qemucapsprobemock: Fix lookup of qemu functions

qemucapsprobemock can't find real versions of qemuMonitorSend() and
qemuMonitorJSONIOProcessLine() on macOS. That breaks qemucapsprobe.

The failure can be explained by documented behaviour of dlsym(3) on
macOS:

  If dlsym() is called with the special handle RTLD_NEXT, then dyld
  searches for the symbol in the dylibs the calling image linked against
  when built.

  [...] For flat linked images, the search starts in the load ordered
  list of all images, in the image right after the caller's image.

That means qemucapsprobemock must be linked against qemu test driver to
find symbols there with RTLD_NEXT.

Signed-off-by: Roman Bolshakov <r.bolshakov@yadro.com>
Reviewed-by: Michal Privoznik <mprivozn@redhat.com>

.gitlab-ci.yml

@@ -51,24 +51,17 @@ stages:
     - *script_variables
   script:
     - meson build --werror || (cat build/meson-logs/meson-log.txt && exit 1)
-    - ninja -C build dist
-
-# Default native build job only for CentOS 7 that is always run
-# meson dist fails on CentOS 7 because of old git that fails to clone
-# from shallow git repository which is done when running meson dist
-.native_build_centos_7_job_template: &native_build_centos_7_job_definition
-  stage: builds
-  image: $CI_REGISTRY_IMAGE/ci-$NAME:latest
-  cache:
-    paths:
-      - ccache/
-    key: "$CI_JOB_NAME"
-  before_script:
-    - *script_variables
-  script:
-    - meson build --werror || (cat build/meson-logs/meson-log.txt && exit 1)
-    - ninja -C build
-    - ninja -C build test
+    - if test "$DIST" != "skip";
+      then
+        ninja -C build dist;
+      else
+        ninja -C build;
+        ninja -C build test;
+      fi
+    - if test -x /usr/bin/rpmbuild && test "$RPM" != "skip";
+      then
+        rpmbuild --nodeps -ta build/meson-dist/libvirt-*.tar.xz;
+      fi
 
 # Jobs that we delegate to Cirrus CI because they require an operating
 # system other than Linux. These jobs will only run if the required
@@ -122,6 +115,7 @@ stages:
   script:
     - meson build --werror $MESON_OPTS || (cat build/meson-logs/meson-log.txt && exit 1)
     - ninja -C build
+    - if test "$CROSS" = "i686" ; then ninja -C build test ; fi
 
 
 # Native container build jobs
@@ -305,11 +299,15 @@ x64-debian-sid:
     NAME: debian-sid
 
 x64-centos-7:
-  <<: *native_build_centos_7_job_definition
+  <<: *native_build_job_definition
   needs:
     - x64-centos-7-container
   variables:
     NAME: centos-7
+    # meson dist fails on CentOS 7 because of old git that fails to clone
+    # from shallow git repository which is done when running meson dist
+    DIST: skip
+    RPM: skip
 
 x64-centos-8:
   <<: *native_build_job_definition
@@ -317,6 +315,7 @@ x64-centos-8:
     - x64-centos-8-container
   variables:
     NAME: centos-8
+    RPM: skip
 
 x64-centos-8-clang:
   <<: *native_build_job_definition
@@ -325,6 +324,7 @@ x64-centos-8-clang:
   variables:
     NAME: centos-8
     CC: clang
+    RPM: skip
 
 x64-centos-stream:
   <<: *native_build_job_definition
@@ -332,6 +332,7 @@ x64-centos-stream:
     - x64-centos-stream-container
   variables:
     NAME: centos-stream
+    RPM: skip
 
 x64-fedora-31:
   <<: *native_build_job_definition
@@ -339,6 +340,7 @@ x64-fedora-31:
     - x64-fedora-31-container
   variables:
     NAME: fedora-31
+    RPM: skip
 
 x64-fedora-32:
   <<: *native_build_job_definition
@@ -361,6 +363,7 @@ x64-fedora-rawhide-clang:
   variables:
     NAME: fedora-rawhide
     CC: clang
+    RPM: skip
 
 x64-opensuse-151:
   <<: *native_build_job_definition
@@ -368,6 +371,7 @@ x64-opensuse-151:
     - x64-opensuse-151-container
   variables:
     NAME: opensuse-151
+    RPM: skip
 
 x64-ubuntu-1804:
   <<: *native_build_job_definition
@@ -581,3 +585,23 @@ check-dco:
       - $CI_PROJECT_NAMESPACE == 'libvirt'
   variables:
     GIT_DEPTH: 1000
+
+
+# Coverity job that is run only by schedules
+coverity:
+  image: $CI_REGISTRY_IMAGE/ci-centos-8:latest
+  needs:
+    - x64-centos-8-container
+  stage: builds
+  script:
+    - curl https://scan.coverity.com/download/linux64 --form project=$COVERITY_SCAN_PROJECT_NAME --form token=$COVERITY_SCAN_TOKEN -o /tmp/cov-analysis-linux64.tgz
+    - tar xfz /tmp/cov-analysis-linux64.tgz
+    - meson build
+    - cov-analysis-linux64-*/bin/cov-build --dir cov-int ninja -C build
+    - tar cfz cov-int.tar.gz cov-int
+    - curl https://scan.coverity.com/builds?project=$COVERITY_SCAN_PROJECT_NAME --form token=$COVERITY_SCAN_TOKEN --form email=$GITLAB_USER_EMAIL --form file=@cov-int.tar.gz --form version="$(git describe --tags)" --form description="$(git describe --tags) / $CI_COMMIT_TITLE / $CI_COMMIT_REF_NAME:$CI_PIPELINE_ID"
+  only:
+    refs:
+      - schedules
+    variables:
+      - $COVERITY_SCAN_PROJECT_NAME && $COVERITY_SCAN_TOKEN

.mailmap

@@ -47,6 +47,7 @@
 <fidencio@redhat.com> <fabiano@fidencio.org>
 <shi_lei@massclouds.com> <shilei.massclouds@gmx.com>
 <adrian.brzezinski@eo.pl> <redhat@adrb.pl>
+<matt@datto.com> <mcoleman@datto.com>
 
 # Name consolidation:
 # Preferred author spelling <preferred email>

NEWS.rst

@@ -8,9 +8,116 @@ the changes introduced by each of them.
 For a more fine-grained view, use the `git log`_.
 
 
-v6.8.0 (unreleased)
+v6.10.0 (unreleased)
+====================
+
+* **Security**
+
+  * qemu: Enable client TLS certificate validation by default for ``chardev``,
+    ``migration``, and ``backup`` servers.
+
+  The default value if qemu.conf options ``chardev_tls_x509_verify``,
+  ``migrate_tls_x509_verify``, or  ``backup_tls_x509_verify`` are not specified
+  explicitly in the config file and also the ``default_tls_x509_verify`` config
+  option is missing are now '1'. This ensures that only legitimate clients
+  access servers, which don't have any additional form of authentication.
+
+* **New features**
+
+  * qemu: Implement OpenSSH authorized key file management APIs
+
+    New APIs (``virDomainAuthorizedSSHKeysGet()`` and
+    ``virDomainAuthorizedSSHKeysSet()``) and virsh commands
+    (``get-user-sshkeys`` and ``set-user-sshkeys``) are added to manage
+    authorized_keys SSH file for user.
+
+  * hyperv: implement new APIs
+
+    The ``virDomainGetMaxMemory()``, ``virDomainSetMaxMemory()``,
+    ``virDomainGetSchedulerType()``, ``virDomainGetSchedulerParameters()``,
+    ``virDomainGetSchedulerParametersFlags()``, ``virDomainGetVcpus()``,
+    ``virDomainGetVcpusFlags()``, ``virDomainGetMaxVcpus()``,
+    ``virDomainSetVcpus()``, and ``virDomainSetVcpusFlags()`` APIs have been
+    implemented in the Hyper-V driver.
+
+* **Improvements**
+
+* **Bug fixes**
+
+* **Removed features**
+
+  * hyperv: removed support for the Hyper-V V1 WMI API
+
+    This drops support for Windows Server 2008R2 and 2012.
+    The earliest supported version is now Windows 2012R2.
+
+
+v6.9.0 (2020-11-02)
 ===================
 
+* **New features**
+
+  * nodedev: Add support for channel subsystem (CSS) devices on S390
+
+    A CSS device is represented as a parent device of a CCW device.
+    This support allows to create vfio-ccw mediated devices with
+    ``virNodeDeviceCreateXML()``.
+
+  * qemu: Implement memory failure event
+
+    New event is implemented that is emitted whenever a guest encounters a
+    memory failure.
+
+  * qemu: Implement support for ``<transient/>`` disks
+
+    VMs based on the QEMU hypervisor now can use ``<transient/>`` option for
+    local file-backed disks to configure a disk which discards changes made to
+    it while the VM was active.
+
+  * hyperv: implement new APIs
+
+    The ``virConnectGetCapabilities()``, ``virConnectGetMaxVcpus()``,
+    ``virConnectGetVersion()``, ``virDomainGetAutostart()``,
+    ``virDomainSetAutostart()``, ``virNodeGetFreeMemory()``,
+    ``virDomainReboot()``, ``virDomainReset()``, ``virDomainShutdown()``, and
+    ``virDomainShutdownFlags()`` APIs have been implemented in the Hyper-V
+    driver.
+
+  * bhyve: implement virtio-9p filesystem support
+
+    Implement virito-9p shared filesystem using the ``<filesystem/>`` element.
+
+  * qemu: Add support for vDPA network devices.
+
+    VMs using the QEMU hypervisor can now specify vDPA network devices
+    using ``<interface type='vdpa'>``. The node device APIs also now
+    list and provide XML descriptions for vDPA devices.
+
+* **Bug fixes**
+
+  * hyperv: ensure WQL queries work in all locales
+
+    Relying on the "Description" field caused queries to fail on non-"en-US"
+    systems. The queries have been updated to avoid using localized strings.
+
+  * rpc: Fix ``virt-ssh-helper`` detection
+
+    libvirt 6.8.0 failed to correctly detect the availability of the new
+    ``virt-ssh-helper`` command on the remote host, and thus always used the
+    fallback instead; this has now been fixed.
+
+
+v6.8.0 (2020-10-01)
+===================
+
+* **Security**
+
+  * qemu: double free in qemuAgentGetInterfaces() in qemu_agent.c
+
+    Clients connecting to the read-write socket with limited ACL permissions
+    may be able to crash the libvirt daemon, resulting in a denial of service,
+    or potentially escalate their privileges on the system. CVE-2020-25637.
+
 * **New features**
 
   * xen: Add ``writeFiltering`` attribute for PCI devices
@@ -77,17 +184,17 @@ v6.8.0 (unreleased)
 
   * qemu: Preserve qcow2 cluster size after external snapshots
 
-   The new overlay image which is installed on top of the current chain when
-   taking an external snapshot now preserves the cluser size of the original
-   top image to preserve any performance tuning done on the original image.
+    The new overlay image which is installed on top of the current chain when
+    taking an external snapshot now preserves the cluser size of the original
+    top image to preserve any performance tuning done on the original image.
 
 * **Bug fixes**
 
   * qemu: Various (i)SCSI backed hostdev fixes
 
-   (i)SCSI backed hostdevs now work again with an arbitrarily long
-   user-specified device alias and also honor the 'readonly' property after a
-   recent rewrite.
+    (i)SCSI backed hostdevs now work again with an arbitrarily long
+    user-specified device alias and also honor the 'readonly' property after a
+    recent rewrite.
 
 * **Removed features**
 
@@ -97,6 +204,7 @@ v6.8.0 (unreleased)
     in libvirt. udev backend is used on Linux OSes and devd can be eventually
     implemented as replacement for FreeBSD.
 
+
 v6.7.0 (2020-09-01)
 ===================
 
@@ -150,6 +258,11 @@ v6.7.0 (2020-09-01)
     forbidden and no size auto-alignment will be made. Instead, libvirt will
     suggest an aligned round up size for the user.
 
+  * apparmor: Several improvements
+
+    Add support for virtiofs filesystem and allow QEMU to load old
+    shared objects after upgrade.
+
 * **Bug fixes**
 
   * virdevmapper: Deal with kernels without DM support
@@ -380,6 +493,12 @@ v6.4.0 (2020-06-02)
     ``virsh capabilities`` will now include information about the host CPU when
     run on ARM machines.
 
+  * qemu: support network interface downscript
+
+    QEMU has the ability to run a script when a NIC is brought up and down.
+    Libvirt only enables use of the up script. Now add support for postscript
+    when NIC is down/detached.
+
 * **Improvements**
 
   * qemu: stricter validation for disk type='lun'
@@ -397,6 +516,8 @@ v6.4.0 (2020-06-02)
     already does in these cases. Users are encouraged to provide complete NUMA
     topologies to avoid unexpected changes in the domain XML.
 
+  * Cooperlake x86 CPU model is added
+
 * **Bug fixes**
 
   * qemu: fixed regression in network device hotplug with new qemu versions
@@ -430,18 +551,12 @@ v6.3.0 (2020-05-05)
 
 * **New features**
 
-  * qemu: support network interface downscript
-
-    QEMU has the ability to run a script when a NIC is brought up and down.
-    Libvirt only enables use of the up script. Now add support for postscript
-    when NIC is down/detached.
-
   * qemu: support disabling hotplug/unplug of PCIe devices
 
     libvirt can now set the "hotplug" option for pcie-root-ports and
     pcie-switch-downstream-ports, which can be used to disable hotplug/unplug
     of devices from these ports (default behavior is for these controllers to
-    accept all hotplug/unplug attempts, but this is often undesireable).
+    accept all hotplug/unplug attempts, but this is often undesirable).
 
   * vbox: added support for version 6.0 and 6.1 APIs
 
@@ -925,7 +1040,7 @@ v5.10.0 (2019-12-02)
 
   * Forcibly create nodes in domain's namespace
 
-    The QEMU driver starts a domain in a namepsace with private ``/dev`` and
+    The QEMU driver starts a domain in a namespace with private ``/dev`` and
     creates only those nodes there which the domain is configured to have.
     However, it may have happened that if a node changed its minor number this
     change wasn't propagated to the namespace.
@@ -1228,7 +1343,7 @@ v5.6.0 (2019-08-05)
 
   * network: Allow passing arbitrary options to dnsmasq
 
-    This works similarly to the existing support for passing arbitary options
+    This works similarly to the existing support for passing arbitrary options
     to QEMU, and just like that feature it comes with no support guarantees.
 
 * **Removed features**
@@ -2242,7 +2357,7 @@ v4.4.0 (2018-06-04)
 
 * **Improvements**
 
-  * qemu: Add suport for OpenGL rendering with SDL
+  * qemu: Add support for OpenGL rendering with SDL
 
     Domains using SDL as a graphics backend will now be able to use OpenGL
     accelerated rendering.

ci/Makefile

@@ -20,27 +20,6 @@ CI_HOST_SRCDIR = $(CI_SCRATCHDIR)/src
 # the $(CI_HOST_SRCDIR) directory from the host
 CI_CONT_SRCDIR = $(CI_USER_HOME)/libvirt
 
-# Relative directory to perform the build in. This
-# defaults to using a separate build dir, but can be
-# set to empty string for an in-source tree build.
-CI_VPATH = build
-
-# The directory holding the build output inside the
-# container.
-CI_CONT_BUILDDIR = $(CI_CONT_SRCDIR)/$(CI_VPATH)
-
-# Can be overridden with mingw{32,64}-configure if desired
-CI_CONFIGURE = $(CI_CONT_SRCDIR)/configure
-
-# Default to using all possible CPUs
-CI_SMP = $(shell getconf _NPROCESSORS_ONLN)
-
-# Any extra arguments to pass to make
-CI_MAKE_ARGS =
-
-# Any extra arguments to pass to configure
-CI_CONFIGURE_ARGS =
-
 # Script containing environment preparation steps
 CI_PREPARE_SCRIPT = $(CI_ROOTDIR)/prepare.sh
 
@@ -220,13 +199,10 @@ ci-run-command@%: ci-prepare-tree
 		  --login \
 		  --user="#$(CI_UID)" \
 		  --group="#$(CI_GID)" \
-		  CONFIGURE_OPTS="$$CONFIGURE_OPTS" \
+		  MESON_OPTS="$$MESON_OPTS" \
 		  CI_CONT_SRCDIR="$(CI_CONT_SRCDIR)" \
-		  CI_CONT_BUILDDIR="$(CI_CONT_BUILDDIR)" \
-		  CI_SMP="$(CI_SMP)" \
-		  CI_CONFIGURE="$(CI_CONFIGURE)" \
-		  CI_CONFIGURE_ARGS="$(CI_CONFIGURE_ARGS)" \
-		  CI_MAKE_ARGS="$(CI_MAKE_ARGS)" \
+		  CI_MESON_ARGS="$(CI_MESON_ARGS)" \
+		  CI_NINJA_ARGS="$(CI_NINJA_ARGS)" \
 		  $(CI_COMMAND) || exit 1'
 	@test "$(CI_CLEAN)" = "1" && rm -rf $(CI_SCRATCHDIR) || :
 
@@ -236,8 +212,8 @@ ci-shell@%:
 ci-build@%:
 	$(MAKE) -C $(CI_ROOTDIR) ci-run-command@$* CI_COMMAND="$(CI_USER_HOME)/build"
 
-ci-check@%:
-	$(MAKE) -C $(CI_ROOTDIR) ci-build@$* CI_MAKE_ARGS="check"
+ci-test@%:
+	$(MAKE) -C $(CI_ROOTDIR) ci-build@$* CI_NINJA_ARGS=test
 
 ci-list-images:
 	@echo
@@ -266,6 +242,6 @@ ci-help:
 	@echo "    CI_CLEAN=0          - do not delete '$(CI_SCRATCHDIR)' after completion"
 	@echo "    CI_REUSE=1          - re-use existing '$(CI_SCRATCHDIR)' content"
 	@echo "    CI_ENGINE=auto      - container engine to use (podman, docker)"
-	@echo "    CI_CONFIGURE_ARGS=  - extra arguments passed to configure"
-	@echo "    CI_MAKE_ARGS=       - extra arguments passed to make, e.g. space delimited list of targets"
+	@echo "    CI_MESON_ARGS=      - extra arguments passed to meson"
+	@echo "    CI_NINJA_ARGS=      - extra arguments passed to ninja"
 	@echo

ci/build.sh

@@ -7,32 +7,15 @@
 #
 # to make.
 
-mkdir -p "$CI_CONT_BUILDDIR" || exit 1
-cd "$CI_CONT_BUILDDIR"
+cd "$CI_CONT_SRCDIR"
 
 export VIR_TEST_DEBUG=1
-NOCONFIGURE=1 "$CI_CONT_SRCDIR/autogen.sh" || exit 1
 
-# $CONFIGURE_OPTS is a env that can optionally be set in the container,
+# $MESON_OPTS is an env that can optionally be set in the container,
 # populated at build time from the Dockerfile. A typical use case would
-# be to pass --host/--target args to trigger cross-compilation
-#
-# This can be augmented by make local args in $CI_CONFIGURE_ARGS
-"$CI_CONFIGURE" $CONFIGURE_OPTS $CI_CONFIGURE_ARGS
-if test $? != 0; then
-    test -f config.log && cat config.log
-    exit 1
-fi
-find -name test-suite.log -delete
+# be to pass options to trigger cross-compilation
 
-make -j"$CI_SMP" $CI_MAKE_ARGS
+meson build --werror $MESON_OPTS $CI_MESON_ARGS || \
+(cat build/meson-logs/meson-log.txt && exit 1)
 
-if test $? != 0; then \
-    LOGS=$(find -name test-suite.log)
-    if test "$LOGS"; then
-        echo "=== LOG FILE(S) START ==="
-        cat $LOGS
-        echo "=== LOG FILE(S) END ==="
-    fi
-    exit 1
-fi
+ninja -C build $CI_NINJA_ARGS

ci/cirrus/build.yml

@@ -20,5 +20,4 @@ build_task:
     - git reset --hard "$CI_COMMIT_SHA"
   build_script:
     - meson build --prefix=$(pwd)/install-root
-    - if test "$(uname)" = "FreeBSD"; then ninja -C build dist; fi
-    - if test "$(uname)" = "Darwin"; then ninja -C build && ninja -C build install; fi
+    - ninja -C build dist

ci/containers/README.rst

@@ -12,3 +12,25 @@ https://gitlab.com/libvirt/libvirt-ci
 The containers are built during the CI process and cached in the GitLab
 container registry of the project doing the build. The cached containers
 can be deleted at any time and will be correctly rebuilt.
+
+
+Coverity scan integration
+=========================
+
+This will be used only by the main repository for master branch by running
+scheduled pipeline in GitLab.
+
+The service is proved by `Coverity Scan`_ and requires that the project is
+registered there to get free coverity analysis which we already have for
+`libvirt project`_.
+
+To run the coverity job it requires two new variables:
+
+  * ``COVERITY_SCAN_PROJECT_NAME``, containing the `libvirt project`_
+    name.
+
+  * ``COVERITY_SCAN_TOKEN``, token visible to admins of `libvirt project`_
+
+
+.. _Coverity Scan: https://scan.coverity.com/
+.. _libvirt project: https://scan.coverity.com/projects/libvirt

ci/containers/libvirt-centos-7.Dockerfile

@@ -50,6 +50,7 @@ WEiJKtQrZDJloqtyi/mmRa1VsV7RYR0VPJjhK/R8EQ7Ysshy\n\
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         fuse-devel \
         gcc \
         gdb \

ci/containers/libvirt-centos-8.Dockerfile

@@ -22,6 +22,7 @@ RUN dnf install 'dnf-command(config-manager)' -y && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         fuse-devel \
         gcc \
         gdb \

ci/containers/libvirt-centos-stream.Dockerfile

@@ -23,6 +23,7 @@ RUN dnf install -y centos-release-stream && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         fuse-devel \
         gcc \
         gdb \

ci/containers/libvirt-fedora-31.Dockerfile

@@ -20,6 +20,7 @@ RUN dnf update -y && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         fuse-devel \
         gcc \
         gdb \

ci/containers/libvirt-fedora-32.Dockerfile

@@ -20,6 +20,7 @@ RUN dnf update -y && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         fuse-devel \
         gcc \
         gdb \

ci/containers/libvirt-fedora-rawhide-cross-mingw32.Dockerfile

@@ -16,6 +16,7 @@ RUN dnf update -y --nogpgcheck fedora-gpg-keys && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         gcc \
         gdb \
         gettext-devel \

ci/containers/libvirt-fedora-rawhide-cross-mingw64.Dockerfile

@@ -16,6 +16,7 @@ RUN dnf update -y --nogpgcheck fedora-gpg-keys && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         gcc \
         gdb \
         gettext-devel \

ci/containers/libvirt-fedora-rawhide.Dockerfile

@@ -21,6 +21,7 @@ RUN dnf update -y --nogpgcheck fedora-gpg-keys && \
         dnsmasq \
         dwarves \
         ebtables \
+        firewalld-filesystem \
         fuse-devel \
         gcc \
         gdb \

config.h

@@ -26,7 +26,7 @@
 #endif
 
 #ifndef __GNUC__
-# error "Libvirt requires GCC >= 4.8, or CLang"
+# error "Libvirt requires GCC >= 4.8, or Clang"
 #endif
 
 /*

docs/api_extension.html.in

@@ -110,6 +110,12 @@
         src/libvirt_public.syms
     </code></p>
 
+    <p>
+      Please consult our
+      <a href="coding-style.html#xml-element-and-attribute-naming">coding style</a>
+      guide on elements and attribute names.
+    </p>
+
     <p>
       This task is in many ways the most important to get right, since once
       the API has been committed to the repository, it's libvirt's policy

docs/auth.html.in

@@ -277,7 +277,7 @@ to turn on SASL auth in these listeners.
     <p>
 Since the libvirt SASL config file defaults to using GSSAPI (Kerberos), a
 config change is required to enable plain password auth. This is done by
-editting <code>/etc/sasl2/libvirt.conf</code> to set the <code>mech_list</code>
+editing <code>/etc/sasl2/libvirt.conf</code> to set the <code>mech_list</code>
 parameter to <code>scram-sha-1</code>.
     </p>
     <p>

docs/coding-style.rst

@@ -960,3 +960,18 @@ git):
    cleanup:
       /* ... do other stuff ... */
   }
+
+
+XML element and attribute naming
+--------------------------------
+
+New elements and/or attributes should be short and descriptive.
+In general, they should reflect what the feature does instead of
+how exactly it is named in given hypervisor because this creates
+an abstraction that other drivers can benefit from (for instance
+if the same feature is named differently in two hypervisors).
+That is not to say an element or attribute can't have the same
+name as in a hypervisor, but proceed with caution.
+
+Single worded names are preferred, but if more words must be
+used then they shall be joined in camelCase style.

docs/compiling.html.in

@@ -14,7 +14,7 @@
     </p>
 
     <pre>
-$ xz -c libvirt-x.x.x.tar.xz | tar xvf -
+$ xz -dc libvirt-x.x.x.tar.xz | tar xvf -
 $ cd libvirt-x.x.x
 $ meson build</pre>
 

docs/daemons.rst

@@ -512,7 +512,7 @@ other end of which are owned by the ``virtlogd`` daemon. It will then write
 data on those pipes to log files, while enforcing a maximum file size and
 performing log rollover at the size limit.
 
-Since the daemon holds open anoymous pipe file descriptors, it must never be
+Since the daemon holds open anonymous pipe file descriptors, it must never be
 stopped while any QEMU virtual machines are running. To enable software updates
 to be applied, the daemon is capable of re-executing itself while keeping all
 file descriptors open. This can be triggered by sending the daemon ``SIGUSR1``
@@ -605,7 +605,7 @@ images and devices serving as backing storage for virtual disks. The locks
 will be held for as long as there is a QEMU process running with the disk
 open.
 
-To ensure continuity of locking, the daemon holds open anoymous file
+To ensure continuity of locking, the daemon holds open anonymous file
 descriptors, it must never be stopped while any QEMU virtual machines are
 running. To enable software updates to be applied, the daemon is capable of
 re-executing itself while keeping all file descriptors open. This can be

docs/docs.html.in

@@ -1,7 +1,8 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!DOCTYPE html>
 <html xmlns="http://www.w3.org/1999/xhtml">
-  <body class="docs">
+  <body id="docs">
+    <h1>Documentation</h1>
     <div class="panel">
       <h2>Deployment / operation</h2>
 
@@ -125,7 +126,7 @@
         <dt><a href="hvsupport.html">Driver support</a></dt>
         <dd>matrix of API support per hypervisor per release</dd>
 
-        <dt><a href="kbase.html">Knowledge Base</a></dt>
+        <dt><a href="kbase/index.html">Knowledge Base</a></dt>
         <dd>Task oriented guides to key features</dd>
       </dl>
     </div>

docs/downloads.html.in

@@ -493,6 +493,20 @@
       <li><a href="https://libvirt.org/sources/">libvirt.org HTTPS server</a></li>
     </ul>
 
+    <h2><a id="keys">Signing keys</a></h2>
+
+    <p>
+      Source RPM packages and tarballs for libvirt and libvirt-python published
+      on this project site are signed with a GPG signature. You should always
+      verify the package signature before using the source to compile binary
+      packages. The following key is currently used to generate the GPG
+      signatures:
+    </p>
+    <pre>
+pub  4096R/10084C9C 2020-07-20 Jiří Denemark &lt;jdenemar@redhat.com&gt;
+Fingerprint=453B 6531 0595 5628 5547  1199 CA68 BE80 1008 4C9C
+</pre>
+
     <h2><a id="schedule">Primary release schedule</a></h2>
 
     <p>

docs/drvbhyve.html.in

@@ -232,8 +232,8 @@ Then <code>virsh console</code> command can be used to connect to the text conso
 of a guest.</p>
 
 <p><b>NB:</b> Some versions of bhyve have a bug that prevents guests from booting
-until the console is opened by a client. This bug was fixed in FreeBSD
-<a href="https://svnweb.freebsd.org/changeset/base/262884">r262884</a>. If
+until the console is opened by a client. This bug was fixed in
+<a href="https://svnweb.freebsd.org/changeset/base/262884">FreeBSD changeset r262884</a>. If
 an older version is used, one either has to open a console manually with <code>virsh console</code>
 to let a guest boot or start a guest using:</p>
 
@@ -272,7 +272,9 @@ tweak them.</p>
 <pre>
 # virsh -c "bhyve:///system"  domxml-to-native --format bhyve-argv --xml /path/to/bhyve.xml
 /usr/sbin/bhyveload -m 214 -d /home/user/vm1.img vm1
-/usr/sbin/bhyve -c 2 -m 214 -A -I -H -P -s 0:0,hostbridge -s 3:0,virtio-net,tap0,mac=52:54:00:5d:74:e3 -s 2:0,virtio-blk,/home/user/vm1.img -s 1,lpc -l com1,/dev/nmdm0A vm1
+/usr/sbin/bhyve -c 2 -m 214 -A -I -H -P -s 0:0,hostbridge \
+    -s 3:0,virtio-net,tap0,mac=52:54:00:5d:74:e3 -s 2:0,virtio-blk,/home/user/vm1.img \
+    -s 1,lpc -l com1,/dev/nmdm0A vm1
 </pre>
 
 <h3><a id="zfsvolume">Using ZFS volumes</a></h3>
@@ -389,13 +391,38 @@ it with the <code>port</code> attribute):</p>
     &lt;graphics type='vnc' autoport='yes'&gt;
 </pre>
 
+<p><span class="since">Since 6.8.0</span>, it's possible to set framebuffer resolution
+using the <code>resolution</code> sub-element:</p>
+
+<pre>
+   &lt;video&gt;
+     &lt;model type='gop' heads='1' primary='yes'&gt;
+       &lt;resolution x='800' y='600'/&gt;
+     &lt;/model&gt;
+   &lt;/video&gt;
+</pre>
+
+<p><span class="since">Since 6.8.0</span>, VNC server can be configured to use
+password based authentication:</p>
+
+<pre>
+  &lt;graphics type='vnc' port='5904' passwd='foobar'&gt;
+    &lt;listen type='address' address='127.0.0.1'/&gt;
+  &lt;/graphics&gt;
+</pre>
+
+<p>Note: VNC password authentication is known to be cryptographically weak.
+Additionally, the password is passed as a command line argument in clear text.
+Make sure you understand the risks associated with this feature before using it.</p>
+
 <h3><a id="clockconfig">Clock configuration</a></h3>
 
 <p>Originally bhyve supported only localtime for RTC. Support for UTC time was introduced in
-<a href="https://svnweb.freebsd.org/changeset/base/284894">r284894</a> for <i>10-STABLE</i> and
-in <a href="https://svnweb.freebsd.org/changeset/base/279225">r279225</a> for <i>-CURRENT</i>.
-It's possible to use this in libvirt <span class="since">since 1.2.18</span>, just place the
-following to domain XML:</p>
+<a href="https://svnweb.freebsd.org/changeset/base/284894">FreeBSD changeset r284894</a>
+for <i>10-STABLE</i> and
+in <a href="https://svnweb.freebsd.org/changeset/base/279225">changeset r279225</a>
+for <i>-CURRENT</i>. It's possible to use this in libvirt <span class="since">since 1.2.18</span>,
+just place the following to domain XML:</p>
 
 <pre>
 &lt;domain type="bhyve"&gt;
@@ -419,8 +446,8 @@ you'll need to explicitly specify 'localtime' in this case:</p>
 
 <h3><a id="e1000">e1000 NIC</a></h3>
 
-<p>As of <a href="https://svnweb.freebsd.org/changeset/base/302504">r302504</a> bhyve
-supports Intel e1000 network adapter emulation. It's supported in libvirt
+<p>As of <a href="https://svnweb.freebsd.org/changeset/base/302504">FreeBSD changeset r302504</a>
+bhyve supports Intel e1000 network adapter emulation. It's supported in libvirt
 <span class="since">since 3.1.0</span> and could be used as follows:</p>
 
 <pre>
@@ -432,6 +459,50 @@ supports Intel e1000 network adapter emulation. It's supported in libvirt
 ...
 </pre>
 
+<h3><a id="sound">Sound device</a></h3>
+
+<p>As of <a href="https://svnweb.freebsd.org/changeset/base/349355">FreeBSD changeset r349355</a>
+bhyve supports sound device emulation. It's supported in libvirt
+<span class="since">since 6.7.0</span>.</p>
+
+<pre>
+...
+  &lt;sound model='ich7'&gt;
+    &lt;audio id='1'/&gt;
+  &lt;/sound&gt;
+  &lt;audio id='1' type='oss'&gt;
+    &lt;input dev='/dev/dsp0'/&gt;
+    &lt;output dev='/dev/dsp0'/&gt;
+  &lt;/audio&gt;
+...
+</pre>
+
+<p>Here, the <code>sound</code> element specifies the sound device as it's exposed
+to the guest, with <code>ich7</code> being the only supported model now,
+and the <code>audio</code> element specifies how the guest device is mapped
+to the host sound device.</p>
+
+<h3><a id="fs-9p">Virtio-9p filesystem</a></h3>
+
+<p>As of <a href="https://svnweb.freebsd.org/changeset/base/366413">FreeBSD changeset r366413</a>
+bhyve supports sharing arbitrary directory tree between the guest and the host.
+It's supported in libvirt <span class="since">since 6.9.0</span>.</p>
+
+<pre>
+...
+  &lt;filesystem&gt;
+    &lt;source dir='/shared/dir'/&gt;
+    &lt;target dir='shared_dir'/&gt;
+  &lt;/filesystem&gt;
+...
+</pre>
+
+<p>This share could be made read only by adding the <code>&lt;readonly/&gt;</code> sub-element.</p>
+
+<p>In the Linux guest, this could be mounted using:</p>
+
+<pre>mount -t 9p shared_dir /mnt/shared_dir</pre>
+
 <h3><a id="wired">Wiring guest memory</a></h3>
 
 <p><span class="since">Since 4.4.0</span>, it's possible to specify that guest memory should
@@ -450,7 +521,8 @@ be wired and cannot be swapped out as follows:</p>
 
 <p><span class="since">Since 4.5.0</span>, it's possible to specify guest CPU topology, if bhyve
 supports that. Support for specifying guest CPU topology was added to bhyve in
-<a href="https://svnweb.freebsd.org/changeset/base/332298">r332298</a> for <i>-CURRENT</i>.
+<a href="https://svnweb.freebsd.org/changeset/base/332298">FreeBSD changeset r332298</a>
+for <i>-CURRENT</i>.
 Example:</p>
 <pre>
 &lt;domain type="bhyve"&gt;

docs/drvesx.html.in

@@ -221,7 +221,7 @@ vpx://example-vcenter.com/folder1/dc1/folder2/example-esx.com
         using the CA certificate pool installed on your client computer. With
         an out-of-the-box installed ESX server this won't work, because a newly
         installed ESX server uses auto-generated self-signed certificates.
-        Those are singed by a CA certificate that is typically not known to your
+        Those are signed by a CA certificate that is typically not known to your
         client computer and libvirt will report an error like this one:
     </p>
 <pre>
@@ -322,9 +322,9 @@ error: invalid argument in libvirt was built without the 'esx' driver
     </p>
 
 
-    <h2><a id="xmlspecial">Specialties in the domain XML config</a></h2>
+    <h2><a id="xmlspecial">Specialities in the domain XML config</a></h2>
     <p>
-        There are several specialties in the domain XML config for ESX domains.
+        There are several specialities in the domain XML config for ESX domains.
     </p>
 
     <h3><a id="restrictions">Restrictions</a></h3>

docs/drvhyperv.html.in

@@ -5,7 +5,7 @@
     <h1>Microsoft Hyper-V hypervisor driver</h1>
     <ul id="toc"></ul>
     <p>
-        The libvirt Microsoft Hyper-V driver can manage Hyper-V 2008 R2 and newer.
+        The libvirt Microsoft Hyper-V driver can manage Hyper-V 2012 R2 and newer.
     </p>
 
 
@@ -112,4 +112,39 @@ winrm set winrm/config/service @{AllowUnencrypted="true"}
 </pre>
 
 
+    <h2><a id="versions">Version Numbers</a></h2>
+    <p>
+        Since Microsoft's build numbers are almost always over 1000, this driver
+        needs to pack the value differently compared to the format defined by
+        <code>virConnectGetVersion</code>.
+        To preserve all of the digits, the following format is used:
+    </p>
+    <pre>major * 100000000 + minor * 1000000 + micro</pre>
+    <p>
+        This results in <code>virsh version</code> producing unexpected output.
+    </p>
+    <table class="top_table">
+        <thead>
+            <th>Windows Release</th>
+            <th>Kernel Version</th>
+            <th>libvirt Representation</th>
+        </thead>
+        <tr>
+            <td>Windows Server 2012 R2</td>
+            <td>6.3.9600</td>
+            <td>603.9.600</td>
+        </tr>
+        <tr>
+            <td>Windows Server 2016</td>
+            <td>10.0.14393</td>
+            <td>1000.14.393</td>
+        </tr>
+        <tr>
+            <td>Windows Server 2019</td>
+            <td>10.0.17763</td>
+            <td>1000.17.763</td>
+        </tr>
+    </table>
+
+
 </body></html>

docs/drvnodedev.html.in

@@ -139,12 +139,12 @@
 
     <h3><a id="MDEVCap">MDEV capability</a></h3>
     <p>
-      A PCI device capable of creating mediated devices will include a nested
+      A device capable of creating mediated devices will include a nested
       capability <code>mdev_types</code> which enumerates all supported mdev
       types on the physical device, along with the type attributes available
       through sysfs. A detailed description of the XML format for the
       <code>mdev_types</code> capability can be found
-      <a href="formatnode.html#MDEVCap">here</a>.
+      <a href="formatnode.html#MDEVTypesCap">here</a>.
     </p>
     <p>
       The following example shows how we might represent an NVIDIA GPU device

docs/drvxen.html.in

@@ -154,7 +154,7 @@ vif = [ "mac=00:16:3e:60:36:ba,bridge=virbr0,script=vif-bridge,vifname=vif5.0" ]
       <code>&lt;xen:commandline&gt;</code> describing each argument passed to
       the device model when starting the domain.
     </p>
-    <p>The following example illustrates passing agruments to the QEMU device
+    <p>The following example illustrates passing arguments to the QEMU device
       model that define a floppy drive, which Xen does not support through its
       public APIs:
     </p>

docs/firewall.html.in

@@ -283,12 +283,21 @@ UUID                                  Name
 15b1ab2b-b1ac-1be2-ed49-2042caba4abb  allow-arp
 6c51a466-8d14-6d11-46b0-68b1a883d00f  allow-dhcp
 7517ad6c-bd90-37c8-26c9-4eabcb69848d  allow-dhcp-server
+7680776c-77aa-496f-90d6-13097664b925  allow-dhcpv6
+9cdaad60-7631-4172-8ccb-ef774be7485b  allow-dhcpv6-server
 3d38b406-7cf0-8335-f5ff-4b9add35f288  allow-incoming-ipv4
+908543c1-902e-45f6-a6ca-1a0ad35e7599  allow-incoming-ipv6
 5ff06320-9228-2899-3db0-e32554933415  allow-ipv4
+ce8904cc-ad3a-4454-896c-53452882f817  allow-ipv6
 db0b1767-d62b-269b-ea96-0cc8b451144e  clean-traffic
+6d6ddcc8-1242-4c43-ac63-63af80493132  clean-traffic-gateway
+4cf38077-c7d5-4e25-99bb-6c4c9efad294  no-arp-ip-spoofing
+0b11a636-ce58-497f-be90-17f63c92487a  no-arp-mac-spoofing
 f88f1932-debf-4aa1-9fbe-f10d3aa4bc95  no-arp-spoofing
 772f112d-52e4-700c-0250-e178a3d91a7a  no-ip-multicast
 7ee20370-8106-765d-f7ff-8a60d5aaf30b  no-ip-spoofing
+f8a51c43-a08f-49b3-b9e2-393d54522dc0  no-ipv6-multicast
+a7f0afe9-a428-44b8-8566-c8ee2a669271  no-ipv6-spoofing
 d5d3c490-c2eb-68b1-24fc-3ee362fc8af3  no-mac-broadcast
 fb57c546-76dc-a372-513f-e8179011b48a  no-mac-spoofing
 dba10ea7-446d-76de-346f-335bd99c1d05  no-other-l2-traffic

docs/format.html.in

@@ -35,7 +35,7 @@
     <p>
       The <code>virt-xml-validate</code> tool provides a simple command line
       for validating XML documents prior to giving them to libvirt. It uses
-      the locally instaled RNG schema documents. It will auto-detect which
+      the locally installed RNG schema documents. It will auto-detect which
       schema to use for validation based on the name of the top level element
       in the input document. Thus it merely requires the XML document filename
       to be passed on the command line

docs/formatdomain.rst

@@ -45,7 +45,7 @@ General metadata
 
 ``name``
    The content of the ``name`` element provides a short name for the virtual
-   machine. This name should consist only of alpha-numeric characters and is
+   machine. This name should consist only of alphanumeric characters and is
    required to be unique within the scope of a single host. It is often used to
    form the filename for storing the persistent configuration file.
    :since:`Since 0.0.1`
@@ -804,7 +804,7 @@ CPU Tuning
 ``vcpusched``, ``iothreadsched`` and ``emulatorsched``
    The optional ``vcpusched``, ``iothreadsched`` and ``emulatorsched`` elements
    specify the scheduler type (values ``batch``, ``idle``, ``fifo``, ``rr``) for
-   particular vCPU, IOThread and emulator threads respecively. For ``vcpusched``
+   particular vCPU, IOThread and emulator threads respectively. For ``vcpusched``
    and ``iothreadsched`` the attributes ``vcpus`` and ``iothreads`` select which
    vCPUs/IOThreads this setting applies to, leaving them out sets the default.
    The element ``emulatorsched`` does not have that attribute. Valid ``vcpus``
@@ -1361,7 +1361,7 @@ In case no restrictions need to be put on CPU model and its features, a simpler
 ``model``
    The content of the ``model`` element specifies CPU model requested by the
    guest. The list of available CPU models and their definition can be found in
-   ``cpu_map.xml`` file installed in libvirt's data directory. If a hypervisor
+   directory ``cpu_map``, installed in libvirt's data directory. If a hypervisor
    is not able to use the exact CPU model, libvirt automatically falls back to a
    closest model supported by the hypervisor while maintaining the list of CPU
    features. :since:`Since 0.9.10` , an optional ``fallback`` attribute can be
@@ -1376,7 +1376,7 @@ In case no restrictions need to be put on CPU model and its features, a simpler
    :since:`Since 0.8.3` the content of the ``vendor`` element specifies CPU
    vendor requested by the guest. If this element is missing, the guest can be
    run on a CPU matching given features regardless on its vendor. The list of
-   supported vendors can be found in ``cpu_map.xml``.
+   supported vendors can be found in ``cpu_map/*_vendors.xml``.
 ``topology``
    The ``topology`` element specifies requested topology of virtual CPU provided
    to the guest. Four attributes, ``sockets``, ``dies``, ``cores``, and
@@ -1388,11 +1388,11 @@ In case no restrictions need to be put on CPU model and its features, a simpler
    of vCPUs specified by the ``cpus`` element equals to the number of vcpus
    resulting from the topology.
 ``feature``
-   The ``cpu`` element can contain zero or more ``elements`` used to fine-tune
-   features provided by the selected CPU model. The list of known feature names
-   can be found in the same file as CPU models. The meaning of each ``feature``
-   element depends on its ``policy`` attribute, which has to be set to one of
-   the following values:
+   The ``cpu`` element can contain zero or more ``feature`` elements used to
+   fine-tune features provided by the selected CPU model. The list of known
+   feature names can be found in the same file as CPU models. The meaning of
+   each ``feature`` element depends on its ``policy`` attribute, which has to be
+   set to one of the following values:
 
    ``force``
       The virtual CPU will claim the feature is supported regardless of it being
@@ -1766,6 +1766,7 @@ Hypervisors may allow certain CPU / machine features to be toggled on/off.
      <kvm>
        <hidden state='on'/>
        <hint-dedicated state='on'/>
+       <poll-control='on'/>
      </kvm>
      <xen>
        <e820_host state='on'/>
@@ -1848,12 +1849,13 @@ are:
 ``kvm``
    Various features to change the behavior of the KVM hypervisor.
 
-   ============== ====================================================================== ======= ============================
-   Feature        Description                                                            Value   Since
-   ============== ====================================================================== ======= ============================
-   hidden         Hide the KVM hypervisor from standard MSR based discovery              on, off :since:`1.2.8 (QEMU 2.1.0)`
-   hint-dedicated Allows a guest to enable optimizations when running on dedicated vCPUs on, off :since:`5.7.0 (QEMU 2.12.0)`
-   ============== ====================================================================== ======= ============================
+   ============== ============================================================================ ======= ============================
+   Feature        Description                                                                  Value   Since
+   ============== ============================================================================ ======= ============================
+   hidden         Hide the KVM hypervisor from standard MSR based discovery                    on, off :since:`1.2.8 (QEMU 2.1.0)`
+   hint-dedicated Allows a guest to enable optimizations when running on dedicated vCPUs       on, off :since:`5.7.0 (QEMU 2.12.0)`
+   poll-control   Decrease IO completion latency by introducing a grace period of busy waiting on, off :since:`6.10.0 (QEMU 4.2)`
+   ============== ============================================================================ ======= ============================
 
 ``xen``
    Various features to change the behavior of the Xen hypervisor.
@@ -2974,8 +2976,9 @@ paravirtualized driver is specified via the ``disk`` element.
 ``transient``
    If present, this indicates that changes to the device contents should be
    reverted automatically when the guest exits. With some hypervisors, marking a
-   disk transient prevents the domain from participating in migration or
-   snapshots. Only suppported in vmx hypervisor. :since:`Since 0.9.5`
+   disk transient prevents the domain from participating in migration,
+   snapshots, or blockjobs. Only supported in vmx hypervisor
+   (:since:`Since 0.9.5`) and ``qemu`` hypervisor (:since:`Since 6.9.0`).
 ``serial``
    If present, this specify serial number of virtual hard drive. For example, it
    may look like ``<serial>WD-WMAP9A966149</serial>``. Not supported for
@@ -3061,9 +3064,14 @@ A directory on the host that can be accessed directly from the guest.
        <target dir='/import/from/host'/>
        <readonly/>
      </filesystem>
+     <filesystem type='mount' accessmode='mapped' fmode='644' dmode='755'>
+       <driver type='path'/>
+       <source dir='/export/to/guest'/>
+       <target dir='/import/from/host'/>
+       <readonly/>
+     </filesystem>
      <filesystem type='file' accessmode='passthrough'>
        <driver type='loop' format='raw'/>
-       <driver type='path' wrpolicy='immediate'/>
        <source file='/export/to/guest.img'/>
        <target dir='/import/from/host'/>
        <readonly/>
@@ -3140,6 +3148,13 @@ A directory on the host that can be accessed directly from the guest.
    "virtio-non-transitional", or "virtio". See `Virtio transitional
    devices <#elementsVirtioTransitional>`__ for more details.
 
+   The filesystem element has optional attributes ``fmode`` and ``dmode``.
+   These two attributes control the creation mode for files and directories
+   when used with the ``mapped`` value for ``accessmode`` (:since:`since 6.10.0,
+   requires QEMU 2.10` ).  If not specified, QEMU creates files with mode
+   ``600`` and directories with mode ``700``. The setuid, setgid, and sticky
+   bit are unsupported.
+
    The filesystem element has an optional attribute ``multidevs`` which
    specifies how to deal with a filesystem export containing more than one
    device, in order to avoid file ID collisions on guest when using 9pfs (
@@ -3411,7 +3426,8 @@ specific features, such as:
 ``scsi``
    A ``scsi`` controller has an optional attribute ``model``, which is one of
    'auto', 'buslogic', 'ibmvscsi', 'lsilogic', 'lsisas1068', 'lsisas1078',
-   'virtio-scsi', 'vmpvscsi', 'virtio-transitional', 'virtio-non-transitional'.
+   'virtio-scsi', 'vmpvscsi', 'virtio-transitional', 'virtio-non-transitional',
+   'ncr53c90' (as builtin implicit controller only), 'am53c974', 'dc390'.
    See `Virtio transitional devices <#elementsVirtioTransitional>`__ for more
    details.
 ``usb``
@@ -4066,6 +4082,7 @@ after 0.9.5 (KVM only)` :
 
    ...
    <devices>
+     <redirdev bus='usb' type='spicevmc'/>
      <redirdev bus='usb' type='tcp'>
        <source mode='connect' host='localhost' service='4000'/>
        <boot order='1'/>
@@ -4421,7 +4438,7 @@ Generic ethernet connection
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 Provides a means to use a new or existing tap device (or veth device pair,
-depening on the needs of the hypervisor driver) that is partially or wholly
+depending on the needs of the hypervisor driver) that is partially or wholly
 setup external to libvirt (either prior to the guest starting, or while the
 guest is being started via an optional script specified in the config).
 
@@ -4444,7 +4461,7 @@ After creating/opening the tap device, an optional shell script (given in the
 ``path`` attribute of the ``<script>`` element) will be run. :since:`Since
 0.2.1` Also, after detaching/closing the tap device, an optional shell script
 (given in the ``path`` attribute of the ``<downscript>`` element) will be run.
-:since:`Since 5.1.0` These can be used to do whatever extra host network
+:since:`Since 6.4.0` These can be used to do whatever extra host network
 integration is required.
 
 ::
@@ -4643,6 +4660,30 @@ or stopping the guest.
    </devices>
    ...
 
+:anchor:`<a id="elementsNICSVDPA"/>`
+
+vDPA devices
+^^^^^^^^^^^^
+
+A vDPA network device can be used to provide wire speed network performance
+within a domain. A vDPA device is a specialized type of network device that
+uses a datapath that complies with the virtio specification but has a
+vendor-specific control path.  To use such a device with libvirt, the host
+device must already be bound to the appropriate device-specific vDPA driver.
+This creates a vDPA char device (e.g. /dev/vhost-vdpa-0) that can be used to
+assign the device to a libvirt domain.  :since:`Since 6.9.0 (QEMU only,
+requires QEMU 5.1.0 or newer)`
+
+::
+
+   ...
+   <devices>
+     <interface type='vdpa'>
+       <source dev='/dev/vhost-vdpa-0'/>
+     </interface>
+   </devices>
+   ...
+
 :anchor:`<a id="elementsTeaming"/>`
 
 Teaming a virtio/hostdev NIC pair
@@ -6754,6 +6795,14 @@ Example: manually added device with static PCI slot 2 requested
    release some memory at the last moment before a guest's process get killed by
    Out of Memory killer. :since:`Since 1.3.1, QEMU and KVM only`
 
+``freePageReporting``
+   The optional ``freePageReporting`` attribute allows to enable/disable
+   ("on"/"off", respectively) the ability of the QEMU virtio memory balloon to
+   return unused pages back to the hypervisor to be used by other guests or
+   processes. Please note that despite its name it has no effect on free memory
+   as reported by ``virDomainMemoryStats()`` and/or ``virsh dommemstat``.
+   :since:`Since 6.9.0, QEMU and KVM only`
+
 ``period``
    The optional ``period`` allows the QEMU virtio memory balloon driver to
    provide statistics through the ``virsh dommemstat           [domain]``
@@ -7286,7 +7335,7 @@ Example:
 :anchor:`<a id="vsock"/>`
 
 Vsock
------
+~~~~~
 
 A vsock host/guest interface. The ``model`` attribute defaults to ``virtio``.
 :since:`Since 5.2.0` ``model`` can also be 'virtio-transitional' and

docs/formatdomaincaps.html.in

@@ -152,7 +152,7 @@
       values for which a firmware "descriptor file" exists on the host.
       Firmware descriptor file is a small JSON document that describes
       details about a given BIOS or UEFI binary on the host, e.g. the
-      fimware binary path, its architecture, supported machine types,
+      firmware binary path, its architecture, supported machine types,
       NVRAM template, etc. This ensures that the reported values won't
       cause a failure on guest boot.
     </p>

docs/formatnetwork.html.in

@@ -48,7 +48,7 @@
       <dt><code>name</code></dt>
       <dd>The content of the <code>name</code> element provides
         a short name for the virtual network. This name should
-        consist only of alpha-numeric characters and is required
+        consist only of alphanumeric characters and is required
         to be unique within the scope of a single host. It is
         used to form the filename for storing the persistent
         configuration file. <span class="since">Since 0.3.0</span></dd>
@@ -1249,7 +1249,7 @@
     above) which you can use at will.</p>
 
     <p>Many operating systems will not consider these addresses as
-    preferential to IPv4, due to some practial history of these
+    preferential to IPv4, due to some practical history of these
     addresses being present but unroutable and causing networking
     issues.  On many Linux distributions, you may need to
     override <tt>/etc/gai.conf</tt> with values

docs/formatnode.html.in

@@ -145,7 +145,7 @@
                     device's sysfs directory) the capability element will also
                     have an attribute named <code>maxCount</code> which is the
                     maximum number of SRIOV VFs supported by this device, which
-                    could be higher than the number of VFs that are curently
+                    could be higher than the number of VFs that are currently
                     active <span class="since">since 1.3.0</span>; in this case,
                     even if there are currently no active VFs the
                     virtual_functions capabililty will still be shown.
@@ -157,37 +157,12 @@
                     means such device cannot be used for PCI passthrough.
                     <span class="since">Since 1.3.3</span>
                   </dd>
-                  <dt><code><a id="MDEVCap">mdev_types</a></code></dt>
+                  <dt><code><a id="MDEVTypesCapPCI">mdev_types</a></code></dt>
                   <dd>
-                    This device is capable of creating mediated devices, and
-                    the capability will contain a list of <code>type</code>
-                    elements, which list all mdev types supported on the
-                    physical device. <span class="since">Since 3.4.0</span>
-                    Each <code>type</code> element has a single <code>id</code>
-                    attribute that holds an official vendor-supplied identifier
-                    for the type. It supports the following sub-elements:
-                      <dl>
-                        <dt><code>name</code></dt>
-                        <dd>
-                          The <code>name</code> element holds a vendor-supplied
-                          code name for the given mediated device type. This is
-                          an optional element.
-                      </dd>
-                      <dt><code>deviceAPI</code></dt>
-                      <dd>
-                        The value of this element describes how an instance of
-                        the given type will be presented to the guest by the
-                        VFIO framework.
-                      </dd>
-                      <dt><code>availableInstances</code></dt>
-                      <dd>
-                        This element reports the current state of resource
-                        allocation. In other words, how many instances of the
-                        given type can still be successfully created on the
-                        physical device.
-                    </dd>
-                  </dl>
-                </dd>
+                    This device is capable of creating mediated devices.
+                    The sub-elements are summarized in
+                    <a href="#MDEVTypesCap">mdev_types capability</a>.
+                 </dd>
                 </dl>
               </dd>
 
@@ -430,12 +405,72 @@
               <dd>The subchannel-set identifier.</dd>
               <dt><code>devno</code></dt>
               <dd>The device number.</dd>
+              <dt><code>capability</code></dt>
+              <dd>
+                This optional element can occur multiple times. If it
+                exists, it has a mandatory <code>type</code> attribute
+                which will be set to:
+                <dl>
+                  <dt><code><a id="MDEVTypesCapCSS">mdev_types</a></code></dt>
+                  <dd>
+                    <span class="since">Since 6.10.0</span>
+                    This device is capable of creating mediated devices.
+                    The sub-elements are summarized in
+                    <a href="#MDevTypesCap">mdev_types capability</a>.
+                  </dd>
+                </dl>
+              </dd>
+            </dl>
+          </dd>
+          <dt><code>vdpa</code></dt>
+          <dd>Describes a virtual datapath acceleration (vDPA) network device.
+          <span class="since">Since 6.9.0</span>. Sub-elements include:
+            <dl>
+              <dt><code>chardev</code></dt>
+              <dd>The path to the character device that is used to access the
+                  device.</dd>
             </dl>
           </dd>
         </dl>
       </dd>
     </dl>
 
+    <h3><a id="MDEVTypesCap">mdev_types capability</a></h3>
+
+    <p>
+      <a href="#MDEVTypesCapPCI">PCI</a> and <a href="#MDEVTypesCapCSS">CSS</a>
+      devices can be capable of creating mediated devices.
+      If they indeed are capable, then the parent <code>capability</code>
+      element for <code>mdev_types</code> type will contain a list of
+      <code>type</code> elements, which list all mdev types supported
+      on the physical device. <span class="since">Since 3.4.0</span>
+      Each <code>type</code> element has a single <code>id</code>
+      attribute that holds an official vendor-supplied identifier
+      for the type. It supports the following sub-elements:
+      <dl>
+        <dt><code>name</code></dt>
+        <dd>
+          The <code>name</code> element holds a vendor-supplied
+          code name for the given mediated device type. This is
+          an optional element.
+        </dd>
+        <dt><code>deviceAPI</code></dt>
+        <dd>
+          The value of this element describes how an instance of
+          the given type will be presented to the guest by the
+          VFIO framework.
+        </dd>
+        <dt><code>availableInstances</code></dt>
+        <dd>
+          This element reports the current state of resource
+          allocation. In other words, how many instances of the
+          given type can still be successfully created on the
+          physical device.
+        </dd>
+      </dl>
+    </p>
+
+
     <h2><a id="nodeExample">Examples</a></h2>
 
     <p>The following are some example node device XML outputs:</p>

docs/formatnwfilter.html.in

@@ -467,8 +467,7 @@ DSTPORTS = [ 80, 8080 ]
        </tr>
        <tr>
          <td> IPV6 </td>
-         <td> Not currently implemented:
-              the list of IPV6 addresses in use by an interface </td>
+         <td> The list of IPV6 addresses in use by an interface </td>
        </tr>
        <tr>
          <td> DHCPSERVER </td>
@@ -2011,11 +2010,35 @@ echo 3 > /proc/sys/net/netfilter/nf_conntrack_icmp_timeout
               only allows ARP request and reply messages and enforces
               that those packets contain the MAC and IP addresses
               of the VM.</td>
+      </tr>
+       <tr>
+         <td> allow-arp </td>
+         <td> Allow ARP traffic in both directions</td>
+      </tr>
+       <tr>
+         <td> allow-ipv4 </td>
+         <td> Allow IPv4 traffic in both directions</td>
+      </tr>
+       <tr>
+         <td> allow-ipv6 </td>
+         <td> Allow IPv6 traffic in both directions</td>
+      </tr>
+       <tr>
+         <td> allow-incoming-ipv4 </td>
+         <td> Allow incoming IPv4 traffic</td>
+      </tr>
+       <tr>
+         <td> allow-incoming-ipv6 </td>
+         <td> Allow incoming IPv6 traffic</td>
       </tr>
        <tr>
          <td> allow-dhcp </td>
          <td> Allow a VM to request an IP address via DHCP (from any
               DHCP server)</td>
+      </tr>
+       <tr>
+         <td> allow-dhcpv6 </td>
+         <td> Similar to allow-dhcp, but for DHCPv6 </td>
       </tr>
        <tr>
          <td> allow-dhcp-server </td>
@@ -2023,16 +2046,28 @@ echo 3 > /proc/sys/net/netfilter/nf_conntrack_icmp_timeout
               DHCP server. The dotted decimal IP address of the DHCP
               server must be provided in a reference to this filter.
               The name of the variable must be <i>DHCPSERVER</i>.</td>
+      </tr>
+       <tr>
+         <td> allow-dhcpv6-server </td>
+         <td> Similar to allow-dhcp-server, but for DHCPv6 </td>
       </tr>
        <tr>
          <td> no-ip-spoofing </td>
-         <td> Prevent a VM from sending of IP packets with
+         <td> Prevent a VM from sending of IPv4 packets with
               a source IP address different from the one
               in the packet. </td>
+      </tr>
+       <tr>
+         <td> no-ipv6-spoofing </td>
+         <td> Similar to no-ip-spoofing, but for IPv6 </td>
       </tr>
        <tr>
          <td> no-ip-multicast </td>
          <td> Prevent a VM from sending IP multicast packets. </td>
+      </tr>
+       <tr>
+         <td> no-ipv6-multicast </td>
+         <td> Similar to no-ip-multicast, but for IPv6 </td>
       </tr>
        <tr>
          <td> clean-traffic </td>

docs/formatstorage.html.in

@@ -356,7 +356,7 @@
                 which of the scsi_host adapters for the provided PCI address
                 should be used. The value is determine by contents of the
                 <code>unique_id</code> file for the specific scsi_host adapter.
-                For a PCI address of "0000:00:1f:2", the unique identifer files
+                For a PCI address of "0000:00:1f:2", the unique identifier files
                 can be found using the command
                 <code>find -H /sys/class/scsi_host/host*/unique_id |
                 xargs grep '[0-9]'</code>. Optionally, the

docs/formatstoragecaps.html.in

@@ -64,7 +64,7 @@
 </storagepoolCapabilities>
 </pre>
 
-    <p>The following section decribes subelements of the
+    <p>The following section describes subelements of the
     <code>poolOptions</code> and <code>volOptions</code> subelements </p>:
 
     <dl>

docs/glib-adoption.rst

@@ -0,0 +1,54 @@
+=====================
+Adoption of GLib APIs
+=====================
+
+Libvirt has adopted use of the `GLib
+library <https://developer.gnome.org/glib/stable/>`__. Due to
+libvirt's long history of development, there are many APIs in
+libvirt, for which GLib provides an alternative solution. The
+general rule to follow is that the standard GLib solution will be
+preferred over historical libvirt APIs. Existing code will be
+ported over to use GLib APIs over time, but new code should use
+the GLib APIs straight away where possible.
+
+The following is a list of libvirt APIs that should no longer be
+used in new code, and their suggested GLib replacements:
+
+Memory allocation
+   ``VIR_ALLOC``, ``VIR_REALLOC``, ``VIR_RESIZE_N``,
+   ``VIR_EXPAND_N``, ``VIR_SHRINK_N``, ``VIR_FREE``
+
+   https://developer.gnome.org/glib/stable/glib-Memory-Allocation.html
+
+   Prefer the GLib APIs ``g_new0``/``g_renew``/ ``g_free`` in most
+   cases. There should rarely be a need to use
+   ``g_malloc``/``g_realloc``. **NEVER MIX** use of the classic
+   libvirt memory allocation APIs and GLib APIs within a single
+   method. Keep the style consistent, converting existing code to
+   GLib style in a separate, prior commit.
+
+Array operations
+   ``VIR_APPEND_ELEMENT``, ``VIR_INSERT_ELEMENT``, ``VIR_DELETE_ELEMENT``
+
+   https://developer.gnome.org/glib/stable/glib-Arrays.html
+
+   Instead of using plain C arrays, it is preferrable to use one of
+   the GLib types, ``GArray``, ``GPtrArray`` or ``GByteArray``.
+   These all use a struct to track the array memory and size
+   together and efficiently resize.
+
+String arrays
+   ``virStringList*``, ``virStringListCount*``
+
+   https://developer.gnome.org/glib/stable/glib-String-Utility-Functions.html
+
+   Prefer the NULL-terminated variant instead of storing the count
+   separately. Prefer ``g_str*v`` functions instead of their ``vir*``
+   counterparts. For use with ``g_auto`` GLib provides the ``GStrv`` type.
+
+Objects
+   ``virObject``
+
+   https://developer.gnome.org/gobject/stable/gobject-The-Base-Object-Type.html
+
+   Prefer ``GObject`` instead.

docs/hacking.rst

@@ -74,4 +74,5 @@ you also take a look at the following documents:
 -  `Programming languages <programming-languages.html>`__
 -  `Developer tooling <developer-tooling.html>`__
 -  `Advanced test suite usage <advanced-tests.html>`__
+-  `Adoption of GLib APIs <glib-adoption.html>`__
 -  `Committer guidelines <committer-guidelines.html>`__

docs/hooks.html.in

@@ -203,7 +203,7 @@
         <code>/etc/libvirt/hooks/qemu.d/</code>. They are executed in
         alphabetical order after main script. In this case each script also
         acts as filter and can modify the domain XML and print it out on
-        its standart output. This script output is passed to standard input
+        its standard output. This script output is passed to standard input
         next script in order. Empty output from any script is also identical
         to copying the input XML without changing it.
         In case any script returns failure common process will be aborted,
@@ -296,7 +296,7 @@
         <code>/etc/libvirt/hooks/libxl.d/</code>. They are executed in
         alphabetical order after main script. In this case each script also
         acts as filter and can modify the domain XML and print it out on
-        its standart output. This script output is passed to standard input
+        its standard output. This script output is passed to standard input
         next script in order. Empty output from any script is also identical
         to copying the input XML without changing it.
         In case any script returns failure common process will be aborted,

docs/index.html.in

@@ -8,7 +8,7 @@
       // -->
     </script>
   </head>
-  <body class="index">
+  <body id="index">
     <h1>The virtualization API</h1>
 
     <div class="panel">
@@ -64,7 +64,7 @@
         <dt><a href="https://wiki.libvirt.org">Wiki</a></dt>
         <dd>Read further community contributed content</dd>
 
-        <dt><a href="https://libvirt.org/kbase.html">Knowledge base</a></dt>
+        <dt><a href="https://libvirt.org/kbase/index.html">Knowledge base</a></dt>
         <dd>Learn more about libvirt through knowledge base</dd>
       </dl>
     </div>

docs/internals/meson.build

@@ -5,33 +5,48 @@ internals_in_files = [
   'rpc',
 ]
 
-foreach name : internals_in_files
-  html_in_file = '@0@.html.in'.format(name)
-  html_file = '@0@.html'.format(name)
+html_xslt_gen_xslt = subsite_xsl
+html_xslt_gen_install_dir = docs_html_dir / 'internals'
+html_xslt_gen = []
 
-  out_file = custom_target(
-    html_file,
-    input: html_in_file,
-    output: html_file,
+foreach name : internals_in_files
+  html_xslt_gen += {
+    'name': name,
+    'source': 'docs/internals' / name + '.html.in',
+  }
+endforeach
+
+# keep the XSLT processing code block in sync with docs/meson.build
+
+# --- begin of XSLT processing ---
+
+foreach data : html_xslt_gen
+  html_filename = data['name'] + '.html'
+
+  html_file = custom_target(
+    html_filename,
+    input: data.get('file', data['name'] + '.html.in'),
+    output: html_filename,
     command: [
-      meson_python_prog,
-      python3_prog.path(),
-      meson_html_gen_prog.path(),
-      xsltproc_prog.path(),
-      xmllint_prog.path(),
-      meson.build_root(),
-      docs_timestamp,
-      subsite_xsl,
+      xsltproc_prog,
+      '--stringparam', 'pagesrc', data.get('source', ''),
+      '--stringparam', 'builddir', meson.build_root(),
+      '--stringparam', 'timestamp', docs_timestamp,
+      '--nonet',
+      html_xslt_gen_xslt,
       '@INPUT@',
-      '@OUTPUT@',
-      'docs/internals' / html_in_file,
     ],
-    depends: [ aclperms_gen ],
+    depends: data.get('depends', []),
     depend_files: [ page_xsl ],
+    capture: true,
     install: true,
-    install_dir: docs_html_dir / 'internals',
+    install_dir: html_xslt_gen_install_dir,
   )
 
-  install_web_deps += out_file
-  install_web_files += '@0@:@1@'.format(out_file.full_path(), docs_html_dir / 'internals')
+  install_web_deps += html_file
+  install_web_files += html_file.full_path() + ':' + html_xslt_gen_install_dir
 endforeach
+
+html_xslt_gen = []
+
+# --- end of XSLT processing ---

docs/kbase.rst

@@ -1,53 +0,0 @@
-==============
-Knowledge base
-==============
-
-.. container:: panel widepanel
-
-   `Debug logs <kbase/debuglogs.html>`__
-     Configuration of logging and tips on how to file a good bug report.
-
-   `Disk locking <kbase/locking.html>`__
-      Ensuring exclusive guest access to disks with
-      `virtlockd <kbase/locking-lockd.html>`__ or
-      `Sanlock <kbase/locking-sanlock.html>`__
-
-   `Secure usage <kbase/secureusage.html>`__
-      Secure usage of the libvirt APIs
-
-   `Protected virtualization on s390 <kbase/s390_protected_virt.html>`__
-      Running secure s390 guests with IBM Secure Execution
-
-   `Launch security <kbase/launch_security_sev.html>`__
-      Securely launching VMs with AMD SEV
-
-   `Domain state capture <kbase/domainstatecapture.html>`__
-      Comparison between different methods of capturing domain state
-
-   `RPM deployment <kbase/rpm-deployment.html>`__
-      Explanation of the different RPM packages and illustration of which to
-      pick for installation
-
-   `Backing chain management <kbase/backing_chains.html>`__
-      Explanation of how disk backing chain specification impacts libvirt's
-      behaviour and basic troubleshooting steps of disk problems.
-
-   `Security with QEMU passthrough <kbase/qemu-passthrough-security.html>`__
-      Examination of the security protections used for QEMU and how they need
-      configuring to allow use of QEMU passthrough with host files/devices.
-
-   `Systemtap <kbase/systemtap.html>`__
-      Explanation of how to use systemtap for libvirt tracing.
-
-   `Virtio-FS <kbase/virtiofs.html>`__
-      Share a filesystem between the guest and the host
-
-   `KVM real time <kbase/kvm-realtime.html>`__
-      Run real time workloads in guests on a KVM hypervisor
-
-   `Incremental backup internals <kbase/incrementalbackupinternals.html>`__
-      Incremental backup implementation details relevant for users
-
-   `VM migration internals <kbase/migrationinternals.html>`__
-      VM migration implementation details, complementing the info in
-      `migration <migration.html>`__

docs/kbase/backing_chains.rst

@@ -186,7 +186,7 @@ of the following criteria is met:
 - ``backing file`` is present AND is correct/trusted
 
 Note that the last criterion may require manual inspection and thus should not
-be scripted unless the trust for the image can be expressed programatically.
+be scripted unless the trust for the image can be expressed programmatically.
 
 Also note that the above steps may need to be repeated recursively for any
 subsequent backing images.

docs/kbase/debuglogs.rst

@@ -163,10 +163,10 @@ explicitly stated, these work on libvirt 4.4.0 and later. Please note that some
 of the filters below may not log enough information for filing a proper libvirt
 bug. Usually it's better to log more than less.
 
-Targetted logging for debugging QEMU VMs
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+Targeted logging for debugging QEMU VMs
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-Specifying only some sections allows for a targetted filter configuration which
+Specifying only some sections allows for a targeted filter configuration which
 works on all versions and is sufficient for most cases.
 
 ::
@@ -178,13 +178,12 @@ Less verbose logging for QEMU VMs
 
 Some subsystems are very noisy and usually not the culprit of the problems. They
 can be silenced individually for a less verbose log while still logging
-everything else. Usual suspects are the JSON code, udev, authentication and such.
+everything else. Usual suspects are the JSON code, RPC, authentication and such.
 A permissive filter is good for development use cases.
 
 ::
 
-    3:remote 4:event 3:util.json 3:util.object 3:util.dbus 3:util.udev 3:node_device 3:rpc 3:access.accessmanager 3:util.netlink 1:*
-
+    3:remote 4:event 3:util.json 3:util.object 3:util.dbus 3:util.netlink 3:node_device 3:rpc 3:access 1:*
 
 Minimalistic QEMU QMP monitor logging
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

docs/kbase/index.rst

@@ -0,0 +1,57 @@
+==============
+Knowledge base
+==============
+
+Usage
+-----
+
+`Secure usage <secureusage.html>`__
+   Secure usage of the libvirt APIs
+
+`Backing chain management <backing_chains.html>`__
+   Explanation of how disk backing chain specification impacts libvirt's
+   behaviour and basic troubleshooting steps of disk problems.
+
+`Virtio-FS <virtiofs.html>`__
+   Share a filesystem between the guest and the host
+
+`Security with QEMU passthrough <qemu-passthrough-security.html>`__
+   Examination of the security protections used for QEMU and how they need
+   configuring to allow use of QEMU passthrough with host files/devices.
+
+`RPM deployment <rpm-deployment.html>`__
+   Explanation of the different RPM packages and illustration of which to
+   pick for installation
+
+`Domain state capture <domainstatecapture.html>`__
+   Comparison between different methods of capturing domain state
+
+`Disk locking <locking.html>`__
+   Ensuring exclusive guest access to disks with
+   `virtlockd <locking-lockd.html>`__ or
+   `Sanlock <locking-sanlock.html>`__
+
+`Protected virtualization on s390 <s390_protected_virt.html>`__
+   Running secure s390 guests with IBM Secure Execution
+
+`Launch security <launch_security_sev.html>`__
+   Securely launching VMs with AMD SEV
+
+`KVM real time <kvm-realtime.html>`__
+   Run real time workloads in guests on a KVM hypervisor
+
+Internals / Debugging
+---------------------
+
+`Debug logs <debuglogs.html>`__
+  Configuration of logging and tips on how to file a good bug report.
+
+`Systemtap <systemtap.html>`__
+   Explanation of how to use systemtap for libvirt tracing.
+
+`Incremental backup internals <incrementalbackupinternals.html>`__
+   Incremental backup implementation details relevant for users
+
+`VM migration internals <migrationinternals.html>`__
+   VM migration implementation details, complementing the info in
+   `migration <migration.html>`__

docs/kbase/kvm-realtime.rst

@@ -137,7 +137,7 @@ do not include any CPU affinity at this stage:
 
 The guest CPUs now need to be placed individually. In this case, they will all
 be put within the same host socket, such that they can be exposed as core
-siblings. This is achieved using the `CPU tunning config <../formatdomain.html#elementsCPUTuning>`_:
+siblings. This is achieved using the `CPU tuning config <../formatdomain.html#elementsCPUTuning>`_:
 
 ::
 

docs/kbase/meson.build

@@ -3,6 +3,7 @@ docs_kbase_files = [
   'debuglogs',
   'domainstatecapture',
   'incrementalbackupinternals',
+  'index',
   'kvm-realtime',
   'launch_security_sev',
   'locking-lockd',
@@ -17,35 +18,51 @@ docs_kbase_files = [
   'virtiofs',
 ]
 
+html_xslt_gen_xslt = subsite_xsl
+html_xslt_gen_install_dir = docs_html_dir / 'kbase'
+html_xslt_gen = []
+
 foreach name : docs_kbase_files
   rst_file = '@0@.rst'.format(name)
-  html_file = '@0@.html'.format(name)
 
-  html_in = docs_rst2html_gen.process(rst_file)
+  html_xslt_gen += {
+    'name': name,
+    'file': docs_rst2html_gen.process(rst_file),
+    'source': 'docs/kbase' / rst_file,
+  }
+endforeach
 
-  out_file = custom_target(
-    html_file,
-    input: html_in,
-    output: html_file,
+# keep the XSLT processing code block in sync with docs/meson.build
+
+# --- begin of XSLT processing ---
+
+foreach data : html_xslt_gen
+  html_filename = data['name'] + '.html'
+
+  html_file = custom_target(
+    html_filename,
+    input: data.get('file', data['name'] + '.html.in'),
+    output: html_filename,
     command: [
-      meson_python_prog,
-      python3_prog.path(),
-      meson_html_gen_prog.path(),
-      xsltproc_prog.path(),
-      xmllint_prog.path(),
-      meson.build_root(),
-      docs_timestamp,
-      subsite_xsl,
+      xsltproc_prog,
+      '--stringparam', 'pagesrc', data.get('source', ''),
+      '--stringparam', 'builddir', meson.build_root(),
+      '--stringparam', 'timestamp', docs_timestamp,
+      '--nonet',
+      html_xslt_gen_xslt,
       '@INPUT@',
-      '@OUTPUT@',
-      'docs/kbase' / rst_file,
     ],
-    depends: [ aclperms_gen ],
+    depends: data.get('depends', []),
     depend_files: [ page_xsl ],
+    capture: true,
     install: true,
-    install_dir: docs_html_dir / 'kbase',
+    install_dir: html_xslt_gen_install_dir,
   )
 
-  install_web_deps += out_file
-  install_web_files += '@0@:@1@'.format(out_file.full_path(), docs_html_dir / 'kbase')
+  install_web_deps += html_file
+  install_web_files += html_file.full_path() + ':' + html_xslt_gen_install_dir
 endforeach
+
+html_xslt_gen = []
+
+# --- end of XSLT processing ---

docs/kbase/migrationinternals.rst

@@ -25,7 +25,7 @@ In this document, unless stated otherwise, these conventions are followed:
   any host;
 
 * 'regular migration' refers to any migration operation where the libvirt
-  client co-ordinates the communication between the libvirtd instances in
+  client coordinates the communication between the libvirtd instances in
   the source and destination hosts.
 
 Migration protocol

docs/kbase/rpm-deployment.rst

@@ -384,7 +384,7 @@ set of hypervisor packages too.
 
 Since this installs every possible libvirt feature for the virtualization
 driver in question, the on-disk footprint is quite large. The in-memory
-footprint of the daemons is also relatively large since alot of code is
+footprint of the daemons is also relatively large since a lot of code is
 loaded.
 
 

docs/kbase/virtiofs.rst

@@ -16,10 +16,18 @@ See https://virtio-fs.gitlab.io/
 Host setup
 ==========
 
-The host-side virtiofsd daemon, like other vhost-user backed devices,
-requires shared memory between the host and the guest. As of QEMU 4.2, this
-requires specifying a NUMA topology for the guest and explicitly specifying
-a memory backend. Multiple options are available:
+Almost all virtio devices (all that use virtqueues) require access to
+at least certain portions of guest RAM (possibly policed by DMA). In
+case of virtiofsd, much like in case of other vhost-user (see
+https://www.qemu.org/docs/master/interop/vhost-user.html) virtio
+devices that are realized by an userspace process, this in practice
+means that QEMU needs to allocate the backing memory for all the guest
+RAM as shared memory. As of QEMU 4.2, it is possible to explicitly
+specify a memory backend when specifying the NUMA topology. This
+method is however only viable for machine types that do support
+NUMA. As of QEMU 5.0.0 and libvirt 6.9.0, it is possible to
+specify the memory backend without NUMA (using the so called
+memobject interface).
 
 Either of the following:
 
@@ -46,7 +54,7 @@ Either of the following:
 Guest setup
 ===========
 
-#. Specify the NUMA topology
+#. Specify the NUMA topology (this step is only required for the NUMA case)
 
    in the domain XML of the guest.
    For the simplest one-node topology for a guest with 2GiB of RAM and 8 vCPUs:

docs/libvirt.css

@@ -95,7 +95,7 @@
     margin-right: 1em;
 }
 
-#content {
+.document {
     margin-left: auto;
     margin-right: auto;
     padding: 0px;
@@ -104,9 +104,10 @@
     width: 70em;
 }
 
-body.index #content,
-body.docs #content,
-body.hvsupport #content
+#index.document,
+#docs.document,
+#hvsupport.document,
+#knowledge-base.document
 {
     width: inherit;
 }
@@ -395,22 +396,17 @@ h6:hover > a.headerlink {
     visibility: visible;
 }
 
-div.panel {
+div.panel,
+#knowledge-base .section
+{
     width: 24%;
     margin-left: 7%;
     float: left;
     background: rgb(230, 230, 230);
 }
 
-div.widepanel {
-    width: 70em;
-    max-width: 95%;
-    margin-left: 0px;
-    float: left;
-    background: rgb(230, 230, 230);
-}
-
-div.panel h2 {
+div.panel h2,
+#knowledge-base .section h1 {
     margin-top: 0px;
     padding: 0.5em;
     padding-left: 1em;
@@ -420,13 +416,22 @@ div.panel h2 {
     text-align: center;
 }
 
-body.index h1 {
+#index.document h1 {
     border: 0px;
     text-indent: 100%; white-space: nowrap; overflow: hidden;
     background: url(logos/logo-banner-dark-800.png) no-repeat center center;
     height: 300px;
 }
 
+#knowledge-base.document > h1 {
+    text-align: center;
+    padding: 1em;
+}
+
+#docs.document h1 {
+    visibility: hidden;
+}
+
 br.clear {
     clear: both;
     border: 0px;
@@ -479,29 +484,38 @@ br.clear {
     font-size: smaller;
 }
 
-div.panel dd {
+div.panel dd,
+#knowledge-base dd {
     font-size: smaller;
 }
 
-div.panel a {
+div.panel a,
+#knowledge-base a {
     text-decoration: none;
 }
 
 div.panel ul,
 div.panel p,
-div.panel dl {
+div.panel dl,
+#knowledge-base ul,
+#knowledge-base p,
+#knowledge-base dl {
     padding: 0.5em;
     margin: 0px;
 }
 
-
-div.panel ul {
+div.panel ul,
+#knowledge-base ul {
     margin-left: 1em;
 }
-div.panel dt {
+
+div.panel dt,
+#knowledge-base dt {
     margin: 0px;
 }
-div.panel dd {
+
+div.panel dd,
+#knowledge-base dd {
     margin: 0px;
     margin-bottom: 1em;
 }
@@ -594,8 +608,13 @@ th p, td p {
 /* Elements with id 'contents' contain the table of contents generated by docutils */
 
 #contents {
-    margin-top: 2em;
-    margin-bottom: 2em;
+    margin-top: 1em;
+    margin-bottom: 1em;
+    background: rgb(230, 230, 230);
+    padding: 0.5em;
+    padding-left: 0px;
+    display: inline-block;
+    border: 1px solid #999999;
 }
 
 #contents p.topic-title {

docs/logos/README

@@ -38,7 +38,7 @@ format:
 
  - logo-square-powered.svg
 
-   A variant of the square logo for use by 3rd party applications, to advertize
+   A variant of the square logo for use by 3rd party applications, to advertise
    their use of libvirt.
 
    Bitmap sizes: 64, 128, 192, 256 px square

docs/manpages/libvirtd.rst

@@ -199,7 +199,7 @@ EXAMPLES
 
 To retrieve the version of libvirtd:
 
-.. code-block::
+::
 
   # libvirtd --version
   libvirtd (libvirt) 0.8.2
@@ -207,7 +207,7 @@ To retrieve the version of libvirtd:
 
 To start libvirtd, instructing it to daemonize and create a PID file:
 
-.. code-block::
+::
 
   # libvirtd -d
   # ls -la @RUNSTATEDIR@/libvirtd.pid

docs/manpages/meson.build

@@ -1,3 +1,7 @@
+html_xslt_gen_xslt = subsite_xsl
+html_xslt_gen_install_dir = docs_html_dir / 'manpages'
+html_xslt_gen = []
+
 # docs_man_files
 #   each entry is a dictionary with following items:
 #   name - man page name (required)
@@ -28,7 +32,7 @@ foreach name : keycode_list
     input: keymap_src_file,
     output: 'virkeycode-@0@.rst'.format(name),
     command: [
-      meson_python_prog, python3_prog.path(), keymap_gen_prog.path(), 'code-docs',
+      meson_python_prog, python3_prog, keymap_gen_prog, 'code-docs',
       '--lang', 'rst',
       '--title', 'virkeycode-@0@'.format(name),
       '--subtitle', 'Key code values for @0@'.format(name),
@@ -49,7 +53,7 @@ foreach name : keyname_list
     input: keymap_src_file,
     output: 'virkeyname-@0@.rst'.format(name),
     command: [
-      meson_python_prog, python3_prog.path(), keymap_gen_prog.path(), 'name-docs',
+      meson_python_prog, python3_prog, keymap_gen_prog, 'name-docs',
       '--lang', 'rst',
       '--title', 'virkeyname-@0@'.format(name),
       '--subtitle', 'Key name values for @0@'.format(name),
@@ -104,29 +108,44 @@ foreach data : docs_man_files
     capture: true,
   )
 
-  out_file = custom_target(
-    html_file,
-    input: html_in,
-    output: html_file,
+  html_xslt_gen += {
+    'name': data['name'],
+    'file': html_in,
+    'source': 'docs/manpages' / rst_in_file,
+  }
+endforeach
+
+# keep the XSLT processing code block in sync with docs/meson.build
+
+# --- begin of XSLT processing ---
+
+foreach data : html_xslt_gen
+  html_filename = data['name'] + '.html'
+
+  html_file = custom_target(
+    html_filename,
+    input: data.get('file', data['name'] + '.html.in'),
+    output: html_filename,
     command: [
-      meson_python_prog,
-      python3_prog.path(),
-      meson_html_gen_prog.path(),
-      xsltproc_prog.path(),
-      xmllint_prog.path(),
-      meson.build_root(),
-      docs_timestamp,
-      subsite_xsl,
+      xsltproc_prog,
+      '--stringparam', 'pagesrc', data.get('source', ''),
+      '--stringparam', 'builddir', meson.build_root(),
+      '--stringparam', 'timestamp', docs_timestamp,
+      '--nonet',
+      html_xslt_gen_xslt,
       '@INPUT@',
-      '@OUTPUT@',
-      'docs/manpages' / rst_in_file,
     ],
-    depends: [ aclperms_gen ],
+    depends: data.get('depends', []),
     depend_files: [ page_xsl ],
+    capture: true,
     install: true,
-    install_dir: docs_html_dir / 'manpages',
+    install_dir: html_xslt_gen_install_dir,
   )
 
-  install_web_deps += out_file
-  install_web_files += '@0@:@1@'.format(out_file.full_path(), docs_html_dir / 'manpages')
+  install_web_deps += html_file
+  install_web_files += html_file.full_path() + ':' + html_xslt_gen_install_dir
 endforeach
+
+html_xslt_gen = []
+
+# --- end of XSLT processing ---

docs/manpages/virt-admin.rst

@@ -28,7 +28,7 @@ as for monitoring and managing all clients connected to the daemon.
 
 The basic structure of most virt-admin usage is:
 
-.. code-block::
+::
 
    virt-admin [OPTION]... <command> [ARG]...
 
@@ -107,7 +107,7 @@ help
 
 **Syntax:**
 
-.. code-block::
+::
 
    help [command-or-group]
 
@@ -124,7 +124,7 @@ quit, exit
 
 **Syntax:**
 
-.. code-block::
+::
 
    quit
    exit
@@ -136,7 +136,7 @@ version
 
 **Syntax:**
 
-.. code-block::
+::
 
    version
 
@@ -146,7 +146,7 @@ the version of the daemon.
 
 **Example:**
 
-.. code-block::
+::
 
    $ virt-admin version
    Compiled against library: libvirt 1.2.21
@@ -160,7 +160,7 @@ cd
 
 **Syntax:**
 
-.. code-block::
+::
 
    cd [directory]
 
@@ -175,7 +175,7 @@ pwd
 
 **Syntax:**
 
-.. code-block::
+::
 
    pwd
 
@@ -187,7 +187,7 @@ connect
 
 **Syntax:**
 
-.. code-block::
+::
 
    connect [URI]
 
@@ -206,7 +206,7 @@ uri
 
 **Syntax:**
 
-.. code-block::
+::
 
    uri
 
@@ -230,7 +230,7 @@ server-list
 
 **Syntax:**
 
-.. code-block::
+::
 
    server-list
 
@@ -243,7 +243,7 @@ daemon-log-filters
 
 **Syntax:**
 
-.. code-block::
+::
 
    daemon-log-filters [--filters string]
 
@@ -264,7 +264,7 @@ space. Each filter must conform to the form described in detail by
 To define a filter which suppresses all e.g. 'virObjectUnref' DEBUG
 messages, use the following:
 
-.. code-block::
+::
 
    $ virt-admin daemon-log-filters "4:util.object"
 
@@ -277,7 +277,7 @@ daemon-log-outouts
 
 **Syntax:**
 
-.. code-block::
+::
 
    daemon-log-outputs [--outputs string]
 
@@ -298,13 +298,13 @@ space. Each output must conform to the form described in detail by
 To replace the current setting for logging outputs with one that writes to
 a file while logging errors only, the following could be used:
 
-.. code-block::
+::
 
    $ virt-admin daemon-log-outputs "4:file:<absolute_path_to_the_file>"
 
 To define multiple outputs at once they need to be delimited by spaces:
 
-.. code-block::
+::
 
    $ virt-admin daemon-log-outputs "4:stderr 2:syslog:<msg_ident>"
 
@@ -320,7 +320,7 @@ server-threadpool-info
 
 **Syntax:**
 
-.. code-block::
+::
 
    server-threadpool-info server
 
@@ -355,7 +355,7 @@ that, unlike tasks carried out by normal workers, are within libvirt's full
 control and libvirt guarantees that such a task cannot hang, thus will always
 finish. An example of such a task this would be destroying a domain:
 
-.. code-block::
+::
 
    $ virsh destroy <domain>.
 
@@ -365,7 +365,7 @@ server-threadpool-set
 
 **Syntax:**
 
-.. code-block::
+::
 
    server-threadpool-set server [--min-workers count] [--max-workers count] [--priority-workers count]
 
@@ -394,7 +394,7 @@ server-clients-info
 
 **Syntax:**
 
-.. code-block::
+::
 
    server-clients-info server
 
@@ -407,7 +407,7 @@ runtime values, more specifically, the current number of clients connected to
 
 **Example:**
 
-.. code-block::
+::
 
    # virt-admin server-clients-info libvirtd
    nclients_max        : 120
@@ -421,7 +421,7 @@ server-clients-set
 
 **Syntax:**
 
-.. code-block::
+::
 
    server-clients-set server [--max-clients count] [--max-unauth-clients count]
 
@@ -447,7 +447,7 @@ server-update-tls
 
 **Syntax:**
 
-.. code-block::
+::
 
    server-update-tls server
 
@@ -474,7 +474,7 @@ client-list
 
 **Syntax:**
 
-.. code-block::
+::
 
    client-list server
 
@@ -488,7 +488,7 @@ client-info
 
 **Syntax:**
 
-.. code-block::
+::
 
    client-info server client
 
@@ -504,7 +504,7 @@ enabled within daemon).
 
 **Examples:**
 
-.. code-block::
+::
 
    # virt-admin client-info libvirtd 1
    id             : 1
@@ -530,7 +530,7 @@ client-disconnect
 
 **Syntax:**
 
-.. code-block::
+::
 
    client-disconnect server client
 

docs/manpages/virt-login-shell.rst

@@ -29,7 +29,7 @@ configured in ``/etc/libvirt/virt-login-shell.conf``.
 
 The basic structure of most ``virt-login-shell`` usage is:
 
-.. code-block::
+::
 
    virt-login-shell
 
@@ -58,7 +58,7 @@ By default, ``virt-login-shell`` will execute the ``/bin/sh`` program for
 the user. You can modify this behaviour by defining the shell variable in
 ``/etc/libvirt/virt-login-shell.conf``. e.g.
 
-.. code-block::
+::
 
    shell = [ "/bin/bash" ]
 
@@ -68,7 +68,7 @@ detect the shell from ``/etc/password`` inside the container. This should only
 be done if the container has a separate ``/etc`` directory from the host,
 otherwise it will end up recursively invoking ``virt-login-shell``. e.g.
 
-.. code-block::
+::
 
    auto_shell = 1
 
@@ -77,7 +77,7 @@ By default no users are allowed to use virt-login-shell, if you want to allow
 certain users to use virt-login-shell, you need to modify the allowed_users
 variable in /etc/libvirt/virt-login-shell.conf. e.g.
 
-.. code-block::
+::
 
    allowed_users = [ "tom", "dick", "harry" ]
 

docs/manpages/virtlockd.rst

@@ -120,14 +120,14 @@ EXAMPLES
 
 To retrieve the version of ``virtlockd``:
 
-.. code-block::
+::
 
   # virtlockd --version
   virtlockd (libvirt) 1.1.1
 
 To start ``virtlockd``, instructing it to daemonize and create a PID file:
 
-.. code-block::
+::
 
   # virtlockd -d
   # ls -la @RUNSTATEDIR@/virtlockd.pid

docs/manpages/virtlogd.rst

@@ -121,14 +121,14 @@ EXAMPLES
 
 To retrieve the version of ``virtlogd``:
 
-.. code-block::
+::
 
   # virtlogd --version
   virtlogd (libvirt) 1.1.1
 
 To start ``virtlogd``, instructing it to daemonize and create a PID file:
 
-.. code-block::
+::
 
   # virtlogd -d
   # ls -la @RUNSTATEDIR@/virtlogd.pid

docs/meson.build

@@ -32,7 +32,6 @@ docs_assets = [
 
 docs_html_in_files = [
   '404',
-  'acl',
   'aclpolkit',
   'api_extension',
   'api',
@@ -117,8 +116,8 @@ docs_rst_files = [
   'formatbackup',
   'formatcheckpoint',
   'formatdomain',
+  'glib-adoption',
   'hacking',
-  'kbase',
   'libvirt-go',
   'libvirt-go-xml',
   'newreposetup',
@@ -140,7 +139,7 @@ aclperms_gen = custom_target(
   input: access_perm_h,
   output: 'aclperms.htmlinc',
   command: [
-    meson_python_prog, python3_prog.path(), genaclperms_prog.path(), '@INPUT@',
+    meson_python_prog, python3_prog, genaclperms_prog, '@INPUT@',
   ],
   capture: true,
 )
@@ -163,7 +162,7 @@ docs_api_generated = custom_target(
     'libvirt-admin-api.xml',
   ],
   command: [
-    meson_python_prog, python3_prog.path(), apibuild_prog.path(),
+    meson_python_prog, python3_prog, apibuild_prog,
     meson.current_source_dir(),
     meson.current_build_dir(),
   ],
@@ -193,38 +192,48 @@ docs_rst2html_gen = generator(
 )
 
 
-# docs_html_in_gen:
+# html_xslt_gen config
+
+html_xslt_gen_xslt = site_xsl
+html_xslt_gen_install_dir = docs_html_dir
+
+html_xslt_gen = []
+# html_xslt_gen:
 #   each entry is a dictionary with following items:
-#   name - base file name (required)
-#   file - generated file (required)
+#   name - base file name (required), output file will become 'name.html'
+#   file - input file (optional, 'name.html.in' assumed if missing)
 # source - source filename relative to repository root (optional, if there is no source)
-docs_html_in_gen = []
+# depends - explicit dependency on other input (optional)
 
 foreach name : docs_html_in_files
-  html_in_file = '@0@.html.in'.format(name)
-  docs_html_in_gen += {
+  html_xslt_gen += {
     'name': name,
-    'file': html_in_file,
-    'source': 'docs' / html_in_file,
+    'source': 'docs' / name + '.html.in',
   }
 endforeach
 
 foreach name : docs_rst_files
   rst_file = '@0@.rst'.format(name)
-  docs_html_in_gen += {
+  html_xslt_gen += {
     'name': name,
     'file': docs_rst2html_gen.process(rst_file),
     'source': 'docs' / rst_file,
   }
 endforeach
 
+html_xslt_gen += {
+  'name': 'acl',
+  'source': 'docs' / 'acl.html.in',
+  'depends': aclperms_gen,
+}
+
 hvsupport_html_in = custom_target(
   'hvsupport.html.in',
   output: 'hvsupport.html.in',
   command: [
     meson_python_prog,
-    python3_prog.path(),
-    hvsupport_prog.path(),
+    python3_prog,
+    hvsupport_prog,
     meson.source_root(),
     meson.build_root(),
   ],
@@ -239,48 +248,55 @@ hvsupport_html_in = custom_target(
     docs_api_generated,
   ],
 )
-docs_html_in_gen += {
+html_xslt_gen += {
   'name': 'hvsupport',
   'file': hvsupport_html_in,
 }
 
 news_html_in = docs_rst2html_gen.process(meson.source_root() / 'NEWS.rst')
-docs_html_in_gen += {
+html_xslt_gen += {
   'name': 'news',
   'file': news_html_in,
   'source': 'NEWS.rst',
 }
 
-foreach data : docs_html_in_gen
-  html_file = '@0@.html'.format(data['name'])
+# The following code between the markers must be kept identical with the other
+# copies of the code in various subdirs, since meson doesn't support any kind
+# of functions.
 
-  out_file = custom_target(
-    html_file,
-    input: data['file'],
-    output: html_file,
+# --- begin of XSLT processing ---
+
+foreach data : html_xslt_gen
+  html_filename = data['name'] + '.html'
+
+  html_file = custom_target(
+    html_filename,
+    input: data.get('file', data['name'] + '.html.in'),
+    output: html_filename,
     command: [
-      meson_python_prog,
-      python3_prog.path(),
-      meson_html_gen_prog.path(),
-      xsltproc_prog.path(),
-      xmllint_prog.path(),
-      meson.build_root(),
-      docs_timestamp,
-      site_xsl,
+      xsltproc_prog,
+      '--stringparam', 'pagesrc', data.get('source', ''),
+      '--stringparam', 'builddir', meson.build_root(),
+      '--stringparam', 'timestamp', docs_timestamp,
+      '--nonet',
+      html_xslt_gen_xslt,
       '@INPUT@',
-      '@OUTPUT@',
-      data.get('source', []),
     ],
-    depends: [ aclperms_gen ],
+    depends: data.get('depends', []),
     depend_files: [ page_xsl ],
+    capture: true,
     install: true,
-    install_dir: docs_html_dir,
+    install_dir: html_xslt_gen_install_dir,
   )
 
-  install_web_deps += out_file
-  install_web_files += '@0@:@1@'.format(out_file.full_path(), docs_html_dir)
+  install_web_deps += html_file
+  install_web_files += html_file.full_path() + ':' + html_xslt_gen_install_dir
 endforeach
 
+html_xslt_gen = []
+
+# --- end of XSLT processing ---
+
 subdir('fonts')
 subdir('html')
 subdir('internals')

docs/migration.html.in

@@ -31,6 +31,14 @@
       of ports on the firewall to allow multiple concurrent migration operations.
     </p>
 
+    <p>
+      Modern hypervisors support TLS for encryption and authentication of the
+      migration connections which can be enabled using the
+      <code>VIR_MIGRATE_TLS</code> flag. The <em>qemu</em> hypervisor driver
+      allows users to force use of TLS via the <code>migrate_tls_force</code>
+      knob configured in <code>/etc/libvirt/qemu.conf</code>.
+    </p>
+
     <p>
       <img class="diagram" src="migration-native.png" alt="Migration native path"/>
     </p>
@@ -49,6 +57,14 @@
       migration operations.
     </p>
 
+    <p>
+      <em>Note:</em> Certain features such as migration of non-shared storage
+      (<code>VIR_MIGRATE_NON_SHARED_DISK</code>), the multi-connection migration
+      (<code>VIR_MIGRATE_PARALLEL</code>), or post-copy migration
+      (<code>VIR_MIGRATE_POSTCOPY</code>) may not be available when using
+      libvirt's tunnelling.
+    </p>
+
     <p>
       <img class="diagram" src="migration-tunnel.png" alt="Migration tunnel path"/>
     </p>
@@ -251,9 +267,9 @@
     <p>
       As mentioned above, libvirt will not modify configuration files during
       migration by default. The <code>virsh</code> command has two flags to
-      influence this behaviour. The  <code>--undefine-source</code> flag
+      influence this behaviour. The  <code>--undefinesource</code> flag
       will cause the configuration file to be removed on the source host
-      after a successful migration. The <code>--persist</code> flag will
+      after a successful migration. The <code>--persistent</code> flag will
       cause a configuration file to be created on the destination host
       after a successful migration. The following table summarizes the
       configuration file handling in all possible state and flag
@@ -271,8 +287,8 @@
           <th>Source type</th>
           <th>Source config</th>
           <th>Dest config</th>
-          <th>--undefine-source</th>
-          <th>--persist</th>
+          <th>--undefinesource</th>
+          <th>--persistent</th>
           <th>Dest type</th>
           <th>Source config</th>
           <th>Dest config</th>
@@ -653,10 +669,23 @@ virsh migrate --p2p --tunnelled web1 qemu+ssh://desthost/system qemu+ssh://10.0.
       daemons or forwarding connections to these sockets manually
       (using <code>socat</code>, <code>netcat</code> or a custom piece of
       software):
+    </p>
     <pre>
-virsh migrate web1 [--p2p] --copy-storage-all 'qemu+unix:///system?socket=/tmp/migdir/test-sock-driver' 'unix:///tmp/migdir/test-sock-qemu' --disks-uri unix:///tmp/migdir/test-sock-nbd
+virsh migrate --domain web1 [--p2p] --copy-storage-all
+  --desturi 'qemu+unix:///system?socket=/tmp/migdir/test-sock-driver'
+  --migrateuri 'unix:///tmp/migdir/test-sock-qemu'
+  --disks-uri unix:///tmp/migdir/test-sock-nbd
     </pre>
 
+    <p>
+      One caveat is that on SELinux-enabled systems all the sockets that the
+      hypervisor is going to connect to needs to have the proper context and
+      that is chosen before its creation by the process that creates it.  That
+      is usually done by using <code>setsockcreatecon{,raw}()</code> functions.
+      Generally *system_r:system_u:svirt_socket_t:s0* should do the trick, but
+      check the SELinux rules and settings of your system.
+    </p>
+
     <p>
       Supported by QEMU driver
     </p>

docs/page.xsl

@@ -112,15 +112,22 @@
         </script>
       </head>
       <body onload="pageload()">
-        <xsl:if test="html:html/html:body/@class">
-          <xsl:attribute name="class">
-            <xsl:value-of select="html:html/html:body/@class"/>
-          </xsl:attribute>
-        </xsl:if>
         <div id="body">
-          <div id="content">
-            <xsl:apply-templates select="/html:html/html:body/*" mode="content"/>
-          </div>
+          <xsl:choose>
+            <xsl:when test="html:html/html:body/html:div/@class='document'">
+              <xsl:apply-templates select="/html:html/html:body/*" mode="content"/>
+            </xsl:when>
+            <xsl:otherwise>
+              <div class="document">
+                <xsl:if test="html:html/html:body/@id">
+                  <xsl:attribute name="id">
+                    <xsl:value-of select="html:html/html:body/@id"/>
+                  </xsl:attribute>
+                </xsl:if>
+                <xsl:apply-templates select="/html:html/html:body/*" mode="content"/>
+              </div>
+            </xsl:otherwise>
+          </xsl:choose>
         </div>
         <div id="nav">
           <div id="home">
@@ -194,10 +201,10 @@
     <xsl:element name="{name()}">
       <xsl:apply-templates mode="copy" />
       <xsl:if test="./html:a/@id">
-        <a class="headerlink" href="#{html:a/@id}" title="Permalink to this headline">&#xb6;</a>
+        <a class="headerlink" href="#{html:a/@id}" title="Link to this headline">&#xb6;</a>
       </xsl:if>
-      <xsl:if test="./html:a[@class='toc-backref']">
-        <a class="headerlink" href="#{../@id}" title="Permalink to this headline">&#xb6;</a>
+      <xsl:if test="parent::html:div[@class='section']">
+        <a class="headerlink" href="#{../@id}" title="Link to this headline">&#xb6;</a>
       </xsl:if>
     </xsl:element>
   </xsl:template>

docs/programming-languages.rst

@@ -11,7 +11,7 @@ some of the existing languages.
 The preferred languages at this time are:
 
 -  C - for the main libvirt codebase. Dialect supported by
-   GCC/CLang only.
+   GCC/Clang only.
 -  Python - for supporting build scripts / tools. Code must run
    with both version 2.7 and 3.x at this time.
 

docs/schemas/basictypes.rng

@@ -8,14 +8,14 @@
       <param name="pattern">[0-9]+</param>
     </data>
   </define>
-  <define name='unsignedLong'>
-    <data type='unsignedLong'>
-      <param name='pattern'>[0-9]+</param>
+  <define name="unsignedLong">
+    <data type="unsignedLong">
+      <param name="pattern">[0-9]+</param>
     </data>
   </define>
 
-  <define name='hexuint'>
-    <data type='string'>
+  <define name="hexuint">
+    <data type="string">
       <param name="pattern">(0x)?[0-9a-f]+</param>
     </data>
   </define>
@@ -26,9 +26,9 @@
     </data>
   </define>
 
-  <define name='octalMode'>
+  <define name="octalMode">
     <data type="unsignedInt">
-      <param name='pattern'>[0-7]+</param>
+      <param name="pattern">[0-7]+</param>
     </data>
   </define>
 
@@ -48,7 +48,7 @@
       <data type="string">
         <param name="pattern">(0x)?[0-9a-fA-F]{1,4}</param>
       </data>
-      <data type='int'>
+      <data type="int">
         <param name="minInclusive">0</param>
         <param name="maxInclusive">65535</param>
       </data>
@@ -167,7 +167,7 @@
   <!--such as dnsmasq to assign a specific IP address (and optionally a   -->
   <!--name to an interface.  The applicable standards are RFC3315 and     -->
   <!--RFC6355.  These standards actually require the duid to be fixed for -->
-  <!--the hardward device and applicable to all network interfaces on     -->
+  <!--the hardware device and applicable to all network interfaces on     -->
   <!--that device.  It is not clear that any software currently enforces  -->
   <!--this requirement although it could be implemented manually.         -->
   <!--====================================================================-->
@@ -299,7 +299,13 @@
 
   <define name="absFilePath">
     <data type="string">
-      <param name="pattern">/.+</param>
+      <param name="pattern">(/|[a-zA-Z]:\\).+</param>
+    </data>
+  </define>
+
+  <define name="vmwarePath">
+    <data type="string">
+      <param name="pattern">\[[^\]]+\] .+</param>
     </data>
   </define>
 
@@ -309,18 +315,18 @@
     </data>
   </define>
 
-  <define name='unit'>
-    <data type='string'>
-      <param name='pattern'>([bB]([yY][tT][eE][sS]?)?)|([kKmMgGtTpPeE]([iI]?[bB])?)</param>
+  <define name="unit">
+    <data type="string">
+      <param name="pattern">([bB]([yY][tT][eE][sS]?)?)|([kKmMgGtTpPeE]([iI]?[bB])?)</param>
     </data>
   </define>
-  <define name='scaledInteger'>
+  <define name="scaledInteger">
     <optional>
-      <attribute name='unit'>
-        <ref name='unit'/>
+      <attribute name="unit">
+        <ref name="unit"/>
       </attribute>
     </optional>
-    <ref name='unsignedLong'/>
+    <ref name="unsignedLong"/>
   </define>
 
   <define name="pciDomain">
@@ -352,9 +358,9 @@
     </choice>
   </define>
 
-  <define name='wwn'>
-    <data type='string'>
-      <param name='pattern'>(0x)?[0-9a-fA-F]{16}</param>
+  <define name="wwn">
+    <data type="string">
+      <param name="pattern">(0x)?[0-9a-fA-F]{16}</param>
     </data>
   </define>
 
@@ -395,9 +401,9 @@
     </data>
   </define>
 
-  <define name='volName'>
+  <define name="volName">
     <!-- directory pools allow almost any file name as a volume name -->
-    <data type='string'>
+    <data type="string">
       <param name="pattern">[^/]+</param>
       <except>
         <choice>
@@ -408,7 +414,7 @@
     </data>
   </define>
 
-  <define name='archnames'>
+  <define name="archnames">
     <choice>
       <value>aarch64</value>
       <value>alpha</value>
@@ -454,20 +460,20 @@
     </data>
   </define>
 
-  <define name='sourceinfoadapter'>
-    <element name='adapter'>
+  <define name="sourceinfoadapter">
+    <element name="adapter">
       <choice>
         <group>
-          <!-- To keep back-compat, 'type' is not mandatory for
+          <!-- To keep back-compat, "type" is not mandatory for
            scsi_host adapter -->
           <optional>
-            <attribute name='type'>
+            <attribute name="type">
               <value>scsi_host</value>
             </attribute>
           </optional>
           <choice>
             <group>
-              <attribute name='name'>
+              <attribute name="name">
                 <text/>
               </attribute>
             </group>
@@ -475,8 +481,8 @@
               <interleave>
                 <element name="parentaddr">
                   <optional>
-                    <attribute name='unique_id'>
-                      <ref name='positiveInteger'/>
+                    <attribute name="unique_id">
+                      <ref name="positiveInteger"/>
                     </attribute>
                   </optional>
                   <element name="address">
@@ -488,39 +494,39 @@
           </choice>
         </group>
         <group>
-          <attribute name='type'>
+          <attribute name="type">
             <value>fc_host</value>
           </attribute>
           <optional>
-            <attribute name='parent'>
+            <attribute name="parent">
               <text/>
             </attribute>
           </optional>
           <optional>
-            <attribute name='managed'>
+            <attribute name="managed">
               <ref name="virYesNo"/>
             </attribute>
           </optional>
           <optional>
-            <attribute name='parent_wwnn'>
-              <ref name='wwn'/>
+            <attribute name="parent_wwnn">
+              <ref name="wwn"/>
             </attribute>
           </optional>
           <optional>
-            <attribute name='parent_wwpn'>
-              <ref name='wwn'/>
+            <attribute name="parent_wwpn">
+              <ref name="wwn"/>
             </attribute>
           </optional>
           <optional>
-            <attribute name='parent_fabric_wwn'>
-              <ref name='wwn'/>
+            <attribute name="parent_fabric_wwn">
+              <ref name="wwn"/>
             </attribute>
           </optional>
-          <attribute name='wwnn'>
-            <ref name='wwn'/>
+          <attribute name="wwnn">
+            <ref name="wwn"/>
           </attribute>
-          <attribute name='wwpn'>
-            <ref name='wwn'/>
+          <attribute name="wwpn">
+            <ref name="wwn"/>
           </attribute>
         </group>
       </choice>

docs/schemas/capability.rng

@@ -2,76 +2,67 @@
 <!-- A Relax NG schema for the libvirt capabilities XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0"
     datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
+  <include href="basictypes.rng"/>
+  <include href="cputypes.rng"/>
   <start>
-    <ref name='capabilities'/>
+    <ref name="capabilities"/>
   </start>
 
 
-  <define name='capabilities'>
-    <element name='capabilities'>
-      <ref name='hostcaps'/>
+  <define name="capabilities">
+    <element name="capabilities">
+      <ref name="hostcaps"/>
 
       <zeroOrMore>
-        <ref name='guestcaps'/>
+        <ref name="guestcaps"/>
       </zeroOrMore>
     </element>
   </define>
 
-  <define name='hostcaps'>
-    <element name='host'>
+  <define name="hostcaps">
+    <element name="host">
       <optional>
-        <element name='uuid'>
-          <ref name='UUID'/>
+        <element name="uuid">
+          <ref name="UUID"/>
         </element>
       </optional>
-      <element name='cpu'>
-        <element name='arch'>
-          <ref name='archnames'/>
-        </element>
-        <optional>
-          <ref name='cpufeatures'/>
-        </optional>
-        <optional>
-          <ref name='cpuspec'/>
-        </optional>
-      </element>
+      <ref name="hostcpu"/>
       <optional>
-        <ref name='power_management'/>
+        <ref name="power_management"/>
       </optional>
       <optional>
-        <ref name='iommu_support'/>
+        <ref name="iommu_support"/>
       </optional>
       <optional>
-        <ref name='migration'/>
+        <ref name="migration"/>
       </optional>
       <optional>
-        <ref name='topology'/>
+        <ref name="topology"/>
       </optional>
       <optional>
-        <ref name='cache'/>
+        <ref name="cache"/>
       </optional>
       <optional>
-        <ref name='memory_bandwidth'/>
+        <ref name="memory_bandwidth"/>
       </optional>
       <zeroOrMore>
-        <ref name='secmodel'/>
+        <ref name="secmodel"/>
       </zeroOrMore>
     </element>
   </define>
 
-  <define name='secmodel'>
-    <element name='secmodel'>
+  <define name="secmodel">
+    <element name="secmodel">
       <interleave>
-        <element name='model'>
+        <element name="model">
           <text/>
         </element>
-        <element name='doi'>
+        <element name="doi">
           <text/>
         </element>
         <zeroOrMore>
-          <element name='baselabel'>
-            <attribute name='type'>
+          <element name="baselabel">
+            <attribute name="type">
               <text/>
             </attribute>
             <text/>
@@ -81,79 +72,21 @@
     </element>
   </define>
 
-
-  <define name='cpufeatures'>
-    <element name='features'>
-      <optional>
-        <element name='pae'><empty/></element>
-      </optional>
-      <optional>
-        <element name='nonpae'><empty/></element>
-      </optional>
-      <optional>
-        <element name='vmx'><empty/></element>
-      </optional>
-      <optional>
-        <element name='svm'><empty/></element>
-      </optional>
-    </element>
-  </define>
-
-  <define name='cpuspec'>
-    <element name='model'>
-      <text/>
-    </element>
-    <optional>
-      <element name='vendor'>
-        <text/>
-      </element>
-    </optional>
-    <optional>
-      <element name='microcode'>
-        <attribute name='version'>
-          <ref name='positiveInteger'/>
-        </attribute>
-      </element>
-    </optional>
-    <element name='topology'>
-      <attribute name='sockets'>
-        <ref name='positiveInteger'/>
-      </attribute>
-      <attribute name='cores'>
-        <ref name='positiveInteger'/>
-      </attribute>
-      <attribute name='threads'>
-        <ref name='positiveInteger'/>
-      </attribute>
-    </element>
-    <zeroOrMore>
-      <element name='feature'>
-        <attribute name='name'>
-          <ref name='featureName'/>
-        </attribute>
-        <empty/>
-      </element>
-    </zeroOrMore>
-    <zeroOrMore>
-      <ref name='pagesHost'/>
-    </zeroOrMore>
-  </define>
-
-  <define name='power_management'>
-    <element name='power_management'>
+  <define name="power_management">
+    <element name="power_management">
       <interleave>
         <optional>
-          <element name='suspend_mem'>
+          <element name="suspend_mem">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='suspend_disk'>
+          <element name="suspend_disk">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='suspend_hybrid'>
+          <element name="suspend_hybrid">
             <empty/>
           </element>
         </optional>
@@ -161,27 +94,27 @@
     </element>
   </define>
 
-  <define name='iommu_support'>
-    <element name='iommu'>
+  <define name="iommu_support">
+    <element name="iommu">
       <optional>
-        <attribute name='support'>
-          <ref name='virYesNo'/>
+        <attribute name="support">
+          <ref name="virYesNo"/>
         </attribute>
       </optional>
     </element>
   </define>
 
-  <define name='migration'>
-    <element name='migration_features'>
+  <define name="migration">
+    <element name="migration_features">
       <optional>
-        <element name='live'>
+        <element name="live">
           <empty/>
         </element>
       </optional>
       <optional>
-        <element name='uri_transports'>
+        <element name="uri_transports">
           <oneOrMore>
-            <element name='uri_transport'>
+            <element name="uri_transport">
               <choice>
                 <value>vpxmigr</value>
                 <value>tcp</value>
@@ -195,42 +128,42 @@
     </element>
   </define>
 
-  <define name='topology'>
-    <element name='topology'>
-      <element name='cells'>
-        <attribute name='num'>
-          <ref name='unsignedInt'/>
+  <define name="topology">
+    <element name="topology">
+      <element name="cells">
+        <attribute name="num">
+          <ref name="unsignedInt"/>
         </attribute>
         <oneOrMore>
-          <ref name='cell'/>
+          <ref name="cell"/>
         </oneOrMore>
       </element>
     </element>
   </define>
 
-  <define name='cell'>
-    <element name='cell'>
-      <attribute name='id'>
-        <ref name='unsignedInt'/>
+  <define name="cell">
+    <element name="cell">
+      <attribute name="id">
+        <ref name="unsignedInt"/>
       </attribute>
 
       <optional>
-        <ref name='memory'/>
+        <ref name="memory"/>
       </optional>
 
       <zeroOrMore>
-        <ref name='pagesNuma'/>
+        <ref name="pagesNuma"/>
       </zeroOrMore>
 
       <optional>
-        <element name='distances'>
+        <element name="distances">
           <zeroOrMore>
-            <element name='sibling'>
-              <attribute name='id'>
-                <ref name='unsignedInt'/>
+            <element name="sibling">
+              <attribute name="id">
+                <ref name="unsignedInt"/>
               </attribute>
-              <attribute name='value'>
-                <ref name='unsignedInt'/>
+              <attribute name="value">
+                <ref name="unsignedInt"/>
               </attribute>
             </element>
           </zeroOrMore>
@@ -238,95 +171,95 @@
       </optional>
 
       <optional>
-        <element name='cpus'>
-          <attribute name='num'>
-            <ref name='unsignedInt'/>
+        <element name="cpus">
+          <attribute name="num">
+            <ref name="unsignedInt"/>
           </attribute>
           <oneOrMore>
-            <ref name='cpu'/>
+            <ref name="cpu"/>
           </oneOrMore>
         </element>
       </optional>
     </element>
   </define>
 
-  <define name='memory'>
-    <element name='memory'>
-      <ref name='scaledInteger'/>
+  <define name="memory">
+    <element name="memory">
+      <ref name="scaledInteger"/>
     </element>
   </define>
 
-  <define name='cpu'>
-    <element name='cpu'>
-      <attribute name='id'>
-        <ref name='unsignedInt'/>
+  <define name="cpu">
+    <element name="cpu">
+      <attribute name="id">
+        <ref name="unsignedInt"/>
       </attribute>
       <optional>
-        <attribute name='socket_id'>
-          <ref name='unsignedInt'/>
+        <attribute name="socket_id">
+          <ref name="unsignedInt"/>
         </attribute>
-        <attribute name='die_id'>
-          <ref name='unsignedInt'/>
+        <attribute name="die_id">
+          <ref name="unsignedInt"/>
         </attribute>
-        <attribute name='core_id'>
-          <ref name='unsignedInt'/>
+        <attribute name="core_id">
+          <ref name="unsignedInt"/>
         </attribute>
-        <attribute name='siblings'>
-          <ref name='cpuset'/>
+        <attribute name="siblings">
+          <ref name="cpuset"/>
         </attribute>
       </optional>
     </element>
   </define>
 
-  <define name='cache'>
-    <element name='cache'>
+  <define name="cache">
+    <element name="cache">
       <oneOrMore>
-        <element name='bank'>
-          <attribute name='id'>
-            <ref name='unsignedInt'/>
+        <element name="bank">
+          <attribute name="id">
+            <ref name="unsignedInt"/>
           </attribute>
-          <attribute name='level'>
-            <ref name='unsignedInt'/>
+          <attribute name="level">
+            <ref name="unsignedInt"/>
           </attribute>
-          <ref name='cacheType'/>
-          <attribute name='size'>
-            <ref name='unsignedInt'/>
+          <ref name="cacheType"/>
+          <attribute name="size">
+            <ref name="unsignedInt"/>
           </attribute>
-          <attribute name='unit'>
-            <ref name='unit'/>
+          <attribute name="unit">
+            <ref name="unit"/>
           </attribute>
-          <attribute name='cpus'>
-            <ref name='cpuset'/>
+          <attribute name="cpus">
+            <ref name="cpuset"/>
           </attribute>
           <zeroOrMore>
-            <element name='control'>
-              <attribute name='granularity'>
-                <ref name='unsignedInt'/>
+            <element name="control">
+              <attribute name="granularity">
+                <ref name="unsignedInt"/>
               </attribute>
               <optional>
-                <attribute name='min'>
-                  <ref name='unsignedInt'/>
+                <attribute name="min">
+                  <ref name="unsignedInt"/>
                 </attribute>
               </optional>
-              <attribute name='unit'>
-                <ref name='unit'/>
+              <attribute name="unit">
+                <ref name="unit"/>
               </attribute>
-              <ref name='cacheType'/>
-              <attribute name='maxAllocs'>
-                <ref name='unsignedInt'/>
+              <ref name="cacheType"/>
+              <attribute name="maxAllocs">
+                <ref name="unsignedInt"/>
               </attribute>
             </element>
           </zeroOrMore>
         </element>
       </oneOrMore>
       <optional>
-        <ref name='cpuMonitor'/>
+        <ref name="cpuMonitor"/>
       </optional>
     </element>
   </define>
 
-  <define name='cacheType'>
-    <attribute name='type'>
+  <define name="cacheType">
+    <attribute name="type">
       <choice>
         <value>both</value>
         <value>code</value>
@@ -335,83 +268,83 @@
     </attribute>
   </define>
 
-  <define name='memory_bandwidth'>
-    <element name='memory_bandwidth'>
+  <define name="memory_bandwidth">
+    <element name="memory_bandwidth">
       <oneOrMore>
-        <element name='node'>
-          <attribute name='id'>
-            <ref name='unsignedInt'/>
+        <element name="node">
+          <attribute name="id">
+            <ref name="unsignedInt"/>
           </attribute>
-          <attribute name='cpus'>
-            <ref name='cpuset'/>
+          <attribute name="cpus">
+            <ref name="cpuset"/>
           </attribute>
           <zeroOrMore>
-            <element name='control'>
-              <attribute name='granularity'>
-                <ref name='unsignedInt'/>
+            <element name="control">
+              <attribute name="granularity">
+                <ref name="unsignedInt"/>
               </attribute>
             <optional>
-              <attribute name='min'>
-                <ref name='unsignedInt'/>
+              <attribute name="min">
+                <ref name="unsignedInt"/>
               </attribute>
             </optional>
-              <attribute name='maxAllocs'>
-                <ref name='unsignedInt'/>
+              <attribute name="maxAllocs">
+                <ref name="unsignedInt"/>
               </attribute>
             </element>
           </zeroOrMore>
         </element>
       </oneOrMore>
       <optional>
-        <ref name='cpuMonitor'/>
+        <ref name="cpuMonitor"/>
       </optional>
     </element>
   </define>
 
-  <define name='cpuMonitor'>
-    <element name='monitor'>
+  <define name="cpuMonitor">
+    <element name="monitor">
       <optional>
-        <attribute name='level'>
-          <ref name='unsignedInt'/>
+        <attribute name="level">
+          <ref name="unsignedInt"/>
         </attribute>
-        <attribute name='reuseThreshold'>
-          <ref name='unsignedInt'/>
+        <attribute name="reuseThreshold">
+          <ref name="unsignedInt"/>
         </attribute>
       </optional>
-      <attribute name='maxMonitors'>
-        <ref name='unsignedInt'/>
+      <attribute name="maxMonitors">
+        <ref name="unsignedInt"/>
       </attribute>
       <oneOrMore>
-        <element name='feature'>
-          <attribute name='name'>
-            <ref name='monitorFeature'/>
+        <element name="feature">
+          <attribute name="name">
+            <ref name="monitorFeature"/>
           </attribute>
         </element>
       </oneOrMore>
     </element>
   </define>
 
-  <define name='monitorFeature'>
-    <data type='string'>
-      <param name='pattern'>(llc_|mbm_)[a-zA-Z0-9\-_]+</param>
+  <define name="monitorFeature">
+    <data type="string">
+      <param name="pattern">(llc_|mbm_)[a-zA-Z0-9\-_]+</param>
     </data>
   </define>
 
-  <define name='guestcaps'>
-    <element name='guest'>
-      <ref name='ostype'/>
-      <ref name='arch'/>
+  <define name="guestcaps">
+    <element name="guest">
+      <ref name="ostype"/>
+      <ref name="arch"/>
       <optional>
-        <ref name='features'/>
+        <ref name="features"/>
       </optional>
     </element>
   </define>
 
-  <define name='ostype'>
-    <element name='os_type'>
+  <define name="ostype">
+    <element name="os_type">
       <choice>
         <value>xen</value> <!-- Xen 3.0 pv -->
-        <value>linux</value> <!-- same as 'xen' - meant to be legacy -->
+        <value>linux</value> <!-- same as "xen" - meant to be legacy -->
         <value>hvm</value> <!-- unmodified OS -->
         <value>exe</value> <!-- For container based virt -->
         <value>uml</value> <!-- user mode linux; NOT USED ANYMORE -->
@@ -419,41 +352,41 @@
     </element>
   </define>
 
-  <define name='arch'>
-    <element name='arch'>
-      <attribute name='name'>
-        <ref name='archnames'/>
+  <define name="arch">
+    <element name="arch">
+      <attribute name="name">
+        <ref name="archnames"/>
       </attribute>
-      <ref name='wordsize'/>
+      <ref name="wordsize"/>
       <optional>
-        <ref name='emulator'/>
+        <ref name="emulator"/>
       </optional>
       <optional>
-        <ref name='loader'/>
+        <ref name="loader"/>
       </optional>
       <zeroOrMore>
-        <ref name='machine'/>
+        <ref name="machine"/>
       </zeroOrMore>
       <oneOrMore>
-        <ref name='domain'/>
+        <ref name="domain"/>
       </oneOrMore>
     </element>
   </define>
 
-  <define name='emulator'>
-    <element name='emulator'>
-      <ref name='absFilePath'/>
+  <define name="emulator">
+    <element name="emulator">
+      <ref name="absFilePath"/>
     </element>
   </define>
 
-  <define name='loader'>
-    <element name='loader'>
-      <ref name='absFilePath'/>
+  <define name="loader">
+    <element name="loader">
+      <ref name="absFilePath"/>
     </element>
   </define>
 
-  <define name='wordsize'>
-    <element name='wordsize'>
+  <define name="wordsize">
+    <element name="wordsize">
       <choice>
         <value>31</value>
         <value>32</value>
@@ -462,25 +395,25 @@
     </element>
   </define>
 
-  <define name='machine'>
-    <element name='machine'>
+  <define name="machine">
+    <element name="machine">
       <optional>
-        <attribute name='canonical'>
+        <attribute name="canonical">
           <text/>
         </attribute>
       </optional>
       <optional>
-        <attribute name='maxCpus'>
-          <ref name='unsignedInt'/>
+        <attribute name="maxCpus">
+          <ref name="unsignedInt"/>
         </attribute>
       </optional>
       <text/>
     </element>
   </define>
 
-  <define name='domain'>
-    <element name='domain'>
-      <attribute name='type'>
+  <define name="domain">
+    <element name="domain">
+      <attribute name="type">
         <choice>
           <value>qemu</value>
           <value>kqemu</value>
@@ -494,63 +427,63 @@
       </attribute>
 
       <optional>
-        <ref name='emulator'/>
+        <ref name="emulator"/>
       </optional>
       <zeroOrMore>
-        <ref name='machine'/>
+        <ref name="machine"/>
       </zeroOrMore>
     </element>
   </define>
 
-  <define name='features'>
-    <element name='features'>
+  <define name="features">
+    <element name="features">
       <interleave>
         <optional>
-          <element name='pae'>
+          <element name="pae">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='nonpae'>
+          <element name="nonpae">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='ia64_be'>
+          <element name="ia64_be">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='acpi'>
-            <ref name='featuretoggle'/>
+          <element name="acpi">
+            <ref name="featuretoggle"/>
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='apic'>
-            <ref name='featuretoggle'/>
+          <element name="apic">
+            <ref name="featuretoggle"/>
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='cpuselection'>
+          <element name="cpuselection">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='deviceboot'>
+          <element name="deviceboot">
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='disksnapshot'>
-            <ref name='featuretoggle'/>
+          <element name="disksnapshot">
+            <ref name="featuretoggle"/>
             <empty/>
           </element>
         </optional>
         <optional>
-          <element name='hap'>
-            <ref name='featuretoggle'/>
+          <element name="hap">
+            <ref name="featuretoggle"/>
             <empty/>
           </element>
         </optional>
@@ -558,40 +491,29 @@
     </element>
   </define>
 
-  <define name='featuretoggle'>
-    <attribute name='toggle'>
+  <define name="featuretoggle">
+    <attribute name="toggle">
       <ref name="virYesNo"/>
     </attribute>
-    <attribute name='default'>
+    <attribute name="default">
       <ref name="virOnOff"/>
     </attribute>
   </define>
 
-  <define name='featureName'>
-    <data type='string'>
-      <param name='pattern'>[a-zA-Z0-9\-_]+</param>
-    </data>
-  </define>
-
-  <define name='pagesHost'>
-    <element name='pages'>
-      <ref name='pagesElem'/>
+  <define name="pagesNuma">
+    <element name="pages">
+      <ref name="pagesElem"/>
+      <ref name="unsignedInt"/>
     </element>
   </define>
-  <define name='pagesNuma'>
-    <element name='pages'>
-      <ref name='pagesElem'/>
-      <ref name='unsignedInt'/>
-    </element>
-  </define>
-  <define name='pagesElem'>
+  <define name="pagesElem">
     <optional>
-      <attribute name='unit'>
-        <ref name='unit'/>
+      <attribute name="unit">
+        <ref name="unit"/>
       </attribute>
     </optional>
-    <attribute name='size'>
-      <ref name='unsignedInt'/>
+    <attribute name="size">
+      <ref name="unsignedInt"/>
     </attribute>
   </define>
 </grammar>

docs/schemas/cpu.rng

@@ -0,0 +1,12 @@
+<?xml version="1.0"?>
+<grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
+  <include href="basictypes.rng"/>
+  <include href="cputypes.rng"/>
+
+  <start>
+    <choice>
+      <ref name="guestcpu"/>
+      <ref name="hostcpu"/>
+    </choice>
+  </start>
+</grammar>

docs/schemas/cputypes.rng

@@ -46,7 +46,7 @@
       <optional>
         <attribute name="vendor_id">
           <data type="string">
-            <param name='pattern'>[^,]{12}</param>
+            <param name="pattern">[^,]{12}</param>
           </data>
         </attribute>
       </optional>
@@ -274,7 +274,7 @@
   </define>
   <define name="featureName">
     <data type="string">
-      <param name='pattern'>[a-zA-Z0-9\-_\.]+</param>
+      <param name="pattern">[a-zA-Z0-9\-_\.]+</param>
     </data>
   </define>
 
@@ -299,4 +299,119 @@
     </element>
   </define>
 
+  <define name="hostcpu">
+    <element name="cpu">
+      <element name="arch">
+        <ref name="archnames"/>
+      </element>
+      <optional>
+        <element name="features">
+          <optional>
+            <element name="pae"><empty/></element>
+          </optional>
+          <optional>
+            <element name="nonpae"><empty/></element>
+          </optional>
+          <optional>
+            <element name="vmx"><empty/></element>
+          </optional>
+          <optional>
+            <element name="svm"><empty/></element>
+          </optional>
+        </element>
+      </optional>
+      <optional>
+        <element name="model">
+          <text/>
+        </element>
+        <optional>
+          <element name="vendor">
+            <text/>
+          </element>
+        </optional>
+        <optional>
+          <element name="microcode">
+            <attribute name="version">
+              <ref name="positiveInteger"/>
+            </attribute>
+          </element>
+        </optional>
+        <optional>
+          <element name="topology">
+            <attribute name="sockets">
+              <ref name="positiveInteger"/>
+            </attribute>
+            <attribute name="cores">
+              <ref name="positiveInteger"/>
+            </attribute>
+            <attribute name="threads">
+              <ref name="positiveInteger"/>
+            </attribute>
+          </element>
+        </optional>
+        <zeroOrMore>
+          <element name="feature">
+            <attribute name="name">
+              <data type="string">
+                <param name="pattern">[a-zA-Z0-9\-_]+</param>
+              </data>
+            </attribute>
+            <empty/>
+          </element>
+        </zeroOrMore>
+        <zeroOrMore>
+          <element name="pages">
+            <optional>
+              <attribute name="unit">
+                <ref name="unit"/>
+              </attribute>
+            </optional>
+            <attribute name="size">
+              <ref name="unsignedInt"/>
+            </attribute>
+          </element>
+        </zeroOrMore>
+      </optional>
+    </element>
+  </define>
+
+  <define name="guestcpu">
+    <element name="cpu">
+      <optional>
+        <ref name="cpuMode"/>
+      </optional>
+      <optional>
+        <ref name="cpuMatch"/>
+      </optional>
+      <optional>
+        <ref name="cpuCheck"/>
+      </optional>
+      <optional>
+        <attribute name="migratable">
+          <ref name="virOnOff"/>
+        </attribute>
+      </optional>
+      <interleave>
+        <optional>
+          <ref name="cpuModel"/>
+        </optional>
+        <optional>
+          <ref name="cpuVendor"/>
+        </optional>
+        <optional>
+          <ref name="cpuTopology"/>
+        </optional>
+        <zeroOrMore>
+          <ref name="cpuFeature"/>
+        </zeroOrMore>
+        <optional>
+          <ref name="cpuNuma"/>
+        </optional>
+        <optional>
+          <ref name="cpuCache"/>
+        </optional>
+      </interleave>
+    </element>
+  </define>
+
 </grammar>

docs/schemas/domain.rng

@@ -6,16 +6,16 @@
     <ref name="domain"/>
   </start>
 
-  <include href='domaincommon.rng'/>
+  <include href="domaincommon.rng"/>
 
-  <define name='storageStartupPolicy' combine='choice'>
+  <define name="storageStartupPolicy" combine="choice">
     <!-- overrides the no-op version in storagecommon.rng -->
-    <ref name='startupPolicy'/>
+    <ref name="startupPolicy"/>
   </define>
 
-  <define name='storageSourceExtra' combine='choice'>
+  <define name="storageSourceExtra" combine="choice">
     <!-- overrides the no-op version in storagecommon.rng -->
-    <ref name='diskspec'/>
+    <ref name="diskspec"/>
   </define>
 
 </grammar>

docs/schemas/domainbackup.rng

@@ -2,57 +2,57 @@
 <!-- A Relax NG schema for the libvirt domain backup properties XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0">
   <start>
-    <ref name='domainbackup'/>
+    <ref name="domainbackup"/>
   </start>
 
-  <include href='domaincommon.rng'/>
+  <include href="domaincommon.rng"/>
 
-  <define name='backupEncryption'>
-    <element name='encryption'>
-      <attribute name='format'>
+  <define name="backupEncryption">
+    <element name="encryption">
+      <attribute name="format">
         <choice>
           <value>luks</value>
         </choice>
       </attribute>
       <interleave>
-        <ref name='secret'/>
+        <ref name="secret"/>
         <optional>
-          <element name='cipher'>
-            <ref name='keycipher'/>
+          <element name="cipher">
+            <ref name="keycipher"/>
           </element>
-          <element name='ivgen'>
-            <ref name='keyivgen'/>
+          <element name="ivgen">
+            <ref name="keyivgen"/>
           </element>
         </optional>
       </interleave>
     </element>
   </define>
 
-  <define name='domainbackup'>
-    <element name='domainbackup'>
+  <define name="domainbackup">
+    <element name="domainbackup">
       <interleave>
         <optional>
-          <element name='incremental'>
+          <element name="incremental">
             <text/>
           </element>
         </optional>
         <choice>
           <group>
             <optional>
-              <attribute name='mode'>
+              <attribute name="mode">
                 <value>push</value>
               </attribute>
             </optional>
-            <ref name='backupDisksPush'/>
+            <ref name="backupDisksPush"/>
           </group>
           <group>
-            <attribute name='mode'>
+            <attribute name="mode">
               <value>pull</value>
             </attribute>
             <interleave>
-              <element name='server'>
+              <element name="server">
                 <optional>
-                  <attribute name='tls'>
+                  <attribute name="tls">
                     <choice>
                       <value>yes</value>
                       <value>no</value>
@@ -62,33 +62,33 @@
                 <choice>
                   <group>
                     <optional>
-                      <attribute name='transport'>
+                      <attribute name="transport">
                         <value>tcp</value>
                       </attribute>
                     </optional>
-                    <attribute name='name'>
+                    <attribute name="name">
                       <choice>
-                        <ref name='dnsName'/>
-                        <ref name='ipAddr'/>
+                        <ref name="dnsName"/>
+                        <ref name="ipAddr"/>
                       </choice>
                     </attribute>
                     <optional>
-                      <attribute name='port'>
-                        <ref name='unsignedInt'/>
+                      <attribute name="port">
+                        <ref name="unsignedInt"/>
                       </attribute>
                     </optional>
                   </group>
                   <group>
-                    <attribute name='transport'>
+                    <attribute name="transport">
                       <value>unix</value>
                     </attribute>
-                    <attribute name='socket'>
-                      <ref name='absFilePath'/>
+                    <attribute name="socket">
+                      <ref name="absFilePath"/>
                     </attribute>
                   </group>
                 </choice>
               </element>
-              <ref name='backupDisksPull'/>
+              <ref name="backupDisksPull"/>
             </interleave>
           </group>
         </choice>
@@ -97,49 +97,49 @@
   </define>
 
 
-  <define name='backupDiskMode'>
+  <define name="backupDiskMode">
     <optional>
       <choice>
-        <attribute name='backupmode'>
+        <attribute name="backupmode">
           <value>full</value>
         </attribute>
         <group>
           <optional>
-            <attribute name='backupmode'>
+            <attribute name="backupmode">
               <value>incremental</value>
             </attribute>
           </optional>
           <optional>
-            <attribute name='incremental'/>
+            <attribute name="incremental"/>
           </optional>
         </group>
       </choice>
     </optional>
   </define>
 
-  <define name='backupPushDriver'>
+  <define name="backupPushDriver">
     <optional>
-      <element name='driver'>
-        <attribute name='type'>
-          <ref name='storageFormat'/>
+      <element name="driver">
+        <attribute name="type">
+          <ref name="storageFormat"/>
         </attribute>
       </element>
     </optional>
   </define>
 
-  <define name='backupPullDriver'>
+  <define name="backupPullDriver">
     <optional>
-      <element name='driver'>
-        <attribute name='type'>
+      <element name="driver">
+        <attribute name="type">
           <value>qcow2</value>
         </attribute>
       </element>
     </optional>
   </define>
 
-  <define name='backupAttr'>
+  <define name="backupAttr">
     <optional>
-      <attribute name='backup'>
+      <attribute name="backup">
         <choice>
           <value>yes</value>
         </choice>
@@ -147,67 +147,67 @@
     </optional>
   </define>
 
-  <define name='backupDisksPush'>
+  <define name="backupDisksPush">
     <optional>
-      <element name='disks'>
+      <element name="disks">
         <oneOrMore>
-          <element name='disk'>
-            <attribute name='name'>
-              <ref name='diskTarget'/>
+          <element name="disk">
+            <attribute name="name">
+              <ref name="diskTarget"/>
             </attribute>
-            <ref name='backupDiskMode'/>
+            <ref name="backupDiskMode"/>
             <choice>
               <group>
-                <attribute name='backup'>
+                <attribute name="backup">
                   <value>no</value>
                 </attribute>
               </group>
               <group>
-                <ref name='backupAttr'/>
-                <attribute name='type'>
+                <ref name="backupAttr"/>
+                <attribute name="type">
                   <value>file</value>
                 </attribute>
                 <interleave>
                   <optional>
-                    <element name='target'>
-                      <attribute name='file'>
-                        <ref name='absFilePath'/>
+                    <element name="target">
+                      <attribute name="file">
+                        <ref name="absFilePath"/>
                       </attribute>
                       <interleave>
                         <zeroOrMore>
-                          <ref name='devSeclabel'/>
+                          <ref name="devSeclabel"/>
                         </zeroOrMore>
                         <optional>
-                          <ref name='backupEncryption'/>
+                          <ref name="backupEncryption"/>
                         </optional>
                       </interleave>
                     </element>
                   </optional>
-                  <ref name='backupPushDriver'/>
+                  <ref name="backupPushDriver"/>
                 </interleave>
               </group>
               <group>
-                <ref name='backupAttr'/>
-                <attribute name='type'>
+                <ref name="backupAttr"/>
+                <attribute name="type">
                   <value>block</value>
                 </attribute>
                 <interleave>
                   <optional>
-                    <element name='target'>
-                      <attribute name='dev'>
-                        <ref name='absFilePath'/>
+                    <element name="target">
+                      <attribute name="dev">
+                        <ref name="absFilePath"/>
                       </attribute>
                       <interleave>
                         <zeroOrMore>
-                          <ref name='devSeclabel'/>
+                          <ref name="devSeclabel"/>
                         </zeroOrMore>
                         <optional>
-                          <ref name='backupEncryption'/>
+                          <ref name="backupEncryption"/>
                         </optional>
                       </interleave>
                     </element>
                   </optional>
-                  <ref name='backupPushDriver'/>
+                  <ref name="backupPushDriver"/>
                 </interleave>
               </group>
             </choice>
@@ -217,77 +217,77 @@
     </optional>
   </define>
 
-  <define name='backupDisksPull'>
+  <define name="backupDisksPull">
     <optional>
-      <element name='disks'>
+      <element name="disks">
         <oneOrMore>
-          <element name='disk'>
-            <attribute name='name'>
-              <ref name='diskTarget'/>
+          <element name="disk">
+            <attribute name="name">
+              <ref name="diskTarget"/>
             </attribute>
-            <ref name='backupDiskMode'/>
+            <ref name="backupDiskMode"/>
             <optional>
-              <attribute name='exportname'>
+              <attribute name="exportname">
                 <text/>
               </attribute>
             </optional>
             <optional>
-              <attribute name='exportbitmap'>
+              <attribute name="exportbitmap">
                 <text/>
               </attribute>
             </optional>
             <choice>
               <group>
-                <attribute name='backup'>
+                <attribute name="backup">
                   <value>no</value>
                 </attribute>
               </group>
               <group>
                 <optional>
-                  <ref name='backupAttr'/>
-                  <attribute name='type'>
+                  <ref name="backupAttr"/>
+                  <attribute name="type">
                     <value>file</value>
                   </attribute>
                 </optional>
                 <optional>
                   <interleave>
-                    <element name='scratch'>
-                      <attribute name='file'>
-                        <ref name='absFilePath'/>
+                    <element name="scratch">
+                      <attribute name="file">
+                        <ref name="absFilePath"/>
                       </attribute>
                       <interleave>
                         <zeroOrMore>
-                          <ref name='devSeclabel'/>
+                          <ref name="devSeclabel"/>
                         </zeroOrMore>
                         <optional>
-                          <ref name='backupEncryption'/>
+                          <ref name="backupEncryption"/>
                         </optional>
                       </interleave>
                     </element>
-                    <ref name='backupPullDriver'/>
+                    <ref name="backupPullDriver"/>
                   </interleave>
                 </optional>
               </group>
               <group>
-                <ref name='backupAttr'/>
-                <attribute name='type'>
+                <ref name="backupAttr"/>
+                <attribute name="type">
                   <value>block</value>
                 </attribute>
                 <interleave>
-                  <element name='scratch'>
-                    <attribute name='dev'>
-                      <ref name='absFilePath'/>
+                  <element name="scratch">
+                    <attribute name="dev">
+                      <ref name="absFilePath"/>
                     </attribute>
                     <interleave>
                       <zeroOrMore>
-                        <ref name='devSeclabel'/>
+                        <ref name="devSeclabel"/>
                       </zeroOrMore>
                       <optional>
-                        <ref name='backupEncryption'/>
+                        <ref name="backupEncryption"/>
                       </optional>
                     </interleave>
                   </element>
-                  <ref name='backupPullDriver'/>
+                  <ref name="backupPullDriver"/>
                 </interleave>
               </group>
             </choice>

docs/schemas/domaincaps.rng

@@ -1,116 +1,116 @@
 <?xml version="1.0"?>
 <!-- A Relax NG schema for the libvirt domain capabilities XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
-  <include href='cputypes.rng'/>
+  <include href="basictypes.rng"/>
+  <include href="cputypes.rng"/>
   <start>
-    <ref name='domainCapabilities'/>
+    <ref name="domainCapabilities"/>
   </start>
 
 
-  <define name='domainCapabilities'>
-    <element name='domainCapabilities'>
+  <define name="domainCapabilities">
+    <element name="domainCapabilities">
       <interleave>
-        <element name='path'>
+        <element name="path">
           <ref name="absFilePath"/>
         </element>
-        <element name='domain'>
+        <element name="domain">
           <text/>
         </element>
         <optional>
-          <element name='machine'>
+          <element name="machine">
             <text/>
           </element>
         </optional>
-        <element name='arch'>
+        <element name="arch">
           <text/>
         </element>
         <optional>
-          <ref name='vcpu'/>
+          <ref name="vcpu"/>
         </optional>
         <optional>
-          <ref name='iothreads'/>
+          <ref name="iothreads"/>
         </optional>
         <optional>
-          <ref name='os'/>
+          <ref name="os"/>
         </optional>
         <optional>
-          <ref name='cpu'/>
+          <ref name="cpu"/>
         </optional>
         <optional>
-          <ref name='devices'/>
+          <ref name="devices"/>
         </optional>
         <optional>
-          <ref name='features'/>
+          <ref name="features"/>
         </optional>
       </interleave>
     </element>
   </define>
 
-  <define name='vcpu'>
-    <element name='vcpu'>
-      <attribute name='max'>
-        <ref name='unsignedInt'/>
+  <define name="vcpu">
+    <element name="vcpu">
+      <attribute name="max">
+        <ref name="unsignedInt"/>
       </attribute>
       <empty/>
     </element>
   </define>
 
-  <define name='iothreads'>
-    <element name='iothreads'>
-      <ref name='supported'/>
+  <define name="iothreads">
+    <element name="iothreads">
+      <ref name="supported"/>
       <empty/>
     </element>
   </define>
 
-  <define name='loader'>
-    <element name='loader'>
-      <ref name='supported'/>
+  <define name="loader">
+    <element name="loader">
+      <ref name="supported"/>
       <optional>
-        <ref name='value'/>
+        <ref name="value"/>
       </optional>
-      <ref name='enum'/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='os'>
-    <element name='os'>
+  <define name="os">
+    <element name="os">
       <interleave>
-        <ref name='supported'/>
-        <ref name='enum'/>
+        <ref name="supported"/>
+        <ref name="enum"/>
         <optional>
-          <ref name='loader'/>
+          <ref name="loader"/>
         </optional>
       </interleave>
     </element>
   </define>
 
-  <define name='cpu'>
-    <element name='cpu'>
-      <ref name='cpuHost'/>
-      <ref name='cpuHostModel'/>
-      <ref name='cpuCustom'/>
+  <define name="cpu">
+    <element name="cpu">
+      <ref name="cpuHost"/>
+      <ref name="cpuHostModel"/>
+      <ref name="cpuCustom"/>
     </element>
   </define>
 
-  <define name='cpuHost'>
-    <element name='mode'>
-      <attribute name='name'>
+  <define name="cpuHost">
+    <element name="mode">
+      <attribute name="name">
         <value>host-passthrough</value>
       </attribute>
-      <ref name='supported'/>
+      <ref name="supported"/>
       <optional>
-        <ref name='enum'/>
+        <ref name="enum"/>
       </optional>
     </element>
   </define>
 
-  <define name='cpuHostModel'>
-    <element name='mode'>
-      <attribute name='name'>
+  <define name="cpuHostModel">
+    <element name="mode">
+      <attribute name="name">
         <value>host-model</value>
       </attribute>
-      <ref name='supported'/>
+      <ref name="supported"/>
       <optional>
         <ref name="cpuModel"/>
         <optional>
@@ -123,15 +123,15 @@
     </element>
   </define>
 
-  <define name='cpuCustom'>
-    <element name='mode'>
-      <attribute name='name'>
+  <define name="cpuCustom">
+    <element name="mode">
+      <attribute name="name">
         <value>custom</value>
       </attribute>
-      <ref name='supported'/>
+      <ref name="supported"/>
       <zeroOrMore>
-        <element name='model'>
-          <attribute name='usable'>
+        <element name="model">
+          <attribute name="usable">
             <choice>
               <value>yes</value>
               <value>no</value>
@@ -144,150 +144,150 @@
     </element>
   </define>
 
-  <define name='devices'>
-    <element name='devices'>
+  <define name="devices">
+    <element name="devices">
       <optional>
-        <ref name='disk'/>
+        <ref name="disk"/>
       </optional>
       <optional>
-        <ref name='graphics'/>
+        <ref name="graphics"/>
       </optional>
       <optional>
-        <ref name='video'/>
+        <ref name="video"/>
       </optional>
       <optional>
-        <ref name='hostdev'/>
+        <ref name="hostdev"/>
       </optional>
       <optional>
-        <ref name='rng'/>
+        <ref name="rng"/>
       </optional>
     </element>
   </define>
 
-  <define name='disk'>
-    <element name='disk'>
-      <ref name='supported'/>
-      <ref name='enum'/>
+  <define name="disk">
+    <element name="disk">
+      <ref name="supported"/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='graphics'>
-    <element name='graphics'>
-      <ref name='supported'/>
-      <ref name='enum'/>
+  <define name="graphics">
+    <element name="graphics">
+      <ref name="supported"/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='video'>
-    <element name='video'>
-      <ref name='supported'/>
-      <ref name='enum'/>
+  <define name="video">
+    <element name="video">
+      <ref name="supported"/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='hostdev'>
-    <element name='hostdev'>
-      <ref name='supported'/>
-      <ref name='enum'/>
+  <define name="hostdev">
+    <element name="hostdev">
+      <ref name="supported"/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='rng'>
-    <element name='rng'>
-      <ref name='supported'/>
-      <ref name='enum'/>
+  <define name="rng">
+    <element name="rng">
+      <ref name="supported"/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='features'>
-    <element name='features'>
+  <define name="features">
+    <element name="features">
       <optional>
-        <ref name='gic'/>
+        <ref name="gic"/>
       </optional>
       <optional>
-        <ref name='vmcoreinfo'/>
+        <ref name="vmcoreinfo"/>
       </optional>
       <optional>
-        <ref name='vmgenid'/>
+        <ref name="vmgenid"/>
       </optional>
       <optional>
-        <ref name='backingStoreInput'/>
+        <ref name="backingStoreInput"/>
       </optional>
       <optional>
-        <ref name='backup'/>
+        <ref name="backup"/>
       </optional>
       <optional>
-        <ref name='sev'/>
+        <ref name="sev"/>
       </optional>
     </element>
   </define>
 
-  <define name='gic'>
-    <element name='gic'>
-      <ref name='supported'/>
-      <ref name='enum'/>
+  <define name="gic">
+    <element name="gic">
+      <ref name="supported"/>
+      <ref name="enum"/>
     </element>
   </define>
 
-  <define name='vmcoreinfo'>
-    <element name='vmcoreinfo'>
-      <ref name='supported'/>
+  <define name="vmcoreinfo">
+    <element name="vmcoreinfo">
+      <ref name="supported"/>
     </element>
   </define>
 
-  <define name='vmgenid'>
-    <element name='genid'>
-      <ref name='supported'/>
+  <define name="vmgenid">
+    <element name="genid">
+      <ref name="supported"/>
     </element>
   </define>
 
-  <define name='backingStoreInput'>
-    <element name='backingStoreInput'>
-      <ref name='supported'/>
+  <define name="backingStoreInput">
+    <element name="backingStoreInput">
+      <ref name="supported"/>
     </element>
   </define>
 
-  <define name='backup'>
-    <element name='backup'>
-      <ref name='supported'/>
+  <define name="backup">
+    <element name="backup">
+      <ref name="supported"/>
     </element>
   </define>
 
-  <define name='sev'>
-    <element name='sev'>
-      <ref name='supported'/>
+  <define name="sev">
+    <element name="sev">
+      <ref name="supported"/>
       <optional>
-        <element name='cbitpos'>
-          <data type='unsignedInt'/>
+        <element name="cbitpos">
+          <data type="unsignedInt"/>
         </element>
-        <element name='reducedPhysBits'>
-          <data type='unsignedInt'/>
+        <element name="reducedPhysBits">
+          <data type="unsignedInt"/>
         </element>
       </optional>
     </element>
   </define>
 
-  <define name='value'>
+  <define name="value">
     <zeroOrMore>
-      <element name='value'>
+      <element name="value">
         <text/>
       </element>
     </zeroOrMore>
   </define>
 
-  <define name='supported'>
-    <attribute name='supported'>
+  <define name="supported">
+    <attribute name="supported">
       <ref name="virYesNo"/>
     </attribute>
   </define>
 
-  <define name='enum'>
+  <define name="enum">
     <zeroOrMore>
-      <element name='enum'>
-        <attribute name='name'>
+      <element name="enum">
+        <attribute name="name">
           <text/>
         </attribute>
-        <ref name='value'/>
+        <ref name="value"/>
       </element>
     </zeroOrMore>
   </define>

docs/schemas/domaincheckpoint.rng

@@ -1,34 +1,34 @@
-<?xml version='1.0'?>
+<?xml version="1.0"?>
 <!-- A Relax NG schema for the libvirt domain checkpoint properties XML format -->
-<grammar xmlns='http://relaxng.org/ns/structure/1.0' datatypeLibrary='http://www.w3.org/2001/XMLSchema-datatypes'>
+<grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
   <start>
-    <ref name='domaincheckpoint'/>
+    <ref name="domaincheckpoint"/>
   </start>
 
-  <include href='domaincommon.rng'/>
+  <include href="domaincommon.rng"/>
 
-  <define name='domaincheckpoint'>
-    <element name='domaincheckpoint'>
+  <define name="domaincheckpoint">
+    <element name="domaincheckpoint">
       <interleave>
         <optional>
-          <element name='name'>
-            <ref name='checkpointName'/>
+          <element name="name">
+            <ref name="checkpointName"/>
           </element>
         </optional>
         <optional>
-          <element name='description'>
+          <element name="description">
             <text/>
           </element>
         </optional>
         <optional>
-          <element name='creationTime'>
-            <ref name='unsignedLong'/>
+          <element name="creationTime">
+            <ref name="unsignedLong"/>
           </element>
         </optional>
         <optional>
-          <element name='disks'>
+          <element name="disks">
             <oneOrMore>
-              <ref name='diskcheckpoint'/>
+              <ref name="diskcheckpoint"/>
             </oneOrMore>
           </element>
         </optional>
@@ -37,13 +37,13 @@
                storagecommon/domaincommon defines do not conflict
                with any domain.rng overrides.  -->
           <grammar>
-            <include href='domain.rng'/>
+            <include href="domain.rng"/>
           </grammar>
         </optional>
         <optional>
-          <element name='parent'>
-            <element name='name'>
-              <ref name='checkpointName'/>
+          <element name="parent">
+            <element name="name">
+              <ref name="checkpointName"/>
             </element>
           </element>
         </optional>
@@ -51,32 +51,32 @@
     </element>
   </define>
 
-  <define name='diskcheckpoint'>
-    <element name='disk'>
-      <attribute name='name'>
+  <define name="diskcheckpoint">
+    <element name="disk">
+      <attribute name="name">
         <choice>
-          <ref name='diskTarget'/>
-          <ref name='absFilePath'/>
+          <ref name="diskTarget"/>
+          <ref name="absFilePath"/>
         </choice>
       </attribute>
       <choice>
-        <attribute name='checkpoint'>
+        <attribute name="checkpoint">
           <value>no</value>
         </attribute>
         <group>
           <optional>
-            <attribute name='checkpoint'>
+            <attribute name="checkpoint">
               <value>bitmap</value>
             </attribute>
           </optional>
           <optional>
-            <attribute name='bitmap'>
+            <attribute name="bitmap">
               <text/>
             </attribute>
           </optional>
           <optional>
-            <attribute name='size'>
-              <ref name='unsignedLong'/>
+            <attribute name="size">
+              <ref name="unsignedLong"/>
             </attribute>
           </optional>
         </group>
@@ -84,10 +84,10 @@
     </element>
   </define>
 
-  <define name='checkpointName'>
-    <data type='string'>
-      <!-- Notably: no leading '.' and no embedded '/' or newline -->
-      <param name='pattern'>[a-zA-Z0-9_\-][a-zA-Z0-9_\-.]*</param>
+  <define name="checkpointName">
+    <data type="string">
+      <!-- Notably: no leading "." and no embedded "/" or newline -->
+      <param name="pattern">[a-zA-Z0-9_\-][a-zA-Z0-9_\-.]*</param>
     </data>
   </define>
 

docs/schemas/domainsnapshot.rng

@@ -2,38 +2,38 @@
 <!-- A Relax NG schema for the libvirt domain snapshot properties XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0">
   <start>
-    <ref name='domainsnapshot'/>
+    <ref name="domainsnapshot"/>
   </start>
 
-  <include href='domaincommon.rng'/>
+  <include href="domaincommon.rng"/>
 
-  <define name='domainsnapshot'>
-    <element name='domainsnapshot'>
+  <define name="domainsnapshot">
+    <element name="domainsnapshot">
       <interleave>
         <optional>
-          <element name='name'>
+          <element name="name">
             <text/>
           </element>
         </optional>
         <optional>
-          <element name='description'>
+          <element name="description">
             <text/>
           </element>
         </optional>
         <optional>
-          <element name='state'>
-            <ref name='state'/>
+          <element name="state">
+            <ref name="state"/>
           </element>
         </optional>
         <optional>
-          <element name='creationTime'>
+          <element name="creationTime">
             <text/>
           </element>
         </optional>
         <optional>
-          <element name='memory'>
+          <element name="memory">
             <choice>
-              <attribute name='snapshot'>
+              <attribute name="snapshot">
                 <choice>
                   <value>no</value>
                   <value>internal</value>
@@ -41,12 +41,12 @@
               </attribute>
               <group>
                 <optional>
-                  <attribute name='snapshot'>
+                  <attribute name="snapshot">
                     <value>external</value>
                   </attribute>
                 </optional>
-                <attribute name='file'>
-                  <ref name='absFilePath'/>
+                <attribute name="file">
+                  <ref name="absFilePath"/>
                 </attribute>
               </group>
             </choice>
@@ -54,14 +54,14 @@
           </element>
         </optional>
         <optional>
-          <element name='disks'>
+          <element name="disks">
             <zeroOrMore>
-              <ref name='disksnapshot'/>
+              <ref name="disksnapshot"/>
             </zeroOrMore>
           </element>
         </optional>
         <optional>
-          <element name='active'>
+          <element name="active">
             <choice>
               <value>0</value>
               <value>1</value>
@@ -70,8 +70,8 @@
         </optional>
         <optional>
           <choice>
-            <element name='domain'>
-              <element name='uuid'>
+            <element name="domain">
+              <element name="uuid">
                 <ref name="UUID"/>
               </element>
             </element>
@@ -79,21 +79,21 @@
                  storagecommon/domaincommon defines do not conflict
                  with any domain.rng overrides.  -->
             <grammar>
-              <include href='domain.rng'/>
+              <include href="domain.rng"/>
             </grammar>
           </choice>
         </optional>
         <optional>
-          <element name='parent'>
-            <element name='name'>
+          <element name="parent">
+            <element name="name">
               <text/>
             </element>
           </element>
         </optional>
         <optional>
-          <element name='cookie'>
+          <element name="cookie">
             <zeroOrMore>
-              <ref name='customElement'/>
+              <ref name="customElement"/>
             </zeroOrMore>
           </element>
         </optional>
@@ -101,7 +101,7 @@
     </element>
   </define>
 
-  <define name='state'>
+  <define name="state">
     <choice>
       <value>running</value>
       <value>blocked</value>
@@ -113,55 +113,55 @@
     </choice>
   </define>
 
-  <define name='storageSourceExtra' combine='choice'>
+  <define name="storageSourceExtra" combine="choice">
     <!-- overrides the no-op version in storagecommon.rng -->
-    <ref name='disksnapshotdriver'/>
+    <ref name="disksnapshotdriver"/>
   </define>
 
-  <define name='disksnapshot'>
-    <element name='disk'>
-      <attribute name='name'>
+  <define name="disksnapshot">
+    <element name="disk">
+      <attribute name="name">
         <choice>
-          <ref name='diskTarget'/>
-          <ref name='absFilePath'/>
+          <ref name="diskTarget"/>
+          <ref name="absFilePath"/>
         </choice>
       </attribute>
       <choice>
-        <attribute name='snapshot'>
+        <attribute name="snapshot">
           <value>no</value>
         </attribute>
-        <attribute name='snapshot'>
+        <attribute name="snapshot">
           <value>internal</value>
         </attribute>
         <group>
           <optional>
-            <attribute name='snapshot'>
+            <attribute name="snapshot">
               <value>external</value>
             </attribute>
           </optional>
           <choice>
             <group>
               <optional>
-                <attribute name='type'>
+                <attribute name="type">
                   <value>file</value>
                 </attribute>
               </optional>
               <interleave>
                 <optional>
-                  <element name='source'>
+                  <element name="source">
                     <optional>
-                      <attribute name='file'>
-                        <ref name='absFilePath'/>
+                      <attribute name="file">
+                        <ref name="absFilePath"/>
                       </attribute>
                     </optional>
                     <optional>
-                      <ref name='storageStartupPolicy'/>
+                      <ref name="storageStartupPolicy"/>
                     </optional>
                     <zeroOrMore>
-                      <ref name='devSeclabel'/>
+                      <ref name="devSeclabel"/>
                     </zeroOrMore>
                     <optional>
-                      <ref name='diskSourceCommon'/>
+                      <ref name="diskSourceCommon"/>
                     </optional>
                     <optional>
                       <ref name="encryption"/>
@@ -169,11 +169,11 @@
                     <empty/>
                   </element>
                 </optional>
-                <ref name='storageSourceExtra'/>
+                <ref name="storageSourceExtra"/>
               </interleave>
             </group>
             <group>
-              <attribute name='type'>
+              <attribute name="type">
                 <value>block</value>
               </attribute>
               <interleave>
@@ -183,10 +183,10 @@
                       <ref name="absFilePath"/>
                     </attribute>
                     <zeroOrMore>
-                      <ref name='devSeclabel'/>
+                      <ref name="devSeclabel"/>
                     </zeroOrMore>
                     <optional>
-                      <ref name='diskSourceCommon'/>
+                      <ref name="diskSourceCommon"/>
                     </optional>
                     <optional>
                       <ref name="encryption"/>
@@ -194,22 +194,22 @@
                     <empty/>
                   </element>
                 </optional>
-                <ref name='storageSourceExtra'/>
+                <ref name="storageSourceExtra"/>
               </interleave>
             </group>
-            <ref name='diskSourceNetwork'/>
+            <ref name="diskSourceNetwork"/>
           </choice>
         </group>
       </choice>
     </element>
   </define>
 
-  <define name='disksnapshotdriver'>
+  <define name="disksnapshotdriver">
     <optional>
-      <element name='driver'>
+      <element name="driver">
         <optional>
-          <attribute name='type'>
-            <ref name='storageFormatBacking'/>
+          <attribute name="type">
+            <ref name="storageFormatBacking"/>
           </attribute>
         </optional>
         <empty/>

docs/schemas/interface.rng

@@ -17,7 +17,7 @@
     </choice>
   </start>
 
-  <include href='basictypes.rng'/>
+  <include href="basictypes.rng"/>
   <!--
        FIXME: How do we handle VLAN's ? Should they be their own interface
        or should we treat them as an option on the base interface ?  For
@@ -131,7 +131,7 @@
             </attribute>
           </optional>
           <!-- Bridge forward delay
-               (see 'ip link set <dev> type bridge forward_delay') -->
+               (see "ip link set <dev> type bridge forward_delay") -->
           <optional v:since="2">
             <attribute name="delay"><ref name="timeval"/></attribute>
           </optional>
@@ -426,7 +426,7 @@
     </data>
   </define>
 
-  <define name='vlan-id'>
+  <define name="vlan-id">
     <data type="unsignedInt">
       <param name="maxInclusive">4095</param>
     </data>

docs/schemas/meson.build

@@ -1,6 +1,7 @@
 docs_schema_files = [
   'basictypes.rng',
   'capability.rng',
+  'cpu.rng',
   'cputypes.rng',
   'domainbackup.rng',
   'domaincaps.rng',

docs/schemas/network.rng

@@ -6,8 +6,8 @@
     <ref name="network"/>
   </start>
 
-  <include href='basictypes.rng'/>
-  <include href='networkcommon.rng'/>
+  <include href="basictypes.rng"/>
+  <include href="networkcommon.rng"/>
 
   <define name="network">
 
@@ -133,9 +133,9 @@
               <choice>
                 <group>
                   <zeroOrMore>
-                    <element name='interface'>
-                      <attribute name='dev'>
-                        <ref name='deviceName'/>
+                    <element name="interface">
+                      <attribute name="dev">
+                        <ref name="deviceName"/>
                       </attribute>
                       <optional>
                         <attribute name="connections">
@@ -147,8 +147,8 @@
                 </group>
                 <group>
                   <zeroOrMore>
-                    <element name='address'>
-                      <attribute name='type'>
+                    <element name="address">
+                      <attribute name="type">
                         <value>pci</value>
                       </attribute>
                       <ref name="pciaddress"/>
@@ -162,9 +162,9 @@
                 </group>
               </choice>
               <optional>
-                <element name='pf'>
-                  <attribute name='dev'>
-                    <ref name='deviceName'/>
+                <element name="pf">
+                  <attribute name="dev">
+                    <ref name="deviceName"/>
                   </attribute>
                 </element>
               </optional>
@@ -180,7 +180,7 @@
                 </element>
               </optional>
               <optional>
-                <element name='nat'>
+                <element name="nat">
                   <optional>
                     <attribute name="ipv6">
                       <ref name="virYesNo"/>
@@ -188,22 +188,22 @@
                   </optional>
                   <interleave>
                     <optional>
-                      <element name='address'>
-                        <attribute name='start'>
-                          <ref name='ipv4Addr'/>
+                      <element name="address">
+                        <attribute name="start">
+                          <ref name="ipv4Addr"/>
                         </attribute>
-                        <attribute name='end'>
-                          <ref name='ipv4Addr'/>
+                        <attribute name="end">
+                          <ref name="ipv4Addr"/>
                         </attribute>
                       </element>
                     </optional>
                     <optional>
-                      <element name='port'>
-                        <attribute name='start'>
-                          <ref name='port'/>
+                      <element name="port">
+                        <attribute name="start">
+                          <ref name="port"/>
                         </attribute>
-                        <attribute name='end'>
-                          <ref name='port'/>
+                        <attribute name="end">
+                          <ref name="port"/>
                         </attribute>
                       </element>
                     </optional>
@@ -439,7 +439,7 @@
         <element name="options" ns="http://libvirt.org/schemas/network/dnsmasq/1.0">
           <zeroOrMore>
             <element name="option">
-              <attribute name='value'/>
+              <attribute name="value"/>
             </element>
           </zeroOrMore>
         </element>

docs/schemas/networkcommon.rng

@@ -173,7 +173,7 @@
       </attribute>
     </optional>
     <optional>
-      <attribute name='burst'>
+      <attribute name="burst">
         <ref name="BurstSize"/>
       </attribute>
     </optional>
@@ -192,19 +192,19 @@
     </data>
   </define>
 
-  <define name='unsignedShort'>
-    <data type='integer'>
+  <define name="unsignedShort">
+    <data type="integer">
       <param name="minInclusive">0</param>
       <param name="maxInclusive">65535</param>
     </data>
   </define>
-  <define name='protocol'>
-    <data type='string'>
-      <param name='pattern'>(tcp)|(udp)</param>
+  <define name="protocol">
+    <data type="string">
+      <param name="pattern">(tcp)|(udp)</param>
     </data>
   </define>
-  <define name='addr-family'>
-    <data type='string'>
+  <define name="addr-family">
+    <data type="string">
       <param name="pattern">(ipv4)|(ipv6)</param>
     </data>
   </define>
@@ -237,17 +237,17 @@
     </element>
   </define>
 
-  <define name='port'>
-    <data type='integer'>
-      <param name='minInclusive'>1</param>
-      <param name='maxInclusive'>65535</param>
+  <define name="port">
+    <data type="integer">
+      <param name="minInclusive">1</param>
+      <param name="maxInclusive">65535</param>
     </data>
   </define>
 
   <!-- The (static) route element specifies a network address and gateway
        address to access that network. Both the network address and
        the gateway address must be specified. -->
-  <define name='route'>
+  <define name="route">
     <element name="route">
       <optional>
         <attribute name="family"><ref name="addr-family"/></attribute>

docs/schemas/networkport.rng

@@ -2,8 +2,8 @@
 <!-- A Relax NG schema for the libvirt network port XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0"
          datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
-  <include href='networkcommon.rng'/>
+  <include href="basictypes.rng"/>
+  <include href="networkcommon.rng"/>
 
   <start>
     <ref name="networkport"/>
@@ -152,7 +152,7 @@
         <empty/>
       </element>
     </optional>
-    <element name='address'>
+    <element name="address">
       <ref name="pciaddress"/>
     </element>
   </define>

docs/schemas/nodedev.rng

@@ -2,12 +2,12 @@
 <!-- A Relax NG schema for the libvirt node device XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0"
     datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
+  <include href="basictypes.rng"/>
   <start>
-    <ref name='device'/>
+    <ref name="device"/>
   </start>
 
-  <define name='device'>
+  <define name="device">
     <element name="device">
       <!-- The name of the network, used to refer to it through the API
          and in virsh -->
@@ -17,7 +17,7 @@
       </optional>
       <optional>
         <element name="devnode">
-          <attribute name='type'>
+          <attribute name="type">
             <value>dev</value>
           </attribute>
           <text/>
@@ -25,7 +25,7 @@
       </optional>
       <zeroOrMore>
         <element name="devnode">
-          <attribute name='type'>
+          <attribute name="type">
             <value>link</value>
           </attribute>
           <text/>
@@ -47,21 +47,21 @@
     </element>
   </define>
 
-  <define name='parent'>
-    <element name='parent'>
+  <define name="parent">
+    <element name="parent">
       <choice>
         <group>
-          <attribute name='wwnn'>
-            <ref name='wwn'/>
+          <attribute name="wwnn">
+            <ref name="wwn"/>
           </attribute>
-          <attribute name='wwpn'>
-            <ref name='wwn'/>
+          <attribute name="wwpn">
+            <ref name="wwn"/>
           </attribute>
           <empty/>
         </group>
         <group>
-          <attribute name='fabric_wwn'>
-            <ref name='wwn'/>
+          <attribute name="fabric_wwn">
+            <ref name="wwn"/>
           </attribute>
           <empty/>
         </group>
@@ -70,7 +70,7 @@
     </element>
   </define>
 
-  <define name='capability'>
+  <define name="capability">
     <element name="capability">
       <choice>
         <ref name="capsystem"/>
@@ -86,77 +86,78 @@
         <ref name="capmdev"/>
         <ref name="capccwdev"/>
         <ref name="capcssdev"/>
+        <ref name="capvdpa"/>
       </choice>
     </element>
   </define>
 
-  <define name='capsystem'>
-    <attribute name='type'>
+  <define name="capsystem">
+    <attribute name="type">
       <value>system</value>
     </attribute>
 
     <optional>
-      <element name='product'><text/></element>
+      <element name="product"><text/></element>
     </optional>
 
-    <element name='hardware'>
+    <element name="hardware">
       <optional>
-        <element name='vendor'><text/></element>
+        <element name="vendor"><text/></element>
       </optional>
       <optional>
-        <element name='version'><text/></element>
+        <element name="version"><text/></element>
       </optional>
       <optional>
-        <element name='serial'><text/></element>
+        <element name="serial"><text/></element>
       </optional>
 
-      <element name='uuid'>
-        <ref name='UUID'/>
+      <element name="uuid">
+        <ref name="UUID"/>
       </element>
     </element>
 
 
-    <element name='firmware'>
+    <element name="firmware">
       <optional>
-        <element name='vendor'><text/></element>
+        <element name="vendor"><text/></element>
       </optional>
       <optional>
-        <element name='version'><text/></element>
+        <element name="version"><text/></element>
       </optional>
       <optional>
-        <element name='release_date'><text/></element>
+        <element name="release_date"><text/></element>
       </optional>
     </element>
   </define>
 
-  <define name='cappcidev'>
-    <attribute name='type'>
+  <define name="cappcidev">
+    <attribute name="type">
       <value>pci</value>
     </attribute>
 
     <optional>
-      <element name='class'>
+      <element name="class">
         <data type="string">
           <param name="pattern">0x[0-9a-fA-F]{6}</param>
         </data>
       </element>
     </optional>
-    <element name='domain'>
-      <ref name='unsignedLong'/>
+    <element name="domain">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='bus'>
-      <ref name='unsignedLong'/>
+    <element name="bus">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='slot'>
-      <ref name='unsignedLong'/>
+    <element name="slot">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='function'>
-      <ref name='unsignedLong'/>
+    <element name="function">
+      <ref name="unsignedLong"/>
     </element>
 
-    <element name='product'>
-      <attribute name='id'>
-        <ref name='hexuint'/>
+    <element name="product">
+      <attribute name="id">
+        <ref name="hexuint"/>
       </attribute>
 
       <choice>
@@ -165,9 +166,9 @@
       </choice>
     </element>
 
-    <element name='vendor'>
-      <attribute name='id'>
-        <ref name='hexuint'/>
+    <element name="vendor">
+      <attribute name="id">
+        <ref name="hexuint"/>
       </attribute>
 
       <choice>
@@ -177,35 +178,35 @@
     </element>
 
     <optional>
-      <element name='capability'>
-        <attribute name='type'>
+      <element name="capability">
+        <attribute name="type">
           <value>phys_function</value>
         </attribute>
         <optional>
-          <ref name='address'/>
+          <ref name="address"/>
         </optional>
       </element>
     </optional>
 
     <optional>
-      <element name='capability'>
-        <attribute name='type'>
+      <element name="capability">
+        <attribute name="type">
           <value>virt_functions</value>
         </attribute>
         <optional>
-          <attribute name='maxCount'>
-            <ref name='unsignedInt'/>
+          <attribute name="maxCount">
+            <ref name="unsignedInt"/>
           </attribute>
         </optional>
         <zeroOrMore>
-          <ref name='address'/>
+          <ref name="address"/>
         </zeroOrMore>
       </element>
     </optional>
 
     <optional>
-      <element name='capability'>
-        <attribute name='type'>
+      <element name="capability">
+        <attribute name="type">
           <choice>
             <value>pci-bridge</value>
             <value>cardbus-bridge</value>
@@ -215,74 +216,54 @@
     </optional>
 
     <optional>
-      <element name='capability'>
-        <attribute name='type'>
-          <value>mdev_types</value>
+      <ref name="mdev_types"/>
+    </optional>
+
+    <optional>
+      <element name="iommuGroup">
+        <attribute name="number">
+          <ref name="unsignedInt"/>
         </attribute>
         <oneOrMore>
-          <element name='type'>
-            <attribute name='id'>
-              <data type='string'/>
-            </attribute>
-            <optional>
-              <element name='name'><text/></element>
-            </optional>
-            <element name='deviceAPI'>
-              <value>vfio-pci</value>
-            </element>
-            <element name='availableInstances'>
-              <ref name='unsignedInt'/>
-            </element>
-          </element>
+          <ref name="address"/>
         </oneOrMore>
       </element>
     </optional>
 
     <optional>
-      <element name='iommuGroup'>
-        <attribute name='number'>
-          <ref name='unsignedInt'/>
-        </attribute>
-        <oneOrMore>
-          <ref name='address'/>
-        </oneOrMore>
-      </element>
-    </optional>
-
-    <optional>
-      <element name='numa'>
+      <element name="numa">
         <optional>
-          <attribute name='node'>
-            <data type='int'/>
+          <attribute name="node">
+            <data type="int"/>
           </attribute>
         </optional>
       </element>
     </optional>
 
     <optional>
-      <element name='pci-express'>
+      <element name="pci-express">
         <zeroOrMore>
-          <element name='link'>
-            <attribute name='validity'>
+          <element name="link">
+            <attribute name="validity">
               <choice>
                 <value>cap</value>
                 <value>sta</value>
               </choice>
             </attribute>
             <optional>
-              <attribute name='port'>
-                <ref name='unsignedInt'/>
+              <attribute name="port">
+                <ref name="unsignedInt"/>
               </attribute>
             </optional>
             <optional>
-              <attribute name='speed'>
+              <attribute name="speed">
                 <data type="string">
                   <param name="pattern">[0-9]+(.[0-9]+)?</param>
                 </data>
               </attribute>
             </optional>
-            <attribute name='width'>
-              <ref name='unsignedInt'/>
+            <attribute name="width">
+              <ref name="unsignedInt"/>
             </attribute>
           </element>
         </zeroOrMore>
@@ -290,21 +271,21 @@
     </optional>
   </define>
 
-  <define name='capusbdev'>
-    <attribute name='type'>
+  <define name="capusbdev">
+    <attribute name="type">
       <value>usb_device</value>
     </attribute>
 
-    <element name='bus'>
-      <ref name='unsignedLong'/>
+    <element name="bus">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='device'>
-      <ref name='unsignedLong'/>
+    <element name="device">
+      <ref name="unsignedLong"/>
     </element>
 
-    <element name='product'>
-      <attribute name='id'>
-        <ref name='hexuint'/>
+    <element name="product">
+      <attribute name="id">
+        <ref name="hexuint"/>
       </attribute>
 
       <choice>
@@ -313,9 +294,9 @@
       </choice>
     </element>
 
-    <element name='vendor'>
-      <attribute name='id'>
-        <ref name='hexuint'/>
+    <element name="vendor">
+      <attribute name="id">
+        <ref name="hexuint"/>
       </attribute>
 
       <choice>
@@ -325,294 +306,294 @@
     </element>
   </define>
 
-  <define name='capusbinterface'>
-    <attribute name='type'>
+  <define name="capusbinterface">
+    <attribute name="type">
       <value>usb</value>
     </attribute>
 
-    <element name='number'>
-      <ref name='unsignedLong'/>
+    <element name="number">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='class'>
-      <ref name='unsignedLong'/>
+    <element name="class">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='subclass'>
-      <ref name='unsignedLong'/>
+    <element name="subclass">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='protocol'>
-      <ref name='unsignedLong'/>
+    <element name="protocol">
+      <ref name="unsignedLong"/>
     </element>
 
     <optional>
-      <element name='description'>
+      <element name="description">
         <text/>
       </element>
     </optional>
   </define>
 
-  <define name='capnet'>
-    <attribute name='type'>
+  <define name="capnet">
+    <attribute name="type">
       <value>net</value>
     </attribute>
 
-    <element name='interface'>
+    <element name="interface">
       <text/>
     </element>
     <optional>
-      <element name='address'>
-        <ref name='mac'/>
+      <element name="address">
+        <ref name="mac"/>
       </element>
     </optional>
     <ref name="link-speed-state"/>
 
     <zeroOrMore>
-      <element name='feature'>
-        <attribute name='name'>
-          <ref name='netfeaturename'/>
+      <element name="feature">
+        <attribute name="name">
+          <ref name="netfeaturename"/>
         </attribute>
       </element>
     </zeroOrMore>
 
     <zeroOrMore>
-      <ref name='subcapnet'/>
+      <ref name="subcapnet"/>
     </zeroOrMore>
   </define>
 
-  <define name='netfeaturename'>
-    <data type='string'>
-      <param name='pattern'>[a-zA-Z\-_]+</param>
+  <define name="netfeaturename">
+    <data type="string">
+      <param name="pattern">[a-zA-Z\-_]+</param>
     </data>
   </define>
 
-  <define name='subcapnet'>
-    <element name='capability'>
+  <define name="subcapnet">
+    <element name="capability">
       <choice>
-        <ref name='subcapnet80203'/>
-        <ref name='subcapnet80211'/>
+        <ref name="subcapnet80203"/>
+        <ref name="subcapnet80211"/>
       </choice>
     </element>
   </define>
 
-  <define name='subcapnet80203'>
-    <attribute name='type'>
+  <define name="subcapnet80203">
+    <attribute name="type">
       <value>80203</value>
     </attribute>
   </define>
 
-  <define name='subcapnet80211'>
-    <attribute name='type'>
+  <define name="subcapnet80211">
+    <attribute name="type">
       <value>80211</value>
     </attribute>
   </define>
 
-  <define name='capsfchost'>
-    <attribute name='type'>
+  <define name="capsfchost">
+    <attribute name="type">
       <value>fc_host</value>
     </attribute>
 
-    <element name='wwnn'>
-      <ref name='wwn'/>
+    <element name="wwnn">
+      <ref name="wwn"/>
     </element>
 
-    <element name='wwpn'>
-      <ref name='wwn'/>
+    <element name="wwpn">
+      <ref name="wwn"/>
     </element>
 
     <optional>
-      <element name='fabric_wwn'>
-        <ref name='wwn'/>
+      <element name="fabric_wwn">
+        <ref name="wwn"/>
       </element>
     </optional>
   </define>
 
-  <define name='capsvports'>
-    <attribute name='type'>
+  <define name="capsvports">
+    <attribute name="type">
       <value>vports_ops</value>
     </attribute>
-    <element name='max_vports'>
-      <ref name='unsignedInt'/>
+    <element name="max_vports">
+      <ref name="unsignedInt"/>
     </element>
-    <element name='vports'>
-      <ref name='unsignedInt'/>
+    <element name="vports">
+      <ref name="unsignedInt"/>
     </element>
   </define>
 
-  <define name='capscsihost'>
-    <attribute name='type'>
+  <define name="capscsihost">
+    <attribute name="type">
       <value>scsi_host</value>
     </attribute>
 
-    <element name='host'>
-      <ref name='unsignedLong'/>
+    <element name="host">
+      <ref name="unsignedLong"/>
     </element>
 
     <optional>
-      <element name='unique_id'>
-        <ref name='positiveInteger'/>
+      <element name="unique_id">
+        <ref name="positiveInteger"/>
       </element>
     </optional>
 
     <optional>
       <zeroOrMore>
-        <element name='capability'>
+        <element name="capability">
           <choice>
-            <ref name='capsfchost'/>
-            <ref name='capsvports'/>
+            <ref name="capsfchost"/>
+            <ref name="capsvports"/>
           </choice>
         </element>
       </zeroOrMore>
     </optional>
   </define>
 
-  <define name='capsfcrport'>
-    <attribute name='type'>
+  <define name="capsfcrport">
+    <attribute name="type">
       <value>fc_remote_port</value>
     </attribute>
 
-    <element name='rport'>
+    <element name="rport">
       <text/>
     </element>
 
-    <element name='wwpn'>
-      <ref name='wwn'/>
+    <element name="wwpn">
+      <ref name="wwn"/>
     </element>
   </define>
 
-  <define name='capscsitarget'>
-    <attribute name='type'>
+  <define name="capscsitarget">
+    <attribute name="type">
       <value>scsi_target</value>
     </attribute>
 
-    <element name='target'>
+    <element name="target">
       <text/>
     </element>
 
     <optional>
-      <element name='capability'>
-        <ref name='capsfcrport'/>
+      <element name="capability">
+        <ref name="capsfcrport"/>
       </element>
     </optional>
   </define>
 
-  <define name='capscsi'>
-    <attribute name='type'>
+  <define name="capscsi">
+    <attribute name="type">
       <value>scsi</value>
     </attribute>
 
-    <element name='host'>
-      <ref name='unsignedLong'/>
+    <element name="host">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='bus'>
-      <ref name='unsignedLong'/>
+    <element name="bus">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='target'>
-      <ref name='unsignedLong'/>
+    <element name="target">
+      <ref name="unsignedLong"/>
     </element>
-    <element name='lun'>
-      <ref name='unsignedLong'/>
+    <element name="lun">
+      <ref name="unsignedLong"/>
     </element>
 
-    <element name='type'>
+    <element name="type">
       <text/>
     </element>
   </define>
 
-  <define name='capstorage'>
-    <attribute name='type'>
+  <define name="capstorage">
+    <attribute name="type">
       <value>storage</value>
     </attribute>
 
-    <element name='block'>
-      <ref name='path'/>
+    <element name="block">
+      <ref name="path"/>
     </element>
 
     <optional>
-      <element name='bus'>
+      <element name="bus">
         <text/>
       </element>
     </optional>
     <optional>
-      <element name='drive_type'>
+      <element name="drive_type">
         <text/>
       </element>
     </optional>
     <optional>
-      <element name='model'>
+      <element name="model">
         <text/>
       </element>
     </optional>
     <optional>
-      <element name='vendor'>
+      <element name="vendor">
         <text/>
       </element>
     </optional>
     <optional>
-      <element name='serial'>
+      <element name="serial">
         <text/>
       </element>
     </optional>
 
     <choice>
-      <ref name='capstorageremoveable'/>
-      <ref name='capstoragefixed'/>
+      <ref name="capstorageremoveable"/>
+      <ref name="capstoragefixed"/>
     </choice>
 
     <optional>
-      <element name='capability'>
-        <attribute name='type'>
+      <element name="capability">
+        <attribute name="type">
           <value>hotpluggable</value>
         </attribute>
       </element>
     </optional>
   </define>
 
-  <define name='capstorageremoveable'>
-    <element name='capability'>
-      <attribute name='type'>
+  <define name="capstorageremoveable">
+    <element name="capability">
+      <attribute name="type">
         <value>removable</value>
       </attribute>
-      <element name='media_available'>
+      <element name="media_available">
         <choice>
           <value>1</value>
           <value>0</value>
         </choice>
       </element>
 
-      <element name='media_size'>
-        <ref name='unsignedLong'/>
+      <element name="media_size">
+        <ref name="unsignedLong"/>
       </element>
       <optional>
-        <element name='media_label'>
+        <element name="media_label">
           <text/>
         </element>
       </optional>
-      <ref name='blockData'/>
+      <ref name="blockData"/>
     </element>
   </define>
 
-  <define name='capstoragefixed'>
-    <element name='size'>
-      <ref name='unsignedLong'/>
+  <define name="capstoragefixed">
+    <element name="size">
+      <ref name="unsignedLong"/>
     </element>
-    <ref name='blockData'/>
+    <ref name="blockData"/>
   </define>
 
-  <define name='blockData'>
+  <define name="blockData">
     <optional>
-      <element name='logical_block_size'>
-        <ref name='unsignedLong'/>
+      <element name="logical_block_size">
+        <ref name="unsignedLong"/>
       </element>
-      <element name='num_blocks'>
-        <ref name='unsignedLong'/>
+      <element name="num_blocks">
+        <ref name="unsignedLong"/>
       </element>
     </optional>
   </define>
 
-  <define name='capdrm'>
-    <attribute name='type'>
+  <define name="capdrm">
+    <attribute name="type">
       <value>drm</value>
     </attribute>
-    <element name='type'>
+    <element name="type">
       <choice>
         <value>primary</value>
         <value>control</value>
@@ -621,19 +602,19 @@
     </element>
   </define>
 
-  <define name='capmdev'>
-    <attribute name='type'>
+  <define name="capmdev">
+    <attribute name="type">
       <value>mdev</value>
     </attribute>
-    <element name='type'>
-      <attribute name='id'>
-        <data type='string'/>
+    <element name="type">
+      <attribute name="id">
+        <data type="string"/>
       </attribute>
     </element>
     <optional>
-      <element name='iommuGroup'>
-        <attribute name='number'>
-          <ref name='unsignedInt'/>
+      <element name="iommuGroup">
+        <attribute name="number">
+          <ref name="unsignedInt"/>
         </attribute>
       </element>
     </optional>
@@ -645,55 +626,94 @@
     </zeroOrMore>
   </define>
 
-  <define name='capccwdev'>
-    <attribute name='type'>
+  <define name="capccwdev">
+    <attribute name="type">
       <value>ccw</value>
     </attribute>
-    <element name='cssid'>
-      <ref name='ccwCssidRange'/>
+    <element name="cssid">
+      <ref name="ccwCssidRange"/>
     </element>
-    <element name='ssid'>
-      <ref name='ccwSsidRange'/>
+    <element name="ssid">
+      <ref name="ccwSsidRange"/>
     </element>
-    <element name='devno'>
-      <ref name='ccwDevnoRange'/>
+    <element name="devno">
+      <ref name="ccwDevnoRange"/>
     </element>
   </define>
 
-  <define name='capcssdev'>
-    <attribute name='type'>
+  <define name="capcssdev">
+    <attribute name="type">
       <value>css</value>
     </attribute>
-    <element name='cssid'>
-      <ref name='ccwCssidRange'/>
+    <element name="cssid">
+      <ref name="ccwCssidRange"/>
     </element>
-    <element name='ssid'>
-      <ref name='ccwSsidRange'/>
+    <element name="ssid">
+      <ref name="ccwSsidRange"/>
     </element>
-    <element name='devno'>
-      <ref name='ccwDevnoRange'/>
+    <element name="devno">
+      <ref name="ccwDevnoRange"/>
+    </element>
+    <optional>
+      <ref name="mdev_types"/>
+    </optional>
+  </define>
+
+  <define name="capvdpa">
+    <attribute name="type">
+      <value>vdpa</value>
+    </attribute>
+    <element name="chardev">
+      <ref name="path"/>
     </element>
   </define>
 
-  <define name='address'>
-    <element name='address'>
-      <attribute name='domain'><ref name='hexuint'/></attribute>
-      <attribute name='bus'><ref name='hexuint'/></attribute>
-      <attribute name='slot'><ref name='hexuint'/></attribute>
-      <attribute name='function'><ref name='hexuint'/></attribute>
+  <define name="address">
+    <element name="address">
+      <attribute name="domain"><ref name="hexuint"/></attribute>
+      <attribute name="bus"><ref name="hexuint"/></attribute>
+      <attribute name="slot"><ref name="hexuint"/></attribute>
+      <attribute name="function"><ref name="hexuint"/></attribute>
     </element>
   </define>
 
-  <define name='mac'>
-    <data type='string'>
+  <define name="mac">
+    <data type="string">
       <param name="pattern">([a-fA-F0-9]{2}:){5}[a-fA-F0-9]{2}</param>
     </data>
   </define>
 
-  <define name='path'>
-    <data type='string'>
+  <define name="path">
+    <data type="string">
       <param name="pattern">/[a-zA-Z0-9_\+\-/%]+</param>
     </data>
   </define>
 
+  <define name="mdev_types">
+    <element name="capability">
+      <attribute name="type">
+        <value>mdev_types</value>
+      </attribute>
+      <oneOrMore>
+        <element name="type">
+          <attribute name="id">
+            <data type="string"/>
+          </attribute>
+          <optional>
+            <element name="name"><text/></element>
+          </optional>
+          <element name="deviceAPI">
+            <choice>
+              <value>vfio-pci</value>
+              <value>vfio-ccw</value>
+            </choice>
+          </element>
+          <element name="availableInstances">
+            <ref name="unsignedInt"/>
+          </element>
+        </element>
+      </oneOrMore>
+    </element>
+  </define>
+
 </grammar>

docs/schemas/nwfilter.rng

@@ -1,7 +1,7 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <grammar ns="" xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
-  <include href='nwfilter_params.rng'/>
+  <include href="basictypes.rng"/>
+  <include href="nwfilter_params.rng"/>
   <start>
     <ref name="filter"/>
   </start>
@@ -242,26 +242,26 @@
     </optional>
     <optional>
       <attribute name="priority">
-        <ref name='priority-type'/>
+        <ref name="priority-type"/>
       </attribute>
     </optional>
   </define>
 
   <define name="rule-node-attributes">
     <attribute name="action">
-      <ref name='action-type'/>
+      <ref name="action-type"/>
     </attribute>
     <attribute name="direction">
-      <ref name='direction-type'/>
+      <ref name="direction-type"/>
     </attribute>
     <optional>
       <attribute name="priority">
-        <ref name='priority-type'/>
+        <ref name="priority-type"/>
       </attribute>
     </optional>
     <optional>
       <attribute name="statematch">
-        <ref name='statematch-type'/>
+        <ref name="statematch-type"/>
       </attribute>
     </optional>
   </define>
@@ -725,7 +725,7 @@
 
   <define name="variable-name-type">
     <data type="string">
-      <param name="pattern">$[a-zA-Z0-9_]+(\[[ ]*[@]?[0-9]+[ ]*\])?</param>
+      <param name="pattern">$[ ]*[a-zA-Z0-9_]+(\[[ ]*[@]?[0-9]+[ ]*\])?[ ]*</param>
     </data>
   </define>
 
@@ -923,7 +923,7 @@
     </choice>
   </define>
 
-  <define name='action-type'>
+  <define name="action-type">
     <choice>
       <value>drop</value>
       <value>accept</value>
@@ -933,7 +933,7 @@
     </choice>
   </define>
 
-  <define name='direction-type'>
+  <define name="direction-type">
     <choice>
       <value>in</value>
       <value>out</value>
@@ -941,35 +941,35 @@
     </choice>
   </define>
 
-  <define name='priority-type'>
+  <define name="priority-type">
     <data type="int">
       <param name="minInclusive">-1000</param>
       <param name="maxInclusive">1000</param>
     </data>
   </define>
-  <define name='statematch-type'>
+  <define name="statematch-type">
     <data type="string">
       <param name="pattern">([Ff][Aa][Ll][Ss][Ee]|0)</param>
     </data>
   </define>
 
-  <define name='comment-type'>
+  <define name="comment-type">
     <data type="string"/>
   </define>
 
-  <define name='stateflags-type'>
+  <define name="stateflags-type">
     <data type="string">
       <param name="pattern">((NEW|ESTABLISHED|RELATED|INVALID)(,(NEW|ESTABLISHED|RELATED|INVALID))*|NONE)</param>
     </data>
   </define>
 
-  <define name='tcpflags-type'>
+  <define name="tcpflags-type">
     <data type="string">
       <param name="pattern">((SYN|ACK|URG|PSH|FIN|RST)(,(SYN|ACK|URG|PSH|FIN|RST))*|ALL|NONE)/((SYN|ACK|URG|PSH|FIN|RST)(,(SYN|ACK|URG|PSH|FIN|RST))*|ALL|NONE)</param>
     </data>
   </define>
 
-  <define name='ipset-name-type'>
+  <define name="ipset-name-type">
     <choice>
       <ref name="variable-name-type"/>
       <data type="string">
@@ -978,9 +978,9 @@
     </choice>
   </define>
 
-  <define name='ipset-flags-type'>
+  <define name="ipset-flags-type">
     <data type="string">
-      <param name="pattern">(src|dst)(,(src|dst)){0,5}</param>
+      <param name="pattern">([Ss][Rr][Cc]|[Dd][Ss][Tt])(,([Ss][Rr][Cc]|[Dd][Ss][Tt])){0,5}</param>
     </data>
   </define>
 </grammar>

docs/schemas/nwfilterbinding.rng

@@ -1,8 +1,8 @@
 <?xml version="1.0"?>
 <grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
   <!-- domain-related definitions used in multiple grammars -->
-  <include href='basictypes.rng'/>
-  <include href='nwfilter_params.rng'/>
+  <include href="basictypes.rng"/>
+  <include href="nwfilter_params.rng"/>
 
   <start>
     <ref name="filterbinding"/>

docs/schemas/secret.rng

@@ -2,42 +2,42 @@
 <!-- A Relax NG schema for the libvirt secret properties XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0">
   <start>
-    <ref name='secret'/>
+    <ref name="secret"/>
   </start>
 
-  <include href='basictypes.rng'/>
+  <include href="basictypes.rng"/>
 
-  <define name='secret'>
-    <element name='secret'>
+  <define name="secret">
+    <element name="secret">
       <optional>
-        <attribute name='ephemeral'>
+        <attribute name="ephemeral">
           <ref name="virYesNo"/>
         </attribute>
       </optional>
       <optional>
-        <attribute name='private'>
+        <attribute name="private">
           <ref name="virYesNo"/>
         </attribute>
       </optional>
       <interleave>
         <optional>
-          <element name='uuid'>
-            <ref name='UUID'/>
+          <element name="uuid">
+            <ref name="UUID"/>
           </element>
         </optional>
         <optional>
-          <element name='description'>
+          <element name="description">
             <text/>
           </element>
         </optional>
         <optional>
-          <element name='usage'>
+          <element name="usage">
             <choice>
-              <ref name='usagevolume'/>
-              <ref name='usageceph'/>
-              <ref name='usageiscsi'/>
-              <ref name='usagetls'/>
-              <ref name='usagevtpm'/>
+              <ref name="usagevolume"/>
+              <ref name="usageceph"/>
+              <ref name="usageiscsi"/>
+              <ref name="usagetls"/>
+              <ref name="usagevtpm"/>
               <!-- More choices later -->
             </choice>
           </element>
@@ -46,48 +46,48 @@
     </element>
   </define>
 
-  <define name='usagevolume'>
-    <attribute name='type'>
+  <define name="usagevolume">
+    <attribute name="type">
       <value>volume</value>
     </attribute>
-    <element name='volume'>
-      <ref name='absFilePath'/>
+    <element name="volume">
+      <ref name="absFilePath"/>
     </element>
   </define>
 
-  <define name='usageceph'>
-    <attribute name='type'>
+  <define name="usageceph">
+    <attribute name="type">
       <value>ceph</value>
     </attribute>
-    <element name='name'>
-      <ref name='genericName'/>
+    <element name="name">
+      <ref name="genericName"/>
     </element>
   </define>
 
-  <define name='usageiscsi'>
-    <attribute name='type'>
+  <define name="usageiscsi">
+    <attribute name="type">
       <value>iscsi</value>
     </attribute>
-    <element name='target'>
-      <ref name='genericName'/>
+    <element name="target">
+      <ref name="genericName"/>
     </element>
   </define>
 
-  <define name='usagetls'>
-    <attribute name='type'>
+  <define name="usagetls">
+    <attribute name="type">
       <value>tls</value>
     </attribute>
-    <element name='name'>
-      <ref name='genericName'/>
+    <element name="name">
+      <ref name="genericName"/>
     </element>
   </define>
 
-  <define name='usagevtpm'>
-    <attribute name='type'>
+  <define name="usagevtpm">
+    <attribute name="type">
       <value>vtpm</value>
     </attribute>
-    <element name='name'>
-      <ref name='genericName'/>
+    <element name="name">
+      <ref name="genericName"/>
     </element>
   </define>
 

docs/schemas/storagecommon.rng

@@ -14,9 +14,9 @@
     </data>
   </define>
 
-  <define name='encryption'>
-    <element name='encryption'>
-      <attribute name='format'>
+  <define name="encryption">
+    <element name="encryption">
+      <attribute name="format">
         <choice>
           <value>default</value>
           <value>qcow</value>
@@ -24,23 +24,23 @@
         </choice>
       </attribute>
       <interleave>
-        <ref name='secret'/>
+        <ref name="secret"/>
         <optional>
-          <element name='cipher'>
-            <ref name='keycipher'/>
+          <element name="cipher">
+            <ref name="keycipher"/>
           </element>
-          <element name='ivgen'>
-            <ref name='keyivgen'/>
+          <element name="ivgen">
+            <ref name="keyivgen"/>
           </element>
         </optional>
       </interleave>
     </element>
   </define>
 
-  <define name='initiatorinfo'>
-    <element name='initiator'>
-      <element name='iqn'>
-        <attribute name='name'>
+  <define name="initiatorinfo">
+    <element name="initiator">
+      <element name="iqn">
+        <attribute name="name">
           <text/>
         </attribute>
         <empty/>
@@ -61,7 +61,7 @@
     </element>
   </define>
 
-  <define name='unixSocketSource'>
+  <define name="unixSocketSource">
     <element name="source">
       <attribute name="type">
         <value>unix</value>
@@ -82,47 +82,47 @@
     </element>
   </define>
 
-  <define name='reservations'>
-    <element name='reservations'>
+  <define name="reservations">
+    <element name="reservations">
       <optional>
-        <attribute name='managed'>
-          <ref name='virYesNo'/>
+        <attribute name="managed">
+          <ref name="virYesNo"/>
         </attribute>
       </optional>
       <optional>
-        <ref name='unixSocketSource'/>
+        <ref name="unixSocketSource"/>
       </optional>
     </element>
   </define>
 
-  <define name='secret'>
-    <element name='secret'>
-      <attribute name='type'>
+  <define name="secret">
+    <element name="secret">
+      <attribute name="type">
         <value>passphrase</value>
       </attribute>
       <choice>
-        <attribute name='uuid'>
+        <attribute name="uuid">
           <ref name="UUID"/>
         </attribute>
-        <attribute name='usage'>
+        <attribute name="usage">
           <text/>
         </attribute>
       </choice>
     </element>
   </define>
 
-  <define name='compat'>
-    <element name='compat'>
-      <data type='string'>
-        <param name='pattern'>[0-9]+\.[0-9]+</param>
+  <define name="compat">
+    <element name="compat">
+      <data type="string">
+        <param name="pattern">[0-9]+\.[0-9]+</param>
       </data>
     </element>
   </define>
-  <define name='fileFormatFeatures'>
-    <element name='features'>
+  <define name="fileFormatFeatures">
+    <element name="features">
       <interleave>
         <optional>
-          <element name='lazy_refcounts'>
+          <element name="lazy_refcounts">
             <empty/>
           </element>
         </optional>
@@ -132,7 +132,7 @@
 
   <!-- split the list of known storage formats into two, those where
        we know how to follow backing chains, and all others -->
-  <define name='storageFormatBacking'>
+  <define name="storageFormatBacking">
     <choice>
       <value>cow</value>
       <value>qcow</value>
@@ -141,7 +141,7 @@
       <value>vmdk</value>
     </choice>
   </define>
-  <define name='storageFormat'>
+  <define name="storageFormat">
     <choice>
       <value>raw</value>
       <value>dir</value>
@@ -155,51 +155,51 @@
       <value>vhd</value>
       <value>ploop</value>
       <value>luks</value>
-      <ref name='storageFormatBacking'/>
+      <ref name="storageFormatBacking"/>
     </choice>
   </define>
 
-  <define name='storageStartupPolicy'>
-    <!-- Use a combine='choice' override in client files that want to
+  <define name="storageStartupPolicy">
+    <!-- Use a combine="choice" override in client files that want to
          add additional attributes to a <source> sub-element
          associated with a storage source -->
     <notAllowed/>
   </define>
 
-  <define name='storageSourceExtra'>
-    <!-- Use a combine='choice' override in client files that want to
+  <define name="storageSourceExtra">
+    <!-- Use a combine="choice" override in client files that want to
          add additional elements as siblings of a <source> sub-element
          associated with a storage source -->
     <notAllowed/>
   </define>
 
-  <define name='permissions'>
+  <define name="permissions">
     <optional>
-      <element name='permissions'>
+      <element name="permissions">
         <interleave>
           <optional>
-            <element name='mode'>
-              <ref name='octalMode'/>
+            <element name="mode">
+              <ref name="octalMode"/>
             </element>
           </optional>
           <optional>
-            <element name='owner'>
+            <element name="owner">
               <choice>
-                <ref name='unsignedInt'/>
+                <ref name="unsignedInt"/>
                 <value>-1</value>
               </choice>
             </element>
           </optional>
           <optional>
-            <element name='group'>
+            <element name="group">
               <choice>
-                <ref name='unsignedInt'/>
+                <ref name="unsignedInt"/>
                 <value>-1</value>
               </choice>
             </element>
           </optional>
           <optional>
-            <element name='label'>
+            <element name="label">
               <text/>
             </element>
           </optional>
@@ -208,35 +208,35 @@
     </optional>
   </define>
 
-  <define name='keycipher'>
-    <attribute name='name'>
+  <define name="keycipher">
+    <attribute name="name">
       <text/>
     </attribute>
-    <attribute name='size'>
+    <attribute name="size">
       <ref name="unsignedInt"/>
     </attribute>
     <optional>
-      <attribute name='mode'>
+      <attribute name="mode">
         <text/>
       </attribute>
-      <attribute name='hash'>
+      <attribute name="hash">
         <text/>
       </attribute>
     </optional>
   </define>
 
-  <define name='keyivgen'>
-    <attribute name='name'>
+  <define name="keyivgen">
+    <attribute name="name">
       <text/>
     </attribute>
     <optional>
-      <attribute name='hash'>
+      <attribute name="hash">
         <text/>
       </attribute>
     </optional>
   </define>
 
-  <define name='refreshVolumeAllocation'>
+  <define name="refreshVolumeAllocation">
     <choice>
       <value>default</value>
       <value>capacity</value>

docs/schemas/storagepoolcaps.rng

@@ -1,85 +1,85 @@
 <?xml version="1.0"?>
 <!-- A Relax NG schema for the libvirt storage pool capabilities XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0" datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
+  <include href="basictypes.rng"/>
   <start>
-    <ref name='storagepoolCapabilities'/>
+    <ref name="storagepoolCapabilities"/>
   </start>
 
 
-  <define name='storagepoolCapabilities'>
-    <element name='storagepoolCapabilities'>
+  <define name="storagepoolCapabilities">
+    <element name="storagepoolCapabilities">
       <zeroOrMore>
-        <ref name='poolCapsType'/>
+        <ref name="poolCapsType"/>
       </zeroOrMore>
     </element>
   </define>
 
-  <define name='poolCapsType'>
-    <element name='pool'>
-      <ref name='poolCapsTypes'/>
-      <ref name='poolCapsSupported'/>
+  <define name="poolCapsType">
+    <element name="pool">
+      <ref name="poolCapsTypes"/>
+      <ref name="poolCapsSupported"/>
       <optional>
-        <ref name='poolCapsPoolOptions'/>
+        <ref name="poolCapsPoolOptions"/>
       </optional>
       <optional>
-        <ref name='poolCapsVolOptions'/>
+        <ref name="poolCapsVolOptions"/>
       </optional>
     </element>
   </define>
 
-  <define name='poolCapsTypes'>
-    <attribute name='type'>
+  <define name="poolCapsTypes">
+    <attribute name="type">
       <text/>
     </attribute>
   </define>
 
-  <define name='poolCapsSupported'>
-    <attribute name='supported'>
+  <define name="poolCapsSupported">
+    <attribute name="supported">
       <ref name="virYesNo"/>
     </attribute>
   </define>
 
-  <define name='poolCapsPoolOptions'>
-    <element name='poolOptions'>
+  <define name="poolCapsPoolOptions">
+    <element name="poolOptions">
       <optional>
-        <ref name='poolDefaultFormat'/>
+        <ref name="poolDefaultFormat"/>
       </optional>
       <optional>
-        <ref name='poolCapsEnum'/>
+        <ref name="poolCapsEnum"/>
       </optional>
     </element>
   </define>
 
-  <define name='poolCapsVolOptions'>
-    <element name='volOptions'>
-      <ref name='poolDefaultFormat'/>
-      <ref name='poolCapsEnum'/>
+  <define name="poolCapsVolOptions">
+    <element name="volOptions">
+      <ref name="poolDefaultFormat"/>
+      <ref name="poolCapsEnum"/>
     </element>
   </define>
 
-  <define name='poolDefaultFormat'>
-    <element name='defaultFormat'>
-      <attribute name='type'>
+  <define name="poolDefaultFormat">
+    <element name="defaultFormat">
+      <attribute name="type">
         <text/>
       </attribute>
     </element>
   </define>
 
-  <define name='poolCapsEnum'>
+  <define name="poolCapsEnum">
     <zeroOrMore>
-      <element name='enum'>
-        <attribute name='name'>
+      <element name="enum">
+        <attribute name="name">
           <text/>
         </attribute>
-        <ref name='value'/>
+        <ref name="value"/>
       </element>
     </zeroOrMore>
   </define>
 
-  <define name='value'>
+  <define name="value">
     <zeroOrMore>
-      <element name='value'>
+      <element name="value">
         <text/>
       </element>
     </zeroOrMore>

docs/schemas/storagevol.rng

@@ -2,18 +2,18 @@
 <!-- A Relax NG schema for the libvirt storage volume XML format -->
 <grammar xmlns="http://relaxng.org/ns/structure/1.0"
     datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes">
-  <include href='basictypes.rng'/>
+  <include href="basictypes.rng"/>
   <start>
-    <ref name='vol'/>
+    <ref name="vol"/>
   </start>
 
-  <include href='storagecommon.rng'/>
+  <include href="storagecommon.rng"/>
 
 
-  <define name='vol'>
-    <element name='volume'>
+  <define name="vol">
+    <element name="volume">
       <optional>
-        <attribute name='type'>
+        <attribute name="type">
           <choice>
             <value>file</value>
             <value>block</value>
@@ -24,68 +24,68 @@
         </attribute>
       </optional>
       <interleave>
-        <element name='name'>
-          <ref name='volName'/>
+        <element name="name">
+          <ref name="volName"/>
         </element>
         <optional>
-          <element name='key'>
+          <element name="key">
             <text/>
           </element>
         </optional>
         <optional>
-          <ref name='source'/>
+          <ref name="source"/>
         </optional>
-        <ref name='sizing'/>
-        <ref name='target'/>
+        <ref name="sizing"/>
+        <ref name="target"/>
         <optional>
-          <ref name='backingStore'/>
+          <ref name="backingStore"/>
         </optional>
       </interleave>
     </element>
   </define>
 
-  <define name='sizing'>
+  <define name="sizing">
     <interleave>
       <optional>
-        <element name='capacity'>
-          <ref name='scaledInteger'/>
+        <element name="capacity">
+          <ref name="scaledInteger"/>
         </element>
       </optional>
       <optional>
-        <element name='allocation'>
-          <ref name='scaledInteger'/>
+        <element name="allocation">
+          <ref name="scaledInteger"/>
         </element>
       </optional>
       <optional>
-        <element name='physical'>
-          <ref name='scaledInteger'/>
+        <element name="physical">
+          <ref name="scaledInteger"/>
         </element>
       </optional>
     </interleave>
   </define>
 
-  <define name='timestamps'>
+  <define name="timestamps">
     <optional>
-      <element name='timestamps'>
+      <element name="timestamps">
         <interleave>
           <optional>
-            <element name='atime'>
-              <ref name='timestamp'/>
+            <element name="atime">
+              <ref name="timestamp"/>
             </element>
           </optional>
           <optional>
-            <element name='btime'>
-              <ref name='timestamp'/>
+            <element name="btime">
+              <ref name="timestamp"/>
             </element>
           </optional>
           <optional>
-            <element name='ctime'>
-              <ref name='timestamp'/>
+            <element name="ctime">
+              <ref name="timestamp"/>
             </element>
           </optional>
           <optional>
-            <element name='mtime'>
-              <ref name='timestamp'/>
+            <element name="mtime">
+              <ref name="timestamp"/>
             </element>
           </optional>
         </interleave>
@@ -93,92 +93,92 @@
     </optional>
   </define>
 
-  <define name='timestamp'>
-    <data type='string'>
+  <define name="timestamp">
+    <data type="string">
       <param name="pattern">[0-9]+(\.[0-9]{0,9})?</param>
     </data>
   </define>
 
-  <define name='target'>
-    <element name='target'>
+  <define name="target">
+    <element name="target">
       <interleave>
         <optional>
-          <element name='path'>
+          <element name="path">
             <choice>
-              <data type='anyURI'/>
-              <ref name='absFilePath'/>
+              <data type="anyURI"/>
+              <ref name="absFilePath"/>
             </choice>
           </element>
         </optional>
-        <ref name='format'/>
-        <ref name='permissions'/>
-        <ref name='timestamps'/>
+        <ref name="format"/>
+        <ref name="permissions"/>
+        <ref name="timestamps"/>
         <optional>
-          <ref name='encryption'/>
+          <ref name="encryption"/>
         </optional>
         <optional>
-          <ref name='compat'/>
+          <ref name="compat"/>
         </optional>
         <optional>
-          <element name='nocow'>
+          <element name="nocow">
             <empty/>
           </element>
         </optional>
         <optional>
-          <ref name='fileFormatFeatures'/>
+          <ref name="fileFormatFeatures"/>
         </optional>
       </interleave>
     </element>
   </define>
 
-  <define name='backingStore'>
-    <element name='backingStore'>
+  <define name="backingStore">
+    <element name="backingStore">
       <interleave>
-        <element name='path'>
-          <ref name='absFilePath'/>
+        <element name="path">
+          <ref name="absFilePath"/>
         </element>
-        <ref name='format'/>
-        <ref name='permissions'/>
-        <ref name='timestamps'/>
+        <ref name="format"/>
+        <ref name="permissions"/>
+        <ref name="timestamps"/>
       </interleave>
     </element>
   </define>
 
 
-  <define name='source'>
-    <element name='source'>
+  <define name="source">
+    <element name="source">
       <zeroOrMore>
-        <ref name='sourcedev'/>
+        <ref name="sourcedev"/>
       </zeroOrMore>
     </element>
   </define>
 
-  <define name='sourcedev'>
-    <element name='device'>
-      <attribute name='path'>
-        <ref name='absFilePath'/>
+  <define name="sourcedev">
+    <element name="device">
+      <attribute name="path">
+        <ref name="absFilePath"/>
       </attribute>
       <choice>
         <empty/>
-        <ref name='devextents'/>
+        <ref name="devextents"/>
       </choice>
     </element>
   </define>
 
-  <define name='devextents'>
+  <define name="devextents">
     <oneOrMore>
-      <element name='extent'>
-        <attribute name='start'>
-          <ref name='unsignedLong'/>
+      <element name="extent">
+        <attribute name="start">
+          <ref name="unsignedLong"/>
         </attribute>
-        <attribute name='end'>
-          <ref name='unsignedLong'/>
+        <attribute name="end">
+          <ref name="unsignedLong"/>
         </attribute>
       </element>
     </oneOrMore>
   </define>
 
-  <define name='formatdev'>
+  <define name="formatdev">
     <choice>
       <value>none</value>
       <value>auto</value>
@@ -198,14 +198,14 @@
     </choice>
   </define>
 
-  <define name='formatfile'>
+  <define name="formatfile">
     <choice>
       <value>unknown</value>
-      <ref name='storageFormat'/>
+      <ref name="storageFormat"/>
     </choice>
   </define>
 
-  <define name='formatdisk'>
+  <define name="formatdisk">
     <choice>
       <value>none</value>
       <value>linux</value>
@@ -218,14 +218,14 @@
     </choice>
   </define>
 
-  <define name='format'>
+  <define name="format">
     <optional>
-      <element name='format'>
-        <attribute name='type'>
+      <element name="format">
+        <attribute name="type">
           <choice>
-            <ref name='formatfile'/>
-            <ref name='formatdev'/>
-            <ref name='formatdisk'/>
+            <ref name="formatfile"/>
+            <ref name="formatdev"/>
+            <ref name="formatdisk"/>
           </choice>
         </attribute>
       </element>

docs/securityprocess.html.in

@@ -59,7 +59,7 @@
       the various vendors who distribute libvirt. The team is responsible
       for analysing incoming reports from users to identify whether a
       security problem exists and its severity. It then works to produce
-      a fix for all official stable branches of libvirt and co-ordinate
+      a fix for all official stable branches of libvirt and coordinate
       embargo dates between vendors to allow simultaneous release of the
       fix by all affected parties.
     </p>

docs/strategy.html.in

@@ -84,7 +84,7 @@
       <dt>C</dt>
       <dd>Large parts of the core libvirt library, daemons, and helper tools
         will continue to make use in the C language. Integration of other
-        languages will be an incremental, targetted process where they can
+        languages will be an incremental, targeted process where they can
         bring the greatest benefit.</dd>
       <dt>Rust / Go</dt>
       <dd>Parts of the core libvirt library, daemons and helper tools are to

docs/submitting-patches.rst

@@ -22,6 +22,9 @@ patch. However, the usual workflow of libvirt developer is:
   (hack, committing any changes along the way)
 
 More hints on compiling can be found `here <compiling.html>`__.
+Make sure to express your agreement with the `Developer Certificate
+of Origin <hacking.html#developer-certificate-of-origin>`__ by
+adding a "Signed-off-by" line to every commit message.
 When you want to post your patches:
 
 ::

docs/uri.html.in

@@ -234,7 +234,7 @@ Note that parameter values must be
         </td>
         <td> tls </td>
         <td>
-  A vaid GNUTLS priority string
+  A valid GNUTLS priority string
 </td>
       </tr>
       <tr>

examples/c/admin/list_clients.c

@@ -80,7 +80,7 @@ int main(int argc, char **argv)
         goto cleanup;
 
     /* let's print the currently connected clients and some basic info about
-     * them, we have 2 options how to interate over the returned list,
+     * them, we have 2 options how to iterate over the returned list,
      * use @count as the boundary or use the fact that @clients are guaranteed
      * to contain 1 extra element NULL;
      * this example uses the first option

examples/c/admin/list_servers.c

@@ -19,7 +19,7 @@ int main(void)
     if ((count = virAdmConnectListServers(conn, &servers, 0)) < 0)
         goto cleanup;
 
-    /* let's print the available servers, we have 2 options how to interate
+    /* let's print the available servers, we have 2 options how to iterate
      * over the returned list, use @count as the boundary or use the fact
      * that @servers are guaranteed to contain 1 extra element NULL;
      * this example uses the second option

examples/c/domain/info1.c

@@ -1,5 +1,5 @@
 /**
- * section: Informations
+ * section: Information
  * synopsis: Extract information about Xen domain 0
  * purpose: Demonstrate the basic use of the library to connect to the
  *          hypervisor and extract domain information.

examples/c/misc/event-test.c

@@ -963,6 +963,21 @@ myDomainEventBlockThresholdCallback(virConnectPtr conn G_GNUC_UNUSED,
 }
 
 
+static int
+myDomainEventMemoryFailureCallback(virConnectPtr conn G_GNUC_UNUSED,
+                                   virDomainPtr dom,
+                                   int recipient,
+                                   int action,
+                                   unsigned int flags,
+                                   void *opaque G_GNUC_UNUSED)
+{
+    printf("%s EVENT: Domain %s(%d) memory failure: recipient '%d', "
+           "aciont '%d', flags '%d'", __func__, virDomainGetName(dom),
+           virDomainGetID(dom), recipient, action, flags);
+    return 0;
+}
+
+
 static int
 myDomainEventMigrationIterationCallback(virConnectPtr conn G_GNUC_UNUSED,
                                         virDomainPtr dom,
@@ -1093,6 +1108,7 @@ struct domainEventData domainEvents[] = {
     DOMAIN_EVENT(VIR_DOMAIN_EVENT_ID_DEVICE_REMOVAL_FAILED, myDomainEventDeviceRemovalFailedCallback),
     DOMAIN_EVENT(VIR_DOMAIN_EVENT_ID_METADATA_CHANGE, myDomainEventMetadataChangeCallback),
     DOMAIN_EVENT(VIR_DOMAIN_EVENT_ID_BLOCK_THRESHOLD, myDomainEventBlockThresholdCallback),
+    DOMAIN_EVENT(VIR_DOMAIN_EVENT_ID_MEMORY_FAILURE, myDomainEventMemoryFailureCallback),
 };
 
 struct storagePoolEventData {

examples/xml/storage/pool-netfs.xml

@@ -2,7 +2,7 @@
   <name>virtimages</name>
   <source>
     <host name="nfs.example.com"/>
-    <directory path="/var/lib/virt/images"/>
+    <dir path="/var/lib/virt/images"/>
   </source>
   <target>
     <path>/var/lib/virt/images</path>

examples/xml/storage/vol-cow.xml

@@ -1,9 +1,7 @@
 <volume type="file">
   <name>cow.img</name>
-  <storage>
-    <allocation>0</allocation>
-    <capacity unit="T">1</capacity>
-  </storage>
+  <allocation>0</allocation>
+  <capacity unit="T">1</capacity>
   <target>
     <format type="cow"/>
   </target>

examples/xml/storage/vol-qcow.xml

@@ -1,9 +1,7 @@
 <volume type="file">
   <name>qcow.img</name>
-  <storage>
-    <allocation>0</allocation>
-    <capacity unit="T">1</capacity>
-  </storage>
+  <allocation>0</allocation>
+  <capacity unit="T">1</capacity>
   <target>
     <format type="qcow"/>
   </target>

examples/xml/storage/vol-qcow2.xml

@@ -1,9 +1,7 @@
 <volume type="file">
   <name>qcow2.img</name>
-  <storage>
-    <allocation>0</allocation>
-    <capacity unit="T">1</capacity>
-  </storage>
+  <allocation>0</allocation>
+  <capacity unit="T">1</capacity>
   <target>
     <format type="qcow2"/>
   </target>

examples/xml/storage/vol-raw.xml

@@ -1,7 +1,8 @@
 <volume type="file">
   <name>raw.img</name>
-  <storage>
-    <allocation unit="M">10</allocation>
-    <capacity unit="M">1000</capacity>
-  </storage>
+  <allocation unit="M">10</allocation>
+  <capacity unit="M">1000</capacity>
+  <target>
+    <format type="raw"/>
+  </target>
 </volume>