Overview

File _patchinfo of Package patchinfo.17484

<patchinfo incident="17484">
  <category>recommended</category>
  <rating>moderate</rating>
<issue tracker="bnc" id="1199215"/>
<issue tracker="bnc" id="1192432"/>
<issue tracker="bnc" id="1193649"/>
  <packager>cyphar</packager>
  <summary>Recommended update for lxd</summary>
  <description>
lxd was updated to fix the following issues:

- Update to LXD 4.24. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-24-has-been-released/13550
  boo#1199215

  This is the last release before LXD 5.0 (which does not support the Leap 15.3
  kernel -- LXD 5.0 requires kernel 5.4 or newer). Thus this will be the last
  LXD release for Leap 15.3.

  + lxc file mount and new files API
  + Cluster event hub role
  * Reworked lxc storage volume info
  + AppArmor profiles for image extractors
  + Grafana dashboard
  + Degraded startup (missing disk)
  + restricted.containers.interception project option
  + core.metrics_authentication server option
  + Network interface name and MTU in virtual machines
  + I/O uring support for VM storage
  + ipv4.neighbor_probe and ipv6.neighbor_probe NIC options

- Update to LXD 4.21. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-21-has-been-released/12860
  boo#1193649

  + Cluster member groups
  * Reworked cloud-init support
  + Trust certificate self-renewal
  + Restricted disk passthrough in projects
  + Restricted idmap uid/gid in projects
  + List all lxc commands with --sub-commands
  + List instances across all projects with --all-projects
  + New database-leader cluster role
  * Consistent units for byte sizes.
  * Routed networking in virtual machines
  + Support for ipv4.routes and ipv6.routes on routed type NICs
  + Option to skip records for NAT-ed addresses in network zones
  + Allow blocking an IP address family with security filtering options
  + New ceph.rbd.du storage config option to disable potentially slow rbd du
  * Optimized moving of instances and volumes between projects
  * Support for copying/moving custom volumes between cluster members

- Update to LXD 4.20. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-20-has-been-released/12540
  boo#1192432

  + Live migration of virtual machines
  + Network peering for OVN
  + Network zones (DNS)
  + SR-IOV acceleration for OVN networking
  + Linux sysctl configuration on containers
  + Core scheduling for virtual machines
  + Cluster member configuration
  * Improvement to network leases

- Update to LXD 4.18. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-18-has-been-released/12068/2
  boo#1190323

  + Network forwards (floating IPs)
  + Native BGP support
  * NAT address customization with OVN
  * lxd cluster edit for cluster disaster recovery
  + Refresh support for custom volume copies
  + Additional device restrictions for projects
  * --minimal option for lxd init
  * Additional network counters in instance state

- Disable stripping of binaries, which seems to be causing issues at runtime
  due to some ld.so assertion failing. In particular it seems that libdqlite is
  getting corrupted somehow.

- Update to LXD 4.17. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-17-has-been-released/11812
  boo#1189645

  + lxd import replaced by new lxd recover
  + Cluster member evacuation
  * Reworked lxc info output
  + Requestor address in lifecycle event
  + USB GPU support in the resources API
  + Monitoring of all projects in lxc monitor
  + Alternative format options in lxc monitor

- Update to LXD 4.16. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-16-has-been-released/11547
  boo#1188946

  + Cluster certificate update
  + Copy/move of custom volumes between projects
  + lxc monitor --pretty now works with all event types
  + Easier revocation of cluster join tokens
  + IP filtering on unmanaged bridges
  + New warnings
  + New lifecycle events


- Build with go1.15 for reproducible build results (boo#1102408)

- Fixed a Leap-specific kernel backport bug (close_range(2) was backported but not the
  flags that it supported in the first version). boo#1186786

- Build lxd-agent and lxd-p2c statically to match upstream LXD build scripts
  (and to make VMs work properly -- lxd-agent is injected into the VM).
- Update lxd-rpmlintrc to match this.

- Update to LXD 4.15. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-15-has-been-released/11252
  bsc#1186906

  + Network interface hotplug in VMs
  + Configurable shutdown timeout
  + New persistent warnings (time skew, apparmor and virtiofsd)
  + Location field in /dev/lxd API
  + New type and name columns in lxc config trust list
  + Cluster members acting as database stand-by now visible
  + lxc monitor --pretty now supported with lifecycle events
  + New --expire flag for lxc publish
  + Requestor now recorded in lifecyle events
  + Proxy header support on main API endpoint
  + Full swagger coverage of REST API

- Update to LXD 4.14. The full upstream changelog is available from:
  https://discuss.linuxcontainers.org/t/lxd-4-14-has-been-released/11008
  bsc#1186647

  + ACL support on managed bridges
  + Cluster member certificates
  + Cluster member description
  + Cluster token based join
  + Server warnings
  + Backup and snapshot project restrictions
  + User keys in device configuration
  + More auto-generated REST-API documentation

  </description>
</patchinfo>
openSUSE Build Service is sponsored by
Places