From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id E78B2139085 for ; Sun, 22 Jan 2017 16:28:37 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5B061E0CE5; Sun, 22 Jan 2017 16:28:37 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 2808DE0CE5 for ; Sun, 22 Jan 2017 16:28:37 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 52C1734169E for ; Sun, 22 Jan 2017 16:28:35 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id BE5462CA6 for ; Sun, 22 Jan 2017 16:28:33 +0000 (UTC) From: "Matthias Maier" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Matthias Maier" Message-ID: <1485102506.dc2a7fec11cf5c934bd2a6fe656bd930a11c9abb.tamiko@gentoo> Subject: [gentoo-commits] repo/gentoo:master commit in: app-emulation/libvirt/files/, app-emulation/libvirt/ X-VCS-Repository: repo/gentoo X-VCS-Files: app-emulation/libvirt/files/README.gentoo-r2 app-emulation/libvirt/libvirt-2.5.0-r2.ebuild app-emulation/libvirt/libvirt-9999.ebuild X-VCS-Directories: app-emulation/libvirt/files/ app-emulation/libvirt/ X-VCS-Committer: tamiko X-VCS-Committer-Name: Matthias Maier X-VCS-Revision: dc2a7fec11cf5c934bd2a6fe656bd930a11c9abb X-VCS-Branch: master Date: Sun, 22 Jan 2017 16:28:33 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: f0ce98ac-0481-4a2d-9b64-86a838780727 X-Archives-Hash: fc45b53ba5ebccf8168f5fea85833432 commit: dc2a7fec11cf5c934bd2a6fe656bd930a11c9abb Author: Matthias Maier gentoo org> AuthorDate: Sun Jan 22 16:14:10 2017 +0000 Commit: Matthias Maier gentoo org> CommitDate: Sun Jan 22 16:28:26 2017 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=dc2a7fec app-emulation/libvirt: add a libvirt group, bug #597772 Add a libvirt group for convenience and update readme Package-Manager: Portage-2.3.0, Repoman-2.3.1 app-emulation/libvirt/files/README.gentoo-r2 | 58 +++++++++++++++++++++++++++ app-emulation/libvirt/libvirt-2.5.0-r2.ebuild | 8 +++- app-emulation/libvirt/libvirt-9999.ebuild | 7 +++- 3 files changed, 69 insertions(+), 4 deletions(-) diff --git a/app-emulation/libvirt/files/README.gentoo-r2 b/app-emulation/libvirt/files/README.gentoo-r2 new file mode 100644 index 00000000..1c086c1 --- /dev/null +++ b/app-emulation/libvirt/files/README.gentoo-r2 @@ -0,0 +1,58 @@ +Important: The openrc libvirtd init script is now broken up into two +separate services: libvirtd, that solely handles the daemon, and +libvirt-guests, that takes care of clients during shutdown/restart of the +host. In order to reenable client handling, edit /etc/conf.d/libvirt-guests +and enable the service and start it: + + $ rc-update add libvirt-guests + $ service libvirt-guests start + + +For the basic networking support (bridged and routed networks) you don't +need any extra software. For more complex network modes including but not +limited to NATed network, you can enable the 'virt-network' USE flag. It +will pull in required runtime dependencies + + +If you are using dnsmasq on your system, you will have to configure +/etc/dnsmasq.conf to enable the following settings: + + bind-interfaces + interface or except-interface + +Otherwise you might have issues with your existing DNS server. + + +For openrc users: + + Please use /etc/conf.d/libvirtd to control the '--listen' parameter for + libvirtd. + + Use /etc/init.d/libvirt-guests to manage clients on restart/shutdown of + the host. The default configuration will suspend and resume running kvm + guests with 'managedsave'. This behavior can be changed under + /etc/conf.d/libvirt-guests + + +For systemd users: + + Please use /etc/systemd/system/libvirtd.service.d/00gentoo.conf + to control the '--listen' parameter for libvirtd. + + The configuration for the 'libvirt-guests.service' is found under + /etc/libvirt/libvirt-guests.conf" + + +If you have built libvirt with policykit support, a new group "libvirt" has +been created. Simply add a user to the libvirt group in order to grant +administrative access to libvirtd. Alternatively, drop a custom policykit +rule into /etc/polkit-1/rules.d. + +If you have built libvirt without policykit support (USE=-policykit), you +must change the unix sock group and/or perms in /etc/libvirt/libvirtd.conf +in order to allow normal users to connect to libvirtd. + + +If libvirtd is built with USE=caps, libvirt will now start qemu/kvm VMs +with non-root privileges. Ensure any resources your VMs use are accessible +by qemu:qemu. diff --git a/app-emulation/libvirt/libvirt-2.5.0-r2.ebuild b/app-emulation/libvirt/libvirt-2.5.0-r2.ebuild index 9f91346..a40c305 100644 --- a/app-emulation/libvirt/libvirt-2.5.0-r2.ebuild +++ b/app-emulation/libvirt/libvirt-2.5.0-r2.ebuild @@ -135,6 +135,8 @@ pkg_setup() { enewuser qemu 77 -1 -1 "qemu,kvm" fi + use policykit && enewgroup libvirt + # Check kernel configuration: CONFIG_CHECK="" use fuse && CONFIG_CHECK+=" @@ -356,7 +358,7 @@ src_install() { newconfd "${FILESDIR}/libvirtd.confd-r5" libvirtd || die newconfd "${FILESDIR}/libvirt-guests.confd" libvirt-guests || die - DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r1") + DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r2") DISABLE_AUTOFORMATTING=true readme.gentoo_create_doc } @@ -376,7 +378,9 @@ pkg_postinst() { use libvirtd || return 0 # From here, only libvirtd-related instructions, be warned! - DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r1") + + DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r2") DISABLE_AUTOFORMATTING=true + FORCE_PRINT_ELOG=1 # remove for next version bump readme.gentoo_print_elog } diff --git a/app-emulation/libvirt/libvirt-9999.ebuild b/app-emulation/libvirt/libvirt-9999.ebuild index 81795e4..1fcac6e 100644 --- a/app-emulation/libvirt/libvirt-9999.ebuild +++ b/app-emulation/libvirt/libvirt-9999.ebuild @@ -135,6 +135,8 @@ pkg_setup() { enewuser qemu 77 -1 -1 "qemu,kvm" fi + use policykit && enewgroup libvirt + # Check kernel configuration: CONFIG_CHECK="" use fuse && CONFIG_CHECK+=" @@ -356,7 +358,7 @@ src_install() { newconfd "${FILESDIR}/libvirtd.confd-r5" libvirtd || die newconfd "${FILESDIR}/libvirt-guests.confd" libvirt-guests || die - DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r1") + DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r2") DISABLE_AUTOFORMATTING=true readme.gentoo_create_doc } @@ -376,7 +378,8 @@ pkg_postinst() { use libvirtd || return 0 # From here, only libvirtd-related instructions, be warned! - DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r1") + DOC_CONTENTS=$(<"${FILESDIR}/README.gentoo-r2") DISABLE_AUTOFORMATTING=true + FORCE_PRINT_ELOG=1 # remove for next version bump readme.gentoo_print_elog }