client-go util directory
c8737346db4 Export GOMAXPROCS environment variable
e865b30abd0 update serial number to a valid non-zero number in ca certificate (#117791)
308ab380d7c Add unit testcases of refMap.
23ac0fdaa52 APF: Dynamically compute retry-after based on history
99ebc8d9f82 Tweak annotating kubemark nodes on startup
aab02d52f4d Fix make etcd image failed
91570a36614 promote ServiceNodePortStaticSubrange to beta
e79daae6823 Chore: clearify need update test cases
fb4d0150b96 Convert apiextensions-apiserver to new codegen
29913a89735 Convert code-generator/examples to new codegen
643bf1b0362 Convert kube-aggregator to new codegen
1e0b7aab756 Convert metrics to new codegen
e368f1b25bf Convert sample-controller to new codegen
d0e5adb58bc Add a new way for subprojects to do codegen
05b3449346e kubeadm: Add etcd client unit tests
fc1b2287798 kubeadm: Use internal etcd client through an interface
e740f8340ee Introduce CEL EnvSets for managing safe rollout of new CEL features, libraries and expression variables
235c261196e Job: Fix a misspelling
b4560f9e573 kubeadm: fix a bug where file copy(backup) could not be executed correctly on Windows platform during upgrade
f2de1a00b8f storage/etcd: skip SendInitialEvents if the request is backward compatible
bbf5c03dd80 Add NodeLogQuery e2e tests
ddb8c8a38b4 remove ServiceInternalTrafficPolicy e2e feature tag
16fecf3e761 Refactor APF handler in preparation for dynamic retryAfter
d3237b72587 unittests: Fixes unit tests for Windows (part 7)
ccb4ca89549 record podUID in refMap in watchBasedManager
e4340f0d9bd Job: Use generic Set in controller
22d0aa1d04a remove DevicePlugins featuregate
27cdddeaf16 update Feature:KubeletCredentialProviders] e2e test name
2ebc0cc0257 remove unwantedReferences
57969c1b52c Fix etcd3 config changed
4e24237f3bc e2e services: retry if healthcheck nodeport is not avaioable
e560df770e3 respect local GOPROXY setting in build/common.sh
c56839c0a1e etcd: Update version to 3.5.8
64f2fe2357d kubeadm: fix crictl pull using wrong flag, use -i and -r
936265e8707 Add podUID in AddReference and DeleteReference
cd51c1803e2 Add new partial/full sync time metrics for iptables kube-proxy
a862a5f2d24 Use the right executable ss/netstat in log message
ae08fe1e199 ProbeTerminationGracePeriod promote to GA
2cb215e1091 Add all describers to the exported DefaultObjectDescriber
5ea40d14fd9 Added e2e_node test for sigkilled pods exit code and exit reason check
3e57a0bd138 Add go.work and go.work.sum to .gitignore
008576da073 Improve and simplify maintenance of APF bootstrap objects
194ac957ad3 make resize of hollow objects more verbose in start-kubemark
c3e77bf21cd Update podFailurePolicy comments from alpha-level to beta
4fa7e444805 Remove gcp cloud-provider checks for kubelet version >= 1.7.2
1c45bacfb0e mount-utils: fix flaky test 'TestFormat'
6a5cf99aad1 pkg/proxy: human-readable messages
c2c8b8d1783 pkg/proxy: using generic sets
359bcec0e09 benchmark test to evaluate the overhead of podMatchesScopeFunc
edd032e22b7 Fix incorrect calculation for ResourceQuota with PriorityClass as its scope
e807a6aec57 Disable NewVolumeManagerReconstruction feature gate
0c9f55588c5 Simplify creation of default KubeProxyConfiguration
ec2cc36404e e2e: disable jig.ExternalIPs
b849ff57b85 e2e reasonable grace termination period timeout
791573ddb60 promote ProxyTerminatingEndpoints to GA
b249b4ca9bb Promote ExpandedDNSConfig feature to the GA stage
5aca41af50f [local-up-cluster] Use the kubectl we built
8524d21bf48 Bump Ginkgo Poll Progress parameters to a sane level
034528a9f04 scheduler perf: add DynamicResourceAllocation test cases
1c52fb38759 Update publishing-bot rules for release branches to Go 1.19.9
19f7cb23c8c e2e agnhost functionality to RST TCP connections
63b69dd50ce Add support for CRI `ErrSignatureValidationFailed`
859359ad6ae Fix strict linting
a7035f54595 Pass Context to StartTestServer
2d866ec2fc8 Teardown only scheduler in integration tests
8969fdd2f51 QueryParamVerifierV3 resilient to minimal OpenAPI V3 documents
cede96336a8 Depend on k8s.io/utils cpuset
9f46cbc6fa4 Update k8s.io/utils version to v0.0.0-20230313181309-38a27ef9d749
10a869fc752 Remove duplicated config fields from ProxyServer
1f7c07f3553 scheduler: remove deprecated v1beta2 KubeSchedulerConfiguration
a3848714f55 dependencies: update gh/Azure/go-autorest to latest version
17c17da97b6 e2e_node: move getSampleDevicePluginPod to device_plugin_test.go
c53cc4fe0db Update distroless-iptables to v0.2.4
c4575c34382 Fix up detect-local-mode validation
3734fe7ab1d Remove some useless error checks
19885264f3d [go] Bump images, dependencies and versions to go 1.20.4
d82684e691d Add check to skip PodTopologySpread PreFilter if no constraints are specified
d22b9310e6e Allow override of prerelease/buildID portions of version at runtime
36b760a9317 upgrade etcd deps to v3.5.8
7c5573d326d Fix cmd, integration, and conformance tests
69eccd41b89 endpointslice: reduce visibility of vars/funcs
933b665c18c Upgrades spf13/cobra to 1.7.0
3653b21e6ba Move glusterfs 1.25 deprecation notice to the deprecation section.
9d19c207d22 fix: fixes flake in TestKMSv2Healthz
561548e86c4 unit tests: Fixes kuberuntime unittests for Windows
5f489a33277 feat: rename PodHasNetwork to PodReadyToStartContainers
a40810a2d9d Add comment about removing the feature gate
e51e5962d5a Use early return pattern to avoid nested conditions
e1e38148bb2 Add DisruptionTarget condition when preempting for critical pod
7be3f8e43f7 Remove old metric scheduler_goroutines
e7396e35513 remove ability to re-enable serving deprecated versions of the runtimeclasses kind
d96f83f02f9 windows-tests: Update connectivity check util function
e496085bd34 Kube-proxy/ipvs: accept access to healthCheckNodePort on LbIP
d257d5dfdc4 Trigger re-sync on any change to providerID
40de26dcff8 KEP-3325: Promote SelfSubjectReview to GA
d9524379210 Fix flaky HPA e2e tests by not failing on context cancelled (#117669)
5fff8cae749 dependencies: klog v2.100.1
d55b67b3490 Clean up brace whitespace in **/validation_test.go
2ad2c15c9ca Update copyright year to 2023
b464d084278 Remove custom fake svc lister in favor of regular indexer
b899ae48477 remove genericfeatures.DryRun in 1.28
c6bdde8051c Create e2e test for APIResources endpoints
ab9c8eb1e8d Removing WindowsHostProcessContainers feature-gate
077cc20f8af fixup patcher test to include field manager
ad5cda4d219 remove checks for fieldmanager from handlers
4721ec7519c include apiextensions types in apiextensions generated openapi
08e756342c2 fix scale not being given gvk in CRD openapi schemas
ffb9c076d77 add OpenAPIV3 config to tests and server options
c2177dca5f6 add error for attempting to initialize field manager with nil typeconverter
94909af68ae supply deduced typeconverter to apiserver tests
302daa889c5 Throw error if OpenAPIV3 config is not provided
1b766839677 filter out directives before taking patch value as-is
6de6cd0a658 add integration test for nested $patch in SMP
e00a9c3a0b1 add subtests
ffeec1f4d44 Update compatibility data test
ec997d5433a Generated files for NetworkPolicyStatus removal
bff8a6cd9f3 Remove withdrawn feature NetworkPolicyStatus
0fcf42f3211 Move test double queue to test file and unexport
208af2d1d83 Localize SpyWorkQueue to cloud-provider for now
a15013ec8b1 Document RetryError properly
73bc9861d25 Improve error logging in processNextServiceItem
18e978a89df Improve RetryError GoDocs
de34540248a Update kube-openapi to fix race
d0677f528c0 Add json tag
69bc6855568 node: podresources: graduate to GA
04ad946e8fb kubelet dra: lock before getting claimInfo CDIDevices and annotations fields
aaa30439bdd reduce util pkg for testing in tempdir.
4c83aae2cc7 kubeadm: replace intstr.FromInt with intstr.FromInt32
026e7c7cb37 registry: replace intstr.FromInt with intstr.FromInt32
0ee9f1b7a75 kubelet: replace intstr.FromInt with intstr.FromInt32
1c4b97ea272 network: replace intstr.FromInt with intstr.FromInt32
5bfe738af2e apps: replace intstr.FromInt with intstr.FromInt32
94410ee8078 api-machinery: replace intstr.FromInt with intstr.FromInt32
4911e9de4a7 api: replace intstr.FromInt with intstr.FromInt32
79266560383 kubelet: Implement support for Windows podAndContainerStatsFromCRI
14952cef5b7 kubelet: Move Linux stats to a Linux specific file
fc8b4657c18 Add tests
ea4ce5dc28e Alias api/errors instead of stdlib errors
a179203bdba Support specifying custom LB retry period from cloud provider
da922f0af67 Remove ability to re-enable serving deprecated discoveryv1beta1 APIs
e28f3de6568 Revert "proxy startup-time config handling cleanup"
d94c733ee2b Use absolute path instead requestURI in openapiv3 discovery (#117495)
34d3c7520be update Deps gopkg.in/warnings.v0 v0.1.1 to v0.1.2
944a4cd3114 Remove ability to re-enable serving deprecated autoscalingapiv2beta APIs
671a3f43fdf Correct the changelog for GlusterFS removal in 1.26.
859690d72a4 Added support for image credential provider for windows and arm64 on gce
28c573358b0 test for init container restarts
d727df1741e node: device-plugin: e2e: Additional test cases
3dbb741c976 node: device-plugin: add node reboot test scenario
a26f4d855d5 node: device-plugin: e2e: Capture pod admission failure
96975737033 node: device-mgr: e2e: adapt to sample device plugin refactoring
282a6a80b92 node: device-mgr: e2e: Update the e2e test to reproduce issue:109595
d509e79837d node: device-mgr: e2e: Implement End to end test
dc1a5926321 node: device-mgr: Handle recovery by checking if healthy devices exist
53c9103a1de Set ENABLE_AUTH_PROVIDER_GCP to true in gce tests
2572a430344 kubeadm: fix unit test failure on node with multiple cri endpoints
f81b49d8739 Remove ability to re-enable serving deprecated eventv1beta1 APIs
48d01d6d9b0 Remove ability to re-enable serving deprecated batchapiv1beta1 APIs
c6f4bee98dd kubeadm: add deprecated FG UpgradeAddonsBeforeControlPlane
4d9261c7567 Fix LocationOfOrigin shows up unexpectedly
76fe41a996e chore: update cgroups and ttrpc versions
0dbeff4b6e6 remove GA feature gates in 1.28 about network
4e7b6e8ba49 remove DelegateFSGroupToCSIDriver featuregate
fc0d2cd32f5 added init containers tests to simplify the sidecar KEP large PR
258c4c4251e Remove duplicated config fields from ProxyServer
9d4f10f5d28 Fix up detect-local-mode validation
5ece6541b80 proxy/ipvs: don't bind nodeips to the dummy device
5310305098a proxy/ipvs: add a GetAllLocalAddressesExcept() function
f24d1d2c950 use go 1.19.x for etcd version monitor compilation
91ee58050f8 wait: fix PollUntilContextTimeout godoc comment
b3e0bc88640 scheduler_perf: let the test decide which informers are needed
969d28b12b7 scheduler_perf: refactor common code
91df71be549 correct etcd base image reference in the doc
6b40cd8cd37 update test/conformance/image version to v1.4.2
6c8be35fa86 update the etcd base image to v1.4.2
1eca720dcc7 Refactor some watchcache tests
7f370d651dd Migrated `pkg/scheduler/framework/plugins/podtopologyspread` to contextual logging
54e6f609ceb Migrated `pkg/scheduler/framework/plugins/noderesources` to contextual logging
152c1a02723 Chore: Replace re-initialized variables with create new ones
37a9260d5c5 Migrate pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go to use contextual logging
eeb13993832 Migrated `pkg/scheduler/framework/preemption` to use contextual logging
550d4c00746 scheduler_perf: support test case selection via labels
79de8879cbe OWNERS_ALIASES: add self to sig-node-reviewers
217196c59fa Add ROX storage tests (#114628)
6a4cf352b8b remove tracking annotation from validation and webhooks
2af662b05fe Refactors discovery content-type and helper functions
170d5ef9fa0 code cleanup for kubeadm
902c4ecc90f Add jpbetz to approvers of apiextensions-apiserver
0a582431593 node: device-plugin: e2e: Add test case for kubelet restart
09100804722 node: device-plugin: e2e: Provide sleep intervals via constants
4a0f7c791fe node: device-plugin: e2e: Update test description to make it explicit
fd459beeff6 node: device-plugin: e2e: Isolate test to pod restart scenario
5ab4ba62052 node: device-plugin: e2e: Annotate device check with error message
5c4f397361f node: device-plugins: e2e: s/devLen/expectedSampleDevsAmount
0aa6a5726a6 node: device-plugins: e2e: Refactor parse log to return string and error
8ed861889aa feat(NodeVolumeLimits): return Skip in PreFilter
28519e240ed Fix scheduler performance regression after adding plugin metrics
c96188a38b5 remove seccomp profile path
96eaed9980d cluster/gce: update cloud-controller-manager to use go-runner
0d27d3cfffc cluster/gce: update cloud-provider-gcp image to latest tagged version
4cdfe600e04 Fix image pull error type `ErrRegistryUnavailable`
6da128bdb3e dependencies: go.uber.org/atomic v1.10.0
87230578802 dependencies: update go.uber.org/multierr v1.11.0
f7ce6f834a1 Chore: add ipfamilies tweak functions
78b8af9fed3 scheduler_perf: update throughputCollector
a325fdbbe5d update Deps gopkg.in/natefinch/lumberjack.v2 v2.0.0 to v2.2.1
da3e7e37816 stop watcher when error occurs
018564b8cfc change the seccompProfile field description to match the imlpementation
6d8a0100f70 Fix typo in kubectl api-resources help text for --categories flag
3c45b61b643 [KCCM]: have providerID trigger re-sync, but not be required for nodes
a4f98e4c1e8 Update staging/src/k8s.io/apiserver/pkg/cel/common/values.go
e115d5234c2 Fix bug where CEL listOfString.join() results in unexpected error
3229deda37b register missing metrics
24e68b3c6ac use client-go metrics not only rest_client
2bd42061b6e Remove support for EndpointsLeases and ConfigMapsLeases lock from leader election
3f247e59edf Refactor cacher.ListerWatcher code structure
892ebf2d253 Ensure version "*" is passed instead of "" for all authz checks (#116937)
73d9a9cfa06 kubelet/kuberuntime: Fix flaky test 'TestGeneratePodSandboxConfig'
e3d84aa93cd kubeadm: add the experimental (alpha) feature gate UpgradeAddonsAfterControlPlane that supports upgrade coredns and kube-proxy addons after all the control plane instances have been upgraded
78e6cb1cccb intstr: add FromInt32, deprecate FromInt
88e2c344390 Enable a bunch of generic storage tests for watchcache.
860329c04b5 drop v1.25.0 API testdata
440d5910f7d Chore: add app protocol tweak function
06993afdd6a Chore: cleanup whitespaces
3d8f7233da9 Chore: remove impossible and redunant cases
4a6bc66e40f updating microsft/go-winio package to latest version
60d25c3ed77 improve remotecommand testing fuzzing the data stream
d76f5dae67c Add a comment to roleRef to document that it is immutable
959c90c1d9a Chore: add deletion timestamp tweak function
4169d7d0283 golangci-lint: allow exceptions for Go naming convention
4f8eba2a0be Chore: add finalizers tweak function
28db34a231f Chore: add load balancer tweak function
1c465c51e80 Chore: add service port tweak function
0cc7369196b Chore: add LBIngress tweak function
23c242770fe Chore: add etp tweak function
2f6bc661dc3 Chore: rewrite newService function
f9bab9a60b0 add --concurrent-cron-job-syncs flag
bc00f5c071f Update cri-tools to v1.27.0
c3384191ea6 remove validation GCE-ism
28ac914bc54 Remove repeated info
e0d5c4aa93e Move info where its most relevant
0a508ad8067 Update `kubectl edit` documentation
d0412928961 Add v1.27.0 API testdata
7514d8b3339 add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations
95fea2f2bff add test case for merging a patch against empty list
3469bb05db7 kubeadm: fix unit test panic for TestNewResetData
ed37e6986b6 uncomment exit trap to cleanup tmpdir
63d44fdde58 retain KUBE_GOPATH on recursive kube::golang
4d736a0435e cleanup update-mocks.sh
726992f9db9 call kube::golang::setup_env before setting up worktree
17db22d0558 Fix potential mutex usage bug
39e52449f9f remove nodes resource from CoreDNS RBAC manifest
7a14c5ad6dd ensure we can remove _output
11f3ef1ed7d drop linux/arm build warning, now that 1.27 is released, this is covered by the release notes
104c208d0fb add Authentication tracking request/error counts and latency metrics
65f3454c1d9 fix undefined convertion
8efeb5afcfd Dependencies Update google.golang.org/protobuf v1.28.1 to v1.30.0
6f90c536330 Dependencies Update golang.org/x/tools v0.7.0 to v0.8.0
5c584269a79 avoid volume copy in checkAttachableInlineVolume
2bbd07c0192 remove defunct interactive tutorial
1d15354ccb5 update gofuzz dependency
2cd23c8b17c Update go-logr dependencies
062f146d325 Replace the deprecated ioutil method in the pkg/credentialprovider directory
be6709044ad etcd: Build image 3.5.8-0
6db4cbfde7b cacher: do not popExpiredWatchers when the cacher hasn't dispatched any event
eab66a687b2 cacher avoid double locking (#117410)
a02e94ae2b4 e2e: fix flaky test 'should contain OpenAPI V3 for Aggregated APIServer'
0c54d9af6f2 Fix stomping os env in kubectl e2e tests
766f6c3ad41 Include stderr in cred provider plugin errors
eaba1703b1b enhancemanet: reduce calculation calls
a8b808ee6ca Replace the deprecated ioutil methods in the test directory
a959785f964 dependencies: udpate coredns/caddy to v1.1.1
0297329795e Refactor watch bookmark tests to allow sharing between etcd3 and watchcache
45e836a968a Generalize few watch tests from cacher
f3b9e0ddc9b Replace os.Setenv with testing.T.Setenv in tests
7cbbf47f5ea Cleanup environment in tests that call os.Unsetenv
d38ac7e7c6b Replace os.Setenv with testing.T.Setenv in tests
e8d3a4a105c Cleanup environment in tests that call os.Unsetenv
2181eea4843 Replace os.Setenv with testing.T.Setenv in tests
cf125a35611 Replace os.Setenv with testing.T.Setenv in tests
b9ef1603223 Cleanup environment in tests that call os.Unsetenv
240fccd7668 Replace os.Setenv with testing.T.Setenv in tests
89467ad3e9b Replace os.Setenv with testing.T.Setenv in tests
fc643d2e40c Replace os.Setenv with testing.T.Setenv in tests
29b6c54d158 dependencies: update github.com/cenkalti/backoff/v4 to v4.2.1
0a8343352b4 Document gomega.Equal() instead of gomega.BeEqual()
d231d6022b0 Remove endpoints (old leader election) related RBAC from kube-controller-manager ClusterRole
e340325024d Fix nil pointer in test AfterEach for volumeperf.go
453f81d1cae kubelet: pass context to VolumeManager.WaitFor*
4de0d2c6f8f use generic set in storage/validation
3ac77335303 Add `saschagrunert` to `sig-node-reviewers`
7fb88eec73c support fieldSelector spec.hostNetwork
4d73864026c Dependencies Update golang.org/x/timet 90d013bbcef8 to v0.3.0
ff9ebfa90de e2e framework: control k/k/pkg imports
ee99ca25ee6 Remove unnecessary if judgments
1359ebcc5b0 fix doc mismatch
a6339e2702f proxy/conntrack: using common conntrack cleaning function in proxiers
399f09dde05 proxy/conntrack: common function for cleaning stale conntrack entries
efb05630946 proxy/conntrack: moved pkg/util/conntrack -> pkg/proxy/conntrack
37ea51fd567 Improve the performance of map usage
9c0153aef9e KCCM: add providerID predicate to service controller
d3c103edce7 Re-work logic in shouldSyncUpdatedNode
dc4f6f9da6a e2e framework: remove last dependency to k/k/pkg/util
40521fe3601 e2e framework: remove last dependency to k/k/pkg/kubelet
030debc1990 changelog: fix formatting issue with v1.27 change log
4e8c5364bc6 CHANGELOG: Update directory for v1.27.1 release
1b93abb9bac Move kubelet config API to e2e_node
4e928c96b5e skip checks when topologyPolicyName is PolicyNone
71a989e5e9c Fix CHANGELOG-1.27 correct
06dc3d00fcc e2e/apimachinery: Add an e2e test for the API Streaming feature
8d19c0002bb Add node check to vSphere cloud provider
3b7c14e8cfb Remove unnecessary int type conversion
36e6e759182 dependencies: udpate seccomp/libseccomp-golang to v0.10.0
5bce18c98ec dependencies: update go-semver to v0.3.1
d7270f4ba72 dependencies: update go-oidc to v2.2.1
b0d89a7807e dependencies: update github.com/gofrs/uuid v4.4.0
1595d7f52d7 dependencies: update go-systemd to v22.5.0
9cfdf989eda dependencies: update gh/fvbommel/v1.1.0
6b70710b0d1 dependencies: xlab/treeprint v1.2.0
6320b6843a2 dependencies: update netns to v0.0.4
9e2bb40e158 fix typo annotation key notes.
becf73a82b1 add invaild scope test case
c4e1b01416e replace spew methods with dump methods
a96358ac0fa Remove some useless error checks
867be8fc3e2 get rid of e2e/framework -> k/k/pkg/kubelet dependency
2bb35e08f4b Clarify kubelet/kube-proxy iptables rule skew constraints
6d13cad2cf5 dependencies: update gh/Azure/auto-test/{adal,validation}
432a3016a49 Revert "Merge pull request #113151 from ncdc/refactor-crd-conversion"
9c5a66e2080 Revert "CR conversion: protect from converter input edits"
ed0124855aa add log includes pod preemption details
0979d554435 unit tests: Skip flaky tests on Windows (part 2)
2d06fad5163 dependencies: azure-sdk-for-go to v55->v68
625c3025057 change pv recycler scrub cmd to find -delete
c042837a761 truncate the precision at a millisecond for image pull event message
804d9f47c9f kube-aggregator: correctly use client-go TLS cache with custom dialer
db5d74935ee optimize evict sandbox logic
ccf7ddacfce replace ioutil with os, update doc
5668399a87c Codegen: use openapi-gen via k8s.io/code-generator
b23ab389b4f Add SIG ownership to controller/nodelifecycle
375e3cf869b CHANGELOG: Update directory for v1.24.13 release
f7295ac5e08 CHANGELOG: Update directory for v1.25.9 release
d567d61aa56 Fix a data race in TopologyCache
a62563f1305 Fix TopologyAwareHint not working when zone label is added after Node creation
83a1774df2b CHANGELOG: Update directory for v1.26.4 release
a7a8cd6e5de Codegen: subprojects: nuke existing files
bc302fa4144 Replace uses of ObjectReflectDiff with cmp.Diff
9627c50ef37 Replace uses of ObjectGoPrintDiff with cmp.Diff
29c0b73d640 Replace uses of diff.ObjectDiff with cmp.Diff
dd7af241c11 Replace diff.ObjectDiff with cmp.Equal
97bab44cae3 Replace apimachinery diff.StringDiff with cmp
4f6714ef42d apiserver/etcd: add request and request_error metrics (#117222)
d09842e0adf node-lifecycle-controller: improve monitorNodeHealth test-coverage (#116687)
be101a748dd Remove some unused winkernel arguments/fields/functions
8a790ac2e1b Remove unused ProxyServer.EventClient field
9754386c764 Remove write-only ProxyServer fields
b4c384ebfb2 vendor: bump runc to 1.1.6
c69689659a6 Add `--concurrent-job-syncs` flag to kube-controller-manager
4438208511e api: encode NamespacedName with lower case in JSON
476e407ffd2 cacher: prevent a potential deadlock
7cdffe37c1d update container storage interface spec to v1.8.0
10a8ec5b2cc use case-insensitive header keys for http probes
a6173fad88a Delete duplicate code in schedule.go
5588e8a4cd0 hack/logcheck.conf: remove certificate controller exception
277c03fc799 remove these unrelated openapi files (#117051)
9a468563070 remove reuse buf todo (#117033)
5da386745af Kubectl convert - warn users with NotRegisteredError and Fail on all other errors (#117002)
0eec63fd687 fix the mistake in the release note
02d8fc28faa fix: add the bug as a known issue o on the v1.26 release note
75f17eb38fc optimize watch-cache getlist (#116327)
9c15d75f234 Migrated `pod-security-admission` to contextual logging (#114471)
2bed67d0f1c Revert "Optimization on running prePreEnqueuePlugins before adding pods into activeQ"
73eb7c09309 Codegen: easier to read logs for subproject output
bbbb695060a Codegen: subproject: chdir to the project dir
893ec0ca453 Codegen: simpler k8s.io/code-generator/examples
af29cca6ced Codegen: new tools will not become part of 'all'
5f7345deaac Codegen subprojects: consolidate generate-*groups
95e614b3717 Codegen subprojects: deprecate "all" in scripts
a94ed5b8ac8 Codegen metrics: include v1beta2
8b68e063e14 Codegen subprojects: regen defaulters when needed
5200f4b0d36 Codegen subprojects: reify 'all' into explicit
201653aa870 Trivial change to reduce diffs
901dea73073 Fix azure disk e2e after migration
d212041d513 hack/local-up-cluster.sh: Remove old dynamic certs
ed5dd38dcdc CHANGELOG: Update directory for v1.27.0 release
464edfe6f6e test/integration: create nodes directly with kubernetes.io/hostname label
9204e6b286e remove unused constant `expansionFailed` in expansion test.
4491ba89171 rename variable delete to avoid collision to builtin variable
d04d7ffa6ec kubelet: Mark new terminal pods as non-finished in pod worker
0020631985e test: Add node e2e to restart kubelet while pod is terminating
aa73f06e569 scheduler perf: allow creating 0 items
49bbf7c2681 scheduler_perf: fix race condition
a869a898257 scheduler perf: remove cleanup func
b039a2ff2c7 Add new contribex leads to sig-contribex-approvers
9363afc6502 Fixing broken tests
d102a6fea51 HPA Controller - Update Owners
8d18ae6fc24 Use the generic Set in scheduler
b04ca79445e Add unit tests showing the effect of unlimited containers when calculating pod limits.
1dec97436c8 Fix typo at job_test.go
046bb892566 supported version of etcd 3.5.7-0 for Kubernetes v1.27.0-rc.0
f138d29bf2d watchcache: currentCapacity acquires read lock
c77ad3116f4 kubelet: fix setup of emptyDir with sizeLimit (fsquota)
ea74a2d877d cpumanager: fix typo in godoc
1cce3b3e2f5 wait: fix incorrect suggested method
d3ae6c2df3c Specify KUBE_ROOT for test-e2e-node/AWS to work
d9bd22115ff Alias deprecated genericclioptions.IOStreams with new one
26b35ce36ae Remove endpoint related RBAC from scheduler cluster role
7fa3d54ea5b unittests: Fixes server journal unit test on Windows
08a324bf512 cluster/addons: set metrics-resolution to 15s
eba18d503cc cluster/addons: bump metrics-server to v0.6.3
88e055059cd component-base: avoid data race in log format registry
a2fb32870f3 test/integration/auth: fix data race
1dde8ef026e test/integration/framework: avoid race around grpclog.SetLoggerV2
f91518b81a5 Add genericiooptions in allowed list of genericclioptions
b4e4db336f6 More migrations from genericclioptions to genericiooptions
5e1c6cd0d4f pkg/registry/flowcontrol: avoid race condition during Create
934516791c6 Swap assert.Equal parameters oders to follow convention
2d06601b81c RBD: e2e containers base image has been udpated to F38
0518dffd259 iscsi: e2e containers base image has been udpated to F38
8d9386fc402 Remove genericclioptions.IOStreams struct
c3497b30aca More migrations from genericclioptions to genericiooptions
00c30941260 Migrate genericclioptions.IOStreams usage to genericiooptions
51a7751a496 Move genericclioptions.IOStreams into genericiooptions.IOStreams
e450ed98122 CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5
3d3686b9cf0 Return error for localhost seccomp type with no localhost profile defined
e1bcfd47da9 Sort unmounted volumes message in volume manager
79b3126f00a skip clear quota if FSQuotaMonitoring is disabled
0a37f09c32b Fix directory mismatch for `volume.SetVolumeOwnership()`
731068288e1 correct storage class selection message
cc8cd88a94d remove duplicate validation for csi
978da1e8f13 remove GA feature-gates
bda73bd1129 Refactor remote runners
e389d140ae6 fix as suggested
457bb58ebbf kubectl events: Support fully qualified names for --for flag
1893f639d03 test: Fix flake in node e2e mirror pod tests
ffcf3ee6f87 feature(pkg/api): warning for Pod with null labelSelector in PodAffinity and TopologySpread
70369bfe299 remove GAed KubeletCredentialProviders
5662566e03a Set GOMAXPROCS explicitly
56755b8ffdb fix doc mismatch
8e36e948ce6 verifyVolumeNoStatusUpdateNeeded may cause flake and so only keep the last ones
dac85fe2d3f [KMSv2] cleanup comments in v2 proto api
feba08a6947 Create local copy to avoid potential race condition
29503fd8d45 openapi: Make file client more easy to re-use
ed48dcd2d71 kubelet: Ensure pods that have not started track a pendingUpdate
db92cc13880 ftr(etcd): add benchmarks
05f4e497f1d Deflake TestGetListNonRecursive
906f0607efc Clean up kms test
d3f6cb717f7 update conformance yaml
7bfcfc4d5de docs: fix storage e2e test README
f7765eb0d42 Add damemi to emeritus SIG scheduling approvers
bbbd366cf39 Move damemi to sig-scheduling reviewers
397cc73dc9b delete unused functions in pkg/controller directory
47f8d42a6ba Add CecileRobertMichon to sig-cluster-lifecycle-leads
449f847630e [KMSv2] update ci script and add readme
86e1f4b9d10 e2e node: bump all nodes ready timeout
beb329f4bfa Do not look at VPC-related resources outside the cluster's network
8d92cfb1316 Added conversions to/from NamespacedName
df0a2538205 generate ReportingInstance and ReportingController in Event
e9b384f5a75 fix typo
f638e2849fb replaced spew.Sprintf with a util pretty print function
838ed7feb53 Improve the performance of map usage
f6fa250e304 Add API approvers
03be789851d Fix sample-controller docs after moving to context-based cancellation
99ad88a2611 Remove unnecessary int type conversion
f2fe1fff655 [KMSv2] add tests for generate transformer
479fcf0b13f kmsv2: validate encrypt response at DEK generation time
8d644fbc725 return skip in volumerestrictions
ade63dd7647 cronjob: add ut for namespace terminating cause no extra log
9a776cbf212 kubelet pod-resources: e2e node test add failure description ExpectNoError
1031977b7d8 kubelet PodResources API: follow-up review comments
ec9515a828e Add structured alternatives to strings in client-go/tools/cache
2b01f63b115 move check for noop managed field timestamp updates
07ebb22db92 added known issue for 1.27 release
80480f8e215 combine conditional checks
7a6d58001b7 handle event errors caused due to terminating namespaces
af95a76bb21 cri-api: fix comment lines about PROPAGATION_PRIVATE
daa1d287e4d fix GetPodVolumeClaims in comments
c14068c2023 deflake: Add retry with timeout to wait for final conditions
fbf33e32e61 Fix memory leak in kubelet volume_manager populator processedPods
27f84b755e1 Migrated the volumezone scheduler plugin to use contextual logging
ddc13e983b5 Chore: add selector labels tweak function
4cab11f26f0 Chore: add persistent volume claim retention policy tweak function
ba9dfe686fd Chore: add persistent volume claim template tweak function
f97d3cf7486 Chore: add rolling update max unavailable type tweak function
1b17b4fa799 Chore: add rolling update partition type tweak function
f3ffeae426f Chore: add update strategy type tweak function
5e0161b3de8 Chore: add labels tweak function
ec34891782c Chore: add annotation tweak function
b907d5af49f Chore: add finalizers tweak function
18ba7c0e433 Chore: add ordinal start tweak function
3eb34d8b6ce Chore: add min ready seconds tweak function
2161d095fa1 Chore: add template restart policy tweak function
4418a9f5906 Chore: add replicas tweak function
7fc08e0ce70 Chore: add pod management policy tweak function
77c7d6efcf6 Chore: add basic make function for stateful set
4a667a1026c fix: remove case sensitive checking of probe headers
81a0ea3da3c return name when error occurred in csi-translation
a2cf4e73459 use describe node to print node events as well
e5674903178 fix: remove last ip when apiserver was shut down
f59ac6e6524 [WinProxy] Adding additional validations to queried endpoint list iteration.
db5590a194b Remove sig-network-driver-approvers alias
fc8892d26d7 Add more labels (esp. area/kube-proxy) to sig-network OWNERS
2f3800e1007 Make pkg/util/iptables and pkg/util/ipvs owned by sig-network
10b36075df6 Cleanup: use Set instead of map in endpointSlice utils
eb60dce33b0 deprecate ExperimentalHostUserNamespaceDefaulting
94f2d351644 Wire bootstrap token authn secret lister only when it is enabled
d71aea434e5 docs(readme): add go report and latest release badges
a780544f58c add log for kubemark start
d25572c3892 kubelet: HandlePodCleanups takes an extra sync to restart pods
41ed0e12341 Add an image for kubectl
1c7155e7ff6 Move hollow_proxy.go from pkg/kubemark to pkg/proxy/kubemark
8d3a498c879 don't ignore UID impersonation in webhook clients
364b66ddd65 admission ApplyTo: take in clients
630af564be3 Update cri-tools to v1.26.1
1aeec10efb7 DRA: get rid of unneeded loops over pod containers
017bb93887f certificate controller: use contextual logging
c94a9a14d8d update gofmt
8cbe9fe543e trigger update event when service ipFamilies changes.
b430464df06 gce: podresources: don't disable on windows
6b4ffdb9f75 node: re-implement Localendpoint on windows
195fc2f5162 kubelet: podresources: rename variable
d6d19a290de Simplify statefulset fuzzer
376bda41c74 undeprecate kubelet --provider-id flag
8bb328680c0 upgrade cluster-autoscaler v1.26.1 to fix ci warnings
c94bcabd7e2 [fix][typing] startResourceClaimController errrorf message has typos
31e1df9ae6c Bump Konnectivity to 0.1.2
aadb87bdcdb kubelet: Do not mutate pods in the pod manager
13192176002 Remove vestigal err check from CEL admission controller.
a6ffbb41f8e Squashed commit of the following:
bbf2b968c89 skip pod resource check when request is zero
64ecb161d47 Codegen: git grep returns non-zero if no match
241d46d1dd5 Codegen: deepcopy needs to run before swagger
3405853e6d0 Codegen: clean up stray ls-files use
3dd0c416639 support short name for flowschema and prioritylevelconfiguration
e2b10505162 add some buff for pod initial restart count that is not zero
efee9b4866d cleanup: promote ProbeTerminationGracePeriod to conformance tests
b0eeeacfc0c fix: the volume is not detached after the pod and PVC objects are deleted
4d3f92d5f75 Update toplogy keyset initialization
a890724f9ef cronjob: return immediately when failed to create job for the namespace is terminating
37aff025ff8 cleanup: remove Clear for fake job controller
b7cdbca2374 Add more tests that should exist but don't for some reason
67d7f09eb82 hack/OWNERS: add pohly as reviewer and approver
5dca1be0160 Add tests
bab2c18c246 Add jsonpath support for explain
77692f1b1c5 fix linting
fabf1cba947 Add warning about TLS 1.3 cipher suites
6ad156d80ee Cleanup: modify some sentences about statefulset
13354d3da4d Add note about TLS 1.3 cipher suites
c50c19d13af remove unused not api functions in the pkg/apis directory
b1e3326eaee Fix gorestful typos in the APIServerHandler.Director docstring
a3b44b574fb cluster/gce: Fetch image from image family
26f0325734c fix typo in volume util
0311a4e8e6d Fixed typo
9b9f22f06b5 Fix unknown field error in deployment lifecycle e2e
6f19e8656f5 Apply suggestions from code review
1134134e727 kubelet/cm/containermap: Improving test coverage
87f094c5e88 Replaces path.Operation with filepath.Operation (part 2)
5111bced373 fix test cases that may be incorrect
9a3c4aa2dc9 initial e2e tests for ValidatingAdmissionPolicy
bd778449f4d versioning of CRI API
34d980e7709 i18n: Fix bug where package-level variables are not translated.
ad2d23eb9ff Add test for cmd/kubeadm/app/phases/upgrade/compute.go
fd4adba9acd add sig/storage label for pkg/controller/volume package PR
2557b35202f controller: add non-exist node test case
95fe0a158c2 Fix strategic merge patch $deleteFromPrimitiveList bug
76c8765bda5 ensure etc-host file permission is 644 whatever umask is
73883c71574 Remove default annotations from copied storage class
f16f9100e57 cleanup: delete unused AuditDynamicOptions in apiserver
583ea17efd6 Add parameter to set SecurityContext for containers in tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2c49b125b5 |
docker-distribution: update to 2.8.3
Bumping distribution to version v2.8.3-2-gd607c6cc, which comprises the following commits:
6b9f48f3 docs: remove blank line
a4fa6992 Add v2.8.3 release notes
5e6b1b5c Do not close HTTP request body in HTTP handler
29b00e8b digestset: deprecate package in favor of go-digest/digestset
d1ab2430 [release/2.8] vendor: github.com/opencontainers/go-digest v1.0.0
3dda0677 deprecate reference package, migrate to github.com/distribution/reference
3c6f7788 update to go1.20.8
31f5cd48 Handle rand deprecations in go 1.20
29b8ba0b Update to go 1.20
3316b198 Update to golang 1.19.10
444d053e update golangci-lint to v1.52
b800af44 ignore SA1019: ac.(*accessController).rootCerts.Subjects has been deprecated
0a98a00d Ignore SA1019: SplitHostname is deprecated.
2ec0471b Dont parse errors as JSON unless Content-Type is set to JSON
cb121c3f Set Content-Type header in registry client ReadFrom
b57133cc referene: fix formatting of "deprecated" comment.
2c4bf1a6 replace deprecated function
110cb753 Enable build tags in 2.8
2d62a402 s3: add interface assertion
2548973b Enable Go build tags
ab7178cc Pass BUILDTAGS argument to go build
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f7188da2ca |
oe-go-mod-autogen: clarify need to update main SRCREV
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9e8a6af947 |
moby: update to v24.0.6-tip
Bumping moby to version v24.0.6-36-gf9b8a35ac4, which comprises the following commits:
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
f87492689e update to go1.20.10
3715eaf078 update to go1.20.9
31f49bd685 Make one-shot stats faster
37796c7029 Revert "daemon/logger/etwlogs: rewrite to use go-winio/pkg/etw"
51dc5fb58f integration/internal/swarm: rename max/min as it collides with go1.21 builtin
4e11c149d1 pkg/tailfile: rename max/min as it collides with go1.21 builtin
0b97ecddb0 pkg/plugins: rename max/min as it collides with go1.21 builtin
710c748801 pkg/sysinfo: rename max/min as it collides with go1.21 builtin
b340a777c0 pkg/archive: rename max/min as it collides with go1.21 builtin
e996dffe56 daemon: rename max/min as it collides with go1.21 builtin
334719141c api/types/versions: rename max/min as it collides with go1.21 builtin
0702941de6 restartmanager: rename max/min as it collides with go1.21 builtin
bed0c789dd daemon/cluster: format code with gofumpt
30fe6540a5 libcontainerd/windows: Don't reap on failure
1320e79bd8 libcontainer/windows: Remove unneeded var declaration
a1ba69a82b libcontainer/windows: Fix process not being killed after stdio attach failure
1f3ea9841e update containerd binary to v1.7.6
58224457c3 ipam: Replace ChildSubnet with parent Subnet when its mask is bigger
df983b7990 daemon: fix under what conditions container's mac-address is applied
f014c349a0 update to go1.20.8
e2ab5f72eb 24.0: Update buildkit to fix source policy order
8216da20af more robust dockerd-rootless-setuptools.sh
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c431b46959 |
crun: update to v1.9.2
Bumping crun to version 1.9.2-12-g8af8ee2, which comprises the following commits:
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
122f8ae linux: open mounts before setgroups if in a userns
64105d9 Use overlay and single nix derivation
35274d3 NEWS: tag 1.9.2
8f6b76f tests, podman: enable more tests
255268d Reset the inherited cpu affinity after moving to cgroup
745b6d9 tests, podman: run tests on overlay
f42e279 tests, podman: get more information on the environment
379b17c tests, podman: avoid deprecated options
bd251c9 rpm: do not special case krun man
fe4e15d build: install krun.1 only if krun is enabled
0cabf0c rpm: fix manpage installation
67ee730 Packit: notify @containers/packit-build team on failed tasks
1f2769e linux: fix fallback mechanism in a userns
a0b7e18 NEWS: tag 1.9.1
bb4e975 utils: partially rewrite improve error message patch
14afa8a utils: fix ignore ENOTSUP when chmod a symlink
0acb237 oci-validation,test: lock tap to @16.3.8
bbb1c87 tests: install device-mapper-devel
75dd83c podman, test: disable more tests failing in the CI
98db1d2 utils: improve error message for ensure_dir
57262a2 utils: ignore ENOTSUP when chmod a symlink
523eed3 linux: add new fallback when mount fails with EBUSY
2239c50 linux: teach MS_MOVE to do_mount
c9a1a12 Add man page for krun
8645d1a Fix CentOS 7 Build by Checking if FSOPEN_CLOEXEC exists
a538ac4 NEWS: tag 1.9
1e2f0c4 fix: correctly handle unknow signal string
41fa779 crun delete: call systemd's reset-failed
76b80ae fix random errors
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
8933a2cf4c |
cri-tools: update to v1.28.0-tip
Bumping cri-tools to version v1.26.0-353-gf8733ddf, which comprises the following commits:
f570bc09 Bump golang.org/x/net from 0.16.0 to 0.17.0
75c136c8 Validate sandbox and container metadata
4f3475f5 Bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0
93bc1bf2 Bump golang.org/x/net from 0.15.0 to 0.16.0
57d7848c Switch to `github.com/distribution/reference`
f61309ae Bump github.com/docker/distribution
6a1c7883 Bump github.com/onsi/gomega from 1.27.10 to 1.28.0
024268e7 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1
04fb3af1 Verify required checkpoint parameters are set
544d4792 Remove duplicated import "k8s.io/cri-api/pkg/apis"
dbd6c086 Enable staticcheck linter with SA1019 to find deprecated methods
06bb4c99 Use executor.StreamWithContext instead of deprecated executor.Stream
092eddc1 Address deprecation of Strings.Title
9059543c Remove unnecessary rand.Seed
52fcfd43 Address deprecated io/ioutils
833ab93c Address deprecated call cli.NewExitError of urfave/cli package
3e036cfa Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0
b84b1817 Bump actions/checkout from 3 to 4
4b5c3fe1 Update version compatibility between Kubernetes and cri-tools
7458ab35 Bump golang.org/x/net from 0.14.0 to 0.15.0
aa049113 Bump github.com/docker/docker
71beb1da Fix containerd tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
82d2ac74cb |
cri-o: update to 1.29.0
Bumping cri-o to version v1.27.0-662-gf8ccf314a, which comprises the following commits:
3b7ab35ff build(deps): bump crate-ci/typos from 1.16.17 to 1.16.18
f7d3228a7 Avoid an unnecessary c/storage lookup in ListImages
96e6aa9b5 Inline getImageCacheItem into ListImages
e4f2b888d Split imageIsBeingPulled from ListImages
c7188518d Simplify ListImages more
1cfe3c8bb Simplify appendCachedResult
ae597ba16 Remove the "filter" parameter to ListImages
e0750462f Turn ListImages(filter) into ImageStatus
50ce23e89 Simplify storageImageStatus a bit
2cb166512 Simplify ImageStatus a bit
1b0e82a22 Split storageImageStatus from ImageStatus
ad8be44cc Simplify error handling in ImageStatus
203612b23 Move the ImageResult -> ImageStatusResponse conversion out of the loop
97329e4fa build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
013a0998c Update release-notes to v0.16.1
dc44bac35 Fix quoting issue in usage help text
f22040da2 crio: add support for --imagestore
1d0e5d074 build(deps): bump crate-ci/typos from 1.16.15 to 1.16.17
bb4ab8110 Run GitHub actions in `update-nixpkgs-*` branches
45a6e70e7 Update nixpkgs
8ec74c5fa contrib/test: pin the latest release of runc
2505851e0 Update crun to 1.9.2
f3e53a058 test: Add test for image pinning behavior
12cabc651 internal/storage: compute Pinned field from recently loaded image
0fd641c6d build(deps): bump crate-ci/typos from 1.16.14 to 1.16.15
347194d3f build(deps): bump crate-ci/typos from 1.16.13 to 1.16.14
f532cbd89 Add nixpkgs update cron
8fa9260fc build(deps): bump crate-ci/typos from 1.16.12 to 1.16.13
72280f09c Update install.md removed spaces (markdown lint error)
fe9ed4e3a storage: add support to split filesystem using imagestore
544db3209 RFC: Use RuntimeContainerMetadata for passing container data
c9309ebb6 Add a layer name in one step
4f5a2e95c Microoptimize reference creation
3a77cc956 Eliminate the now unused imageAuthFile and isPauseImage parameters
61d86923c Simplify createContainerOrPodSandbox again
a936e6861 Simplify CreatePodSandbox
39095cbb4 CHANGE: Simplify CreateContainer image lookup
a09320639 Eliminate the clearly dead part of the just copy&pasted code
a7f841955 Blindly copy the image handling code from createContainerOrPodSandbox into callers
6cabaaee1 Remove an imageID parameter to CreatePodSandbox
2b4652c52 Fix/Add error handling
8e1e1e672 update containers storage to 1.50.2
5d8538318 build(deps): bump DavidAnson/markdownlint-cli2-action from 12 to 13
6c1574efc Fix nix `dirty` build
d951faa32 Make the release branch fast forward a cronjob
5dee42bcf build(deps): bump crate-ci/typos from 1.16.11 to 1.16.12
91b83b10c Fix release notes job
096f803a3 Bump golang dependencies
7d86c2e25 docs: fix CI failure
f182fb411 Bump version to 1.29.0
51bae7a96 Remove the IsFullIdentifier check from Server.pullImage again
7eb248b1a Don't silently modify the caller's SystemContext
2d72e13e6 Fix a VERY misleading comment.
472d2c5f9 Remove an unnecessary check
23d7c35d5 Remove an unnecessary parse call
6f9a7173f Remove an unnecessary check
8c3e301da Optimize handling of full image IDs
5f45d232a Remove the ErrCannotParseImageID special case
335d4b0f3 Fix a VERY misleading comment
b489507c9 Remove a completely unused ErrImageMultiplyTagged
98f171147 Make Server.pullImage responsible for rejecting image IDs
e292f17c0 docs: Update the containers/image branch name
6005b03f2 contrib/test/ci: remove the redundant golang setup file
059a7b5f8 Add conmon-rs binary to bundle
4ac3aeef2 internal/storage: address unpredictable behavior of image names
61a0b7c79 config/server: add functions to check IDMap support in runtime
9ce778351 Remove golang-go from debian installation
3d450274e Pause container during checkpointing
e069cc827 contrib/test: fix golang version extraction for CI
0774b644d build(deps): bump actions/checkout from 3 to 4
d6f4c7100 Adopters.md: fix linting issue
d805d28fd Add new adopter
940de5009 build(deps): bump crate-ci/typos from 1.16.10 to 1.16.11
ac9c6fbfe Don't vendor main Kubernetes repo any more
4a1e406b0 Mention Roadmap GitHub Project in README.md
bacc5e638 build(deps): bump crate-ci/typos from 1.16.9 to 1.16.10
9cbd8d555 build(deps): bump cachix/install-nix-action from 22 to 23
798a8d701 build(deps): bump actions/checkout from 3 to 4
758e3d8c3 cgmgr: reorder setting of sched_load_balance for pod cgroup
0e6b13e08 build(deps): bump crate-ci/typos from 1.16.8 to 1.16.9
ff434ba27 build(deps): bump github.com/containers/podman/v4 from 4.6.1 to 4.6.2
0002792fa build(deps): bump DavidAnson/markdownlint-cli2-action from 11 to 12
3aa18aff3 Switch to go 1.21
5b9f7f96d Add dependabot group for OTEL deps
d7ad3fcbf build(deps): bump github.com/containers/buildah from 1.31.2 to 1.31.3
85c3d9db1 Bump conmon and crun dependencies
5ab387fe5 build(deps): bump github.com/containers/common from 0.55.3 to 0.55.4
a4f2d8071 server: remove deprecated functionality
28ae1f81a Fix bundle e2e tests
a9afa0442 Add ppc64le binaries to release notes
c8f8ca498 Add Kubernetes package test for static binary bundle
734e1538c build(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1
873c0f420 Policy: Allow backport of independent features
bebd421b5 Configure systemd install path based on OS
ec4bbac12 feat(cmdrunner): add support for context
59f9b823d move shmSetup in server/sandbox to internal/factory/sandbox
d1946b30a blockio: add blockio_reload option
ce1cdfa54 main: create parent crio dir before creating clean.shutdown.supported
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
022ec69e9b |
containerd: update to 1.7.7
Bumping containerd to version v1.7.7-5-g5e21abb18, which comprises the following commits:
d0a1fedb5 *: add runc-fp as runc wrapper to inject failpoint
04491240a containerd-shim-runc-v2: avoid potential deadlock in create handler
6982a0df5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0e2320398 Uncopypaste parsing of OCI Bundle spec file
a34fa5681 Prepare release notes for v1.7.7
6ca0aebf0 Allow for images with artifacts to pull
7df492a95 remotes/docker: Fix MountedFrom prefixed with target repository
7779ce64e remotes: always try to establish tls connection when tls configured
b3db314a5 Bump x/net to 0.13
a83c66813 Require plugins to succeed after registering readiness
171d76849 cri: call RegisterReadiness after NewCRIService
6013b5e03 cri: stop recommending disable_cgroup
3d27bc738 Handle unexpected shim kill events
4ffa3ed29 Build binaries with 1.21.1
5756f6064 [release/1.7] vendor: github.com/Microsoft/hcsshim v0.11.1
09633b539 deprecate logs package, but disable linter (for transitioning)
cb201519f alias log package to github.com/containerd/log v0.1.0
a5024e6dd vendor: github.com/stretchr/testify v1.8.4
7bd976af3 vendor: github.com/sirupsen/logrus v1.9.3
3ca015e55 nri: update mock plugin handlers
4cd208c1f vendor: update github.com/containerd/nri@v0.4.0
8cd2d33c2 [release/1.7] remotes/docker: Add MountedFrom and Exists push status
3e09c65b2 Prepare release notes for v1.7.6
5ebf05d97 push: inherit distribution sources from parent
d206896dd content: add InfoProvider interface
423693d7b [release/1.7] update to go1.20.8
c7a35ccdc Fix transfer service dependencies:
38d4e506d Invoke Stable ABI compatibility function in windows platform matcher
ddffc7c9a Update hcsshim tag to v0.11.0
b449440a4 CRI: Support Linux usernames for !linux platforms
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
62d5c5a4f5 |
kernel: drop 6.4 .inc file
6.4 is no longer in OEcore, so we drop our associated kernel .inc file. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Mingli Yu
|
5cec30aae4 |
umoci: Remove the buildpath issue
Pass -trimpath to the build to fix the below build path issue: WARNING: umoci-v0.4.7+git-r0 do_package_qa: QA Issue: File /usr/sbin/umoci in package umoci contains reference to TMPDIR [buildpaths] Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
01da1f2a29 |
buildah: update to 1.32.0
The new version has an internally stripped binary, so we inhibit the
QA warning.
Bumping buildah to version v1.31.0-159-g4f3d7b0b6, which comprises the following commits:
5151ccff5 .cirrus.yml: run tests relative to the release-1.32 branch
2326d4929 Tag v1.32.0
e90b3502b GetTmpDir is not using ImageCopyTmpdir correctly
ccac7ca0b Run codespell on code
6be719454 Bump vendor containers/(common, storage, image)
9545744e8 Cirrus: Remove multi-arch buildah image builds
206cda149 fix(deps): update module github.com/containerd/containerd to v1.7.6
0191bc671 Split GetTempDir from internal/util
6e6827b27 Move most of internal/parse to internal/volumes
292b429f6 copier: remove libimage dependency via util package
4f3abf936 Add some docs for `build --cw`, `commit --cw`, and `mkcw`
e89fac6c9 Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`
cc619c28d Make sure that pathnames picked up from the environment are absolute
4ee5f020a fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
fd72bbee2 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
754568580 Don't try to look up names when committing images
d5b02e551 fix(deps): update module golang.org/x/crypto to v0.13.0
3fc5274d3 docs: use valid github repo
f94689199 fix(deps): update module golang.org/x/sys to v0.12.0
6ec6f046f vendor containers/common@12405381ff
df1bc3834 push: --force-compression should be true with --compression-format
9c5cde533 Update module github.com/containerd/containerd to v1.7.5
3ebeaa2dd [skip-ci] Update tim-actions/commit-message-checker-with-regex action to v0.3.2
cc9f15f09 docs: add reference to oci-hooks
3454d5b29 Support passing of ULimits as -1 to mean max
f330c77be GHA: Attempt to fix discussion_lock workflow
4942cc908 Fixing the owner of the storage.conf.
f4e43f0e8 pkg/chrootuser: Ignore comments when parsing /etc/group on FreeBSD
2b57cef2b Use buildah repo rather then podman repo
a8bbc9f5f GHA: Closed issue/PR comment-lock test
82069390f fix(deps): update module github.com/containers/storage to v1.49.0
4c4ff3128 chore(deps): update dependency containers/automation_images to v20230816
af3891258 Replace troff code with markdown in buildah-{copy,add}.1.md
e997a966f [CI:BUILD] rpm: spdx compatible license field
a3f2aa3c7 executor: build-arg warnings must honor global args
f6fb75d9d fix(deps): update module github.com/containers/ocicrypt to v1.1.8
5643a7fa8 chroot: `setSeccomp` add support for `ArchPARISC(64)` and `ArchRISCV64`
8428dee36 make,cross: restore loong64
e3cd4d790 Clear CommonBuildOpts when loading Builder status
d68d9a237 buildah/push/manifest-push: add support for --force-compression
3445a775a vendor: bump c/common to v0.55.1-0.20230811093040-524b4d5c12f9
2d6e43071 chore(deps): update dependency containers/automation_images to v20230809
065b95599 [CI:BUILD] RPM: fix buildtags
3964ca9d6 fix(deps): update module github.com/opencontainers/runc to v1.1.9
591b5390d chore(deps): update dependency ubuntu to v22
204c5a1ce chore(deps): update dependency containers/automation_images to v20230807
9ab3b526d [CI:BUILD] Packit: add fedora-eln targets
ed2a501c9 [CI:BUILD] RPM: build docs with vendored go-md2man
5bdb8c70d packit: Build PRs into default packit COPRs
fc7329d7c Update install.md
f6c4ead1b Update install.md changes current Debian stable version name
2254ca208 fix(deps): update module golang.org/x/term to v0.11.0
248f5a2b3 fix(deps): update module golang.org/x/crypto to v0.12.0
ae36f6542 tests: fix layer-label tests
f888b3d84 buildah: add --layer-label for setting labels on layers
239b2a877 Cirrus: container/rootless env. var. passthrough
65c1c9327 Cirrus: Remove duplicate env. var. definitions
978be7796 fix(deps): update github.com/containers/storage digest to c3da76f
62d405771 Add a missing .Close() call on an ImageSource
e588986fa Create only a reference when that's all we need
fe947ed9c Add a missing .Close() call on an ImageDestination
597d30880 CI:BUILD] RPM: define gobuild macro for rhel/centos stream
b9ac8d5e0 manifest/push: add support for --add-compression
d27a82356 manifest/inspect: add support for tls-verify and authfile
071f851da vendor: bump c/common to v0.55.1-0.20230727095721-647ed1d4d79a
512273587 vendor: bump c/image to v5.26.1-0.20230726142307-8c387a14f4ac
3d8616537 fix(deps): update module github.com/containerd/containerd to v1.7.3
c20d0164f fix(deps): update module github.com/onsi/gomega to v1.27.10
2e7dcc143 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
6a236937a fix(deps): update module github.com/containers/image/v5 to v5.26.1
d78f6c2a2 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0
dbc71b7cc Update vendor of containers/(storage,image,common)
331fac670 fix(deps): update module github.com/opencontainers/runc to v1.1.8
9cc5d5e8c [CI:BUILD] Packit: remove pre-sync action
09a1cd698 fix(deps): update module github.com/containers/common to v0.55.2
11cec8523 [CI:BUILD] Packit: downstream task script needs GOPATH
70cb4c7e0 Vendor in containers/(common, image, storage)
173ac7dc9 fix(deps): update module golang.org/x/term to v0.10.0
8b84d9b8a [CI:BUILD] Packit: fix pre-sync action for downstream tasks
97b84029a contrib/buildahimage: set config correctly for rootless build user
cba7b9fae fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
e00845797 Bump to v1.32.0-dev
f704a67a1 Update debian install instructions
4c72c25a2 pkg/overlay: add limited support for FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Wicki
|
7e17ee02a3 |
catatonit: update to version 0.2.0
Main change is the relicense from GPL-3 to GPL-2, which will allow
catatonit (and hence podman) to be used in deployments where the license
previously posed an issue.
Contains the following commits:
7f0c9bb version: release catatonit 0.2.0
fe191ef license: switch to GPLv2-or-later
Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
51a017123d |
k3s: update to v1.28.2
Bumping k3s to v1.28.2, which comprises the following commits:
6330a5b49c Update to v1.28.2 and go v1.20.8 (#8364)
550dd0578f Bump kine to v0.10.3
b3bb7e5a11 update channel for version v1.28 (#8305)
0d23cfe038 Add RWMutex to address controller
cba9f0d142 Add new CLI flag to disable TLS SAN CN filtering
2cb7023660 Use already imported semver, bump kine
f2d0c5409a Add check for support on cp nodes
51f1a5a0ab Review comments and fixes
42c2ac95e2 CLI + Backend for Secrets Encryption v3
e45a674457 Add new encryption test
b967f92785 Replace os.Write with AtomicWrite function
ced330c66a [v1.28] CLI Removal for v1.28.0 (#8203)
62db5fa27c Update to v1.28.1 (#8239)
af50e1b096 Update to v1.28.0-k3s1 (#8199)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
77d31a83ed |
oe-go-mod-autogen: add extra information to duplicate module paths
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4c88600803 |
devtools: fork python3-flask-cors
It is currently unclear if we have a hard dependency on this version of the module. meta-python has a newer version, so we are now breaking tests for yocto compliance (the layer changes the hash). For now, we fork the recipe to avoid the error and start preparing to drop it. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |