virt:ol and virt-devel:rhel security, bug fix, and enhancement update

hivex
libguestfs
[1.44.0-9.0.1]

• Replace upstream references from description tag
• Config supermin to use host yum.conf in ol8 [Orabug: 29319324]
• Set DISTRO_ORACLE_LINUX correspeonding to ol
  [1:1.44.0-9]
• Fix CVE-2022-2211 Denial of Service in --key parameter
  resolves: rhbz#2101280
  [1:1.44.0-8]
• Obsolete old libguestfs-benchmarking subpackage
  resolves: rhbz#2091597
  [1:1.44.0-7]
• Disable 5-level page tables when using -cpu max
  resolves: rhbz#2084566
  related: rhbz#2075424
  [1:1.44.0-6]
• Backport support for -cpu max to allow RHEL 9 guests to be modified
  resolves: rhbz#2075424
  [1:1.44.0-5]
• Fix libguestfs failure with qemu 6.2, libvirt 7.10
  resolves: rhbz#2035177
  [1:1.44.0-4]
• Autodetect backing format for qemu-img create -b
• Move appliance to separate subpackage
• Read rpm database through librpm
  resolves: rhbz#2013916, rhbz#1989520, rhbz#1836094
  [1.44.0-3.el8]
• Resolves: bz#2000225
  (Rebase virt:rhel module:stream based on AV-8.6)
  [1:1.40.2-28]
• daemon: lvm: Use lvcreate --yes to avoid interactive prompts
  resolves: rhbz#1933640
  libguestfs-winsupport
  [8.8-1]
• Rebase to ntfs-3g 2022.5.17
• Fixes: CVE-2021-46790, CVE-2022-30783, CVE-2022-30784, CVE-2022-30785,
  CVE-2022-30786, CVE-2022-30787, CVE-2022-30788, CVE-2022-30789
  resolves: rhbz#2127240 rhbz#2127248
  (also: 2127233 2127234 2127241 2127249 2127255 2127256 2127262 2127263)
  libiscsi
  libnbd
  [1.6.0-5.el8]
• Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails
  resolves: rhbz#2045718
  [1.6.0-4.el8]
• Resolves: bz#2000225
  (Rebase virt:rhel module:stream based on AV-8.6)
  [1.2.2]
• Resolves: bz#1844296
  (Upgrade components in virt:rhel module:stream for RHEL-8.3 release)
  [1.2.2-1]
• New stable release 1.2.2.
  [1.2.1-1]
• New stable release 1.2.1.
  [1.2.0-1]
• New stable release 1.2.0.
  [1.0.3-1]
• New upstream version 1.0.3.
• Contains fix for remote code execution vulnerability.
• Add new libnbd-security(3) man page.
  [1.0.2-1]
• New upstream version 1.0.2.
• Remove patches which are upstream.
• Contains fix for NBD Protocol Downgrade Attack (CVE-2019-14842).
• Fix previous commit message.
  [1.0.1-2]
• Add upstream patch to fix nbdsh (for nbdkit tests).
• Fix interop tests on slow machines.
  [1.0.1-1]
• New stable version 1.0.1.
  [1.0.0-1]
• New upstream version 1.0.0.
  [0.9.9-2]
• Rebuilt for Python 3.8
  [0.9.9-1]
• New upstream version 0.9.9.
  [0.9.8-4]
• Fix nbdkit dependencies so we’re actually running the tests.
• Add glib2-devel BR so we build the glib main loop example.
• Add upstream patch to fix test error:
  nbd_connect_unix: getlogin: No such device or address
• Fix test failure on 32 bit.
  [0.9.8-3]
• Bump and rebuild to fix releng brokenness.
  https://lists.fedoraproject.org/archives/list/[email protected]/message/2LIDI33G3IEIPYSCCIP6WWKNHY7XZJGQ/
  [0.9.8-2]
• Rebuilt for Python 3.8
  [0.9.8-1]
• New upstream version 0.9.8.
• Package the new nbd_*(3) man pages.
  [0.9.7-1]
• New upstream version 0.9.7.
• Add libnbd-ocaml(3) man page.
  [0.9.6-2]
• Add all upstream patches since 0.9.6 was released.
• Package the ocaml bindings into a subpackage.
  [0.9.6-1]
• New upstream verison 0.9.6.
  [0.1.9-1]
• New upstream version 0.1.9.
  [0.1.8-2]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
  [0.1.8-1]
• New upstream version 0.1.8.
  [0.1.7-1]
• New upstream version 0.1.7.
  [0.1.6-1]
• New upstream version 0.1.6.
  [0.1.5-1]
• New upstream version 0.1.5.
  [0.1.4-1]
• New upstream version 0.1.4.
  [0.1.2-2]
• Enable libxml2 for NBD URI support.
  [0.1.2-1]
• New upstream version 0.1.2.
  [0.1.1-1]
• Fix license in man pages and examples.
• Add nbdsh(1) man page.
• Include the signature and keyring even if validation is disabled.
• Update devel subpackage license.
• Fix old FSF address in Python tests.
• Filter Python provides.
• Remove executable permission on the tar.gz.sig file.
• Initial release.
  libtpms
  [0.9.1-2.20211126git1ff6fe1f43]
• Backport ‘tpm2: Check size of buffer before accessing it’ (CVE-2023-1017 & CVE-2023-1018)
  Resolves: rhbz#2173964
  Resolves: rhbz#2173970
  libvirt
  [8.0.0-19.0.1]
• Set SOURCE_DATE_EPOCH from changelog [Orabug: 32019554]
• Add runtime deps for pkg librbd1 >= 1:10.2.5 (Keshav Sharma)
  [8.0.0-19]
• qemu: domain: Fix logic when tainting domain (rhbz#2174447)
• qemu: agent: Make fetching of ‘can-offline’ member from ‘guest-query-vcpus’ optional (rhbz#2174447)
  [8.0.0-18]
• conf: Make VIR_DOMAIN_NET_TYPE_ETHERNET not share ‘host view’ (rhbz#2172578)
  [8.0.0-17]
• vircpi: Add PCIe 5.0 and 6.0 link speeds (rhbz#2168116)
  [8.0.0-16]
• qemu_namespace: Don’t leak memory in qemuDomainGetPreservedMounts() (rhbz#2166573)
  [8.0.0-15]
• nodedev: fix reported error msg in css cap XML parsing (rhbz#2165011)
• util: refactor virDomainDeviceCCWAddress into virccw.h (rhbz#2165011)
• util: refactor virDomainCCWAddressAsString into virccw (rhbz#2165011)
• util: make reuse of ccw device address format constant (rhbz#2165011)
• util: refactor ccw address constants into virccw (rhbz#2165011)
• util: refactor virDomainCCWAddressIncrement into virccw (rhbz#2165011)
• util: refactor virDomainDeviceCCWAddressIsValid into virccw (rhbz#2165011)
• util: refactor virDomainDeviceCCWAddressEqual into virccw (rhbz#2165011)
• conf: adjust method name virDomainDeviceCCWAddressParseXML (rhbz#2165011)
• util: add ccw device address parsing into virccw (rhbz#2165011)
• util: add virCCWDeviceAddressFromString to virccw (rhbz#2165011)
• nodedev: refactor css format from ccw format method (rhbz#2165011)
• nodedev: refactor ccw device address parsing from XML (rhbz#2165011)
• nodedev: refactor css XML parsing from ccw XML parsing (rhbz#2165011)
• schemas: refactor out nodedev ccw address schema (rhbz#2165011)
• nodedev: add optional device address of channel device to css device (rhbz#2165011)
• nodedev: add tests for optional device address to css device (rhbz#2165011)
• nodedev: prevent internal error on dev_busid parse (rhbz#2165011)
• rpc: Fix memory leak of fds (rhbz#2165428)
  [8.0.0-14]
• qemu: Ignore missing vm.unprivileged_userfaultfd sysctl (rhbz#2148578)
  [8.0.0-13]
• build: Only install libvirt-guests when building libvirtd (rhbz#2153688)
• tools: Fix install_mode for some scripts (rhbz#2153688)
  [8.0.0-12]
• util: json: Split out array->strinlist conversion from virJSONValueObjectGetStringArray (rhbz#2149752)
• qemuAgentGetDisks: Don’t use virJSONValueObjectGetStringArray for optional data (rhbz#2149752)
• virpidfile: Add virPidFileReadPathIfLocked func (rhbz#2152188)
• qemu: tpm: Get swtpm pid without binary validation (rhbz#2152188)
• qemu_tpm: Do async IO when starting swtpm emulator (rhbz#2152188)
• qemu: gpu: Get pid without binary validation (rhbz#2152188)
• spec: libvirt-daemon: Add optional dependency on *-client (rhbz#2136591)
  [8.0.0-11]
• qemu_process: Don’t require a hugetlbfs mount for memfd (rhbz#2123196)
• qemu_namespace: Tolerate missing ACLs when creating a path in namespace (rhbz#2123196)
• qemu_namespace: Fix a corner case in qemuDomainGetPreservedMounts() (rhbz#2123196)
• qemu_namespace: Introduce qemuDomainNamespaceSetupPath() (rhbz#2123196)
• qemu_process.c: Propagate hugetlbfs mounts on reconnect (rhbz#2123196)
• qemuProcessReconnect: Don’t build memory paths (rhbz#2123196)
  libvirt-dbus
  [1.3.0-2.el8]
• Resolves: bz#2000225
  (Rebase virt:rhel module:stream based on AV-8.6)
  [1.3.0]
• Resolves: bz#1810193
  (Upgrade components in virt:rhel module:stream for RHEL-8.3 release)
  [1.2.0-3]
• Rebuild all virt packages to fix RHEL’s upgrade path
• Resolves: rhbz#1695587
  (Ensure modular RPM upgrade path)
  [1.2.0-2]
• util: fix virtDBusUtilDecodeUUID (rhbz#1647823)
  [1.2.0-1]
• Rebased to libvirt-dbus-1.2.0 (rhbz#1630196)
  [1.0.0-1]
• Rebase from Fedora
  libvirt-python
  nbdkit
  [1.24.0-5]
• vddk: Add support for VDDK 8.0.0
  resolves: rhbz#2143907
  netcf
  perl-Sys-Virt
  qemu-kvm
  [6.2.0-32.el8_8]
• kvm-aio_wait_kick-add-missing-memory-barrier.patch [bz#2168472]
• kvm-qatomic-add-smp_mb__before-after_rmw.patch [bz#2168472]
• kvm-qemu-thread-posix-cleanup-fix-document-QemuEvent.patch [bz#2168472]
• kvm-qemu-thread-win32-cleanup-fix-document-QemuEvent.patch [bz#2168472]
• kvm-edu-add-smp_mb__after_rmw.patch [bz#2168472]
• kvm-aio-wait-switch-to-smp_mb__after_rmw.patch [bz#2168472]
• kvm-qemu-coroutine-lock-add-smp_mb__after_rmw.patch [bz#2168472]
• kvm-physmem-add-missing-memory-barrier.patch [bz#2168472]
• kvm-async-update-documentation-of-the-memory-barriers.patch [bz#2168472]
• kvm-async-clarify-usage-of-barriers-in-the-polling-case.patch [bz#2168472]
• kvm-scsi-protect-req-aiocb-with-AioContext-lock.patch [bz#2090990]
• kvm-dma-helpers-prevent-dma_blk_cb-vs-dma_aio_cancel-rac.patch [bz#2090990]
• kvm-virtio-scsi-reset-SCSI-devices-from-main-loop-thread.patch [bz#2090990]
• Resolves: bz#2168472
  (Guest hangs when starting or rebooting)
• Resolves: bz#2090990
  (qemu crash with error scsi_req_unref(SCSIRequest *): Assertion req->refcount > 0’ failed or scsi_dma_complete(void *, int): Assertion r->req.aiocb != NULL’ failed [8.7.0])
  [6.2.0-31]
• kvm-io-Add-support-for-MSG_PEEK-for-socket-channel.patch [bz#2137740]
• kvm-migration-check-magic-value-for-deciding-the-mapping.patch [bz#2137740]
• kvm-target-s390x-arch_dump-Fix-memory-corruption-in-s390.patch [bz#2168187]
• Resolves: bz#2137740
  (Multifd migration fails under a weak network/socket ordering race)
• Resolves: bz#2168187
  ([s390x] qemu-kvm coredumps when SE crashes)
  [6.2.0-30]
• kvm-qcow2-Fix-theoretical-corruption-in-store_bitmap-err.patch [bz#2147617]
• kvm-qemu-img-commit-Report-errors-while-closing-the-imag.patch [bz#2147617]
• kvm-qemu-img-bitmap-Report-errors-while-closing-the-imag.patch [bz#2147617]
• kvm-qemu-iotests-Test-qemu-img-bitmap-commit-exit-code-o.patch [bz#2147617]
• Resolves: bz#2147617
  (qemu-img finishes successfully while having errors in commit or bitmaps operations)
  [6.2.0-29]
• kvm-block-mirror-Do-not-wait-for-active-writes.patch [bz#2125119]
• kvm-block-mirror-Drop-mirror_wait_for_any_operation.patch [bz#2125119]
• kvm-block-mirror-Fix-NULL-s-job-in-active-writes.patch [bz#2125119]
• kvm-accel-introduce-accelerator-blocker-API.patch [bz#2161188]
• kvm-KVM-keep-track-of-running-ioctls.patch [bz#2161188]
• kvm-kvm-Atomic-memslot-updates.patch [bz#2161188]
• kvm-migration-Read-state-once.patch [bz#2074205]
• kvm-s390x-pci-RPCIT-second-pass-when-mappings-exhausted.patch [bz#2163713]
• kvm-s390x-pci-coalesce-unmap-operations.patch [bz#2163713]
• kvm-s390x-pci-shrink-DMA-aperture-to-be-bound-by-vfio-DM.patch [bz#2163713]
• kvm-s390x-pci-reset-ISM-passthrough-devices-on-shutdown-.patch [bz#2163713]
• Resolves: bz#2125119
  (Mirror job with ‘copy-mode’:‘write-blocking’ that used for storage migration can’t converge under heavy I/O)
• Resolves: bz#2161188
  (SVM: non atomic memslot updates cause boot failure with seabios and cpu-pm=on)
• Resolves: bz#2074205
  (while live-migrating many instances concurrently, libvirt sometimes return internal error: migration was active, but no RAM info was set)
• Resolves: bz#2163713
  ([s390x] VM fails to start with ISM passed through)
  [6.2.0-28]
• kvm-s390x-tod-kvm-don-t-save-restore-the-TOD-in-PV-guest.patch [bz#2155448]
• Resolves: bz#2155448
  (RHEL8.8 - KVM: s390: pv: don’t allow userspace to set the clock under PV - QEMU part)
  [6.2.0-27]
• kvm-hw-display-qxl-Have-qxl_log_command-Return-early-if-.patch [bz#2148545]
• kvm-hw-display-qxl-Document-qxl_phys2virt.patch [bz#2148545]
• kvm-hw-display-qxl-Pass-requested-buffer-size-to-qxl_phy.patch [bz#2148545]
• kvm-hw-display-qxl-Avoid-buffer-overrun-in-qxl_phys2virt.patch [bz#2148545]
• kvm-hw-display-qxl-Assert-memory-slot-fits-in-preallocat.patch [bz#2148545]
• Resolves: bz#2148545
  (CVE-2022-4144 virt:rhel/qemu-kvm: QEMU: QXL: qxl_phys2virt unsafe address translation can lead to out-of-bounds read [rhel-8])
  [6.2.0-26]
• kvm-docs-system-s390x-Document-the-loadparm-machine-prop.patch [bz#2128225]
• kvm-s390x-Register-TYPE_S390_CCW_MACHINE-properties-as-c.patch [bz#2128225]
• kvm-ui-vnc.c-Fixed-a-deadlock-bug.patch [bz#2141896]
• Resolves: bz#2128225
  ([s390x] [RHEL8][s390x-ccw bios] lacking document about parameter loadparm in qemu)
• Resolves: bz#2141896
  (VMs hung on vnc_clipboard_send)
  [6.2.0-25]
• kvm-hw-acpi-Add-ospm_status-hook-implementation-for-acpi.patch [bz#2132609]
• kvm-target-arm-kvm-Retry-KVM_CREATE_VM-call-if-it-fails-.patch [bz#2132609]
• Resolves: bz#2132609
  (qemu-kvm: backport some aarch64 fixes)
  [6.2.0-24]
• kvm-s390x-pci-use-a-reserved-ID-for-the-default-PCI-grou.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-don-t-use-hard-coded-dma-range-in-reg_ioat.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-use-the-passthrough-measurement-update-int.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-add-supported-DT-information-to-clp-respon.patch [bz#1664378 bz#2043909]
• kvm-Update-linux-headers-to-v6.0-rc4.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-add-routine-to-get-host-function-handle-fr.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-enable-for-load-store-interpretation.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-don-t-fence-interpreted-devices-without-MS.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-enable-adapter-event-notification-for-inte.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-let-intercept-devices-have-separate-PCI-gr.patch [bz#1664378 bz#2043909]
• kvm-s390x-pci-reflect-proper-maxstbl-for-groups-of-inter.patch [bz#1664378 bz#2043909]
• kvm-s390x-s390-virtio-ccw-Switch-off-zPCI-enhancements-o.patch [bz#1664378 bz#2043909]
• kvm-dump-Use-ERRP_GUARD.patch [bz#1664378 bz#2043909]
• kvm-dump-Remove-the-sh_info-variable.patch [bz#1664378 bz#2043909]
• kvm-dump-Introduce-shdr_num-to-decrease-complexity.patch [bz#1664378 bz#2043909]
• kvm-dump-Remove-the-section-if-when-calculating-the-memo.patch [bz#1664378 bz#2043909]
• kvm-dump-Add-more-offset-variables.patch [bz#1664378 bz#2043909]
• kvm-dump-Introduce-dump_is_64bit-helper-function.patch [bz#1664378 bz#2043909]
• kvm-dump-Consolidate-phdr-note-writes.patch [bz#1664378 bz#2043909]
• kvm-dump-Cleanup-dump_begin-write-functions.patch [bz#1664378 bz#2043909]
• kvm-dump-Consolidate-elf-note-function.patch [bz#1664378 bz#2043909]
• kvm-dump-Replace-opaque-DumpState-pointer-with-a-typed-o.patch [bz#1664378 bz#2043909]
• kvm-dump-Rename-write_elf_loads-to-write_elf_phdr_loads.patch [bz#1664378 bz#2043909]
• kvm-dump-Refactor-dump_iterate-and-introduce-dump_filter.patch [bz#1664378 bz#2043909]
• kvm-dump-Rework-get_start_block.patch [bz#1664378 bz#2043909]
• kvm-dump-Rework-filter-area-variables.patch [bz#1664378 bz#2043909]
• kvm-dump-Rework-dump_calculate_size-function.patch [bz#1664378 bz#2043909]
• kvm-dump-Split-elf-header-functions-into-prepare-and-wri.patch [bz#1664378 bz#2043909]
• kvm-dump-Rename-write_elf-_phdr_note-to-prepare_elf-_phd.patch [bz#1664378 bz#2043909]
• kvm-dump-simplify-a-bit-kdump-get_next_page.patch [bz#1664378 bz#2043909]
• kvm-dump-fix-kdump-to-work-over-non-aligned-blocks.patch [bz#1664378 bz#2043909]
• kvm-dump-Use-a-buffer-for-ELF-section-data-and-headers.patch [bz#1664378 bz#2043909]
• kvm-dump-Write-ELF-section-headers-right-after-ELF-heade.patch [bz#1664378 bz#2043909]
• kvm-dump-Reorder-struct-DumpState.patch [bz#1664378 bz#2043909]
• kvm-dump-Reintroduce-memory_offset-and-section_offset.patch [bz#1664378 bz#2043909]
• kvm-dump-Add-architecture-section-and-section-string-tab.patch [bz#1664378 bz#2043909]
• kvm-s390x-Add-protected-dump-cap.patch [bz#1664378 bz#2043909]
• kvm-s390x-Introduce-PV-query-interface.patch [bz#1664378 bz#2043909]
• kvm-include-elf.h-add-s390x-note-types.patch [bz#1664378 bz#2043909]
• kvm-s390x-Add-KVM-PV-dump-interface.patch [bz#1664378 bz#2043909]
• kvm-s390x-pv-Add-dump-support.patch [bz#1664378 bz#2043909]
• kvm-ui-vnc-clipboard-fix-integer-underflow-in-vnc_client.patch [bz#2129760]
• Resolves: bz#1664378
  ([IBM 8.8 FEAT] Enhanced Interpretation for PCI Functions (kvm) - qemu part)
• Resolves: bz#2043909
  ([IBM 8.8 FEAT] KVM: Secure Execution guest dump encryption with customer keys - qemu part)
• Resolves: bz#2129760
  (CVE-2022-3165 virt:rhel/qemu-kvm: QEMU: VNC: integer underflow in vnc_client_cut_text_ext leads to CPU exhaustion [rhel-8])
  [6.2.0-23]
• kvm-virtio-fix-the-condition-for-iommu_platform-not-supp.patch [bz#2116302]
• kvm-virtio-fix-feature-negotiation-for-ACCESS_PLATFORM.patch [bz#2116302]
• Resolves: bz#2116302
  (RHEL8.6 - virtiofs will not mount fs on secure execution guest)
  seabios
  sgabios
  supermin
  [5.2.1-2.el8]
• Supermin should ignore +debug kernels
  resolves: rhbz#2051332
• Add copy-patches script.
  [5.2.1-1.el8]
• Resolves: bz#2000225
  (Rebase virt:rhel module:stream based on AV-8.6)
  [5.1.19]
• Resolves: bz#1810193
  (Upgrade components in virt:rhel module:stream for RHEL-8.3 release)
  [5.1.19-9]
• Rebuild all virt packages to fix RHEL’s upgrade path
• Resolves: rhbz#1695587
  (Ensure modular RPM upgrade path)
  [5.1.19-8]
• Pass CFLAGS & LDFLAGS to final supermin link
  resolves: rhbz#1624175
  [5.1.19-7]
• Rebuild for OCaml 4.07.0.
  [5.1.19-6]
• Drop dietlibc in RHEL 8
  resolves: rhbz#1588067
  [5.1.19-5]
• Bump release and rebuild.
  [5.1.19-4]
• Reenable hardened build
  [5.1.19-3]
• Fix bytes/string problems.
  [5.1.19-2]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
  [5.1.19-1]
• New upstream version 5.1.19.
• Remove all patches, now upstream.
  [5.1.18-5]
• Rebuilt for RPM soname bump
  [5.1.18-4]
• Fix supermin crash with truncated vmlinuz file (RHBZ#1477758).
• Include all upstream patches since 5.1.18.
  [5.1.18-3]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
  [5.1.18-2]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
  [5.1.18-1]
• New upstream release 5.1.18.
• Fixes problem with creating incorrect symlinks (RHBZ#1470157).
  [5.1.17-5]
• Enable dietlibc on aarch64 and POWER.
  [5.1.17-4]
• Drop dependency on hawkey and versioned dependencies on dnf.
  [5.1.17-3]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
  [5.1.17-2]
• Rebuild for OCaml 4.04.0.
  [5.1.17-1]
• New upstream release 5.1.17.
• Check signature on the tarball before unpacking it.
• Remove patches, all upstream.
  [5.1.16-6]
• Switch to dietlibc on s390x
  [5.1.16-5]
• Do not break the binary on interpreted builds (#1375213)
  [5.1.16-4]
• Add all upstream patches since 5.1.16 was released.
  [5.1.16-3]
• Add upstream patch for DAX / vNVDIMM support.
  [5.1.16-2]
• New upstream version 5.1.16.
• Drop all patches since they are upstream.
• Depend on systemd-udev to work around RHBZ#1331012.
  [5.1.15-2]
• Add all upstream patches since 5.1.15 was released.
• These should improve boot performance and initrd size.
  [5.1.15-1]
• New upstream version 5.1.15.
• Remove all patches, since they are now included in this version.
• Enable dietlibc, remove glibc-static, xz-static, zlib-static.
  [5.1.14-4]
• Add more patches since 5.1.14.
  [5.1.14-3]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
  [5.1.14-2]
• Add all patches since 5.1.14.
  [5.1.14-1]
• New upstream version 5.1.14.
• Remove all patches - now upstream.
  [5.1.13-4]
• Pull in all upstream patches since 5.1.13.
• Choose providers better (RHBZ#1266918).
• Use autopatch.
• Explicitly depend on pod2html.
  [5.1.13-3]
• Bump version to rebuild against new RPM in Rawhide.
  [5.1.13-2]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
  [5.1.13-1]
• New upstream version 5.1.13.
• Remove patch, now upstream.
  [5.1.12-11]
• Prefer ‘dnf download’ over ‘yumdownloader’ (again).
• BR grubby for the tests to work.
  [5.1.12-9]
• Revert back to yumdownloader (RHBZ#1186948).
  [5.1.12-8]
• Prefer ‘dnf download’ over ‘yumdownloader’.
  [5.1.12-7]
• Disable hardened build again. See RHBZ#1202091 RHBZ#1204162.
  [5.1.12-6]
• Enable hardening flags by building the static ‘init’ specially
  before the main build.
• Use _smp_mflags.
  [5.1.12-4]
• Add a -devel subpackage containing automated RPM dependency generator
  for supermin appliances.
  [5.1.12-2]
• Disable hardened build as it breaks building the static ‘init’ binary.
  [5.1.12-1]
• New upstream version 5.1.12.
• Includes ARM fix: lpae kernels can now be booted (RHBZ#1199733).
  [5.1.11-2]
• Rebuild for xz-5.2.0 in Rawhide (RHBZ#1179252).
  [5.1.11-1]
• New upstream version 5.1.11.
  [5.1.10-2]
• Update to upstream commit d78c898c7e2bc5f12cbebef98b95a7908d9120f1.
• BR rpm-devel, since it is now used instead of invoking rpm.
• BR automake and autoconf, and run autoreconf (configure.ac is modified by
  the patches).
  [5.1.10-1]
• New upstream version 5.1.10.
• Remove patch which is now included upstream.
  [5.1.9-3]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
  [5.1.9-2]
• Add upstream patch to avoid endless loop in Rawhide.
  [5.1.9-1]
• New upstream version 5.1.9.
• Remove patches which are now upstream.
  [5.1.8-9]
• Add Requires findutils (RHBZ#1113029).
  [5.1.8-8]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
  [5.1.8-7]
• Add patch to fix RPM handler when filenames may contain spaces.
  [5.1.8-4]
• Skip execstack test on Fedora 20 (ARM only).
  [5.1.8-3]
• BR xz-static & xz-devel packages, to support xz-compressed kernel modules.
  [5.1.8-1]
• New upstream version 5.1.8.
• Remove patches which are now upstream.
  [5.1.7-3]
• Add upstream patch which removes need to run execstack (RHBZ#1093261).
  [5.1.7-2]
• Add patch to fix quoting around mke2fs parameter (RHBZ#1084960).
  [5.1.7-1]
• New upstream version 5.1.7.
• Remove ppc64p7 patch which is now upstream.
  [5.1.6-5]
• Requires tar, which is not installed in an @Core installation.
  [5.1.6-4]
• Add upstream patch to fix supermin on ppc64p7.
  [5.1.6-3]
• New upstream version 5.1.6.
• Fix tests.
  [5.1.5-2]
• Disable execstack on aarch64.
  It comes from prelink which does not exist on aarch64.
  [5.1.5-1]
• New upstream version 5.1.5.
  [5.1.3-1]
• New upstream version 5.1.3.
  [5.1.2-1]
• New upstream version 5.1.2.
• Fixes a serious bug in --build mode.
  [5.1.1-1]
• New upstream version 5.1.1.
• Remove patch which is now upstream.
  [5.1.0-3]
• Add BR yum-utils (for yumdownloader).
• Add upstream patch which stops duplicate packages appearing.
  [5.1.0-2]
• New upstream version 5.1.0.
• Note this is effectively a rewrite, and is not completely compatible.
• There is no separate ‘supermin-helper’ subpackage any more.
• Requires rpm instead of yum.
  [4.1.6-2]
• New upstream version 4.1.6.
• Should fix all autotools brokenness.
• Man pages are now all in section 1.
• Remove patch which is now upstream.
• +BR /usr/bin/execstack (from prelink).
  [4.1.5-5]
• Rerun autoreconf to fix autotools brokenness.
  [4.1.5-4]
• Why was prelink required? Remove it.
  [4.1.5-3]
• correct Obsoletes version for febootstrap and febootstrap-supermin-helper
  [4.1.5-2]
• (For ARM) Don’t crash if SUPERMIN_DTB is set and --dtb not specified.
  [4.1.5-1]
• New upstream version 4.1.5.
• Has (optionally) a new command line syntax.
• Supports device trees for ARM.
  [4.1.4-1]
• New upstream version 4.1.4.
• Supports compressed cpio image files, experimentally.
  [4.1.3-1]
• New upstream version 4.1.3.
• Remove patch which is now upstream.
• Add examples directory to documentation.
  [4.1.2-2]
• Include upstream patch to get correct directory setgid/sticky bits in
  the appliance.
  [4.1.2-1]
• New upstream version 4.1.2.
• Remove patch which is now upstream.
  [4.1.1-2]
• Add upstream patch to ignore ghost non-regular files.
• This fixes builds on Fedora 20 because the filesystem package has
  been changed so /var/lock and /var/run are marked as ghost.
  [4.1.1-1]
• New upstream version 4.1.1.
• The program has been renamed ‘supermin’ from ‘febootstrap’.
• Obsolete, but don’t Provide because supermin is not a compatible replacement.
• Use ‘_isa’ to specify architecture of supermin-helper subpackage.
  [1:3.21-2]
• Add upstream patch to drop supplemental groups (RHBZ#902476).
• Remove ‘Group:’ RPM headers which are no longer necessary.
• Remove some commented-out requirements.
  [1:3.21-1]
• New upstream version 3.21.
  [1:3.20-1]
• New upstream version 3.20.
  [1:3.19-2]
• Work around brokenness in yum (RHBZ#850913).
• Remove defattr, no longer required.
  [1:3.19-1]
• New upstream version 3.19.
  [3.18-2]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
  [3.18-1]
• New upstream version 3.18.
• This adds support for EPEL 5.
  [3.17-1]
• New upstream version 3.17.
  [3.16-1]
• New upstream version 3.16.
  [3.15-1]
• New upstream version 3.15.
• This version includes root=
  support, needed for libguestfs
  with virtio-scsi.
• Remove upstream patch.
  [3.14-6]
• For RHEL 7 only, add ExclusiveArch x86-64.
  [3.14-5]
• Bundled gnulib (RHBZ#821752).
  [3.14-4]
• Add back explicit dependencies for external programs.
  [3.14-3]
• Drop ExclusiveArch as it’s supported on all primary & secondary arches
• Cleanup spec and deps
  [3.14-2]
• New upstream version 3.14.
• Add upstream patch to fix RHBZ#808421.
  [3.13-4]
• e2fsprogs moved /sbin/mke2fs to /usr/sbin (thanks Eric Sandeen).
  [3.13-2]
• Missing BR zlib-static.
  [3.13-1]
• New upstream version 3.13.
• Remove upstream patch which is included in this version.
  [3.12-5]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
  [3.12-4]
• Depend on latest e2fsprogs (RHBZ#771310).
  [3.12-2]
• Include upstream patch to work around Python stupidity.
  [3.12-1]
• New upstream version 3.12.
• Remove upstream patch which is included in this version.
  [3.11-2]
• Add upstream patch to fix febootstrap on non-Debian.
  [3.11-1]
• New upstream version 3.11.
  [3.10-1]
• New upstream version 3.10.
  [3.9-1]
• New upstream version 3.9.
  [3.8-1]
• New upstream version 3.8.
  [3.7-1]
• New upstream version 3.7.
  [3.6-1]
• New upstream version 3.6.
• This version no longer needs external insmod.static.
  [3.5-1]
• New upstream version 3.5.
• Remove patch which is now upstream.
  [3.4-2]
• Don’t fail if objects are created in a symlinked dir (RHBZ#698089).
  [3.4-1]
• New upstream version 3.4.
• febootstrap-supermin-helper Obsoletes older versions of febootstrap.
  [3.3-5]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
  [3.3-4]
• Split package into febootstrap (for building) and febootstrap-supermin-helper
  (for running). Note that febootstrap depends on febootstrap-supermin-helper,
  but you can install febootstrap-supermin-helper on its own.
  [3.3-3]
• Clear executable stack flag on febootstrap-supermin-helper.
  [3.3-2]
• add the ocaml’s ExclusiveArch
  [3.3-1]
• New upstream version 3.3.
  [3.2-1]
• New upstream version 3.2.
• Remove upstream patches.
  [3.1-5]
• Previous fix for RHBZ#654638 didn’t work, fix it correctly.
  [3.1-4]
• Properly ignore .*.hmac files (accidental reopening of RHBZ#654638).
  [3.1-3]
• Uses yumdownloader at runtime, so require yum-utils.
  [3.1-2]
• New upstream version 3.1.
• BR insmod.static.
  [3.0-2]
• New upstream version 3.0 (note this is incompatible with 2.x).
• Fix upstream URLs.
• fakeroot, fakechroot no longer required.
• insmod.static is required at runtime (missing dependency from earlier).
• The only programs are ‘febootstrap’ and ‘febootstrap-supermin-helper’.
• BR ocaml, ocaml-findlib-devel.
• No examples are provided with this version of febootstrap.
  [2.11-1]
• New upstream version 2.11.
• Fixes ‘ext2fs_mkdir … No free space in directory’ bug which affects
  libguestfs on rawhide.
  [2.10-1]
• New upstream version 2.10.
• Adds -u and -g options to febootstrap-supermin-helper which are
  required by virt-v2v.
  [2.9-1]
• New upstream version 2.9.
• Fixes directory ordering problem in febootstrap-supermin-helper.
  [2.8-1]
• New upstream version 2.8.
  [2.8-0.2]
• New pre-release version of 2.8.
  • Note this is based on 2.7 + mailing list patches.
• New BRs on mke2fs, libext2fs, glibc-static.
  [2.7-2]
• New upstream version 2.7.
• febootstrap-supermin-helper shell script rewritten in C for speed.
• This package contains C code so it is no longer ‘noarch’.
• MAKEDEV isn’t required.
  [2.6-1]
• New upstream release 2.6.
• Recheck package in rpmlint.
  [2.5-2]
• New upstream release 2.5.
• Remove BR upx (not needed by upstream).
• Two more scripts / manpages.
  [2.4-1]
• New upstream release 2.4.
  [2.3-2]
• Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
  [2.3-1]
• New upstream release 2.3.
  [2.2-1]
• New upstream release 2.2.
  [2.0-1]
• New upstream release 2.0.
  [1.9-1]
• New upstream release 1.9.
  [1.8-1]
• New upstream release 1.8.
  [1.7-1]
• New upstream release 1.7.
  [1.5-3]
• Configure script has (unnecessary) BuildRequires on fakeroot,
  fakechroot, yum.
  [1.5-2]
• Initial build for Fedora.
  swtpm
  virt-v2v
  [1:1.42.0-22]
• RHEL 8: If setfiles fails fall back to autorelabel
  resolves: rhbz#XXX
• Reapply patches since we are using git format-patch --submodule=diff