- security patch up to and including XSA-282
- others bug fixes, code cleanup and minor improvements
Note that this includes a patch to xen/arch/x86/mm.c which removes
a new ASSERT() firing when shutting down a 64bit NetBSD guest.
all security advisory up to and including XSA254.
While there pass XEN_VENDORVERSION=nb${PKGREVISION} to make so that
'xl info' shows the NetBSD PKGREVISION. If PKGREVISION is not available,
define this as 'nb0'.
> This README gives references for one of three mitigation strategies
> for Meltdown.
> This series is a first-class migitation pagetable isolation series for
> Xen. It is available for Xen 4.6 to Xen 4.10 and later.
bump PKGREVISION
to XSA244. Keep PKGREVISION to 1 to account for the fact that it's
not a stock Xen 4.8.2.
Note that, unlike upstream, pv-linear-pt defaults to true, so that
NetBSD PV guests (including dom0) will continue to boot without changes
to boot.cfg
This includes stub domains support, but it should be considered
experimental at this time. Stub domains hangs with serial ports,
or more more than one virual disk (multiple virtual ethernet have not been
tested).