dom0 packages: Update to dom0 release v2411.19.1

SPECS-SIGNED/kernel-mshv-signed/kernel-mshv-signed.spec

@@ -6,8 +6,8 @@
 %define uname_r %{version}-%{release}
 Summary:        Signed MSHV-enabled Linux Kernel for %{buildarch} systems
 Name:           kernel-mshv-signed-%{buildarch}
-Version:        5.15.157.mshv1
-Release:        3%{?dist}
+Version:        6.6.57.mshv4
+Release:        1%{?dist}
 License:        GPLv2
 Vendor:         Microsoft Corporation
 Distribution:   Azure Linux
@@ -136,6 +136,9 @@ echo "initrd of kernel %{uname_r} removed" >&2
 %exclude /lib/modules/%{uname_r}/build
 
 %changelog
+* Tue May 06 2025 Manuel Huber <mahuber@microsoft.com> - 6.6.57.mshv4-1
+- Upgrade to 6.6.57.mshv4
+
 * Fri Jan 24 2025 Cameron Baird <cameronbaird@microsoft.com> - 5.15.157.mshv1-3
 - Original version for Azure Linux.
 - license: MIT

SPECS/cloud-hypervisor-cvm/cloud-hypervisor-cvm.signatures.json

@@ -1,7 +1,7 @@
 {
- "Signatures": {
-  "cloud-hypervisor-cvm-38.0.72.2-2-cargo.tar.gz": "68d1dc8f2a70fddad934e9131ccad7ce2c96323869433419e2f488062396bcc8",
-  "cloud-hypervisor-cvm-38.0.72.2.tar.gz": "1a357a0805f7b6d90993d5ae246c2dedff88cf98c9c0eab0903dc8071be0dae2",
-  "config.toml": "74c28b7520c157109b8990b325fe8f13504e56561a9bac51499d4c6bf4a66e52"
- }
-}
+  "Signatures": {
+    "config.toml": "06c9c9ca116704e883748cbed6fc4f080f68f649af8d759ecfbf3c36375c58d4",
+    "cloud-hypervisor-cvm-41.0.79.tar.gz": "d7b63ed05863ed24c2ed5c141d405347d41718abc47b1eda80f61f065cb58f40",
+    "cloud-hypervisor-cvm-41.0.79-vendor.tar.gz": "7c38df4bbf44a128a460fe380a6335ddf1b3ec77ed521078dfda851c988f5302"
+  }
+}

SPECS/cloud-hypervisor-cvm/cloud-hypervisor-cvm.spec

@@ -4,34 +4,24 @@
 
 Name:           cloud-hypervisor-cvm
 Summary:        Cloud Hypervisor CVM is an open source Virtual Machine Monitor (VMM) that enables running SEV SNP enabled VMs on top of MSHV using the IGVM file format as payload.
-Version:        38.0.72.2
-Release:        4%{?dist}
+Version:        41.0.79
+Release:        1%{?dist}
 License:        ASL 2.0 OR BSD-3-clause
 Vendor:         Microsoft Corporation
 Distribution:   Azure Linux
 Group:          Applications/System
 URL:            https://github.com/microsoft/cloud-hypervisor
 Source0:        https://github.com/microsoft/cloud-hypervisor/archive/refs/tags/msft/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
 %if 0%{?using_vendored_crates}
-# Note: the %%{name}-%%{version}-cargo.tar.gz file contains a cache created by capturing the contents downloaded into $CARGO_HOME.
+# Note: the %%{name}-%%{version}-vendor.tar.gz file contains a cache created by capturing the contents downloaded into $CARGO_HOME.
 # To update the cache and config.toml run:
 #   tar -xf %%{name}-%%{version}.tar.gz
 #   cd %%{name}-%%{version}
-#   patch -u -p0 < ../upgrade-openssl-to-3.3.2-to-address-CVE-2024-6119.patch
 #   cargo vendor > config.toml
-#   tar -czf %%{name}-%%{version}-cargo.tar.gz vendor/
-# rename the tarball to %%{name}-%%{version}-2-cargo.tar.gz when updating version
-# (feel free to drop -2 and this comment on version change)
-Source1:        %{name}-%{version}-2-cargo.tar.gz
+#   tar -czf %%{name}-%%{version}-vendor.tar.gz vendor/
+Source1:        %{name}-%{version}-vendor.tar.gz
 Source2:        config.toml
 %endif
-# Generated using:
-#   tar -xf %%{name}-%%{version}.tar.gz
-#   cd %%{name}-%%{version}
-#   cargo update -p openssl-src --precise 300.3.2+3.3.2
-#   diff -u ../cloud-hypervisor-msft-v38.0.72.2.backup/Cargo.lock Cargo.lock > ../upgrade-openssl-to-3.3.2-to-address-CVE-2024-6119.patch
-Patch0:         upgrade-openssl-to-3.3.2-to-address-CVE-2024-6119.patch
-Patch1:         CVE-2024-12797.patch
 
 BuildRequires:  binutils
 BuildRequires:  gcc
@@ -40,8 +30,8 @@ BuildRequires:  glibc-devel
 BuildRequires:  openssl-devel
 
 %if ! 0%{?using_rustup}
-BuildRequires:  rust < 1.85.0
-BuildRequires:  cargo < 1.85.0
+BuildRequires:  rust >= 1.85.0
+BuildRequires:  cargo >= 1.85.0
 %endif
 
 Requires: bash
@@ -78,15 +68,12 @@ Cloud Hypervisor is an open source Virtual Machine Monitor (VMM) that runs on to
 
 %prep
 
-%setup -q -n cloud-hypervisor-msft-v%{version}
+%setup -q -n cloud-hypervisor-%{version}
 %if 0%{?using_vendored_crates}
 tar xf %{SOURCE1}
 mkdir -p .cargo
 cp %{SOURCE2} .cargo/
 %endif
-# The vendored archive has been populated based on the patch, so we need to
-# repatch here as well in order to use the same versions
-%autopatch -p0
 
 %install
 install -d %{buildroot}%{_bindir}
@@ -144,10 +131,14 @@ cargo build --release --target=%{rust_musl_target} %{cargo_pkg_feature_opts} %{c
 %{_libdir}/cloud-hypervisor/static/ch-remote
 %caps(cap_net_admim=ep) %{_libdir}/cloud-hypervisor/static/cloud-hypervisor
 %endif
-%license LICENSE-APACHE
-%license LICENSE-BSD-3-Clause
+%license LICENSES/Apache-2.0.txt
+%license LICENSES/BSD-3-Clause.txt
+%license LICENSES/CC-BY-4.0.txt
 
 %changelog
+* Mon Apr 28 2025 CBL-Mariner Servicing Account <cblmargh@microsoft.com> - 41.0.79-1
+- Auto-upgrade to 41.0.79
+
 * Mon Apr 21 2025 Kavya Sree Kaitepalli <kkaitepalli@microsoft.com> - 38.0.72.2-4
 - Pin rust version
 

SPECS/cloud-hypervisor-cvm/config.toml

@@ -1,46 +1,31 @@
 [source.crates-io]
 replace-with = "vendored-sources"
 
-[source."git+https://github.com/cloud-hypervisor/kvm-bindings?branch=ch-v0.7.0"]
-git = "https://github.com/cloud-hypervisor/kvm-bindings"
-branch = "ch-v0.7.0"
-replace-with = "vendored-sources"
-
-[source."git+https://github.com/cloud-hypervisor/versionize_derive?branch=ch-0.1.6"]
-git = "https://github.com/cloud-hypervisor/versionize_derive"
-branch = "ch-0.1.6"
+[source."git+https://github.com/NunoDasNeves/vfio?branch=nudasnev/mshv-ioctls-v0.3.0"]
+git = "https://github.com/NunoDasNeves/vfio"
+branch = "nudasnev/mshv-ioctls-v0.3.0"
 replace-with = "vendored-sources"
 
 [source."git+https://github.com/firecracker-microvm/micro-http?branch=main"]
 git = "https://github.com/firecracker-microvm/micro-http"
 branch = "main"
 replace-with = "vendored-sources"
 
-[source."git+https://github.com/microsoft/igvm?branch=main"]
-git = "https://github.com/microsoft/igvm"
-branch = "main"
-replace-with = "vendored-sources"
-
 [source."git+https://github.com/rust-vmm/acpi_tables?branch=main"]
 git = "https://github.com/rust-vmm/acpi_tables"
 branch = "main"
 replace-with = "vendored-sources"
 
-[source."git+https://github.com/rust-vmm/mshv?branch=main"]
+[source."git+https://github.com/rust-vmm/mshv?tag=v0.3.0"]
 git = "https://github.com/rust-vmm/mshv"
-branch = "main"
+tag = "v0.3.0"
 replace-with = "vendored-sources"
 
 [source."git+https://github.com/rust-vmm/vfio-user?branch=main"]
 git = "https://github.com/rust-vmm/vfio-user"
 branch = "main"
 replace-with = "vendored-sources"
 
-[source."git+https://github.com/rust-vmm/vfio?branch=main"]
-git = "https://github.com/rust-vmm/vfio"
-branch = "main"
-replace-with = "vendored-sources"
-
 [source."git+https://github.com/rust-vmm/vm-fdt?branch=main"]
 git = "https://github.com/rust-vmm/vm-fdt"
 branch = "main"