Release of libvirt-0.9.6

The previous patch removed all snapshots, but not the directory
where the snapshots lived, which is still a form of stale data.

* src/qemu/qemu_domain.c (qemuDomainRemoveInactive): Wipe any
snapshot directory.

.dir-locals.el

@@ -11,4 +11,7 @@
  (sh-mode . (
 	     (indent-tabs-mode . nil)
 	     ))
+ (nxml-mode . (
+	       (indent-tabs-mode . nil)
+	       ))
  )

.gitignore

@@ -1,7 +1,3 @@
-!/m4/compiler-flags.m4
-!/po/*.po
-!/po/POTFILES.in
-!/po/libvirt.pot
 *#*#
 *.#*#
 *.a
@@ -9,6 +5,8 @@
 *.gcda
 *.gcno
 *.gcov
+*.la
+*.lo
 *.o
 *.orig
 *.rej
@@ -38,7 +36,12 @@
 /config.sub
 /configure
 /configure.lineno
-/gnulib/
+/daemon/*_dispatch.h
+/docs/hvsupport.html.in
+/docs/libvirt-qemu-*.xml
+/gnulib/lib/*
+/gnulib/m4/*
+/gnulib/tests/*
 /libtool
 /libvirt-*.tar.gz
 /libvirt-[0-9]*
@@ -46,16 +49,32 @@
 /libvirt.spec
 /ltconfig
 /ltmain.sh
-/m4/
+/m4/*
 /maint.mk
 /mingw32-libvirt.spec
 /mkinstalldirs
-/po/
+/po/*
 /proxy/
+/python/generator.py.stamp
+/python/libvirt-qemu-export.c
+/python/libvirt-qemu.[ch]
+/python/libvirt_qemu.py
+/sc_*
+/src/hyperv/*.generated.*
 /src/libvirt_iohelper
+/src/locking/qemu-sanlock.conf
+/src/remote/*_client_bodies.h
+/src/remote/*_protocol.[ch]
+/src/rpc/virnetprotocol.[ch]
+/src/util/virkeymaps.h
 /tests/*.log
 /tests/cputest
+/tests/hashtest
+/tests/jsontest
+/tests/networkxml2argvtest
 /tests/nwfilterxml2xmltest
+/tests/openvzutilstest
+/tests/shunloadtest
 /update.log
 Makefile
 Makefile.in
@@ -67,3 +86,9 @@ results.log
 stamp-h
 stamp-h.in
 stamp-h1
+!/gnulib/lib/Makefile.am
+!/gnulib/tests/Makefile.am
+!/m4/virt-*.m4
+!/po/*.po
+!/po/POTFILES.in
+!/po/libvirt.pot

.mailmap

@@ -1,3 +1,8 @@
+# 'git shortlog --help' and look for mailmap for the format of each line
+
+# Email consolidation:
+# <Preferred address in AUTHORS> <other alias used by same author>
+
 <amy.griffis@hp.com> <aron.griffis@hp.com>
 <bozzolan@gmail.com> <redshift@gmx.com>
 <charles_duffy@messageone.com> <charles@dyfis.net>
@@ -10,7 +15,18 @@
 <meyering@redhat.com> <jim@meyering.net>
 <socketpair@gmail.com> <socketpair gmail com>
 <soren@linux2go.dk> <soren@ubuntu.com>
-<jfehlig@novell.com> <jfehlig@linux-ypgk.site>
+<jfehlig@suse.com> <jfehlig@novell.com>
+<jfehlig@suse.com> <jfehlig@linux-ypgk.site>
 <jclift@redhat.com> <justin@salasaga.org>
 <berrange@redhat.com> <dan@berrange.com>
 <soren@linux2go.dk> <soren@canonical.com>
+<cfergeau@redhat.com> <teuf@gnome.org>
+<wency@cn.fujitsu.com> <wency cn fujitsu com>
+<cardoe@cardoe.com> <cardoe@gentoo.org>
+<fsimonce@redhat.com> <federico.simoncelli@gmail.com>
+<marcandre.lureau@redhat.com> <marcandre.lureau@gmail.com>
+<supriyak@linux.vnet.ibm.com> <supriyak@in.ibm.com>
+
+# Name consolidation:
+# Preferred author spelling <preferred email>
+Alex Jia <ajia@redhat.com>

AUTHORS

@@ -13,7 +13,7 @@ The primary maintainers and people with commit access rights:
   Mark McLoughlin      <markmc@redhat.com>
   Anthony Liguori      <aliguori@us.ibm.com>
   Jim Meyering         <meyering@redhat.com>
-  Jim Fehlig           <jfehlig@novell.com>
+  Jim Fehlig           <jfehlig@suse.com>
   Chris Lalancette     <clalance@redhat.com>
   Cole Robinson        <crobinso@redhat.com>
   Guido Günther        <agx@sigxcpu.org>
@@ -27,6 +27,7 @@ The primary maintainers and people with commit access rights:
   Justin Clift         <jclift@redhat.com>
   Osier Yang           <jyang@redhat.com>
   Wen Congyang         <wency@cn.fujitsu.com>
+  Michal Prívozník     <mprivozn@redhat.com>
 
 Previous maintainers:
   Karel Zak            <kzak@redhat.com>
@@ -80,9 +81,9 @@ Patches have also been contributed by:
   Serge E. Hallyn      <serue@us.ibm.com>
   Soren Hansen         <soren@linux2go.dk>
   Abel Míguez Rodríguez<amiguezr@pdi.ucm.es>
-  Doug Goldstein       <cardoe@gentoo.org>
+  Doug Goldstein       <cardoe@cardoe.com>
   Javier Fontan        <jfontan@gmail.com>
-  Federico Simoncelli  <federico.simoncelli@gmail.com>
+  Federico Simoncelli  <fsimonce@redhat.com>
   Amy Griffis          <amy.griffis@hp.com>
   Henrik Persson E     <henrik.e.persson@ericsson.com>
   Satoru SATOH         <satoru.satoh@gmail.com>
@@ -146,7 +147,6 @@ Patches have also been contributed by:
   Paweł Krześniak      <pawel.krzesniak@gmail.com>
   Kay Schubert         <kayegypt@web.de>
   Marc-André Lureau    <marcandre.lureau@redhat.com>
-  Michal Prívozník     <mprivozn@redhat.com>
   Juerg Haefliger      <juerg.haefliger@hp.com>
   Matthias Dahl        <mdvirt@designassembly.de>
   Niels de Vos         <ndevos@redhat.com>
@@ -156,7 +156,7 @@ Patches have also been contributed by:
   Zdenek Styblik       <stybla@turnovfree.net>
   Gui Jianfeng         <guijianfeng@cn.fujitsu.com>
   Michal Novotny       <minovotn@redhat.com>
-  Christophe Fergeau   <teuf@gnome.org>
+  Christophe Fergeau   <cfergeau@redhat.com>
   Markus Groß          <gross@univention.de>
   Phil Petty           <phpetty@cisco.com>
   Taku Izumi           <izumi.taku@jp.fujitsu.com>
@@ -164,6 +164,37 @@ Patches have also been contributed by:
   Tiziano Mueller      <dev-zero@gentoo.org>
   Thibault VINCENT     <thibault.vincent@smartjog.com>
   Naoya Horiguchi      <n-horiguchi@ah.jp.nec.com>
+  Jesse Cook           <code.crashenx@gmail.com>
+  Alexander Todorov    <atodorov@otb.bg>
+  Richard Laager       <rlaager@wiktel.com>
+  Mark Wu              <dwu@redhat.com>
+  Yufang Zhang         <yuzhang@redhat.com>
+  Supriya Kannery      <supriyak@linux.vnet.ibm.com>
+  Dirk Herrendoerfer   <d.herrendoerfer@herrendoerfer.name>
+  Taisuke Yamada       <tai@rakugaki.org>
+  Heath Petersen       <HeathPetersen@Kandre.com>
+  Neil Wilson          <neil@aldur.co.uk>
+  Ohad Levy            <ohadlevy@gmail.com>
+  Michael Chapman      <mike@very.puzzling.org>
+  Daniel Gollub        <gollub@b1-systems.de>
+  David S. Wang        <dwang2@cisco.com>
+  Ruben Kerkhof        <ruben@rubenkerkhof.com>
+  Scott Moser          <smoser@ubuntu.com>
+  Guannan Ren          <gren@redhat.com>
+  John Williams        <john.williams@petalogix.com>
+  Michael Santos       <michael.santos@gmail.com>
+  Alex Jia             <ajia@redhat.com>
+  Oskari Saarenmaa     <os@ohmu.fi>
+  Peter Krempa         <pkrempa@redhat.com>
+  Nan Zhang            <nzhang@redhat.com>
+  Wieland Hoffmann     <themineo@googlemail.com>
+  Douglas Schilling Landgraf <dougsland@redhat.com>
+  Tom Vijlbrief        <tom.vijlbrief@xs4all.nl>
+  Shradha Shah         <sshah@solarflare.com>
+  Steve Hodgson        <shodgson@solarflare.com>
+  Xu He Jie            <xuhj@linux.vnet.ibm.com>
+  Lei Li               <lilei@linux.vnet.ibm.com>
+  Matthias Witte       <witte@netzquadrat.de>
 
   [....send patches to get your name here....]
 

HACKING

@@ -417,7 +417,7 @@ File handling
 Usage of the "fdopen()", "close()", "fclose()" APIs is deprecated in libvirt
 code base to help avoiding double-closing of files or file descriptors, which
 is particulary dangerous in a multi-threaded applications. Instead of these
-APIs, use the macros from files.h
+APIs, use the macros from virfile.h
 
 - Open a file from a file descriptor:
 
@@ -545,7 +545,7 @@ Typical usage is as follows:
      ...
 
      virBufferAddLit(&buf, "<domain>\n");
-     virBufferVSprintf(&buf, "  <memory>%d</memory>\n", memory);
+     virBufferAsprintf(&buf, "  <memory>%d</memory>\n", memory);
      ...
      virBufferAddLit(&buf, "</domain>\n");
 

Makefile.am

@@ -1,5 +1,8 @@
 ## Process this file with automake to produce Makefile.in
 
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 LCOV = lcov
 GENHTML = genhtml
 
@@ -18,7 +21,7 @@ EXTRA_DIST = \
   ChangeLog-old \
   libvirt.spec libvirt.spec.in \
   mingw32-libvirt.spec.in \
-  libvirt.pc libvirt.pc.in \
+  libvirt.pc.in \
   autobuild.sh \
   Makefile.nonreentrant \
   autogen.sh \

acinclude.m4

@@ -1,125 +0,0 @@
-dnl
-dnl Taken from gnome-common/macros2/gnome-compiler-flags.m4
-dnl
-dnl We've added:
-dnl   -Wextra -Wshadow -Wcast-align -Wwrite-strings -Waggregate-return -Wstrict-prototypes -Winline -Wredundant-decls
-dnl We've removed
-dnl   CFLAGS="$realsave_CFLAGS"
-dnl   to avoid clobbering user-specified CFLAGS
-dnl
-AC_DEFUN([LIBVIRT_COMPILE_WARNINGS],[
-    dnl ******************************
-    dnl More compiler warnings
-    dnl ******************************
-
-    AC_ARG_ENABLE(compile-warnings,
-                  [AC_HELP_STRING([--enable-compile-warnings=@<:@no/minimum/yes/maximum/error@:>@],
-                                 [Turn on compiler warnings])],,
-                  [enable_compile_warnings="m4_default([$1],[maximum])"])
-
-    warnCFLAGS=
-
-    common_flags=
-    common_flags="$common_flags -Wp,-D_FORTIFY_SOURCE=2"
-    common_flags="$common_flags -fexceptions"
-    common_flags="$common_flags -fasynchronous-unwind-tables"
-    common_flags="$common_flags -fdiagnostics-show-option"
-
-    case "$enable_compile_warnings" in
-    no)
-        try_compiler_flags=""
-	;;
-    minimum)
-	try_compiler_flags="-Wall -Wformat -Wformat-security $common_flags"
-	;;
-    yes)
-	try_compiler_flags="-Wall -Wformat -Wformat-security -Wmissing-prototypes $common_flags"
-	;;
-    maximum|error)
-	try_compiler_flags="-Wall -Wformat -Wformat-security"
-	try_compiler_flags="$try_compiler_flags -Wmissing-prototypes"
-	try_compiler_flags="$try_compiler_flags -Wnested-externs "
-	try_compiler_flags="$try_compiler_flags -Wpointer-arith"
-	try_compiler_flags="$try_compiler_flags -Wextra -Wshadow"
-	try_compiler_flags="$try_compiler_flags -Wcast-align"
-	try_compiler_flags="$try_compiler_flags -Wwrite-strings"
-	try_compiler_flags="$try_compiler_flags -Waggregate-return"
-	try_compiler_flags="$try_compiler_flags -Wstrict-prototypes"
-	try_compiler_flags="$try_compiler_flags -Winline"
-	try_compiler_flags="$try_compiler_flags -Wredundant-decls"
-	try_compiler_flags="$try_compiler_flags -Wno-sign-compare"
-	try_compiler_flags="$try_compiler_flags -Wlogical-op"
-	try_compiler_flags="$try_compiler_flags $common_flags"
-	if test "$enable_compile_warnings" = "error" ; then
-	    try_compiler_flags="$try_compiler_flags -Werror"
-	fi
-	;;
-    *)
-	AC_MSG_ERROR(Unknown argument '$enable_compile_warnings' to --enable-compile-warnings)
-	;;
-    esac
-
-    COMPILER_FLAGS=
-    for option in $try_compiler_flags; do
-        gl_COMPILER_FLAGS($option)
-    done
-    unset option
-    unset try_compiler_flags
-
-    AC_ARG_ENABLE(iso-c,
-                  AC_HELP_STRING([--enable-iso-c],
-                                 [Try to warn if code is not ISO C ]),,
-                  [enable_iso_c=no])
-
-    AC_MSG_CHECKING(what language compliance flags to pass to the C compiler)
-    complCFLAGS=
-    if test "x$enable_iso_c" != "xno"; then
-	if test "x$GCC" = "xyes"; then
-	case " $CFLAGS " in
-	    *[\ \	]-ansi[\ \	]*) ;;
-	    *) complCFLAGS="$complCFLAGS -ansi" ;;
-	esac
-	case " $CFLAGS " in
-	    *[\ \	]-pedantic[\ \	]*) ;;
-	    *) complCFLAGS="$complCFLAGS -pedantic" ;;
-	esac
-	fi
-    fi
-    AC_MSG_RESULT($complCFLAGS)
-
-    WARN_CFLAGS="$COMPILER_FLAGS $complCFLAGS"
-    WARN_LDFLAGS=$WARN_CFLAGS
-    AC_SUBST([WARN_CFLAGS])
-    AC_SUBST([WARN_LDFLAGS])
-
-    dnl Needed to keep compile quiet on python 2.4
-    COMPILER_FLAGS=
-    gl_COMPILER_FLAGS(-Wno-redundant-decls)
-    WARN_PYTHON_CFLAGS=$COMPILER_FLAGS
-    AC_SUBST(WARN_PYTHON_CFLAGS)
-])
-
-
-dnl
-dnl To support the old pkg-config from RHEL4 vintage, we need
-dnl to define the PKG_PROG_PKG_CONFIG macro if its not already
-dnl present
-m4_ifndef([PKG_PROG_PKG_CONFIG],
-  [AC_DEFUN([PKG_PROG_PKG_CONFIG],
-[m4_pattern_forbid([^_?PKG_[A-Z_]+$])
-m4_pattern_allow([^PKG_CONFIG(_PATH)?$])
-AC_ARG_VAR([PKG_CONFIG], [path to pkg-config utility])dnl
-if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then
-        AC_PATH_TOOL([PKG_CONFIG], [pkg-config])
-fi
-if test -n "$PKG_CONFIG"; then
-        _pkg_min_version=m4_default([$1], [0.9.0])
-        AC_MSG_CHECKING([pkg-config is at least version $_pkg_min_version])
-        if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then
-                AC_MSG_RESULT([yes])
-        else
-                AC_MSG_RESULT([no])
-                PKG_CONFIG=""
-        fi
-fi[]dnl
-])])

bootstrap

@@ -1,6 +1,6 @@
 #! /bin/sh
 # Print a version string.
-scriptversion=2011-03-03.12; # UTC
+scriptversion=2011-08-11.17; # UTC
 
 # Bootstrap this package from checked-out sources.
 
@@ -130,18 +130,7 @@ source_base=lib
 m4_base=m4
 doc_base=doc
 tests_base=tests
-
-# Extra files from gnulib, which override files from other sources.
-gnulib_extra_files="
-        $build_aux/install-sh
-        $build_aux/missing
-        $build_aux/mdate-sh
-        $build_aux/texinfo.tex
-        $build_aux/depcomp
-        $build_aux/config.guess
-        $build_aux/config.sub
-        doc/INSTALL
-"
+gnulib_extra_files=''
 
 # Additional gnulib-tool options to use.  Use "\newline" to break lines.
 gnulib_tool_option_extras=
@@ -229,6 +218,18 @@ case "$0" in
   *) test -r "$0.conf" && . ./"$0.conf" ;;
 esac
 
+# Extra files from gnulib, which override files from other sources.
+test -z "${gnulib_extra_files}" && \
+  gnulib_extra_files="
+        $build_aux/install-sh
+        $build_aux/missing
+        $build_aux/mdate-sh
+        $build_aux/texinfo.tex
+        $build_aux/depcomp
+        $build_aux/config.guess
+        $build_aux/config.sub
+        doc/INSTALL
+"
 
 if test "$vc_ignore" = auto; then
   vc_ignore=
@@ -278,14 +279,29 @@ if test -n "$checkout_only_file" && test ! -r "$checkout_only_file"; then
   exit 1
 fi
 
+# Ensure that lines starting with ! sort last, per gitignore conventions
+# for whitelisting exceptions after a more generic blacklist pattern.
+sort_patterns() {
+  sort -u "$@" | sed '/^!/ {
+    H
+    d
+  }
+  $ {
+    P
+    x
+    s/^\n//
+  }' | sed '/^$/d'
+}
+
 # If $STR is not already on a line by itself in $FILE, insert it,
 # sorting the new contents of the file and replacing $FILE with the result.
 insert_sorted_if_absent() {
   file=$1
   str=$2
   test -f $file || touch $file
-  echo "$str" | sort -u - $file | cmp - $file > /dev/null \
-    || echo "$str" | sort -u - $file -o $file \
+  echo "$str" | sort_patterns - $file | cmp - $file > /dev/null \
+    || { echo "$str" | sort_patterns - $file > $file.bak \
+      && mv $file.bak $file; } \
     || exit 1
 }
 
@@ -405,18 +421,32 @@ check_versions() {
     # Honor $APP variables ($TAR, $AUTOCONF, etc.)
     appvar=`echo $app | tr '[a-z]-' '[A-Z]_'`
     test "$appvar" = TAR && appvar=AMTAR
-    eval "app=\${$appvar-$app}"
-    inst_ver=$(get_version $app)
-    if [ ! "$inst_ver" ]; then
-      echo "$me: Error: '$app' not found" >&2
-      ret=1
-    elif [ ! "$req_ver" = "-" ]; then
-      latest_ver=$(sort_ver $req_ver $inst_ver | cut -d' ' -f2)
-      if [ ! "$latest_ver" = "$inst_ver" ]; then
-        echo "$me: Error: '$app' version == $inst_ver is too old" >&2
-        echo "       '$app' version >= $req_ver is required" >&2
+    case $appvar in
+        GZIP) ;; # Do not use $GZIP:  it contains gzip options.
+        *) eval "app=\${$appvar-$app}" ;;
+    esac
+    if [ "$req_ver" = "-" ]; then
+      # Merely require app to exist; not all prereq apps are well-behaved
+      # so we have to rely on $? rather than get_version.
+      $app --version >/dev/null 2>&1
+      if [ 126 -le $? ]; then
+        echo "$me: Error: '$app' not found" >&2
         ret=1
       fi
+    else
+      # Require app to produce a new enough version string.
+      inst_ver=$(get_version $app)
+      if [ ! "$inst_ver" ]; then
+        echo "$me: Error: '$app' not found" >&2
+        ret=1
+      else
+        latest_ver=$(sort_ver $req_ver $inst_ver | cut -d' ' -f2)
+        if [ ! "$latest_ver" = "$inst_ver" ]; then
+          echo "$me: Error: '$app' version == $inst_ver is too old" >&2
+          echo "       '$app' version >= $req_ver is required" >&2
+          ret=1
+        fi
+      fi
     fi
   done
 
@@ -640,10 +670,18 @@ symlink_to_dir()
         cp -fp "$src" "$dst"
       }
     else
+      # Leave any existing symlink alone, if it already points to the source,
+      # so that broken build tools that care about symlink times
+      # aren't confused into doing unnecessary builds.  Conversely, if the
+      # existing symlink's time stamp is older than the source, make it afresh,
+      # so that broken tools aren't confused into skipping needed builds.  See
+      # <http://lists.gnu.org/archive/html/bug-gnulib/2011-05/msg00326.html>.
       test -h "$dst" &&
       src_ls=`ls -diL "$src" 2>/dev/null` && set $src_ls && src_i=$1 &&
       dst_ls=`ls -diL "$dst" 2>/dev/null` && set $dst_ls && dst_i=$1 &&
-      test "$src_i" = "$dst_i" || {
+      test "$src_i" = "$dst_i" &&
+      both_ls=`ls -dt "$src" "$dst"` &&
+      test "X$both_ls" = "X$dst$nl$src" || {
         dot_dots=
         case $src in
         /*) ;;
@@ -762,20 +800,7 @@ slurp() {
         echo "$me: $dir/$file overrides $1/$dir/$file"
       else
         copied=$copied$sep$file; sep=$nl
-        if test $file = gettext.m4; then
-          echo "$me: patching m4/gettext.m4 to remove need for intl/* ..."
-          rm -f $dir/$file
-          sed '
-            /^AC_DEFUN(\[AM_INTL_SUBDIR],/,/^]/c\
-              AC_DEFUN([AM_INTL_SUBDIR], [])
-            /^AC_DEFUN(\[gt_INTL_SUBDIR_CORE],/,/^]/c\
-              AC_DEFUN([gt_INTL_SUBDIR_CORE], [])
-            $a\
-              AC_DEFUN([gl_LOCK_EARLY], [])
-          ' $1/$dir/$file >$dir/$file
-        else
-          cp_mark_as_generated $1/$dir/$file $dir/$file
-        fi
+        cp_mark_as_generated $1/$dir/$file $dir/$file
       fi || exit
     done
 

bootstrap.conf

@@ -19,11 +19,15 @@
 
 # gnulib modules used by this package.
 gnulib_modules='
+accept
 areadlink
 base64
+bind
+byteswap
 c-ctype
 c-strcase
 c-strcasestr
+calloc-posix
 canonicalize-lgpl
 chown
 close
@@ -32,30 +36,46 @@ configmake
 count-one-bits
 crypto/md5
 dirname-lgpl
+environ
+fclose
+fcntl
 fcntl-h
+ffs
+fnmatch
+fsync
 func
 getaddrinfo
+getcwd-lgpl
 gethostname
 getpass
+getpeername
+getsockname
 gettext-h
 gettimeofday
 gitlog-to-changelog
 gnumakefile
 ignore-value
 inet_pton
+intprops
 ioctl
+largefile
+listen
 maintainer-makefile
+manywarnings
 mkstemp
 mkstemps
 mktempd
 netdb
 nonblocking
+passfd
 perror
 physmem
 pipe-posix
+pipe2
 poll
 posix-shell
 pthread
+pthread_sigmask
 recv
 random_r
 sched
@@ -65,8 +85,10 @@ sigaction
 sigpipe
 snprintf
 socket
+stdarg
 stpcpy
 strchrnul
+strdup-posix
 strndup
 strerror
 strerror_r-posix
@@ -84,7 +106,9 @@ usleep
 vasprintf
 verify
 vc-list-files
+vsnprintf
 waitpid
+warnings
 '
 
 # Additional xgettext options to use.  Use "\\\newline" to break lines.
@@ -140,7 +164,6 @@ gnulib_name=libgnu
 m4_base=gnulib/m4
 source_base=gnulib/lib
 tests_base=gnulib/tests
-gnulib_mk=Makefile.am
 gnulib_tool_option_extras="\
  --lgpl=2\
  --with-tests\
@@ -156,12 +179,13 @@ buildreq="\
 autoconf   2.59
 automake   1.9.6
 autopoint  -
-gettext    -
+gettext    0.17
 git        1.5.5
 gzip       -
 libtool    -
 perl       5.5
 pkg-config -
+rpcgen     -
 tar        -
 "
 
@@ -181,9 +205,9 @@ gnulib_extra_files="
 
 bootstrap_epilogue()
 {
-  # Change paths in gnulib/tests/Makefile.am from "../../.." to "../..",
+  # Change paths in gnulib/tests/gnulib.mk from "../../.." to "../..",
   # then ensure that gnulib/tests/Makefile.in is up-to-date.
-  m=gnulib/tests/Makefile.am
+  m=gnulib/tests/gnulib.mk
   sed 's,\.\./\.\./\.\.,../..,g' $m > $m-t
   mv -f $m-t $m
   ${AUTOMAKE-automake} gnulib/tests/Makefile

cfg.mk

@@ -28,6 +28,14 @@ url_dir_list = \
 # We use .gnulib, not gnulib.
 gnulib_dir = $(srcdir)/.gnulib
 
+# List of additional files that we want to pick up in our POTFILES.in
+# This is all gnulib files, as well as generated files for RPC code.
+generated_files = \
+  $(srcdir)/daemon/*_dispatch.h \
+  $(srcdir)/src/remote/*_client_bodies.h \
+  $(srcdir)/src/remote/*_protocol.[ch] \
+  $(srcdir)/gnulib/lib/*.[ch]
+
 # Tests not to run as part of "make distcheck".
 local-checks-to-skip =			\
   changelog-check			\
@@ -66,13 +74,17 @@ local-checks-to-skip =			\
   sc_useless_cpp_parens
 
 # Files that should never cause syntax check failures.
-VC_LIST_ALWAYS_EXCLUDE_REGEX = ^(HACKING|docs/news\.html\.in)$$
+VC_LIST_ALWAYS_EXCLUDE_REGEX = \
+  (^(HACKING|docs/(news\.html\.in|.*\.patch))|\.po)$$
 
 # Functions like free() that are no-ops on NULL arguments.
 useless_free_options =				\
   --name=VIR_FREE				\
   --name=qemuCapsFree				\
+  --name=qemuMigrationCookieFree                \
+  --name=qemuMigrationCookieGraphicsFree        \
   --name=sexpr_free				\
+  --name=virBandwidthDefFree			\
   --name=virBitmapFree                          \
   --name=virCPUDefFree				\
   --name=virCapabilitiesFree			\
@@ -86,6 +98,7 @@ useless_free_options =				\
   --name=virCommandFree				\
   --name=virConfFreeList			\
   --name=virConfFreeValue			\
+  --name=virDomainActualNetDefFree		\
   --name=virDomainChrDefFree			\
   --name=virDomainChrSourceDefFree		\
   --name=virDomainControllerDefFree		\
@@ -95,6 +108,7 @@ useless_free_options =				\
   --name=virDomainEventCallbackListFree		\
   --name=virDomainEventFree			\
   --name=virDomainEventQueueFree		\
+  --name=virDomainEventStateFree		\
   --name=virDomainFSDefFree			\
   --name=virDomainGraphicsDefFree		\
   --name=virDomainHostdevDefFree		\
@@ -107,6 +121,7 @@ useless_free_options =				\
   --name=virDomainSoundDefFree			\
   --name=virDomainVideoDefFree			\
   --name=virDomainWatchdogDefFree		\
+  --name=virFileDirectFdFree			\
   --name=virHashFree				\
   --name=virInterfaceDefFree			\
   --name=virInterfaceIpDefFree			\
@@ -114,6 +129,21 @@ useless_free_options =				\
   --name=virInterfaceProtocolDefFree		\
   --name=virJSONValueFree			\
   --name=virLastErrFreeData			\
+  --name=virNetMessageFree                      \
+  --name=virNetClientFree                       \
+  --name=virNetClientProgramFree                \
+  --name=virNetClientStreamFree                 \
+  --name=virNetServerFree                       \
+  --name=virNetServerClientFree                 \
+  --name=virNetServerMDNSFree                   \
+  --name=virNetServerMDNSEntryFree              \
+  --name=virNetServerMDNSGroupFree              \
+  --name=virNetServerProgramFree                \
+  --name=virNetServerServiceFree                \
+  --name=virNetSocketFree                       \
+  --name=virNetSASLContextFree                  \
+  --name=virNetSASLSessionFree                  \
+  --name=virNetTLSSessionFree                   \
   --name=virNWFilterDefFree			\
   --name=virNWFilterEntryFree			\
   --name=virNWFilterHashTableFree		\
@@ -129,12 +159,15 @@ useless_free_options =				\
   --name=virSecretDefFree			\
   --name=virStorageEncryptionFree		\
   --name=virStorageEncryptionSecretFree		\
+  --name=virStorageFileFreeMetadata		\
   --name=virStoragePoolDefFree			\
   --name=virStoragePoolObjFree			\
   --name=virStoragePoolSourceFree		\
   --name=virStorageVolDefFree			\
   --name=virThreadPoolFree			\
+  --name=xmlBufferFree				\
   --name=xmlFree				\
+  --name=xmlFreeDoc				\
   --name=xmlXPathFreeContext			\
   --name=xmlXPathFreeObject
 
@@ -179,7 +212,7 @@ useless_free_options =				\
 # y virDomainWatchdogDefFree
 # n virDrvNodeGetCellsFreeMemory (returns int)
 # n virDrvNodeGetFreeMemory (returns long long)
-# n virFree (dereferences param)
+# n virFree - dereferences param
 # n virFreeError
 # n virHashFree (takes 2 args)
 # y virInterfaceDefFree
@@ -242,6 +275,43 @@ sc_avoid_write:
 	halt='consider using safewrite instead of write'		\
 	  $(_sc_search_regexp)
 
+# In debug statements, print flags as bitmask and mode_t as octal.
+sc_flags_debug:
+	@prohibit='\<mode=%[0-9.]*[diux]'				\
+	halt='use %o to debug mode_t values'				\
+	  $(_sc_search_regexp)
+	@prohibit='[Ff]lags=%[0-9.]*l*[diou]'				\
+	halt='use %x to debug flag values'				\
+	  $(_sc_search_regexp)
+
+# Prefer 'unsigned int flags', along with checks for unknown flags.
+# For historical reasons, we are stuck with 'unsigned long flags' in
+# migration, so check for those known 4 instances and no more in public
+# API.  Also check that no flags are marked unused, and 'unsigned' should
+# appear before any declaration of a flags variable (achieved by
+# prohibiting the word prior to the type from ending in anything other
+# than d).  The existence of long long, and of documentation about
+# flags, makes the regex in the third test slightly harder.
+sc_flags_usage:
+	@test "$$(cat $(srcdir)/include/libvirt/libvirt.h.in		\
+	    $(srcdir)/include/libvirt/virterror.h			\
+	    $(srcdir)/include/libvirt/libvirt-qemu.h			\
+	  | grep -c '\(long\|unsigned\) flags')" != 4 &&		\
+	  { echo '$(ME): new API should use "unsigned int flags"' 1>&2;	\
+	    exit 1; } || :
+	@prohibit=' flags ''ATTRIBUTE_UNUSED'				\
+	halt='flags should be checked with virCheckFlags'		\
+	  $(_sc_search_regexp)
+	@prohibit='^[^@]*([^d] (int|long long)|[^dg] long) flags[;,)]'	\
+	halt='flags should be unsigned'					\
+	  $(_sc_search_regexp)
+
+# Avoid functions that should only be called via macro counterparts.
+sc_prohibit_internal_functions:
+	@prohibit='vir(Free|AllocN?|ReallocN|File(Close|Fclose|Fdopen)) *\(' \
+	halt='use VIR_ macros instead of internal functions'		\
+	  $(_sc_search_regexp)
+
 # Avoid functions that can lead to double-close bugs.
 sc_prohibit_close:
 	@prohibit='([^>.]|^)\<[fp]?close *\('				\
@@ -252,7 +322,6 @@ sc_prohibit_close:
 	  $(_sc_search_regexp)
 
 # Prefer virCommand for all child processes.
-# XXX - eventually, we want to enhance this to also prohibit virExec.
 sc_prohibit_fork_wrappers:
 	@prohibit='= *\<(fork|popen|system) *\('			\
 	halt='use virCommand for child processes'			\
@@ -280,6 +349,12 @@ sc_prohibit_asprintf:
 	halt='use virAsprintf, not as'printf				\
 	  $(_sc_search_regexp)
 
+# Prefer virSetUIDGID.
+sc_prohibit_setuid:
+	@prohibit='\<set(re)?[ug]id\> *\('				\
+	halt='use virSetUIDGID, not raw set*id'				\
+	  $(_sc_search_regexp)
+
 # Use snprintf rather than s'printf, even if buffer is provably large enough,
 # since gnulib has more guarantees for snprintf portability
 sc_prohibit_sprintf:
@@ -372,6 +447,14 @@ sc_prohibit_xmlGetProp:
 	halt='use virXMLPropString, not xmlGetProp'			\
 	  $(_sc_search_regexp)
 
+# ATTRIBUTE_UNUSED should only be applied in implementations, not
+# header declarations
+sc_avoid_attribute_unused_in_header:
+	@prohibit='^[^#]*ATTRIBUTE_UNUSED([^:]|$$)'			\
+	in_vc_files='\.h$$'						\
+	halt='use ATTRIBUTE_UNUSED in .c rather than .h files'		\
+	  $(_sc_search_regexp)
+
 # Many of the function names below came from this filter:
 # git grep -B2 '\<_('|grep -E '\.c- *[[:alpha:]_][[:alnum:]_]* ?\(.*[,;]$' \
 # |sed 's/.*\.c-  *//'|perl -pe 's/ ?\(.*//'|sort -u \
@@ -380,46 +463,76 @@ sc_prohibit_xmlGetProp:
 msg_gen_function =
 msg_gen_function += ESX_ERROR
 msg_gen_function += ESX_VI_ERROR
-msg_gen_function += macvtapError
-msg_gen_function += remoteError
+msg_gen_function += HYPERV_ERROR
+msg_gen_function += PHYP_ERROR
+msg_gen_function += VIR_ERROR
+msg_gen_function += VMX_ERROR
+msg_gen_function += XENXS_ERROR
+msg_gen_function += eventReportError
+msg_gen_function += ifaceError
+msg_gen_function += interfaceReportError
+msg_gen_function += iptablesError
 msg_gen_function += lxcError
-msg_gen_function += networkLog
+msg_gen_function += libxlError
+msg_gen_function += macvtapError
 msg_gen_function += networkReportError
-msg_gen_function += oneError
+msg_gen_function += nodeReportError
 msg_gen_function += openvzError
+msg_gen_function += pciReportError
 msg_gen_function += qemuReportError
 msg_gen_function += qemudDispatchClientFailure
 msg_gen_function += regerror
+msg_gen_function += remoteError
 msg_gen_function += remoteDispatchFormatError
+msg_gen_function += statsError
+msg_gen_function += streamsReportError
+msg_gen_function += usbReportError
 msg_gen_function += umlReportError
 msg_gen_function += vah_error
 msg_gen_function += vah_warning
 msg_gen_function += vboxError
 msg_gen_function += virCommandError
 msg_gen_function += virConfError
+msg_gen_function += virCPUReportError
+msg_gen_function += virEventError
 msg_gen_function += virDomainReportError
+msg_gen_function += virGenericReportError
 msg_gen_function += virHashError
+msg_gen_function += virHookReportError
+msg_gen_function += virInterfaceReportError
+msg_gen_function += virJSONError
 msg_gen_function += virLibConnError
 msg_gen_function += virLibDomainError
+msg_gen_function += virLibDomainSnapshotError
+msg_gen_function += virLibInterfaceError
+msg_gen_function += virLibNetworkError
+msg_gen_function += virLibNodeDeviceError
+msg_gen_function += virLibNWFilterError
+msg_gen_function += virLibSecretError
+msg_gen_function += virLibStoragePoolError
+msg_gen_function += virLibStorageVolError
 msg_gen_function += virNetworkReportError
 msg_gen_function += virNodeDeviceReportError
+msg_gen_function += virNWFilterReportError
 msg_gen_function += virRaiseError
 msg_gen_function += virReportErrorHelper
 msg_gen_function += virReportSystemError
+msg_gen_function += virSecretReportError
 msg_gen_function += virSecurityReportError
 msg_gen_function += virSexprError
+msg_gen_function += virSmbiosReportError
+msg_gen_function += virSocketError
+msg_gen_function += virStatsError
 msg_gen_function += virStorageReportError
+msg_gen_function += virUtilError
 msg_gen_function += virXMLError
 msg_gen_function += virXenInotifyError
 msg_gen_function += virXenStoreError
 msg_gen_function += virXendError
 msg_gen_function += vmwareError
 msg_gen_function += xenapiSessionErrorHandler
-msg_gen_function += libxlError
 msg_gen_function += xenUnifiedError
 msg_gen_function += xenXMError
-msg_gen_function += VIR_ERROR
-msg_gen_function += VIR_ERROR0
 
 # Uncomment the following and run "make syntax-check" to see diagnostics
 # that are not yet marked for translation, but that need to be rewritten
@@ -465,13 +578,10 @@ sc_prohibit_newline_at_end_of_diagnostic:
 	  && { echo '$(ME): newline at end of message(s)' 1>&2;		\
 	    exit 1; } || :
 
-# Regex for grep -E that exempts generated files from style rules.
-preprocessor_exempt = ((qemu|remote)_(driver|protocol)\.h)$$
 # Enforce recommended preprocessor indentation style.
 sc_preprocessor_indentation:
 	@if cppi --version >/dev/null 2>&1; then			\
-	  $(VC_LIST_EXCEPT) | grep '\.[ch]$$'				\
-	    | grep -vE '$(preprocessor_exempt)' | xargs cppi -a -c	\
+	  $(VC_LIST_EXCEPT) | grep '\.[ch]$$' | xargs cppi -a -c	\
 	    || { echo '$(ME): incorrect preprocessor indentation' 1>&2;	\
 		exit 1; };						\
 	else								\
@@ -486,11 +596,14 @@ sc_copyright_format:
 	@prohibit='Copyright [^(].*Red 'Hat				\
 	halt='consistently use (C) in Red Hat copyright'		\
 	  $(_sc_search_regexp)
+	@prohibit='\<Red''Hat\>'					\
+	halt='spell Red Hat as two words'				\
+	  $(_sc_search_regexp)
 
 # Some functions/macros produce messages intended solely for developers
 # and maintainers.  Do not mark them for translation.
 sc_prohibit_gettext_markup:
-	@prohibit='\<VIR_(WARN|DEBUG)0? *\(_\('				\
+	@prohibit='\<VIR_(WARN|INFO|DEBUG) *\(_\('			\
 	halt='do not mark these strings for translation'		\
 	  $(_sc_search_regexp)
 
@@ -545,22 +658,36 @@ _autogen:
 	$(srcdir)/autogen.sh
 	./config.status
 
-# Exempt @...@ uses of these symbols.
-_makefile_at_at_check_exceptions = ' && !/(SCHEMA|SYSCONF)DIR/'
-
 # regenerate HACKING as part of the syntax-check
 syntax-check: $(top_srcdir)/HACKING
 
+# sc_po_check can fail if generated files are not built first
+sc_po_check: \
+		$(srcdir)/daemon/remote_dispatch.h \
+		$(srcdir)/daemon/qemu_dispatch.h \
+		$(srcdir)/src/remote/remote_client_bodies.h
+$(srcdir)/daemon/remote_dispatch.h: $(srcdir)/src/remote/remote_protocol.x
+	$(MAKE) -C daemon remote_dispatch.h
+$(srcdir)/daemon/qemu_dispatch.h: $(srcdir)/src/remote/qemu_protocol.x
+	$(MAKE) -C daemon qemu_dispatch.h
+$(srcdir)/src/remote/remote_client_bodies.h: $(srcdir)/src/remote/remote_protocol.x
+	$(MAKE) -C src remote/remote_client_bodies.h
+
 # List all syntax-check exemptions:
 exclude_file_name_regexp--sc_avoid_strcase = ^tools/virsh\.c$$
 
-_src1=libvirt|fdstream|qemu/qemu_monitor|util/(command|util)|xen/xend_internal
+_src1=libvirt|fdstream|qemu/qemu_monitor|util/(command|util)|xen/xend_internal|rpc/virnetsocket
 exclude_file_name_regexp--sc_avoid_write = \
-  ^(src/($(_src1))|daemon/libvirtd|tools/console)\.c$$
+  ^(src/($(_src1))|daemon/libvirtd|tools/console|tests/(shunload|virnettlscontext)test)\.c$$
 
 exclude_file_name_regexp--sc_bindtextdomain = ^(tests|examples)/
 
-exclude_file_name_regexp--sc_po_check = ^docs/
+exclude_file_name_regexp--sc_flags_usage = ^docs/
+
+exclude_file_name_regexp--sc_libvirt_unmarked_diagnostics = \
+  ^src/rpc/gendispatch\.pl$$
+
+exclude_file_name_regexp--sc_po_check = ^(docs/|src/rpc/gendispatch\.pl$$)
 
 exclude_file_name_regexp--sc_prohibit_VIR_ERR_NO_MEMORY = \
   ^(include/libvirt/virterror\.h|daemon/dispatch\.c|src/util/virterror\.c)$$
@@ -568,31 +695,37 @@ exclude_file_name_regexp--sc_prohibit_VIR_ERR_NO_MEMORY = \
 exclude_file_name_regexp--sc_prohibit_access_xok = ^src/util/util\.c$$
 
 exclude_file_name_regexp--sc_prohibit_always_true_header_tests = \
-  (^docs|^python/(libvirt-override|typewrappers)\.c$$)
+  ^python/(libvirt-(qemu-)?override|typewrappers)\.c$$
 
 exclude_file_name_regexp--sc_prohibit_asprintf = \
-  ^(bootstrap.conf$$|po/|src/util/util\.c$$|examples/domain-events/events-c/event-test\.c$$)
+  ^(bootstrap.conf$$|src/util/util\.c$$|examples/domain-events/events-c/event-test\.c$$)
 
 exclude_file_name_regexp--sc_prohibit_close = \
-  (\.py$$|^docs/|(src/util/files\.c|src/libvirt\.c)$$)
+  (\.p[yl]$$|^docs/|^(src/util/virfile\.c|src/libvirt\.c)$$)
 
 exclude_file_name_regexp--sc_prohibit_empty_lines_at_EOF = \
-  (^docs/api_extension/|^tests/qemuhelpdata/|\.(gif|ico|png)$$)
+  (^tests/qemuhelpdata/|\.(gif|ico|png)$$)
 
-_src2=src/(util/util|libvirt|lxc/lxc_controller)
+_src2=src/(util/command|libvirt|lxc/lxc_controller)
 exclude_file_name_regexp--sc_prohibit_fork_wrappers = \
-  (^docs|^($(_src2)|tests/testutils|daemon/libvirtd)\.c$$)
+  (^($(_src2)|tests/testutils|daemon/libvirtd)\.c$$)
 
 exclude_file_name_regexp--sc_prohibit_gethostname = ^src/util/util\.c$$
 
-exclude_file_name_regexp--sc_prohibit_gettext_noop = ^docs/
+exclude_file_name_regexp--sc_prohibit_internal_functions = \
+  ^src/(util/(memory|util|virfile)\.[hc]|esx/esx_vi\.c)$$
+
+exclude_file_name_regexp--sc_prohibit_newline_at_end_of_diagnostic = \
+  ^src/rpc/gendispatch\.pl$$
 
 exclude_file_name_regexp--sc_prohibit_nonreentrant = \
-  ^((po|docs|tests)/|tools/(virsh|console)\.c$$)
+  ^((po|tests)/|docs/.*py$$|tools/(virsh|console)\.c$$)
 
 exclude_file_name_regexp--sc_prohibit_readlink = ^src/util/util\.c$$
 
-exclude_file_name_regexp--sc_prohibit_sprintf = ^(docs/|HACKING$$)
+exclude_file_name_regexp--sc_prohibit_setuid = ^src/util/util\.c$$
+
+exclude_file_name_regexp--sc_prohibit_sprintf = ^docs/hacking\.html\.in$$
 
 exclude_file_name_regexp--sc_prohibit_strncpy = \
   ^(src/util/util|tools/virsh)\.c$$
@@ -603,7 +736,7 @@ exclude_file_name_regexp--sc_require_config_h = ^examples/
 
 exclude_file_name_regexp--sc_require_config_h_first = ^examples/
 
-exclude_file_name_regexp--sc_trailing_blank = (^docs/|\.(fig|gif|ico|png)$$)
+exclude_file_name_regexp--sc_trailing_blank = \.(fig|gif|ico|png)$$
 
 exclude_file_name_regexp--sc_unmarked_diagnostics = \
   ^(docs/apibuild.py|tests/virt-aa-helper-test)$$

configure.ac

@@ -1,6 +1,9 @@
 dnl Process this file with autoconf to produce a configure script.
 
-AC_INIT([libvirt], [0.9.0], [libvir-list@redhat.com], [], [http://libvirt.org])
+dnl Copyright (C) 2005-2011 Red Hat, Inc.
+dnl See COPYING.LIB for the License of this software
+
+AC_INIT([libvirt], [0.9.6], [libvir-list@redhat.com], [], [http://libvirt.org])
 AC_CONFIG_SRCDIR([src/libvirt.c])
 AC_CONFIG_AUX_DIR([build-aux])
 AC_CONFIG_HEADERS([config.h])
@@ -66,8 +69,11 @@ XMLRPC_REQUIRED=1.14.0
 HAL_REQUIRED=0.5.0
 DEVMAPPER_REQUIRED=1.0.0
 LIBCURL_REQUIRED="7.18.0"
+OPENWSMAN_REQUIRED="2.2.3"
 LIBPCAP_REQUIRED="1.0.0"
 LIBNL_REQUIRED="1.1"
+LIBSSH2_REQUIRED="1.0"
+LIBBLKID_REQUIRED="2.17"
 
 dnl Checks for C compiler.
 AC_PROG_CC
@@ -91,9 +97,18 @@ AM_PROG_LIBTOOL
 AM_PROG_CC_C_O
 AM_PROG_LD
 
+AC_MSG_CHECKING([for how to mark DSO non-deletable at runtime])
+LIBVIRT_NODELETE=
+`$LD --help 2>&1 | grep -- "-z nodelete" >/dev/null` && \
+    LIBVIRT_NODELETE="-Wl,-z -Wl,nodelete"
+AC_MSG_RESULT([$LIBVIRT_NODELETE])
+AC_SUBST([LIBVIRT_NODELETE])
+
+AC_MSG_CHECKING([for how to set DSO symbol versions])
 VERSION_SCRIPT_FLAGS=-Wl,--version-script=
 `$LD --help 2>&1 | grep -- --version-script >/dev/null` || \
     VERSION_SCRIPT_FLAGS="-Wl,-M -Wl,"
+AC_MSG_RESULT([$VERSION_SCRIPT_FLAGS])
 
 LIBVIRT_COMPILE_WARNINGS([maximum])
 
@@ -116,25 +131,34 @@ if test "x$have_cpuid" = xyes; then
 fi
 AC_MSG_RESULT([$have_cpuid])
 
+AC_CHECK_SIZEOF([long])
 
 dnl Availability of various common functions (non-fatal if missing),
 dnl and various less common threadsafe functions
-AC_CHECK_FUNCS_ONCE([cfmakeraw regexec sched_getaffinity getuid getgid \
- geteuid initgroups posix_fallocate mmap kill \
- getmntent_r getgrnam_r getpwuid_r])
+AC_CHECK_FUNCS_ONCE([cfmakeraw fdatasync geteuid getgid getgrnam_r getmntent_r \
+  getpwuid_r getuid initgroups kill mmap posix_fallocate posix_memalign \
+  regexec sched_getaffinity])
+if test $ac_cv_func_fdatasync = no; then
+  AC_DEFINE([fdatasync], [fsync], [Define to fsync if you lack fdatasync])
+fi
 
 dnl Availability of pthread functions (if missing, win32 threading is
 dnl assumed).  Because of $LIB_PTHREAD, we cannot use AC_CHECK_FUNCS_ONCE.
 dnl LIB_PTHREAD was set during gl_INIT by gnulib.
 old_LIBS=$LIBS
 LIBS="$LIBS $LIB_PTHREAD"
-AC_CHECK_FUNCS([pthread_sigmask pthread_mutexattr_init])
+AC_CHECK_FUNCS([pthread_mutexattr_init])
 LIBS=$old_libs
 
 dnl Availability of various common headers (non-fatal if missing).
-AC_CHECK_HEADERS([pwd.h paths.h regex.h sys/syslimits.h sys/un.h \
+AC_CHECK_HEADERS([pwd.h paths.h regex.h sys/un.h \
   sys/poll.h syslog.h mntent.h net/ethernet.h linux/magic.h \
-  sys/un.h sys/syscall.h])
+  sys/un.h sys/syscall.h netinet/tcp.h ifaddrs.h libtasn1.h])
+
+dnl Our only use of libtasn1.h is in the testsuite, and can be skipped
+dnl if the header is not present.  Assume -ltasn1 is present if the
+dnl header could be found.
+AM_CONDITIONAL([HAVE_LIBTASN1], [test "x$ac_cv_header_libtasn1_h" = "xyes"])
 
 AC_CHECK_LIB([intl],[gettext],[])
 
@@ -163,6 +187,8 @@ AC_PATH_PROG([RADVD], [radvd], [radvd],
 	[/sbin:/usr/sbin:/usr/local/sbin:$PATH])
 AC_PATH_PROG([BRCTL], [brctl], [brctl],
 	[/sbin:/usr/sbin:/usr/local/sbin:$PATH])
+AC_PATH_PROG([TC], [tc], [tc],
+    [/sbin:/usr/sbin:/usr/local/sbin:$PATH])
 AC_PATH_PROG([UDEVADM], [udevadm], [],
 	[/sbin:/usr/sbin:/usr/local/sbin:$PATH])
 AC_PATH_PROG([UDEVSETTLE], [udevsettle], [],
@@ -176,6 +202,8 @@ AC_DEFINE_UNQUOTED([RADVD],["$RADVD"],
         [Location or name of the radvd program])
 AC_DEFINE_UNQUOTED([BRCTL],["$BRCTL"],
         [Location or name of the brctl program (see bridge-utils)])
+AC_DEFINE_UNQUOTED([TC],["$TC"],
+        [Location or name of the tc profram (see iproute2)])
 if test -n "$UDEVADM"; then
   AC_DEFINE_UNQUOTED([UDEVADM],["$UDEVADM"],
         [Location or name of the udevadm program])
@@ -254,11 +282,11 @@ AC_ARG_WITH([qemu],
 AC_ARG_WITH([uml],
   AC_HELP_STRING([--with-uml], [add UML support @<:@default=check@:>@]),[],[with_uml=check])
 AC_ARG_WITH([openvz],
-  AC_HELP_STRING([--with-openvz], [add OpenVZ support @<:@default=yes@:>@]),[],[with_openvz=yes])
+  AC_HELP_STRING([--with-openvz], [add OpenVZ support @<:@default=check@:>@]),[],[with_openvz=check])
 AC_ARG_WITH([vmware],
   AC_HELP_STRING([--with-vmware], [add VMware support @<:@default=yes@:>@]),[],[with_vmware=yes])
 AC_ARG_WITH([libssh2],
-  AC_HELP_STRING([--with-libssh2=@<:@PFX@:>@], [libssh2 location @<:@default=/usr/local/lib@:>@]),[],[with_libssh2=yes])
+  AC_HELP_STRING([--with-libssh2], [libssh2 location @<:@default=check@:>@]),[],[with_libssh2=check])
 AC_ARG_WITH([phyp],
   AC_HELP_STRING([--with-phyp], [add PHYP support @<:@default=check@:>@]),[],[with_phyp=check])
 AC_ARG_WITH([xenapi],
@@ -273,6 +301,8 @@ AC_ARG_WITH([lxc],
   AC_HELP_STRING([--with-lxc], [add Linux Container support @<:@default=check@:>@]),[],[with_lxc=check])
 AC_ARG_WITH([esx],
   AC_HELP_STRING([--with-esx], [add ESX support @<:@default=check@:>@]),[],[with_esx=check])
+AC_ARG_WITH([hyperv],
+  AC_HELP_STRING([--with-hyperv], [add Hyper-V support @<:@default=check@:>@]),[],[with_hyperv=check])
 AC_ARG_WITH([test],
   AC_HELP_STRING([--with-test], [add test driver support @<:@default=yes@:>@]),[],[with_test=yes])
 AC_ARG_WITH([remote],
@@ -297,17 +327,6 @@ if test x"$enable_debug" = x"yes"; then
 fi
 
 
-AC_MSG_CHECKING([where to write libvirtd PID file])
-AC_ARG_WITH([remote-pid-file], [AC_HELP_STRING([--with-remote-pid-file=@<:@pidfile|none@:>@], [PID file for libvirtd])])
-if test "x$with_remote_pid_file" = "x" ; then
-   REMOTE_PID_FILE="$localstatedir/run/libvirtd.pid"
-elif test "x$with_remote_pid_file" = "xnone" ; then
-   REMOTE_PID_FILE=""
-else
-   REMOTE_PID_FILE="$with_remote_pid_file"
-fi
-AC_SUBST([REMOTE_PID_FILE])
-AC_MSG_RESULT($REMOTE_PID_FILE)
 
 dnl
 dnl init script flavor
@@ -347,16 +366,34 @@ AC_PATH_PROG([EBTABLES_PATH], [ebtables], /sbin/ebtables, [/usr/sbin:$PATH])
 AC_DEFINE_UNQUOTED([EBTABLES_PATH], "$EBTABLES_PATH", [path to ebtables binary])
 
 
+dnl
+dnl Checks for the OpenVZ driver
+dnl
+
+if test "$with_openvz" = "check"; then
+    with_openvz=$with_linux
+fi
+
+if test "$with_openvz" = "yes" && test "$with_linux" = "no"; then
+    AC_MSG_ERROR([The OpenVZ driver can be enabled on Linux only.])
+fi
+
 if test "$with_openvz" = "yes"; then
     AC_DEFINE_UNQUOTED([WITH_OPENVZ], 1, [whether OpenVZ driver is enabled])
 fi
 AM_CONDITIONAL([WITH_OPENVZ], [test "$with_openvz" = "yes"])
 
+
+dnl
+dnl Checks for the VMware Workstation/Player driver
+dnl
+
 if test "$with_vmware" = "yes"; then
     AC_DEFINE_UNQUOTED([WITH_VMWARE], 1, [whether VMware driver is enabled])
 fi
 AM_CONDITIONAL([WITH_VMWARE], [test "$with_vmware" = "yes"])
 
+
 dnl
 dnl check for XDR
 dnl
@@ -365,16 +402,16 @@ if test x"$with_remote" = x"yes" || test x"$with_libvirtd" = x"yes"; then
     dnl Where are the XDR functions?
     dnl If portablexdr is installed, prefer that.
     dnl Otherwise try -lrpc (Cygwin) -lxdr (some MinGW), -lnsl (Solaris)
-    dnl or none (most Unix)
+    dnl -ltirpc (glibc 2.13.90 or newer) or none (most Unix)
     AC_CHECK_LIB([portablexdr],[xdrmem_create],[],[
-        AC_SEARCH_LIBS([xdrmem_create],[rpc xdr nsl],[],
+        AC_SEARCH_LIBS([xdrmem_create],[rpc xdr nsl tirpc],[],
             [AC_MSG_ERROR([Cannot find a XDR library])])
         ])
 
     dnl check for cygwin's variation in xdr function names
     AC_CHECK_FUNCS([xdr_u_int64_t],[],[],[#include <rpc/xdr.h>])
 
-    dnl Cygwin requires -I/usr/include/tirpc for <rpc/rpc.h>
+    dnl Cygwin/recent glibc requires -I/usr/include/tirpc for <rpc/rpc.h>
     old_CFLAGS=$CFLAGS
     AC_CACHE_CHECK([where to find <rpc/rpc.h>], [lv_cv_xdr_cflags], [
       for add_CFLAGS in '' '-I/usr/include/tirpc' 'missing'; do
@@ -396,6 +433,28 @@ if test x"$with_remote" = x"yes" || test x"$with_libvirtd" = x"yes"; then
 fi
 
 
+dnl
+dnl check for libdl
+dnl
+
+dlfcn_found=yes
+dlopen_found=yes
+
+AC_CHECK_HEADER([dlfcn.h],, [dlfcn_found=no])
+AC_SEARCH_LIBS([dlopen], [dl],, [dlopen_found=no])
+
+case $ac_cv_search_dlopen:$host_os in
+  'none required'* | *:mingw* | *:msvc*) DLOPEN_LIBS= ;;
+  no*) AC_MSG_ERROR([Unable to find dlopen()]) ;;
+  *) if test "x$dlfcn_found" != "xyes"; then
+       AC_MSG_ERROR([Unable to find dlfcn.h])
+     fi
+     DLOPEN_LIBS=$ac_cv_search_dlopen ;;
+esac
+
+AC_SUBST([DLOPEN_LIBS])
+
+
 dnl
 dnl check for VirtualBox XPCOMC location
 dnl
@@ -412,14 +471,6 @@ AC_DEFINE_UNQUOTED([VBOX_XPCOMC_DIR], ["$vbox_xpcomc_dir"],
                    [Location of directory containing VirtualBox XPCOMC library])
 
 if test "x$with_vbox" = "xyes"; then
-    AC_SEARCH_LIBS([dlopen], [dl],,)
-    case $ac_cv_search_dlopen:$host_os in
-      'none required'* | *:mingw* | *:msvc*) DLOPEN_LIBS= ;;
-      no*) AC_MSG_ERROR([Unable to find dlopen()]) ;;
-      *) DLOPEN_LIBS=$ac_cv_search_dlopen ;;
-    esac
-    AC_SUBST([DLOPEN_LIBS])
-
     case "$host" in
       *-*-mingw* | *-*-msvc*) MSCOM_LIBS="-lole32 -loleaut32" ;;
       *) MSCOM_LIBS= ;;
@@ -637,7 +688,7 @@ if test "$with_libvirtd" = "no" ; then
   with_lxc=no
 fi
 if test "$with_lxc" = "yes" || test "$with_lxc" = "check"; then
-    AC_TRY_LINK([#define _GNU_SOURCE
+    AC_TRY_LINK([
         #include <sched.h>
     ], [
         unshare (1);
@@ -799,20 +850,6 @@ fi
 AC_SUBST([GNUTLS_CFLAGS])
 AC_SUBST([GNUTLS_LIBS])
 
-dnl Old versions of GnuTLS uses types like 'gnutls_session' instead
-dnl of 'gnutls_session_t'.  Try to detect this type if defined so
-dnl that we can offer backwards compatibility.
-old_cflags="$CFLAGS"
-old_libs="$LIBS"
-CFLAGS="$CFLAGS $GNUTLS_CFLAGS"
-LIBS="$LIBS $GNUTLS_LIBS"
-AC_CHECK_TYPE([gnutls_session],
-	AC_DEFINE([GNUTLS_1_0_COMPAT],[],
-		[enable GnuTLS 1.0 compatibility macros]),,
-	[#include <gnutls/gnutls.h>])
-CFLAGS="$old_cflags"
-LIBS="$old_libs"
-
 
 dnl Cyrus SASL
 AC_ARG_WITH([sasl],
@@ -877,6 +914,7 @@ AC_ARG_WITH([yajl],
 
 YAJL_CFLAGS=
 YAJL_LIBS=
+with_yajl2=no
 if test "x$with_yajl" != "xno"; then
   if test "x$with_yajl" != "xyes" && test "x$with_yajl" != "xcheck"; then
     YAJL_CFLAGS="-I$with_yajl/include"
@@ -897,6 +935,9 @@ if test "x$with_yajl" != "xno"; then
     AC_CHECK_LIB([yajl], [yajl_parse],[
       YAJL_LIBS="$YAJL_LIBS -lyajl"
       with_yajl=yes
+      AC_CHECK_LIB([yajl], [yajl_tree_parse],[
+        with_yajl2=yes
+      ],[])
     ],[
       if test "x$with_yajl" = "xcheck" ; then
         with_yajl=no
@@ -913,12 +954,66 @@ if test "x$with_yajl" != "xno"; then
     AC_DEFINE_UNQUOTED([HAVE_YAJL], 1,
       [whether YAJL is available for JSON parsing/formatting])
   fi
+  if test "x$with_yajl2" = "xyes" ; then
+    AC_DEFINE_UNQUOTED([HAVE_YAJL2], 1,
+      [whether YAJL has API version 2])
+  fi
 fi
 AM_CONDITIONAL([HAVE_YAJL], [test "x$with_yajl" = "xyes"])
 AC_SUBST([YAJL_CFLAGS])
 AC_SUBST([YAJL_LIBS])
 
 
+dnl SANLOCK https://fedorahosted.org/sanlock/
+AC_ARG_WITH([sanlock],
+  AC_HELP_STRING([--with-sanlock], [build Sanlock plugin for lock management @<:@default=check@:>@]),
+  [],
+  [with_sanlock=check])
+
+SANLOCK_CFLAGS=
+SANLOCK_LIBS=
+if test "x$with_sanlock" != "xno"; then
+  if test "x$with_sanlock" != "xyes" && test "x$with_sanlock" != "xcheck"; then
+    SANLOCK_CFLAGS="-I$with_sanlock/include"
+    SANLOCK_LIBS="-L$with_sanlock/lib"
+  fi
+  fail=0
+  old_cppflags="$CPPFLAGS"
+  old_libs="$LIBS"
+  CPPFLAGS="$CPPFLAGS $SANLOCK_CFLAGS"
+  LIBS="$LIBS $SANLOCK_LIBS"
+  AC_CHECK_HEADER([sanlock.h],[],[
+    if test "x$with_sanlock" = "xcheck" ; then
+        with_sanlock=no
+    else
+        fail=1
+    fi])
+  if test "x$with_sanlock" != "xno" ; then
+    AC_CHECK_LIB([sanlock_client], [sanlock_init],[
+      SANLOCK_LIBS="$SANLOCK_LIBS -lsanlock_client"
+      with_sanlock=yes
+    ],[
+      if test "x$with_sanlock" = "xcheck" ; then
+        with_sanlock=no
+      else
+        fail=1
+      fi
+    ])
+  fi
+  test $fail = 1 &&
+    AC_MSG_ERROR([You must install the Sanlock development package in order to compile libvirt])
+  CPPFLAGS="$old_cppflags"
+  LIBS="$old_libs"
+  if test "x$with_sanlock" = "xyes" ; then
+    AC_DEFINE_UNQUOTED([HAVE_SANLOCK], 1,
+      [whether Sanlock plugin for lock management is available])
+  fi
+fi
+AM_CONDITIONAL([HAVE_SANLOCK], [test "x$with_sanlock" = "xyes"])
+AC_SUBST([SANLOCK_CFLAGS])
+AC_SUBST([SANLOCK_LIBS])
+
+
 dnl PolicyKit library
 POLKIT_CFLAGS=
 POLKIT_LIBS=
@@ -929,6 +1024,7 @@ AC_ARG_WITH([polkit],
   [with_polkit=check])
 
 with_polkit0=no
+with_dbus=no
 with_polkit1=no
 if test "x$with_polkit" = "xyes" || test "x$with_polkit" = "xcheck"; then
   dnl Check for new polkit first - just a binary
@@ -957,6 +1053,8 @@ if test "x$with_polkit" = "xyes" || test "x$with_polkit" = "xcheck"; then
         [use PolicyKit for UNIX socket access checks])
       AC_DEFINE_UNQUOTED([HAVE_POLKIT0], 1,
         [use PolicyKit for UNIX socket access checks])
+      AC_DEFINE_UNQUOTED([HAVE_DBUS], 1,
+        [use DBus for PolicyKit])
 
       old_CFLAGS=$CFLAGS
       old_LIBS=$LIBS
@@ -971,11 +1069,13 @@ if test "x$with_polkit" = "xyes" || test "x$with_polkit" = "xcheck"; then
         AC_DEFINE_UNQUOTED([POLKIT_AUTH],["$POLKIT_AUTH"],[Location of polkit-auth program])
       fi
       with_polkit0="yes"
+      with_dbus="yes"
     fi
   fi
 fi
 AM_CONDITIONAL([HAVE_POLKIT], [test "x$with_polkit" = "xyes"])
 AM_CONDITIONAL([HAVE_POLKIT0], [test "x$with_polkit0" = "xyes"])
+AM_CONDITIONAL([HAVE_DBUS], [test "x$with_dbus" = "xyes"])
 AM_CONDITIONAL([HAVE_POLKIT1], [test "x$with_polkit1" = "xyes"])
 AC_SUBST([POLKIT_CFLAGS])
 AC_SUBST([POLKIT_LIBS])
@@ -1026,7 +1126,7 @@ if test "$with_audit" != "no" ; then
   LIBS="$LIBS $AUDIT_LIBS"
   fail=0
   AC_CHECK_HEADER([libaudit.h], [], [fail=1])
-  AC_CHECK_LIB([audit], [audit_is_enabled], [], [fail=1])
+  AC_CHECK_LIB([audit], [audit_encode_nv_string], [], [fail=1])
 
   if test $fail = 1 ; then
     if test "$with_audit" = "yes" ; then
@@ -1328,78 +1428,33 @@ AM_CONDITIONAL([WITH_UML], [test "$with_uml" = "yes"])
 
 
 dnl
-dnl libssh checks
+dnl check for libssh2 (PHYP)
 dnl
 
-if test "$with_libssh2" != "yes" && test "$with_libssh2" != "no"; then
-		libssh2_path="$with_libssh2"
-elif test "$with_libssh2" = "yes"; then
-		libssh2_path="/usr/local/lib/"
-elif test "$with_libssh2" = "no"; then
-		with_phyp="no";
+LIBSSH2_CFLAGS=""
+LIBSSH2_LIBS=""
+
+if test "$with_phyp" = "yes" || test "$with_phyp" = "check"; then
+    PKG_CHECK_MODULES([LIBSSH2], [libssh2 >= $LIBSSH2_REQUIRED], [
+        with_phyp=yes
+    ], [
+        if test "$with_phyp" = "check"; then
+            with_phyp=no
+            AC_MSG_NOTICE([libssh2 is required for Phyp driver, disabling it])
+        else
+            AC_MSG_ERROR([libssh2 >= $LIBSSH2_REQUIRED is required for Phyp driver])
+        fi
+    ])
 fi
 
-if test "$with_phyp" = "check"; then
-    AC_CHECK_LIB([ssh2],[libssh2_session_startup],[
-        LIBSSH2_LIBS="$LIBSSH2_LIBS -lssh2 -L$libssh2_path"
-        AC_SUBST([LIBSSH2_LIBS])
-    ],[
-        with_phyp="no"
-        with_libssh2="no";
-    ],[])
-
-    if test "$with_phyp" != "no"; then
-        AC_CHECK_HEADERS([libssh2.h],[
-            with_phyp="yes"
-            LIBSSH2_CFLAGS="-I/usr/local/include"
-            AC_SUBST([LIBSSH2_CFLAGS])
-        ],[
-            with_phyp="no"
-            with_libssh2="no";
-        ],[
-        ])
-    fi
-
-    if test "$with_phyp" != "no"; then
-        saved_libs="$LIBS"
-        LIBS="$LIBS -L$libssh2_path -lssh2"
-        AC_TRY_LINK([#include <libssh2.h>], [
-            (void) libssh2_session_block_directions(NULL);
-        ], [
-            AC_DEFINE_UNQUOTED([WITH_PHYP], 1, [whether IBM HMC / IVM driver is enabled])
-        ], [
-            with_phyp=no
-            AC_MSG_NOTICE([Function libssh2_session_block_directions() not present in  your version of libssh2 but required for Phyp driver, disabling it])
-        ])
-        LIBS="$saved_libs"
-    fi
-elif test "$with_phyp" = "yes"; then
-  AC_CHECK_LIB([ssh2],[libssh2_session_startup],[
-        LIBSSH2_LIBS="$LIBSSH2_LIBS -lssh2 -L$libssh2_path"
-        AC_SUBST([LIBSSH2_LIBS])],[
-        AC_MSG_ERROR([You must install the libssh2 to compile Phyp driver.])
-				])
-
-  AC_CHECK_HEADERS([libssh2.h],[
-        LIBSSH2_CFLAGS="-I/usr/local/include"
-        AC_SUBST([LIBSSH2_CFLAGS])],[
-        AC_MSG_ERROR([Cannot find libssh2 headers. Is libssh2 installed ?])
-				],[])
-
-  saved_libs="$LIBS"
-  LIBS="$LIBS -lssh2"
-  AC_TRY_LINK([#include <libssh2.h>], [
-  (void) libssh2_session_block_directions(NULL);
-  ], [], [
-  AC_MSG_ERROR([Function libssh2_session_block_directions() not present in your version of libssh2. Need >= 1.0])
-  ])
-  LIBS="$saved_libs"
-
-  AC_DEFINE_UNQUOTED([WITH_PHYP], 1,
-        [whether IBM HMC / IVM driver is enabled])
+if test "$with_phyp" = "yes"; then
+    AC_DEFINE_UNQUOTED([WITH_PHYP], 1, [whether IBM HMC / IVM driver is enabled])
 fi
 AM_CONDITIONAL([WITH_PHYP],[test "$with_phyp" = "yes"])
 
+AC_SUBST([LIBSSH2_CFLAGS])
+AC_SUBST([LIBSSH2_LIBS])
+
 dnl libcap-ng
 AC_ARG_WITH([capng],
   AC_HELP_STRING([--with-capng], [use libcap-ng to reduce libvirtd privileges @<:@default=check@:>@]),
@@ -1527,6 +1582,11 @@ if test "$with_netcf" = "yes" || test "$with_netcf" = "check"; then
   if test "$with_netcf" = "yes" ; then
     AC_DEFINE_UNQUOTED([WITH_NETCF], 1,
       [whether libnetcf is available to configure physical host network interfaces])
+    AC_CHECK_LIB([netcf], [ncf_change_begin], [netcf_transactions=1], [netcf_transactions=0])
+    if test "$netcf_transactions" = "1" ; then
+        AC_DEFINE_UNQUOTED([HAVE_NETCF_TRANSACTIONS], 1,
+          [we have sufficiently new version of netcf for transaction network API])
+    fi
   fi
 fi
 AM_CONDITIONAL([WITH_NETCF], [test "$with_netcf" = "yes"])
@@ -1534,7 +1594,9 @@ AC_SUBST([NETCF_CFLAGS])
 AC_SUBST([NETCF_LIBS])
 
 
-with_secrets=yes
+AC_ARG_WITH([secrets],
+  AC_HELP_STRING([--with-secrets], [with local secrets management driver @<:@default=yes@:>@]),[],[with_secrets=yes])
+
 if test "$with_libvirtd" = "no"; then
   with_secrets=no
 fi
@@ -1544,6 +1606,8 @@ fi
 AM_CONDITIONAL([WITH_SECRETS], [test "$with_secrets" = "yes"])
 
 
+AC_ARG_WITH([storage-dir],
+  AC_HELP_STRING([--with-storage-dir], [with directory backend for the storage driver @<:@default=yes@:>@]),[],[with_storage_dir=yes])
 AC_ARG_WITH([storage-fs],
   AC_HELP_STRING([--with-storage-fs], [with FileSystem backend for the storage driver @<:@default=check@:>@]),[],[with_storage_fs=check])
 AC_ARG_WITH([storage-lvm],
@@ -1557,7 +1621,6 @@ AC_ARG_WITH([storage-mpath],
 AC_ARG_WITH([storage-disk],
   AC_HELP_STRING([--with-storage-disk], [with GPartd Disk backend for the storage driver @<:@default=check@:>@]),[],[with_storage_disk=check])
 
-with_storage_dir=yes
 if test "$with_libvirtd" = "no"; then
   with_storage_dir=no
   with_storage_fs=no
@@ -1593,12 +1656,15 @@ fi
 if test "$with_storage_fs" = "yes" || test "$with_storage_fs" = "check"; then
   AC_PATH_PROG([MOUNT], [mount], [], [$PATH:/sbin:/usr/sbin])
   AC_PATH_PROG([UMOUNT], [umount], [], [$PATH:/sbin:/usr/sbin])
+  AC_PATH_PROG([MKFS], [mkfs], [], [$PATH:/sbin:/usr/sbin])
   if test "$with_storage_fs" = "yes" ; then
     if test -z "$MOUNT" ; then AC_MSG_ERROR([We need mount for FS storage driver]) ; fi
     if test -z "$UMOUNT" ; then AC_MSG_ERROR([We need umount for FS storage driver]) ; fi
+    if test -z "$MKFS" ; then AC_MSG_ERROR([We need mkfs for FS storage driver]) ; fi
   else
     if test -z "$MOUNT" ; then with_storage_fs=no ; fi
     if test -z "$UMOUNT" ; then with_storage_fs=no ; fi
+    if test -z "$MKFS" ; then with_storage_fs=no ; fi
 
     if test "$with_storage_fs" = "check" ; then with_storage_fs=yes ; fi
   fi
@@ -1609,6 +1675,8 @@ if test "$with_storage_fs" = "yes" || test "$with_storage_fs" = "check"; then
         [Location or name of the mount program])
     AC_DEFINE_UNQUOTED([UMOUNT],["$UMOUNT"],
         [Location or name of the mount program])
+    AC_DEFINE_UNQUOTED([MKFS],["$MKFS"],
+        [Location or name of the mkfs program])
   fi
 fi
 AM_CONDITIONAL([WITH_STORAGE_FS], [test "$with_storage_fs" = "yes"])
@@ -1664,9 +1732,9 @@ if test "$with_storage_lvm" = "yes" || test "$with_storage_lvm" = "check"; then
     AC_DEFINE_UNQUOTED([PVCREATE],["$PVCREATE"],[Location of pvcreate program])
     AC_DEFINE_UNQUOTED([VGCREATE],["$VGCREATE"],[Location of vgcreate program])
     AC_DEFINE_UNQUOTED([LVCREATE],["$LVCREATE"],[Location of lvcreate program])
-    AC_DEFINE_UNQUOTED([PVREMOVE],["$PVREMOVE"],[Location of pvcreate program])
-    AC_DEFINE_UNQUOTED([VGREMOVE],["$VGREMOVE"],[Location of vgcreate program])
-    AC_DEFINE_UNQUOTED([LVREMOVE],["$LVREMOVE"],[Location of lvcreate program])
+    AC_DEFINE_UNQUOTED([PVREMOVE],["$PVREMOVE"],[Location of pvremove program])
+    AC_DEFINE_UNQUOTED([VGREMOVE],["$VGREMOVE"],[Location of vgremove program])
+    AC_DEFINE_UNQUOTED([LVREMOVE],["$LVREMOVE"],[Location of lvremove program])
     AC_DEFINE_UNQUOTED([VGCHANGE],["$VGCHANGE"],[Location of vgchange program])
     AC_DEFINE_UNQUOTED([VGSCAN],["$VGSCAN"],[Location of vgscan program])
     AC_DEFINE_UNQUOTED([PVS],["$PVS"],[Location of pvs program])
@@ -1703,11 +1771,15 @@ if test "$with_storage_scsi" = "check"; then
 fi
 AM_CONDITIONAL([WITH_STORAGE_SCSI], [test "$with_storage_scsi" = "yes"])
 
-if test "$with_storage_mpath" = "check" && test "$with_linux" = "yes"; then
-   with_storage_mpath=yes
+if test "$with_storage_mpath" = "check"; then
+   if test "$with_linux" = "yes"; then
+      with_storage_mpath=yes
 
-   AC_DEFINE_UNQUOTED([WITH_STORAGE_MPATH], 1,
-     [whether mpath backend for storage driver is enabled])
+      AC_DEFINE_UNQUOTED([WITH_STORAGE_MPATH], 1,
+        [whether mpath backend for storage driver is enabled])
+   else
+      with_storage_mpath=no
+   fi
 fi
 AM_CONDITIONAL([WITH_STORAGE_MPATH], [test "$with_storage_mpath" = "yes"])
 
@@ -1859,6 +1931,35 @@ LIBCURL_CFLAGS="-DCURL_DISABLE_TYPECHECK $LIBCURL_CFLAGS"
 AC_SUBST([LIBCURL_CFLAGS])
 AC_SUBST([LIBCURL_LIBS])
 
+
+dnl
+dnl check for openwsman (Hyper-V)
+dnl
+
+OPENWSMAN_CFLAGS=""
+OPENWSMAN_LIBS=""
+
+if test "$with_hyperv" = "yes" || test "$with_hyperv" = "check"; then
+    PKG_CHECK_MODULES([OPENWSMAN], [openwsman >= $OPENWSMAN_REQUIRED], [
+        if test "$with_hyperv" = "check"; then
+            with_hyperv=yes
+        fi
+    ], [
+        if test "$with_hyperv" = "check"; then
+            with_hyperv=no
+            AC_MSG_NOTICE([openwsman is required for the Hyper-V driver, disabling it])
+        elif test "$with_hyperv" = "yes"; then
+            AC_MSG_ERROR([openwsman >= $OPENWSMAN_REQUIRED is required for the Hyper-V driver])
+        fi
+    ])
+fi
+
+if test "$with_hyperv" = "yes" ; then
+    AC_DEFINE_UNQUOTED([WITH_HYPERV], 1, [whether Hyper-V driver is enabled])
+fi
+AM_CONDITIONAL([WITH_HYPERV], [test "$with_hyperv" = "yes"])
+
+
 dnl
 dnl check for python
 dnl
@@ -1917,15 +2018,13 @@ if test "$with_python" != "no" ; then
                         then
                             PYTHON_INCLUDES=-I/usr/include/python$PYTHON_VERSION
                         else
-                            AC_MSG_NOTICE([Could not find python$PYTHON_VERSION/Python.h, disabling bindings])
-                            with_python=no
+                            AC_MSG_ERROR([You must install python-devel to build Python bindings])
                         fi
                     fi
                 fi
             fi
         else
-            AC_MSG_NOTICE([Could not find python interpreter, disabling bindings])
-            with_python=no
+            AC_MSG_ERROR([You must install python to build Python bindings])
         fi
     else
         AC_MSG_NOTICE([Could not find python in $with_python, disabling bindings])
@@ -1936,30 +2035,6 @@ AM_CONDITIONAL([WITH_PYTHON], [test "$with_python" = "yes"])
 AC_SUBST([PYTHON_VERSION])
 AC_SUBST([PYTHON_INCLUDES])
 
-
-
-AC_MSG_CHECKING([whether this host is running a Xen kernel])
-RUNNING_XEN=
-if test -d /proc/sys/xen
-then
-    RUNNING_XEN=yes
-else
-    RUNNING_XEN=no
-fi
-AC_MSG_RESULT($RUNNING_XEN)
-
-AC_MSG_CHECKING([If XenD UNIX socket /var/run/xend/xmlrpc.sock is accessible])
-RUNNING_XEND=
-if test -S /var/run/xend/xmlrpc.sock
-then
-    RUNNING_XEND=yes
-else
-    RUNNING_XEND=no
-fi
-AC_MSG_RESULT($RUNNING_XEND)
-
-AM_CONDITIONAL([ENABLE_XEN_TESTS], [test "$RUNNING_XEN" != "no" && test "$RUNNING_XEND" != "no"])
-
 AC_ARG_ENABLE([test-coverage],
   AC_HELP_STRING([--enable-test-coverage], [turn on code coverage instrumentation @<:@default=no@:>@]),
 [case "${enableval}" in
@@ -1970,12 +2045,14 @@ AC_ARG_ENABLE([test-coverage],
 enable_coverage=$enableval
 
 if test "${enable_coverage}" = yes; then
-  COMPILER_FLAGS=
-  gl_COMPILER_FLAGS(-fprofile-arcs)
-  gl_COMPILER_FLAGS(-ftest-coverage)
-  AC_SUBST([COVERAGE_CFLAGS], [$COMPILER_FLAGS])
-  AC_SUBST([COVERAGE_LDFLAGS], [$COMPILER_FLAGS])
-  COMPILER_FLAGS=
+  save_WARN_CFLAGS=$WARN_CFLAGS
+  WARN_CFLAGS=
+  gl_WARN_ADD([-fprofile-arcs])
+  gl_WARN_ADD([-ftest-coverage])
+  COVERAGE_FLAGS=$WARN_CFLAGS
+  AC_SUBST([COVERAGE_CFLAGS], [$COVERAGE_FLAGS])
+  AC_SUBST([COVERAGE_LDFLAGS], [$COVERAGE_FLAGS])
+  WARN_CFLAGS=$save_WARN_CFLAGS
 fi
 
 AC_ARG_ENABLE([test-oom],
@@ -2016,13 +2093,31 @@ AM_CONDITIONAL([WITH_CIL],[test "$enable_locking" = "yes"])
 dnl Enable building libvirtd?
 AM_CONDITIONAL([WITH_LIBVIRTD],[test "x$with_libvirtd" = "xyes"])
 
-dnl Check for gettext
-AM_GNU_GETTEXT_VERSION([0.14.1])
+dnl Check for gettext - don't go any newer than what RHEL 5 supports
+dnl
+dnl save and restore CPPFLAGS around gettext check as the internal iconv
+dnl check might leave -I/usr/local/include in CPPFLAGS on FreeBSD resulting
+dnl in the build picking up previously installed libvirt/libvirt.h instead
+dnl of the correct one from the source tree.
+dnl compute the difference between save_CPPFLAGS and CPPFLAGS and append it
+dnl to INCLUDES in order to preserve changes made by gettext but in a place
+dnl that does not break the build
+save_CPPFLAGS="$CPPFLAGS"
+AM_GNU_GETTEXT_VERSION([0.17])
 AM_GNU_GETTEXT([external])
-dnl Since we're using such an old version of gettext, we must also define
-dnl this symbol, in order to make the autopoint-supplied Makefile.in.in
-dnl work properly.
-AC_SUBST([MKINSTALLDIRS], ["\$(top_builddir)/$ac_aux_dir/mkinstalldirs"])
+GETTEXT_CPPFLAGS=
+if test "x$save_CPPFLAGS" != "x$CPPFLAGS"; then
+ set dummy $CPPFLAGS; shift
+ for var
+ do
+   case " $var " in
+     " $save_CPPFLAGS ") ;;
+     *) GETTEXT_CPPFLAGS="$GETTEXT_CPPFLAGS $var" ;;
+   esac
+ done
+fi
+CPPFLAGS="$save_CPPFLAGS"
+AC_SUBST([GETTEXT_CPPFLAGS])
 
 ALL_LINGUAS=`cd "$srcdir/po" > /dev/null && ls *.po | sed 's+\.po$++'`
 
@@ -2097,19 +2192,10 @@ AC_ARG_WITH([driver-modules],
 
 DRIVER_MODULE_CFLAGS=
 DRIVER_MODULE_LIBS=
-if test "x$with_driver_modules" = "xyes" ; then
-  old_cflags="$CFLAGS"
-  old_libs="$LIBS"
-  fail=0
-  AC_CHECK_HEADER([dlfcn.h],[],[fail=1])
-  AC_SEARCH_LIBS([dlopen], [dl], [], [fail=1])
-  test $fail = 1 &&
-      AC_MSG_ERROR([You must have dlfcn.h / dlopen() support to build driver modules])
-
-  CFLAGS="$old_cflags"
-  LIBS="$old_libs"
-fi
 if test "$with_driver_modules" = "yes"; then
+  if test "$dlfcn_found" != "yes" || test "$dlopen_found" != "yes"; then
+    AC_MSG_ERROR([You must have dlfcn.h / dlopen() support to build driver modules])
+  fi
   DRIVER_MODULE_CFLAGS="-export-dynamic"
   case $ac_cv_search_dlopen in
     no*) DRIVER_MODULE_LIBS= ;;
@@ -2236,6 +2322,26 @@ if test "$with_nwfilter" = "yes" ; then
 fi
 AM_CONDITIONAL([WITH_NWFILTER], [test "$with_nwfilter" = "yes"])
 
+dnl libblkid is used by several storage drivers; therefore we probe
+dnl for it unconditionally.
+AC_ARG_WITH([libblkid],
+  [AS_HELP_STRING([--with-libblkid],
+    [use libblkid to scan for filesystems and partitions @<:@default=check@:>@])],
+  [],
+  [with_libblkid=check])
+
+if test "x$with_libblkid" = "xyes" || test "x$with_libblkid" = "xcheck"; then
+   PKG_CHECK_MODULES([BLKID],
+     [blkid >= $LIBBLKID_REQUIRED],
+     [with_libblkid="yes"],
+     [with_libblkid="no"])
+fi
+
+if test "x$with_libblkid" = "xyes"; then
+  AC_DEFINE([HAVE_LIBBLKID], [1], [libblkid is present])
+fi
+AM_CONDITIONAL([HAVE_LIBBLKID], [test "x$with_libblkid" = "xyes"])
+
 AC_ARG_WITH([qemu-user],
   AC_HELP_STRING([--with-qemu-user], [username to run QEMU system instance as @<:@default=root@:>@]),
   [QEMU_USER=${withval}],
@@ -2272,6 +2378,13 @@ if test "$with_macvtap" != "no" ; then
 fi
 AM_CONDITIONAL([WITH_MACVTAP], [test "$with_macvtap" = "yes"])
 AC_MSG_RESULT([$with_macvtap])
+if test "$with_macvtap" = yes; then
+    AC_CHECK_DECLS([MACVLAN_MODE_PASSTHRU], [], [], [[
+      #include <sys/socket.h>
+      #include <linux/if_link.h>
+    ]])
+fi
+
 
 AC_ARG_WITH([virtualport],
   AC_HELP_STRING([--with-virtualport],[enable virtual port support @<:@default=check@:>@]),
@@ -2318,13 +2431,19 @@ dnl netlink library
 
 LIBNL_CFLAGS=""
 LIBNL_LIBS=""
+have_libnl=no
 
-if test "$with_macvtap" = "yes"; then
+if test "$with_linux" = "yes"; then
     PKG_CHECK_MODULES([LIBNL], [libnl-1 >= $LIBNL_REQUIRED], [
+        have_libnl=yes
+        AC_DEFINE_UNQUOTED([HAVE_LIBNL], 1, [whether the netlink library is available])
     ], [
-        AC_MSG_ERROR([libnl-devel >= $LIBNL_REQUIRED is required for macvtap support])
+        if test "$with_macvtap" = "yes"; then
+            AC_MSG_ERROR([libnl-devel >= $LIBNL_REQUIRED is required for macvtap support])
+        fi
     ])
 fi
+AM_CONDITIONAL([HAVE_LIBNL], [test "$have_libnl" = "yes"])
 
 AC_SUBST([LIBNL_CFLAGS])
 AC_SUBST([LIBNL_LIBS])
@@ -2341,7 +2460,16 @@ cp -f COPYING.LIB COPYING
 
 # Detect when running under the clang static analyzer's scan-build driver
 # or Coverity-prevent's cov-build.  Define STATIC_ANALYSIS accordingly.
-test -n "$CCC_ANALYZER_ANALYSIS$COVERITY_BUILD_COMMAND" && t=1 || t=0
+AC_CACHE_CHECK([whether this build is done by a static analysis tool],
+  [lv_cv_static_analysis], [
+    lv_cv_static_analysis=no
+    if test -n "${CCC_ANALYZER_ANALYSIS+set}" || \
+       test -n "$COVERITY_BUILD_COMMAND$COVERITY_LD_PRELOAD"; then
+      lv_cv_static_analysis=yes
+    fi
+  ])
+t=0
+test "x$lv_cv_static_analysis" = xyes && t=1
 AC_DEFINE_UNQUOTED([STATIC_ANALYSIS], [$t],
   [Define to 1 when performing static analysis.])
 
@@ -2383,6 +2511,7 @@ AC_MSG_NOTICE([xenlight: $with_libxl])
 AC_MSG_NOTICE([     LXC: $with_lxc])
 AC_MSG_NOTICE([    PHYP: $with_phyp])
 AC_MSG_NOTICE([     ESX: $with_esx])
+AC_MSG_NOTICE([ Hyper-V: $with_hyperv])
 AC_MSG_NOTICE([    Test: $with_test])
 AC_MSG_NOTICE([  Remote: $with_remote])
 AC_MSG_NOTICE([ Network: $with_network])
@@ -2418,11 +2547,17 @@ AC_MSG_NOTICE([])
 AC_MSG_NOTICE([Libraries])
 AC_MSG_NOTICE([])
 AC_MSG_NOTICE([  libxml: $LIBXML_CFLAGS $LIBXML_LIBS])
+AC_MSG_NOTICE([  dlopen: $DLOPEN_LIBS])
 if test "$with_esx" = "yes" ; then
 AC_MSG_NOTICE([ libcurl: $LIBCURL_CFLAGS $LIBCURL_LIBS])
 else
 AC_MSG_NOTICE([ libcurl: no])
 fi
+if test "$with_hyperv" = "yes" ; then
+AC_MSG_NOTICE([openwsman: $OPENWSMAN_CFLAGS $OPENWSMAN_LIBS])
+else
+AC_MSG_NOTICE([openwsman: no])
+fi
 if test "$with_libssh2" != "no" ; then
 AC_MSG_NOTICE([ libssh2: $LIBSSH2_CFLAGS $LIBSSH2_LIBS])
 else
@@ -2439,6 +2574,11 @@ AC_MSG_NOTICE([    yajl: $YAJL_CFLAGS $YAJL_LIBS])
 else
 AC_MSG_NOTICE([    yajl: no])
 fi
+if test "$with_sanlock" != "no" ; then
+AC_MSG_NOTICE([ sanlock: $SANLOCK_CFLAGS $SANLOCK_LIBS])
+else
+AC_MSG_NOTICE([ sanlock: no])
+fi
 if test "$with_avahi" = "yes" ; then
 AC_MSG_NOTICE([   avahi: $AVAHI_CFLAGS $AVAHI_LIBS])
 else
@@ -2513,7 +2653,7 @@ AC_MSG_NOTICE([    pcap: $LIBPCAP_CFLAGS $LIBPCAP_LIBS])
 else
 AC_MSG_NOTICE([    pcap: no])
 fi
-if test "$with_macvtap" = "yes" ; then
+if test "$have_libnl" = "yes" ; then
 AC_MSG_NOTICE([      nl: $LIBNL_CFLAGS $LIBNL_LIBS])
 else
 AC_MSG_NOTICE([      nl: no])
@@ -2538,6 +2678,7 @@ AC_MSG_NOTICE([Miscellaneous])
 AC_MSG_NOTICE([])
 AC_MSG_NOTICE([        Debug: $enable_debug])
 AC_MSG_NOTICE([     Warnings: $enable_compile_warnings])
+AC_MSG_NOTICE([Warning Flags: $WARN_CFLAGS])
 AC_MSG_NOTICE([     Readline: $lv_use_readline])
 AC_MSG_NOTICE([       Python: $with_python])
 AC_MSG_NOTICE([       DTrace: $with_dtrace])

daemon/Makefile.am

@@ -1,31 +1,39 @@
 ## Process this file with automake to produce Makefile.in
 
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
+INCLUDES = \
+	-I$(top_srcdir)/gnulib/lib -I../gnulib/lib \
+	-I$(top_srcdir)/include -I$(top_builddir)/include \
+	-I$(top_srcdir)/src \
+	-I$(top_srcdir)/src/util \
+	-I$(top_srcdir)/src/conf \
+	-I$(top_srcdir)/src/rpc \
+	-I$(top_srcdir)/src/remote \
+	$(GETTEXT_CPPFLAGS)
+
 CLEANFILES =
 
+DAEMON_GENERATED =					\
+		$(srcdir)/remote_dispatch.h		\
+		$(srcdir)/qemu_dispatch.h
+
 DAEMON_SOURCES =					\
 		libvirtd.c libvirtd.h			\
 		remote.c remote.h			\
-		dispatch.c dispatch.h			\
 		stream.c stream.h			\
-		remote_dispatch_prototypes.h		\
-		remote_dispatch_table.h			\
-		remote_dispatch_args.h			\
-		remote_dispatch_ret.h			\
-		qemu_dispatch_prototypes.h		\
-		qemu_dispatch_table.h			\
-		qemu_dispatch_args.h			\
-		qemu_dispatch_ret.h			\
 		../src/remote/remote_protocol.c		\
-		../src/remote/qemu_protocol.c
-
-AVAHI_SOURCES =						\
-		mdns.c mdns.h
+		../src/remote/qemu_protocol.c		\
+		$(DAEMON_GENERATED)
 
 DISTCLEANFILES =
 EXTRA_DIST =						\
-	remote_generate_stubs.pl			\
+	remote_dispatch.h				\
+	qemu_dispatch.h					\
 	libvirtd.conf					\
 	libvirtd.init.in				\
+	libvirtd.upstart				\
 	libvirtd.policy-0				\
 	libvirtd.policy-1				\
 	libvirtd.sasl					\
@@ -36,15 +44,27 @@ EXTRA_DIST =						\
 	libvirtd.lxc.logrotate.in                       \
 	libvirtd.uml.logrotate.in                       \
 	test_libvirtd.aug                               \
-	THREADING.txt					\
+	THREADS.txt					\
 	libvirtd.pod.in					\
 	libvirtd.8.in					\
 	libvirtd.stp					\
-	$(AVAHI_SOURCES)				\
 	$(DAEMON_SOURCES)
 
 BUILT_SOURCES =
 
+REMOTE_PROTOCOL = $(top_srcdir)/src/remote/remote_protocol.x
+QEMU_PROTOCOL = $(top_srcdir)/src/remote/qemu_protocol.x
+
+$(srcdir)/remote_dispatch.h: $(srcdir)/../src/rpc/gendispatch.pl \
+		$(REMOTE_PROTOCOL)
+	$(AM_V_GEN)perl -w $(srcdir)/../src/rpc/gendispatch.pl -b remote \
+	  $(REMOTE_PROTOCOL) > $@
+
+$(srcdir)/qemu_dispatch.h: $(srcdir)/../src/rpc/gendispatch.pl \
+		$(QEMU_PROTOCOL)
+	$(AM_V_GEN)perl -w $(srcdir)/../src/rpc/gendispatch.pl -b qemu \
+	  $(QEMU_PROTOCOL) > $@
+
 if WITH_LIBVIRTD
 
 man8_MANS = libvirtd.8
@@ -72,14 +92,8 @@ libvirtd_SOURCES = $(DAEMON_SOURCES)
 
 #-D_XOPEN_SOURCE=600 -D_XOPEN_SOURCE_EXTENDED=1 -D_POSIX_C_SOURCE=199506L
 libvirtd_CFLAGS = \
-	-I$(top_srcdir)/gnulib/lib -I../gnulib/lib \
-	-I$(top_srcdir)/include -I$(top_builddir)/include \
-	-I$(top_srcdir)/src \
-	-I$(top_srcdir)/src/util \
-	-I$(top_srcdir)/src/conf \
-	-I$(top_srcdir)/src/remote \
 	$(LIBXML_CFLAGS) $(GNUTLS_CFLAGS) $(SASL_CFLAGS) \
-	$(POLKIT_CFLAGS) \
+	$(XDR_CFLAGS) $(POLKIT_CFLAGS) \
 	$(WARN_CFLAGS) \
 	$(COVERAGE_CFLAGS) \
 	-DQEMUD_PID_FILE="\"$(QEMUD_PID_FILE)\"" \
@@ -95,7 +109,10 @@ libvirtd_LDADD =					\
 	$(SASL_LIBS)					\
 	$(POLKIT_LIBS)
 
-libvirtd_LDADD += ../src/libvirt-qemu.la
+libvirtd_LDADD += \
+	../src/libvirt-net-rpc-server.la \
+	../src/libvirt-net-rpc.la \
+	../src/libvirt-qemu.la
 
 if ! WITH_DRIVER_MODULES
 if WITH_QEMU
@@ -151,21 +168,13 @@ policyfile = libvirtd.policy-1
 endif
 endif
 
-if HAVE_AVAHI
-libvirtd_SOURCES += $(AVAHI_SOURCES)
-libvirtd_CFLAGS += $(AVAHI_CFLAGS)
-libvirtd_LDADD += $(AVAHI_LIBS)
-endif
-
-EXTRA_DIST += probes.d libvirtd.stp
-
 if WITH_DTRACE
 libvirtd_LDADD += probes.o
 nodist_libvirtd_SOURCES = probes.h
 
 BUILT_SOURCES += probes.h
 
-tapsetdir = $(datadir)/systemtap/tapsets
+tapsetdir = $(datadir)/systemtap/tapset
 tapset_DATA = libvirtd.stp
 
 probes.h: probes.d
@@ -178,7 +187,7 @@ CLEANFILES += probes.h probes.o
 endif
 
 install-data-local: install-init install-data-sasl install-data-polkit \
-                    install-logrotate
+		    install-logrotate
 	mkdir -p $(DESTDIR)$(localstatedir)/log/libvirt
 	mkdir -p $(DESTDIR)$(localstatedir)/run/libvirt
 	mkdir -p $(DESTDIR)$(localstatedir)/lib/libvirt
@@ -199,48 +208,11 @@ install-data-polkit::
 uninstall-data-polkit::
 endif
 
-
-remote.c: \
-	remote_dispatch_prototypes.h \
-	remote_dispatch_table.h \
-	qemu_dispatch_prototypes.h \
-	qemu_dispatch_table.h
-
-remote.h: \
-	remote_dispatch_args.h \
-	remote_dispatch_ret.h \
-	qemu_dispatch_args.h \
-	qemu_dispatch_ret.h
-
-REMOTE_PROTOCOL = $(top_srcdir)/src/remote/remote_protocol.x
-QEMU_PROTOCOL = $(top_srcdir)/src/remote/qemu_protocol.x
-
-remote_dispatch_prototypes.h: $(srcdir)/remote_generate_stubs.pl $(REMOTE_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -c -p remote $(REMOTE_PROTOCOL) > $@
-
-remote_dispatch_table.h: $(srcdir)/remote_generate_stubs.pl $(REMOTE_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -c -t remote $(REMOTE_PROTOCOL) > $@
-
-remote_dispatch_args.h: $(srcdir)/remote_generate_stubs.pl $(REMOTE_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -c -a remote $(REMOTE_PROTOCOL) > $@
-
-remote_dispatch_ret.h: $(srcdir)/remote_generate_stubs.pl $(REMOTE_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -c -r remote $(REMOTE_PROTOCOL) > $@
-
-qemu_dispatch_prototypes.h: $(srcdir)/remote_generate_stubs.pl $(QEMU_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -p qemu $(QEMU_PROTOCOL) > $@
-
-qemu_dispatch_table.h: $(srcdir)/remote_generate_stubs.pl $(QEMU_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -t qemu $(QEMU_PROTOCOL) > $@
-
-qemu_dispatch_args.h: $(srcdir)/remote_generate_stubs.pl $(QEMU_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -a qemu $(QEMU_PROTOCOL) > $@
-
-qemu_dispatch_ret.h: $(srcdir)/remote_generate_stubs.pl $(QEMU_PROTOCOL)
-	$(AM_V_GEN)perl -w $(srcdir)/remote_generate_stubs.pl -r qemu $(QEMU_PROTOCOL) > $@
+remote.c: $(DAEMON_GENERATED)
+remote.h: $(DAEMON_GENERATED)
 
 LOGROTATE_CONFS = libvirtd.qemu.logrotate libvirtd.lxc.logrotate \
-                  libvirtd.uml.logrotate libvirtd.logrotate
+		  libvirtd.uml.logrotate libvirtd.logrotate
 
 BUILT_SOURCES += $(LOGROTATE_CONFS)
 
@@ -325,6 +297,8 @@ uninstall-local:: uninstall-data-sasl
 endif # WITH_LIBVIRTD
 
 # This is needed for 'make dist' too, so can't wrap in WITH_LIBVIRTD.
+EXTRA_DIST += probes.d libvirtd.stp
+
 POD2MAN = pod2man -c "Virtualization Support" \
 			-r "$(PACKAGE)-$(VERSION)" -s 8
 
@@ -349,4 +323,4 @@ endif
 
 CLEANFILES += $(BUILT_SOURCES) $(man8_MANS)
 CLEANFILES += *.cov *.gcov .libs/*.gcda .libs/*.gcno *.gcno *.gcda
-MAINTAINERCLEANFILES = $(srcdir)/libvirtd.8.in
+MAINTAINERCLEANFILES = $(srcdir)/libvirtd.8.in $(DAEMON_GENERATED)

daemon/dispatch.c

@@ -1,702 +0,0 @@
-/*
- * dispatch.h: RPC message dispatching infrastructure
- *
- * Copyright (C) 2007, 2008, 2009 Red Hat, Inc.
- *
- * This library is free software; you can redistribute it and/or
- * modify it under the terms of the GNU Lesser General Public
- * License as published by the Free Software Foundation; either
- * version 2.1 of the License, or (at your option) any later version.
- *
- * This library is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
- * Lesser General Public License for more details.
- *
- * You should have received a copy of the GNU Lesser General Public
- * License along with this library; if not, write to the Free Software
- * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307  USA
- *
- * Author: Richard W.M. Jones <rjones@redhat.com>
- * Author: Daniel P. Berrange <berrange@redhat.com>
- */
-
-#include <config.h>
-
-#include <stdio.h>
-#include <stdlib.h>
-#include <stdarg.h>
-
-#include "dispatch.h"
-#include "remote.h"
-
-#include "memory.h"
-
-/* Convert a libvirt  virError object into wire format */
-static void
-remoteDispatchCopyError (remote_error *rerr,
-                         virErrorPtr verr)
-{
-    rerr->code = verr->code;
-    rerr->domain = verr->domain;
-    rerr->message = verr->message ? malloc(sizeof(char*)) : NULL;
-    if (rerr->message) *rerr->message = strdup(verr->message);
-    rerr->level = verr->level;
-    rerr->str1 = verr->str1 ? malloc(sizeof(char*)) : NULL;
-    if (rerr->str1) *rerr->str1 = strdup(verr->str1);
-    rerr->str2 = verr->str2 ? malloc(sizeof(char*)) : NULL;
-    if (rerr->str2) *rerr->str2 = strdup(verr->str2);
-    rerr->str3 = verr->str3 ? malloc(sizeof(char*)) : NULL;
-    if (rerr->str3) *rerr->str3 = strdup(verr->str3);
-    rerr->int1 = verr->int1;
-    rerr->int2 = verr->int2;
-}
-
-
-/* A set of helpers for sending back errors to client
-   in various ways .... */
-
-static void
-remoteDispatchStringError (remote_error *rerr,
-                           int code, const char *msg)
-{
-    virError verr;
-
-    memset(&verr, 0, sizeof verr);
-
-    /* Construct the dummy libvirt virError. */
-    verr.code = code;
-    verr.domain = VIR_FROM_REMOTE;
-    verr.message = (char *)msg;
-    verr.level = VIR_ERR_ERROR;
-    verr.str1 = (char *)msg;
-
-    remoteDispatchCopyError(rerr, &verr);
-}
-
-
-void remoteDispatchAuthError (remote_error *rerr)
-{
-    remoteDispatchStringError (rerr, VIR_ERR_AUTH_FAILED, "authentication failed");
-}
-
-
-void remoteDispatchFormatError (remote_error *rerr,
-                                const char *fmt, ...)
-{
-    va_list args;
-    char msgbuf[1024];
-    char *msg = msgbuf;
-
-    va_start (args, fmt);
-    vsnprintf (msgbuf, sizeof msgbuf, fmt, args);
-    va_end (args);
-
-    remoteDispatchStringError (rerr, VIR_ERR_RPC, msg);
-}
-
-
-void remoteDispatchGenericError (remote_error *rerr)
-{
-    remoteDispatchStringError(rerr,
-                              VIR_ERR_INTERNAL_ERROR,
-                              "library function returned error but did not set virterror");
-}
-
-
-void remoteDispatchOOMError (remote_error *rerr)
-{
-    remoteDispatchStringError(rerr,
-                              VIR_ERR_NO_MEMORY,
-                              "out of memory");
-}
-
-
-void remoteDispatchConnError (remote_error *rerr,
-                              virConnectPtr conn ATTRIBUTE_UNUSED)
-{
-    virErrorPtr verr = virGetLastError();
-
-    if (verr)
-        remoteDispatchCopyError(rerr, verr);
-    else
-        remoteDispatchGenericError(rerr);
-}
-
-static int
-remoteSerializeError(struct qemud_client *client,
-                     remote_error *rerr,
-                     int program,
-                     int version,
-                     int procedure,
-                     int type,
-                     int serial)
-{
-    XDR xdr;
-    unsigned int len;
-    struct qemud_client_message *msg = NULL;
-
-    VIR_DEBUG("prog=%d ver=%d proc=%d type=%d serial=%d, msg=%s",
-          program, version, procedure, type, serial,
-          rerr->message ? *rerr->message : "(none)");
-
-    if (VIR_ALLOC(msg) < 0)
-        goto fatal_error;
-
-    /* Return header. */
-    msg->hdr.prog = program;
-    msg->hdr.vers = version;
-    msg->hdr.proc = procedure;
-    msg->hdr.type = type;
-    msg->hdr.serial = serial;
-    msg->hdr.status = REMOTE_ERROR;
-
-    msg->bufferLength = sizeof(msg->buffer);
-
-    /* Serialise the return header. */
-    xdrmem_create (&xdr,
-                   msg->buffer,
-                   msg->bufferLength,
-                   XDR_ENCODE);
-
-    len = 0; /* We'll come back and write this later. */
-    if (!xdr_u_int (&xdr, &len))
-        goto xdr_error;
-
-    if (!xdr_remote_message_header (&xdr, &msg->hdr))
-        goto xdr_error;
-
-    /* Error was not set, so synthesize a generic error message. */
-    if (rerr->code == 0)
-        remoteDispatchGenericError(rerr);
-
-    if (!xdr_remote_error (&xdr, rerr))
-        goto xdr_error;
-
-    /* Write the length word. */
-    len = xdr_getpos (&xdr);
-    if (xdr_setpos (&xdr, 0) == 0)
-        goto xdr_error;
-
-    if (!xdr_u_int (&xdr, &len))
-        goto xdr_error;
-
-    xdr_destroy (&xdr);
-
-    msg->bufferLength = len;
-    msg->bufferOffset = 0;
-
-    /* Put reply on end of tx queue to send out  */
-    qemudClientMessageQueuePush(&client->tx, msg);
-    qemudUpdateClientEvent(client);
-    xdr_free((xdrproc_t)xdr_remote_error,  (char *)rerr);
-
-    return 0;
-
-xdr_error:
-    VIR_WARN("Failed to serialize remote error '%s' as XDR",
-             rerr->message ? *rerr->message : "<unknown>");
-    xdr_destroy(&xdr);
-    VIR_FREE(msg);
-fatal_error:
-    xdr_free((xdrproc_t)xdr_remote_error,  (char *)rerr);
-    return -1;
-}
-
-
-/*
- * @client: the client to send the error to
- * @rerr: the error object to send
- * @req: the message this error is in reply to
- *
- * Send an error message to the client
- *
- * Returns 0 if the error was sent, -1 upon fatal error
- */
-int
-remoteSerializeReplyError(struct qemud_client *client,
-                          remote_error *rerr,
-                          remote_message_header *req) {
-    /*
-     * For data streams, errors are sent back as data streams
-     * For method calls, errors are sent back as method replies
-     */
-    return remoteSerializeError(client,
-                                rerr,
-                                req->prog,
-                                req->vers,
-                                req->proc,
-                                req->type == REMOTE_STREAM ? REMOTE_STREAM : REMOTE_REPLY,
-                                req->serial);
-}
-
-int
-remoteSerializeStreamError(struct qemud_client *client,
-                           remote_error *rerr,
-                           int proc,
-                           int serial)
-{
-    return remoteSerializeError(client,
-                                rerr,
-                                REMOTE_PROGRAM,
-                                REMOTE_PROTOCOL_VERSION,
-                                proc,
-                                REMOTE_STREAM,
-                                serial);
-}
-
-/*
- * @msg: the complete incoming message, whose header to decode
- *
- * Decodes the header part of the client message, but does not
- * validate the decoded fields in the header. It expects
- * bufferLength to refer to length of the data packet. Upon
- * return bufferOffset will refer to the amount of the packet
- * consumed by decoding of the header.
- *
- * returns 0 if successfully decoded, -1 upon fatal error
- */
-int
-remoteDecodeClientMessageHeader (struct qemud_client_message *msg)
-{
-    XDR xdr;
-    int ret = -1;
-
-    msg->bufferOffset = REMOTE_MESSAGE_HEADER_XDR_LEN;
-
-    /* Parse the header. */
-    xdrmem_create (&xdr,
-                   msg->buffer + msg->bufferOffset,
-                   msg->bufferLength - msg->bufferOffset,
-                   XDR_DECODE);
-
-    if (!xdr_remote_message_header (&xdr, &msg->hdr))
-        goto cleanup;
-
-    msg->bufferOffset += xdr_getpos(&xdr);
-
-    ret = 0;
-
-cleanup:
-    xdr_destroy(&xdr);
-    return ret;
-}
-
-
-/*
- * @msg: the outgoing message, whose header to encode
- *
- * Encodes the header part of the client message, setting the
- * message offset ready to encode the payload. Leaves space
- * for the length field later. Upon return bufferLength will
- * refer to the total available space for message, while
- * bufferOffset will refer to current space used by header
- *
- * returns 0 if successfully encoded, -1 upon fatal error
- */
-int
-remoteEncodeClientMessageHeader (struct qemud_client_message *msg)
-{
-    XDR xdr;
-    int ret = -1;
-    unsigned int len = 0;
-
-    msg->bufferLength = sizeof(msg->buffer);
-    msg->bufferOffset = 0;
-
-    /* Format the header. */
-    xdrmem_create (&xdr,
-                   msg->buffer,
-                   msg->bufferLength,
-                   XDR_ENCODE);
-
-    /* The real value is filled in shortly */
-    if (!xdr_u_int (&xdr, &len)) {
-        goto cleanup;
-    }
-
-    if (!xdr_remote_message_header (&xdr, &msg->hdr))
-        goto cleanup;
-
-    len = xdr_getpos(&xdr);
-    xdr_setpos(&xdr, 0);
-
-    /* Fill in current length - may be re-written later
-     * if a payload is added
-     */
-    if (!xdr_u_int (&xdr, &len)) {
-        goto cleanup;
-    }
-
-    msg->bufferOffset += len;
-
-    ret = 0;
-
-cleanup:
-    xdr_destroy(&xdr);
-    return ret;
-}
-
-
-static int
-remoteDispatchClientCall (struct qemud_server *server,
-                          struct qemud_client *client,
-                          struct qemud_client_message *msg,
-                          bool qemu_protocol);
-
-
-/*
- * @server: the unlocked server object
- * @client: the locked client object
- * @msg: the complete incoming message packet, with header already decoded
- *
- * This function gets called from qemud when it pulls a incoming
- * remote protocol message off the dispatch queue for processing.
- *
- * The @msg parameter must have had its header decoded already by
- * calling remoteDecodeClientMessageHeader
- *
- * Returns 0 if the message was dispatched, -1 upon fatal error
- */
-int
-remoteDispatchClientRequest(struct qemud_server *server,
-                            struct qemud_client *client,
-                            struct qemud_client_message *msg)
-{
-    int ret;
-    remote_error rerr;
-    bool qemu_call;
-
-    VIR_DEBUG("prog=%d ver=%d type=%d status=%d serial=%d proc=%d",
-          msg->hdr.prog, msg->hdr.vers, msg->hdr.type,
-          msg->hdr.status, msg->hdr.serial, msg->hdr.proc);
-
-    memset(&rerr, 0, sizeof rerr);
-
-    /* Check version, etc. */
-    if (msg->hdr.prog == REMOTE_PROGRAM)
-        qemu_call = false;
-    else if (msg->hdr.prog == QEMU_PROGRAM)
-        qemu_call = true;
-    else {
-        remoteDispatchFormatError (&rerr,
-                                   _("program mismatch (actual %x, expected %x or %x)"),
-                                   msg->hdr.prog, REMOTE_PROGRAM, QEMU_PROGRAM);
-        goto error;
-    }
-
-    if (!qemu_call && msg->hdr.vers != REMOTE_PROTOCOL_VERSION) {
-        remoteDispatchFormatError (&rerr,
-                                   _("version mismatch (actual %x, expected %x)"),
-                                   msg->hdr.vers, REMOTE_PROTOCOL_VERSION);
-        goto error;
-    }
-    else if (qemu_call && msg->hdr.vers != QEMU_PROTOCOL_VERSION) {
-        remoteDispatchFormatError (&rerr,
-                                   _("version mismatch (actual %x, expected %x)"),
-                                   msg->hdr.vers, QEMU_PROTOCOL_VERSION);
-        goto error;
-    }
-
-    switch (msg->hdr.type) {
-    case REMOTE_CALL:
-        return remoteDispatchClientCall(server, client, msg, qemu_call);
-
-    case REMOTE_STREAM:
-        /* Since stream data is non-acked, async, we may continue to received
-         * stream packets after we closed down a stream. Just drop & ignore
-         * these.
-         */
-        VIR_INFO("Ignoring unexpected stream data serial=%d proc=%d status=%d",
-                 msg->hdr.serial, msg->hdr.proc, msg->hdr.status);
-        qemudClientMessageRelease(client, msg);
-        break;
-
-    default:
-        remoteDispatchFormatError (&rerr, _("type (%d) != REMOTE_CALL"),
-                                   (int) msg->hdr.type);
-        goto error;
-    }
-
-    return 0;
-
-error:
-    ret = remoteSerializeReplyError(client, &rerr, &msg->hdr);
-
-    if (ret >= 0)
-        VIR_FREE(msg);
-
-    return ret;
-}
-
-
-/*
- * @server: the unlocked server object
- * @client: the locked client object
- * @msg: the complete incoming method call, with header already decoded
- *
- * This method is used to dispatch an message representing an
- * incoming method call from a client. It decodes the payload
- * to obtain method call arguments, invokves the method and
- * then sends a reply packet with the return values
- *
- * Returns 0 if the reply was sent, or -1 upon fatal error
- */
-static int
-remoteDispatchClientCall (struct qemud_server *server,
-                          struct qemud_client *client,
-                          struct qemud_client_message *msg,
-                          bool qemu_protocol)
-{
-    XDR xdr;
-    remote_error rerr;
-    dispatch_args args;
-    dispatch_ret ret;
-    const dispatch_data *data = NULL;
-    int rv = -1;
-    unsigned int len;
-    virConnectPtr conn = NULL;
-
-    memset(&args, 0, sizeof args);
-    memset(&ret, 0, sizeof ret);
-    memset(&rerr, 0, sizeof rerr);
-
-    if (msg->hdr.status != REMOTE_OK) {
-        remoteDispatchFormatError (&rerr, _("status (%d) != REMOTE_OK"),
-                                   (int) msg->hdr.status);
-        goto rpc_error;
-    }
-
-    /* If client is marked as needing auth, don't allow any RPC ops,
-     * except for authentication ones
-     */
-    if (client->auth) {
-        if (msg->hdr.proc != REMOTE_PROC_AUTH_LIST &&
-            msg->hdr.proc != REMOTE_PROC_AUTH_SASL_INIT &&
-            msg->hdr.proc != REMOTE_PROC_AUTH_SASL_START &&
-            msg->hdr.proc != REMOTE_PROC_AUTH_SASL_STEP &&
-            msg->hdr.proc != REMOTE_PROC_AUTH_POLKIT
-            ) {
-            /* Explicitly *NOT* calling  remoteDispatchAuthError() because
-               we want back-compatability with libvirt clients which don't
-               support the VIR_ERR_AUTH_FAILED error code */
-            remoteDispatchFormatError (&rerr, "%s", _("authentication required"));
-            goto rpc_error;
-        }
-    }
-
-    if (qemu_protocol)
-        data = qemuGetDispatchData(msg->hdr.proc);
-    else
-        data = remoteGetDispatchData(msg->hdr.proc);
-
-    if (!data) {
-        remoteDispatchFormatError (&rerr, _("unknown procedure: %d"),
-                                   msg->hdr.proc);
-        goto rpc_error;
-    }
-
-    /* De-serialize payload with args from the wire message */
-    xdrmem_create (&xdr,
-                   msg->buffer + msg->bufferOffset,
-                   msg->bufferLength - msg->bufferOffset,
-                   XDR_DECODE);
-    if (!((data->args_filter)(&xdr, &args))) {
-        xdr_destroy (&xdr);
-        remoteDispatchFormatError (&rerr, "%s", _("parse args failed"));
-        goto rpc_error;
-    }
-    xdr_destroy (&xdr);
-
-    /* Call function. */
-    conn = client->conn;
-    virMutexUnlock(&client->lock);
-
-    /*
-     * When the RPC handler is called:
-     *
-     *  - Server object is unlocked
-     *  - Client object is unlocked
-     *
-     * Without locking, it is safe to use:
-     *
-     *   'conn', 'rerr', 'args and 'ret'
-     */
-    rv = (data->fn)(server, client, conn, &msg->hdr, &rerr, &args, &ret);
-
-    virMutexLock(&server->lock);
-    virMutexLock(&client->lock);
-    virMutexUnlock(&server->lock);
-
-    xdr_free (data->args_filter, (char*)&args);
-
-    if (rv < 0)
-        goto rpc_error;
-
-    /* Return header. We're re-using same message object, so
-     * only need to tweak type/status fields */
-    /*msg->hdr.prog = msg->hdr.prog;*/
-    /*msg->hdr.vers = msg->hdr.vers;*/
-    /*msg->hdr.proc = msg->hdr.proc;*/
-    msg->hdr.type = REMOTE_REPLY;
-    /*msg->hdr.serial = msg->hdr.serial;*/
-    msg->hdr.status = REMOTE_OK;
-
-    if (remoteEncodeClientMessageHeader(msg) < 0) {
-        xdr_free (data->ret_filter, (char*)&ret);
-        remoteDispatchFormatError(&rerr, "%s", _("failed to serialize reply header"));
-        goto xdr_hdr_error;
-    }
-
-
-    /* Now for the payload */
-    xdrmem_create (&xdr,
-                   msg->buffer,
-                   msg->bufferLength,
-                   XDR_ENCODE);
-
-    if (xdr_setpos(&xdr, msg->bufferOffset) == 0) {
-        remoteDispatchFormatError(&rerr, "%s", _("failed to change XDR reply offset"));
-        goto xdr_error;
-    }
-
-    /* If OK, serialise return structure, if error serialise error. */
-    /* Serialise reply data */
-    if (!((data->ret_filter) (&xdr, &ret))) {
-        remoteDispatchFormatError(&rerr, "%s", _("failed to serialize reply payload (probable message size limit)"));
-        goto xdr_error;
-    }
-
-    /* Update the length word. */
-    msg->bufferOffset += xdr_getpos (&xdr);
-    len = msg->bufferOffset;
-    if (xdr_setpos (&xdr, 0) == 0) {
-        remoteDispatchFormatError(&rerr, "%s", _("failed to change XDR reply offset"));
-        goto xdr_error;
-    }
-
-    if (!xdr_u_int (&xdr, &len)) {
-        remoteDispatchFormatError(&rerr, "%s", _("failed to update reply length header"));
-        goto xdr_error;
-    }
-
-    xdr_destroy (&xdr);
-    xdr_free (data->ret_filter, (char*)&ret);
-
-    /* Reset ready for I/O */
-    msg->bufferLength = len;
-    msg->bufferOffset = 0;
-
-    /* Put reply on end of tx queue to send out  */
-    qemudClientMessageQueuePush(&client->tx, msg);
-    qemudUpdateClientEvent(client);
-
-    return 0;
-
-xdr_error:
-    /* Bad stuff serializing reply. Try to send a little info
-     * back to client to assist in bug reporting/diagnosis */
-    xdr_free (data->ret_filter, (char*)&ret);
-    xdr_destroy (&xdr);
-    /* fallthrough */
-
-xdr_hdr_error:
-    VIR_WARN("Failed to serialize reply for program '%d' proc '%d' as XDR",
-             msg->hdr.prog, msg->hdr.proc);
-    /* fallthrough */
-
-rpc_error:
-    /* Bad stuff (de-)serializing message, but we have an
-     * RPC error message we can send back to the client */
-    rv = remoteSerializeReplyError(client, &rerr, &msg->hdr);
-
-    if (rv >= 0)
-        VIR_FREE(msg);
-
-    return rv;
-}
-
-
-int
-remoteSendStreamData(struct qemud_client *client,
-                     struct qemud_client_stream *stream,
-                     const char *data,
-                     unsigned int len)
-{
-    struct qemud_client_message *msg;
-    XDR xdr;
-
-    VIR_DEBUG("client=%p stream=%p data=%p len=%d", client, stream, data, len);
-
-    if (VIR_ALLOC(msg) < 0) {
-        return -1;
-    }
-
-    /* Return header. We're re-using same message object, so
-     * only need to tweak type/status fields */
-    msg->hdr.prog = REMOTE_PROGRAM;
-    msg->hdr.vers = REMOTE_PROTOCOL_VERSION;
-    msg->hdr.proc = stream->procedure;
-    msg->hdr.type = REMOTE_STREAM;
-    msg->hdr.serial = stream->serial;
-    /*
-     * NB
-     *   data != NULL + len > 0    => REMOTE_CONTINUE   (Sending back data)
-     *   data != NULL + len == 0   => REMOTE_CONTINUE   (Sending read EOF)
-     *   data == NULL              => REMOTE_OK         (Sending finish handshake confirmation)
-     */
-    msg->hdr.status = data ? REMOTE_CONTINUE : REMOTE_OK;
-
-    if (remoteEncodeClientMessageHeader(msg) < 0)
-        goto fatal_error;
-
-    if (data && len) {
-        if ((msg->bufferLength - msg->bufferOffset) < len)
-            goto fatal_error;
-
-        /* Now for the payload */
-        xdrmem_create (&xdr,
-                       msg->buffer,
-                       msg->bufferLength,
-                       XDR_ENCODE);
-
-        /* Skip over existing header already written */
-        if (xdr_setpos(&xdr, msg->bufferOffset) == 0)
-            goto xdr_error;
-
-        memcpy(msg->buffer + msg->bufferOffset, data, len);
-        msg->bufferOffset += len;
-
-        /* Update the length word. */
-        len = msg->bufferOffset;
-        if (xdr_setpos (&xdr, 0) == 0)
-            goto xdr_error;
-
-        if (!xdr_u_int (&xdr, &len))
-            goto xdr_error;
-
-        xdr_destroy (&xdr);
-
-        VIR_DEBUG("Total %d", msg->bufferOffset);
-    }
-    if (data)
-        msg->streamTX = 1;
-
-    /* Reset ready for I/O */
-    msg->bufferLength = msg->bufferOffset;
-    msg->bufferOffset = 0;
-
-    /* Put reply on end of tx queue to send out  */
-    qemudClientMessageQueuePush(&client->tx, msg);
-    qemudUpdateClientEvent(client);
-
-    return 0;
-
-xdr_error:
-    xdr_destroy (&xdr);
-fatal_error:
-    VIR_FREE(msg);
-    VIR_WARN("Failed to serialize stream data for proc %d as XDR",
-             stream->procedure);
-    return -1;
-}

daemon/dispatch.h

@@ -1,70 +0,0 @@
-/*
- * dispatch.h: RPC message dispatching infrastructure
- *
- * Copyright (C) 2007, 2008, 2009 Red Hat, Inc.
- *
- * This library is free software; you can redistribute it and/or
- * modify it under the terms of the GNU Lesser General Public
- * License as published by the Free Software Foundation; either
- * version 2.1 of the License, or (at your option) any later version.
- *
- * This library is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
- * Lesser General Public License for more details.
- *
- * You should have received a copy of the GNU Lesser General Public
- * License along with this library; if not, write to the Free Software
- * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307  USA
- *
- * Author: Richard W.M. Jones <rjones@redhat.com>
- * Author: Daniel P. Berrange <berrange@redhat.com>
- */
-
-#ifndef __LIBVIRTD_DISPATCH_H__
-# define __LIBVIRTD_DISPATCH_H__
-
-
-# include "libvirtd.h"
-
-
-int
-remoteDecodeClientMessageHeader (struct qemud_client_message *req);
-int
-remoteEncodeClientMessageHeader (struct qemud_client_message *req);
-
-int
-remoteDispatchClientRequest (struct qemud_server *server,
-                             struct qemud_client *client,
-                             struct qemud_client_message *req);
-
-
-void remoteDispatchFormatError (remote_error *rerr,
-                                const char *fmt, ...)
-    ATTRIBUTE_FMT_PRINTF(2, 3);
-
-void remoteDispatchAuthError (remote_error *rerr);
-void remoteDispatchGenericError (remote_error *rerr);
-void remoteDispatchOOMError (remote_error *rerr);
-void remoteDispatchConnError (remote_error *rerr,
-                              virConnectPtr conn);
-
-
-int
-remoteSerializeReplyError(struct qemud_client *client,
-                          remote_error *rerr,
-                          remote_message_header *req);
-int
-remoteSerializeStreamError(struct qemud_client *client,
-                           remote_error *rerr,
-                           int proc,
-                           int serial);
-
-
-int
-remoteSendStreamData(struct qemud_client *client,
-                     struct qemud_client_stream *stream,
-                     const char *data,
-                     unsigned int len);
-
-#endif /* __LIBVIRTD_DISPATCH_H__ */

daemon/libvirtd.aug

@@ -48,6 +48,7 @@ module Libvirtd =
                          | str_entry "crl_file"
 
    let authorization_entry = bool_entry "tls_no_verify_certificate"
+                           | bool_entry "tls_no_sanity_certificate"
                            | str_array_entry "tls_allowed_dn_list"
                            | str_array_entry "sasl_allowed_username_list"
 
@@ -56,6 +57,7 @@ module Libvirtd =
                         | int_entry "max_clients"
                         | int_entry "max_requests"
                         | int_entry "max_client_requests"
+                        | int_entry "prio_workers"
 
    let logging_entry = int_entry "log_level"
                      | str_entry "log_filters"

daemon/libvirtd.conf

@@ -187,6 +187,15 @@
 #
 
 
+# Flag to disable verification of our own server certificates
+#
+# When libvirtd starts it performs some sanity checks against
+# its own certificates.
+#
+# Default is to always run sanity checks. Uncommenting this
+# will disable sanity checks which is not a good idea
+#tls_no_sanity_certificate = 1
+
 # Flag to disable verification of client certificates
 #
 # Client certificate verification is the primary authentication mechanism.
@@ -248,6 +257,12 @@
 #min_workers = 5
 #max_workers = 20
 
+
+# The number of priority workers. If all workers from above
+# pool will stuck, some calls marked as high priority
+# (notably domainDestroy) can be executed in this pool.
+#prio_workers = 5
+
 # Total global limit on concurrent RPC calls. Should be
 # at least as large as max_workers. Beyond this, RPC requests
 # will be read into memory and queued. This directly impact

daemon/libvirtd.h

@@ -27,21 +27,6 @@
 
 # include <config.h>
 
-# include <gnutls/gnutls.h>
-# include <gnutls/x509.h>
-# include "gnutls_1_0_compat.h"
-# if HAVE_SASL
-#  include <sasl/sasl.h>
-# endif
-
-# if HAVE_POLKIT0
-#  include <dbus/dbus.h>
-# endif
-
-# ifdef HAVE_SYS_SYSLIMITS_H
-#  include <sys/syslimits.h>
-# endif
-
 # include <rpc/types.h>
 # include <rpc/xdr.h>
 # include "remote_protocol.h"
@@ -49,17 +34,51 @@
 # include "logging.h"
 # include "threads.h"
 # include "network.h"
+# if HAVE_SASL
+#  include "virnetsaslcontext.h"
+# endif
+# include "virnetserverprogram.h"
 
 # if WITH_DTRACE
 #  ifndef LIBVIRTD_PROBES_H
 #   define LIBVIRTD_PROBES_H
 #   include "probes.h"
 #  endif /* LIBVIRTD_PROBES_H */
+
+/* Systemtap 1.2 headers have a bug where they cannot handle a
+ * variable declared with array type.  Work around this by casting all
+ * arguments.  This is some gross use of the preprocessor because
+ * PROBE is a var-arg macro, but it is better than the alternative of
+ * making all callers to PROBE have to be aware of the issues.  And
+ * hopefully, if we ever add a call to PROBE with other than 2 or 3
+ * end arguments, you can figure out the pattern to extend this hack.
+ */
+#  define VIR_COUNT_ARGS(...) VIR_ARG5(__VA_ARGS__, 4, 3, 2, 1)
+#  define VIR_ARG5(_1, _2, _3, _4, _5, ...) _5
+#  define VIR_ADD_CAST_EXPAND(a, b, ...) VIR_ADD_CAST_PASTE(a, b, __VA_ARGS__)
+#  define VIR_ADD_CAST_PASTE(a, b, ...) a##b(__VA_ARGS__)
+
+/* The double cast is necessary to silence gcc warnings; any pointer
+ * can safely go to intptr_t and back to void *, which collapses
+ * arrays into pointers; while any integer can be widened to intptr_t
+ * then cast to void *.  */
+#  define VIR_ADD_CAST(a) ((void *)(intptr_t)(a))
+#  define VIR_ADD_CAST2(a, b)                           \
+    VIR_ADD_CAST(a), VIR_ADD_CAST(b)
+#  define VIR_ADD_CAST3(a, b, c)                        \
+    VIR_ADD_CAST(a), VIR_ADD_CAST(b), VIR_ADD_CAST(c)
+
+#  define VIR_ADD_CASTS(...)                                            \
+    VIR_ADD_CAST_EXPAND(VIR_ADD_CAST, VIR_COUNT_ARGS(__VA_ARGS__),      \
+                        __VA_ARGS__)
+
+#  define PROBE_EXPAND(NAME, ARGS) NAME(ARGS)
 #  define PROBE(NAME, FMT, ...)                              \
     VIR_DEBUG_INT("trace." __FILE__ , __func__, __LINE__,    \
                   #NAME ": " FMT, __VA_ARGS__);              \
     if (LIBVIRTD_ ## NAME ## _ENABLED()) {                   \
-        LIBVIRTD_ ## NAME(__VA_ARGS__);                      \
+        PROBE_EXPAND(LIBVIRTD_ ## NAME,                      \
+                     VIR_ADD_CASTS(__VA_ARGS__));            \
     }
 # else
 #  define PROBE(NAME, FMT, ...)                              \
@@ -67,270 +86,35 @@
                   #NAME ": " FMT, __VA_ARGS__);
 # endif
 
-# ifdef __GNUC__
-#  ifdef HAVE_ANSIDECL_H
-#   include <ansidecl.h>
-#  endif
-
-#  ifndef __GNUC_PREREQ
-#   if defined __GNUC__ && defined __GNUC_MINOR__
-#    define __GNUC_PREREQ(maj, min)                                        \
-    ((__GNUC__ << 16) + __GNUC_MINOR__ >= ((maj) << 16) + (min))
-#   else
-#    define __GNUC_PREREQ(maj,min) 0
-#   endif
-#  endif
-
-/**
- * ATTRIBUTE_UNUSED:
- *
- * Macro to flag conciously unused parameters to functions
- */
-#  ifndef ATTRIBUTE_UNUSED
-#   define ATTRIBUTE_UNUSED __attribute__((__unused__))
-#  endif
-
-/**
- * ATTRIBUTE_FMT_PRINTF
- *
- * Macro used to check printf like functions, if compiling
- * with gcc.
- *
- * We use gnulib which guarentees we always have GNU style
- * printf format specifiers even on broken Win32 platforms
- * hence we have to force 'gnu_printf' for new GCC
- */
-#  ifndef ATTRIBUTE_FMT_PRINTF
-#   if __GNUC_PREREQ (4, 4)
-#    define ATTRIBUTE_FMT_PRINTF(fmtpos,argpos) __attribute__((__format__ (gnu_printf, fmtpos,argpos)))
-#   else
-#    define ATTRIBUTE_FMT_PRINTF(fmtpos,argpos) __attribute__((__format__ (printf, fmtpos,argpos)))
-#   endif
-#  endif
-
-#  ifndef ATTRIBUTE_RETURN_CHECK
-#   if __GNUC_PREREQ (3, 4)
-#    define ATTRIBUTE_RETURN_CHECK __attribute__((__warn_unused_result__))
-#   else
-#    define ATTRIBUTE_RETURN_CHECK
-#   endif
-#  endif
-
-# else
-#  ifndef ATTRIBUTE_UNUSED
-#   define ATTRIBUTE_UNUSED
-#  endif
-#  ifndef ATTRIBUTE_FMT_PRINTF
-#   define ATTRIBUTE_FMT_PRINTF(...)
-#  endif
-#  ifndef ATTRIBUTE_RETURN_CHECK
-#   define ATTRIBUTE_RETURN_CHECK
-#  endif
-# endif
-
-/* Whether we're passing reads & writes through a sasl SSF */
-enum qemud_sasl_ssf {
-    QEMUD_SASL_SSF_NONE = 0,
-    QEMUD_SASL_SSF_READ = 1,
-    QEMUD_SASL_SSF_WRITE = 2,
-};
-
-enum qemud_sock_type {
-    QEMUD_SOCK_TYPE_UNIX = 0,
-    QEMUD_SOCK_TYPE_TCP = 1,
-    QEMUD_SOCK_TYPE_TLS = 2,
-};
-
-struct qemud_client_message {
-    char buffer [REMOTE_MESSAGE_MAX + REMOTE_MESSAGE_HEADER_XDR_LEN];
-    unsigned int bufferLength;
-    unsigned int bufferOffset;
-
-    unsigned int async : 1;
-    unsigned int streamTX : 1;
-
-    remote_message_header hdr;
-
-    struct qemud_client_message *next;
-};
-
-struct qemud_client;
-
-/* Allow for filtering of incoming messages to a custom
- * dispatch processing queue, instead of client->dx.
- */
-typedef int (*qemud_client_filter_func)(struct qemud_client *client,
-                                        struct qemud_client_message *msg, void *opaque);
-struct qemud_client_filter {
-    qemud_client_filter_func query;
-    void *opaque;
-
-    struct qemud_client_filter *next;
-};
-
-struct qemud_client_stream {
-    virStreamPtr st;
-    int procedure;
-    int serial;
-
-    unsigned int recvEOF : 1;
-    unsigned int closed : 1;
-
-    struct qemud_client_filter filter;
-
-    struct qemud_client_message *rx;
-    int tx;
-
-    struct qemud_client_stream *next;
-};
+typedef struct daemonClientStream daemonClientStream;
+typedef daemonClientStream *daemonClientStreamPtr;
+typedef struct daemonClientPrivate daemonClientPrivate;
+typedef daemonClientPrivate *daemonClientPrivatePtr;
 
 /* Stores the per-client connection state */
-struct qemud_client {
+struct daemonClientPrivate {
+    /* Hold while accessing any data except conn */
     virMutex lock;
 
-    int magic;
-
-    int fd;
-    int watch;
-    unsigned int readonly :1;
-    unsigned int closing :1;
     int domainEventCallbackID[VIR_DOMAIN_EVENT_ID_LAST];
 
-    virSocketAddr addr;
-    const char *addrstr;
-
-    int type; /* qemud_sock_type */
-    gnutls_session_t tlssession;
-    int auth;
-    unsigned int handshake :1; /* If we're in progress for TLS handshake */
 # if HAVE_SASL
-    sasl_conn_t *saslconn;
-    int saslSSF;
-    const char *saslDecoded;
-    unsigned int saslDecodedLength;
-    unsigned int saslDecodedOffset;
-    const char *saslEncoded;
-    unsigned int saslEncodedLength;
-    unsigned int saslEncodedOffset;
-    char *saslUsername;
+    virNetSASLSessionPtr sasl;
 # endif
 
-    /* Count of meages in 'dx' or 'tx' queue
-     * ie RPC calls in progress. Does not count
-     * async events which are not used for
-     * throttling calculations */
-    int nrequests;
-    /* Zero or one messages being received. Zero if
-     * nrequests >= max_clients and throttling */
-    struct qemud_client_message *rx;
-    /* Zero or many messages waiting for a worker
-     * to process them */
-    struct qemud_client_message *dx;
-    /* Zero or many messages waiting for transmit
-     * back to client, including async events */
-    struct qemud_client_message *tx;
-    /* Filters to capture messages that would otherwise
-     * end up on the 'dx' queue */
-    struct qemud_client_filter *filters;
-
-    /* Data streams */
-    struct qemud_client_stream *streams;
-
-
     /* This is only valid if a remote open call has been made on this
      * connection, otherwise it will be NULL.  Also if remote close is
      * called, it will be set back to NULL if that succeeds.
      */
     virConnectPtr conn;
-    int refs;
 
+    daemonClientStreamPtr streams;
 };
 
-# define QEMUD_CLIENT_MAGIC 0x7788aaee
-
-
-struct qemud_socket {
-    char *path;
-
-    virSocketAddr addr;
-    const char *addrstr;
-
-    int fd;
-    int watch;
-    int readonly;
-    int type; /* qemud_sock_type */
-    int auth;
-
-    struct qemud_socket *next;
-};
-
-struct qemud_worker {
-    pthread_t thread;
-    unsigned int hasThread :1;
-    unsigned int processingCall :1;
-    unsigned int quitRequest :1;
-
-    /* back-pointer to our server */
-    struct qemud_server *server;
-};
-
-/* Main server state */
-struct qemud_server {
-    virMutex lock;
-    virCond job;
-
-    int privileged;
-
-    size_t nworkers;
-    size_t nactiveworkers;
-    struct qemud_worker *workers;
-    size_t nsockets;
-    struct qemud_socket *sockets;
-    size_t nclients;
-    size_t nclients_max;
-    struct qemud_client **clients;
-
-    int sigread;
-    int sigwrite;
-    char *logDir;
-    pthread_t eventThread;
-    unsigned int hasEventThread :1;
-    unsigned int quitEventThread :1;
-# ifdef HAVE_AVAHI
-    struct libvirtd_mdns *mdns;
-# endif
 # if HAVE_SASL
-    char **saslUsernameWhitelist;
-# endif
-# if HAVE_POLKIT0
-    DBusConnection *sysbus;
-# endif
-};
-
-void qemudLog(int priority, const char *fmt, ...)
-    ATTRIBUTE_FMT_PRINTF(2,3);
-
-
-
-int qemudRegisterClientEvent(struct qemud_server *server,
-                             struct qemud_client *client);
-void qemudUpdateClientEvent(struct qemud_client *client);
-
-void qemudDispatchClientFailure(struct qemud_client *client);
-
-void
-qemudClientMessageQueuePush(struct qemud_client_message **queue,
-                            struct qemud_client_message *msg);
-struct qemud_client_message *
-qemudClientMessageQueueServe(struct qemud_client_message **queue);
-
-void
-qemudClientMessageRelease(struct qemud_client *client,
-                          struct qemud_client_message *msg);
-
-
-# if HAVE_POLKIT
-int qemudGetSocketIdentity(int fd, uid_t *uid, pid_t *pid);
+extern virNetSASLContextPtr saslCtxt;
 # endif
+extern virNetServerProgramPtr remoteProgram;
+extern virNetServerProgramPtr qemuProgram;
 
 #endif

daemon/libvirtd.init.in

@@ -76,6 +76,8 @@ stop() {
         rm -f @localstatedir@/lock/subsys/$SERVICE
         rm -f $PIDFILE
         rm -rf @localstatedir@/cache/libvirt/*
+    else
+        exit $RETVAL
     fi
 }
 

daemon/libvirtd.upstart

@@ -0,0 +1,46 @@
+# libvirtd upstart job
+#
+# XXX wait for rc to get all dependent initscripts started
+# from sysv libvirtd initscript: Required-Start: $network messagebus
+start on stopped rc RUNLEVEL=[345]
+stop on runlevel [!345]
+
+respawn
+
+script
+    LIBVIRTD_CONFIG=
+    LIBVIRTD_ARGS=
+    KRB5_KTNAME=/etc/libvirt/krb5.tab
+
+    if [ -f /etc/sysconfig/libvirtd ]; then
+        . /etc/sysconfig/libvirtd
+    fi
+
+    export QEMU_AUDIO_DRV
+    export SDL_AUDIODRIVER
+    export KRB5_KTNAME
+
+    LIBVIRTD_CONFIG_ARGS=
+    if [ -n "$LIBVIRTD_CONFIG" ]; then
+        LIBVIRTD_CONFIG_ARGS="--config $LIBVIRTD_CONFIG"
+    fi
+
+    # DAEMON_COREFILE_LIMIT from /etc/sysconfig/libvirtd is not handled
+    # automatically
+    if [ -n "$DAEMON_COREFILE_LIMIT" ]; then
+        ulimit -c "$DAEMON_COREFILE_LIMIT"
+    fi
+
+    # Clean up a pidfile that might be left around
+    rm -f /var/run/libvirtd.pid
+
+    mkdir -p /var/cache/libvirt
+    rm -rf /var/cache/libvirt/*
+
+    exec /usr/sbin/libvirtd $LIBVIRTD_CONFIG_ARGS $LIBVIRTD_ARGS
+end script
+
+post-stop script
+    rm -f $PIDFILE
+    rm -rf /var/cache/libvirt/*
+end script

daemon/qemu_dispatch_args.h

@@ -1,5 +0,0 @@
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-    qemu_monitor_command_args val_qemu_monitor_command_args;

daemon/qemu_dispatch_prototypes.h

@@ -1,12 +0,0 @@
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-static int qemuDispatchMonitorCommand(
-    struct qemud_server *server,
-    struct qemud_client *client,
-    virConnectPtr conn,
-    remote_message_header *hdr,
-    remote_error *err,
-    qemu_monitor_command_args *args,
-    qemu_monitor_command_ret *ret);

daemon/qemu_dispatch_ret.h

@@ -1,5 +0,0 @@
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-    qemu_monitor_command_ret val_qemu_monitor_command_ret;

daemon/qemu_dispatch_table.h

@@ -1,14 +0,0 @@
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-{   /* (unused) => 0 */
-    .fn = NULL,
-    .args_filter = (xdrproc_t) xdr_void,
-    .ret_filter = (xdrproc_t) xdr_void,
-},
-{   /* MonitorCommand => 1 */
-    .fn = (dispatch_fn) qemuDispatchMonitorCommand,
-    .args_filter = (xdrproc_t) xdr_qemu_monitor_command_args,
-    .ret_filter = (xdrproc_t) xdr_qemu_monitor_command_ret,
-},

daemon/remote.h

@@ -24,62 +24,18 @@
 #ifndef __LIBVIRTD_REMOTE_H__
 # define __LIBVIRTD_REMOTE_H__
 
-
-# include "libvirtd.h"
-
-typedef union {
-# include "remote_dispatch_args.h"
-} dispatch_args;
-verify(sizeof(dispatch_args) > 0);
-
-typedef union {
-# include "remote_dispatch_ret.h"
-} dispatch_ret;
-verify(sizeof(dispatch_ret) > 0);
-
-typedef union {
-# include "qemu_dispatch_args.h"
-} qemu_dispatch_args;
-verify(sizeof(qemu_dispatch_args) > 0);
-
-typedef union {
-# include "qemu_dispatch_ret.h"
-} qemu_dispatch_ret;
-verify(sizeof(qemu_dispatch_ret) > 0);
+# include "remote_protocol.h"
+# include "rpc/virnetserverprogram.h"
+# include "rpc/virnetserverclient.h"
 
 
+extern virNetServerProgramProc remoteProcs[];
+extern size_t remoteNProcs;
 
-/**
- * When the RPC handler is called:
- *
- *  - Server object is unlocked
- *  - Client object is unlocked
- *
- * Both must be locked before use. Server lock must
- * be held before attempting to lock client.
- *
- * Without any locking, it is safe to use:
- *
- *   'conn', 'rerr', 'args and 'ret'
- */
-typedef int (*dispatch_fn) (struct qemud_server *server,
-                            struct qemud_client *client,
-                            virConnectPtr conn,
-                            remote_message_header *hdr,
-                            remote_error *err,
-                            dispatch_args *args,
-                            dispatch_ret *ret);
-
-typedef struct {
-    dispatch_fn fn;
-    xdrproc_t args_filter;
-    xdrproc_t ret_filter;
-} dispatch_data;
-
-
-const dispatch_data const *remoteGetDispatchData(int proc);
-const dispatch_data const *qemuGetDispatchData(int proc);
-
+extern virNetServerProgramProc qemuProcs[];
+extern size_t qemuNProcs;
 
+int remoteClientInitHook(virNetServerPtr srv,
+                         virNetServerClientPtr client);
 
 #endif /* __LIBVIRTD_REMOTE_H__ */

daemon/remote_dispatch_args.h

@@ -1,180 +0,0 @@
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-    remote_open_args val_remote_open_args;
-    remote_get_max_vcpus_args val_remote_get_max_vcpus_args;
-    remote_domain_attach_device_args val_remote_domain_attach_device_args;
-    remote_domain_create_args val_remote_domain_create_args;
-    remote_domain_create_xml_args val_remote_domain_create_xml_args;
-    remote_domain_define_xml_args val_remote_domain_define_xml_args;
-    remote_domain_destroy_args val_remote_domain_destroy_args;
-    remote_domain_detach_device_args val_remote_domain_detach_device_args;
-    remote_domain_dump_xml_args val_remote_domain_dump_xml_args;
-    remote_domain_get_autostart_args val_remote_domain_get_autostart_args;
-    remote_domain_get_info_args val_remote_domain_get_info_args;
-    remote_domain_get_max_memory_args val_remote_domain_get_max_memory_args;
-    remote_domain_get_max_vcpus_args val_remote_domain_get_max_vcpus_args;
-    remote_domain_get_os_type_args val_remote_domain_get_os_type_args;
-    remote_domain_get_vcpus_args val_remote_domain_get_vcpus_args;
-    remote_list_defined_domains_args val_remote_list_defined_domains_args;
-    remote_domain_lookup_by_id_args val_remote_domain_lookup_by_id_args;
-    remote_domain_lookup_by_name_args val_remote_domain_lookup_by_name_args;
-    remote_domain_lookup_by_uuid_args val_remote_domain_lookup_by_uuid_args;
-    remote_domain_pin_vcpu_args val_remote_domain_pin_vcpu_args;
-    remote_domain_reboot_args val_remote_domain_reboot_args;
-    remote_domain_resume_args val_remote_domain_resume_args;
-    remote_domain_set_autostart_args val_remote_domain_set_autostart_args;
-    remote_domain_set_max_memory_args val_remote_domain_set_max_memory_args;
-    remote_domain_set_memory_args val_remote_domain_set_memory_args;
-    remote_domain_set_vcpus_args val_remote_domain_set_vcpus_args;
-    remote_domain_shutdown_args val_remote_domain_shutdown_args;
-    remote_domain_suspend_args val_remote_domain_suspend_args;
-    remote_domain_undefine_args val_remote_domain_undefine_args;
-    remote_list_defined_networks_args val_remote_list_defined_networks_args;
-    remote_list_domains_args val_remote_list_domains_args;
-    remote_list_networks_args val_remote_list_networks_args;
-    remote_network_create_args val_remote_network_create_args;
-    remote_network_create_xml_args val_remote_network_create_xml_args;
-    remote_network_define_xml_args val_remote_network_define_xml_args;
-    remote_network_destroy_args val_remote_network_destroy_args;
-    remote_network_dump_xml_args val_remote_network_dump_xml_args;
-    remote_network_get_autostart_args val_remote_network_get_autostart_args;
-    remote_network_get_bridge_name_args val_remote_network_get_bridge_name_args;
-    remote_network_lookup_by_name_args val_remote_network_lookup_by_name_args;
-    remote_network_lookup_by_uuid_args val_remote_network_lookup_by_uuid_args;
-    remote_network_set_autostart_args val_remote_network_set_autostart_args;
-    remote_network_undefine_args val_remote_network_undefine_args;
-    remote_domain_core_dump_args val_remote_domain_core_dump_args;
-    remote_domain_restore_args val_remote_domain_restore_args;
-    remote_domain_save_args val_remote_domain_save_args;
-    remote_domain_get_scheduler_type_args val_remote_domain_get_scheduler_type_args;
-    remote_domain_get_scheduler_parameters_args val_remote_domain_get_scheduler_parameters_args;
-    remote_domain_set_scheduler_parameters_args val_remote_domain_set_scheduler_parameters_args;
-    remote_supports_feature_args val_remote_supports_feature_args;
-    remote_domain_migrate_prepare_args val_remote_domain_migrate_prepare_args;
-    remote_domain_migrate_perform_args val_remote_domain_migrate_perform_args;
-    remote_domain_migrate_finish_args val_remote_domain_migrate_finish_args;
-    remote_domain_block_stats_args val_remote_domain_block_stats_args;
-    remote_domain_interface_stats_args val_remote_domain_interface_stats_args;
-    remote_auth_sasl_start_args val_remote_auth_sasl_start_args;
-    remote_auth_sasl_step_args val_remote_auth_sasl_step_args;
-    remote_list_storage_pools_args val_remote_list_storage_pools_args;
-    remote_list_defined_storage_pools_args val_remote_list_defined_storage_pools_args;
-    remote_find_storage_pool_sources_args val_remote_find_storage_pool_sources_args;
-    remote_storage_pool_create_xml_args val_remote_storage_pool_create_xml_args;
-    remote_storage_pool_define_xml_args val_remote_storage_pool_define_xml_args;
-    remote_storage_pool_create_args val_remote_storage_pool_create_args;
-    remote_storage_pool_build_args val_remote_storage_pool_build_args;
-    remote_storage_pool_destroy_args val_remote_storage_pool_destroy_args;
-    remote_storage_pool_delete_args val_remote_storage_pool_delete_args;
-    remote_storage_pool_undefine_args val_remote_storage_pool_undefine_args;
-    remote_storage_pool_refresh_args val_remote_storage_pool_refresh_args;
-    remote_storage_pool_lookup_by_name_args val_remote_storage_pool_lookup_by_name_args;
-    remote_storage_pool_lookup_by_uuid_args val_remote_storage_pool_lookup_by_uuid_args;
-    remote_storage_pool_lookup_by_volume_args val_remote_storage_pool_lookup_by_volume_args;
-    remote_storage_pool_get_info_args val_remote_storage_pool_get_info_args;
-    remote_storage_pool_dump_xml_args val_remote_storage_pool_dump_xml_args;
-    remote_storage_pool_get_autostart_args val_remote_storage_pool_get_autostart_args;
-    remote_storage_pool_set_autostart_args val_remote_storage_pool_set_autostart_args;
-    remote_storage_pool_num_of_volumes_args val_remote_storage_pool_num_of_volumes_args;
-    remote_storage_pool_list_volumes_args val_remote_storage_pool_list_volumes_args;
-    remote_storage_vol_create_xml_args val_remote_storage_vol_create_xml_args;
-    remote_storage_vol_delete_args val_remote_storage_vol_delete_args;
-    remote_storage_vol_lookup_by_name_args val_remote_storage_vol_lookup_by_name_args;
-    remote_storage_vol_lookup_by_key_args val_remote_storage_vol_lookup_by_key_args;
-    remote_storage_vol_lookup_by_path_args val_remote_storage_vol_lookup_by_path_args;
-    remote_storage_vol_get_info_args val_remote_storage_vol_get_info_args;
-    remote_storage_vol_dump_xml_args val_remote_storage_vol_dump_xml_args;
-    remote_storage_vol_get_path_args val_remote_storage_vol_get_path_args;
-    remote_node_get_cells_free_memory_args val_remote_node_get_cells_free_memory_args;
-    remote_domain_block_peek_args val_remote_domain_block_peek_args;
-    remote_domain_memory_peek_args val_remote_domain_memory_peek_args;
-    remote_domain_migrate_prepare2_args val_remote_domain_migrate_prepare2_args;
-    remote_domain_migrate_finish2_args val_remote_domain_migrate_finish2_args;
-    remote_node_num_of_devices_args val_remote_node_num_of_devices_args;
-    remote_node_list_devices_args val_remote_node_list_devices_args;
-    remote_node_device_lookup_by_name_args val_remote_node_device_lookup_by_name_args;
-    remote_node_device_dump_xml_args val_remote_node_device_dump_xml_args;
-    remote_node_device_get_parent_args val_remote_node_device_get_parent_args;
-    remote_node_device_num_of_caps_args val_remote_node_device_num_of_caps_args;
-    remote_node_device_list_caps_args val_remote_node_device_list_caps_args;
-    remote_node_device_dettach_args val_remote_node_device_dettach_args;
-    remote_node_device_re_attach_args val_remote_node_device_re_attach_args;
-    remote_node_device_reset_args val_remote_node_device_reset_args;
-    remote_domain_get_security_label_args val_remote_domain_get_security_label_args;
-    remote_node_device_create_xml_args val_remote_node_device_create_xml_args;
-    remote_node_device_destroy_args val_remote_node_device_destroy_args;
-    remote_storage_vol_create_xml_from_args val_remote_storage_vol_create_xml_from_args;
-    remote_list_interfaces_args val_remote_list_interfaces_args;
-    remote_interface_lookup_by_name_args val_remote_interface_lookup_by_name_args;
-    remote_interface_lookup_by_mac_string_args val_remote_interface_lookup_by_mac_string_args;
-    remote_interface_get_xml_desc_args val_remote_interface_get_xml_desc_args;
-    remote_interface_define_xml_args val_remote_interface_define_xml_args;
-    remote_interface_undefine_args val_remote_interface_undefine_args;
-    remote_interface_create_args val_remote_interface_create_args;
-    remote_interface_destroy_args val_remote_interface_destroy_args;
-    remote_domain_xml_from_native_args val_remote_domain_xml_from_native_args;
-    remote_domain_xml_to_native_args val_remote_domain_xml_to_native_args;
-    remote_list_defined_interfaces_args val_remote_list_defined_interfaces_args;
-    remote_list_secrets_args val_remote_list_secrets_args;
-    remote_secret_lookup_by_uuid_args val_remote_secret_lookup_by_uuid_args;
-    remote_secret_define_xml_args val_remote_secret_define_xml_args;
-    remote_secret_get_xml_desc_args val_remote_secret_get_xml_desc_args;
-    remote_secret_set_value_args val_remote_secret_set_value_args;
-    remote_secret_get_value_args val_remote_secret_get_value_args;
-    remote_secret_undefine_args val_remote_secret_undefine_args;
-    remote_secret_lookup_by_usage_args val_remote_secret_lookup_by_usage_args;
-    remote_domain_migrate_prepare_tunnel_args val_remote_domain_migrate_prepare_tunnel_args;
-    remote_domain_is_active_args val_remote_domain_is_active_args;
-    remote_domain_is_persistent_args val_remote_domain_is_persistent_args;
-    remote_network_is_active_args val_remote_network_is_active_args;
-    remote_network_is_persistent_args val_remote_network_is_persistent_args;
-    remote_storage_pool_is_active_args val_remote_storage_pool_is_active_args;
-    remote_storage_pool_is_persistent_args val_remote_storage_pool_is_persistent_args;
-    remote_interface_is_active_args val_remote_interface_is_active_args;
-    remote_cpu_compare_args val_remote_cpu_compare_args;
-    remote_domain_memory_stats_args val_remote_domain_memory_stats_args;
-    remote_domain_attach_device_flags_args val_remote_domain_attach_device_flags_args;
-    remote_domain_detach_device_flags_args val_remote_domain_detach_device_flags_args;
-    remote_cpu_baseline_args val_remote_cpu_baseline_args;
-    remote_domain_get_job_info_args val_remote_domain_get_job_info_args;
-    remote_domain_abort_job_args val_remote_domain_abort_job_args;
-    remote_storage_vol_wipe_args val_remote_storage_vol_wipe_args;
-    remote_domain_migrate_set_max_downtime_args val_remote_domain_migrate_set_max_downtime_args;
-    remote_domain_events_register_any_args val_remote_domain_events_register_any_args;
-    remote_domain_events_deregister_any_args val_remote_domain_events_deregister_any_args;
-    remote_domain_update_device_flags_args val_remote_domain_update_device_flags_args;
-    remote_nwfilter_lookup_by_name_args val_remote_nwfilter_lookup_by_name_args;
-    remote_nwfilter_lookup_by_uuid_args val_remote_nwfilter_lookup_by_uuid_args;
-    remote_nwfilter_get_xml_desc_args val_remote_nwfilter_get_xml_desc_args;
-    remote_list_nwfilters_args val_remote_list_nwfilters_args;
-    remote_nwfilter_define_xml_args val_remote_nwfilter_define_xml_args;
-    remote_nwfilter_undefine_args val_remote_nwfilter_undefine_args;
-    remote_domain_managed_save_args val_remote_domain_managed_save_args;
-    remote_domain_has_managed_save_image_args val_remote_domain_has_managed_save_image_args;
-    remote_domain_managed_save_remove_args val_remote_domain_managed_save_remove_args;
-    remote_domain_snapshot_create_xml_args val_remote_domain_snapshot_create_xml_args;
-    remote_domain_snapshot_dump_xml_args val_remote_domain_snapshot_dump_xml_args;
-    remote_domain_snapshot_num_args val_remote_domain_snapshot_num_args;
-    remote_domain_snapshot_list_names_args val_remote_domain_snapshot_list_names_args;
-    remote_domain_snapshot_lookup_by_name_args val_remote_domain_snapshot_lookup_by_name_args;
-    remote_domain_has_current_snapshot_args val_remote_domain_has_current_snapshot_args;
-    remote_domain_snapshot_current_args val_remote_domain_snapshot_current_args;
-    remote_domain_revert_to_snapshot_args val_remote_domain_revert_to_snapshot_args;
-    remote_domain_snapshot_delete_args val_remote_domain_snapshot_delete_args;
-    remote_domain_get_block_info_args val_remote_domain_get_block_info_args;
-    remote_domain_create_with_flags_args val_remote_domain_create_with_flags_args;
-    remote_domain_set_memory_parameters_args val_remote_domain_set_memory_parameters_args;
-    remote_domain_get_memory_parameters_args val_remote_domain_get_memory_parameters_args;
-    remote_domain_set_vcpus_flags_args val_remote_domain_set_vcpus_flags_args;
-    remote_domain_get_vcpus_flags_args val_remote_domain_get_vcpus_flags_args;
-    remote_domain_open_console_args val_remote_domain_open_console_args;
-    remote_domain_is_updated_args val_remote_domain_is_updated_args;
-    remote_get_sysinfo_args val_remote_get_sysinfo_args;
-    remote_domain_set_memory_flags_args val_remote_domain_set_memory_flags_args;
-    remote_domain_set_blkio_parameters_args val_remote_domain_set_blkio_parameters_args;
-    remote_domain_get_blkio_parameters_args val_remote_domain_get_blkio_parameters_args;
-    remote_domain_migrate_set_max_speed_args val_remote_domain_migrate_set_max_speed_args;
-    remote_storage_vol_upload_args val_remote_storage_vol_upload_args;
-    remote_storage_vol_download_args val_remote_storage_vol_download_args;

daemon/remote_dispatch_ret.h

@@ -1,142 +0,0 @@
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-    remote_get_type_ret val_remote_get_type_ret;
-    remote_get_version_ret val_remote_get_version_ret;
-    remote_get_max_vcpus_ret val_remote_get_max_vcpus_ret;
-    remote_node_get_info_ret val_remote_node_get_info_ret;
-    remote_get_capabilities_ret val_remote_get_capabilities_ret;
-    remote_domain_create_xml_ret val_remote_domain_create_xml_ret;
-    remote_domain_define_xml_ret val_remote_domain_define_xml_ret;
-    remote_domain_dump_xml_ret val_remote_domain_dump_xml_ret;
-    remote_domain_get_autostart_ret val_remote_domain_get_autostart_ret;
-    remote_domain_get_info_ret val_remote_domain_get_info_ret;
-    remote_domain_get_max_memory_ret val_remote_domain_get_max_memory_ret;
-    remote_domain_get_max_vcpus_ret val_remote_domain_get_max_vcpus_ret;
-    remote_domain_get_os_type_ret val_remote_domain_get_os_type_ret;
-    remote_domain_get_vcpus_ret val_remote_domain_get_vcpus_ret;
-    remote_list_defined_domains_ret val_remote_list_defined_domains_ret;
-    remote_domain_lookup_by_id_ret val_remote_domain_lookup_by_id_ret;
-    remote_domain_lookup_by_name_ret val_remote_domain_lookup_by_name_ret;
-    remote_domain_lookup_by_uuid_ret val_remote_domain_lookup_by_uuid_ret;
-    remote_num_of_defined_domains_ret val_remote_num_of_defined_domains_ret;
-    remote_list_defined_networks_ret val_remote_list_defined_networks_ret;
-    remote_list_domains_ret val_remote_list_domains_ret;
-    remote_list_networks_ret val_remote_list_networks_ret;
-    remote_network_create_xml_ret val_remote_network_create_xml_ret;
-    remote_network_define_xml_ret val_remote_network_define_xml_ret;
-    remote_network_dump_xml_ret val_remote_network_dump_xml_ret;
-    remote_network_get_autostart_ret val_remote_network_get_autostart_ret;
-    remote_network_get_bridge_name_ret val_remote_network_get_bridge_name_ret;
-    remote_network_lookup_by_name_ret val_remote_network_lookup_by_name_ret;
-    remote_network_lookup_by_uuid_ret val_remote_network_lookup_by_uuid_ret;
-    remote_num_of_defined_networks_ret val_remote_num_of_defined_networks_ret;
-    remote_num_of_domains_ret val_remote_num_of_domains_ret;
-    remote_num_of_networks_ret val_remote_num_of_networks_ret;
-    remote_domain_get_scheduler_type_ret val_remote_domain_get_scheduler_type_ret;
-    remote_domain_get_scheduler_parameters_ret val_remote_domain_get_scheduler_parameters_ret;
-    remote_get_hostname_ret val_remote_get_hostname_ret;
-    remote_supports_feature_ret val_remote_supports_feature_ret;
-    remote_domain_migrate_prepare_ret val_remote_domain_migrate_prepare_ret;
-    remote_domain_migrate_finish_ret val_remote_domain_migrate_finish_ret;
-    remote_domain_block_stats_ret val_remote_domain_block_stats_ret;
-    remote_domain_interface_stats_ret val_remote_domain_interface_stats_ret;
-    remote_auth_list_ret val_remote_auth_list_ret;
-    remote_auth_sasl_init_ret val_remote_auth_sasl_init_ret;
-    remote_auth_sasl_start_ret val_remote_auth_sasl_start_ret;
-    remote_auth_sasl_step_ret val_remote_auth_sasl_step_ret;
-    remote_auth_polkit_ret val_remote_auth_polkit_ret;
-    remote_num_of_storage_pools_ret val_remote_num_of_storage_pools_ret;
-    remote_list_storage_pools_ret val_remote_list_storage_pools_ret;
-    remote_num_of_defined_storage_pools_ret val_remote_num_of_defined_storage_pools_ret;
-    remote_list_defined_storage_pools_ret val_remote_list_defined_storage_pools_ret;
-    remote_find_storage_pool_sources_ret val_remote_find_storage_pool_sources_ret;
-    remote_storage_pool_create_xml_ret val_remote_storage_pool_create_xml_ret;
-    remote_storage_pool_define_xml_ret val_remote_storage_pool_define_xml_ret;
-    remote_storage_pool_lookup_by_name_ret val_remote_storage_pool_lookup_by_name_ret;
-    remote_storage_pool_lookup_by_uuid_ret val_remote_storage_pool_lookup_by_uuid_ret;
-    remote_storage_pool_lookup_by_volume_ret val_remote_storage_pool_lookup_by_volume_ret;
-    remote_storage_pool_get_info_ret val_remote_storage_pool_get_info_ret;
-    remote_storage_pool_dump_xml_ret val_remote_storage_pool_dump_xml_ret;
-    remote_storage_pool_get_autostart_ret val_remote_storage_pool_get_autostart_ret;
-    remote_storage_pool_num_of_volumes_ret val_remote_storage_pool_num_of_volumes_ret;
-    remote_storage_pool_list_volumes_ret val_remote_storage_pool_list_volumes_ret;
-    remote_storage_vol_create_xml_ret val_remote_storage_vol_create_xml_ret;
-    remote_storage_vol_lookup_by_name_ret val_remote_storage_vol_lookup_by_name_ret;
-    remote_storage_vol_lookup_by_key_ret val_remote_storage_vol_lookup_by_key_ret;
-    remote_storage_vol_lookup_by_path_ret val_remote_storage_vol_lookup_by_path_ret;
-    remote_storage_vol_get_info_ret val_remote_storage_vol_get_info_ret;
-    remote_storage_vol_dump_xml_ret val_remote_storage_vol_dump_xml_ret;
-    remote_storage_vol_get_path_ret val_remote_storage_vol_get_path_ret;
-    remote_node_get_cells_free_memory_ret val_remote_node_get_cells_free_memory_ret;
-    remote_node_get_free_memory_ret val_remote_node_get_free_memory_ret;
-    remote_domain_block_peek_ret val_remote_domain_block_peek_ret;
-    remote_domain_memory_peek_ret val_remote_domain_memory_peek_ret;
-    remote_domain_events_register_ret val_remote_domain_events_register_ret;
-    remote_domain_events_deregister_ret val_remote_domain_events_deregister_ret;
-    remote_domain_migrate_prepare2_ret val_remote_domain_migrate_prepare2_ret;
-    remote_domain_migrate_finish2_ret val_remote_domain_migrate_finish2_ret;
-    remote_get_uri_ret val_remote_get_uri_ret;
-    remote_node_num_of_devices_ret val_remote_node_num_of_devices_ret;
-    remote_node_list_devices_ret val_remote_node_list_devices_ret;
-    remote_node_device_lookup_by_name_ret val_remote_node_device_lookup_by_name_ret;
-    remote_node_device_dump_xml_ret val_remote_node_device_dump_xml_ret;
-    remote_node_device_get_parent_ret val_remote_node_device_get_parent_ret;
-    remote_node_device_num_of_caps_ret val_remote_node_device_num_of_caps_ret;
-    remote_node_device_list_caps_ret val_remote_node_device_list_caps_ret;
-    remote_domain_get_security_label_ret val_remote_domain_get_security_label_ret;
-    remote_node_get_security_model_ret val_remote_node_get_security_model_ret;
-    remote_node_device_create_xml_ret val_remote_node_device_create_xml_ret;
-    remote_storage_vol_create_xml_from_ret val_remote_storage_vol_create_xml_from_ret;
-    remote_num_of_interfaces_ret val_remote_num_of_interfaces_ret;
-    remote_list_interfaces_ret val_remote_list_interfaces_ret;
-    remote_interface_lookup_by_name_ret val_remote_interface_lookup_by_name_ret;
-    remote_interface_lookup_by_mac_string_ret val_remote_interface_lookup_by_mac_string_ret;
-    remote_interface_get_xml_desc_ret val_remote_interface_get_xml_desc_ret;
-    remote_interface_define_xml_ret val_remote_interface_define_xml_ret;
-    remote_domain_xml_from_native_ret val_remote_domain_xml_from_native_ret;
-    remote_domain_xml_to_native_ret val_remote_domain_xml_to_native_ret;
-    remote_num_of_defined_interfaces_ret val_remote_num_of_defined_interfaces_ret;
-    remote_list_defined_interfaces_ret val_remote_list_defined_interfaces_ret;
-    remote_num_of_secrets_ret val_remote_num_of_secrets_ret;
-    remote_list_secrets_ret val_remote_list_secrets_ret;
-    remote_secret_lookup_by_uuid_ret val_remote_secret_lookup_by_uuid_ret;
-    remote_secret_define_xml_ret val_remote_secret_define_xml_ret;
-    remote_secret_get_xml_desc_ret val_remote_secret_get_xml_desc_ret;
-    remote_secret_get_value_ret val_remote_secret_get_value_ret;
-    remote_secret_lookup_by_usage_ret val_remote_secret_lookup_by_usage_ret;
-    remote_is_secure_ret val_remote_is_secure_ret;
-    remote_domain_is_active_ret val_remote_domain_is_active_ret;
-    remote_domain_is_persistent_ret val_remote_domain_is_persistent_ret;
-    remote_network_is_active_ret val_remote_network_is_active_ret;
-    remote_network_is_persistent_ret val_remote_network_is_persistent_ret;
-    remote_storage_pool_is_active_ret val_remote_storage_pool_is_active_ret;
-    remote_storage_pool_is_persistent_ret val_remote_storage_pool_is_persistent_ret;
-    remote_interface_is_active_ret val_remote_interface_is_active_ret;
-    remote_get_lib_version_ret val_remote_get_lib_version_ret;
-    remote_cpu_compare_ret val_remote_cpu_compare_ret;
-    remote_domain_memory_stats_ret val_remote_domain_memory_stats_ret;
-    remote_cpu_baseline_ret val_remote_cpu_baseline_ret;
-    remote_domain_get_job_info_ret val_remote_domain_get_job_info_ret;
-    remote_nwfilter_lookup_by_name_ret val_remote_nwfilter_lookup_by_name_ret;
-    remote_nwfilter_lookup_by_uuid_ret val_remote_nwfilter_lookup_by_uuid_ret;
-    remote_nwfilter_get_xml_desc_ret val_remote_nwfilter_get_xml_desc_ret;
-    remote_num_of_nwfilters_ret val_remote_num_of_nwfilters_ret;
-    remote_list_nwfilters_ret val_remote_list_nwfilters_ret;
-    remote_nwfilter_define_xml_ret val_remote_nwfilter_define_xml_ret;
-    remote_domain_has_managed_save_image_ret val_remote_domain_has_managed_save_image_ret;
-    remote_domain_snapshot_create_xml_ret val_remote_domain_snapshot_create_xml_ret;
-    remote_domain_snapshot_dump_xml_ret val_remote_domain_snapshot_dump_xml_ret;
-    remote_domain_snapshot_num_ret val_remote_domain_snapshot_num_ret;
-    remote_domain_snapshot_list_names_ret val_remote_domain_snapshot_list_names_ret;
-    remote_domain_snapshot_lookup_by_name_ret val_remote_domain_snapshot_lookup_by_name_ret;
-    remote_domain_has_current_snapshot_ret val_remote_domain_has_current_snapshot_ret;
-    remote_domain_snapshot_current_ret val_remote_domain_snapshot_current_ret;
-    remote_domain_get_block_info_ret val_remote_domain_get_block_info_ret;
-    remote_domain_create_with_flags_ret val_remote_domain_create_with_flags_ret;
-    remote_domain_get_memory_parameters_ret val_remote_domain_get_memory_parameters_ret;
-    remote_domain_get_vcpus_flags_ret val_remote_domain_get_vcpus_flags_ret;
-    remote_domain_is_updated_ret val_remote_domain_is_updated_ret;
-    remote_get_sysinfo_ret val_remote_get_sysinfo_ret;
-    remote_domain_get_blkio_parameters_ret val_remote_domain_get_blkio_parameters_ret;

daemon/remote_generate_stubs.pl

@@ -1,195 +0,0 @@
-#!/usr/bin/perl -w
-#
-# This script parses remote_protocol.x or qemu_protocol.x and produces lots of
-# boilerplate code for both ends of the remote connection.
-#
-# The first non-option argument specifies the prefix to be searched for, and
-# output to, the boilerplate code.  The second non-option argument is the
-# file you want to operate on.  For instance, to generate the dispatch table
-# for both remote_protocol.x and qemu_protocol.x, you would run the
-# following:
-#
-# remote_generate_stubs.pl -c -t remote ../src/remote/remote_protocol.x
-# remote_generate_stubs.pl -t qemu ../src/remote/qemu_protocol.x
-#
-# By Richard Jones <rjones@redhat.com>
-
-use strict;
-
-use Getopt::Std;
-
-# Command line options.
-our ($opt_p, $opt_t, $opt_a, $opt_r, $opt_d, $opt_c);
-getopts ('ptardc');
-
-my $structprefix = $ARGV[0];
-my $procprefix = uc $structprefix;
-shift;
-
-# Convert name_of_call to NameOfCall.
-sub name_to_ProcName {
-    my $name = shift;
-    my @elems = split /_/, $name;
-    @elems = map ucfirst, @elems;
-    join "", @elems
-}
-
-# Read the input file (usually remote_protocol.x) and form an
-# opinion about the name, args and return type of each RPC.
-my ($name, $ProcName, $id, %calls, @calls);
-
-# only generate a close method if -c was passed
-if ($opt_c) {
-    # REMOTE_PROC_CLOSE has no args or ret.
-    $calls{close} = {
-	name => "close",
-	ProcName => "Close",
-	UC_NAME => "CLOSE",
-	args => "void",
-	ret => "void",
-    };
-}
-
-while (<>) {
-    if (/^struct ${structprefix}_(.*)_args/) {
-	$name = $1;
-	$ProcName = name_to_ProcName ($name);
-
-	die "duplicate definition of ${structprefix}_${name}_args"
-	    if exists $calls{$name};
-
-	$calls{$name} = {
-	    name => $name,
-	    ProcName => $ProcName,
-	    UC_NAME => uc $name,
-	    args => "${structprefix}_${name}_args",
-	    ret => "void",
-	};
-
-    } elsif (/^struct ${structprefix}_(.*)_ret/) {
-	$name = $1;
-	$ProcName = name_to_ProcName ($name);
-
-	if (exists $calls{$name}) {
-	    $calls{$name}->{ret} = "${structprefix}_${name}_ret";
-	} else {
-	    $calls{$name} = {
-		name => $name,
-		ProcName => $ProcName,
-		UC_NAME => uc $name,
-		args => "void",
-		ret => "${structprefix}_${name}_ret"
-	    }
-	}
-    } elsif (/^struct ${structprefix}_(.*)_msg/) {
-	$name = $1;
-	$ProcName = name_to_ProcName ($name);
-
-	$calls{$name} = {
-	    name => $name,
-	    ProcName => $ProcName,
-	    UC_NAME => uc $name,
-	    msg => "${structprefix}_${name}_msg"
-	}
-    } elsif (/^\s*${procprefix}_PROC_(.*?)\s+=\s+(\d+),?$/) {
-	$name = lc $1;
-	$id = $2;
-	$ProcName = name_to_ProcName ($name);
-
-	$calls[$id] = $calls{$name};
-    }
-}
-
-#----------------------------------------------------------------------
-# Output
-
-print <<__EOF__;
-/* Automatically generated by remote_generate_stubs.pl.
- * Do not edit this file.  Any changes you make will be lost.
- */
-
-__EOF__
-
-# Debugging.
-if ($opt_d) {
-    my @keys = sort (keys %calls);
-    foreach (@keys) {
-	print "$_:\n";
-	print "        name $calls{$_}->{name} ($calls{$_}->{ProcName})\n";
-	print "        $calls{$_}->{args} -> $calls{$_}->{ret}\n";
-    }
-}
-
-# Prototypes for dispatch functions ("remote_dispatch_prototypes.h").
-elsif ($opt_p) {
-    my @keys = sort (keys %calls);
-    foreach (@keys) {
-	# Skip things which are REMOTE_MESSAGE
-	next if $calls{$_}->{msg};
-
-	print "static int ${structprefix}Dispatch$calls{$_}->{ProcName}(\n";
-	print "    struct qemud_server *server,\n";
-	print "    struct qemud_client *client,\n";
-	print "    virConnectPtr conn,\n";
-	print "    remote_message_header *hdr,\n";
-	print "    remote_error *err,\n";
-	print "    $calls{$_}->{args} *args,\n";
-	print "    $calls{$_}->{ret} *ret);\n";
-    }
-}
-
-# Union of all arg types
-# ("remote_dispatch_args.h").
-elsif ($opt_a) {
-    for ($id = 0 ; $id <= $#calls ; $id++) {
-	if (defined $calls[$id] &&
-	    !$calls[$id]->{msg} &&
-	    $calls[$id]->{args} ne "void") {
-	    print "    $calls[$id]->{args} val_$calls[$id]->{args};\n";
-	}
-    }
-}
-
-# Union of all arg types
-# ("remote_dispatch_ret.h").
-elsif ($opt_r) {
-    for ($id = 0 ; $id <= $#calls ; $id++) {
-	if (defined $calls[$id] &&
-	    !$calls[$id]->{msg} &&
-	    $calls[$id]->{ret} ne "void") {
-	    print "    $calls[$id]->{ret} val_$calls[$id]->{ret};\n";
-	}
-    }
-}
-
-# Inside the switch statement, prepare the 'fn', 'args_filter', etc
-# ("remote_dispatch_table.h").
-elsif ($opt_t) {
-    for ($id = 0 ; $id <= $#calls ; $id++) {
-	if (defined $calls[$id] && !$calls[$id]->{msg}) {
-	    print "{   /* $calls[$id]->{ProcName} => $id */\n";
-	    print "    .fn = (dispatch_fn) ${structprefix}Dispatch$calls[$id]->{ProcName},\n";
-	    if ($calls[$id]->{args} ne "void") {
-		print "    .args_filter = (xdrproc_t) xdr_$calls[$id]->{args},\n";
-	    } else {
-		print "    .args_filter = (xdrproc_t) xdr_void,\n";
-	    }
-	    if ($calls[$id]->{ret} ne "void") {
-		print "    .ret_filter = (xdrproc_t) xdr_$calls[$id]->{ret},\n";
-	    } else {
-		print "    .ret_filter = (xdrproc_t) xdr_void,\n";
-	    }
-	    print "},\n";
-	} else {
-	    if ($calls[$id]->{msg}) {
-		print "{   /* Async event $calls[$id]->{ProcName} => $id */\n";
-	    } else {
-		print "{   /* (unused) => $id */\n";
-	    }
-	    print "    .fn = NULL,\n";
-	    print "    .args_filter = (xdrproc_t) xdr_void,\n";
-	    print "    .ret_filter = (xdrproc_t) xdr_void,\n";
-	    print "},\n";
-	}
-    }
-}

daemon/stream.c

@@ -24,29 +24,58 @@
 #include <config.h>
 
 #include "stream.h"
+#include "remote.h"
 #include "memory.h"
-#include "dispatch.h"
 #include "logging.h"
+#include "virnetserverclient.h"
+#include "virterror_internal.h"
+
+#define VIR_FROM_THIS VIR_FROM_STREAMS
+
+#define virNetError(code, ...)                                    \
+    virReportErrorHelper(VIR_FROM_THIS, code, __FILE__,           \
+                         __FUNCTION__, __LINE__, __VA_ARGS__)
+
+struct daemonClientStream {
+    daemonClientPrivatePtr priv;
+    int refs;
+
+    virNetServerProgramPtr prog;
+
+    virStreamPtr st;
+    int procedure;
+    int serial;
+
+    unsigned int recvEOF : 1;
+    unsigned int closed : 1;
+
+    int filterID;
+
+    virNetMessagePtr rx;
+    int tx;
+
+    daemonClientStreamPtr next;
+};
 
 static int
-remoteStreamHandleWrite(struct qemud_client *client,
-                        struct qemud_client_stream *stream);
+daemonStreamHandleWrite(virNetServerClientPtr client,
+                        daemonClientStream *stream);
 static int
-remoteStreamHandleRead(struct qemud_client *client,
-                       struct qemud_client_stream *stream);
+daemonStreamHandleRead(virNetServerClientPtr client,
+                       daemonClientStream *stream);
 static int
-remoteStreamHandleFinish(struct qemud_client *client,
-                         struct qemud_client_stream *stream,
-                         struct qemud_client_message *msg);
+daemonStreamHandleFinish(virNetServerClientPtr client,
+                         daemonClientStream *stream,
+                         virNetMessagePtr msg);
 static int
-remoteStreamHandleAbort(struct qemud_client *client,
-                        struct qemud_client_stream *stream,
-                        struct qemud_client_message *msg);
+daemonStreamHandleAbort(virNetServerClientPtr client,
+                        daemonClientStream *stream,
+                        virNetMessagePtr msg);
 
 
 
 static void
-remoteStreamUpdateEvents(struct qemud_client_stream *stream)
+daemonStreamUpdateEvents(daemonClientStream *stream)
 {
     int newEvents = 0;
     if (stream->rx)
@@ -57,24 +86,54 @@ remoteStreamUpdateEvents(struct qemud_client_stream *stream)
     virStreamEventUpdateCallback(stream->st, newEvents);
 }
 
+/*
+ * Invoked when an outgoing data packet message has been fully sent.
+ * This simply re-enables TX of further data.
+ *
+ * The idea is to stop the daemon growing without bound due to
+ * fast stream, but slow client
+ */
+static void
+daemonStreamMessageFinished(virNetMessagePtr msg,
+                            void *opaque)
+{
+    daemonClientStream *stream = opaque;
+    VIR_DEBUG("stream=%p proc=%d serial=%d",
+              stream, msg->header.proc, msg->header.serial);
+
+    stream->tx = 1;
+    daemonStreamUpdateEvents(stream);
+
+    daemonFreeClientStream(NULL, stream);
+}
+
+
+static void
+daemonStreamEventFreeFunc(void *opaque)
+{
+    virNetServerClientPtr client = opaque;
+
+    virNetServerClientFree(client);
+}
 
 /*
  * Callback that gets invoked when a stream becomes writable/readable
  */
 static void
-remoteStreamEvent(virStreamPtr st, int events, void *opaque)
+daemonStreamEvent(virStreamPtr st, int events, void *opaque)
 {
-    struct qemud_client *client = opaque;
-    struct qemud_client_stream *stream;
+    virNetServerClientPtr client = opaque;
+    daemonClientStream *stream;
+    daemonClientPrivatePtr priv = virNetServerClientGetPrivateData(client);
 
-    /* XXX sub-optimal - we really should be taking the server lock
-     * first, but we have no handle to the server object
-     * We're lucky to get away with it for now, due to this callback
-     * executing in the main thread, but this should really be fixed
-     */
-    virMutexLock(&client->lock);
+    virMutexLock(&priv->lock);
 
-    stream = remoteFindClientStream(client, st);
+    stream = priv->streams;
+    while (stream) {
+        if (stream->st == st)
+            break;
+        stream = stream->next;
+    }
 
     if (!stream) {
         VIR_WARN("event for client=%p stream st=%p, but missing stream state", client, st);
@@ -82,12 +141,12 @@ remoteStreamEvent(virStreamPtr st, int events, void *opaque)
         goto cleanup;
     }
 
-    VIR_DEBUG("st=%p events=%d", st, events);
+    VIR_DEBUG("st=%p events=%d EOF=%d closed=%d", st, events, stream->recvEOF, stream->closed);
 
     if (events & VIR_STREAM_EVENT_WRITABLE) {
-        if (remoteStreamHandleWrite(client, stream) < 0) {
-            remoteRemoveClientStream(client, stream);
-            qemudDispatchClientFailure(client);
+        if (daemonStreamHandleWrite(client, stream) < 0) {
+            daemonRemoveClientStream(client, stream);
+            virNetServerClientClose(client);
             goto cleanup;
         }
     }
@@ -95,40 +154,84 @@ remoteStreamEvent(virStreamPtr st, int events, void *opaque)
     if (!stream->recvEOF &&
         (events & (VIR_STREAM_EVENT_READABLE | VIR_STREAM_EVENT_HANGUP))) {
         events = events & ~(VIR_STREAM_EVENT_READABLE | VIR_STREAM_EVENT_HANGUP);
-        if (remoteStreamHandleRead(client, stream) < 0) {
-            remoteRemoveClientStream(client, stream);
-            qemudDispatchClientFailure(client);
+        if (daemonStreamHandleRead(client, stream) < 0) {
+            daemonRemoveClientStream(client, stream);
+            virNetServerClientClose(client);
             goto cleanup;
         }
     }
 
+    /* If we have a completion/abort message, always process it */
+    if (stream->rx) {
+        virNetMessagePtr msg = stream->rx;
+        switch (msg->header.status) {
+        case VIR_NET_CONTINUE:
+            /* nada */
+            break;
+        case VIR_NET_OK:
+            virNetMessageQueueServe(&stream->rx);
+            if (daemonStreamHandleFinish(client, stream, msg) < 0) {
+                virNetMessageFree(msg);
+                daemonRemoveClientStream(client, stream);
+                virNetServerClientClose(client);
+                goto cleanup;
+            }
+            break;
+        case VIR_NET_ERROR:
+        default:
+            virNetMessageQueueServe(&stream->rx);
+            if (daemonStreamHandleAbort(client, stream, msg) < 0) {
+                virNetMessageFree(msg);
+                daemonRemoveClientStream(client, stream);
+                virNetServerClientClose(client);
+                goto cleanup;
+            }
+            break;
+        }
+    }
+
     if (!stream->closed &&
         (events & (VIR_STREAM_EVENT_ERROR | VIR_STREAM_EVENT_HANGUP))) {
         int ret;
-        remote_error rerr;
-        memset(&rerr, 0, sizeof rerr);
+        virNetMessagePtr msg;
+        virNetMessageError rerr;
+
+        memset(&rerr, 0, sizeof(rerr));
         stream->closed = 1;
         virStreamEventRemoveCallback(stream->st);
         virStreamAbort(stream->st);
         if (events & VIR_STREAM_EVENT_HANGUP)
-            remoteDispatchFormatError(&rerr, "%s", _("stream had unexpected termination"));
+            virNetError(VIR_ERR_RPC,
+                        "%s", _("stream had unexpected termination"));
         else
-            remoteDispatchFormatError(&rerr, "%s", _("stream had I/O failure"));
-        ret = remoteSerializeStreamError(client, &rerr, stream->procedure, stream->serial);
-        remoteRemoveClientStream(client, stream);
+            virNetError(VIR_ERR_RPC,
+                        "%s", _("stream had I/O failure"));
+
+        msg = virNetMessageNew(false);
+        if (!msg) {
+            ret = -1;
+        } else {
+            ret = virNetServerProgramSendStreamError(remoteProgram,
+                                                     client,
+                                                     msg,
+                                                     &rerr,
+                                                     stream->procedure,
+                                                     stream->serial);
+        }
+        daemonRemoveClientStream(client, stream);
         if (ret < 0)
-            qemudDispatchClientFailure(client);
+            virNetServerClientClose(client);
         goto cleanup;
     }
 
     if (stream->closed) {
-        remoteRemoveClientStream(client, stream);
+        daemonRemoveClientStream(client, stream);
     } else {
-        remoteStreamUpdateEvents(stream);
+        daemonStreamUpdateEvents(stream);
     }
 
 cleanup:
-    virMutexUnlock(&client->lock);
+    virMutexUnlock(&priv->lock);
 }
 
 
@@ -141,88 +244,73 @@ cleanup:
  * -1 on fatal client error
  */
 static int
-remoteStreamFilter(struct qemud_client *client,
-                   struct qemud_client_message *msg, void *opaque)
+daemonStreamFilter(virNetServerClientPtr client,
+                   virNetMessagePtr msg,
+                   void *opaque)
 {
-    struct qemud_client_stream *stream = opaque;
+    daemonClientStream *stream = opaque;
+    int ret = 0;
 
-    if (msg->hdr.serial == stream->serial &&
-        msg->hdr.proc == stream->procedure &&
-        msg->hdr.type == REMOTE_STREAM) {
-        VIR_DEBUG("Incoming rx=%p serial=%d proc=%d status=%d",
-              stream->rx, msg->hdr.proc, msg->hdr.serial, msg->hdr.status);
+    virMutexLock(&stream->priv->lock);
 
-        /* If there are queued packets, we need to queue all further
-         * messages, since they must be processed strictly in order.
-         * If there are no queued packets, then OK/ERROR messages
-         * should be processed immediately. Data packets are still
-         * queued to only be processed when the stream is marked as
-         * writable.
-         */
-        if (stream->rx) {
-            qemudClientMessageQueuePush(&stream->rx, msg);
-            remoteStreamUpdateEvents(stream);
-        } else {
-            int ret = 0;
-            switch (msg->hdr.status) {
-            case REMOTE_OK:
-                ret = remoteStreamHandleFinish(client, stream, msg);
-                if (ret == 0)
-                    qemudClientMessageRelease(client, msg);
-                break;
+    if (msg->header.type != VIR_NET_STREAM)
+        goto cleanup;
 
-            case REMOTE_CONTINUE:
-                qemudClientMessageQueuePush(&stream->rx, msg);
-                remoteStreamUpdateEvents(stream);
-                break;
+    if (!virNetServerProgramMatches(stream->prog, msg))
+        goto cleanup;
 
-            case REMOTE_ERROR:
-            default:
-                ret = remoteStreamHandleAbort(client, stream, msg);
-                if (ret == 0)
-                    qemudClientMessageRelease(client, msg);
-                break;
-            }
+    if (msg->header.proc != stream->procedure ||
+        msg->header.serial != stream->serial)
+        goto cleanup;
 
-            if (ret < 0)
-                return -1;
-        }
-        return 1;
-    }
-    return 0;
+    VIR_DEBUG("Incoming client=%p, rx=%p, serial=%d, proc=%d, status=%d",
+              client, stream->rx, msg->header.proc,
+              msg->header.serial, msg->header.status);
+
+    virNetMessageQueuePush(&stream->rx, msg);
+    daemonStreamUpdateEvents(stream);
+    ret = 1;
+
+cleanup:
+    virMutexUnlock(&stream->priv->lock);
+    return ret;
 }
 
 
 /*
  * @conn: a connection object to associate the stream with
- * @hdr: the method call to associate with the stram
+ * @header: the method call to associate with the stream
  *
  * Creates a new stream for this conn
  *
  * Returns a new stream object, or NULL upon OOM
  */
-struct qemud_client_stream *
-remoteCreateClientStream(virConnectPtr conn,
-                         remote_message_header *hdr)
+daemonClientStream *
+daemonCreateClientStream(virNetServerClientPtr client,
+                         virStreamPtr st,
+                         virNetServerProgramPtr prog,
+                         virNetMessageHeaderPtr header)
 {
-    struct qemud_client_stream *stream;
+    daemonClientStream *stream;
+    daemonClientPrivatePtr priv = virNetServerClientGetPrivateData(client);
 
-    VIR_DEBUG("proc=%d serial=%d", hdr->proc, hdr->serial);
+    VIR_DEBUG("client=%p, proc=%d, serial=%d, st=%p",
+              client, header->proc, header->serial, st);
 
-    if (VIR_ALLOC(stream) < 0)
-        return NULL;
-
-    stream->procedure = hdr->proc;
-    stream->serial = hdr->serial;
-
-    stream->st = virStreamNew(conn, VIR_STREAM_NONBLOCK);
-    if (!stream->st) {
-        VIR_FREE(stream);
+    if (VIR_ALLOC(stream) < 0) {
+        virReportOOMError();
         return NULL;
     }
 
-    stream->filter.query = remoteStreamFilter;
-    stream->filter.opaque = stream;
+    stream->refs = 1;
+    stream->priv = priv;
+    stream->prog = prog;
+    stream->procedure = header->proc;
+    stream->serial = header->serial;
+    stream->filterID = -1;
+    stream->st = st;
+
+    virNetServerProgramRef(prog);
 
     return stream;
 }
@@ -233,25 +321,46 @@ remoteCreateClientStream(virConnectPtr conn,
  * Frees the memory associated with this inactive client
  * stream
  */
-void remoteFreeClientStream(struct qemud_client *client,
-                            struct qemud_client_stream *stream)
+int daemonFreeClientStream(virNetServerClientPtr client,
+                           daemonClientStream *stream)
 {
-    struct qemud_client_message *msg;
+    virNetMessagePtr msg;
+    int ret = 0;
 
     if (!stream)
-        return;
+        return 0;
 
-    VIR_DEBUG("proc=%d serial=%d", stream->procedure, stream->serial);
+    stream->refs--;
+    if (stream->refs)
+        return 0;
+
+    VIR_DEBUG("client=%p, proc=%d, serial=%d",
+              client, stream->procedure, stream->serial);
+
+    virNetServerProgramFree(stream->prog);
 
     msg = stream->rx;
     while (msg) {
-        struct qemud_client_message *tmp = msg->next;
-        qemudClientMessageRelease(client, msg);
+        virNetMessagePtr tmp = msg->next;
+        if (client) {
+            /* Send a dummy reply to free up 'msg' & unblock client rx */
+            virNetMessageClear(msg);
+            msg->header.type = VIR_NET_REPLY;
+            if (virNetServerClientSendMessage(client, msg) < 0) {
+                virNetServerClientImmediateClose(client);
+                virNetMessageFree(msg);
+                ret = -1;
+            }
+        } else {
+            virNetMessageFree(msg);
+        }
         msg = tmp;
     }
 
     virStreamFree(stream->st);
     VIR_FREE(stream);
+
+    return ret;
 }
 
 
@@ -259,63 +368,47 @@ void remoteFreeClientStream(struct qemud_client *client,
  * @client: a locked client to add the stream to
  * @stream: a stream to add
  */
-int remoteAddClientStream(struct qemud_client *client,
-                          struct qemud_client_stream *stream,
-                          int transmit)
+int daemonAddClientStream(virNetServerClientPtr client,
+                          daemonClientStream *stream,
+                          bool transmit)
 {
-    struct qemud_client_stream *tmp = client->streams;
+    VIR_DEBUG("client=%p, proc=%d, serial=%d, st=%p, transmit=%d",
+              client, stream->procedure, stream->serial, stream->st, transmit);
+    daemonClientPrivatePtr priv = virNetServerClientGetPrivateData(client);
 
-    VIR_DEBUG("client=%p proc=%d serial=%d", client, stream->procedure, stream->serial);
-
-    if (virStreamEventAddCallback(stream->st, 0,
-                                  remoteStreamEvent, client, NULL) < 0)
+    if (stream->filterID != -1) {
+        VIR_WARN("Filter already added to client %p", client);
         return -1;
-
-    if (tmp) {
-        while (tmp->next)
-            tmp = tmp->next;
-        tmp->next = stream;
-    } else {
-        client->streams = stream;
     }
 
-    stream->filter.next = client->filters;
-    client->filters = &stream->filter;
+    if (virStreamEventAddCallback(stream->st, 0,
+                                  daemonStreamEvent, client,
+                                  daemonStreamEventFreeFunc) < 0)
+        return -1;
+
+    virNetServerClientRef(client);
+    if ((stream->filterID = virNetServerClientAddFilter(client,
+                                                        daemonStreamFilter,
+                                                        stream)) < 0) {
+        virStreamEventRemoveCallback(stream->st);
+        return -1;
+    }
 
     if (transmit)
         stream->tx = 1;
 
-    remoteStreamUpdateEvents(stream);
+    virMutexLock(&priv->lock);
+    stream->next = priv->streams;
+    priv->streams = stream;
+
+    daemonStreamUpdateEvents(stream);
+
+    virMutexUnlock(&priv->lock);
 
     return 0;
 }
 
 
-/*
- * @client: a locked client object
- * @procedure: procedure associated with the stream
- * @serial: serial number associated with the stream
- *
- * Finds a existing active stream
- *
- * Returns a stream object matching the procedure+serial number, or NULL
- */
-struct qemud_client_stream *
-remoteFindClientStream(struct qemud_client *client,
-                       virStreamPtr st)
-{
-    struct qemud_client_stream *stream = client->streams;
-
-    while (stream) {
-        if (stream->st == st)
-            return stream;
-        stream = stream->next;
-    }
-
-    return NULL;
-}
-
-
 /*
  * @client: a locked client object
  * @stream: an inactive, closed stream object
@@ -325,26 +418,19 @@ remoteFindClientStream(struct qemud_client *client,
  * Returns 0 if the stream was removd, -1 if it doesn't exist
  */
 int
-remoteRemoveClientStream(struct qemud_client *client,
-                         struct qemud_client_stream *stream)
+daemonRemoveClientStream(virNetServerClientPtr client,
+                         daemonClientStream *stream)
 {
-    VIR_DEBUG("client=%p proc=%d serial=%d", client, stream->procedure, stream->serial);
+    VIR_DEBUG("client=%p, proc=%d, serial=%d, st=%p",
+              client, stream->procedure, stream->serial, stream->st);
+    daemonClientPrivatePtr priv = virNetServerClientGetPrivateData(client);
+    daemonClientStream *curr = priv->streams;
+    daemonClientStream *prev = NULL;
 
-    struct qemud_client_stream *curr = client->streams;
-    struct qemud_client_stream *prev = NULL;
-    struct qemud_client_filter *filter = NULL;
-
-    if (client->filters == &stream->filter) {
-        client->filters = client->filters->next;
-    } else {
-        filter = client->filters;
-        while (filter) {
-            if (filter->next == &stream->filter) {
-                filter->next = filter->next->next;
-                break;
-            }
-            filter = filter->next;
-        }
+    if (stream->filterID != -1) {
+        virNetServerClientRemoveFilter(client,
+                                       stream->filterID);
+        stream->filterID = -1;
     }
 
     if (!stream->closed) {
@@ -357,9 +443,8 @@ remoteRemoveClientStream(struct qemud_client *client,
             if (prev)
                 prev->next = curr->next;
             else
-                client->streams = curr->next;
-            remoteFreeClientStream(client, stream);
-            return 0;
+                priv->streams = curr->next;
+            return daemonFreeClientStream(client, stream);
         }
         prev = curr;
         curr = curr->next;
@@ -368,6 +453,28 @@ remoteRemoveClientStream(struct qemud_client *client,
 }
 
 
+void
+daemonRemoveAllClientStreams(daemonClientStream *stream)
+{
+    daemonClientStream *tmp;
+
+    VIR_DEBUG("stream=%p", stream);
+
+    while (stream) {
+        tmp = stream->next;
+
+        if (!stream->closed) {
+            virStreamEventRemoveCallback(stream->st);
+            virStreamAbort(stream->st);
+        }
+
+        daemonFreeClientStream(NULL, stream);
+
+        VIR_DEBUG("next stream=%p", tmp);
+        stream = tmp;
+    }
+}
+
 /*
  * Returns:
  *   -1  if fatal error occurred
@@ -375,17 +482,15 @@ remoteRemoveClientStream(struct qemud_client *client,
  *    1  if message is still being processed
  */
 static int
-remoteStreamHandleWriteData(struct qemud_client *client,
-                            struct qemud_client_stream *stream,
-                            struct qemud_client_message *msg)
+daemonStreamHandleWriteData(virNetServerClientPtr client,
+                            daemonClientStream *stream,
+                            virNetMessagePtr msg)
 {
-    remote_error rerr;
     int ret;
 
-    VIR_DEBUG("stream=%p proc=%d serial=%d len=%d offset=%d",
-          stream, msg->hdr.proc, msg->hdr.serial, msg->bufferLength, msg->bufferOffset);
-
-    memset(&rerr, 0, sizeof rerr);
+    VIR_DEBUG("client=%p, stream=%p, proc=%d, serial=%d, len=%zu, offset=%zu",
+              client, stream, msg->header.proc, msg->header.serial,
+              msg->bufferLength, msg->bufferOffset);
 
     ret = virStreamSend(stream->st,
                         msg->buffer + msg->bufferOffset,
@@ -401,10 +506,17 @@ remoteStreamHandleWriteData(struct qemud_client *client,
         /* Blocking, so indicate we have more todo later */
         return 1;
     } else {
-        VIR_INFO0("Stream send failed");
+        virNetMessageError rerr;
+
+        memset(&rerr, 0, sizeof(rerr));
+
+        VIR_INFO("Stream send failed");
         stream->closed = 1;
-        remoteDispatchConnError(&rerr, client->conn);
-        return remoteSerializeReplyError(client, &rerr, &msg->hdr);
+        return virNetServerProgramSendReplyError(stream->prog,
+                                                 client,
+                                                 msg,
+                                                 &rerr,
+                                                 &msg->header);
     }
 
     return 0;
@@ -414,38 +526,42 @@ remoteStreamHandleWriteData(struct qemud_client *client,
 /*
  * Process an finish handshake from the client.
  *
- * Returns a REMOTE_OK confirmation if successful, or a REMOTE_ERROR
+ * Returns a VIR_NET_OK confirmation if successful, or a VIR_NET_ERROR
  * if there was a stream error
  *
  * Returns 0 if successfully sent RPC reply, -1 upon fatal error
  */
 static int
-remoteStreamHandleFinish(struct qemud_client *client,
-                         struct qemud_client_stream *stream,
-                         struct qemud_client_message *msg)
+daemonStreamHandleFinish(virNetServerClientPtr client,
+                         daemonClientStream *stream,
+                         virNetMessagePtr msg)
 {
-    remote_error rerr;
     int ret;
 
-    VIR_DEBUG("stream=%p proc=%d serial=%d",
-          stream, msg->hdr.proc, msg->hdr.serial);
-
-    memset(&rerr, 0, sizeof rerr);
+    VIR_DEBUG("client=%p, stream=%p, proc=%d, serial=%d",
+              client, stream, msg->header.proc, msg->header.serial);
 
     stream->closed = 1;
     virStreamEventRemoveCallback(stream->st);
     ret = virStreamFinish(stream->st);
 
     if (ret < 0) {
-        remoteDispatchConnError(&rerr, client->conn);
-        return remoteSerializeReplyError(client, &rerr, &msg->hdr);
+        virNetMessageError rerr;
+        memset(&rerr, 0, sizeof(rerr));
+        return virNetServerProgramSendReplyError(stream->prog,
+                                                 client,
+                                                 msg,
+                                                 &rerr,
+                                                 &msg->header);
     } else {
         /* Send zero-length confirm */
-        if (remoteSendStreamData(client, stream, NULL, 0) < 0)
-            return -1;
+        return virNetServerProgramSendStreamData(stream->prog,
+                                                 client,
+                                                 msg,
+                                                 stream->procedure,
+                                                 stream->serial,
+                                                 NULL, 0);
     }
-
-    return 0;
 }
 
 
@@ -455,30 +571,35 @@ remoteStreamHandleFinish(struct qemud_client *client,
  * Returns 0 if successfully aborted, -1 upon error
  */
 static int
-remoteStreamHandleAbort(struct qemud_client *client,
-                        struct qemud_client_stream *stream,
-                        struct qemud_client_message *msg)
+daemonStreamHandleAbort(virNetServerClientPtr client,
+                        daemonClientStream *stream,
+                        virNetMessagePtr msg)
 {
-    remote_error rerr;
+    VIR_DEBUG("client=%p, stream=%p, proc=%d, serial=%d",
+              client, stream, msg->header.proc, msg->header.serial);
+    virNetMessageError rerr;
 
-    VIR_DEBUG("stream=%p proc=%d serial=%d",
-          stream, msg->hdr.proc, msg->hdr.serial);
-
-    memset(&rerr, 0, sizeof rerr);
+    memset(&rerr, 0, sizeof(rerr));
 
     stream->closed = 1;
     virStreamEventRemoveCallback(stream->st);
     virStreamAbort(stream->st);
 
-    if (msg->hdr.status == REMOTE_ERROR)
-        remoteDispatchFormatError(&rerr, "%s", _("stream aborted at client request"));
+    if (msg->header.status == VIR_NET_ERROR)
+        virNetError(VIR_ERR_RPC,
+                    "%s", _("stream aborted at client request"));
     else {
-        VIR_WARN("unexpected stream status %d", msg->hdr.status);
-        remoteDispatchFormatError(&rerr, _("stream aborted with unexpected status %d"),
-                                  msg->hdr.status);
+        VIR_WARN("unexpected stream status %d", msg->header.status);
+        virNetError(VIR_ERR_RPC,
+                    _("stream aborted with unexpected status %d"),
+                    msg->header.status);
     }
 
-    return remoteSerializeReplyError(client, &rerr, &msg->hdr);
+    return virNetServerProgramSendReplyError(remoteProgram,
+                                             client,
+                                             msg,
+                                             &rerr,
+                                             &msg->header);
 }
 
 
@@ -491,41 +612,55 @@ remoteStreamHandleAbort(struct qemud_client *client,
  * Returns 0 on success, or -1 upon fatal error
  */
 static int
-remoteStreamHandleWrite(struct qemud_client *client,
-                        struct qemud_client_stream *stream)
+daemonStreamHandleWrite(virNetServerClientPtr client,
+                        daemonClientStream *stream)
 {
-    struct qemud_client_message *msg, *tmp;
+    VIR_DEBUG("client=%p, stream=%p", client, stream);
 
-    VIR_DEBUG("stream=%p", stream);
-
-    msg = stream->rx;
-    while (msg && !stream->closed) {
+    while (stream->rx && !stream->closed) {
+        virNetMessagePtr msg = stream->rx;
         int ret;
-        switch (msg->hdr.status) {
-        case REMOTE_OK:
-            ret = remoteStreamHandleFinish(client, stream, msg);
+
+        switch (msg->header.status) {
+        case VIR_NET_OK:
+            ret = daemonStreamHandleFinish(client, stream, msg);
             break;
 
-        case REMOTE_CONTINUE:
-            ret = remoteStreamHandleWriteData(client, stream, msg);
+        case VIR_NET_CONTINUE:
+            ret = daemonStreamHandleWriteData(client, stream, msg);
             break;
 
-        case REMOTE_ERROR:
+        case VIR_NET_ERROR:
         default:
-            ret = remoteStreamHandleAbort(client, stream, msg);
+            ret = daemonStreamHandleAbort(client, stream, msg);
             break;
         }
 
-        if (ret == 0)
-            qemudClientMessageQueueServe(&stream->rx);
-        else if (ret < 0)
-            return -1;
-        else
-            break; /* still processing data */
+        if (ret > 0)
+            break;  /* still processing data from msg */
 
-        tmp = msg->next;
-        qemudClientMessageRelease(client, msg);
-        msg = tmp;
+        virNetMessageQueueServe(&stream->rx);
+        if (ret < 0) {
+            virNetMessageFree(msg);
+            virNetServerClientImmediateClose(client);
+            return -1;
+        }
+
+        /* 'CONTINUE' messages don't send a reply (unless error
+         * occurred), so to release the 'msg' object we need to
+         * send a fake zero-length reply. Nothing actually gets
+         * onto the wire, but this causes the client to reset
+         * its active request count / throttling
+         */
+        if (msg->header.status == VIR_NET_CONTINUE) {
+            virNetMessageClear(msg);
+            msg->header.type = VIR_NET_REPLY;
+            if (virNetServerClientSendMessage(client, msg) < 0) {
+                virNetMessageFree(msg);
+                virNetServerClientImmediateClose(client);
+                return -1;
+            }
+        }
     }
 
     return 0;
@@ -544,14 +679,22 @@ remoteStreamHandleWrite(struct qemud_client *client,
  * be killed
  */
 static int
-remoteStreamHandleRead(struct qemud_client *client,
-                       struct qemud_client_stream *stream)
+daemonStreamHandleRead(virNetServerClientPtr client,
+                       daemonClientStream *stream)
 {
     char *buffer;
-    size_t bufferLen = REMOTE_MESSAGE_PAYLOAD_MAX;
+    size_t bufferLen = VIR_NET_MESSAGE_PAYLOAD_MAX;
     int ret;
 
-    VIR_DEBUG("stream=%p", stream);
+    VIR_DEBUG("client=%p, stream=%p tx=%d closed=%d",
+              client, stream, stream->tx, stream->closed);
+
+    /* We might have had an event pending before we shut
+     * down the stream, so if we're marked as closed,
+     * then do nothing
+     */
+    if (stream->closed)
+        return 0;
 
     /* Shouldn't ever be called unless we're marked able to
      * transmit, but doesn't hurt to check */
@@ -567,47 +710,41 @@ remoteStreamHandleRead(struct qemud_client *client,
          * we're readable, but hey things change... */
         ret = 0;
     } else if (ret < 0) {
-        remote_error rerr;
-        memset(&rerr, 0, sizeof rerr);
-        remoteDispatchConnError(&rerr, NULL);
+        virNetMessagePtr msg;
+        virNetMessageError rerr;
 
-        ret = remoteSerializeStreamError(client, &rerr, stream->procedure, stream->serial);
+        memset(&rerr, 0, sizeof(rerr));
+
+        if (!(msg = virNetMessageNew(false)))
+            ret = -1;
+        else
+            ret = virNetServerProgramSendStreamError(remoteProgram,
+                                                     client,
+                                                     msg,
+                                                     &rerr,
+                                                     stream->procedure,
+                                                     stream->serial);
     } else {
+        virNetMessagePtr msg;
         stream->tx = 0;
         if (ret == 0)
             stream->recvEOF = 1;
-        ret = remoteSendStreamData(client, stream, buffer, ret);
+        if (!(msg = virNetMessageNew(false)))
+            ret = -1;
+
+        if (msg) {
+            msg->cb = daemonStreamMessageFinished;
+            msg->opaque = stream;
+            stream->refs++;
+            ret = virNetServerProgramSendStreamData(remoteProgram,
+                                                    client,
+                                                    msg,
+                                                    stream->procedure,
+                                                    stream->serial,
+                                                    buffer, ret);
+        }
     }
 
     VIR_FREE(buffer);
     return ret;
 }
-
-
-/*
- * Invoked when an outgoing data packet message has been fully sent.
- * This simply re-enables TX of further data.
- *
- * The idea is to stop the daemon growing without bound due to
- * fast stream, but slow client
- */
-void
-remoteStreamMessageFinished(struct qemud_client *client,
-                            struct qemud_client_message *msg)
-{
-    struct qemud_client_stream *stream = client->streams;
-
-    while (stream) {
-        if (msg->hdr.proc == stream->procedure &&
-            msg->hdr.serial == stream->serial)
-            break;
-        stream = stream->next;
-    }
-
-    VIR_DEBUG("Message client=%p stream=%p proc=%d serial=%d", client, stream, msg->hdr.proc, msg->hdr.serial);
-
-    if (stream) {
-        stream->tx = 1;
-        remoteStreamUpdateEvents(stream);
-    }
-}

daemon/stream.h

@@ -28,27 +28,24 @@
 
 
 
-struct qemud_client_stream *
-remoteCreateClientStream(virConnectPtr conn,
-                         remote_message_header *hdr);
+daemonClientStream *
+daemonCreateClientStream(virNetServerClientPtr client,
+                         virStreamPtr st,
+                         virNetServerProgramPtr prog,
+                         virNetMessageHeaderPtr hdr);
 
-void remoteFreeClientStream(struct qemud_client *client,
-                            struct qemud_client_stream *stream);
+int daemonFreeClientStream(virNetServerClientPtr client,
+                           daemonClientStream *stream);
 
-int remoteAddClientStream(struct qemud_client *client,
-                          struct qemud_client_stream *stream,
-                          int transmit);
-
-struct qemud_client_stream *
-remoteFindClientStream(struct qemud_client *client,
-                       virStreamPtr stream);
+int daemonAddClientStream(virNetServerClientPtr client,
+                          daemonClientStream *stream,
+                          bool transmit);
 
 int
-remoteRemoveClientStream(struct qemud_client *client,
-                         struct qemud_client_stream *stream);
+daemonRemoveClientStream(virNetServerClientPtr client,
+                         daemonClientStream *stream);
 
 void
-remoteStreamMessageFinished(struct qemud_client *client,
-                            struct qemud_client_message *msg);
+daemonRemoveAllClientStreams(daemonClientStream *stream);
 
 #endif /* __LIBVIRTD_STREAM_H__ */

daemon/test_libvirtd.aug

@@ -193,6 +193,7 @@ crl_file = \"/etc/pki/CA/crl.pem\"
 # Default is to always verify. Uncommenting this will disable
 # verification - make sure an IP whitelist is set
 tls_no_verify_certificate = 1
+tls_no_sanity_certificate = 1
 
 
 # A whitelist of allowed x509  Distinguished Names
@@ -468,6 +469,7 @@ audit_level = 2
         { "#comment" = "Default is to always verify. Uncommenting this will disable" }
         { "#comment" = "verification - make sure an IP whitelist is set" }
         { "tls_no_verify_certificate" = "1" }
+        { "tls_no_sanity_certificate" = "1" }
         { "#empty" }
         { "#empty" }
         { "#comment" = "A whitelist of allowed x509  Distinguished Names" }

docs/Makefile.am

@@ -1,4 +1,8 @@
 ## Process this file with automake to produce Makefile.in
+
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 SUBDIRS= schemas
 
 PERL = perl
@@ -8,6 +12,8 @@ DOC_SOURCE_DIR=../src
 
 DEVHELP_DIR=$(datadir)/gtk-doc/html/libvirt
 
+BUILT_SOURCES=hvsupport.html.in
+
 apihtml =			\
   html/index.html		\
   html/libvirt-libvirt.html	\
@@ -60,7 +66,7 @@ gif = \
   architecture.gif \
   node.gif
 
-dot_html_in = $(notdir $(wildcard $(srcdir)/*.html.in)) todo.html.in \
+dot_html_in = $(notdir $(wildcard $(srcdir)/*.html.in)) todo.html.in hvsupport.html.in \
       $(patsubst $(srcdir)/%,%,$(wildcard $(srcdir)/internals/*.html.in))
 dot_html = $(dot_html_in:%.html.in=%.html)
 
@@ -70,6 +76,10 @@ xml = \
   libvirt-api.xml \
   libvirt-refs.xml
 
+qemu_xml = \
+  libvirt-qemu-api.xml \
+  libvirt-qemu-refs.xml
+
 fig = \
   libvirt-net-logical.fig \
   libvirt-net-physical.fig \
@@ -83,10 +93,10 @@ EXTRA_DIST=					\
   hacking1.xsl hacking2.xsl wrapstring.xsl \
   $(dot_html) $(dot_html_in) $(gif) $(apihtml) $(apipng) \
   $(devhelphtml) $(devhelppng) $(devhelpcss) $(devhelpxsl) \
-  $(xml) $(fig) $(png) $(css) \
+  $(xml) $(qemu_xml) $(fig) $(png) $(css) \
   $(patches) \
   sitemap.html.in \
-  todo.pl todo.cfg-example
+  todo.pl hvsupport.pl todo.cfg-example
 
 MAINTAINERCLEANFILES = \
   $(addprefix $(srcdir)/,$(dot_html)) \
@@ -96,13 +106,14 @@ MAINTAINERCLEANFILES = \
 all: web
 
 api: $(srcdir)/libvirt-api.xml $(srcdir)/libvirt-refs.xml
+qemu_api: $(srcdir)/libvirt-qemu-api.xml $(srcdir)/libvirt-qemu-refs.xml
 
 web: $(dot_html) html/index.html devhelp/index.html
 
 todo.html.in: todo.pl
 	if [ -f  todo.cfg ]; then \
 		echo "Generating $@"; \
-		$(PERL) $(srcdir)/$< > $@ \
+		$(PERL) $< > $@ \
 		|| { rm $@ && exit 1; }; \
 	else \
 		echo "Stubbing $@"; \
@@ -113,6 +124,10 @@ todo:
 	rm -f todo.html.in
 	$(MAKE) todo.html
 
+hvsupport.html.in: $(srcdir)/hvsupport.pl $(srcdir)/../src/libvirt_public.syms \
+	 $(srcdir)/../src/libvirt_qemu.syms $(srcdir)/../src/driver.h
+	$(AM_V_GEN)$(PERL) $(srcdir)/hvsupport.pl $(srcdir)/../src > $@ || { rm $@ && exit 1; }
+
 .PHONY: todo
 
 %.png: %.fig
@@ -121,7 +136,7 @@ todo:
 internals/%.html.tmp: internals/%.html.in subsite.xsl page.xsl sitemap.html.in
 	@if [ -x $(XSLTPROC) ] ; then \
 	  echo "Generating $@"; \
-	  $(MKDIR_P) "$(builddir)/internals"; \
+	  $(MKDIR_P) internals; \
 	  name=`echo $@ | sed -e 's/.tmp//'`; \
 	  $(XSLTPROC) --stringparam pagename $$name --nonet --html \
 	    $(top_srcdir)/docs/subsite.xsl $< > $@ \
@@ -147,35 +162,37 @@ internals/%.html.tmp: internals/%.html.in subsite.xsl page.xsl sitemap.html.in
 
 
 html/index.html: libvirt-api.xml newapi.xsl page.xsl sitemap.html.in
-	-@if [ -x $(XSLTPROC) ] ; then \
-	  echo "Rebuilding the HTML pages from the XML API" ; \
+	$(AM_V_GEN)if [ -x $(XSLTPROC) ] ; then \
 	  $(XSLTPROC) --nonet -o $(srcdir)/ \
-	  $(srcdir)/newapi.xsl $(srcdir)/libvirt-api.xml ; fi
-	-@if test -x $(XMLLINT) && test -x $(XMLCATALOG) ; then \
+	  $(srcdir)/newapi.xsl $(srcdir)/libvirt-api.xml ; fi && \
+	if test -x $(XMLLINT) && test -x $(XMLCATALOG) ; then \
 	  if $(XMLCATALOG) '$(XML_CATALOG_FILE)' "-//W3C//DTD XHTML 1.0 Strict//EN" \
 	    > /dev/null ; then \
-	  echo "Validating the resulting XHTML pages" ; \
 	  SGML_CATALOG_FILES='$(XML_CATALOG_FILE)' \
 	  $(XMLLINT) --catalogs --nonet --valid --noout $(srcdir)/html/*.html ; \
 	  else echo "missing XHTML1 DTD" ; fi ; fi
 
 $(addprefix $(srcdir)/,$(devhelphtml)): $(srcdir)/libvirt-api.xml $(devhelpxsl)
-	-@echo Rebuilding devhelp files
-	-@if [ -x $(XSLTPROC) ] ; then \
+	$(AM_V_GEN)if [ -x $(XSLTPROC) ] ; then \
 	  $(XSLTPROC) --nonet -o $(srcdir)/devhelp/ \
 	  $(top_srcdir)/docs/devhelp/devhelp.xsl $(srcdir)/libvirt-api.xml ; fi
 
+
 python_generated_files = \
 		$(srcdir)/html/libvirt-libvirt.html \
+		$(srcdir)/html/libvirt-libvirt-qemu.html \
 		$(srcdir)/html/libvirt-virterror.html \
 		$(srcdir)/libvirt-api.xml \
-		$(srcdir)/libvirt-refs.xml
+		$(srcdir)/libvirt-refs.xml \
+		$(srcdir)/libvirt-qemu-api.xml \
+		$(srcdir)/libvirt-qemu-refs.xml
 
 $(python_generated_files): $(srcdir)/apibuild.py \
 		$(srcdir)/../include/libvirt/*.h \
 		$(srcdir)/../src/libvirt.c \
+		$(srcdir)/../src/libvirt-qemu.c \
 		$(srcdir)/../src/util/virterror.c
-	-srcdir=$(srcdir) $(srcdir)/apibuild.py
+	$(AM_V_GEN)srcdir=$(srcdir) $(PYTHON) $(srcdir)/apibuild.py
 
 check-local: all
 
@@ -183,9 +200,10 @@ clean-local:
 	rm -f *~ *.bak *.hierarchy *.signals *-unused.txt *.html
 
 maintainer-clean-local: clean-local
-	rm -rf $(srcdir)/libvirt-api.xml $(srcdir)/libvirt-refs.xml todo.html.in
+	rm -rf $(srcdir)/libvirt-api.xml $(srcdir)/libvirt-refs.xml todo.html.in hvsupport.html.in
+	rm -rf $(srcdir)/libvirt-qemu-api.xml $(srcdir)/libvirt-qemu-refs.xml
 
-rebuild: api all
+rebuild: api qemu_api all
 
 install-data-local:
 	$(mkinstalldirs) $(DESTDIR)$(HTML_DIR)

docs/api_extension/0008-support-new-xml.patch

@@ -107,7 +107,7 @@ index 78d7a6a..a997e06 100644
              allones = 0;
 
 -    if (allones) {
--        virBufferVSprintf(&buf, "  <vcpu>%lu</vcpu>\n", def->vcpus);
+-        virBufferAsprintf(&buf, "  <vcpu>%lu</vcpu>\n", def->vcpus);
 -    } else {
 +    virBufferAddLit(&buf, "  <vcpu");
 +    if (!allones) {
@@ -115,14 +115,14 @@ index 78d7a6a..a997e06 100644
          if ((cpumask =
               virDomainCpuSetFormat(def->cpumask, def->cpumasklen)) == NULL)
              goto cleanup;
--        virBufferVSprintf(&buf, "  <vcpu cpuset='%s'>%lu</vcpu>\n",
+-        virBufferAsprintf(&buf, "  <vcpu cpuset='%s'>%lu</vcpu>\n",
 -                          cpumask, def->vcpus);
-+        virBufferVSprintf(&buf, " cpuset='%s'", cpumask);
++        virBufferAsprintf(&buf, " cpuset='%s'", cpumask);
          VIR_FREE(cpumask);
      }
 +    if (def->vcpus != def->maxvcpus)
-+        virBufferVSprintf(&buf, " current='%u'", def->vcpus);
-+    virBufferVSprintf(&buf, ">%u</vcpu>\n", def->maxvcpus);
++        virBufferAsprintf(&buf, " current='%u'", def->vcpus);
++    virBufferAsprintf(&buf, ">%u</vcpu>\n", def->maxvcpus);
 
      if (def->os.bootloader) {
          virBufferEscapeString(&buf, "  <bootloader>%s</bootloader>\n",
@@ -184,8 +184,8 @@ index 7ec8c0e..0a26614 100644
          goto cleanup;
      }
 
--    virBufferVSprintf(&buffer, "numvcpus = \"%d\"\n", (int)def->vcpus);
-+    virBufferVSprintf(&buffer, "numvcpus = \"%d\"\n", def->maxvcpus);
+-    virBufferAsprintf(&buffer, "numvcpus = \"%d\"\n", (int)def->vcpus);
++    virBufferAsprintf(&buffer, "numvcpus = \"%d\"\n", def->maxvcpus);
 
      /* def:cpumask -> vmx:sched.cpu.affinity */
      if (def->cpumasklen > 0) {
@@ -221,8 +221,8 @@ index 44e28dc..2079c51 100644
  {
      int i;
      virBuffer buf= VIR_BUFFER_INITIALIZER;
--    virBufferVSprintf(&buf,"#OpenNebula Template automatically generated by libvirt\nNAME = %s\nCPU = %ld\nMEMORY = %ld\n",
-+    virBufferVSprintf(&buf,"#OpenNebula Template automatically generated "
+-    virBufferAsprintf(&buf,"#OpenNebula Template automatically generated by libvirt\nNAME = %s\nCPU = %ld\nMEMORY = %ld\n",
++    virBufferAsprintf(&buf,"#OpenNebula Template automatically generated "
 +                      "by libvirt\nNAME = %s\nCPU = %d\nMEMORY = %ld\n",
                        def->name,
 -                      def->vcpus,
@@ -311,19 +311,19 @@ index 83c0f83..38c8351 100644
  {
      virBuffer buf = VIR_BUFFER_INITIALIZER;
 
--    virBufferVSprintf(&buf, "%lu", def->vcpus);
-+    virBufferVSprintf(&buf, "%u", def->vcpus);
+-    virBufferAsprintf(&buf, "%lu", def->vcpus);
++    virBufferAsprintf(&buf, "%u", def->vcpus);
 
      if ((qemuCmdFlags & QEMUD_CMD_FLAG_SMP_TOPOLOGY)) {
          /* sockets, cores, and threads are either all zero
 @@ -3722,11 +3722,18 @@ qemuBuildSmpArgStr(const virDomainDefPtr def,
-             virBufferVSprintf(&buf, ",threads=%u", def->cpu->threads);
+             virBufferAsprintf(&buf, ",threads=%u", def->cpu->threads);
          }
          else {
--            virBufferVSprintf(&buf, ",sockets=%lu", def->vcpus);
-+            virBufferVSprintf(&buf, ",sockets=%u", def->maxvcpus);
-             virBufferVSprintf(&buf, ",cores=%u", 1);
-             virBufferVSprintf(&buf, ",threads=%u", 1);
+-            virBufferAsprintf(&buf, ",sockets=%lu", def->vcpus);
++            virBufferAsprintf(&buf, ",sockets=%u", def->maxvcpus);
+             virBufferAsprintf(&buf, ",cores=%u", 1);
+             virBufferAsprintf(&buf, ",threads=%u", 1);
          }
      }
 +    if (def->vcpus != def->maxvcpus) {
@@ -425,20 +425,20 @@ index 5ffc3c8..456b477 100644
   */
  char *
 @@ -5666,7 +5667,7 @@ xenDaemonFormatSxpr(virConnectPtr conn,
-     virBufferVSprintf(&buf, "(name '%s')", def->name);
-     virBufferVSprintf(&buf, "(memory %lu)(maxmem %lu)",
+     virBufferAsprintf(&buf, "(name '%s')", def->name);
+     virBufferAsprintf(&buf, "(memory %lu)(maxmem %lu)",
                        def->mem.cur_balloon/1024, def->mem.max_balloon/1024);
--    virBufferVSprintf(&buf, "(vcpus %lu)", def->vcpus);
-+    virBufferVSprintf(&buf, "(vcpus %u)", def->maxvcpus);
+-    virBufferAsprintf(&buf, "(vcpus %lu)", def->vcpus);
++    virBufferAsprintf(&buf, "(vcpus %u)", def->maxvcpus);
 
      if (def->cpumask) {
          char *ranges = virDomainCpuSetFormat(def->cpumask, def->cpumasklen);
 @@ -5761,7 +5762,7 @@ xenDaemonFormatSxpr(virConnectPtr conn,
              else
-                 virBufferVSprintf(&buf, "(kernel '%s')", def->os.loader);
+                 virBufferAsprintf(&buf, "(kernel '%s')", def->os.loader);
 
--            virBufferVSprintf(&buf, "(vcpus %lu)", def->vcpus);
-+            virBufferVSprintf(&buf, "(vcpus %u)", def->maxvcpus);
+-            virBufferAsprintf(&buf, "(vcpus %lu)", def->vcpus);
++            virBufferAsprintf(&buf, "(vcpus %u)", def->maxvcpus);
 
              for (i = 0 ; i < def->os.nBootDevs ; i++) {
                  switch (def->os.bootDevs[i]) {

docs/api_extension/0010-improve-vcpu-support-in-qemu-command-line.patch

@@ -23,17 +23,17 @@ index 38c8351..ffe184b 100644
 --- a/src/qemu/qemu_conf.c
 +++ b/src/qemu/qemu_conf.c
 @@ -3714,6 +3714,8 @@ qemuBuildSmpArgStr(const virDomainDefPtr def,
-     virBufferVSprintf(&buf, "%u", def->vcpus);
+     virBufferAsprintf(&buf, "%u", def->vcpus);
 
      if ((qemuCmdFlags & QEMUD_CMD_FLAG_SMP_TOPOLOGY)) {
 +        if (def->vcpus != def->maxvcpus)
-+            virBufferVSprintf(&buf, ",maxcpus=%u", def->maxvcpus);
++            virBufferAsprintf(&buf, ",maxcpus=%u", def->maxvcpus);
          /* sockets, cores, and threads are either all zero
           * or all non-zero, thus checking one of them is enough */
          if (def->cpu && def->cpu->sockets) {
 @@ -3726,12 +3728,12 @@ qemuBuildSmpArgStr(const virDomainDefPtr def,
-             virBufferVSprintf(&buf, ",cores=%u", 1);
-             virBufferVSprintf(&buf, ",threads=%u", 1);
+             virBufferAsprintf(&buf, ",cores=%u", 1);
+             virBufferAsprintf(&buf, ",threads=%u", 1);
          }
 -    }
 -    if (def->vcpus != def->maxvcpus) {

docs/api_extension/0012-improve-vcpu-support-in-xen-command-line.patch

@@ -88,21 +88,21 @@ index 456b477..dfc6415 100644
  }
 
 @@ -5668,6 +5675,9 @@ xenDaemonFormatSxpr(virConnectPtr conn,
-     virBufferVSprintf(&buf, "(memory %lu)(maxmem %lu)",
+     virBufferAsprintf(&buf, "(memory %lu)(maxmem %lu)",
                        def->mem.cur_balloon/1024, def->mem.max_balloon/1024);
-     virBufferVSprintf(&buf, "(vcpus %u)", def->maxvcpus);
+     virBufferAsprintf(&buf, "(vcpus %u)", def->maxvcpus);
 +    /* Computing the vcpu_avail bitmask works because MAX_VIRT_CPUS is 32.  */
 +    if (def->vcpus < def->maxvcpus)
-+        virBufferVSprintf(&buf, "(vcpu_avail %u)", (1U << def->vcpus) - 1);
++        virBufferAsprintf(&buf, "(vcpu_avail %u)", (1U << def->vcpus) - 1);
 
      if (def->cpumask) {
          char *ranges = virDomainCpuSetFormat(def->cpumask, def->cpumasklen);
 @@ -5763,6 +5773,9 @@ xenDaemonFormatSxpr(virConnectPtr conn,
-                 virBufferVSprintf(&buf, "(kernel '%s')", def->os.loader);
+                 virBufferAsprintf(&buf, "(kernel '%s')", def->os.loader);
 
-             virBufferVSprintf(&buf, "(vcpus %u)", def->maxvcpus);
+             virBufferAsprintf(&buf, "(vcpus %u)", def->maxvcpus);
 +            if (def->vcpus < def->maxvcpus)
-+                virBufferVSprintf(&buf, "(vcpu_avail %u)",
++                virBufferAsprintf(&buf, "(vcpu_avail %u)",
 +                                  (1U << def->vcpus) - 1);
 
              for (i = 0 ; i < def->os.nBootDevs ; i++) {

docs/apibuild.py

@@ -11,7 +11,9 @@ import os, sys
 import string
 import glob
 
-debug=0
+quiet=True
+warnings=0
+debug=False
 debugsym=None
 
 #
@@ -25,6 +27,11 @@ included_files = {
   "event.c": "event loop for monitoring file handles",
 }
 
+qemu_included_files = {
+  "libvirt-qemu.h": "header with QEMU specific API definitions",
+  "libvirt-qemu.c": "Implementations for the QEMU specific APIs",
+}
+
 ignored_words = {
   "ATTRIBUTE_UNUSED": (0, "macro keyword"),
   "ATTRIBUTE_SENTINEL": (0, "macro keyword"),
@@ -42,6 +49,12 @@ ignored_functions = {
   "virDomainMigratePrepare": "private function for migration",
   "virDomainMigratePrepare2": "private function for migration",
   "virDomainMigratePrepareTunnel": "private function for tunnelled migration",
+  "virDomainMigrateBegin3": "private function for migration",
+  "virDomainMigrateFinish3": "private function for migration",
+  "virDomainMigratePerform3": "private function for migration",
+  "virDomainMigratePrepare3": "private function for migration",
+  "virDomainMigrateConfirm3": "private function for migration",
+  "virDomainMigratePrepareTunnel3": "private function for tunnelled migration",
   "virDrvSupportsFeature": "private function for remote access",
   "DllMain": "specific function for Win32",
   "virEventAddHandle": "internal function in event.c",
@@ -52,6 +65,12 @@ ignored_functions = {
   "virEventRemoveTimeout": "internal function in event.c",
 }
 
+ignored_macros = {
+  "_virSchedParameter": "backward compatibility macro for virTypedParameter",
+  "_virBlkioParameter": "backward compatibility macro for virTypedParameter",
+  "_virMemoryParameter": "backward compatibility macro for virTypedParameter",
+}
+
 def escape(raw):
     raw = string.replace(raw, '&', '&')
     raw = string.replace(raw, '<', '&lt;')
@@ -83,7 +102,7 @@ class identifier:
             self.conditionals = None
         else:
             self.conditionals = conditionals[:]
-        if self.name == debugsym:
+        if self.name == debugsym and not quiet:
             print "=> define %s : %s" % (debugsym, (module, type, info,
                                          extra, conditionals))
 
@@ -143,7 +162,7 @@ class identifier:
 
     def update(self, header, module, type = None, info = None, extra=None,
                conditionals=None):
-        if self.name == debugsym:
+        if self.name == debugsym and not quiet:
             print "=> update %s : %s" % (debugsym, (module, type, info,
                                          extra, conditionals))
         if header != None and self.header == None:
@@ -167,6 +186,7 @@ class index:
         self.variables = {}
         self.includes = {}
         self.structs = {}
+        self.unions = {}
         self.enums = {}
         self.typedefs = {}
         self.macros = {}
@@ -190,7 +210,7 @@ class index:
         if d != None and name != None and type != None:
             self.references[name] = d
 
-        if name == debugsym:
+        if name == debugsym and not quiet:
             print "New ref: %s" % (d)
 
         return d
@@ -220,6 +240,10 @@ class index:
                 self.includes[name] = d
             elif type == "struct":
                 self.structs[name] = d
+            elif type == "struct":
+                self.structs[name] = d
+            elif type == "union":
+                self.unions[name] = d
             elif type == "enum":
                 self.enums[name] = d
             elif type == "typedef":
@@ -227,9 +251,9 @@ class index:
             elif type == "macro":
                 self.macros[name] = d
             else:
-                print "Unable to register type ", type
+                self.warning("Unable to register type ", type)
 
-        if name == debugsym:
+        if name == debugsym and not quiet:
             print "New symbol: %s" % (d)
 
         return d
@@ -243,8 +267,8 @@ class index:
              if self.macros.has_key(id):
                  del self.macros[id]
              if self.functions.has_key(id):
-                 print "function %s from %s redeclared in %s" % (
-                    id, self.functions[id].header, idx.functions[id].header)
+                 self.warning("function %s from %s redeclared in %s" % (
+                    id, self.functions[id].header, idx.functions[id].header))
              else:
                  self.functions[id] = idx.functions[id]
                  self.identifiers[id] = idx.functions[id]
@@ -256,22 +280,29 @@ class index:
              if self.macros.has_key(id):
                  del self.macros[id]
              if self.variables.has_key(id):
-                 print "variable %s from %s redeclared in %s" % (
-                    id, self.variables[id].header, idx.variables[id].header)
+                 self.warning("variable %s from %s redeclared in %s" % (
+                    id, self.variables[id].header, idx.variables[id].header))
              else:
                  self.variables[id] = idx.variables[id]
                  self.identifiers[id] = idx.variables[id]
         for id in idx.structs.keys():
              if self.structs.has_key(id):
-                 print "struct %s from %s redeclared in %s" % (
-                    id, self.structs[id].header, idx.structs[id].header)
+                 self.warning("struct %s from %s redeclared in %s" % (
+                    id, self.structs[id].header, idx.structs[id].header))
              else:
                  self.structs[id] = idx.structs[id]
                  self.identifiers[id] = idx.structs[id]
+        for id in idx.unions.keys():
+             if self.unions.has_key(id):
+                 print "union %s from %s redeclared in %s" % (
+                    id, self.unions[id].header, idx.unions[id].header)
+             else:
+                 self.unions[id] = idx.unions[id]
+                 self.identifiers[id] = idx.unions[id]
         for id in idx.typedefs.keys():
              if self.typedefs.has_key(id):
-                 print "typedef %s from %s redeclared in %s" % (
-                    id, self.typedefs[id].header, idx.typedefs[id].header)
+                 self.warning("typedef %s from %s redeclared in %s" % (
+                    id, self.typedefs[id].header, idx.typedefs[id].header))
              else:
                  self.typedefs[id] = idx.typedefs[id]
                  self.identifiers[id] = idx.typedefs[id]
@@ -287,15 +318,15 @@ class index:
              if self.enums.has_key(id):
                  continue
              if self.macros.has_key(id):
-                 print "macro %s from %s redeclared in %s" % (
-                    id, self.macros[id].header, idx.macros[id].header)
+                 self.warning("macro %s from %s redeclared in %s" % (
+                    id, self.macros[id].header, idx.macros[id].header))
              else:
                  self.macros[id] = idx.macros[id]
                  self.identifiers[id] = idx.macros[id]
         for id in idx.enums.keys():
              if self.enums.has_key(id):
-                 print "enum %s from %s redeclared in %s" % (
-                    id, self.enums[id].header, idx.enums[id].header)
+                 self.warning("enum %s from %s redeclared in %s" % (
+                    id, self.enums[id].header, idx.enums[id].header))
              else:
                  self.enums[id] = idx.enums[id]
                  self.identifiers[id] = idx.enums[id]
@@ -306,10 +337,10 @@ class index:
                  # check that function condition agrees with header
                  if idx.functions[id].conditionals != \
                     self.functions[id].conditionals:
-                     print "Header condition differs from Function for %s:" \
-                        % id
-                     print "  H: %s" % self.functions[id].conditionals
-                     print "  C: %s" % idx.functions[id].conditionals
+                     self.warning("Header condition differs from Function for %s:" \
+                                      % id)
+                     self.warning("  H: %s" % self.functions[id].conditionals)
+                     self.warning("  C: %s" % idx.functions[id].conditionals)
                  up = idx.functions[id]
                  self.functions[id].update(None, up.module, up.type, up.info, up.extra)
          #     else:
@@ -332,11 +363,13 @@ class index:
 
 
     def analyze(self):
-        self.analyze_dict("functions", self.functions)
-        self.analyze_dict("variables", self.variables)
-        self.analyze_dict("structs", self.structs)
-        self.analyze_dict("typedefs", self.typedefs)
-        self.analyze_dict("macros", self.macros)
+        if not quiet:
+            self.analyze_dict("functions", self.functions)
+            self.analyze_dict("variables", self.variables)
+            self.analyze_dict("structs", self.structs)
+            self.analyze_dict("unions", self.unions)
+            self.analyze_dict("typedefs", self.typedefs)
+            self.analyze_dict("macros", self.macros)
 
 class CLexer:
     """A lexer for the C language, tokenize the input by reading and
@@ -596,6 +629,8 @@ class CParser:
                                info, extra, self.conditionals)
 
     def warning(self, msg):
+        global warnings
+        warnings = warnings + 1
         if self.no_error:
             return
         print msg
@@ -644,13 +679,36 @@ class CParser:
                         res[item] = line
         self.index.info = res
 
+    def strip_lead_star(self, line):
+        l = len(line)
+        i = 0
+        while i < l:
+            if line[i] == ' ' or line[i] == '\t':
+                i += 1
+            elif line[i] == '*':
+                return line[:i] + line[i + 1:]
+            else:
+                 return line
+        return line
+
+    def cleanupComment(self):
+        if type(self.comment) != type(""):
+            return
+        # remove the leading * on multi-line comments
+        lines = self.comment.splitlines(True)
+        com = ""
+        for line in lines:
+            com = com + self.strip_lead_star(line)
+        self.comment = com.strip()
+
     def parseComment(self, token):
+        com = token[1]
         if self.top_comment == "":
-            self.top_comment = token[1]
-        if self.comment == None or token[1][0] == '*':
-            self.comment = token[1];
+            self.top_comment = com
+        if self.comment == None or com[0] == '*':
+            self.comment = com;
         else:
-            self.comment = self.comment + token[1]
+            self.comment = self.comment + com
         token = self.lexer.token()
 
         if string.find(self.comment, "DOC_DISABLE") != -1:
@@ -710,8 +768,12 @@ class CParser:
     # Parse a comment block associate to a macro
     #
     def parseMacroComment(self, name, quiet = 0):
+        global ignored_macros
+
         if name[0:2] == '__':
             quiet = 1
+        if ignored_macros.has_key(name):
+            quiet = 1
 
         args = []
         desc = ""
@@ -1162,7 +1224,13 @@ class CParser:
                     if token[0] == "sep" and token[1] == ";":
                         self.comment = None
                         token = self.token()
-                        fields.append((self.type, fname, self.comment))
+                        self.cleanupComment()
+                        if self.type == "union":
+                            fields.append((self.type, fname, self.comment,
+                                           self.union_fields))
+                            self.union_fields = []
+                        else:
+                            fields.append((self.type, fname, self.comment))
                         self.comment = None
                     else:
                         self.error("parseStruct: expecting ;", token)
@@ -1184,6 +1252,56 @@ class CParser:
          #print fields
         return token
 
+     #
+     # Parse a C union definition till the balancing }
+     #
+    def parseUnion(self, token):
+        fields = []
+        # self.debug("start parseUnion", token)
+        while token != None:
+            if token[0] == "sep" and token[1] == "{":
+                token = self.token()
+                token = self.parseTypeBlock(token)
+            elif token[0] == "sep" and token[1] == "}":
+                self.union_fields = fields
+                # self.debug("end parseUnion", token)
+                # print fields
+                token = self.token()
+                return token
+            else:
+                base_type = self.type
+                # self.debug("before parseType", token)
+                token = self.parseType(token)
+                # self.debug("after parseType", token)
+                if token != None and token[0] == "name":
+                    fname = token[1]
+                    token = self.token()
+                    if token[0] == "sep" and token[1] == ";":
+                        self.comment = None
+                        token = self.token()
+                        self.cleanupComment()
+                        fields.append((self.type, fname, self.comment))
+                        self.comment = None
+                    else:
+                        self.error("parseUnion: expecting ;", token)
+                elif token != None and token[0] == "sep" and token[1] == "{":
+                    token = self.token()
+                    token = self.parseTypeBlock(token)
+                    if token != None and token[0] == "name":
+                        token = self.token()
+                    if token != None and token[0] == "sep" and token[1] == ";":
+                        token = self.token()
+                    else:
+                        self.error("parseUnion: expecting ;", token)
+                else:
+                    self.error("parseUnion: name", token)
+                    token = self.token()
+                self.type = base_type;
+        self.union_fields = fields
+        # self.debug("end parseUnion", token)
+        # print fields
+        return token
+
      #
      # Parse a C enum block, parse till the balancing }
      #
@@ -1199,6 +1317,7 @@ class CParser:
                 token = self.parseTypeBlock(token)
             elif token[0] == "sep" and token[1] == "}":
                 if name != None:
+                    self.cleanupComment()
                     if self.comment != None:
                         comment = self.comment
                         self.comment = None
@@ -1206,6 +1325,7 @@ class CParser:
                 token = self.token()
                 return token
             elif token[0] == "name":
+                    self.cleanupComment()
                     if name != None:
                         if self.comment != None:
                             comment = string.strip(self.comment)
@@ -1236,7 +1356,7 @@ class CParser:
         return token
 
      #
-     # Parse a C definition block, used for structs it parse till
+     # Parse a C definition block, used for structs or unions it parse till
      # the balancing }
      #
     def parseTypeBlock(self, token):
@@ -1259,6 +1379,7 @@ class CParser:
     def parseType(self, token):
         self.type = ""
         self.struct_fields = []
+        self.union_fields = []
         self.signature = None
         if token == None:
             return token
@@ -1288,22 +1409,19 @@ class CParser:
                 self.push(token)
                 token = oldtmp
 
+            oldtmp = token
+            token = self.token()
             if token[0] == "name" and token[1] == "int":
-                if self.type == "":
-                    self.type = tmp[1]
-                else:
-                    self.type = self.type + " " + tmp[1]
+                self.type = self.type + " " + token[1]
+            else:
+                self.push(token)
+                token = oldtmp
 
         elif token[0] == "name" and token[1] == "short":
             if self.type == "":
                 self.type = token[1]
             else:
                 self.type = self.type + " " + token[1]
-            if token[0] == "name" and token[1] == "int":
-                if self.type == "":
-                    self.type = tmp[1]
-                else:
-                    self.type = self.type + " " + tmp[1]
 
         elif token[0] == "name" and token[1] == "struct":
             if self.type == "":
@@ -1339,6 +1457,28 @@ class CParser:
                 token = nametok
             return token
 
+        elif token[0] == "name" and token[1] == "union":
+            if self.type == "":
+                self.type = token[1]
+            else:
+                self.type = self.type + " " + token[1]
+            token = self.token()
+            nametok = None
+            if token[0] == "name":
+                nametok = token
+                token = self.token()
+            if token != None and token[0] == "sep" and token[1] == "{":
+                token = self.token()
+                token = self.parseUnion(token)
+            elif token != None and token[0] == "name" and nametok != None:
+                self.type = self.type + " " + nametok[1]
+                return token
+
+            if nametok != None:
+                self.lexer.push(token)
+                token = nametok
+            return token
+
         elif token[0] == "name" and token[1] == "enum":
             if self.type == "":
                 self.type = token[1]
@@ -1418,7 +1558,7 @@ class CParser:
             nametok = token
             token = self.token()
             if token != None and token[0] == "sep" and token[1] == '[':
-                self.type = self.type + nametok[1]
+                self.type = self.type + " " + nametok[1]
                 while token != None and token[0] == "sep" and token[1] == '[':
                     self.type = self.type + token[1]
                     token = self.token()
@@ -1474,6 +1614,81 @@ class CParser:
         self.signature = signature
         return token
 
+    # this dict contains the functions that are allowed to use [unsigned]
+    # long for legacy reasons in their signature and return type. this list is
+    # fixed. new procedures and public APIs have to use [unsigned] long long
+    long_legacy_functions = \
+      { "virGetVersion"                  : (False, ("libVer", "typeVer")),
+        "virConnectGetLibVersion"        : (False, ("libVer")),
+        "virConnectGetVersion"           : (False, ("hvVer")),
+        "virDomainGetMaxMemory"          : (True,  ()),
+        "virDomainMigrate"               : (False, ("flags", "bandwidth")),
+        "virDomainMigrate2"              : (False, ("flags", "bandwidth")),
+        "virDomainMigrateBegin3"         : (False, ("flags", "bandwidth")),
+        "virDomainMigrateConfirm3"       : (False, ("flags", "bandwidth")),
+        "virDomainMigrateDirect"         : (False, ("flags", "bandwidth")),
+        "virDomainMigrateFinish"         : (False, ("flags")),
+        "virDomainMigrateFinish2"        : (False, ("flags")),
+        "virDomainMigrateFinish3"        : (False, ("flags")),
+        "virDomainMigratePeer2Peer"      : (False, ("flags", "bandwidth")),
+        "virDomainMigratePerform"        : (False, ("flags", "bandwidth")),
+        "virDomainMigratePerform3"       : (False, ("flags", "bandwidth")),
+        "virDomainMigratePrepare"        : (False, ("flags", "bandwidth")),
+        "virDomainMigratePrepare2"       : (False, ("flags", "bandwidth")),
+        "virDomainMigratePrepare3"       : (False, ("flags", "bandwidth")),
+        "virDomainMigratePrepareTunnel"  : (False, ("flags", "bandwidth")),
+        "virDomainMigratePrepareTunnel3" : (False, ("flags", "bandwidth")),
+        "virDomainMigrateToURI"          : (False, ("flags", "bandwidth")),
+        "virDomainMigrateToURI2"         : (False, ("flags", "bandwidth")),
+        "virDomainMigrateVersion1"       : (False, ("flags", "bandwidth")),
+        "virDomainMigrateVersion2"       : (False, ("flags", "bandwidth")),
+        "virDomainMigrateVersion3"       : (False, ("flags", "bandwidth")),
+        "virDomainMigrateSetMaxSpeed"    : (False, ("bandwidth")),
+        "virDomainSetMaxMemory"          : (False, ("memory")),
+        "virDomainSetMemory"             : (False, ("memory")),
+        "virDomainSetMemoryFlags"        : (False, ("memory")),
+        "virDomainBlockJobSetSpeed"      : (False, ("bandwidth")),
+        "virDomainBlockPull"             : (False, ("bandwidth")),
+        "virDomainMigrateGetMaxSpeed"    : (False, ("bandwidth")) }
+
+    def checkLongLegacyFunction(self, name, return_type, signature):
+        if "long" in return_type and "long long" not in return_type:
+            try:
+                if not CParser.long_legacy_functions[name][0]:
+                    raise Exception()
+            except:
+                self.error(("function '%s' is not allowed to return long, "
+                            "use long long instead") % (name))
+
+        for param in signature:
+            if "long" in param[0] and "long long" not in param[0]:
+                try:
+                    if param[1] not in CParser.long_legacy_functions[name][1]:
+                        raise Exception()
+                except:
+                    self.error(("function '%s' is not allowed to take long "
+                                "parameter '%s', use long long instead")
+                               % (name, param[1]))
+
+    # this dict contains the structs that are allowed to use [unsigned]
+    # long for legacy reasons. this list is fixed. new structs have to use
+    # [unsigned] long long
+    long_legacy_struct_fields = \
+      { "_virDomainInfo"                 : ("maxMem", "memory"),
+        "_virNodeInfo"                   : ("memory"),
+        "_virDomainBlockJobInfo"         : ("bandwidth") }
+
+    def checkLongLegacyStruct(self, name, fields):
+        for field in fields:
+            if "long" in field[0] and "long long" not in field[0]:
+                try:
+                    if field[1] not in CParser.long_legacy_struct_fields[name]:
+                        raise Exception()
+                except:
+                    self.error(("struct '%s' is not allowed to contain long "
+                                "field '%s', use long long instead") \
+                               % (name, field[1]))
+
      #
      # Parse a global definition, be it a type, variable or function
      # the extern "C" blocks are a bit nasty and require it to recurse.
@@ -1556,6 +1771,7 @@ class CParser:
                     self.comment = None
                     token = self.token()
                     if type == "struct":
+                        self.checkLongLegacyStruct(self.name, self.struct_fields)
                         self.index_add(self.name, self.filename,
                              not self.is_header, "struct", self.struct_fields)
                     else:
@@ -1568,12 +1784,14 @@ class CParser:
                     if token == None:
                         return None
                     if token[0] == "sep" and token[1] == ";":
+                        self.checkLongLegacyFunction(self.name, type, self.signature)
                         d = self.mergeFunctionComment(self.name,
                                 ((type, None), self.signature), 1)
                         self.index_add(self.name, self.filename, static,
                                         "function", d)
                         token = self.token()
                     elif token[0] == "sep" and token[1] == "{":
+                        self.checkLongLegacyFunction(self.name, type, self.signature)
                         d = self.mergeFunctionComment(self.name,
                                 ((type, None), self.signature), static)
                         self.index_add(self.name, self.filename, static,
@@ -1598,7 +1816,8 @@ class CParser:
         return token
 
     def parse(self):
-        self.warning("Parsing %s" % (self.filename))
+        if not quiet:
+            print "Parsing %s" % (self.filename)
         token = self.token()
         while token != None:
             if token[0] == 'name':
@@ -1618,7 +1837,10 @@ class docBuilder:
         self.name = name
         self.path = path
         self.directories = directories
-        self.includes = includes + included_files.keys()
+        if name == "libvirt":
+            self.includes = includes + included_files.keys()
+        elif name == "libvirt-qemu":
+            self.includes = includes + qemu_included_files.keys()
         self.modules = {}
         self.headers = {}
         self.idx = index()
@@ -1665,7 +1887,8 @@ class docBuilder:
                 pass
 
     def analyze(self):
-        print "Project %s : %d headers, %d modules" % (self.name, len(self.headers.keys()), len(self.modules.keys()))
+        if not quiet:
+            print "Project %s : %d headers, %d modules" % (self.name, len(self.headers.keys()), len(self.modules.keys()))
         self.idx.analyze()
 
     def scanHeaders(self):
@@ -1754,6 +1977,20 @@ class docBuilder:
                 pass
         output.write("    </macro>\n")
 
+    def serialize_union(self, output, field, desc):
+        output.write("      <field name='%s' type='union' info='%s'>\n" % (field[1] , desc))
+        output.write("        <union>\n")
+        for f in field[3]:
+            desc = f[2]
+            if desc == None:
+                desc = ''
+            else:
+                desc = escape(desc)
+            output.write("          <field name='%s' type='%s' info='%s'/>\n" % (f[1] , f[0], desc))
+
+        output.write("        </union>\n")
+        output.write("      </field>\n")
+
     def serialize_typedef(self, output, name):
         id = self.idx.typedefs[name]
         if id.info[0:7] == 'struct ':
@@ -1772,9 +2009,12 @@ class docBuilder:
                             desc = ''
                         else:
                             desc = escape(desc)
-                        output.write("      <field name='%s' type='%s' info='%s'/>\n" % (field[1] , field[0], desc))
+                        if field[0] == "union":
+                            self.serialize_union(output, field, desc)
+                        else:
+                            output.write("      <field name='%s' type='%s' info='%s'/>\n" % (field[1] , field[0], desc))
                 except:
-                    print "Failed to serialize struct %s" % (name)
+                    self.warning("Failed to serialize struct %s" % (name))
                 output.write("    </struct>\n")
             else:
                 output.write("/>\n");
@@ -1802,7 +2042,7 @@ class docBuilder:
 
     def serialize_function(self, output, name):
         id = self.idx.functions[name]
-        if name == debugsym:
+        if name == debugsym and not quiet:
             print "=>", id
 
         output.write("    <%s name='%s' file='%s' module='%s'>\n" % (id.type,
@@ -1838,7 +2078,7 @@ class docBuilder:
                     output.write("      <arg name='%s' type='%s' info='%s'/>\n" % (param[1], param[0], escape(param[2])))
                     self.indexString(name, param[2])
         except:
-            print "Failed to save function %s info: " % name, `id.info`
+            self.warning("Failed to save function %s info: " % name, `id.info`)
         output.write("    </%s>\n" % (id.type))
 
     def serialize_exports(self, output, file):
@@ -1853,7 +2093,7 @@ class docBuilder:
                                  escape(dict.info[data]),
                                  string.lower(data)))
                 except:
-                    print "Header %s lacks a %s description" % (module, data)
+                    self.warning("Header %s lacks a %s description" % (module, data))
             if dict.info.has_key('Description'):
                 desc = dict.info['Description']
                 if string.find(desc, "DEPRECATED") != -1:
@@ -1871,6 +2111,8 @@ class docBuilder:
                 continue
             if dict.structs.has_key(id):
                 continue
+            if dict.unions.has_key(id):
+                continue
             if dict.enums.has_key(id):
                 continue
             output.write("     <exports symbol='%s' type='macro'/>\n" % (id))
@@ -2064,7 +2306,8 @@ class docBuilder:
 
     def serialize(self):
         filename = "%s/%s-api.xml" % (self.path, self.name)
-        print "Saving XML description %s" % (filename)
+        if not quiet:
+            print "Saving XML description %s" % (filename)
         output = open(filename, "w")
         output.write('<?xml version="1.0" encoding="ISO-8859-1"?>\n')
         output.write("<api name='%s'>\n" % self.name)
@@ -2100,7 +2343,8 @@ class docBuilder:
         output.close()
 
         filename = "%s/%s-refs.xml" % (self.path, self.name)
-        print "Saving XML Cross References %s" % (filename)
+        if not quiet:
+            print "Saving XML Cross References %s" % (filename)
         output = open(filename, "w")
         output.write('<?xml version="1.0" encoding="ISO-8859-1"?>\n')
         output.write("<apirefs name='%s'>\n" % self.name)
@@ -2109,24 +2353,29 @@ class docBuilder:
         output.close()
 
 
-def rebuild():
+def rebuild(name):
+    if name not in ["libvirt", "libvirt-qemu"]:
+        self.warning("rebuild() failed, unkown module %s") % name
+        return None
     builder = None
     srcdir = os.environ["srcdir"]
     if glob.glob(srcdir + "/../src/libvirt.c") != [] :
-        print "Rebuilding API description for libvirt"
+        if not quiet:
+            print "Rebuilding API description for %s" % name
         dirs = [srcdir + "/../src",
                 srcdir + "/../src/util",
                 srcdir + "/../include/libvirt"]
         if glob.glob(srcdir + "/../include/libvirt/libvirt.h") == [] :
             dirs.append("../include/libvirt")
-        builder = docBuilder("libvirt", srcdir, dirs, [])
+        builder = docBuilder(name, srcdir, dirs, [])
     elif glob.glob("src/libvirt.c") != [] :
-        print "Rebuilding API description for libvirt"
-        builder = docBuilder("libvirt", srcdir,
+        if not quiet:
+            print "Rebuilding API description for %s" % name
+        builder = docBuilder(name, srcdir,
                              ["src", "src/util", "include/libvirt"],
                              [])
     else:
-        print "rebuild() failed, unable to guess the module"
+        self.warning("rebuild() failed, unable to guess the module")
         return None
     builder.scan()
     builder.analyze()
@@ -2146,4 +2395,9 @@ if __name__ == "__main__":
         debug = 1
         parse(sys.argv[1])
     else:
-        rebuild()
+        rebuild("libvirt")
+        rebuild("libvirt-qemu")
+    if warnings > 0:
+        sys.exit(2)
+    else:
+        sys.exit(0)

docs/apps.html.in

@@ -14,7 +14,9 @@
     <p>
       To add an application not listed on this page, send a message
       to the <a href="contact.html">mailing list</a>, requesting it
-      be added here. If your application uses libvirt as its API,
+      be added here, or simply send a patch against the documentation
+      in the libvirt.git docs subdirectory.
+      If your application uses libvirt as its API,
       the following graphic is available for your website to advertise
       support for libvirt:
     </p>
@@ -200,6 +202,16 @@
     <h2><a name="iaas">Infrastructure as a Service (IaaS)</a></h2>
 
     <dl>
+      <dt><a href="http://www.emotivecloud.net">EMOTIVE Cloud</a></dt>
+      <dd>The EMOTIVE (Elastic Management Of Tasks In Virtualized
+        Environments) middleware allows executing tasks and providing
+        virtualized environments to the users with Xen, KVM or
+        VirtualBox hypervisor. EMOTIVE's main feature is VM management
+        with different scheduling policies. It can be also used as a
+        cloud provider and is very easy to extend thanks to its
+        modular Web Services architecture.
+      </dd>
+
       <dt><a href="http://www.nimbusproject.org">Nimbus</a></dt>
       <dd>
         Nimbus is an open-source toolkit focused on providing
@@ -226,6 +238,17 @@
       </dd>
     </dl>
 
+        <dl>
+            <dt><a href="https://github.com/ohadlevy/virt#readme">Ruby
+            Libvirt Object bindings</a></dt>
+            <dd>
+                Allows using simple ruby objects to manipulate
+                hypervisors, guests, storage, network etc.  It is
+                based on top of
+                the <a href="http://libvirt.org/ruby">native ruby
+                bindings</a>.
+            </dd>
+        </dl>
     <h2><a name="livecd">LiveCD / Appliances</a></h2>
 
     <dl>
@@ -284,6 +307,26 @@
       </dd>
     </dl>
 
+    <dl>
+      <dt><a href="http://theforeman.org">Foreman</a></dt>
+      <dd>
+      Foreman is an open source web based application aimed to be a
+      Single Address For All Machines Life Cycle Management. Foreman:
+
+      <ul>
+          <li>Creates everything you need when adding a new machine to
+          your network, its goal being automatically managing
+          everything you would normally manage manually (DNS, DHCP,
+          TFTP, Virtual Machines,CA, CMDB...)</li>
+          <li>Integrates with Puppet (and acts as web front end to it).</li>
+          <li>Takes care of provisioning until the point puppet is
+          running, allowing Puppet to do what it does best.</li>
+          <li>Shows you Systems Inventory (based on Facter) and
+          provides real time information about hosts status based on
+          Puppet reports.</li>
+      </dd>
+    </dl>
+
 
     <h2><a name="web">Web applications</a></h2>
 

docs/drivers.html.in

@@ -28,6 +28,7 @@
       <li><strong><a href="drvesx.html">VMware ESX</a></strong></li>
       <li><strong><a href="drvvmware.html">VMware Workstation/Player</a></strong></li>
       <li><strong><a href="drvxen.html">Xen</a></strong></li>
+      <li><strong><a href="drvhyperv.html">Microsoft Hyper-V</a></strong></li>
     </ul>
 
     <h2><a name="stroage">Storage drivers</a></h2>

docs/drvesx.html.in

@@ -8,6 +8,14 @@
         connect to a VMware vCenter 2.5/4.x (VPX).
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://www.vmware.com/">VMware ESX and GSX</a>
+        hypervisors
+      </li>
+    </ul>
 
     <h2><a name="prereq">Deployment pre-requisites</a></h2>
     <p>

docs/drvhyperv.html.in

@@ -0,0 +1,112 @@
+<html><body>
+    <h1>Microsoft Hyper-V hypervisor driver</h1>
+    <ul id="toc"></ul>
+    <p>
+        The libvirt Microsoft Hyper-V driver can manage Hyper-V 2008 R2.
+    </p>
+
+
+    <h2><a name="project">Project Links</a></h2>
+    <ul>
+      <li>
+        The <a href="http://www.microsoft.com/hyper-v-server/">Microsoft Hyper-V</a>
+        hypervisor
+      </li>
+    </ul>
+
+
+    <h2><a name="uri">Connections to the Microsoft Hyper-V driver</a></h2>
+    <p>
+        Some example remote connection URIs for the driver are:
+    </p>
+<pre>
+hyperv://example-hyperv.com                  (over HTTPS)
+hyperv://example-hyperv.com/?transport=http  (over HTTP)
+</pre>
+    <p>
+        <strong>Note</strong>: In contrast to other drivers, the Hyper-V driver
+        is a client-side-only driver. It connects to the Hyper-V server using
+        WS-Management over HTTP(S). Therefore, the
+        <a href="remote.html">remote transport mechanism</a> provided by the
+        remote driver and libvirtd will not work, and you cannot use URIs like
+        <code>hyperv+ssh://example.com</code>.
+    </p>
+
+
+    <h3><a name="uriformat">URI Format</a></h3>
+    <p>
+        URIs have this general form (<code>[...]</code> marks an optional part).
+    </p>
+<pre>
+hyperv://[username@]hostname[:port]/[?extraparameters]
+</pre>
+    <p>
+        The default HTTPS ports is 5986. If the port parameter is given, it
+        overrides the default port.
+    </p>
+
+
+    <h4><a name="extraparams">Extra parameters</a></h4>
+    <p>
+        Extra parameters can be added to a URI as part of the query string
+        (the part following <code>?</code>). A single parameter is formed by a
+        <code>name=value</code> pair. Multiple parameters are separated by
+        <code>&amp;</code>.
+    </p>
+<pre>
+?transport=http
+</pre>
+    <p>
+        The driver understands the extra parameters shown below.
+    </p>
+    <table class="top_table">
+        <tr>
+            <th>Name</th>
+            <th>Values</th>
+            <th>Meaning</th>
+        </tr>
+        <tr>
+            <td>
+                <code>transport</code>
+            </td>
+            <td>
+                <code>http</code> or <code>https</code>
+            </td>
+            <td>
+                Overrides the default HTTPS transport. The default HTTP port
+                is 5985.
+            </td>
+        </tr>
+    </table>
+
+
+    <h3><a name="auth">Authentication</a></h3>
+    <p>
+        In order to perform any useful operation the driver needs to log into
+        the Hyper-V server. Therefore, only <code>virConnectOpenAuth</code> can
+        be used to connect to an Hyper-V server, <code>virConnectOpen</code> and
+        <code>virConnectOpenReadOnly</code> don't work.
+        To log into an Hyper-V server the driver will request credentials using
+        the callback passed to the <code>virConnectOpenAuth</code> function.
+        The driver passes the hostname as challenge parameter to the callback.
+    </p>
+    <p>
+        <strong>Note</strong>: Currently only <code>Basic</code> authentication
+        is supported by libvirt. This method is disabled by default on the
+        Hyper-V server and can be enabled via the WinRM commandline tool.
+    </p>
+<pre>
+winrm set winrm/config/service/auth @{Basic="true"}
+</pre>
+    <p>
+        To allow <code>Basic</code> authentication with HTTP transport WinRM
+        needs to allow unencrypted communication. This can be enabled via the
+        WinRM commandline tool. However, this is not the recommended
+        communication mode.
+    </p>
+<pre>
+winrm set winrm/config/service @{AllowUnencrypted="true"}
+</pre>
+
+
+</body></html>

docs/drvlxc.html.in

@@ -5,10 +5,18 @@
 The libvirt LXC driver manages "Linux Containers".  Containers are sets of processes
 with private namespaces which can (but don't always) look like separate machines, but
 do not have their own OS.  Here are two example configurations.  The first is a very
-light-weight "application container" which does not have it's own root image.  You would
-start it using
+light-weight "application container" which does not have its own root image.
 </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://lxc.sourceforge.net/">LXC</a> Linux
+        container system
+      </li>
+    </ul>
+
 <h2>Cgroups Requirements</h2>
 
 <p>

docs/drvopenvz.html.in

@@ -13,6 +13,15 @@
     undue trouble.
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://openvz.org/">OpenVZ</a> Linux container
+        system
+      </li>
+    </ul>
+
     <h2><a name="connections">Connections to OpenVZ driver</a></h2>
 
     <p>

docs/drvqemu.html.in

@@ -1,21 +1,35 @@
 <html>
   <body>
-    <h1>QEMU/KVM hypervisor driver</h1>
+    <h1>KVM/QEMU hypervisor driver</h1>
 
     <ul id="toc"></ul>
 
     <p>
-      The libvirt QEMU driver can manage any QEMU emulator from version 0.8.1
-      or later. It can also manage anything that provides the same QEMU command
-      line syntax and monitor interaction. This includes KVM, and Xenner.
+      The libvirt KVM/QEMU driver can manage any QEMU emulator from
+      version 0.8.1 or later. It can also manage Xenner, which
+      provides the same QEMU command line syntax and monitor
+      interaction.
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://www.linux-kvm.org/">KVM</a> Linux
+        hypervisor
+      <li>
+        The <a href="http://wiki.qemu.org/Index.html">QEMU</a> emulator
+      </li>
+    </ul>
+
     <h2><a name="prereq">Deployment pre-requisites</a></h2>
 
     <ul>
       <li>
         <strong>QEMU emulators</strong>: The driver will probe <code>/usr/bin</code>
         for the presence of <code>qemu</code>, <code>qemu-system-x86_64</code>,
+        <code>qemu-system-microblaze</code>,
+        <code>qemu-system-microblazeel</code>,
         <code>qemu-system-mips</code>,<code>qemu-system-mipsel</code>,
         <code>qemu-system-sparc</code>,<code>qemu-system-ppc</code>. The results
         of this can be seen from the capabilities XML output.
@@ -194,7 +208,7 @@ chmod o+x /path/to/directory
 
     <p>
       If the QEMU driver is configured to run virtual machines as non-root,
-      then they will already loose all their process capabilities at time
+      then they will already lose all their process capabilities at time
       of startup. The Linux capability feature is thus aimed primarily at
       the scenario where the QEMU processes are running as root. In this
       case, before launching a QEMU virtual machine, libvirtd will use

docs/drvuml.html.in

@@ -11,6 +11,15 @@
     has pre-created TAP devices.
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://user-mode-linux.sourceforge.net/">User
+        Mode Linux</a> paravirtualized kernel
+      </li>
+    </ul>
+
     <h2>Connections to UML driver</h2>
 
     <p>

docs/drvvbox.html.in

@@ -6,6 +6,15 @@
         from version 2.2 onwards.
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://www.virtualbox.org/">VirtualBox</a>
+        hypervisor
+      </li>
+    </ul>
+
     <h2>Connections to VirtualBox driver</h2>
 
     <p>

docs/drvvmware.html.in

@@ -12,6 +12,15 @@
     from <a href="http://www.vmware.com/support/developer/vix-api/">here</a>.
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://www.vmware.com/">VMware Workstation and
+        Player</a> hypervisors
+      </li>
+    </ul>
+
     <h2>Connections to VMware driver</h2>
 
     <p>

docs/drvxen.html.in

@@ -9,6 +9,15 @@
       on any Xen release from 3.0.1 onwards.
     </p>
 
+    <h2><a name="project">Project Links</a></h2>
+
+    <ul>
+      <li>
+        The <a href="http://www.cl.cam.ac.uk/Research/SRG/netos/xen/index.html">Xen</a>
+        hypervisor on Linux and Solaris hosts
+      </li>
+    </ul>
+
     <h2><a name="prereq">Deployment pre-requisites</a></h2>
 
     <p>

docs/formatnetwork.html.in

@@ -70,37 +70,261 @@
         bridge device allowing them to talk to each other. The bridge device
         may also be connected to the LAN. It is recommended that bridge
         device names started with the prefix <code>vir</code>, but the name
-        <code>virbr0</code> is reserved for the "default" virtual network.
-        This element should always be provided when defining a new network.
-        Attribute <code>stp</code> specifies if Spanning Tree Protocol is
-        'on' or 'off' (default is 'on'). Attribute <code>delay</code> sets
-        the bridge's forward delay value in seconds (default is 0).
+        <code>virbr0</code> is reserved for the "default" virtual
+        network.  This element should always be provided when defining
+        a new network with a <code>&lt;forward&gt;</code> mode of
+        "nat" or "route" (or an isolated network with
+        no <code>&lt;forward&gt;</code> element).
+        Attribute <code>stp</code> specifies if Spanning Tree Protocol
+        is 'on' or 'off' (default is
+        'on'). Attribute <code>delay</code> sets the bridge's forward
+        delay value in seconds (default is 0).
         <span class="since">Since 0.3.0</span>
       </dd>
       <dt><code>domain</code></dt>
       <dd>
-        The <code>name</code> attribute on the <code>domain</code> element
-        defines the DNS domain of the DHCP server. This element is optional.
-        <span class="since">Since 0.4.5</span>
+        The <code>name</code> attribute on the <code>domain</code>
+        element defines the DNS domain of the DHCP server. This
+        element is optional, and is only used for those networks with
+        a <code>&lt;forward&gt;</code> mode of "nat" or "route" (or an
+        isolated network with no <code>&lt;forward&gt;</code>
+        element). <span class="since">Since 0.4.5</span>
       </dd>
       <dt><code>forward</code></dt>
       <dd>Inclusion of the <code>forward</code> element indicates that
         the virtual network is to be connected to the physical
-        LAN. the <code>mode</code> attribute determines the method of
-        forwarding; possible selections are 'nat' and 'route'. If mode
-        is not specified, NAT forwarding will be used for
-        connectivity.  If a network has any IPv6 addresses defined,
-        even if <code>mode</code> is given as 'nat', the IPv6 traffic
-        will be forwarded using routing, since IPv6 has no concept of NAT.
-        Firewall rules will allow forwarding to any other network device whether
-        ethernet, wireless, dialup, or VPN. If the <code>dev</code> attribute
-        is set, the firewall rules will restrict forwarding to the named
-        device only. If the <code>mode</code> attribute is set to <code>route</code>
-        then the traffic will not have NAT applied. This presumes that the
-        local LAN router has suitable routing table entries to return traffic
-        to this host. <span class="since">Since 0.3.0; 'mode' attribute since
-        0.4.2</span></dd>
+        LAN.<span class="since">Since 0.3.0.</span>
+        The <code>mode</code> attribute determines the method of
+        forwarding. If there is no <code>forward</code> element, the
+        network will be isolated from any other network (unless a
+        guest connected to that network is acting as a router, of
+        course). The following are valid settings
+        for <code>mode</code> (if there is a <code>forward</code>
+        element but mode is not specified, <code>mode='nat'</code> is
+        assumed):
+        <dl>
+          <dt><code>nat</code></dt>
+          <dd>
+            All traffic between guests connected to this network and
+            the physical network will be forwarded to the physical
+            network via the host's IP routing stack, after the guest's
+            IP address is translated to appear as the host machine's
+            public IP address (a.k.a. Network Address Translation, or
+            "NAT"). This allows multiple guests, all having access to
+            the physical network, on a host that is only allowed a
+            single public IP address. If a network has any IPv6
+            addresses defined, the IPv6 traffic will be forwarded
+            using plain routing, since IPv6 has no concept of NAT.
+            Firewall rules will allow outbound connections to any
+            other network device whether ethernet, wireless, dialup,
+            or VPN. If the <code>dev</code> attribute is set, the
+            firewall rules will restrict forwarding to the named
+            device only. Inbound connections from other networks are
+            all prohibited; all connections between guests on the same
+            network, and to/from the host to the guests, are
+            unrestricted and not NATed.<span class="since">Since
+            0.4.2</span>
+          </dd>
+
+          <dt><code>route</code></dt>
+          <dd>
+            Guest network traffic will be forwarded to the physical
+            network via the host's IP routing stack, but without
+            having NAT applied. Again, if the <code>dev</code>
+            attribute is set, firewall rules will restrict forwarding
+            to the named device only. This presumes that the local LAN
+            router has suitable routing table entries to return
+            traffic to this host. Firewall rules are also installed
+            that prevent incoming sessions from the physical network
+            to the guests, but outgoing sessions are unrestricted (as
+            are sessions from the host to the guests, and between
+            guests on the same network.)<span class="since">Since
+            0.4.2</span>
+          </dd>
+
+          <dt><code>bridge</code></dt>
+          <dd>
+            This network describes either 1) an existing host bridge
+            that was configured outside of libvirt (if
+            a <code>&lt;bridge name='xyz'/&gt;</code> element has been
+            specified), or 2) an interface or group of interfaces to
+            be used for a "direct" connection via macvtap using
+            macvtap's "bridge" mode (if the forward element has one or
+            more <code>&lt;interface&gt;</code> subelements)
+            (see <a href="formatdomain.html#elementsNICSDirect">Direct
+            attachment to physical interface</a> for descriptions of
+            the various macvtap modes). libvirt doesn't attempt to
+            manage the bridge interface at all, thus
+            the <code>&lt;bridge&gt;</code> element's <code>stp</code>
+            and <code>delay</code> attributes are not allowed; no
+            iptables rules, IP addresses, or DHCP/DNS services are
+            added; at the IP level, the guest interface appears to be
+            directly connected to the physical
+            interface.<span class="since">Since 0.9.4</span>
+          </dd>
+          <dt><code>private</code></dt>
+          <dd>
+            This network uses a macvtap "direct" connection in
+            "private" mode to connect each guest to the network. The
+            physical interface to be used will be picked from among
+            those listed in <code>&lt;interface&gt;</code> subelements
+            of the <code>&lt;forward&gt;</code> element; when using
+            802.1Qbh mode (as indicated by
+            the <code>&lt;virtualport&gt;</code> type attribute - note
+            that this requires an 802.1Qbh-capable hardware switch),
+            each physical interface can only be in use by a single
+            guest interface at a time; in modes other than 802.1Qbh,
+            multiple guest interfaces can share each physical
+            interface (libvirt will attempt to balance usage between
+            all available interfaces).<span class="since">Since
+            0.9.4</span>
+          </dd>
+          <dt><code>vepa</code></dt>
+          <dd>
+            This network uses a macvtap "direct" connection in "vepa"
+            mode to connect each guest to the network (this requires
+            that the physical interfaces used be connected to a
+            vepa-capable hardware switch. The physical interface to be
+            used will be picked from among those listed
+            in <code>&lt;interface&gt;</code> subelements of
+            the <code>&lt;forward&gt;</code> element; multiple guest
+            interfaces can share each physical interface (libvirt will
+            attempt to balance usage between all available
+            interfaces).<span class="since">Since 0.9.4</span>
+          </dd>
+          <dt><code>passthrough</code></dt>
+          <dd>
+            This network uses a macvtap "direct" connection in
+            "passthrough" mode to connect each guest to the network
+            (note that this is <i>not</i> the same thing as "PCI
+            passthrough"). The physical interface to be used will be
+            picked from among those listed
+            in <code>&lt;interface&gt;</code> subelements of
+            the <code>&lt;forward&gt;</code> element.  Each physical
+            interface can only be in use by a single guest interface
+            at a time, so libvirt will keep track of which interfaces
+            are currently in use, and only assign unused interfaces
+            (if there are no available physical interfaces when a
+            domain interface is being attached, an error will be
+            logged, and the operation causing the attach will fail
+            (usually either a domain start, or a hotplug interface
+            attach to a domain).<span class="since">Since 0.9.4</span>
+          </dd>
+        </dl>
+        As mentioned above, a <code>&lt;forward&gt;</code> element can
+        have multiple <code>&lt;interface&gt;</code> subelements, each
+        one giving the name of a physical interface that can be used
+        for this network<span class="since">Since 0.9.4</span>:
+        <pre>
+...
+  &lt;forward mode='passthrough'&gt;
+    &lt;interface dev='eth10'/&gt;
+    &lt;interface dev='eth11'/&gt;
+    &lt;interface dev='eth12'/&gt;
+    &lt;interface dev='eth13'/&gt;
+    &lt;interface dev='eth14'/&gt;
+  &lt;/forward&gt;
+...
+        </pre>
+        When a guest interface is being constructed, libvirt will pick
+        an interface from this list to use for the connection. In
+        modes where physical interfaces can be shared by multiple
+        guest interfaces, libvirt will choose the interface that
+        currently has the least number of connections. For those modes
+        that do not allow sharing of the physical device (in
+        particular, 'passthrough' mode, and 'private' mode when using
+        802.1Qbh), libvirt will choose an unused physical interface
+        or, if it can't find an unused interface, fail the operation.
+      </dd>
     </dl>
+    <h5><a name="elementQoS">Quality of service</a></h5>
+
+<pre>
+...
+  &lt;forward mode='nat' dev='eth0'/&gt;
+  <b>&lt;bandwidth&gt;
+    &lt;inbound average='1000' peak='5000' burst='5120'/&gt;
+    &lt;outbound average='128' peak='256' burst='256'/&gt;
+  &lt;/bandwidth&gt;</b>
+...</pre>
+
+      <p>
+        This part of network XML provides setting quality of service. Incoming
+        and outgoing traffic can be shaped independently. The
+        <code>bandwidth</code> element can have at most one <code>inbound</code>
+        and at most one <code>outbound</code> child elements. Leaving any of these
+        children element out result in no QoS applied on that traffic direction.
+        So, when you want to shape only network's incoming traffic, use
+        <code>inbound</code> only, and vice versa. Each of these elements have one
+        mandatory attribute <code>average</code>. It specifies average bit rate on
+        interface being shaped. Then there are two optional attributes:
+        <code>peak</code>, which specifies maximum rate at which bridge can send
+        data, and <code>burst</code>, amount of bytes that can be burst at
+        <code>peak</code> speed. Accepted values for attributes are integer
+        numbers, The units for <code>average</code> and <code>peak</code> attributes
+        are kilobytes per second, and for the <code>burst</code> just kilobytes.
+        The rate is shared equally within domains connected to the network.
+        Moreover, <code>bandwidth</code> element can be included in
+        <code>portgroup</code> element.
+        <span class="since">Since 0.9.4</span>
+      </p>
+
+    <h5><a name="elementsPortgroup">Portgroups</a></h5>
+
+<pre>
+...
+  &lt;forward mode='private'/&gt;
+    &lt;interface dev="eth20"/&gt;
+    &lt;interface dev="eth21"/&gt;
+    &lt;interface dev="eth22"/&gt;
+    &lt;interface dev="eth23"/&gt;
+    &lt;interface dev="eth24"/&gt;
+  &lt;/forward&gt;
+  <b>&lt;portgroup name='engineering' default='yes'&gt;
+    &lt;virtualport type='802.1Qbh'&gt;
+      &lt;parameters profileid='test'/&gt;
+    &lt;/virtualport&gt;
+    &lt;bandwidth&gt;
+      &lt;inbound average='1000' peak='5000' burst='5120'/&gt;
+      &lt;outbound average='1000' peak='5000' burst='5120'/&gt;
+    &lt;/bandwidth&gt;
+  &lt;/portgroup&gt;</b>
+  <b>&lt;portgroup name='sales'&gt;
+    &lt;virtualport type='802.1Qbh'&gt;
+      &lt;parameters profileid='salestest'/&gt;
+    &lt;/virtualport&gt;
+    &lt;bandwidth&gt;
+      &lt;inbound average='500' peak='2000' burst='2560'/&gt;
+      &lt;outbound average='128' peak='256' burst='256'/&gt;
+    &lt;/bandwidth&gt;
+  &lt;/portgroup&gt;</b>
+...</pre>
+
+    <p>
+      A portgroup provides a method of easily putting guest
+      connections to the network into different classes, with each
+      class potentially having a different level/type of service. Each
+      network can have multiple portgroup elements (and one of those
+      can optionally be designated as the 'default' portgroup for the
+      network), and each portgroup has a name, as well as various
+      subelements associated with it. The currently supported
+      subelements are <code>&lt;bandwidth&gt;</code>
+      (documented <a href="formatdomain.html#elementQoS">here</a>)
+      and <code>&lt;virtualport&gt;</code>
+      (documented <a href="formatdomain.html#elementsNICSDirect">here</a>).
+      If a domain interface definition specifies a portgroup (by
+      adding a <code>portgroup</code> attribute to
+      the <code>&lt;source&gt;</code> subelement), that portgroup's
+      info will be merged into the interface's configuration. If no
+      portgroup is given in the interface definition, and one of the
+      network's portgroups has <code>default='yes'</code>, that
+      default portgroup will be used. If no portgroup is given in the
+      interface definition, and there is no default portgroup, then
+      none will be used. Any <code>&lt;bandwidth&gt;</code>
+      or <code>&lt;virtualport&gt;</code> specified directly in the
+      domain XML will take precedence over any setting in the chosen
+      portgroup.
+    </p>
 
     <h3><a name="elementsAddress">Addressing</a></h3>
 
@@ -108,12 +332,17 @@
       The final set of elements define the addresses (IPv4 and/or
       IPv6, as well as MAC) to be assigned to the bridge device
       associated with the virtual network, and optionally enable DHCP
-      services.
+      services. These elements are only valid for isolated networks
+      (no <code>forward</code> element specified), and for those with
+      a forward mode of 'route' or 'nat'.
     </p>
 
     <pre>
         ...
         &lt;mac address='00:16:3E:5D:C7:9E'/&gt;
+        &lt;dns&gt;
+          &lt;txt name="example" value="example value" /&gt;
+        &lt;/dns&gt;
         &lt;ip address="192.168.122.1" netmask="255.255.255.0"&gt;
           &lt;dhcp&gt;
             &lt;range start="192.168.122.100" end="192.168.122.254" /&gt;
@@ -121,6 +350,7 @@
             &lt;host mac="00:16:3e:3e:a9:1a" name="bar.example.com" ip="192.168.122.11" /&gt;
           &lt;/dhcp&gt;
         &lt;/ip&gt;
+        &lt;ip family="ipv6" address="2001:db8:ca2:2::1" prefix="64" /&gt;
       &lt;/network&gt;</pre>
 
     <dl>
@@ -138,6 +368,29 @@
         with the idiosyncrasies of the platform where libvirt is
         running. <span class="since">Since 0.8.8</span>
       </dd>
+      <dt><code>dns</code></dt><dd>
+        The dns element of a network contains configuration information for the
+        virtual network's DNS server. <span class="since">Since 0.9.3</span>
+        Currently supported elements are:
+        <dl>
+          <dt><code>txt</code></dt>
+          <dd>A <code>dns</code> element can have 0 or more <code>txt</code> elements.
+            Each txt element defines a DNS TXT record and has two attributes, both
+            required: a name that can be queried via dns, and a value that will be
+            returned when that name is queried. names cannot contain embedded spaces
+            or commas. value is a single string that can contain multiple values
+            separated by commas. <span class="since">Since 0.9.3</span>
+          </dd>
+          <dt><code>host</code></dt>
+          <dd>The <code>host</code> element within <code>dns</code> is the
+            definition of DNS hosts to be passed to the DNS service. The IP
+            address is identified by the <code>ip</code> attribute and the names
+            for that IP address are identified in the <code>hostname</code>
+            sub-elements of the <code>host</code> element.
+            <span class="since">Since 0.9.3</span>
+          </dd>
+        </dl>
+      </dd>
       <dt><code>ip</code></dt>
       <dd>The <code>address</code> attribute defines an IPv4 address in
         dotted-decimal format, or an IPv6 address in standard
@@ -157,48 +410,59 @@
         <code>dhcp</code> or <code>tftp</code> element. <span class="since">Since 0.3.0;
         IPv6, multiple addresses on a single network, <code>family</code>, and
         <code>prefix</code> since 0.8.7</span>
-      </dd><dt><code>tftp</code></dt><dd>Immediately within
-        the <code>ip</code> element there is an optional <code>tftp</code>
-        element. The presence of this element and of its attribute
-        <code>root</code> enables TFTP services.  The attribute specifies
-        the path to the root directory served via TFTP. <code>tftp</code> is not
-        supported for IPv6 addresses, can only be specified on a single IPv4 address
-        per network.
-        <span class="since">Since 0.7.1</span>
-      </dd><dt><code>dhcp</code></dt><dd>Also within the <code>ip</code> element there is an
-        optional <code>dhcp</code> element. The presence of this element
-        enables DHCP services on the virtual network. It will further
-        contain one or more <code>range</code> elements. The
-        <code>dhcp</code> element is not supported for IPv6, and
-        is only supported on a single IP address per network for IPv4.
-        <span class="since">Since 0.3.0</span>
-      </dd>
-      <dt><code>range</code></dt>
-      <dd>The <code>start</code> and <code>end</code> attributes on the
-        <code>range</code> element specify the boundaries of a pool of
-        IPv4 addresses to be provided to DHCP clients. These two addresses
-        must lie within the scope of the network defined on the parent
-        <code>ip</code> element.  <span class="since">Since 0.3.0</span>
-      </dd>
-      <dt><code>host</code></dt>
-      <dd>Within the <code>dhcp</code> element there may be zero or more
-        <code>host</code> elements; these specify hosts which will be given
-        names and predefined IP addresses by the built-in DHCP server. Any
-        such element must specify the MAC address of the host to be assigned
-        a given name (via the <code>mac</code> attribute), the IP to be
-        assigned to that host (via the <code>ip</code> attribute), and the
-        name to be given that host by the DHCP server (via the
-        <code>name</code> attribute).  <span class="since">Since 0.4.5</span>
-      </dd><dt><code>bootp</code></dt><dd>The optional <code>bootp</code>
-        element specifies BOOTP options to be provided by the DHCP server.
-        Two attributes are supported: <code>file</code> is mandatory and
-        gives the file to be used for the boot image; <code>server</code> is
-        optional and gives the address of the TFTP server from which the boot
-        image will be fetched.  <code>server</code> defaults to the same host
-        that runs the DHCP server, as is the case when the <code>tftp</code>
-        element is used.  The BOOTP options currently have to be the same
-        for all address ranges and statically assigned addresses.<span
-        class="since">Since 0.7.1 (<code>server</code> since 0.7.3).</span>
+        <dl>
+          <dt><code>tftp</code></dt>
+          <dd>Immediately within
+            the <code>ip</code> element there is an optional <code>tftp</code>
+            element. The presence of this element and of its attribute
+            <code>root</code> enables TFTP services.  The attribute specifies
+            the path to the root directory served via TFTP. <code>tftp</code> is not
+            supported for IPv6 addresses, and can only be specified on a single IPv4 address
+            per network.
+            <span class="since">Since 0.7.1</span>
+          </dd>
+
+          <dt><code>dhcp</code></dt>
+          <dd>Also within the <code>ip</code> element there is an
+            optional <code>dhcp</code> element. The presence of this element
+            enables DHCP services on the virtual network. It will further
+            contain one or more <code>range</code> elements. The
+            <code>dhcp</code> element is not supported for IPv6, and
+            is only supported on a single IP address per network for IPv4.
+            <span class="since">Since 0.3.0</span>
+            <dl>
+              <dt><code>range</code></dt>
+              <dd>The <code>start</code> and <code>end</code> attributes on the
+                <code>range</code> element specify the boundaries of a pool of
+                IPv4 addresses to be provided to DHCP clients. These two addresses
+                must lie within the scope of the network defined on the parent
+                <code>ip</code> element.  <span class="since">Since 0.3.0</span>
+              </dd>
+              <dt><code>host</code></dt>
+              <dd>Within the <code>dhcp</code> element there may be zero or more
+                <code>host</code> elements; these specify hosts which will be given
+                names and predefined IP addresses by the built-in DHCP server. Any
+                such element must specify the MAC address of the host to be assigned
+                a given name (via the <code>mac</code> attribute), the IP to be
+                assigned to that host (via the <code>ip</code> attribute), and the
+                name to be given that host by the DHCP server (via the
+                <code>name</code> attribute).  <span class="since">Since 0.4.5</span>
+              </dd>
+              <dt><code>bootp</code></dt>
+              <dd>The optional <code>bootp</code>
+                element specifies BOOTP options to be provided by the DHCP server.
+                Two attributes are supported: <code>file</code> is mandatory and
+                gives the file to be used for the boot image; <code>server</code> is
+                optional and gives the address of the TFTP server from which the boot
+                image will be fetched.  <code>server</code> defaults to the same host
+                that runs the DHCP server, as is the case when the <code>tftp</code>
+                element is used.  The BOOTP options currently have to be the same
+                for all address ranges and statically assigned addresses.<span
+                class="since">Since 0.7.1 (<code>server</code> since 0.7.3).</span>
+              </dd>
+            </dl>
+          </dd>
+        </dl>
       </dd>
     </dl>
 
@@ -226,6 +490,7 @@
             &lt;range start="192.168.122.2" end="192.168.122.254" /&gt;
           &lt;/dhcp&gt;
         &lt;/ip&gt;
+        &lt;ip family="ipv6" address="2001:db8:ca2:2::1" prefix="64" /&gt;
       &lt;/network&gt;</pre>
 
     <h3><a name="examplesRoute">Routed network config</a></h3>
@@ -249,6 +514,7 @@
             &lt;range start="192.168.122.2" end="192.168.122.254" /&gt;
           &lt;/dhcp&gt;
         &lt;/ip&gt;
+        &lt;ip family="ipv6" address="2001:db8:ca2:2::1" prefix="64" /&gt;
       &lt;/network&gt;</pre>
 
     <h3><a name="examplesPrivate">Isolated network config</a></h3>
@@ -270,6 +536,57 @@
             &lt;range start="192.168.152.2" end="192.168.152.254" /&gt;
           &lt;/dhcp&gt;
         &lt;/ip&gt;
+        &lt;ip family="ipv6" address="2001:db8:ca2:3::1" prefix="64" /&gt;
+      &lt;/network&gt;</pre>
+
+    <h3><a name="examplesBridge">Using an existing host bridge</a></h3>
+
+    <p>
+      This shows how to use a pre-existing host bridge "br0". The
+      guests will effectively be directly connected to the physical
+      network (i.e. their IP addresses will all be on the subnet of
+      the physical network, and there will be no restrictions on
+      inbound or outbound connections).
+    </p>
+
+    <pre>
+      &lt;network&gt;
+        &lt;name&gt;host-bridge&lt;/name&gt;
+        &lt;forward mode="bridge"/&gt;
+        &lt;bridge name="br0"/&gt;
+      &lt;/network&gt;</pre>
+
+    <h3><a name="examplesDirect">Using a macvtap "direct" connection</a></h3>
+
+    <p>
+      This shows how to use macvtap to connect to the physical network
+      directly through one of a group of physical devices (without
+      using a host bridge device). As with the host bridge network,
+      the guests will effectively be directly connected to the
+      physical network so their IP addresses will all be on the subnet
+      of the physical network, and there will be no restrictions on
+      inbound or outbound connections. Note that, due to a limitation
+      in the implementation of macvtap, these connections do not allow
+      communication directly between the host and the guests - if you
+      require this you will either need the attached physical switch
+      to be operating in a mirroring mode (so that all traffic coming
+      to the switch is reflected back to the host's interface), or
+      provide alternate means for this communication (e.g. a second
+      interface on each guest that is connected to an isolated
+      network). The other forward modes that use macvtap (private,
+      vepa, and passthrough) would be used in a similar fashion.
+    </p>
+
+    <pre>
+      &lt;network&gt;
+        &lt;name&gt;direct-macvtap&lt;/name&gt;
+        &lt;forward mode="bridge"&gt;
+          &lt;interface dev="eth20"/&gt;
+          &lt;interface dev="eth21"/&gt;
+          &lt;interface dev="eth22"/&gt;
+          &lt;interface dev="eth23"/&gt;
+          &lt;interface dev="eth24"/&gt;
+        &lt;/forward&gt;
       &lt;/network&gt;</pre>
 
   </body>

docs/formatnwfilter.html.in

@@ -52,8 +52,6 @@
        <li><code>network</code></li>
        <li><code>ethernet</code> -- must be used in bridging mode</li>
        <li><code>bridge</code></li>
-       <li><code>direct</code> -- only protocols mac, arp, ip and ipv6
-            can be filtered</li>
       </ul>
     <p>
     The interface XML is used to reference a top-level filter. In the
@@ -323,6 +321,7 @@
      <li>IPV6_ADDR: IPv6 address in numbers format, i.e., FFFF::1</li>
      <li>IPV6_MASK: IPv6 mask in numbers format (FFFF:FFFF:FC00::) or CIDR mask (0-128)</li>
      <li>STRING: A string</li>
+     <li>BOOLEAN: 'true', 'yes', '1' or 'false', 'no', '0'</li>
     </ul>
     <p>
      <br/><br/>
@@ -478,6 +477,11 @@
          <td>STRING</td>
          <td>text with max. 256 characters</td>
        </tr>
+       <tr>
+         <td>gratuitous <span class="since">(Since 0.9.2)</span></td>
+         <td>BOOLEAN</td>
+         <td>boolean indicating whether to check for gratuitous ARP packet</td>
+       </tr>
       </table>
     <p>
       Valid strings for the <code>Opcode</code> field are:
@@ -755,6 +759,11 @@
          <td>STRING</td>
          <td>comma separated list of NEW,ESTABLISHED,RELATED,INVALID or NONE</td>
        </tr>
+       <tr>
+         <td>flags <span class="since">(Since 0.9.1)</span></td>
+         <td>STRING</td>
+         <td>TCP-only: format of mask/flags with mask and flags each being a comma separated list of SYN,ACK,URG,PSH,FIN,RST or NONE or ALL</td>
+       </tr>
       </table>
     <p>
       <br/><br/>
@@ -1040,6 +1049,11 @@
          <td>STRING</td>
          <td>comma separated list of NEW,ESTABLISHED,RELATED,INVALID or NONE</td>
        </tr>
+       <tr>
+         <td>flags <span class="since">(Since 0.9.1)</span></td>
+         <td>STRING</td>
+         <td>TCP-only: format of mask/flags with mask and flags each being a comma separated list of SYN,ACK,URG,PSH,FIN,RST or NONE or ALL</td>
+       </tr>
       </table>
     <p>
       <br/><br/>

docs/formatsnapshot.html.in

@@ -6,13 +6,88 @@
 
     <h2><a name="SnapshotAttributes">Snapshot XML</a></h2>
 
+    <p>
+      There are several types of snapshots:
+    </p>
+    <dl>
+      <dt>disk snapshot</dt>
+      <dd>Contents of disks (whether a subset or all disks associated
+        with the domain) are saved at a given point of time, and can
+        be restored back to that state.  On a running guest, a disk
+        snapshot is likely to be only crash-consistent rather than
+        clean (that is, it represents the state of the disk on a
+        sudden power outage, and may need fsck or journal replays to
+        be made consistent); on an inactive guest, a disk snapshot is
+        clean if the disks were clean when the guest was last shut
+        down.  Disk snapshots exist in two forms: internal (file
+        formats such as qcow2 track both the snapshot and changes
+        since the snapshot in a single file) and external (the
+        snapshot is one file, and the changes since the snapshot are
+        in another file).</dd>
+      <dt>VM state</dt>
+      <dd>Tracks only the state of RAM and all other resources in use
+        by the VM.  If the disks are unmodified between the time a VM
+        state snapshot is taken and restored, then the guest will
+        resume in a consistent state; but if the disks are modified
+        externally in the meantime, this is likely to lead to data
+        corruption.</dd>
+      <dt>system checkpoint</dt>
+      <dd>A combination of disk snapshots for all disks as well as VM
+        state, which can be used to resume the guest from where it
+        left off with symptoms similar to hibernation (that is, TCP
+        connections in the guest may have timed out, but no files or
+        processes are lost).</dd>
+    </dl>
+
+    <p>
+      Libvirt can manage all three types of snapshots.  For now, VM
+      state snapshots are created only by
+      the <code>virDomainSave()</code>, <code>virDomainSaveFlags</code>,
+      and <code>virDomainManagedSave()</code> functions, and restored
+      via the <code>virDomainRestore()</code>,
+      <code>virDomainRestoreFlags()</code>, <code>virDomainCreate()</code>,
+      and <code>virDomainCreateWithFlags()</code> functions (as well
+      as via domain autostart).  With managed snapshots, libvirt
+      tracks all information internally; with save images, the user
+      tracks the snapshot file, but libvirt provides functions such
+      as <code>virDomainSaveImageGetXMLDesc()</code> to work with
+      those files.
+    </p>
+    <p>System checkpoints are created
+      by <code>virDomainSnapshotCreateXML()</code> with no flags, and
+      disk snapshots are created by the same function with
+      the <code>VIR_DOMAIN_SNAPSHOT_CREATE_DISK_ONLY</code> flag; in
+      both cases, they are restored by
+      the <code>virDomainRevertToSnapshot()</code> function.  For
+      these types of snapshots, libvirt tracks each snapshot as a
+      separate <code>virDomainSnapshotPtr</code> object, and maintains
+      a tree relationship of which snapshots descended from an earlier
+      point in time.
+    </p>
+
     <p>
       Attributes of libvirt snapshots are stored as child elements of
       the <code>domainsnapshot</code> element.  At snapshot creation
-      time, only the <code>name</code> and <code>description</code>
-      elements are settable; the rest of the fields are informational
-      (and readonly) and will be filled in by libvirt when the
-      snapshot is created.
+      time, normally only the <code>name</code>, <code>description</code>,
+      and <code>disks</code> elements are settable; the rest of the
+      fields are ignored on creation, and will be filled in by
+      libvirt in for informational purposes
+      by <code>virDomainSnapshotGetXMLDesc()</code>.  However, when
+      redefining a snapshot (<span class="since">since 0.9.5</span>),
+      with the <code>VIR_DOMAIN_SNAPSHOT_CREATE_REDEFINE</code> flag
+      of <code>virDomainSnapshotCreateXML()</code>, all of the XML
+      described here is relevant.
+    </p>
+    <p>
+      Snapshots are maintained in a hierarchy.  A domain can have a
+      current snapshot, which is the most recent snapshot compared to
+      the current state of the domain (although a domain might have
+      snapshots without a current snapshot, if snapshots have been
+      deleted in the meantime).  Creating or reverting to a snapshot
+      sets that snapshot as current, and the prior current snapshot is
+      the parent of the new snapshot.  Branches in the hierarchy can
+      be formed by reverting to a snapshot with a child, then creating
+      another snapshot.
     </p>
     <p>
       The top-level <code>domainsnapshot</code> element may contain
@@ -21,52 +96,187 @@
     <dl>
       <dt><code>name</code></dt>
       <dd>The name for this snapshot.  If the name is specified when
-      initially creating the snapshot, then the snapshot will have
-      that particular name.  If the name is omitted when initially
-      creating the snapshot, then libvirt will make up a name for the snapshot.
+        initially creating the snapshot, then the snapshot will have
+        that particular name.  If the name is omitted when initially
+        creating the snapshot, then libvirt will make up a name for
+        the snapshot, based on the time when it was created.
       </dd>
       <dt><code>description</code></dt>
       <dd>A human-readable description of the snapshot.  If the
         description is omitted when initially creating the snapshot,
         then this field will be empty.
       </dd>
+      <dt><code>disks</code></dt>
+      <dd>On input, this is an optional listing of specific
+        instructions for disk snapshots; it is needed when making a
+        snapshot of only a subset of the disks associated with a
+        domain, or when overriding the domain defaults for how to
+        snapshot each disk, or for providing specific control over
+        what file name is created in an external snapshot.  On output,
+        this is fully populated to show the state of each disk in the
+        snapshot, including any properties that were generated by the
+        hypervisor defaults.  For system checkpoints, this field is
+        ignored on input and omitted on output (a system checkpoint
+        implies that all disks participate in the snapshot process,
+        and since the current implementation only does internal system
+        checkpoints, there are no extra details to add); a future
+        release may allow the use of <code>disks</code> with a system
+        checkpoint.  This element has a list of <code>disk</code>
+        sub-elements, describing anywhere from zero to all of the
+        disks associated with the domain.  <span class="since">Since
+        0.9.5</span>
+        <dl>
+          <dt><code>disk</code></dt>
+          <dd>This sub-element describes the snapshot properties of a
+            specific disk.  The attribute <code>name</code> is
+            mandatory, and must match either the <code>&lt;target
+            dev='name'/&gt;</code> or an unambiguous <code>&lt;source
+            file='name'/&gt;</code> of one of
+            the <a href="formatdomain.html#elementsDisks">disk
+            devices</a> specified for the domain at the time of the
+            snapshot.  The attribute <code>snapshot</code> is
+            optional, and has the same values of the disk device
+            element for a domain
+            (<code>no</code>, <code>internal</code>,
+            or <code>external</code>).  Some hypervisors like ESX
+            require that if specified, the snapshot mode must not
+            override any snapshot mode attached to the corresponding
+            domain disk, while others like qemu allow this field to
+            override the domain default.  If the snapshot mode is
+            external (whether specified or inherited), then there is
+            an optional sub-element <code>source</code>, with an
+            attribute <code>file</code> giving the name, and an
+            optional sub-element <code>driver</code>, with an
+            attribute <code>type</code> giving the driver type (such
+            as qcow2), of the new file created by the external
+            snapshot of the new file.  If <code>source</code> is not
+            given, a file name is generated that consists of the
+            existing file name with anything after the trailing dot
+            replaced by the snapshot name.  Remember that with external
+            snapshots, the original file name becomes the read-only
+            snapshot, and the new file name contains the read-write
+            delta of all disk changes since the snapshot.
+          </dd>
+        </dl>
+      </dd>
       <dt><code>creationTime</code></dt>
       <dd>The time this snapshot was created.  The time is specified
-      in seconds since the Epoch, UTC (i.e. Unix time).  Readonly.
+        in seconds since the Epoch, UTC (i.e. Unix time).  Readonly.
       </dd>
       <dt><code>state</code></dt>
-      <dd>The state of the domain at the time this snapshot was
-      taken.  When the domain is reverted to this snapshot, the domain's state
-      will be set to whatever is in this field.  Readonly.
+      <dd>The state of the domain at the time this snapshot was taken.
+        If the snapshot was created as a system checkpoint, then this
+        is the state of the domain at that time; when the domain is
+        reverted to this snapshot, the domain's state will default to
+        whatever is in this field unless additional flags are passed
+        to <code>virDomainRevertToSnapshot()</code>.  Additionally,
+        this field can be the value "disk-snapshot"
+        (<span class="since">since 0.9.5</span>) when it represents
+        only a disk snapshot (no VM state), and reverting to this
+        snapshot will default to an inactive guest.  Readonly.
       </dd>
       <dt><code>parent</code></dt>
-      <dd>The parent of this snapshot.  This element contains exactly
-      one child element, name.  This specifies the name of the parent
-      snapshot of this snapshot, and is used to represent trees of
-      snapshots.  Readonly.
+      <dd>The parent of this snapshot.  If present, this element
+        contains exactly one child element, name.  This specifies the
+        name of the parent snapshot of this snapshot, and is used to
+        represent trees of snapshots.  Readonly.
       </dd>
       <dt><code>domain</code></dt>
-      <dd>The domain that this snapshot was taken against.  This
-      element contains exactly one child element, uuid.  This
-      specifies the uuid of the domain that this snapshot was taken
-      against.  Readonly.
+      <dd>The domain that this snapshot was taken against.  Older
+        versions of libvirt stored only a single child element, uuid;
+        reverting to a snapshot like this is risky if the current
+        state of the domain differs from the state that the domain was
+        created in, and requires the use of the
+        <code>VIR_DOMAIN_SNAPSHOT_REVERT_FORCE</code> flag
+        in <code>virDomainRevertToSnapshot()</code>.  Newer versions
+        of libvirt (<span class="since">since 0.9.5</span>) store the entire
+        inactive <a href="formatdomain.html">domain configuration</a>
+        at the time of the snapshot (<span class="since">since
+        0.9.5</span>).  Readonly.
       </dd>
     </dl>
 
-    <h2><a name="example">Example</a></h2>
+    <h2><a name="example">Examples</a></h2>
 
+    <p>Using this XML to create a disk snapshot of just vda on a qemu
+      domain with two disks:</p>
     <pre>
-      &lt;domainsnapshot&gt;
-         &lt;name&gt;os-updates&lt;/name&gt;
-         &lt;description&gt;Snapshot of OS install and updates&lt;/description&gt;
-         &lt;state&gt;running&lt;/state&gt;
-         &lt;creationTime&gt;1270477159&lt;/creationTime&gt;
-         &lt;parent&gt;
-            &lt;name&gt;bare-os-install&lt;/name&gt;
-         &lt;/parent&gt;
-         &lt;domain&gt;
-            &lt;uuid&gt;93a5c045-6457-2c09-e56c-927cdf34e178&lt;/uuid&gt;
-         &lt;/domain&gt;
-      &lt;/domainsnapshot&gt;</pre>
+&lt;domainsnapshot&gt;
+  &lt;description&gt;Snapshot of OS install and updates&lt;/description&gt;
+  &lt;disks&gt;
+    &lt;disk name='/path/to/old'&gt;
+      &lt;source file='/path/to/new'/&gt;
+    &lt;/disk&gt;
+    &lt;disk name='vdb' snapshot='no'/&gt;
+  &lt;/disks&gt;
+&lt;/domainsnapshot&gt;</pre>
+
+    <p>will result in XML similar to this from
+      <code>virDomainSnapshotGetXMLDesc()</code>:</p>
+    <pre>
+&lt;domainsnapshot&gt;
+  &lt;name&gt;1270477159&lt;/name&gt;
+  &lt;description&gt;Snapshot of OS install and updates&lt;/description&gt;
+  &lt;state&gt;running&lt;/state&gt;
+  &lt;creationTime&gt;1270477159&lt;/creationTime&gt;
+  &lt;parent&gt;
+    &lt;name&gt;bare-os-install&lt;/name&gt;
+  &lt;/parent&gt;
+  &lt;disks&gt;
+    &lt;disk name='vda' snapshot='external'&gt;
+      &lt;driver type='qcow2'/&gt;
+      <b>&lt;source file='/path/to/new'/&gt;</b>
+    &lt;/disk&gt;
+    &lt;disk name='vdb' snapshot='no'/&gt;
+  &lt;/disks&gt;
+  &lt;domain&gt;
+    &lt;name&gt;fedora&lt;/name&gt;
+    &lt;uuid&gt;93a5c045-6457-2c09-e56c-927cdf34e178&lt;/uuid&gt;
+    &lt;memory&gt;1048576&lt;/memory&gt;
+    ...
+    &lt;devices&gt;
+      &lt;disk type='file' device='disk'&gt;
+        &lt;driver name='qemu' type='raw'/&gt;
+        <b>&lt;source file='/path/to/old'/&gt;</b>
+        &lt;target dev='vda' bus='virtio'/&gt;
+      &lt;/disk&gt;
+      &lt;disk type='file' device='disk' snapshot='external'&gt;
+        &lt;driver name='qemu' type='raw'/&gt;
+        &lt;source file='/path/to/old2'/&gt;
+        &lt;target dev='vdb' bus='virtio'/&gt;
+      &lt;/disk&gt;
+      ...
+    &lt;/devices&gt;
+  &lt;/domain&gt;
+&lt;/domainsnapshot&gt;</pre>
+
+    <p>With that snapshot created, <code>/path/to/old</code> is the
+      read-only backing file to the new active
+      file <code>/path/to/new</code>.  The <code>&lt;domain&gt;</code>
+      element within the snapshot xml records the state of the domain
+      just before the snapshot; a call
+      to <code>virDomainGetXMLDesc()</code> will show that the domain
+      has been changed to reflect the snapshot:
+    </p>
+    <pre>
+&lt;domain&gt;
+  &lt;name&gt;fedora&lt;/name&gt;
+  &lt;uuid&gt;93a5c045-6457-2c09-e56c-927cdf34e178&lt;/uuid&gt;
+  &lt;memory&gt;1048576&lt;/memory&gt;
+  ...
+  &lt;devices&gt;
+    &lt;disk type='file' device='disk'&gt;
+      &lt;driver name='qemu' type='qcow2'/&gt;
+      <b>&lt;source file='/path/to/new'/&gt;</b>
+      &lt;target dev='vda' bus='virtio'/&gt;
+    &lt;/disk&gt;
+    &lt;disk type='file' device='disk' snapshot='external'&gt;
+      &lt;driver name='qemu' type='raw'/&gt;
+      &lt;source file='/path/to/old2'/&gt;
+      &lt;target dev='vdb' bus='virtio'/&gt;
+    &lt;/disk&gt;
+    ...
+  &lt;/devices&gt;
+&lt;/domain&gt;</pre>
   </body>
 </html>

docs/hacking.html.in

@@ -506,7 +506,7 @@
       Usage of the <code>fdopen()</code>, <code>close()</code>, <code>fclose()</code>
       APIs is deprecated in libvirt code base to help avoiding double-closing of files
       or file descriptors, which is particulary dangerous in a multi-threaded
-      applications. Instead of these APIs, use the macros from files.h
+      applications. Instead of these APIs, use the macros from virfile.h
     </p>
 
    <ul>
@@ -654,7 +654,7 @@
      ...
 
      virBufferAddLit(&amp;buf, "&lt;domain&gt;\n");
-     virBufferVSprintf(&amp;buf, "  &lt;memory&gt;%d&lt;/memory&gt;\n", memory);
+     virBufferAsprintf(&amp;buf, "  &lt;memory&gt;%d&lt;/memory&gt;\n", memory);
      ...
      virBufferAddLit(&amp;buf, "&lt;/domain&gt;\n");
 

docs/hvsupport.html.in

@@ -1,801 +0,0 @@
-<?xml version="1.0"?>
-<html>
-  <body>
-    <h1>Driver support matrix</h1>
-    <p>
-This page documents which <a href="html/">libvirt calls</a> work on
-which libvirt drivers / hypervisors, and which version the API appeared
-in.
-</p>
-    <p>
-This information changes frequently.  This page was last checked or
-updated on <i>2008-06-05</i>.
-</p>
-    <h3>Domain functions</h3>
-    <p> x = not supported; empty cell means no information </p>
-    <table class="top_table">
-      <tr>
-        <th> Function </th>
-        <th> Since </th>
-        <th><a href="drvxen.html">Xen</a></th>
-        <th><a href="drvqemu.html">QEMU</a></th>
-        <th><a href="drvkvm.html">KVM</a></th>
-        <th><a href="remote.html">Remote</a></th>
-        <th><a href="drvvbox.html">VirtualBox</a></th>
-        <th><a href="drvone.html">ONE</a></th>
-        <th><a href="drvesx.html">ESX</a></th>
-      </tr>
-      <tr>
-        <td> virConnectClose </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectGetCapabilities </td>
-        <td> 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.1 </td>
-      </tr>
-      <tr>
-        <td> virConnectGetHostname </td>
-        <td> 0.3.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.3.3 </td>
-        <td> &#x2265; 0.3.3 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectGetMaxVcpus </td>
-        <td> 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virConnectGetType </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectGetURI </td>
-        <td> 0.3.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectGetVersion </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectListDefinedDomains </td>
-        <td> 0.1.5 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectListDomains </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectNumOfDefinedDomains </td>
-        <td> 0.1.5 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectNumOfDomains </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectOpen </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virConnectOpenAuth </td>
-        <td>  </td>
-        <td>  </td>
-        <td>  </td>
-        <td>  </td>
-        <td>  </td>
-        <td>  </td>
-        <td>  </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectOpenReadOnly </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainAttachDevice </td>
-        <td> 0.1.9 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainBlockPeek </td>
-        <td> 0.4.3 </td>
-        <td> 0.4.3 </td>
-        <td> 0.4.3 </td>
-        <td> 0.4.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainBlockStats </td>
-        <td> 0.3.2 </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainCoreDump </td>
-        <td> 0.1.9 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainCreate </td>
-        <td> 0.1.5 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainCreateLinux </td>
-        <td> All </td>
-        <td> &#x2265; 0.0.5 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainDefineXML </td>
-        <td> 0.1.5 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.2 </td>
-      </tr>
-      <tr>
-        <td> virDomainDestroy </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainDetachDevice </td>
-        <td> 0.1.9 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainFree </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetAutostart </td>
-        <td> 0.2.1 </td>
-        <td> x </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainGetConnect </td>
-        <td> 0.3.0 </td>
-        <td colspan="7"> not a HV function </td>
-      </tr>
-      <tr>
-        <td> virDomainGetID </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetInfo </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetMaxMemory </td>
-        <td> All </td>
-        <td> All </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetMaxVcpus </td>
-        <td> 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetName </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetOSType </td>
-        <td> All </td>
-        <td> All </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetSchedulerParameters </td>
-        <td> 0.2.3 </td>
-        <td> &#x2265; 0.2.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetSchedulerType </td>
-        <td> 0.2.3 </td>
-        <td> &#x2265; 0.2.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetUUID </td>
-        <td> 0.1.10 </td>
-        <td> &#x2265; 0.1.10 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetUUIDString </td>
-        <td> 0.1.10 </td>
-        <td> &#x2265; 0.1.10 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainGetVcpus </td>
-        <td> 0.1.4 </td>
-        <td> &#x2265; 0.1.4 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainInterfaceStats </td>
-        <td> 0.3.2 </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainGetXMLDesc </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainLookupByID </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainLookupByName </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainLookupByUUID </td>
-        <td> 0.1.10 </td>
-        <td> &#x2265; 0.1.10 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainLookupByUUIDString </td>
-        <td> 0.1.10 </td>
-        <td> &#x2265; 0.1.10 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainMigrate </td>
-        <td> 0.3.2 </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> 0.3.2 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainPinVcpu </td>
-        <td> 0.1.4 </td>
-        <td> &#x2265; 0.1.4 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainReboot </td>
-        <td> 0.1.0 </td>
-        <td> &#x2265; 0.1.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainRestore </td>
-        <td> All </td>
-        <td> All </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainResume </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainSave </td>
-        <td> All </td>
-        <td> All </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.2 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainSetAutostart </td>
-        <td> 0.2.1 </td>
-        <td> x </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.2.1 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virDomainSetMaxMemory </td>
-        <td> All </td>
-        <td> All </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainSetMemory </td>
-        <td> 0.1.1 </td>
-        <td> &#x2265; 0.1.1 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainSetSchedulerParameters </td>
-        <td> 0.2.3 </td>
-        <td> &#x2265; 0.2.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainSetVcpus </td>
-        <td> 0.1.4 </td>
-        <td> &#x2265; 0.1.4 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainShutdown </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainSuspend </td>
-        <td> All </td>
-        <td> All </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virDomainUndefine </td>
-        <td> 0.1.5 </td>
-        <td> &#x2265; 0.1.9 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> &#x2265; 0.6.4 </td>
-        <td> &#x2265; 0.7.1 </td>
-      </tr>
-      <tr>
-        <td> virGetVersion </td>
-        <td> All </td>
-        <td> All </td>
-        <td colspan="6"> Returns -1 if HV unsupported. </td>
-      </tr>
-      <tr>
-        <td> virInitialize </td>
-        <td> 0.1.0 </td>
-        <td colspan="7"> not a HV function </td>
-      </tr>
-      <tr>
-        <td> virDomainMemoryPeek </td>
-        <td> 0.4.3 </td>
-        <td> x </td>
-        <td> 0.4.3 </td>
-        <td> 0.4.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-      <tr>
-        <td> virNodeGetInfo </td>
-        <td> 0.1.0 </td>
-        <td> &#x2265; 0.1.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.2.0 </td>
-        <td> &#x2265; 0.3.0 </td>
-        <td> &#x2265; 0.6.3 </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.0 </td>
-      </tr>
-      <tr>
-        <td> virNodeGetFreeMemory </td>
-        <td> 0.3.3 </td>
-        <td> &#x2265; 0.3.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> &#x2265; 0.7.2 </td>
-      </tr>
-      <tr>
-        <td> virNodeGetCellsFreeMemory </td>
-        <td> 0.3.3 </td>
-        <td> &#x2265; 0.3.3 </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-        <td> x </td>
-      </tr>
-    </table>
-    <h3>Network functions</h3>
-    <p>
-Network functions are not hypervisor-specific.They require the libvirtd
-daemon to be running. Most network functions first appeared in libvirt 0.2.0.
-</p>
-    <table class="top_table">
-      <tr>
-        <th> Function </th>
-        <th> Since </th>
-      </tr>
-      <tr>
-        <td> virConnectNumOfNetworks </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectListNetworks </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectNumOfDefinedNetworks </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virConnectListDefinedNetworks </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkCreate </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkCreateXML </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkDefineXML </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkDestroy </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkFree </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetAutostart </td>
-        <td> 0.2.1 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetConnect </td>
-        <td> 0.3.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetBridgeName </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetName </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetUUID </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetUUIDString </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkGetXMLDesc </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkLookupByName </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkLookupByUUID </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkLookupByUUIDString </td>
-        <td> 0.2.0 </td>
-      </tr>
-      <tr>
-        <td> virNetworkSetAutostart </td>
-        <td> 0.2.1 </td>
-      </tr>
-      <tr>
-        <td> virNetworkUndefine </td>
-        <td> 0.2.0 </td>
-      </tr>
-    </table>
-  </body>
-</html>

docs/hvsupport.pl

@@ -0,0 +1,395 @@
+#!/usr/bin/perl
+
+use strict;
+use warnings;
+
+use File::Find;
+
+die "syntax: $0 SRCDIR\n" unless int(@ARGV) == 1;
+
+my $srcdir = shift @ARGV;
+
+my $symslibvirt = "$srcdir/libvirt_public.syms";
+my $symsqemu = "$srcdir/libvirt_qemu.syms";
+my $drivertable = "$srcdir/driver.h";
+
+my %groupheaders = (
+    "virDriver" => "Hypervisor APIs",
+    "virNetworkDriver" => "Virtual Network APIs",
+    "virInterfaceDriver" => "Host Interface APIs",
+    "virDeviceMonitor" => "Host Device APIs",
+    "virStorageDriver" => "Storage Pool APIs",
+    "virSecretDriver" => "Secret APIs",
+    "virNWFilterDriver" => "Network Filter APIs",
+    );
+
+
+my @srcs;
+find({
+    wanted => sub {
+	if (m!$srcdir/.*/\w+_(driver|tmpl|monitor|hal|udev)\.c$!) {
+	    push @srcs, $_ if $_ !~ /vbox_driver\.c/;
+	}
+    }, no_chdir => 1}, $srcdir);
+my $line;
+
+# Get the list of all public APIs and their corresponding version
+
+my %apis;
+open FILE, "<$symslibvirt"
+    or die "cannot read $symslibvirt: $!";
+
+my $vers;
+my $prevvers;
+while (defined($line = <FILE>)) {
+    chomp $line;
+    next if $line =~ /^\s*#/;
+    next if $line =~ /^\s*$/;
+    next if $line =~ /^\s*(global|local):/;
+    if ($line =~ /^\s*LIBVIRT_(\d+\.\d+\.\d+)\s*{\s*$/) {
+	if (defined $vers) {
+	    die "malformed syms file";
+	}
+	$vers = $1;
+    } elsif ($line =~ /\s*}\s*;\s*$/) {
+	if (defined $prevvers) {
+	    die "malformed syms file";
+	}
+	$prevvers = $vers;
+	$vers = undef;
+    } elsif ($line =~ /\s*}\s*LIBVIRT_(\d+\.\d+\.\d+)\s*;\s*$/) {
+	if ($1 ne $prevvers) {
+	    die "malformed syms file $1 != $vers";
+	}
+	$prevvers = $vers;
+	$vers = undef;
+    } elsif ($line =~ /\s*(\w+)\s*;\s*$/) {
+	$apis{$1} = $vers;
+    } else {
+	die "unexpected data $line\n";
+    }
+}
+
+close FILE;
+
+
+# And the same for the QEMU specific APIs
+
+open FILE, "<$symsqemu"
+    or die "cannot read $symsqemu: $!";
+
+$prevvers = undef;
+$vers = undef;
+while (defined($line = <FILE>)) {
+    chomp $line;
+    next if $line =~ /^\s*#/;
+    next if $line =~ /^\s*$/;
+    next if $line =~ /^\s*(global|local):/;
+    if ($line =~ /^\s*LIBVIRT_QEMU_(\d+\.\d+\.\d+)\s*{\s*$/) {
+	if (defined $vers) {
+	    die "malformed syms file";
+	}
+	$vers = $1;
+    } elsif ($line =~ /\s*}\s*;\s*$/) {
+	if (defined $prevvers) {
+	    die "malformed syms file";
+	}
+	$prevvers = $vers;
+	$vers = undef;
+    } elsif ($line =~ /\s*}\s*LIBVIRT_QEMU_(\d+\.\d+\.\d+)\s*;\s*$/) {
+	if ($1 ne $prevvers) {
+	    die "malformed syms file $1 != $vers";
+	}
+	$prevvers = $vers;
+	$vers = undef;
+    } elsif ($line =~ /\s*(\w+)\s*;\s*$/) {
+	$apis{$1} = $vers;
+    } else {
+	die "unexpected data $line\n";
+    }
+}
+
+close FILE;
+
+
+# Some special things which aren't public APIs,
+# but we want to report
+$apis{virConnectDrvSupportsFeature} = "0.3.2";
+$apis{virDomainMigratePrepare} = "0.3.2";
+$apis{virDomainMigratePerform} = "0.3.2";
+$apis{virDomainMigrateFinish} = "0.3.2";
+$apis{virDomainMigratePrepare2} = "0.5.0";
+$apis{virDomainMigrateFinish2} = "0.5.0";
+$apis{virDomainMigratePrepareTunnel} = "0.7.2";
+
+$apis{virDomainMigrateBegin3} = "0.9.2";
+$apis{virDomainMigratePrepare3} = "0.9.2";
+$apis{virDomainMigratePrepareTunnel3} = "0.9.2";
+$apis{virDomainMigratePerform3} = "0.9.2";
+$apis{virDomainMigrateFinish3} = "0.9.2";
+$apis{virDomainMigrateConfirm3} = "0.9.2";
+
+
+
+# Now we want to get the mapping between public APIs
+# and driver struct fields. This lets us later match
+# update the driver impls with the public APis.
+
+open FILE, "<$drivertable"
+    or die "cannot read $drivertable: $!";
+
+# Group name -> hash of APIs { fields -> api name }
+my %groups;
+my $ingrp;
+while (defined($line = <FILE>)) {
+    if ($line =~ /struct _(vir\w*(?:Driver|Monitor))/) {
+	my $grp = $1;
+	if ($grp ne "virStateDriver" &&
+	    $grp ne "virStreamDriver") {
+	    $ingrp = $grp;
+	    $groups{$ingrp} = { apis => {}, drivers => {} };
+	}
+    } elsif ($ingrp) {
+	if ($line =~ /^\s*vir(?:Drv|DevMon)(\w+)\s+(\w+);\s*$/) {
+	    my $field = $2;
+	    my $name = $1;
+
+	    my $api;
+	    if (exists $apis{"vir$name"}) {
+		$api = "vir$name";
+	    } elsif (exists $apis{"virConnect$name"}) {
+		$api = "virConnect$name";
+	    } elsif (exists $apis{"virNode$name"}) {
+		$api = "virNode$name";
+	    } else {
+		die "driver $name does not have a public API";
+	    }
+	    $groups{$ingrp}->{apis}->{$field} = $api;
+	} elsif ($line =~ /};/) {
+	    $ingrp = undef;
+	}
+    }
+}
+
+close FILE;
+
+
+# Finally, we read all the primary driver files and extract
+# the driver API tables from each one.
+
+foreach my $src (@srcs) {
+    open FILE, "<$src" or
+	die "cannot read $src: $!";
+
+    $ingrp = undef;
+    my $impl;
+    while (defined($line = <FILE>)) {
+	if (!$ingrp) {
+	    foreach my $grp (keys %groups) {
+		if ($line =~ /^\s*(?:static\s+)?$grp\s+(\w+)\s*=\s*{/ ||
+		    $line =~ /^\s*(?:static\s+)?$grp\s+NAME\(\w+\)\s*=\s*{/) {
+		    $ingrp = $grp;
+		    $impl = $src;
+
+		    if ($impl =~ m,.*/node_device_(\w+)\.c,) {
+			$impl = $1;
+		    } else {
+			$impl =~ s,.*/(\w+?)_((\w+)_)?(\w+)\.c,$1,;
+		    }
+
+		    if ($groups{$ingrp}->{drivers}->{$impl}) {
+			die "Group $ingrp already contains $impl";
+		    }
+
+		    $groups{$ingrp}->{drivers}->{$impl} = {};
+		}
+	    }
+
+	} else {
+	    if ($line =~ m!\s*\.(\w+)\s*=\s*(\w+)\s*,?\s*(?:/\*\s*(\d+\.\d+\.\d+)\s*\*/\s*)?$!) {
+		my $api = $1;
+		my $meth = $2;
+		my $vers = $3;
+
+		next if $api eq "no" || $api eq "name";
+
+		die "Method $meth in $src is missing version" unless defined $vers;
+
+		die "Driver method for $api is NULL in $src" if $meth eq "NULL";
+
+		if (!exists($groups{$ingrp}->{apis}->{$api})) {
+		    die "Found unexpected method $api in $ingrp\n";
+		}
+
+		$groups{$ingrp}->{drivers}->{$impl}->{$api} = $vers;
+		if ($api eq "domainMigratePrepare" ||
+		    $api eq "domainMigratePrepare2" ||
+		    $api eq "domainMigratePrepare3") {
+		    $groups{$ingrp}->{drivers}->{$impl}->{"domainMigrate"} = $vers
+			unless $groups{$ingrp}->{drivers}->{$impl}->{"domainMigrate"};
+		}
+
+	    } elsif ($line =~ /}/) {
+		$ingrp = undef;
+	    }
+	}
+    }
+
+    close FILE;
+}
+
+
+# The '.open' driver method is used for 3 public APIs, so we
+# have a bit of manual fixup todo with the per-driver versioning
+# and support matrix
+
+$groups{virDriver}->{apis}->{"openAuth"} = "virConnectOpenAuth";
+$groups{virDriver}->{apis}->{"openReadOnly"} = "virConnectOpenReadOnly";
+$groups{virDriver}->{apis}->{"domainMigrate"} = "virDomainMigrate";
+
+my $openAuthVers = (0 * 1000 * 1000) + (4 * 1000) + 0;
+
+foreach my $drv (keys %{$groups{"virDriver"}->{drivers}}) {
+    my $openVersStr = $groups{"virDriver"}->{drivers}->{$drv}->{"open"};
+    my $openVers;
+    if ($openVersStr =~ /(\d+)\.(\d+)\.(\d+)/) {
+	$openVers = ($1 * 1000 * 1000) + ($2 * 1000) + $3;
+    }
+
+    # virConnectOpenReadOnly always matches virConnectOpen version
+    $groups{"virDriver"}->{drivers}->{$drv}->{"openReadOnly"} =
+	$groups{"virDriver"}->{drivers}->{$drv}->{"open"};
+
+    # virConnectOpenAuth is always 0.4.0 if the driver existed
+    # before this time, otherwise it matches the version of
+    # the driver's virConnectOpen entry
+    if ($openVersStr eq "Y" ||
+	$openVers >= $openAuthVers) {
+	$groups{"virDriver"}->{drivers}->{$drv}->{"openAuth"} = $openVersStr;
+    } else {
+	$groups{"virDriver"}->{drivers}->{$drv}->{"openAuth"} = "0.4.0";
+    }
+}
+
+
+# Another special case for the virDomainCreateLinux which was replaced
+# with virDomainCreateXML
+$groups{virDriver}->{apis}->{"domainCreateLinux"} = "virDomainCreateLinux";
+
+my $createAPIVers = (0 * 1000 * 1000) + (0 * 1000) + 3;
+
+foreach my $drv (keys %{$groups{"virDriver"}->{drivers}}) {
+    my $createVersStr = $groups{"virDriver"}->{drivers}->{$drv}->{"domainCreateXML"};
+    next unless defined $createVersStr;
+    my $createVers;
+    if ($createVersStr =~ /(\d+)\.(\d+)\.(\d+)/) {
+	$createVers = ($1 * 1000 * 1000) + ($2 * 1000) + $3;
+    }
+
+    # virCreateLinux is always 0.0.3 if the driver existed
+    # before this time, otherwise it matches the version of
+    # the driver's virCreateXML entry
+    if ($createVersStr eq "Y" ||
+	$createVers >= $createAPIVers) {
+	$groups{"virDriver"}->{drivers}->{$drv}->{"domainCreateLinux"} = $createVersStr;
+    } else {
+	$groups{"virDriver"}->{drivers}->{$drv}->{"domainCreateLinux"} = "0.0.3";
+    }
+}
+
+
+# Finally we generate the HTML file with the tables
+
+print <<EOF;
+<html>
+<head>
+<title>libvirt API support matrix</title>
+</head>
+<body>
+<h1>libvirt API support matrix</h1>
+
+<ul id="toc"></ul>
+
+<p>
+This page documents which <a href="html/">libvirt calls</a> work on
+which libvirt drivers / hypervisors, and which version the API appeared
+in.
+</p>
+
+EOF
+
+foreach my $grp (sort { $a cmp $b } keys %groups) {
+    print "<h2><a name=\"$grp\">", $groupheaders{$grp}, "</a></h2>\n";
+    print <<EOF;
+<table class="top_table">
+<thead>
+<tr>
+<th>API</th>
+<th>Version</th>
+EOF
+
+    foreach my $drv (sort { $a cmp $b } keys %{$groups{$grp}->{drivers}}) {
+	print "  <th>$drv</th>\n";
+    }
+
+    print <<EOF;
+</tr>
+</thead>
+<tbody>
+EOF
+
+    my $row = 0;
+    foreach my $field (sort {
+	$groups{$grp}->{apis}->{$a}
+	cmp
+	$groups{$grp}->{apis}->{$b}
+	} keys %{$groups{$grp}->{apis}}) {
+	my $api = $groups{$grp}->{apis}->{$field};
+	my $vers = $apis{$api};
+	print <<EOF;
+<tr>
+<td><a href=\"html/libvirt-libvirt.html#$api\">$api</a></td>
+<td>$vers</td>
+EOF
+
+        foreach my $drv (sort {$a cmp $b } keys %{$groups{$grp}->{drivers}}) {
+	    if (exists $groups{$grp}->{drivers}->{$drv}->{$field}) {
+		print "<td>", $groups{$grp}->{drivers}->{$drv}->{$field}, "</td>\n";
+	    } else {
+		print "<td></td>\n";
+	    }
+        }
+
+	print <<EOF;
+</tr>
+EOF
+
+        $row++;
+        if (($row % 15) == 0) {
+            print <<EOF;
+<tr>
+<th>API</th>
+<th>Version</th>
+EOF
+
+            foreach my $drv (sort { $a cmp $b } keys %{$groups{$grp}->{drivers}}) {
+	        print "  <th>$drv</th>\n";
+            }
+
+        print <<EOF;
+</tr>
+EOF
+	}
+
+    }
+
+    print <<EOF;
+</tbody>
+</table>
+EOF
+}
+
+print <<EOF;
+</body>
+</html>
+EOF

docs/index.html.in

@@ -35,32 +35,35 @@
 
     <ul>
       <li>
-        The <a href="http://www.cl.cam.ac.uk/Research/SRG/netos/xen/index.html">Xen</a> hypervisor
+        The <a href="http://libvirt.org/drvqemu.html">KVM/QEMU</a> Linux hypervisor
+      </li>
+      <li>
+        The <a href="http://libvirt.org/drvxen.html">Xen</a> hypervisor
         on Linux and Solaris hosts.
       </li>
       <li>
-        The <a href="http://wiki.qemu.org/Index.html">QEMU</a> emulator
+        The <a href="http://libvirt.org/drvlxc.html">LXC</a> Linux container system
       </li>
       <li>
-        The <a href="http://www.linux-kvm.org/">KVM</a> Linux hypervisor
+        The <a href="http://libvirt.org/drvopenvz.html">OpenVZ</a> Linux container system
       </li>
       <li>
-        The <a href="http://lxc.sourceforge.net/">LXC</a> Linux container system
+        The <a href="http://libvirt.org/drvuml.html">User Mode Linux</a> paravirtualized kernel
       </li>
       <li>
-        The <a href="http://openvz.org/">OpenVZ</a> Linux container system
+        The <a href="http://libvirt.org/drvvbox.html">VirtualBox</a> hypervisor
       </li>
       <li>
-        The <a href="http://user-mode-linux.sourceforge.net/">User Mode Linux</a> paravirtualized kernel
+        The <a href="http://libvirt.org/drvesx.html">VMware ESX and GSX</a> hypervisors
       </li>
       <li>
-        The <a href="http://www.virtualbox.org/">VirtualBox</a> hypervisor
+        The <a href="http://libvirt.org/drvvmware.html">VMware Workstation and Player</a> hypervisors
       </li>
       <li>
-        The <a href="http://www.vmware.com/">VMware ESX and GSX</a> hypervisors
+        The <a href="http://libvirt.org/drvhyperv.html">Microsoft Hyper-V</a> hypervisor
       </li>
       <li>
-        The <a href="http://www.vmware.com/">VMware Workstation and Player</a> hypervisors
+        Virtual networks using bridging, NAT, VEPA and VN-LINK.
       </li>
       <li>
         Storage on IDE/SCSI/USB disks, FibreChannel, LVM, iSCSI, NFS and filesystems

docs/internals/command.html.in

@@ -497,6 +497,23 @@
       error if not.
     </p>
 
+    <p>
+      There are two approaches to child process cleanup, determined by
+      how long you want to keep the virCommand object in scope.
+    </p>
+
+    <p>1. If the virCommand object will outlast the child process,
+      then pass NULL for the pid argument, and the child process will
+      automatically be reaped at virCommandFree, unless you reap it
+      sooner via virCommandWait or virCommandAbort.
+    </p>
+
+    <p>2. If the child process must exist on at least one code path
+      after virCommandFree, then pass a pointer for the pid argument.
+      Later, to clean up the child, call virPidWait or virPidAbort.
+      Before virCommandFree, you can still use virCommandWait or
+      virCommandAbort to reap the process.
+    </p>
 
     <h3><a name="release">Releasing resources</a></h3>
 

docs/internals/locking.html.in

@@ -0,0 +1,257 @@
+<html>
+  <body>
+    <h1>Resource Lock Manager</h1>
+
+    <ul id="toc"></ul>
+
+    <p>
+      This page describes the design of the resource lock manager
+      that is used for locking disk images, to ensure exclusive
+      access to content.
+    </p>
+
+    <h2><a name="goals">Goals</a></h2>
+
+    <p>
+      The high level goal is to prevent the same disk image being
+      used by more than one QEMU instance at a time (unless the
+      disk is marked as shareable, or readonly). The scenarios
+      to be prevented are thus:
+    </p>
+
+    <ol>
+      <li>
+        Two different guests running configured to point at the
+        same disk image.
+      </li>
+      <li>
+        One guest being started more than once on two different
+        machines due to admin mistake
+      </li>
+      <li>
+        One guest being started more than once on a single machine
+        due to libvirt driver bug on a single machine.
+      </li>
+    </ol>
+
+    <h2><a name="requirement">Requirements</a></h2>
+
+    <p>
+      The high level goal leads to a set of requirements
+      for the lock manager design
+    </p>
+
+    <ol>
+      <li>
+        A lock must be held on a disk whenever a QEMU process
+        has the disk open
+      </li>
+      <li>
+        The lock scheme must allow QEMU to be configured with
+        readonly, shared write, or exclusive writable disks
+      </li>
+      <li>
+        A lock handover must be performed during the migration
+        process where 2 QEMU processes will have the same disk
+        open concurrently.
+      </li>
+      <li>
+        The lock manager must be able to identify and kill the
+        process accessing the resource if the lock is revoked.
+      </li>
+      <li>
+        Locks can be acquired for arbitrary VM related resources,
+        as determined by the management application.
+      </li>
+    </ol>
+
+    <h2><a name="design">Design</a></h2>
+
+    <p>
+      Within a lock manager the following series of operations
+      will need to be supported.
+    </p>
+
+    <ul>
+      <li>
+        <strong>Register object</strong>
+        Register the identity of an object against which
+        locks will be acquired
+      </li>
+      <li>
+        <strong>Add resource</strong>
+        Associate a resource with an object for future
+        lock acquisition / release
+      </li>
+      <li>
+        <strong>Acquire locks</strong>
+        Acquire the locks for all resources associated
+        with the object
+      </li>
+      <li>
+        <strong>Release locks</strong>
+        Release the locks for all resources associated
+        with the object
+      </li>
+      <li>
+        <strong>Inquire locks</strong>
+        Get a representation of the state of the locks
+        for all resources associated with the object
+      </li>
+    </ul>
+
+    <h2><a name="impl">Plugin Implementations</a></h2>
+
+    <p>
+      Lock manager implementations are provided as LGPLv2+
+      licensed, dlopen()able library modules. The plugins
+      will be loadable from the following location:
+    </p>
+
+    <pre>
+/usr/{lib,lib64}/libvirt/lock_manager/$NAME.so
+</pre>
+
+    <p>
+      The lock manager plugin must export a single ELF
+      symbol named <code>virLockDriverImpl</code>, which is
+      a static instance of the <code>virLockDriver</code>
+      struct. The struct is defined in the header file
+    </p>
+
+    <pre>
+      #include &lt;libvirt/plugins/lock_manager.h&gt;
+    </pre>
+
+    <p>
+      All callbacks in the struct must be initialized
+      to non-NULL pointers. The semantics of each
+      callback are defined in the API docs embedded
+      in the previously mentioned header file
+    </p>
+
+    <h2><a name="qemuIntegrate">QEMU Driver integration</a></h2>
+
+    <p>
+      With the QEMU driver, the lock plugin will be set
+      in the <code>/etc/libvirt/qemu.conf</code> configuration
+      file by specifying the lock manager name.
+    </p>
+
+    <pre>
+      lockManager="sanlock"
+    </pre>
+
+    <p>
+      By default the lock manager will be a 'no op' implementation
+      for backwards compatibility
+    </p>
+
+    <h2><a name="usagePatterns">Lock usage patterns</a></h2>
+
+    <p>
+      The following psuedo code illustrates the common
+      patterns of operations invoked on the lock
+      manager plugin callbacks.
+    </p>
+
+    <h3><a name="usageLockAcquire">Lock acquisition</a></h3>
+
+    <p>
+      Initial lock acquisition will be performed from the
+      process that is to own the lock. This is typically
+      the QEMU child process, in between the fork+exec
+      pairing. When adding further resources on the fly,
+      to an existing object holding locks, this will be
+      done from the libvirtd process.
+    </p>
+
+    <pre>
+      virLockManagerParam params[] = {
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_UUID,
+          .key = "uuid",
+        },
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_STRING,
+          .key = "name",
+          .value = { .str = dom->def->name },
+        },
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_UINT,
+          .key = "id",
+          .value = { .i = dom->def->id },
+        },
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_UINT,
+          .key = "pid",
+          .value = { .i = dom->pid },
+        },
+      };
+      mgr = virLockManagerNew(lockPlugin,
+                              VIR_LOCK_MANAGER_TYPE_DOMAIN,
+                              ARRAY_CARDINALITY(params),
+                              params,
+                              0)));
+
+      foreach (initial disks)
+          virLockManagerAddResource(mgr,
+                                    VIR_LOCK_MANAGER_RESOURCE_TYPE_DISK,
+                                    $path, 0, NULL, $flags);
+
+      if (virLockManagerAcquire(lock, NULL, 0) &lt; 0);
+        ...abort...
+    </pre>
+
+    <h3><a name="usageLockAttach">Lock release</a></h3>
+
+    <p>
+      The locks are all implicitly released when the process
+      that acquired them exits, however, a process may
+      voluntarily give up the lock by running
+    </p>
+
+    <pre>
+      char *state = NULL;
+      virLockManagerParam params[] = {
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_UUID,
+          .key = "uuid",
+        },
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_STRING,
+          .key = "name",
+          .value = { .str = dom->def->name },
+        },
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_UINT,
+          .key = "id",
+          .value = { .i = dom->def->id },
+        },
+        { .type = VIR_LOCK_MANAGER_PARAM_TYPE_UINT,
+          .key = "pid",
+          .value = { .i = dom->pid },
+        },
+      };
+      mgr = virLockManagerNew(lockPlugin,
+                              VIR_LOCK_MANAGER_TYPE_DOMAIN,
+                              ARRAY_CARDINALITY(params),
+                              params,
+                              0)));
+
+      foreach (initial disks)
+          virLockManagerAddResource(mgr,
+                                    VIR_LOCK_MANAGER_RESOURCE_TYPE_DISK,
+                                    $path, 0, NULL, $flags);
+
+      virLockManagerRelease(mgr, &amp; state, 0);
+    </pre>
+
+    <p>
+      The returned state string can be passed to the
+      <code>virLockManagerAcquire</code> method to
+      later re-acquire the exact same locks. This
+      state transfer is commonly used when performing
+      live migration of virtual machines. By validating
+      the state the lock manager can ensure no other
+      VM has re-acquire the same locks on a different
+      host. The state can also be obtained without
+      releasing the locks, by calling the
+      <code>virLockManagerInquire</code> method.
+    </p>
+
+  </body>
+</html>

docs/internals/rpc.html.in

@@ -0,0 +1,875 @@
+<html>
+  <body>
+    <h1>libvirt RPC infrastructure</h1>
+
+    <ul id="toc"></ul>
+
+    <p>
+      libvirt includes a basic protocol and code to implement
+      an extensible, secure client/server RPC service. This was
+      originally designed for communication between the libvirt
+      client library and the libvirtd daemon, but the code is
+      now isolated to allow reuse in other areas of libvirt code.
+      This document provides an overview of the protocol and
+      structure / operation of the internal RPC library APIs.
+    </p>
+
+
+    <h2><a name="protocol">RPC protocol</a></h2>
+
+    <p>
+      libvirt uses a simple, variable length, packet based RPC protocol.
+      All structured data within packets is encoded using the
+      <a href="http://en.wikipedia.org/wiki/External_Data_Representation">XDR standard</a>
+      as currently defined by <a href="https://tools.ietf.org/html/rfc4506">RFC 4506</a>.
+      On any connection running the RPC protocol, there can be multiple
+      programs active, each supporting one or more versions. A program
+      defines a set of procedures that it supports. The procedures can
+      support call+reply method invocation, asynchronous events,
+      and generic data streams. Method invocations can be overlapped,
+      so waiting for a reply to one will not block the receipt of the
+      reply to another outstanding method. The protocol was loosely
+      inspired by the design of SunRPC. The definition of the RPC
+      protocol is in the file <code>src/rpc/virnetprotocol.x</code>
+      in the libvirt source tree.
+    </p>
+
+    <h3><a href="protocolframing">Packet framing</a></h3>
+
+    <p>
+      On the wire, there is no explicit packet framing marker. Instead
+      each packet is preceded by an unsigned 32-bit integer giving
+      the total length of the packet in bytes. This length includes
+      the 4-bytes of the length word itself. Conceptually the framing
+      looks like this:
+    </p>
+
+<pre>
+|~~~   Packet 1   ~~~|~~~   Packet 2   ~~~|~~~  Packet 3    ~~~|~~~
+
++-------+------------+-------+------------+-------+------------+...
+| n=U32 | (n-4) * U8 | n=U32 | (n-4) * U8 | n=U32 | (n-4) * U8 |
++-------+------------+-------+------------+-------+------------+...
+
+|~ Len ~|~   Data   ~|~ Len ~|~   Data   ~|~ Len ~|~   Data   ~|~
+
+</pre>
+
+    <h3><a href="protocoldata">Packet data</a></h3>
+
+    <p>
+      The data in each packet is split into two parts, a short
+      fixed length header, followed by a variable length payload.
+      So a packet from the illustration above is more correctly
+      shown as
+    </p>
+
+<pre>
+
++-------+-------------+---------------....---+
+| n=U32 | 6*U32       | (n-(7*4))*U8         |
++-------+-------------+---------------....---+
+
+|~ Len ~|~  Header   ~|~  Payload     ....  ~|
+</pre>
+
+
+    <h3><a href="protocolheader">Packet header</a></h3>
+    <p>
+      The header contains 6 fields, encoded as signed/unsigned 32-bit
+      integers.
+    </p>
+
+    <pre>
++---------------+
+| program=U32   |
++---------------+
+| version=U32   |
++---------------+
+| procedure=S32 |
++---------------+
+| type=S32      |
++---------------+
+| serial=U32    |
++---------------+
+| status=S32    |
++---------------+
+    </pre>
+
+    <dl>
+      <dt><code>program</code></dt>
+      <dd>
+        This is an arbitrarily chosen number that will uniquely
+        identify the "service" running over the stream.
+      </dd>
+      <dt><code>version</code></dt>
+      <dd>
+        This is the version number of the program, by convention
+        starting from '1'. When an incompatible change is made
+        to a program, the version number is incremented. Ideally
+        both versions will then be supported on the wire in
+        parallel for backwards compatibility.
+      </dd>
+      <dt><code>procedure</code></dt>
+      <dd>
+        This is an arbitrarily chosen number that will uniquely
+        identify the method call, or event associated with the
+        packet. By convention, procedure numbers start from 1
+        and are assigned monotonically thereafter.
+      </dd>
+      <dt><code>type</code></dt>
+      <dd>
+        <p>
+        This can be one of the following enumeration values
+        </p>
+        <ol>
+          <li>call: invocation of a method call</li>
+          <li>reply: completion of a method call</li>
+          <li>event: an asynchronous event</li>
+          <li>stream: control info or data from a stream</li>
+        </ol>
+      </dd>
+      <dt><code>serial</code></dt>
+      <dd>
+        This is an number that starts from 1 and increases
+        each time a method call packet is sent. A reply or
+        stream packet will have a serial number matching the
+        original method call packet serial. Events always
+        have the serial number set to 0.
+      </dd>
+      <dt><code>status</code></dt>
+      <dd>
+        <p>
+        This can one of the following enumeration values
+        </p>
+        <ol>
+          <li>ok: a normal packet. this is always set for method calls or events.
+            For replies it indicates successful completion of the method. For
+            streams it indicates confirmation of the end of file on the stream.</li>
+          <li>error: for replies this indicates that the method call failed
+            and error information is being returned. For streams this indicates
+            that not all data was sent and the stream has aborted</li>
+          <li>continue: for streams this indicates that further data packets
+            will be following</li>
+        </ol>
+    </dl>
+
+    <h3><a href="protocolpayload">Packet payload</a></h3>
+
+    <p>
+      The payload of a packet will vary depending on the <code>type</code>
+      and <code>status</code> fields from the header.
+    </p>
+
+    <ul>
+      <li>type=call: the in parameters for the method call, XDR encoded</li>
+      <li>type=reply+status=ok: the return value and/or out parameters for the method call, XDR encoded</li>
+      <li>type=reply+status=error: the error information for the method, a virErrorPtr XDR encoded</li>
+      <li>type=event: the parameters for the event, XDR encoded</li>
+      <li>type=stream+status=ok: no payload</li>
+      <li>type=stream+status=error: the error information for the method, a virErrorPtr XDR encoded</li>
+      <li>type=stream+status=continue: the raw bytes of data for the stream. No XDR encoding</li>
+    </ul>
+
+    <p>
+      For the exact payload information for each procedure, consult the XDR protocol
+      definition for the program+version in question
+    </p>
+
+    <h3><a name="wireexamples">Wire examples</a></h3>
+
+    <p>
+      The following diagrams illustrate some example packet exchanges
+      between a client and server
+    </p>
+
+    <h4><a name="wireexamplescall">Method call</a></h4>
+
+    <p>
+      A single method call and successful
+      reply, for a program=8, version=1, procedure=3, which 10 bytes worth
+      of input args, and 4 bytes worth of return values. The overall input
+      packet length is 4 + 24 + 10 == 38, and output packet length 32
+    </p>
+
+    <pre>
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 1 | 0 | .o.oOo.o. |  --&gt; S  (call)
+          +--+-----------------------+-----------+
+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 1 | 0 | .o.oOo |  &lt;-- S  (reply)
+          +--+-----------------------+--------+
+    </pre>
+
+    <h4><a name="wireexamplescallerr">Method call with error</a></h4>
+
+    <p>
+      An unsuccessful method call will instead return an error object
+    </p>
+
+    <pre>
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 1 | 0 | .o.oOo.o. |  --&gt; S   (call)
+          +--+-----------------------+-----------+
+
+          +--+-----------------------+--------------------------+
+   C &lt;--  |48| 8 | 1 | 3 | 2 | 1 | 0 | .o.oOo.o.oOo.o.oOo.o.oOo |  &lt;-- S  (error)
+          +--+-----------------------+--------------------------+
+    </pre>
+
+    <h4><a name="wireexamplescallup">Method call with upload stream</a></h4>
+
+    <p>
+      A method call which also involves uploading some data over
+      a stream will result in
+    </p>
+
+    <pre>
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 1 | 0 | .o.oOo.o. |  --&gt; S  (call)
+          +--+-----------------------+-----------+
+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 1 | 0 | .o.oOo |  &lt;-- S  (reply)
+          +--+-----------------------+--------+
+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          ...
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+
+   C --&gt;  |24| 8 | 1 | 3 | 3 | 1 | 0 | --&gt; S  (stream finish)
+          +--+-----------------------+
+          +--+-----------------------+
+   C &lt;--  |24| 8 | 1 | 3 | 3 | 1 | 0 | &lt;-- S  (stream finish)
+          +--+-----------------------+
+    </pre>
+
+    <h4><a name="wireexamplescallbi">Method call bidirectional stream</a></h4>
+
+    <p>
+      A method call which also involves a bi-directional stream will
+      result in
+    </p>
+
+    <pre>
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 1 | 0 | .o.oOo.o. |  --&gt; S  (call)
+          +--+-----------------------+-----------+
+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 1 | 0 | .o.oOo |  &lt;-- S  (reply)
+          +--+-----------------------+--------+
+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C &lt;--  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  &lt;-- S  (stream data down)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C &lt;--  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  &lt;-- S  (stream data down)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C &lt;--  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  &lt;-- S  (stream data down)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C &lt;--  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  &lt;-- S  (stream data down)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          ..
+          +--+-----------------------+-------------....-------+
+   C --&gt;  |38| 8 | 1 | 3 | 3 | 1 | 2 | .o.oOo.o.oOo....o.oOo. |  --&gt; S  (stream data up)
+          +--+-----------------------+-------------....-------+
+          +--+-----------------------+
+   C --&gt;  |24| 8 | 1 | 3 | 3 | 1 | 0 | --&gt; S  (stream finish)
+          +--+-----------------------+
+          +--+-----------------------+
+   C &lt;--  |24| 8 | 1 | 3 | 3 | 1 | 0 | &lt;-- S  (stream finish)
+          +--+-----------------------+
+    </pre>
+
+
+    <h4><a name="wireexamplescallmany">Method calls overlapping</a></h4>
+    <pre>
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 1 | 0 | .o.oOo.o. |  --&gt; S  (call 1)
+          +--+-----------------------+-----------+
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 2 | 0 | .o.oOo.o. |  --&gt; S  (call 2)
+          +--+-----------------------+-----------+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 2 | 0 | .o.oOo |  &lt;-- S  (reply 2)
+          +--+-----------------------+--------+
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 3 | 0 | .o.oOo.o. |  --&gt; S  (call 3)
+          +--+-----------------------+-----------+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 3 | 0 | .o.oOo |  &lt;-- S  (reply 3)
+          +--+-----------------------+--------+
+          +--+-----------------------+-----------+
+   C --&gt;  |38| 8 | 1 | 3 | 0 | 4 | 0 | .o.oOo.o. |  --&gt; S  (call 4)
+          +--+-----------------------+-----------+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 1 | 0 | .o.oOo |  &lt;-- S  (reply 1)
+          +--+-----------------------+--------+
+          +--+-----------------------+--------+
+   C &lt;--  |32| 8 | 1 | 3 | 1 | 4 | 0 | .o.oOo |  &lt;-- S  (reply 4)
+          +--+-----------------------+--------+
+    </pre>
+
+
+    <h2><a name="security">RPC security</a></h2>
+
+    <p>
+      There are various things to consider to ensure an implementation
+      of the RPC protocol can be satisfactorily secured
+    </p>
+
+    <h3><a name="securitytls">Authentication/encryption</a></h3>
+
+    <p>
+      The basic RPC protocol does not define or require any specific
+      authentication/encryption capabilities. A generic solution to
+      providing encryption for the protocol is to run the protocol
+      over a TLS encrypted data stream. x509 certificate checks can
+      be done to form a crude authentication mechanism. It is also
+      possible for an RPC program to negotiate an encryption /
+      authentication capability, such as SASL, which may then also
+      provide per-packet data encryption. Finally the protocol data
+      stream can of course be tunnelled over transports such as SSH.
+    </p>
+
+    <h3><a name="securitylimits">Data limits</a></h3>
+
+    <p>
+      Although the protocol itself defines many arbitrary sized data values in the
+      payloads, to avoid denial of service attack there are a number of size limit
+      checks prior to encoding or decoding data. There is a limit on the maximum
+      size of a single RPC message, limit on the maximum string length, and limits
+      on any other parameter which uses a variable length array. These limits can
+      be raised, subject to agreement between client/server, without otherwise
+      breaking compatibility of the RPC data on the wire.
+    </p>
+
+    <h3><a name="securityvalidate">Data validation</a></h3>
+
+    <p>
+      It is important that all data be fully validated before performing
+      any actions based on the data. When reading an RPC packet, the
+      first four bytes must be read and the max packet size limit validated,
+      before any attempt is made to read the variable length packet data.
+      After a complete packet has been read, the header must be decoded
+      and all 6 fields fully validated, before attempting to dispatch
+      the payload. Once dispatched, the payload can be decoded and passed
+      onto the appropriate API for execution. The RPC code must not take
+      any action based on the payload, since it has no way to validate
+      the semantics of the payload data. It must delegate this to the
+      execution API (e.g. corresponding libvirt public API).
+    </p>
+
+    <h2><a name="internals">RPC internal APIs</a></h2>
+
+    <p>
+      The generic internal RPC library code lives in the <code>src/rpc/</code>
+      directory of the libvirt source tree. Unless otherwise noted, the
+      objects are all threadsafe. The core object types and their
+      purposes are:
+    </p>
+
+    <h3><a name="apioverview">Overview of RPC objects</a></h3>
+
+    <p>
+      The following is a high level overview of the role of each
+      of the main RPC objects
+    </p>
+
+    <dl>
+      <dt><code>virNetSASLContextPtr</code> (virnetsaslcontext.h)</dt>
+      <dd>The virNetSASLContext APIs maintain SASL state for a network
+        service (server or client). This is primarily used on the server
+        to provide a whitelist of allowed SASL usernames for clients.
+      </dd>
+
+      <dt><code>virNetSASLSessionPtr</code> (virnetsaslcontext.h)</dt>
+      <dd>The virNetSASLSession APIs maintain SASL state for a single
+        network connection (socket). This is used to perform the multi-step
+        SASL handshake and perform encryption/decryption of data once
+        authenticated, via integration with virNetSocket.
+      </dd>
+
+      <dt><code>virNetTLSContextPtr</code> (virnettlscontext.h)</dt>
+      <dd>The virNetTLSContext APIs maintain TLS state for a network
+        service (server or client). This is primarily used on the server
+        to provide a whitelist of allowed x509 distinguished names, as
+        well as diffie-hellman keys. It can also do validation of
+        x509 certificates prior to initiating a connection, in order
+        to improve detection of configuration errors.
+      </dd>
+
+      <dt><code>virNetTLSSessionPtr</code> (virnettlscontext.h)</dt>
+      <dd>The virNetTLSSession APIs maintain TLS state for a single
+        network connection (socket). This is used to perform the multi-step
+        TLS handshake and perform encryption/decryption of data once
+        authenticated, via integration with virNetSocket.
+      </dd>
+
+      <dt><code>virNetSocketPtr</code> (virnetsocket.h)</dt>
+      <dd>The virNetSocket APIs provide a higher level wrapper around
+        the raw BSD sockets and getaddrinfo APIs. They allow for creation
+        of both server and client sockets. Data transports supported are
+        TCP, UNIX, SSH tunnel or external command tunnel. Internally the
+        TCP socket impl uses the getaddrinfo info APIs to ensure correct
+        protocol-independent behaviour, thus supporting both IPv4 and IPv6.
+        The socket APIs can be associated with a virNetSASLSessionPtr or
+        virNetTLSSessionPtr object to allow seamless encryption/decryption
+        of all writes and reads. For UNIX sockets it is possible to obtain
+        the remote client user ID and process ID. Integration with the
+        libvirt event loop also allows use of callbacks for notification
+        of various I/O conditions
+      </dd>
+
+      <dt><code>virNetMessagePtr</code> (virnetmessage.h)</dt>
+      <dd>The virNetMessage APIs provide a wrapper around the libxdr
+        API calls, to facilitate processing and creation of RPC
+        packets. There are convenience APIs for encoding/encoding the
+        packet headers, encoding/decoding the payload using an XDR
+        filter, encoding/decoding a raw payload (for streams), and
+        encoding a virErrorPtr object. There is also a means to
+        add to/serve from a linked-list queue of messages.</dd>
+
+      <dt><code>virNetClientPtr</code> (virnetclient.h)</dt>
+      <dd>The virNetClient APIs provide a way to connect to a
+        remote server and run one or more RPC protocols over
+        the connection. Connections can be made over TCP, UNIX
+        sockets, SSH tunnels, or external command tunnels. There
+        is support for both TLS and SASL session encryption.
+        The client also supports management of multiple data streams
+        over each connection. Each client object can be used from
+        multiple threads concurrently, with method calls/replies
+        being interleaved on the wire as required.
+      </dd>
+
+      <dt><code>virNetClientProgramPtr</code> (virnetclientprogram.h)</dt>
+      <dd>The virNetClientProgram APIs are used to register a
+        program+version with the connection. This then enables
+        invocation of method calls, receipt of asynchronous
+        events and use of data streams, within that program+version.
+        When created a set of callbacks must be supplied to take
+        care of dispatching any incoming asynchronous events.
+      </dd>
+
+      <dt><code>virNetClientStreamPtr</code> (virnetclientstream.h)</dt>
+      <dd>The virNetClientStream APIs are used to control transmission and
+        receipt of data over a stream active on a client. Streams provide
+        a low latency, unlimited length, bi-directional raw data exchange
+        mechanism layered over the RPC connection
+      </dd>
+
+      <dt><code>virNetServerPtr</code> (virnetserver.h)</dt>
+      <dd>The virNetServer APIs are used to manage a network server. A
+        server exposed one or more programs, over one or more services.
+        It manages multiple client connections invoking multiple RPC
+        calls in parallel, with dispatch across multiple worker threads.
+      </dd>
+
+      <dt><code>virNetServerMDNSPtr</code> (virnetservermdns.h)</dt>
+      <dd>The virNetServerMDNS APIs are used to advertise a server
+        across the local network, enabling clients to automatically
+        detect the existence of remote services. This is done by
+        interfacing with the Avahi mDNS advertisement service.
+      </dd>
+
+      <dt><code>virNetServerClientPtr</code> (virnetserverclient.h)</dt>
+      <dd>The virNetServerClient APIs are used to manage I/O related
+        to a single client network connection. It handles initial
+        validation and routing of incoming RPC packets, and transmission
+        of outgoing packets.
+      </dd>
+
+      <dt><code>virNetServerProgramPtr</code> (virnetserverprogram.h)</dt>
+      <dd>The virNetServerProgram APIs are used to provide the implementation
+        of a single program/version set. Primarily this includes a set of
+        callbacks used to actually invoke the APIs corresponding to
+        program procedure numbers. It is responsible for all the serialization
+        of payloads to/from XDR.</dd>
+
+      <dt><code>virNetServerServicePtr</code> (virnetserverservice.h)</dt>
+      <dd>The virNetServerService APIs are used to connect the server to
+        one or more network protocols. A single service may involve multiple
+        sockets (ie both IPv4 and IPv6). A service also has an associated
+        authentication policy for incoming clients.
+      </dd>
+    </dl>
+
+    <h3><a name="apiclientdispatch">Client RPC dispatch</a></h3>
+
+    <p>
+      The client RPC code must allow for multiple overlapping RPC method
+      calls to be invoked, transmission and receipt of data for multiple
+      streams and receipt of asynchronous events. Understandably this
+      involves coordination of multiple threads.
+    </p>
+
+    <p>
+      The core requirement in the client dispatch code is that only
+      one thread is allowed to be performing I/O on the socket at
+      any time. This thread is said to be "holding the buck". When
+      any other thread comes along and needs to do I/O it must place
+      its packets on a queue and delegate processing of them to the
+      thread that has the buck. This thread will send out the method
+      call, and if it sees a reply will pass it back to the waiting
+      thread. If the other thread's reply hasn't arrived, by the time
+      the main thread has got its own reply, then it will transfer
+      responsibility for I/O to the thread that has been waiting the
+      longest. It is said to be "passing the buck" for I/O.
+    </p>
+
+    <p>
+      When no thread is performing any RPC method call, or sending
+      stream data there is still a need to monitor the socket for
+      incoming I/O related to asynchronous events, or stream data
+      receipt. For this task, a watch is registered with the event
+      loop which triggers whenever the socket is readable. This
+      watch is automatically disabled whenever any other thread
+      grabs the buck, and re-enabled when the buck is released.
+    </p>
+
+    <h4><a name="apiclientdispatchex1">Example with buck passing</a></h4>
+
+    <p>
+      In the first example, a second thread issues a API call
+      while the first thread holds the buck. The reply to the
+      first call arrives first, so the buck is passed to the
+      second thread.
+    </p>
+
+    <pre>
+        Thread-1
+           |
+           V
+       Call API1()
+           |
+           V
+       Grab Buck
+           |           Thread-2
+           V              |
+       Send method1       V
+           |          Call API2()
+           V              |
+        Wait I/O          V
+           |&lt;--------Queue method2
+           V              |
+       Send method2       V
+           |          Wait for buck
+           V              |
+        Wait I/O          |
+           |              |
+           V              |
+       Recv reply1        |
+           |              |
+           V              |
+       Pass the buck-----&gt;|
+           |              V
+           V           Wait I/O
+       Return API1()      |
+                          V
+                      Recv reply2
+                          |
+                          V
+                     Release the buck
+                          |
+                          V
+                      Return API2()
+    </pre>
+
+    <h4><a name="apiclientdispatchex2">Example without buck passing</a></h4>
+
+    <p>
+      In this second example, a second thread issues an API call
+      which is sent and replied to, before the first thread's
+      API call has completed. The first thread thus notifies
+      the second that its reply is ready, and there is no need
+      to pass the buck
+    </p>
+
+    <pre>
+        Thread-1
+           |
+           V
+       Call API1()
+           |
+           V
+       Grab Buck
+           |           Thread-2
+           V              |
+       Send method1       V
+           |          Call API2()
+           V              |
+        Wait I/O          V
+           |&lt;--------Queue method2
+           V              |
+       Send method2       V
+           |          Wait for buck
+           V              |
+        Wait I/O          |
+           |              |
+           V              |
+       Recv reply2        |
+           |              |
+           V              |
+      Notify reply2------&gt;|
+           |              V
+           V          Return API2()
+        Wait I/O
+           |
+           V
+       Recv reply1
+           |
+           V
+     Release the buck
+           |
+           V
+       Return API1()
+    </pre>
+
+    <h4><a name="apiclientdispatchex3">Example with async events</a></h4>
+
+    <p>
+      In this example, only one thread is present and it has to
+      deal with some async events arriving. The events are actually
+      dispatched to the application from the event loop thread
+    </p>
+
+    <pre>
+        Thread-1
+           |
+           V
+       Call API1()
+           |
+           V
+       Grab Buck
+           |
+           V
+       Send method1
+           |
+           V
+        Wait I/O
+           |          Event thread
+           V              ...
+       Recv event1         |
+           |               V
+           V          Wait for timer/fd
+       Queue event1        |
+           |               V
+           V           Timer fires
+        Wait I/O           |
+           |               V
+           V           Emit event1
+       Recv reply1         |
+           |               V
+           V          Wait for timer/fd
+       Return API1()       |
+                          ...
+    </pre>
+
+    <h3><a name="apiserverdispatch">Server RPC dispatch</a></h3>
+
+    <p>
+      The RPC server code must support receipt of incoming RPC requests from
+      multiple client connections, and parallel processing of all RPC
+      requests, even many from a single client. This goal is achieved through
+      a combination of event driven I/O, and multiple processing threads.
+    </p>
+
+    <p>
+      The main libvirt event loop thread is responsible for performing all
+      socket I/O. It will read incoming packets from clients and willl
+      transmit outgoing packets to clients. It will handle the I/O to/from
+      streams associated with client API calls. When doing client I/O it
+      will also pass the data through any applicable encryption layer
+      (through use of the virNetSocket / virNetTLSSession and virNetSASLSession
+      integration). What is paramount is that the event loop thread never
+      do any task that can take a non-trivial amount of time.
+    </p>
+
+    <p>
+      When reading packets, the event loop will first read the 4 byte length
+      word. This is validated to make sure it does not exceed the maximum
+      permissible packet size, and the client is set to allow receipt of the
+      rest of the packet data. Once a complete packet has been received, the
+      next step is to decode the RPC header. The header is validated to
+      ensure the request is sensible, ie the server should not receive a
+      method reply from a client. If the client has not yet authenticated,
+      a security check is also applied to make sure the procedure is on the
+      whitelist of those allowed prior to auth. If the packet is a method
+      call, it will be placed on a global processing queue. The event loop
+      thread is now done with the packet for the time being.
+    </p>
+
+    <p>
+      The server has a pool of worker threads, which wait for method call
+      packets to be queued. One of them will grab the new method call off
+      the queue for processing. The first step is to decode the payload of
+      the packet to extract the method call arguments. The worker does not
+      attempt to do any semantic validation of the arguments, except to make
+      sure the size of any variable length fields is below defined limits.
+    </p>
+
+    <p>
+      The worker now invokes the libvirt API call that corresponds to the
+      procedure number in the packet header. The worker is thus kept busy
+      until the API call completes. The implementation of the API call
+      is responsible for doing semantic validation of parameters and any
+      MAC security checks on the objects affected.
+    </p>
+
+    <p>
+      Once the API call has completed, the worker thread will take the
+      return value and output parameters, or error object and encode
+      them into a reply packet. Again it does not attempt to do any
+      semantic validation of output data, aside from variable length
+      field limit checks. The worker thread puts the reply packet onto
+      the transmission queue for the client. The worker is now finished
+      and goes back to wait for another incoming method call.
+    </p>
+
+    <p>
+      The main event loop is back in charge and when the client socket
+      becomes writable, it will start sending the method reply packet
+      back to the client.
+    </p>
+
+    <p>
+      At any time the libvirt connection object can emit asynchronous
+      events. These are handled by callbacks in the main event thread.
+      The callback will simply encode the event parameters into a new
+      data packet and place the packet on the client transmission
+      queue.
+    </p>
+
+    <p>
+      Incoming and outgoing stream packets are also directly handled
+      by the main event thread. When an incoming stream packet is
+      received, instead of placing it in the global dispatch queue
+      for the worker threads, it is sidetracked into a per-stream
+      processing queue. When the stream becomes writable, queued
+      incoming stream packets will be processed, passing their data
+      payload onto the stream. Conversely when the stream becomes
+      readable, chunks of data will be read from it, encoded into
+      new outgoing packets, and placed on the client's transmit
+      queue
+    </p>
+
+    <h4><a name="apiserverdispatchex1">Example with overlapping methods</a></h4>
+
+    <p>
+      This example illustrates processing of two incoming methods with
+      overlapping execution
+    </p>
+
+    <pre>
+   Event thread    Worker 1       Worker 2
+       |               |              |
+       V               V              V
+    Wait I/O       Wait Job       Wait Job
+       |               |              |
+       V               |              |
+   Recv method1        |              |
+       |               |              |
+       V               |              |
+   Queue method1       V              |
+       |          Serve method1       |
+       V               |              |
+    Wait I/O           V              |
+       |           Call API1()        |
+       V               |              |
+   Recv method2        |              |
+       |               |              |
+       V               |              |
+   Queue method2       |              V
+       |               |         Serve method2
+       V               V              |
+    Wait I/O      Return API1()       V
+       |               |          Call API2()
+       |               V              |
+       V         Queue reply1         |
+   Send reply1         |              |
+       |               V              V
+       V           Wait Job       Return API2()
+    Wait I/O           |              |
+       |              ...             V
+       V                          Queue reply2
+   Send reply2                        |
+       |                              V
+       V                          Wait Job
+    Wait I/O                          |
+       |                             ...
+      ...
+    </pre>
+
+    <h4><a name="apiserverdispatchex2">Example with stream data</a></h4>
+
+    <p>
+      This example illustrates processing of stream data
+    </p>
+
+    <pre>
+   Event thread
+       |
+       V
+    Wait I/O
+       |
+       V
+   Recv stream1
+       |
+       V
+   Queue stream1
+       |
+       V
+    Wait I/O
+       |
+       V
+   Recv stream2
+       |
+       V
+   Queue stream2
+       |
+       V
+    Wait I/O
+       |
+       V
+   Write stream1
+       |
+       V
+   Write stream2
+       |
+       V
+    Wait I/O
+       |
+      ...
+    </pre>
+
+  </body>
+</html>

docs/libvirt.css

@@ -199,6 +199,10 @@ div.api table {
     whitespace: pre;
 }
 
+div.api table td, div.variablelist table td {
+    vertical-align: top;
+}
+
 
 h1 a, h2 a, h3 a, h4 a, h5 a {
     color: inherit;

docs/locking.html.in

@@ -0,0 +1,212 @@
+<?xml version="1.0"?>
+<html>
+  <body>
+    <h1>Virtual machine disk locking</h1>
+
+    <ul id="toc"></ul>
+
+    <p>
+      This page describes how to ensure a single disk cannot be
+      used by more than one running VM at a time, across any
+      host in a network. This is critical to avoid data corruption
+      of guest files systems that are not cluster aware.
+    </p>
+
+    <h2><a name="plugins">Lock manager plugins</a></h2>
+
+    <p>
+      libvirt includes a pluggable framework for lock managers,
+      which hypervisor drivers can use to ensure safety for
+      guest domain disks, and potentially other resources.
+      At this time there are only two plugin implementations,
+      a "no op" implementation which does absolutely nothing,
+      and a <a href="https://fedorahosted.org/sanlock/">sanlock</a> implementation which uses
+      the Disk Paxos algorithm to ensure safety.
+    </p>
+
+    <h2><a name="sanlock">Sanlock daemon setup</a></h2>
+
+    <p>
+      On many operating systems, the <strong>sanlock</strong> plugin
+      is distributed in a sub-package which needs to be installed
+      separately from the main libvirt RPM. On a Fedora/RHEL host
+      this can be done with the <code>yum</code> command
+    </p>
+
+    <pre>
+      $ su - root
+      # yum install libvirt-lock-sanlock
+    </pre>
+
+    <p>
+      The next step is to start the sanlock daemon. For maximum
+      safety sanlock prefers to have a connection to a watchdog
+      daemon. This will cause the entire host to be rebooted in
+      the event that sanlock crashes / terminates abnormally.
+      To start the watchdog daemon on a Fedora/RHEL host
+      the following commands can be run:
+    </p>
+
+    <pre>
+      $ su - root
+      # chkconfig wdmd on
+      # service wdmd start
+    </pre>
+
+    <p>
+      Once the watchdog is running, sanlock can be started
+      as follows
+    </p>
+
+    <pre>
+      # chkconfig sanlock on
+      # service sanlock start
+    </pre>
+
+    <p>
+      <em>Note:</em> if you wish to avoid the use of the
+      watchdog, add the following line to <code>/etc/sysconfig/sanlock</code>
+      before starting it
+    </p>
+
+    <pre>
+      SANLOCKOPTS="-w 0"
+    </pre>
+
+    <p>
+      The sanlock daemon must be started on every single host
+      that will be running virtual machines. So repeat these
+      steps as neccessary.
+    </p>
+
+    <h2><a name="sanlockplugin">libvirt sanlock plugin configuration</a></h2>
+
+    <p>
+      Once the sanlock daemon is running, the next step is to
+      configure the libvirt sanlock plugin. There is a separate
+      configuration file for each libvirt driver that is using
+      sanlock. For QEMU, we will edit <code>/etc/libvirt/qemu-sanlock.conf</code>
+      There is one mandatory parameter that needs to be set,
+      the <code>host_id</code>. This is a integer between
+      1 and 2000, which must be set to a <strong>unique</strong>
+      value on each host running virtual machines.
+    </p>
+
+    <pre>
+      $ su - root
+      # augtool -s set /files/etc/libvirt/qemu-sanlock.conf/host_id 1
+    </pre>
+
+    <p>
+      Repeat this on every host, changing <strong>1</strong> to a
+      unique value for the host.
+    </p>
+
+    <h2><a name="sanlockstorage">libvirt sanlock storage configuration</a></h2>
+
+    <p>
+      The sanlock plugin needs to create leases in a directory
+      that is on a filesystem shared between all hosts running
+      virtual machines. Obvious choices for this include NFS
+      or GFS2. The libvirt sanlock plugin expects its lease
+      directory be at <code>/var/lib/libvirt/sanlock</code>
+      so update the host's <code>/etc/fstab</code> to mount
+      a suitable shared/cluster filesystem at that location
+    </p>
+
+    <pre>
+      $ su - root
+      # echo "some.nfs.server:/export/sanlock /var/lib/libvirt/sanlock nfs hard,nointr 0 0" >> /etc/fstab
+      # mount /var/lib/libvirt/sanlock
+    </pre>
+
+    <p>
+      In terms of storage requirements, if the filesystem
+      uses 512 byte sectors, you need to allow for <code>1MB</code>
+      of storage for each guest disk. So if you have a network
+      with 20 virtualization hosts, each running 50 virtual
+      machines and an average of 2 disks per guest, you will
+      need <code>20*50*2 == 2000 MB</code> of storage for
+      sanlock.
+    </p>
+
+
+    <p>
+      On one of the hosts on the network is it wise to setup
+      a cron job which runs the <code>virt-sanlock-cleanup</code>
+      script periodically. This scripts deletes any lease
+      files which are not currently in use by running virtual
+      machines, freeing up disk space on the shared filesystem.
+      Unless VM disks are very frequently created + deleted
+      it should be sufficient to run the cleanup once a week.
+    </p>
+
+    <h2><a name="qemuconfig">QEMU/KVM driver configuration</a></h2>
+
+    <p>
+      The QEMU/KVM driver is fully integrated with the lock
+      manager framework as of release <span>0.9.3</span>.
+      The out of the box configuration, however, currently
+      uses the <strong>nop</strong> lock manager plugin.
+      To get protection for disks, it is thus necessary
+      to reconfigure QEMU to activate the <strong>sanlock</strong>
+      driver. This is achieved by editing the QEMU driver
+      configuration file (<code>/etc/libvirt/qemu.conf</code>)
+      and changing the <code>lock_manager</code> configuration
+      tunable.
+    </p>
+
+    <pre>
+      $ su - root
+      # augtool -s  set /files/etc/libvirt/qemu.conf/lock_manager sanlock
+      # service libvirtd restart
+    </pre>
+
+    <p>
+      If all went well, libvirtd will have talked to sanlock
+      and created the basic lockspace. This can be checked
+      by looking for existance of the following file
+    </p>
+
+    <pre>
+      # ls /var/lib/libvirt/sanlock/
+      __LIBVIRT__DISKS__
+    </pre>
+
+    <p>
+      Every time you start a guest, additional lease files will appear
+      in this directory, one for each virtual disk. The lease
+      files are named based on the MD5 checksum of the fully qualified
+      path of the virtual disk backing file. So if the guest is given
+      a disk backed by <code>/var/lib/libvirt/images/demo.img</code>
+      expect to see a lease <code>/var/lib/libvirt/sanlock/bfa0240911bc17753e0b473688822159</code>
+    </p>
+
+    <p>
+      It should be obvious that for locking to work correctly, every
+      host running virtual machines should have storage configured
+      in the same way. The easiest way to do this is to use the libvirt
+      storage pool capability to configure any NFS volumes, iSCSI targets,
+      or SCSI HBAs used for guest storage. Simply replicate the same
+      storage pool XML across every host. It is important that any
+      storage pools exposing block devices are configured to create
+      volume paths under <code>/dev/disks/by-path</code> to ensure
+      stable paths across hosts. An example iSCSI configuration
+      which ensures this is:
+    </p>
+
+    <pre>
+&lt;pool type='iscsi'&gt;
+  &lt;name&gt;myiscsipool&lt;/name&gt;
+  &lt;source&gt;
+    &lt;host name='192.168.254.8'/&gt;
+    &lt;device path='your-iscsi-target-iqn'/&gt;
+  &lt;/source&gt;
+  &lt;target&gt;
+    &lt;path&gt;/dev/disk/by-path&lt;/path&gt;
+  &lt;/target&gt;
+&lt;/pool&gt;
+    </pre>
+
+  </body>
+</html>

docs/newapi.xsl

@@ -54,10 +54,13 @@
        because the keys are only defined on the main document -->
   <xsl:template mode="dumptoken" match='*'>
     <xsl:param name="token"/>
-    <xsl:variable name="ref" select="key('symbols', $token)"/>
+    <xsl:variable name="stem" select="translate($token, '(),.:;@', '')"/>
+    <xsl:variable name="ref" select="key('symbols', $stem)"/>
     <xsl:choose>
       <xsl:when test="$ref">
-        <a href="libvirt-{$ref/@file}.html#{$ref/@name}"><xsl:value-of select="$token"/></a>
+        <xsl:value-of select="substring-before($token, $stem)"/>
+        <a href="libvirt-{$ref/@file}.html#{$ref/@name}"><xsl:value-of select="$stem"/></a>
+        <xsl:value-of select="substring-after($token, $stem)"/>
       </xsl:when>
       <xsl:otherwise>
         <xsl:value-of select="$token"/>
@@ -70,7 +73,7 @@
     <xsl:param name="text"/>
     <xsl:variable name="ctxt" select='.'/>
     <!-- <xsl:value-of select="$text"/> -->
-    <xsl:for-each select="str:tokenize($text, ' &#9;')">
+    <xsl:for-each select="str:tokenize($text, ' &#9;&#10;&#13;')">
       <xsl:apply-templates select="$ctxt" mode='dumptoken'>
         <xsl:with-param name="token" select="string(.)"/>
       </xsl:apply-templates>
@@ -174,22 +177,62 @@
       </pre>
       <table>
         <xsl:for-each select="field">
-          <tr>
-            <td>
-              <xsl:call-template name="dumptext">
-                <xsl:with-param name="text" select="@type"/>
-              </xsl:call-template>
-            </td>
-            <td><xsl:value-of select="@name"/></td>
-            <xsl:if test="@info != ''">
-              <td>
-                <xsl:text> : </xsl:text>
-                <xsl:call-template name="dumptext">
-                  <xsl:with-param name="text" select="@info"/>
-                </xsl:call-template>
-              </td>
-            </xsl:if>
-          </tr>
+          <xsl:choose>
+            <xsl:when test='@type = "union"'>
+              <tr><td>union {</td></tr>
+              <tr>
+              <td><table>
+              <xsl:for-each select="union/field">
+                <tr>
+                  <td>
+                    <xsl:call-template name="dumptext">
+                      <xsl:with-param name="text" select="@type"/>
+                    </xsl:call-template>
+                  </td>
+                  <td><xsl:value-of select="@name"/></td>
+                  <xsl:if test="@info != ''">
+                    <td>
+                      <xsl:text> : </xsl:text>
+                      <xsl:call-template name="dumptext">
+                        <xsl:with-param name="text" select="@info"/>
+                      </xsl:call-template>
+                    </td>
+                  </xsl:if>
+                </tr>
+              </xsl:for-each>
+              </table></td>
+              <td></td></tr>
+              <tr><td>}</td>
+              <td><xsl:value-of select="@name"/></td>
+                <xsl:if test="@info != ''">
+                  <td>
+                    <xsl:text> : </xsl:text>
+                    <xsl:call-template name="dumptext">
+                      <xsl:with-param name="text" select="@info"/>
+                    </xsl:call-template>
+                  </td>
+                </xsl:if>
+              <td></td></tr>
+            </xsl:when>
+            <xsl:otherwise>
+              <tr>
+                <td>
+                  <xsl:call-template name="dumptext">
+                    <xsl:with-param name="text" select="@type"/>
+                  </xsl:call-template>
+                </td>
+                <td><xsl:value-of select="@name"/></td>
+                <xsl:if test="@info != ''">
+                  <td>
+                    <xsl:text> : </xsl:text>
+                    <xsl:call-template name="dumptext">
+                      <xsl:with-param name="text" select="@info"/>
+                    </xsl:call-template>
+                  </td>
+                </xsl:if>
+              </tr>
+            </xsl:otherwise>
+          </xsl:choose>
         </xsl:for-each>
         <xsl:if test="not(field)">
           <tr>

docs/remote.html.in

@@ -53,9 +53,6 @@ machines through authenticated and encrypted connections.
       <li>
         <a href="#Remote_limitations">Limitations</a>
       </li>
-      <li>
-        <a href="#Remote_implementation_notes">Implementation notes</a>
-      </li>
     </ul>
     <h3>
       <a name="Remote_basic_usage">Basic usage</a>
@@ -275,13 +272,34 @@ Note that parameter values must be
         <td colspan="2"/>
         <td> Example: <code>netcat=/opt/netcat/bin/nc</code> </td>
       </tr>
+
+      <tr>
+        <td>
+          <code>keyfile</code>
+        </td>
+        <td> ssh </td>
+        <td>
+  The name of the private key file to use to authentication to the remote
+  machine.  If this option is not used the default keys are used.
+        </td>
+      </tr>
+      <tr>
+        <td colspan="2"/>
+        <td> Example: <code>keyfile=/root/.ssh/example_key</code> </td>
+      </tr>
+
       <tr>
         <td>
           <code>no_verify</code>
         </td>
-        <td> tls </td>
+        <td> ssh, tls </td>
         <td>
-  If set to a non-zero value, this disables client checks of the
+  SSH: If set to a non-zero value, this disables client's strict host key
+  checking making it auto-accept new host keys.  Existing host keys will
+  still be validated.
+  <br/>
+  <br/>
+  TLS: If set to a non-zero value, this disables client checks of the
   server's certificate.  Note that to disable server checks of
   the client's certificate or IP address you must
   <a href="#Remote_libvirtd_configuration">change the libvirtd
@@ -395,10 +413,13 @@ next section.
     </p>
     <ul>
       <li> For a non-root user, libvirt tries to find the certificates
-        in $HOME/.pki/libvirt. If any of the required certificates can
-        not be found, then the global default locations
-        (/etc/pki/CA/cacert.pem, /etc/pki/libvirt/private/clientkey,
-        /etc/pki/libvirt/clientcert.pem) will be used.
+        in $HOME/.pki/libvirt. If the required CA certificate cannot
+        be found, then the global default location
+        (/etc/pki/CA/cacert.pem) will be used.
+        Likewise, if either the client certificate
+        or the client key cannot be found, then the global default
+        locations (/etc/pki/libvirt/clientcert.pem,
+        /etc/pki/libvirt/private/clientkey.pem) will be used.
       </li>
       <li> For the root user, the global default locations will be used.</li>
     </ul>
@@ -855,48 +876,6 @@ just read-write/read-only as at present.
     </ul>
     <p>
 Please come and discuss these issues and more on <a href="https://www.redhat.com/mailman/listinfo/libvir-list" title="libvir-list mailing list">the mailing list</a>.
-</p>
-    <h3>
-      <a name="Remote_implementation_notes">Implementation notes</a>
-    </h3>
-    <p>
-The current implementation uses <a href="http://en.wikipedia.org/wiki/External_Data_Representation" title="External Data Representation">XDR</a>-encoded packets with a
-simple remote procedure call implementation which also supports
-asynchronous messaging and asynchronous and out-of-order replies,
-although these latter features are not used at the moment.
-</p>
-    <p>
-The implementation should be considered <b>strictly internal</b> to
-libvirt and <b>subject to change at any time without notice</b>.  If
-you wish to talk to libvirtd, link to libvirt.  If there is a problem
-that means you think you need to use the protocol directly, please
-first discuss this on <a href="https://www.redhat.com/mailman/listinfo/libvir-list" title="libvir-list mailing list">the mailing list</a>.
-</p>
-    <p>
-The messaging protocol is described in
-<code>qemud/remote_protocol.x</code>.
-</p>
-    <p>
-Authentication and encryption (for TLS) is done using <a href="http://www.gnu.org/software/gnutls/" title="GnuTLS project&#10;page">GnuTLS</a> and the RPC protocol is unaware of this layer.
-</p>
-    <p>
-Protocol messages are sent using a simple 32 bit length word (encoded
-XDR int) followed by the message header (XDR
-<code>remote_message_header</code>) followed by the message body.  The
-length count includes the length word itself, and is measured in
-bytes.  Maximum message size is <code>REMOTE_MESSAGE_MAX</code> and to
-avoid denial of services attacks on the XDR decoders strings are
-individually limited to <code>REMOTE_STRING_MAX</code> bytes.  In the
-TLS case, messages may be split over TLS records, but a TLS record
-cannot contain parts of more than one message.  In the common RPC case
-a single <code>REMOTE_CALL</code> message is sent from client to
-server, and the server then replies synchronously with a single
-<code>REMOTE_REPLY</code> message, but other forms of messaging are
-also possible.
-</p>
-    <p>
-The protocol contains support for multiple program types and protocol
-versioning, modelled after SunRPC.
 </p>
   </body>
 </html>

docs/schemas/Makefile.am

@@ -1,17 +1,21 @@
-
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
 
 schemadir = $(pkgdatadir)/schemas
 schema_DATA = \
+	basictypes.rng \
+	capability.rng \
 	domain.rng \
+	domaincommon.rng \
 	domainsnapshot.rng \
 	interface.rng \
 	network.rng \
+	networkcommon.rng \
+	nodedev.rng \
+	nwfilter.rng \
 	secret.rng \
 	storageencryption.rng \
 	storagepool.rng \
-	storagevol.rng \
-	nodedev.rng \
-	capability.rng \
-	nwfilter.rng
+	storagevol.rng
 
 EXTRA_DIST = $(schema_DATA)

docs/schemas/basictypes.rng

@@ -0,0 +1,130 @@
+<?xml version="1.0"?>
+<!-- network-related definitions used in multiple grammars -->
+<grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
+
+  <!-- Our unsignedInt doesn"t allow a leading "+" in its lexical form -->
+  <define name="unsignedInt">
+    <data type="unsignedInt">
+      <param name="pattern">[0-9]+</param>
+    </data>
+  </define>
+
+  <define name="positiveInteger">
+    <data type="positiveInteger">
+      <param name="pattern">[0-9]+</param>
+    </data>
+  </define>
+
+  <define name="uint8range">
+    <choice>
+      <data type="string">
+        <param name="pattern">0x[0-9a-fA-F]{1,2}</param>
+      </data>
+      <data type="int">
+        <param name="minInclusive">0</param>
+        <param name="maxInclusive">255</param>
+      </data>
+    </choice>
+  </define>
+  <define name="uint24range">
+    <choice>
+      <data type="string">
+        <param name="pattern">0x[0-9a-fA-F]{1,6}</param>
+      </data>
+      <data type="int">
+        <param name="minInclusive">0</param>
+        <param name="maxInclusive">16777215</param>
+      </data>
+    </choice>
+  </define>
+
+  <define name="UUID">
+    <choice>
+      <data type="string">
+        <param name="pattern">[a-fA-F0-9]{32}</param>
+      </data>
+      <data type="string">
+        <param name="pattern">[a-fA-F0-9]{8}\-([a-fA-F0-9]{4}\-){3}[a-fA-F0-9]{12}</param>
+      </data>
+    </choice>
+  </define>
+
+  <!-- a 6 byte MAC address in ASCII-hex format, eg "12:34:56:78:9A:BC" -->
+  <define name="macAddr">
+    <data type="string">
+      <param name="pattern">([a-fA-F0-9]{2}:){5}[a-fA-F0-9]{2}</param>
+    </data>
+  </define>
+
+  <!-- An ipv4 "dotted quad" address -->
+  <define name="ipv4Addr">
+    <data type="string">
+      <param name="pattern">(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))</param>
+    </data>
+  </define>
+
+  <!-- Based on http://blog.mes-stats.fr/2008/10/09/regex-ipv4-et-ipv6 -->
+  <define name="ipv6Addr">
+    <data type="string">
+      <!-- To understand this better, take apart the toplevel "|"s -->
+<param name="pattern">(([0-9A-Fa-f]{1,4}:){7}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}:[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){5}:([0-9A-Fa-f]{1,4}:)?[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){4}:([0-9A-Fa-f]{1,4}:){0,2}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){3}:([0-9A-Fa-f]{1,4}:){0,3}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){2}:([0-9A-Fa-f]{1,4}:){0,4}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9])))|(([0-9A-Fa-f]{1,4}:){0,5}:(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9])))|(::([0-9A-Fa-f]{1,4}:){0,5}(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9])))|([0-9A-Fa-f]{1,4}::([0-9A-Fa-f]{1,4}:){0,5}[0-9A-Fa-f]{1,4})|(::([0-9A-Fa-f]{1,4}:){0,6}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){1,7}:)</param>
+    </data>
+  </define>
+
+  <define name="ipAddr">
+    <choice>
+      <ref name="ipv4Addr"/>
+      <ref name="ipv6Addr"/>
+    </choice>
+  </define>
+
+  <define name="ipv4Prefix">
+    <data type="unsignedInt">
+      <param name="maxInclusive">32</param>
+    </data>
+  </define>
+
+  <define name="ipv6Prefix">
+    <data type="unsignedInt">
+      <param name="maxInclusive">128</param>
+    </data>
+  </define>
+
+  <define name="ipPrefix">
+    <choice>
+      <ref name="ipv4Prefix"/>
+      <ref name="ipv6Prefix"/>
+    </choice>
+  </define>
+
+  <define name="dnsName">
+    <data type="string">
+      <param name="pattern">[a-zA-Z0-9\.\-]+</param>
+    </data>
+  </define>
+
+  <define name="deviceName">
+    <data type="string">
+      <param name="pattern">[a-zA-Z0-9_\.\-\\:/]+</param>
+    </data>
+  </define>
+
+  <define name="filePath">
+    <data type="string">
+      <param name="pattern">[a-zA-Z0-9_\.\+\-\\&amp;&quot;&apos;&lt;&gt;/%]+</param>
+    </data>
+  </define>
+
+  <define name="absFilePath">
+    <data type="string">
+      <param name="pattern">/[a-zA-Z0-9_\.\+\-\\&amp;&quot;&apos;&lt;&gt;/%]+</param>
+    </data>
+  </define>
+
+  <define name="absDirPath">
+    <data type="string">
+      <param name="pattern">/[a-zA-Z0-9_\.\+\-\\&amp;&quot;&apos;&lt;&gt;/%]*</param>
+    </data>
+  </define>
+
+</grammar>

docs/schemas/capability.rng

@@ -325,6 +325,8 @@
       <value>arm</value>
       <value>i686</value>
       <value>ia64</value>
+      <value>microblaze</value>
+      <value>microblazeel</value>
       <value>mips</value>
       <value>mipsel</value>
       <value>ppc64</value>

docs/schemas/domainsnapshot.rng

@@ -1,9 +1,12 @@
+<?xml version="1.0"?>
 <!-- A Relax NG schema for the libvirt domain snapshot properties XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0">
   <start>
     <ref name='domainsnapshot'/>
   </start>
 
+  <include href='domaincommon.rng'/>
+
   <define name='domainsnapshot'>
     <element name='domainsnapshot'>
       <interleave>
@@ -19,7 +22,7 @@
         </optional>
         <optional>
           <element name='state'>
-            <text/>
+            <ref name='state'/>
           </element>
         </optional>
         <optional>
@@ -28,17 +31,30 @@
           </element>
         </optional>
         <optional>
-          <element name='active'>
-            <text/>
+          <element name='disks'>
+            <zeroOrMore>
+              <ref name='disksnapshot'/>
+            </zeroOrMore>
           </element>
         </optional>
         <optional>
-          <element name='domain'>
-            <element name='uuid'>
-              <text/>
-            </element>
+          <element name='active'>
+            <choice>
+              <value>0</value>
+              <value>1</value>
+            </choice>
           </element>
         </optional>
+        <optional>
+          <choice>
+            <element name='domain'>
+              <element name='uuid'>
+                <ref name="UUID"/>
+              </element>
+            </element>
+            <ref name='domain'/>
+          </choice>
+        </optional>
         <optional>
           <element name='parent'>
             <element name='name'>
@@ -50,4 +66,65 @@
     </element>
   </define>
 
+  <define name='state'>
+    <choice>
+      <value>nostate</value>
+      <value>running</value>
+      <value>blocked</value>
+      <value>paused</value>
+      <value>shutdown</value>
+      <value>shutoff</value>
+      <value>crashed</value>
+      <value>disk-snapshot</value>
+    </choice>
+  </define>
+
+  <define name='disksnapshot'>
+    <element name='disk'>
+      <attribute name='name'>
+        <choice>
+          <ref name='diskTarget'/>
+          <ref name='absFilePath'/>
+        </choice>
+      </attribute>
+      <choice>
+        <attribute name='snapshot'>
+          <value>no</value>
+        </attribute>
+        <attribute name='snapshot'>
+          <value>internal</value>
+        </attribute>
+        <group>
+          <optional>
+            <attribute name='snapshot'>
+              <value>external</value>
+            </attribute>
+          </optional>
+          <interleave>
+            <optional>
+              <element name='driver'>
+                <optional>
+                  <attribute name='type'>
+                    <ref name='genericName'/>
+                  </attribute>
+                </optional>
+                <empty/>
+              </element>
+            </optional>
+            <optional>
+              <element name='source'>
+                <optional>
+                  <attribute name='file'>
+                    <ref name='absFilePath'/>
+                  </attribute>
+                </optional>
+                <empty/>
+              </element>
+            </optional>
+          </interleave>
+        </group>
+      </choice>
+    </element>
+  </define>
+
 </grammar>

docs/schemas/interface.rng

@@ -1,3 +1,4 @@
+<?xml version="1.0"?>
 <!-- A Relax NG schema for network interfaces -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0"
          xmlns:v="http://netcf.org/xml/version/1.0"
@@ -16,6 +17,7 @@
     </choice>
   </start>
 
+  <include href='basictypes.rng'/>
   <!--
        FIXME: How do we handle VLAN's ? Should they be their own interface
        or should we treat them as an option on the base interface ?  For
@@ -36,7 +38,7 @@
          FIXME: What if device name and MAC don't specify the same NIC ? -->
     <optional>
       <element name="mac">
-        <attribute name="address"><ref name="mac-addr"/></attribute>
+        <attribute name="address"><ref name="macAddr"/></attribute>
       </element>
     </optional>
     <!-- FIXME: Allow (some) ethtool options -->
@@ -75,7 +77,7 @@
     <element name="vlan">
       <attribute name="tag"><ref name="vlan-id"/></attribute>
       <element name="interface">
-        <attribute name="name"><ref name="device-name"/></attribute>
+        <attribute name="name"><ref name="deviceName"/></attribute>
       </element>
     </element>
   </define>
@@ -202,7 +204,7 @@
           </element>
           <element name="arpmon">
             <attribute name="interval"><ref name="uint"/></attribute>
-            <attribute name="target"><ref name="ipv4-addr"/></attribute>
+            <attribute name="target"><ref name="ipv4Addr"/></attribute>
             <optional>
               <attribute name="validate">
                 <choice>
@@ -244,7 +246,7 @@
   <!-- Basic attributes for all interface types -->
   <define name="name-attr">
     <!-- The device name, like eth0 or br2 -->
-    <attribute name="name"><ref name="device-name"/></attribute>
+    <attribute name="name"><ref name="deviceName"/></attribute>
   </define>
 
   <define name="mtu">
@@ -303,14 +305,14 @@
         <ref name="dhcp-element"/>
         <group>
           <element name="ip">
-            <attribute name="address"><ref name="ipv4-addr"/></attribute>
+            <attribute name="address"><ref name="ipv4Addr"/></attribute>
             <optional>
-              <attribute name="prefix"><ref name="ipv4-prefix"/></attribute>
+              <attribute name="prefix"><ref name="ipv4Prefix"/></attribute>
             </optional>
           </element>
           <optional>
             <element name="route">
-              <attribute name="gateway"><ref name="ipv4-addr"/></attribute>
+              <attribute name="gateway"><ref name="ipv4Addr"/></attribute>
             </element>
           </optional>
         </group>
@@ -331,15 +333,15 @@
       </optional>
       <zeroOrMore>
         <element name="ip">
-          <attribute name="address"><ref name="ipv6-addr"/></attribute>
+          <attribute name="address"><ref name="ipv6Addr"/></attribute>
           <optional>
-            <attribute name="prefix"><ref name="ipv6-prefix"/></attribute>
+            <attribute name="prefix"><ref name="ipv6Prefix"/></attribute>
           </optional>
         </element>
       </zeroOrMore>
       <optional>
         <element name="route">
-          <attribute name="gateway"><ref name="ipv6-addr"/></attribute>
+          <attribute name="gateway"><ref name="ipv6Addr"/></attribute>
         </element>
       </optional>
     </element>
@@ -417,55 +419,6 @@
     </data>
   </define>
 
-  <define name='device-name'>
-    <data type='string'>
-      <param name="pattern">[a-zA-Z0-9_\.\-:/]+</param>
-    </data>
-  </define>
-
-  <define name='UUID'>
-    <choice>
-      <data type='string'>
-        <param name="pattern">[a-fA-F0-9]{32}</param>
-      </data>
-      <data type='string'>
-        <param name="pattern">[a-fA-F0-9]{8}\-([a-fA-F0-9]{4}\-){3}[a-fA-F0-9]{12}</param>
-      </data>
-    </choice>
-  </define>
-
-  <define name='mac-addr'>
-    <data type='string'>
-      <param name="pattern">([a-fA-F0-9]{2}:){5}[a-fA-F0-9]{2}</param>
-    </data>
-  </define>
-
-  <define name='ipv4-addr'>
-    <data type='string'>
-      <param name="pattern">(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))</param>
-    </data>
-  </define>
-
-  <define name='ipv4-prefix'>
-    <data type='unsignedInt'>
-      <param name="maxInclusive">32</param>
-    </data>
-  </define>
-
-  <!-- Based on http://blog.mes-stats.fr/2008/10/09/regex-ipv4-et-ipv6 -->
-  <define name='ipv6-addr'>
-    <data type='string'>
-      <!-- To understand this better, take apart the toplevel '|'s -->
-      <param name="pattern">(([0-9A-Fa-f]{1,4}:){7}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}:[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){5}:([0-9A-Fa-f]{1,4}:)?[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){4}:([0-9A-Fa-f]{1,4}:){0,2}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){3}:([0-9A-Fa-f]{1,4}:){0,3}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){2}:([0-9A-Fa-f]{1,4}:){0,4}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}((((25[0-5])|(1[0-9]{2})|(2[0-4][0-9])|([0-9]{1,2})))\.){3}(((25[0-5])|(1[0-9]{2})|(2[0-4][0-9])|([0-9]{1,2}))))|(([0-9A-Fa-f]{1,4}:){0,5}:((((25[0-5])|(1[0-9]{2})|(2[0-4][0-9])|([0-9]{1,2})))\.){3}(((25[0-5])|(1[0-9]{2})|(2[0-4][0-9])|([0-9]{1,2}))))|(::([0-9A-Fa-f]{1,4}:){0,5}((((25[0-5])|(1[0-9]{2})|(2[0-4][0-9])|([0-9]{1,2})))\.){3}(((25[0-5])|(1[0-9]{2})|(2[0-4][0-9])|([0-9]{1,2}))))|([0-9A-Fa-f]{1,4}::([0-9A-Fa-f]{1,4}:){0,5}[0-9A-Fa-f]{1,4})|(::([0-9A-Fa-f]{1,4}:){0,6}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){1,7}:)</param>
-    </data>
-  </define>
-
-  <define name='ipv6-prefix'>
-    <data type='unsignedInt'>
-      <param name="maxInclusive">128</param>
-    </data>
-  </define>
-
   <define name='vlan-id'>
     <data type="unsignedInt">
       <param name="maxInclusive">4096</param>

docs/schemas/network.rng

@@ -1,3 +1,4 @@
+<?xml version="1.0"?>
 <!-- A Relax NG schema for the libvirt network XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0"
          datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
@@ -5,6 +6,9 @@
     <ref name="network"/>
   </start>
 
+  <include href='basictypes.rng'/>
+  <include href='networkcommon.rng'/>
+
   <define name="network">
 
     <element name="network">
@@ -18,7 +22,7 @@
 
         <!-- <uuid> element -->
         <optional>
-          <element name="uuid"><text/></element>
+          <element name="uuid"><ref name="UUID"/></element>
         </optional>
 
         <!-- <bridge> element -->
@@ -28,7 +32,7 @@
           <element name="bridge">
             <optional>
               <attribute name="name">
-                <text/>
+                <ref name="deviceName"/>
               </attribute>
             </optional>
 
@@ -53,7 +57,7 @@
         <!-- <mac> element -->
         <optional>
           <element name="mac">
-            <attribute name="address"><ref name="mac-addr"/></attribute>
+            <attribute name="address"><ref name="macAddr"/></attribute>
             <empty/>
           </element>
         </optional>
@@ -65,7 +69,7 @@
           <element name="forward">
             <optional>
               <attribute name="dev">
-                <text/>
+                <ref name="deviceName"/>
               </attribute>
             </optional>
 
@@ -74,31 +78,102 @@
                 <choice>
                   <value>nat</value>
                   <value>route</value>
+                  <value>bridge</value>
+                  <value>passthrough</value>
+                  <value>private</value>
+                  <value>vepa</value>
                 </choice>
               </attribute>
             </optional>
+            <zeroOrMore>
+              <element name='interface'>
+                <attribute name='dev'>
+                  <ref name='deviceName'/>
+                </attribute>
+              </element>
+            </zeroOrMore>
           </element>
         </optional>
 
+        <!-- <virtualport> element -->
+        <optional>
+          <ref name="virtualPortProfile"/>
+        </optional>
+
+        <!-- <portgroup> elements -->
+        <zeroOrMore>
+          <element name="portgroup">
+            <attribute name="name">
+              <ref name="deviceName"/>
+            </attribute>
+            <optional>
+              <attribute name="default">
+                <choice>
+                  <value>yes</value>
+                  <value>no</value>
+                </choice>
+              </attribute>
+            </optional>
+            <optional>
+              <ref name="virtualPortProfile"/>
+            </optional>
+          </element>
+        </zeroOrMore>
+
         <!-- <domain> element -->
         <optional>
           <element name="domain">
-            <attribute name="name"><text/></attribute>
+            <attribute name="name"><ref name="dnsName"/></attribute>
           </element>
         </optional>
 
+        <!-- Define the DNS related elements like TXT records
+             and other features in the <dns> element -->
+        <optional>
+            <element name="dns">
+              <zeroOrMore>
+                <element name="txt">
+                  <attribute name="name"><ref name="dnsName"/></attribute>
+                  <attribute name="value"><text/></attribute>
+                </element>
+              </zeroOrMore>
+              <zeroOrMore>
+                <element name="host">
+                  <attribute name="ip"><ref name="ipv4Addr"/></attribute>
+                  <oneOrMore>
+                    <element name="hostname"><ref name="dnsName"/></element>
+                  </oneOrMore>
+                </element>
+              </zeroOrMore>
+            </element>
+        </optional>
+       <optional>
+         <ref name="bandwidth"/>
+       </optional>
+       <optional>
+         <element name="link">
+           <attribute name="state">
+             <choice>
+               <value>up</value>
+               <value>down</value>
+             </choice>
+           </attribute>
+           <empty/>
+         </element>
+        </optional>
+
         <!-- <ip> element -->
         <zeroOrMore>
           <!-- The IP element sets up NAT'ing and an optional DHCP server
                local to the host. -->
           <element name="ip">
             <optional>
-              <attribute name="address"><ref name="ip-addr"/></attribute>
+              <attribute name="address"><ref name="ipAddr"/></attribute>
             </optional>
             <optional>
               <choice>
-                <attribute name="netmask"><ref name="ipv4-addr"/></attribute>
-                <attribute name="prefix"><ref name="ip-prefix"/></attribute>
+                <attribute name="netmask"><ref name="ipv4Addr"/></attribute>
+                <attribute name="prefix"><ref name="ipPrefix"/></attribute>
               </choice>
             </optional>
             <optional>
@@ -115,22 +190,22 @@
               <element name="dhcp">
                 <zeroOrMore>
                   <element name="range">
-                    <attribute name="start"><ref name="ipv4-addr"/></attribute>
-                    <attribute name="end"><ref name="ipv4-addr"/></attribute>
+                    <attribute name="start"><ref name="ipv4Addr"/></attribute>
+                    <attribute name="end"><ref name="ipv4Addr"/></attribute>
                   </element>
                 </zeroOrMore>
                 <zeroOrMore>
                   <element name="host">
-                    <attribute name="mac"><ref name="mac-addr"/></attribute>
+                    <attribute name="mac"><ref name="macAddr"/></attribute>
                     <attribute name="name"><text/></attribute>
-                    <attribute name="ip"><ref name="ipv4-addr"/></attribute>
+                    <attribute name="ip"><ref name="ipv4Addr"/></attribute>
                   </element>
                 </zeroOrMore>
                 <optional>
                   <element name="bootp">
-                    <attribute name="file"><text/></attribute>
+                    <attribute name="file"><ref name="filePath"/></attribute>
                     <optional>
-                      <attribute name="server"><text/></attribute>
+                      <attribute name="server"><ref name="dnsName"/></attribute>
                     </optional>
                   </element>
                 </optional>
@@ -142,45 +217,10 @@
     </element>
   </define>
 
-  <!-- An ipv4 "dotted quad" address -->
-  <define name='ipv4-addr'>
-    <data type='string'>
-      <param name="pattern">(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))</param>
-    </data>
-  </define>
-
-  <!-- Based on http://blog.mes-stats.fr/2008/10/09/regex-ipv4-et-ipv6 -->
-  <define name='ipv6-addr'>
-    <data type='string'>
-      <!-- To understand this better, take apart the toplevel '|'s -->
-      <param name="pattern">(([0-9A-Fa-f]{1,4}:){7}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}:[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){5}:([0-9A-Fa-f]{1,4}:)?[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){4}:([0-9A-Fa-f]{1,4}:){0,2}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){3}:([0-9A-Fa-f]{1,4}:){0,3}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){2}:([0-9A-Fa-f]{1,4}:){0,4}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9])))|(([0-9A-Fa-f]{1,4}:){0,5}:(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9])))|(::([0-9A-Fa-f]{1,4}:){0,5}(((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9]))\.){3}((25[0-5])|(2[0-4][0-9])|(1[0-9]{2})|([1-9][0-9])|([0-9])))|([0-9A-Fa-f]{1,4}::([0-9A-Fa-f]{1,4}:){0,5}[0-9A-Fa-f]{1,4})|(::([0-9A-Fa-f]{1,4}:){0,6}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){1,7}:)</param>
-    </data>
-  </define>
-
-  <define name='ip-addr'>
-    <choice>
-      <ref name='ipv4-addr'/>
-      <ref name='ipv6-addr'/>
-    </choice>
-  </define>
-
-  <define name='ip-prefix'>
-    <data type='unsignedInt'>
-      <param name="maxInclusive">128</param>
-    </data>
-  </define>
-
   <define name='addr-family'>
     <data type='string'>
       <param name="pattern">(ipv4)|(ipv6)</param>
     </data>
   </define>
 
-  <!-- a 6 byte MAC address in ASCII-hex format, eg "12:34:56:78:9A:BC" -->
-  <define name='mac-addr'>
-    <data type='string'>
-      <param name="pattern">([a-fA-F0-9]{2}:){5}[a-fA-F0-9]{2}</param>
-    </data>
-  </define>
-
 </grammar>

docs/schemas/networkcommon.rng

@@ -0,0 +1,98 @@
+<?xml version="1.0"?>
+<!-- network-related definitions used in multiple grammars -->
+<grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
+
+  <define name="virtualPortProfileID">
+    <data type="string">
+      <param name="maxLength">39</param>
+    </data>
+  </define>
+
+  <define name="virtualPortProfile">
+    <choice>
+      <group>
+        <element name="virtualport">
+          <attribute name="type">
+            <value>802.1Qbg</value>
+          </attribute>
+          <element name="parameters">
+            <attribute name="managerid">
+              <ref name="uint8range"/>
+            </attribute>
+            <attribute name="typeid">
+              <ref name="uint24range"/>
+            </attribute>
+            <attribute name="typeidversion">
+              <ref name="uint8range"/>
+            </attribute>
+            <optional>
+              <attribute name="instanceid">
+                <ref name="UUID"/>
+              </attribute>
+            </optional>
+          </element>
+        </element>
+      </group>
+      <group>
+        <element name="virtualport">
+          <attribute name="type">
+            <value>802.1Qbh</value>
+          </attribute>
+          <element name="parameters">
+            <attribute name="profileid">
+              <ref name="virtualPortProfileID"/>
+            </attribute>
+          </element>
+        </element>
+      </group>
+    </choice>
+  </define>
+
+  <define name="bandwidth">
+    <element name="bandwidth">
+      <interleave>
+        <optional>
+          <element name="inbound">
+            <ref name="bandwidth-attributes"/>
+            <empty/>
+          </element>
+        </optional>
+        <optional>
+          <element name="outbound">
+            <ref name="bandwidth-attributes"/>
+            <empty/>
+          </element>
+        </optional>
+      </interleave>
+    </element>
+  </define>
+
+  <define name="bandwidth-attributes">
+    <attribute name="average">
+      <ref name="speed"/>
+    </attribute>
+    <optional>
+      <attribute name="peak">
+        <ref name="speed"/>
+      </attribute>
+    </optional>
+    <optional>
+      <attribute name='burst'>
+        <ref name="BurstSize"/>
+      </attribute>
+    </optional>
+  </define>
+
+  <define name="speed">
+    <data type="unsignedInt">
+      <param name="pattern">[0-9]+</param>
+      <param name="minInclusive">1</param>
+    </data>
+  </define>
+  <define name="BurstSize">
+    <data type="unsignedInt">
+      <param name="pattern">[0-9]+</param>
+      <param name="minInclusive">1</param>
+    </data>
+  </define>
+</grammar>

docs/schemas/nwfilter.rng

@@ -81,6 +81,7 @@
                   <ref name="common-port-attributes"/>
                   <ref name="common-ip-attributes-p1"/>
                   <ref name="common-ip-attributes-p2"/>
+                  <ref name="tcp-attributes"/>
                   <ref name="comment-attribute"/>
                 </element>
               </zeroOrMore>
@@ -184,6 +185,7 @@
                   <ref name="common-port-attributes"/>
                   <ref name="common-ipv6-attributes-p1"/>
                   <ref name="common-ipv6-attributes-p2"/>
+                  <ref name="tcp-attributes"/>
                   <ref name="comment-attribute"/>
                 </element>
               </zeroOrMore>
@@ -579,6 +581,11 @@
           <ref name="uint16range"/>
         </attribute>
       </optional>
+      <optional>
+        <attribute name="gratuitous">
+          <ref name="boolean"/>
+        </attribute>
+      </optional>
    </interleave>
   </define>
 
@@ -606,6 +613,14 @@
     </optional>
   </define>
 
+  <define name="tcp-attributes">
+    <optional>
+      <attribute name="flags">
+        <ref name="tcpflags-type"/>
+      </attribute>
+    </optional>
+  </define>
+
   <!-- ################  type library ################ -->
 
   <define name="UUID">
@@ -774,6 +789,17 @@
     </choice>
   </define>
 
+  <define name="boolean">
+    <choice>
+      <value>yes</value>
+      <value>no</value>
+      <value>true</value>
+      <value>false</value>
+      <value>1</value>
+      <value>0</value>
+    </choice>
+  </define>
+
   <define name="arpOpcodeType">
     <choice>
       <!-- variable -->
@@ -872,4 +898,10 @@
       <param name="pattern">((NEW|ESTABLISHED|RELATED|INVALID)(,(NEW|ESTABLISHED|RELATED|INVALID))*|NONE)</param>
     </data>
   </define>
+
+  <define name='tcpflags-type'>
+    <data type="string">
+      <param name="pattern">((SYN|ACK|URG|PSH|FIN|RST)(,(SYN|ACK|URG|PSH|FIN|RST))*|ALL|NONE)/((SYN|ACK|URG|PSH|FIN|RST)(,(SYN|ACK|URG|PSH|FIN|RST))*|ALL|NONE)</param>
+    </data>
+  </define>
 </grammar>

docs/sitemap.html.in

@@ -72,6 +72,10 @@
                 <a href="firewall.html">Firewall</a>
                 <span>Firewall and network filter configuration</span>
               </li>
+              <li>
+                <a href="locking.html">Disk locking</a>
+                <span>Ensuring exclusive guest access to disks</span>
+              </li>
               <li>
                 <a href="hooks.html">Hooks</a>
                 <span>Hooks for system specific management</span>
@@ -198,6 +202,10 @@
                 <a href="drvvmware.html">VMware Workstation / Player</a>
                 <span>Driver for VMware Workstation / Player</span>
               </li>
+              <li>
+                <a href="drvhyperv.html">Microsoft Hyper-V</a>
+                <span>Driver for Microsoft Hyper-V</span>
+              </li>
             </ul>
           </li>
           <li>
@@ -284,6 +292,14 @@
                 <a href="internals/command.html">Spawning commands</a>
                 <span>Spawning commands from libvirt driver code</span>
               </li>
+              <li>
+                <a href="internals/rpc.html">RPC protocol &amp; APIs</a>
+                <span>RPC protocol information and API / dispatch guide</span>
+              </li>
+              <li>
+                <a href="internals/locking.html">Lock managers</a>
+                <span>Use lock managers to protect disk content</span>
+              </li>
             </ul>
           </li>
           <li>
@@ -318,6 +334,20 @@
         <a href="contact.html">Contact</a>
         <span>How to contact the developers via email and IRC</span>
       </li>
+      <li>
+        <a href="testsuites.html">Test suites</a>
+        <span>Available test suites for libvirt</span>
+        <ul>
+          <li>
+            <a href="testtck.html">TCK test suite</a>
+            <span>Virtualization functional test suite in Perl</span>
+          </li>
+          <li>
+            <a href="testapi.html">Libvirt-test-API</a>
+            <span>Libvirt functional API test suite in Python</span>
+          </li>
+        </ul>
+      </li>
       <li>
         <a href="relatedlinks.html">Related Links</a>
         <span>Miscellaneous links of interest related to libvirt</span>

docs/testapi.html.in

@@ -0,0 +1,34 @@
+<?xml version="1.0"?>
+<html>
+  <body>
+    <h1>libvirt-test-API:  Python based test suite </h1>
+    <p>Libvirt-test-API is a powerful test tool designed to complement
+       existing libvirt test tools such as libvirt-TCK and the internal
+       test suite. It aims at functional regression testing, trying to
+       exercise nearly all the API by the way of the Python bindings.</p>
+    <p>The test API currently covers:</p>
+    <ul>
+      <li>domain: all classical lifetime operations, installation of
+          various guests OSes, snapshots</li>
+      <li>interfaces: define, create, destroy, undefine, NPIV</li>
+      <li>virtual networks: define, create, destroy, undefine</li>
+      <li>storage: regression tests for most storage types and configurations
+          dir, disk, netfs, iSCSI, multipath</li>
+    </ul>
+    <p>Some of the tests need dedicated local resources whose definitions
+       are stored in a configuration file. The tests are defined using
+       Python modules defining the code for the test, this is called
+       a <tt>test case</tt>, and test <tt>configuration files</tt> using one
+       or more test case to define a given test scenario.</p>
+    <p>For more details you can look at:</p>
+    <ul>
+      <li> A <a href="http://libvirt.org/sources/libvirt-test-API/Libvirt-test-API.pdf">documentation PDF</a>
+           file describing the test suite and how to write test cases
+           and test scenarios.
+    </ul>
+    <p> Libvirt-test-API is maintained using
+        <a href="http://libvirt.org/git/?p=libvirt-test-API.git">a GIT
+        repository</a>, and comment, patches and reviews are carried
+        on the <a href="contact.html">libvir-list</a> development list.</p>
+  </body>
+</html>

docs/testsuites.html.in

@@ -0,0 +1,37 @@
+<?xml version="1.0"?>
+<html>
+  <body>
+    <h1>Test suites</h1>
+    <p>There is a few test suites available to developers for testing
+    a given version of libvirt:</p>
+    <ul>
+      <li>the internal test suite: present in the source code, it is run
+          by developers before submitting patches upstream, it is also
+          suggested to have it run and pass as part of the packaging
+          process for distributions. It is run by launching:
+          <pre>make check</pre>
+          in a source tree after compilation has finished. It doesn't
+          really make functional testing but checks that large portions
+          of the code not interacting directly with virtualization
+          functions properly.
+      </li>
+      <li>the <a href="testtck.html">TCK test suite</a> is a functional
+          test suite implemented using the
+          <a href="http://search.cpan.org/dist/Sys-Virt/">Perl bindings</a>
+          of libvirt. It is available separately as a
+          <a href="ftp://libvirt.org/libvirt/tck/">download</a>, as a
+          <a href="http://rpmfind.net/linux/rpm2html/search.php?query=libvirt-tck">package</a>
+          in Fedora distributions, but best is probably to get
+          the <a href="http://libvirt.org/git/?p=libvirt-tck.git">version
+          from GIT</a>.
+      <li>the <a href="testapi.html">libvirt-test-API</a> is also a functional
+          test suite, but implemented using the
+          <a href="python.html">Python bindings</a>
+          of libvirt. It is available separately as a
+          <a href="ftp://libvirt.org/libvirt/libvirt-test-API/">download</a>,
+          or directly get
+          the <a href="http://libvirt.org/git/?p=libvirt-test-API.git">version
+          from GIT</a>.
+    </ul>
+  </body>
+</html>

docs/testtck.html.in

@@ -0,0 +1,39 @@
+<?xml version="1.0"?>
+<html>
+  <body>
+    <h1>libvirt TCK  : Technology Compatibility Kit</h1>
+    <p>The libvirt TCK provides a framework for performing testing
+    of the integration between libvirt drivers, the underlying virt
+    hypervisor technology, related operating system services and system
+    configuration. The idea (and name) is motivated by the Java TCK.</p>
+    <p>In particular the libvirt TCK is intended to address the following
+    scenarios:</p>
+    <ul>
+      <li>Validate that a new libvirt driver is in compliance
+          with the (possibly undocumented!) driver API semantics</li>
+      <li>Validate that an update to an existing driver does not
+         change the API semantics in a non-compliant manner</li>
+      <li>Validate that a new hypervisor release is still providing
+         compatibility with the corresponding libvirt driver usage</li>
+      <li>Validate that an OS distro deployment consisting of a
+         hypervisor and libvirt release is configured correctly</li>
+    </ul>
+    <p>Thus the libvirt TCK will allow developers, administrators and users
+    to determine the level of compatibility of their platform, and
+    evaluate whether it will meet their needs, and get awareness of any
+    regressions that may have occurred since a previous test run.</p>
+    <p>For more details you can look at:</p>
+    <ul>
+      <li> The initial
+<a href="http://www.redhat.com/archives/libvir-list/2009-April/msg00176.html">mail
+           from Daniel Berrange</a> presenting the project.
+      <li> The <a href="http://fedoraproject.org/wiki/Features/VirtTCK">page
+           describing VirtTCK</a> the inclusion of libvirt-TCK as a
+           Fedora Feature.</li>
+    </ul>
+    <p> Libvirt-TCK is maintained using
+        <a href="http://libvirt.org/git/?p=libvirt-tck.git">a GIT
+        repository</a>, and comment, patches and reviews are carried
+        on the <a href="contact.html">libvir-list</a> development list.</p>
+  </body>
+</html>

docs/todo.pl

@@ -47,6 +47,8 @@ my $trackers = BZ::Client::Bug->search($client, {'product' => $product,
 my @trackers;
 
 foreach my $tracker (@{$trackers}) {
+    next if $tracker->{'bug_status'} eq "CLOSED";
+
     my $summary = $tracker->{'short_desc'};
     $summary =~ s/^\s*RFE\s*:\s*//;
     $summary =~ s/^\s*\[\s*RFE\s*\]\s*:?\s*//;
@@ -64,6 +66,8 @@ foreach my $tracker (@trackers) {
 						     'blocked' => $tracker->{id}});
 
     foreach my $feature (@{$features}) {
+	next if $feature->{'bug_status'} eq "CLOSED";
+
 	my $summary = $feature->{'short_desc'};
 	$summary =~ s/^\s*RFE\s*:\s*//;
 	$summary =~ s/^\s*\[\s*RFE\s*\]\s*:?\s*//;

examples/apparmor/Makefile.am

@@ -1,3 +1,6 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 EXTRA_DIST=				\
 	TEMPLATE			\
 	libvirt-qemu			\

examples/apparmor/libvirt-qemu

@@ -27,9 +27,9 @@
   # but may constitute a security risk. If your environment does not require
   # the use of sound in your VMs, feel free to comment out or prepend 'deny' to
   # the rules for files in /dev.
-  /dev/shm/ r,
-  /dev/shm/pulse-shm* r,
-  /dev/shm/pulse-shm* rwk,
+  /{dev,run}/shm r,
+  /{dev,run}/shmpulse-shm* r,
+  /{dev,run}/shmpulse-shm* rwk,
   /dev/snd/* rw,
   capability ipc_lock,
   # 'kill' is not required for sound and is a security risk. Do not enable
@@ -69,6 +69,8 @@
   /usr/bin/qemu-system-cris rmix,
   /usr/bin/qemu-system-i386 rmix,
   /usr/bin/qemu-system-m68k rmix,
+  /usr/bin/qemu-system-microblaze rmix,
+  /usr/bin/qemu-system-microblazeel rmix,
   /usr/bin/qemu-system-mips rmix,
   /usr/bin/qemu-system-mips64 rmix,
   /usr/bin/qemu-system-mips64el rmix,
@@ -87,6 +89,8 @@
   /usr/bin/qemu-cris rmix,
   /usr/bin/qemu-i386 rmix,
   /usr/bin/qemu-m68k rmix,
+  /usr/bin/qemu-microblaze rmix,
+  /usr/bin/qemu-microblazeel rmix,
   /usr/bin/qemu-mips rmix,
   /usr/bin/qemu-mipsel rmix,
   /usr/bin/qemu-ppc rmix,

examples/domain-events/events-c/Makefile.am

@@ -1,3 +1,6 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 INCLUDES = -I$(top_builddir)/include -I$(top_srcdir)/include \
 	   -I$(top_builddir)/gnulib/lib -I$(top_srcdir)/gnulib/lib
 noinst_PROGRAMS = event-test

examples/domain-events/events-c/event-test.c

@@ -8,10 +8,7 @@
 #include <libvirt/libvirt.h>
 #include <libvirt/virterror.h>
 
-#define VIR_DEBUG0(fmt) printf("%s:%d :: " fmt "\n", \
-        __func__, __LINE__)
-#define VIR_DEBUG(fmt, ...) printf("%s:%d: " fmt "\n", \
-        __func__, __LINE__, __VA_ARGS__)
+#define VIR_DEBUG(fmt) printf("%s:%d: " fmt "\n", __func__, __LINE__)
 #define STREQ(a,b) (strcmp(a,b) == 0)
 
 #ifndef ATTRIBUTE_UNUSED
@@ -90,19 +87,45 @@ static const char *eventDetailToString(int event, int detail) {
             case VIR_DOMAIN_EVENT_STARTED_RESTORED:
                 ret = "Restored";
                 break;
+            case VIR_DOMAIN_EVENT_STARTED_FROM_SNAPSHOT:
+                ret = "Snapshot";
+                break;
             }
             break;
         case VIR_DOMAIN_EVENT_SUSPENDED:
-            if (detail == VIR_DOMAIN_EVENT_SUSPENDED_PAUSED)
+            switch (detail) {
+            case VIR_DOMAIN_EVENT_SUSPENDED_PAUSED:
                 ret = "Paused";
-            else if (detail == VIR_DOMAIN_EVENT_SUSPENDED_MIGRATED)
+                break;
+            case VIR_DOMAIN_EVENT_SUSPENDED_MIGRATED:
                 ret = "Migrated";
+                break;
+            case VIR_DOMAIN_EVENT_SUSPENDED_IOERROR:
+                ret = "I/O Error";
+                break;
+            case VIR_DOMAIN_EVENT_SUSPENDED_WATCHDOG:
+                ret = "Watchdog";
+                break;
+            case VIR_DOMAIN_EVENT_SUSPENDED_RESTORED:
+                ret = "Restored";
+                break;
+            case VIR_DOMAIN_EVENT_SUSPENDED_FROM_SNAPSHOT:
+                ret = "Snapshot";
+                break;
+            }
             break;
         case VIR_DOMAIN_EVENT_RESUMED:
-            if (detail == VIR_DOMAIN_EVENT_RESUMED_UNPAUSED)
+            switch (detail) {
+            case VIR_DOMAIN_EVENT_RESUMED_UNPAUSED:
                 ret = "Unpaused";
-            else if (detail == VIR_DOMAIN_EVENT_RESUMED_MIGRATED)
+                break;
+            case VIR_DOMAIN_EVENT_RESUMED_MIGRATED:
                 ret = "Migrated";
+                break;
+            case VIR_DOMAIN_EVENT_RESUMED_FROM_SNAPSHOT:
+                ret = "Snapshot";
+                break;
+            }
             break;
         case VIR_DOMAIN_EVENT_STOPPED:
             switch (detail) {
@@ -124,6 +147,9 @@ static const char *eventDetailToString(int event, int detail) {
             case VIR_DOMAIN_EVENT_STOPPED_FAILED:
                 ret = "Failed";
                 break;
+            case VIR_DOMAIN_EVENT_STOPPED_FROM_SNAPSHOT:
+                ret = "Snapshot";
+                break;
             }
             break;
     }
@@ -248,6 +274,17 @@ static int myDomainEventGraphicsCallback(virConnectPtr conn ATTRIBUTE_UNUSED,
     return 0;
 }
 
+static int myDomainEventControlErrorCallback(virConnectPtr conn ATTRIBUTE_UNUSED,
+                                             virDomainPtr dom,
+                                             void *opaque ATTRIBUTE_UNUSED)
+{
+    printf("%s EVENT: Domain %s(%d) control error\n", __func__, virDomainGetName(dom),
+           virDomainGetID(dom));
+
+    return 0;
+}
+
+
 static void myFreeFunc(void *opaque)
 {
     char *str = opaque;
@@ -281,6 +318,7 @@ int main(int argc, char **argv)
     int callback5ret = -1;
     int callback6ret = -1;
     int callback7ret = -1;
+    int callback8ret = -1;
     struct sigaction action_stop;
 
     memset(&action_stop, 0, sizeof action_stop);
@@ -304,7 +342,7 @@ int main(int argc, char **argv)
     sigaction(SIGTERM, &action_stop, NULL);
     sigaction(SIGINT, &action_stop, NULL);
 
-    VIR_DEBUG0("Registering domain event cbs");
+    VIR_DEBUG("Registering domain event cbs");
 
     /* Add 2 callbacks to prove this works with more than just one */
     callback1ret = virConnectDomainEventRegister(dconn, myDomainEventCallback1,
@@ -339,6 +377,11 @@ int main(int argc, char **argv)
                                                     VIR_DOMAIN_EVENT_ID_GRAPHICS,
                                                     VIR_DOMAIN_EVENT_CALLBACK(myDomainEventGraphicsCallback),
                                                     strdup("callback graphics"), myFreeFunc);
+    callback8ret = virConnectDomainEventRegisterAny(dconn,
+                                                    NULL,
+                                                    VIR_DOMAIN_EVENT_ID_CONTROL_ERROR,
+                                                    VIR_DOMAIN_EVENT_CALLBACK(myDomainEventControlErrorCallback),
+                                                    strdup("callback control error"), myFreeFunc);
 
     if ((callback1ret != -1) &&
         (callback2ret != -1) &&
@@ -355,7 +398,7 @@ int main(int argc, char **argv)
             }
         }
 
-        VIR_DEBUG0("Deregistering event handlers");
+        VIR_DEBUG("Deregistering event handlers");
         virConnectDomainEventDeregister(dconn, myDomainEventCallback1);
         virConnectDomainEventDeregisterAny(dconn, callback2ret);
         virConnectDomainEventDeregisterAny(dconn, callback3ret);
@@ -363,9 +406,11 @@ int main(int argc, char **argv)
         virConnectDomainEventDeregisterAny(dconn, callback5ret);
         virConnectDomainEventDeregisterAny(dconn, callback6ret);
         virConnectDomainEventDeregisterAny(dconn, callback7ret);
+        if (callback8ret != -1)
+            virConnectDomainEventDeregisterAny(dconn, callback8ret);
     }
 
-    VIR_DEBUG0("Closing connection");
+    VIR_DEBUG("Closing connection");
     if (dconn && virConnectClose(dconn) < 0) {
         printf("error closing\n");
     }

examples/domain-events/events-python/event-test.py

@@ -66,8 +66,7 @@ class virEventLoopPure:
             self.cb(self.handle,
                     self.fd,
                     events,
-                    self.opaque[0],
-                    self.opaque[1])
+                    self.opaque)
 
     # This class contains the data we need to track for a
     # single periodic timer
@@ -96,8 +95,7 @@ class virEventLoopPure:
 
         def dispatch(self):
             self.cb(self.timer,
-                    self.opaque[0],
-                    self.opaque[1])
+                    self.opaque)
 
 
     def __init__(self):

examples/dominfo/Makefile.am

@@ -1,3 +1,5 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
 
 INCLUDES = -I$(top_builddir)/include -I$(top_srcdir)/include -I@srcdir@/include
 LDADDS = $(STATIC_BINARIES) $(WARN_CFLAGS) $(top_builddir)/src/libvirt.la \

examples/domsuspend/Makefile.am

@@ -1,3 +1,5 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
 
 INCLUDES = -I$(top_builddir)/include -I$(top_srcdir)/include -I@srcdir@/include
 LDADDS = $(STATIC_BINARIES) $(WARN_CFLAGS) $(top_builddir)/src/libvirt.la \

examples/hellolibvirt/Makefile.am

@@ -1,3 +1,6 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 INCLUDES = -I$(top_builddir)/include -I$(top_srcdir)/include
 noinst_PROGRAMS = hellolibvirt
 hellolibvirt_CFLAGS = $(WARN_CFLAGS)

examples/openauth/Makefile.am

@@ -1,3 +1,6 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 INCLUDES = -I$(top_builddir)/include -I$(top_srcdir)/include
 noinst_PROGRAMS = openauth
 openauth_CFLAGS = $(WARN_CFLAGS)

examples/python/Makefile.am

@@ -1,3 +1,6 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 EXTRA_DIST=						\
 	README						\
 	dominfo.py domrestore.py domsave.py domstart.py esxlist.py

examples/systemtap/Makefile.am

@@ -1,2 +1,4 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
 
 EXTRA_DIST = client.stp

examples/xml/nwfilter/Makefile.am

@@ -1,3 +1,5 @@
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
 
 FILTERS = \
 	allow-arp.xml \

examples/xml/nwfilter/no-arp-spoofing.xml

@@ -12,7 +12,11 @@
    <rule action='drop' direction='out' priority='400' >
        <arp match='no' arpsrcipaddr='$IP' />
    </rule>
-   <!-- drop if ipaddr or macaddr odes not belong to guest -->
+   <!-- allow gratuitous arp -->
+   <rule action='accept' direction='in' priority='425'>
+       <arp gratuitous='true'/>
+   </rule>
+   <!-- drop if ipaddr or macaddr does not belong to guest -->
    <rule action='drop' direction='in' priority='450' >
        <arp match='no' arpdstmacaddr='$MAC'/>
        <arp opcode='reply'/>

gnulib/lib/Makefile.am

@@ -0,0 +1,8 @@
+## Makefile for gnulib/lib				-*-Makefile-*-
+
+## Copyright (C) 2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
+include gnulib.mk
+
+INCLUDES = $(GETTEXT_CPPFLAGS)

gnulib/tests/Makefile.am

@@ -0,0 +1,8 @@
+## Makefile for gnulib/lib				-*-Makefile-*-
+
+## Copyright (C) 2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
+include gnulib.mk
+
+INCLUDES = $(GETTEXT_CPPFLAGS)

include/Makefile.am

@@ -1,2 +1,6 @@
 ## Process this file with automake to produce Makefile.in
+
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 SUBDIRS=libvirt

include/libvirt/Makefile.am

@@ -1,5 +1,8 @@
 ## Process this file with automake to produce Makefile.in
 
+## Copyright (C) 2005-2011 Red Hat, Inc.
+## See COPYING.LIB for the License of this software
+
 virincdir = $(includedir)/libvirt
 
 virinc_HEADERS = libvirt.h		\