Version 1.25.43.

Used for testing RStruct/RStructList return values, but only
in GObject and Java bindings.

.gitignore

@@ -9,6 +9,9 @@
 *.cmxa
 *.diff
 *.eml
+*.gcda
+*.gcno
+*.gcov
 *.hi
 *.jar
 *.la
@@ -23,17 +26,21 @@ bindtests.tmp
 cscope.out
 .deps
 .gdb_history
+gmon.out
 .libs
 Makefile
 Makefile.in
-pod2htm?.tmp
 
+/.sc-*
 /ABOUT-NLS
 /aclocal.m4
 /align/stamp-virt-alignment-scan.pod
 /align/virt-alignment-scan
 /align/virt-alignment-scan.1
-/appliance/excludelist
+/appliance/daemon.tar.gz
+/appliance/excludefiles
+/appliance/hostfiles
+/appliance/init.tar.gz
 /appliance/libguestfs-make-fixed-appliance
 /appliance/libguestfs-make-fixed-appliance.1
 /appliance/make.sh
@@ -41,8 +48,35 @@ pod2htm?.tmp
 /appliance/stamp-libguestfs-make-fixed-appliance.pod
 /appliance/stamp-supermin
 /appliance/supermin.d
+/appliance/udev-rules.tar.gz
 /autom4te.cache
+/bash/virt-builder
+/bash/virt-cat
+/bash/virt-df
+/bash/virt-edit
+/bash/virt-filesystems
+/bash/virt-format
+/bash/virt-inspector
+/bash/virt-ls
+/bash/virt-sysprep
+/bash/virt-sparsify
 /build-aux
+/builder/.depend
+/builder/index-parse.c
+/builder/index-parse.h
+/builder/index-scan.c
+/builder/libguestfs.conf
+/builder/*.qcow2
+/builder/stamp-virt-builder.pod
+/builder/stamp-virt-index-validate.pod
+/builder/test-config/virt-builder/repos.d/test-index.conf
+/builder/test-index
+/builder/test-website/virt-builder/repos.d/libguestfs.conf
+/builder/virt-builder
+/builder/virt-builder.1
+/builder/virt-index-validate
+/builder/virt-index-validate.1
+/builder/*.xz
 /cat/stamp-virt-*.pod
 /cat/virt-cat
 /cat/virt-cat.1
@@ -52,6 +86,7 @@ pod2htm?.tmp
 /cat/virt-ls.1
 /ChangeLog
 /compile
+/config.cache
 /config.guess
 /config.h
 /config.h.in
@@ -62,10 +97,11 @@ pod2htm?.tmp
 /csharp/Libguestfs.cs
 /daemon/actions.h
 /daemon/errnostring.c
-/daemon/errnostring_gperf.c
-/daemon/errnostring_gperf.gperf
+/daemon/errnostring-gperf.c
+/daemon/errnostring-gperf.gperf
 /daemon/errnostring.h
 /daemon/guestfsd
+/daemon/guestfsd.8
 /daemon/guestfsd.exe
 /daemon/guestfs_protocol.c
 /daemon/guestfs_protocol.h
@@ -74,30 +110,38 @@ pod2htm?.tmp
 /daemon/names.c
 /daemon/optgroups.c
 /daemon/optgroups.h
+/daemon/stamp-guestfsd.pod
 /daemon/stubs.c
 /depcomp
 /df/stamp-virt-df.pod
 /df/virt-df
 /df/virt-df.1
+/diff/stamp-virt-diff.pod
+/diff/virt-diff
+/diff/virt-diff.1
 /edit/stamp-virt-*.pod
 /edit/virt-edit
 /edit/virt-edit.1
+/erlang/bindtests.erl
 /erlang/erl-guestfs
 /erlang/erl-guestfs.c
 /erlang/examples/guestfs-erlang.3
 /erlang/examples/stamp-guestfs-erlang.pod
 /erlang/guestfs.beam
 /erlang/guestfs.erl
-/examples/copy_over
-/examples/create_disk
-/examples/display_icon
+/erlang/libguestfs-1.*
+/examples/copy-over
+/examples/create-disk
+/examples/debug-logging
+/examples/display-icon
 /examples/guestfs-examples.3
 /examples/guestfs-faq.1
 /examples/guestfs-performance.1
 /examples/guestfs-recipes.1
 /examples/guestfs-testing.1
-/examples/inspect_vm
-/examples/mount_local
+/examples/inspect-vm
+/examples/libvirt-auth
+/examples/mount-local
 /examples/stamp-guestfs-examples.pod
 /examples/stamp-guestfs-faq.pod
 /examples/stamp-guestfs-performance.pod
@@ -105,8 +149,8 @@ pod2htm?.tmp
 /examples/stamp-guestfs-testing.pod
 /examples/virt-dhcp-address
 /fish/cmds.c
-/fish/cmds_gperf.c
-/fish/cmds_gperf.gperf
+/fish/cmds-gperf.c
+/fish/cmds-gperf.gperf
 /fish/completion.c
 /fish/event-names.c
 /fish/fish-cmds.h
@@ -114,11 +158,14 @@ pod2htm?.tmp
 /fish/guestfish.1
 /fish/guestfish-actions.pod
 /fish/guestfish-commands.pod
+/fish/guestfish-prepopts.pod
+/fish/libguestfs-tools.conf.5
 /fish/prepopts.c
 /fish/prepopts.h
 /fish/rc_protocol.c
 /fish/rc_protocol.h
 /fish/stamp-guestfish.pod
+/fish/stamp-libguestfs-tools.conf.pod
 /fish/stamp-virt-copy-in.pod
 /fish/stamp-virt-copy-out.pod
 /fish/stamp-virt-tar-in.pod
@@ -132,7 +179,11 @@ pod2htm?.tmp
 /format/virt-format.1
 /fuse/guestmount
 /fuse/guestmount.1
+/fuse/guestunmount
+/fuse/guestunmount.1
 /fuse/stamp-guestmount.pod
+/fuse/stamp-guestunmount.pod
+/fuse/test-guestunmount-fd
 /generator/.depend
 /generator/files-generated.txt
 /generator/generator
@@ -147,38 +198,51 @@ pod2htm?.tmp
 /gobject/Guestfs-1.0.typelib
 /gobject/guestfs-gobject*.c
 /gobject/guestfs-gobject*.h
-/.guestfs-*
-/guestfs.*
+/golang/bindtests.go
+/golang/examples/guestfs-golang.3
+/golang/examples/stamp-guestfs-golang.pod
+/golang/pkg
+/guestfs-release-notes.1
 /guestfsd-in-wine.log
 /haskell/Bindtests
 /haskell/Bindtests.hs
-/haskell/Guestfs005Load
-/haskell/Guestfs010Basic
+/haskell/Guestfs010Load
+/haskell/Guestfs030Config
+/haskell/Guestfs050LVCreate
 /haskell/Guestfs.hs
 /html/guestfish.1.html
 /html/guestfs.3.html
 /html/guestfs-erlang.3.html
 /html/guestfs-examples.3.html
 /html/guestfs-faq.1.html
+/html/guestfs-golang.3.html
 /html/guestfs-java.3.html
+/html/guestfs-lua.3.html
 /html/guestfs-ocaml.3.html
 /html/guestfs-performance.1.html
 /html/guestfs-perl.3.html
 /html/guestfs-python.3.html
 /html/guestfs-recipes.1.html
+/html/guestfs-release-notes.1.html
 /html/guestfs-ruby.3.html
 /html/guestfs-testing.1.html
+/html/guestfsd.8.html
 /html/guestmount.1.html
+/html/guestunmount.1.html
 /html/libguestfs-make-fixed-appliance.1.html
 /html/libguestfs-test-tool.1.html
+/html/libguestfs-tools.conf.5.html
 /html/virt-alignment-scan.1.html
+/html/virt-builder.1.html
 /html/virt-cat.1.html
 /html/virt-copy-in.1.html
 /html/virt-copy-out.1.html
 /html/virt-df.1.html
+/html/virt-diff.1.html
 /html/virt-edit.1.html
 /html/virt-filesystems.1.html
 /html/virt-format.1.html
+/html/virt-index-validate.1.html
 /html/virt-inspector.1.html
 /html/virt-list-filesystems.1.html
 /html/virt-list-partitions.1.html
@@ -192,7 +256,9 @@ pod2htm?.tmp
 /html/virt-tar-in.1.html
 /html/virt-tar-out.1.html
 /html/virt-win-reg.1.html
+/inspector/actual-*.xml
 /inspector/stamp-virt-inspector.pod
+/inspector/test-xmllint.sh
 /inspector/virt-inspector
 /inspector/virt-inspector.1
 /install-sh
@@ -209,6 +275,11 @@ pod2htm?.tmp
 /libtool
 /local*
 /ltmain.sh
+/lua/bindtests.lua
+/lua/examples/guestfs-lua.3
+/lua/examples/stamp-guestfs-lua.pod
+/lua/guestfs.so
+/lua/lua-guestfs.c
 /m4/ChangeLog
 /m4/gnulib-cache.m4
 /m4/intmax.m4
@@ -218,7 +289,16 @@ pod2htm?.tmp
 /m4/ltsugar.m4
 /m4/ltversion.m4
 /maint.mk
+/make-fs/stamp-virt-make-fs.pod
+/make-fs/virt-make-fs
+/make-fs/virt-make-fs.1
 /missing
+/mllib/.depend
+/mllib/common_gettext.ml
+/mllib/common_utils_tests
+/mllib/config.ml
+/mllib/dummy
+/mllib/libdir.ml
 /ocaml/bindtests.bc
 /ocaml/bindtests.opt
 /ocaml/bindtests.ml
@@ -228,27 +308,14 @@ pod2htm?.tmp
 /ocaml/examples/guestfs-ocaml.3
 /ocaml/examples/inspect_vm
 /ocaml/examples/stamp-guestfs-ocaml.pod
-/ocaml/guestfs_c_actions.c
-/ocaml/guestfs_inspector.ml
-/ocaml/guestfs_inspector.mli
+/ocaml/guestfs-c-actions.c
 /ocaml/guestfs.ml
 /ocaml/guestfs.mli
 /ocamlinit-stamp
 /ocaml/META
-/ocaml/t/guestfs_005_load.bc
-/ocaml/t/guestfs_005_load.opt
-/ocaml/t/guestfs_010_basic.bc
-/ocaml/t/guestfs_010_basic.opt
-/ocaml/t/guestfs_070_threads.bc
-/ocaml/t/guestfs_070_threads.opt
-/ocaml/t/guestfs_080_optargs.bc
-/ocaml/t/guestfs_080_optargs.opt
-/ocaml/t/guestfs_400_events.bc
-/ocaml/t/guestfs_400_events.opt
-/ocaml/t/guestfs_400_progress.bc
-/ocaml/t/guestfs_400_progress.opt
-/ocaml/t/guestfs_500_parallel_mount_local.bc
-/ocaml/t/guestfs_500_parallel_mount_local.opt
+/ocaml/stamp-mlguestfs
+/ocaml/t/*.bc
+/ocaml/t/*.opt
 /perl/bindtests.pl
 /perl/blib
 /perl/examples/guestfs-perl.3
@@ -276,6 +343,7 @@ pod2htm?.tmp
 /php/extension/config.sub
 /php/extension/configure
 /php/extension/configure.in
+/php/extension/env
 /php/extension/guestfs_php.c
 /php/extension/guestfs_php_*.diff
 /php/extension/guestfs_php_*.exp
@@ -295,13 +363,15 @@ pod2htm?.tmp
 /php/extension/php_guestfs_php.h
 /php/extension/run-tests.php
 /php/extension/tmp-php.ini
+/pick-guests.pl
 /po-docs/*/*.1
 /po-docs/*/*.3
-/po-docs/*/*.pl
+/po-docs/*/*.5
+/po-docs/*/*.8
 /po-docs/po4a.conf
 /po-docs/*/*.pod
-/po-docs/*/stamp-update-po
-/podwrapper.sh
+/podwrapper.1
+/podwrapper.pl
 /po/*.gmo
 /python/bindtests.py
 /python/examples/guestfs-python.3
@@ -311,13 +381,12 @@ pod2htm?.tmp
 /python/guestfs.pyc
 /python/guestfs.pyo
 /python/__pycache__
+/qemu-wrapper.sh
 /rescue/stamp-virt-rescue.pod
 /rescue/virt-rescue
 /rescue/virt-rescue.1
 /resize/.depend
-/resize/resize_gettext.ml
 /resize/stamp-virt-resize.pod
-/resize/utils_tests
 /resize/virt-resize
 /resize/virt-resize.1
 /ruby/bindtests.rb
@@ -325,6 +394,7 @@ pod2htm?.tmp
 /ruby/examples/guestfs-ruby.3
 /ruby/examples/stamp-guestfs-ruby.pod
 /ruby/ext/guestfs/extconf.h
+/ruby/ext/guestfs/extconf.rb
 /ruby/ext/guestfs/_guestfs.bundle
 /ruby/ext/guestfs/_guestfs.c
 /ruby/ext/guestfs/_guestfs.so
@@ -332,21 +402,23 @@ pod2htm?.tmp
 /ruby/Rakefile
 /run
 /sparsify/.depend
-/sparsify/sparsify_gettext.ml
 /sparsify/stamp-virt-sparsify.pod
 /sparsify/virt-sparsify
 /sparsify/virt-sparsify.1
-/src/actions.c
+/src/actions-?.c
+/src/actions-variants.c
 /src/bindtests.c
 /src/errnostring.c
-/src/errnostring_gperf.c
-/src/errnostring_gperf.gperf
+/src/errnostring-gperf.c
+/src/errnostring-gperf.gperf
 /src/errnostring.h
+/src/event-string.c
 /src/guestfs.3
 /src/guestfs-actions.pod
 /src/guestfs-availability.pod
 /src/guestfs.h
 /src/guestfs-internal-actions.h
+/src/guestfs-internal-frontend-cleanups.h
 /src/guestfs_protocol.c
 /src/guestfs_protocol.h
 /src/guestfs_protocol.x
@@ -354,19 +426,24 @@ pod2htm?.tmp
 /src/libguestfs.pc
 /src/libguestfs.syms
 /src/.libs/libguestfs.so
+/src/libvirt-is-version
 /src/stamp-guestfs.pod
+/src/structs-cleanup.c
+/src/structs-compare.c
+/src/structs-copy.c
+/src/structs-free.c
+/src/test-utils
+/stamp-guestfs-release-notes.pod
 /stamp-h1
 /sysprep/.depend
 /sysprep/stamp-script1.sh
 /sysprep/stamp-script2.sh
+/sysprep/stamp-script4.sh
 /sysprep/stamp-virt-sysprep.pod
 /sysprep/sysprep-extra-options.pod
-/sysprep/sysprep_gettext.ml
 /sysprep/sysprep-operations.pod
 /sysprep/virt-sysprep
 /sysprep/virt-sysprep.1
-/test1.img
-/test2.img
 /test.err
 /test.out
 /tests/c-api/test-add-drive-opts
@@ -375,12 +452,15 @@ pod2htm?.tmp
 /tests/c-api/test-config
 /tests/c-api/test-create-handle
 /tests/c-api/test-debug-to-file
+/tests/c-api/test-environment
+/tests/c-api/test-event-string
 /tests/c-api/test*.img
 /tests/c-api/test-just-header
 /tests/c-api/test-just-header-cxx
 /tests/c-api/test-last-errno
 /tests/c-api/test.log
 /tests/c-api/test-private-data
+/tests/c-api/test-pwd
 /tests/c-api/tests
 /tests/c-api/tests.c
 /tests/c-api/test*.tmp
@@ -392,29 +472,44 @@ pod2htm?.tmp
 /tests/data/100krandom
 /tests/data/10klines
 /tests/data/abssymlink
+/tests/data/blank-disk-*
+/tests/data/blank-disk-*
 /tests/data/hello.b64
 /tests/data/initrd
 /tests/data/initrd-x86_64.img
 /tests/data/initrd-x86_64.img.gz
 /tests/data/test-grep.txt.gz
 /tests/data/test.iso
-/tests/extra/valgrind.log
+/tests/disks/test-qemu-drive-libvirt.xml
+/tests/events/test-libvirt-auth-callbacks
+/tests/guests/blank-*.img
 /tests/guests/debian.img
 /tests/guests/fedora.img
+/tests/guests/fedora-btrfs.img
 /tests/guests/fedora-md1.img
 /tests/guests/fedora-md2.img
+/tests/guests/guests.xml
+/tests/guests/guests-all-good.xml
 /tests/guests/guest-aux/fedora-name.db
 /tests/guests/guest-aux/fedora-packages.db
+/tests/guests/guest-aux/windows-software
+/tests/guests/guest-aux/windows-system
 /tests/guests/stamp-fedora-md.img
 /tests/guests/ubuntu.img
 /tests/guests/windows.img
+/tests/mount-local/test-parallel-mount-local
+/tests/mountable/test-internal-parse-mountable
+/tests/parallel/test-parallel
 /tests/regressions/rhbz501893
 /tests/regressions/rhbz790721
+/tests/regressions/rhbz914931
+/tests/regressions/rhbz1044014.out
+/tests/regressions/rhbz1055452
+/tests/rsync/rsyncd.pid
+/tests/syslinux/extlinux-guest.img
+/tests/syslinux/syslinux-guest.img
 /test-tool/libguestfs-test-tool
 /test-tool/libguestfs-test-tool.1
 /test-tool/libguestfs-test-tool-helper
 /test-tool/stamp-libguestfs-test-tool.pod
-/tools/test.img
 /tools/virt-*.1
-/tools/virt-*.pl
-/valgrind.log.*

.lvimrc

@@ -5,5 +5,5 @@
 
 set sw=2
 set ts=2
-set tw=80
+set tw=70
 set expandtab

.mailmap

@@ -0,0 +1,13 @@
+Jim Meyering <meyering@redhat.com> <jim@meyering.net>
+Jim Meyering <meyering@redhat.com> <meyering@vv.meyering.net.meyering.net>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rich@hakodate.home.annexia.org>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rich@koneko.home.annexia.org>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rich@koneko.local>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rjones@centos5x32.home.annexia.org>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rjones@debian5x64.home.annexia.org>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rjones@redhat.com>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rjones@trick.home.annexia.org>
+Richard W.M. Jones <rjones@redhat.com> Richard Jones <rjones@ubuntu910x64.home.annexia.org>
+Richard W.M. Jones <rjones@redhat.com> <rich@annexia.org>
+Richard W.M. Jones <rjones@redhat.com> rjones <rjones>
+Wanlong Gao <gaowanlong@cn.fujitsu.com> <wanlong.gao@gmail.com>

.tx/config

@@ -1,5 +1,5 @@
 [main]
-host = https://www.transifex.net
+host = https://www.transifex.com
 
 [libguestfs.libguestfspot]
 file_filter = po/<lang>.po
@@ -10,4 +10,3 @@ source_lang = en
 file_filter = po-docs/<lang>.po
 source_file = po-docs/libguestfs-docs.pot
 source_lang = en
-

AUTHORS

@@ -1,28 +1,50 @@
-Angus Salkeld <asalkeld@redhat.com>
-Ani Peter <apeter@redhat.com>
-Charles Duffy <cduffy@messageone.com>
-Daniel Berrange <berrange@redhat.com>
-Daniel Cabrera <logan@fedoraproject.org>
-Douglas Schilling Landgraf <dougsland@redhat.com>
-Erik Nolte <erik_nolte@acm.org>
-Geert Warrink <geert.warrink@onsnet.nu>
-Guido Günther <agx@sigxcpu.org>
-Hilko Bengen <bengen@hilluzination.de>
-Jaswinder Singh <jsingh@redhat.com>
-Jim Meyering <jim@meyering.net>
-Jiri Popelka <jpopelka@redhat.com>
-Karel Klíč <kklic@redhat.com>
-Marcin Gibula <m.gibula@e24cloud.com>
-Matthew Booth <mbooth@redhat.com>
-Maxim Koltsov <kolmax94@gmail.com>
-Michael Scherer <misc@zarb.org>
-Nikita A Menkovich <menkovich@gmail.com>
-Nikos Skalkotos <skalkoto@gmail.com>
-Piotr Drąg <piotrdrag@gmail.com>
-Qin Guan <qguan@redhat.com>
-Rajesh Ranjan <rranjan@redhat.com>
-Richard W.M. Jones <rich@annexia.org>
-Sandeep Shedmake <sshedmak@redhat.com>
-Shankar Prasad <svenkate@redhat.com>
-Thomas S Hatch <thatch45@gmail.com>
-Wanlong Gao <gaowanlong@cn.fujitsu.com>
+Adam Huffman
+Angus Salkeld
+Ani Peter
+Bastien ROUCARIÈS
+Charles Duffy
+Cole Robinson
+Colin Walters
+Dan Lipsitt
+Daniel Berrange
+Daniel Cabrera
+Daniel Exner
+Dave Vasilevsky
+Douglas Schilling Landgraf
+Eric Blake
+Erik Nolte
+Evaggelos Balaskas
+Geert Warrink
+Guido Günther
+Hilko Bengen
+infernix
+Jaswinder Singh
+Jim Meyering
+Jiri Popelka
+John Eckersberg
+Karel Klíč
+Marcin Gibula
+Martin Kletzander
+Masami HIRATA
+Matthew Booth
+Maxim Koltsov
+Michael Scherer
+Mike Kelly
+Nicholas Strugnell
+Nikita A Menkovich
+Nikita Menkovich
+Nikos Skalkotos
+Olaf Hering
+Or Goshen
+Paul Mackerras
+Pino Toscano
+Piotr Drąg
+Qin Guan
+Rajesh Ranjan
+Richard W.M. Jones
+Sandeep Shedmake
+Shankar Prasad
+Thomas S Hatch
+Török Edwin
+Wanlong Gao
+Wulf C. Krueger

BUGS

@@ -1,5 +1,5 @@
 NOTE: This file is automatically generated from "update-bugs.sh".
-Last updated: 2012-07-06
+Last updated: 2014-03-08
 
 This contains a local list of the bugs that are open against
 libguestfs.  Bugs are tracked in the Red Hat Bugzilla database
@@ -29,105 +29,42 @@ Bugs in NEW or ASSIGNED state are open and waiting for someone to fix.
 554829 NEW https://bugzilla.redhat.com/show_bug.cgi?id=554829
   SELinux handling could be done better.
 
-555803 NEW https://bugzilla.redhat.com/show_bug.cgi?id=555803
-  guestfs_tgz_out does not detect failure of tar command
-
-563450 NEW https://bugzilla.redhat.com/show_bug.cgi?id=563450
-  list-devices returns devices of different types out of order
-
 572337 NEW https://bugzilla.redhat.com/show_bug.cgi?id=572337
   libguestfs should support gptsync
 
 578103 NEW https://bugzilla.redhat.com/show_bug.cgi?id=578103
   [RFE] Tool to Compare Windows Registry Entries
 
-593511 NEW https://bugzilla.redhat.com/show_bug.cgi?id=593511
-  [RFE] function to get partition name
-
-596354 NEW https://bugzilla.redhat.com/show_bug.cgi?id=596354
-  guestfish.1.html and guestfs.3.html declared "XHTML 1.0 Strict" but are not in fact well-formed XML
-
 604041 NEW https://bugzilla.redhat.com/show_bug.cgi?id=604041
   guestmount absolute symlinks don't work
 
-624334 NEW https://bugzilla.redhat.com/show_bug.cgi?id=624334
-  blockdev-setbsz succeeds, but does not affect blockdev-getbsz
-
-624335 NEW https://bugzilla.redhat.com/show_bug.cgi?id=624335
-  blockdev-setbsz succeeds, but does not affect blockdev-getbsz
-
 637251 NEW https://bugzilla.redhat.com/show_bug.cgi?id=637251
   virt-inspector fails to recognize data-only NTFS disk image
 
-660687 NEW https://bugzilla.redhat.com/show_bug.cgi?id=660687
-  guestmount: "touch" command fails: touch: setting times of `timestamp': Invalid argument
-
-672485 NEW https://bugzilla.redhat.com/show_bug.cgi?id=672485
-  [RFE] virt-edit/tar/inspector do not support encrypted system
-
-676020 NEW https://bugzilla.redhat.com/show_bug.cgi?id=676020
-  After using virt-resize with an ntfs partition windows is not booting
-
 693064 NEW https://bugzilla.redhat.com/show_bug.cgi?id=693064
   Symbolic links on ntfs-3g are not followed correctly by some commands
 
-696445 NEW https://bugzilla.redhat.com/show_bug.cgi?id=696445
-  Backport virt-inspector for virt-v2v
-
-696451 NEW https://bugzilla.redhat.com/show_bug.cgi?id=696451
-  libguestfs: unknown filesystem label SWAP-sda2
-
-696484 NEW https://bugzilla.redhat.com/show_bug.cgi?id=696484
-  [RFE] virt-v2v show the warning info after convert rhel4u8 guest if comment a line of swap in the fstab
-
-700342 NEW https://bugzilla.redhat.com/show_bug.cgi?id=700342
-  virt-inspector resports unknown filesystem UUID
-
 709326 NEW https://bugzilla.redhat.com/show_bug.cgi?id=709326
   virt-inspector cannot detect ReactOS
 
-728224 NEW https://bugzilla.redhat.com/show_bug.cgi?id=728224
-  configure can't find qemu on PPC
-
 737261 NEW https://bugzilla.redhat.com/show_bug.cgi?id=737261
   libguestfs grub-install API needs grub1
 
-745282 NEW https://bugzilla.redhat.com/show_bug.cgi?id=745282
-  [RFE] Support to use virt-filesystems with remote libvirt systems
-
 745576 NEW https://bugzilla.redhat.com/show_bug.cgi?id=745576
   libguestfs (or qemu?) hangs if sparse file runs out of disk space
 
-761565 NEW https://bugzilla.redhat.com/show_bug.cgi?id=761565
-  Missing deps on netpbm-progs and icoutils
-
 770075 NEW https://bugzilla.redhat.com/show_bug.cgi?id=770075
   FEBOOTSTRAP_MODULES fails if modules directory is not under /lib
 
 770076 NEW https://bugzilla.redhat.com/show_bug.cgi?id=770076
   FEBOOTSTRAP_KERNEL causes appliance build to fail
 
-782167 NEW https://bugzilla.redhat.com/show_bug.cgi?id=782167
-  libguestfs doesn't recognize Windows Dynamic disks in some configurations, eg. spanned
-
 785603 NEW https://bugzilla.redhat.com/show_bug.cgi?id=785603
-  copy-out can't find root directory
+  copy-out "No such file or directory"
 
 790837 NEW https://bugzilla.redhat.com/show_bug.cgi?id=790837
   Use of atexit to clean up handles is wrong in multithreaded programs
 
-798979 NEW https://bugzilla.redhat.com/show_bug.cgi?id=798979
-  Ubuntu install CDs from oneiric onwards are not recognized: "multi-boot operating systems are not supported"
-
-801117 NEW https://bugzilla.redhat.com/show_bug.cgi?id=801117
-  libguestfs cannot get icon for Windows 8 preview
-
-801640 NEW https://bugzilla.redhat.com/show_bug.cgi?id=801640
-  [RFE] the error reported by resize2fs-M need to be more clear
-
-802389 NEW https://bugzilla.redhat.com/show_bug.cgi?id=802389
-  event handlers for 'close' event doesn't work in remote mode
-
 803643 NEW https://bugzilla.redhat.com/show_bug.cgi?id=803643
   inspect-is-multipart return false when inspection results should be true
 
@@ -137,92 +74,203 @@ Bugs in NEW or ASSIGNED state are open and waiting for someone to fix.
 803657 NEW https://bugzilla.redhat.com/show_bug.cgi?id=803657
   [RFE] inspect-is-netinst : support more distributions
 
-805417 NEW https://bugzilla.redhat.com/show_bug.cgi?id=805417
-  RFE: support inspection of installation ISOs of WinVista, Win7, Win2008 & Win2008r2
-
-806176 NEW https://bugzilla.redhat.com/show_bug.cgi?id=806176
-  libguestfs doesn't use the external tools (wrestool ...) to get icon even these tools are installed
-
-806179 NEW https://bugzilla.redhat.com/show_bug.cgi?id=806179
-  RFE: support inspection of icon for more Windows guests
-
-808193 NEW https://bugzilla.redhat.com/show_bug.cgi?id=808193
-  g.launch() crashes on RHEL 5
-
-811265 NEW https://bugzilla.redhat.com/show_bug.cgi?id=811265
-  the list-filesystems can detect the reiserFS,but can not mount it.and minix filesystem too.
-
-811395 NEW https://bugzilla.redhat.com/show_bug.cgi?id=811395
-  virt-inspector to detect ia64 Windows 2k3 install media
-
-811398 NEW https://bugzilla.redhat.com/show_bug.cgi?id=811398
-  virt-inspector fails to detect Win2k, Win2k8, Win2k8r2, WinVista, Win7 install media
-
 812970 NEW https://bugzilla.redhat.com/show_bug.cgi?id=812970
   virt-rescue cannot set ><rescue> prompt, on Ubuntu 12.04
 
-813271 NEW https://bugzilla.redhat.com/show_bug.cgi?id=813271
-  intermittent appliance boot failures (divide_error)
-
 813290 NEW https://bugzilla.redhat.com/show_bug.cgi?id=813290
   mdadm (md-detail) test occasionally fails with 'md device /dev/md125 does not appear to be active.'
 
-815149 NEW https://bugzilla.redhat.com/show_bug.cgi?id=815149
-  virt-alignment-scan gives error "part_list: could not parse row from output of parted print command: /dev/vda:4194304B:virtblk:512:512:msdos:Virtio Block Device"
-
-816839 NEW https://bugzilla.redhat.com/show_bug.cgi?id=816839
-  data overflow error when debug progress -1
-
-819086 NEW https://bugzilla.redhat.com/show_bug.cgi?id=819086
-  look for qemu-kvm on /usr/libexec
-
 822538 NEW https://bugzilla.redhat.com/show_bug.cgi?id=822538
   libguestfs tools hang on qcow2 encrypted disks
 
-822626 NEW https://bugzilla.redhat.com/show_bug.cgi?id=822626
-  virt-ls error: "libguestfs: error: checksum: path: parameter cannot be NULL"
-
 824021 NEW https://bugzilla.redhat.com/show_bug.cgi?id=824021
   inspection cannot recognize guest which uses btrfs subvolumes for root
 
 824782 NEW https://bugzilla.redhat.com/show_bug.cgi?id=824782
   virt-resize cannot resize PowerPC guests
 
-825034 NEW https://bugzilla.redhat.com/show_bug.cgi?id=825034
-  libguestfs has bad depndency on /lib/libusb-1.0.so.0
-
-830135 NEW https://bugzilla.redhat.com/show_bug.cgi?id=830135
-  libguestfs should support mount-local APIs in RHEL 6 (for OpenStack)
-
 832602 NEW https://bugzilla.redhat.com/show_bug.cgi?id=832602
   "error in chunked encoding" when trying to extract (tar-out) a truncated ISO image
 
 833362 NEW https://bugzilla.redhat.com/show_bug.cgi?id=833362
   virt-make-fs test fails on ppc64 because filesystem block size is 64k
 
-834712 NEW https://bugzilla.redhat.com/show_bug.cgi?id=834712
-  virt-resize test failed once: lvresize_free: New size (91 extents) matches existing size (91 extents)
-
-834896 NEW https://bugzilla.redhat.com/show_bug.cgi?id=834896
-  'mount' command hangs if you try to mount an extended partition
-
 835622 NEW https://bugzilla.redhat.com/show_bug.cgi?id=835622
-  virt-sparsify to LVM thin raw volume isn't sparse
+  RFE: virt-sparsify should be able to sparsify onto a thin-provisioned LV
 
-836501 NEW https://bugzilla.redhat.com/show_bug.cgi?id=836501
-  dependency on fuse suggested
+845234 NEW https://bugzilla.redhat.com/show_bug.cgi?id=845234
+  RFE: virt-ls on Windows guest doesn't support drive letters
 
-836710 NEW https://bugzilla.redhat.com/show_bug.cgi?id=836710
-  Data loss when writing to qcow2-format disk files
+848464 NEW https://bugzilla.redhat.com/show_bug.cgi?id=848464
+  gobject javascript bindings cannot use 64 bit integers
 
-837691 NEW https://bugzilla.redhat.com/show_bug.cgi?id=837691
-  Data loss when writing to qcow2-format disk files
+857763 NEW https://bugzilla.redhat.com/show_bug.cgi?id=857763
+  libguestfs 'file-architecture' returns 'ARM' for arm binaries
 
-837941 NEW https://bugzilla.redhat.com/show_bug.cgi?id=837941
-  Data loss when writing to qcow2-format disk files
+866994 NEW https://bugzilla.redhat.com/show_bug.cgi?id=866994
+  tgz-out causes memory leak in guestfsd
 
-838081 NEW https://bugzilla.redhat.com/show_bug.cgi?id=838081
-  ocaml/t/guestfs_500_parallel_mount_local crashes in caml_thread_reinitialize
+887826 NEW https://bugzilla.redhat.com/show_bug.cgi?id=887826
+  RFE: virt-sparsify cannot handle multi-disk virtual machines (eg. if they use LVM, MD, LDM, etc)
+
+891909 NEW https://bugzilla.redhat.com/show_bug.cgi?id=891909
+  Can't make install with non-standard prefix as non-root
+
+895898 NEW https://bugzilla.redhat.com/show_bug.cgi?id=895898
+  RFE: Allow interface to be specified with libvirt attach-method
+
+895946 NEW https://bugzilla.redhat.com/show_bug.cgi?id=895946
+  Got incorrect block count number when resize ntfs file system via "ntfsresize_opts"
+
+903987 NEW https://bugzilla.redhat.com/show_bug.cgi?id=903987
+  Command "acl-set-file" is inconvenient to use
+
+906766 NEW https://bugzilla.redhat.com/show_bug.cgi?id=906766
+  virt-resize cannot resize RHEL 5 guest with GPT partition table type
+
+906777 NEW https://bugzilla.redhat.com/show_bug.cgi?id=906777
+  In tests, set_label sometimes fails
+
+910115 NEW https://bugzilla.redhat.com/show_bug.cgi?id=910115
+  RFE: support ntfsresize --bad-sectors option in virt-resize
+
+910269 NEW https://bugzilla.redhat.com/show_bug.cgi?id=910269
+  Tracker: Bugs in other packages that stop libguestfs working
+
+913815 NEW https://bugzilla.redhat.com/show_bug.cgi?id=913815
+  febootstrap: no ext2 root device found when running libguestfs-test-tools
+
+917706 NEW https://bugzilla.redhat.com/show_bug.cgi?id=917706
+  guestfs_umount_local is not thread safe
+
+920617 NEW https://bugzilla.redhat.com/show_bug.cgi?id=920617
+  RFE: virt-inspector (or another tool) should produce OVF output for oVirt / RHEV
+
+927447 NEW https://bugzilla.redhat.com/show_bug.cgi?id=927447
+  [suse] virt tools hang on disk image, but libguestfs-test-tool runs OK
+
+972292 NEW https://bugzilla.redhat.com/show_bug.cgi?id=972292
+  lgetxattrs can't show the file attribute list with ntfs FS in rhel7
+
+972294 NEW https://bugzilla.redhat.com/show_bug.cgi?id=972294
+  lsetxattr/lgetxattr doesn't work to softlink file with ntfs FS in rhel7
+
+973138 NEW https://bugzilla.redhat.com/show_bug.cgi?id=973138
+  RFE: sh & debug sh should be able to capture all output and error return code
+
+979392 NEW https://bugzilla.redhat.com/show_bug.cgi?id=979392
+  [abrt] virt-manager crash from libguestfs launch_libvirt
+
+980790 NEW https://bugzilla.redhat.com/show_bug.cgi?id=980790
+  fstrim returns error "FITRIM ioctl failed: Inappropriate ioctl for device"
+
+982516 NEW https://bugzilla.redhat.com/show_bug.cgi?id=982516
+  sh "rpm -Va" fails because apparently /dev/shm is not created/bind-mounted correctly
+
+982979 NEW https://bugzilla.redhat.com/show_bug.cgi?id=982979
+  Disable fstrim API/command in RHEL 6
+
+983969 NEW https://bugzilla.redhat.com/show_bug.cgi?id=983969
+  RFE: virt-sysprep should be SELinux-aware
+
+986242 NEW https://bugzilla.redhat.com/show_bug.cgi?id=986242
+  golang bindings cannot be compiled if golang-guestfs package is installed
+
+987829 NEW https://bugzilla.redhat.com/show_bug.cgi?id=987829
+  virt-resize error: "lvm_set_filter: vgchange: Couldn't find device with uuid .. Refusing activation of partial LV"
+
+988100 NEW https://bugzilla.redhat.com/show_bug.cgi?id=988100
+  RFE: journal reader in guestfish
+
+991641 NEW https://bugzilla.redhat.com/show_bug.cgi?id=991641
+  virt-sysprep fs-uuids plugin doesn't update UUIDs in fstab, elsewhere
+
+991830 NEW https://bugzilla.redhat.com/show_bug.cgi?id=991830
+  virt-resize throws ambiguous error when /dev/mapper/VG-LV path is used
+
+994965 NEW https://bugzilla.redhat.com/show_bug.cgi?id=994965
+  libguestfs doesn't work on armv7hl
+
+997160 NEW https://bugzilla.redhat.com/show_bug.cgi?id=997160
+  virt-sysprep prints: filesize: /etc/mdadm.conf: No such file or directory
+
+998065 NEW https://bugzilla.redhat.com/show_bug.cgi?id=998065
+  libguestfs kernel hang in RHEL 6.5
+
+1019388 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1019388
+  firstboot scripts (virt-builder, virt-sysprep) don't work for Debian 6 & 7 guests
+
+1021149 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1021149
+  Rebase libguestfs to 1.24 in RHEL 7.1
+
+1023630 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1023630
+  enable-valgrind-daemon option breaks UML
+
+1025942 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1025942
+  Parallel virt-df and virt-alignment-scan tests sometimes deadlock
+
+1027526 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1027526
+  RFE: Labels for logical partitions lost in Windows 2003 after virt-resize for primary partition
+
+1028676 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1028676
+  Add virt-builder to RHEL 7.1
+
+1029134 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1029134
+  Broken links in virt-builder web man page
+
+1033573 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1033573
+  libguestfs inspection does not recognize NAS4Free OS installed on QCOW2 image
+
+1035320 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1035320
+  test faild during build
+
+1040912 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1040912
+  [ARM] mount-local / FUSE support does not seem to work at all
+
+1041552 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1041552
+  virt-sysprep should remove Pegasus certificates
+
+1042780 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1042780
+  Support the virt-sysprep --delete option
+
+1051694 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1051694
+  libguestfs FTBFS on Ubuntu saucy
+
+1056047 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1056047
+  virt-df generates no output for Solaris 11 x86_64 guest.
+
+1056558 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1056558
+  virt-sparsify overwrites block devices if used as output files
+
+1057510 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1057510
+  mount-local should give a clearer error if root is not mounted
+
+1057873 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1057873
+  libguestfs df/ subdirectory tests fail occasionally
+
+1059428 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1059428
+  Failed dependencies installing libguestfs with glibc ppc64p7
+
+1060423 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1060423
+  Support setting xattrs via FUSE
+
+1061040 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1061040
+  RFE: Enable ZFS support
+
+1064041 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1064041
+  virt-sparsify fails if a btrfs filesystem contains readonly snapshots
+
+1069966 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1069966
+  can't disable accel=kvm:tcg
+
+1072863 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1072863
+  libguestfs failed with guestfs_launch failed error while accessing disk
+
+1072898 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1072898
+  inspect-os fails to find any operating systems
+
+1074005 NEW https://bugzilla.redhat.com/show_bug.cgi?id=1074005
+  java bindings inspect_list_applications2 throws java.lang.ArrayIndexOutOfBoundsException:
 
 503134 ASSIGNED https://bugzilla.redhat.com/show_bug.cgi?id=503134
   guestfish's list splitting does not recognize internal quoting
@@ -236,21 +284,191 @@ Bugs in NEW or ASSIGNED state are open and waiting for someone to fix.
 619334 ASSIGNED https://bugzilla.redhat.com/show_bug.cgi?id=619334
   RFE: Enable coredump capture in the appliance
 
+624335 ASSIGNED https://bugzilla.redhat.com/show_bug.cgi?id=624335
+  blockdev-setbsz succeeds, but does not affect blockdev-getbsz
+
 691389 ASSIGNED https://bugzilla.redhat.com/show_bug.cgi?id=691389
-  Extended attributes don't work over guestmount (FUSE)
+  SELinux labels don't work over guestmount (FUSE)
 
-713678 ASSIGNED https://bugzilla.redhat.com/show_bug.cgi?id=713678
-  Not all febootstrap messages are redirected to log callbacks
+965495 ASSIGNED https://bugzilla.redhat.com/show_bug.cgi?id=965495
+  New APIs required in libguestfs for virt-v2v in RHEL 6.5
 
-(74 bugs)
+(91 bugs)
 
 --------------------------------------------------
 Bugs in MODIFIED, POST or ON_QA state are fixed.
 You can help by testing the fixes.
 
-749828 ON_QA https://bugzilla.redhat.com/show_bug.cgi?id=749828
-  p2v does not support raid devices
+1028650 POST https://bugzilla.redhat.com/show_bug.cgi?id=1028650
+  virt-* argument parser doesn't accept --arg=value (you have to use --arg value)
 
-(1 bugs)
+1072062 POST https://bugzilla.redhat.com/show_bug.cgi?id=1072062
+  Ruby bindings for libguestfs throws an error periodically
+
+1072079 POST https://bugzilla.redhat.com/show_bug.cgi?id=1072079
+  Ruby bindings for libguestfs throws an error periodically
+
+1073917 POST https://bugzilla.redhat.com/show_bug.cgi?id=1073917
+  java bindings inspect_list_applications2 throws java.lang.ArrayIndexOutOfBoundsException:
+
+1053847 MODIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1053847
+  Recommended default clock/timer settings
+
+1020950 ON_QA https://bugzilla.redhat.com/show_bug.cgi?id=1020950
+  CVE-2013-4419 libguestfs: insecure temporary directory handling for guestfish's network socket [epel-5]
+
+(6 bugs)
+
+--------------------------------------------------
+These bugs are in the VERIFIED state.
+
+672485 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=672485
+  [RFE] virt-edit/tar-in/tar-out/inspector do not support encrypted system
+
+869179 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=869179
+  libguestfs fail to startup  on latest rhel7 tree
+
+880806 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=880806
+  virt-df with two -a options displays incorrect disk image name
+
+889536 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=889536
+  [RFE]It's better to emphasize "libguestfs-winsupport" in V2V manpage or error output
+
+889537 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=889537
+  Libguestfs live support should be disabled in RHEL 7 packages
+
+889538 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=889538
+  libguestfs can not be installed with recent iptables
+
+892271 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=892271
+  virt-format fail to format  the same disk more than twice with lvm enable
+
+892275 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=892275
+  checksums-out fail to compute the checksums of all regular files in directory
+
+894241 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=894241
+  aug-init fail with the newest augeas package
+
+905322 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=905322
+  "hivex-commit" should fail with a relative path
+
+909573 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=909573
+  patch libguestfs to use 'supermin' instead of 'febootstrap' in RHEL 7
+
+909667 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=909667
+  Unexpected non-tail recursion in recv_from_daemon results in stack overflow in very long-running API calls that send progress messages
+
+921710 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=921710
+  9p support should be disabled in libguestfs in RHEL 7
+
+947438 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=947438
+  Some obsolete tools should be removed from libguestfs RHEL 7 package
+
+949486 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=949486
+  libguestfs-1.20.5-3.el7.x86_64   dependency  problem
+
+957616 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=957616
+  libguestfs-1.21.31-1.1.el7.1.1.x86_64 won't install due to missing dependency
+
+957796 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=957796
+  tar-out and base64-out quoting error
+
+962113 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=962113
+  Disable libguestfs block drivers which are not supported by RHEL 7 qemu + libvirt
+
+974490 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=974490
+  Regression: Fedora inspection broken by change from guestfs_exists to guestfs_is_file
+
+975573 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=975573
+  virt-sysprep is in the wrong subpackage
+
+975771 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=975771
+  Specifying virtio interface ('iface' parameter) breaks the direct backend - libguestfs hangs
+
+976250 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=976250
+  Make xfs filesystem failed with specified blocksize, gives "unknown option -b" error
+
+976299 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=976299
+  mke2fs-J should give a meaningful error when specified type is anything except 'ext{2,3,4}'
+
+980338 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=980338
+  disk-format "qemu-img info: JSON parse error" when target file does not exist
+
+983691 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=983691
+  libguestfs double free when kernel link fails during launch
+
+985856 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=985856
+  Can't set acl value for a specified user with 'acl-set-file'
+
+988862 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=988862
+  virt-sysprep --firstboot option writes incorrect "99" (instead of "S99") sysv-init-style start up script
+
+989356 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=989356
+  cap-get-file will return error if the file has not be set capabilities
+
+995176 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=995176
+  RFE: Implement set-uuid command
+
+995712 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=995712
+  list-filesystems command fails if there are no block devices
+
+998109 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=998109
+  Let's enable kvmclock in RHEL 7
+
+998485 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=998485
+  guestfish remote prints "libguestfs: error: waitpid (qemu): No child processes"
+
+998750 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=998750
+  guestfish does not work due to conflict of remote and interactive mode
+
+1000123 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1000123
+  'sh' command before mount causes daemon to segfault
+
+1000428 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1000428
+  virt-format uses wrong partition type for vfat filesystems
+
+1001875 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1001875
+  Argument 'excludes' of tar-out does not work
+
+1001876 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1001876
+  Update "rsync-out" helpout for using wildcard
+
+1002032 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1002032
+  mke2fs can't return the correct filesystem type when blockscount is less than 2048 for ext3
+
+1003291 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1003291
+  Backport cachemode patch to RHEL 7
+
+1008417 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1008417
+  Need update helpout of part-set-gpt-type
+
+1011922 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1011922
+  Use host-passthrough instead of host-model
+
+1016465 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1016465
+  blockdev-setbsz succeeds, but does not affect blockdev-getbsz
+
+1019891 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1019891
+  libguestfs-tools.conf should have a man page
+
+1020021 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1020021
+  Drop php-libguestfs subpackage
+
+1037795 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1037795
+  libguestfs rebuild needed due to broken ABI compatibility (caused by procps-ng update to 3.3.9)
+
+1056556 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1056556
+  virt-sparsify overwrites block devices if used as output files
+
+1057492 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1057492
+  mount-local should give a clearer error if root is not mounted
+
+1061155 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1061155
+  Incorrect *.py[co] files placement
+
+1061160 VERIFIED https://bugzilla.redhat.com/show_bug.cgi?id=1061160
+  libguestfs source has bogus COPYING file
+
+(49 bugs)
 
 End of BUGS file.

COPYING

@@ -1,12 +1,12 @@
-		    GNU GENERAL PUBLIC LICENSE
-		       Version 2, June 1991
+                    GNU GENERAL PUBLIC LICENSE
+                       Version 2, June 1991
 
  Copyright (C) 1989, 1991 Free Software Foundation, Inc.,
  51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
  Everyone is permitted to copy and distribute verbatim copies
  of this license document, but changing it is not allowed.
 
-			    Preamble
+                            Preamble
 
   The licenses for most software are designed to take away your
 freedom to share and change it.  By contrast, the GNU General Public
@@ -56,7 +56,7 @@ patent must be licensed for everyone's free use or not licensed at all.
   The precise terms and conditions for copying, distribution and
 modification follow.
 
-		    GNU GENERAL PUBLIC LICENSE
+                    GNU GENERAL PUBLIC LICENSE
    TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
 
   0. This License applies to any program or other work which contains
@@ -255,7 +255,7 @@ make exceptions for this.  Our decision will be guided by the two goals
 of preserving the free status of all derivatives of our free software and
 of promoting the sharing and reuse of software generally.
 
-			    NO WARRANTY
+                            NO WARRANTY
 
   11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
 FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW.  EXCEPT WHEN
@@ -277,9 +277,9 @@ YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER
 PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE
 POSSIBILITY OF SUCH DAMAGES.
 
-		     END OF TERMS AND CONDITIONS
+                     END OF TERMS AND CONDITIONS
 
-	    How to Apply These Terms to Your New Programs
+            How to Apply These Terms to Your New Programs
 
   If you develop a new program, and you want it to be of the greatest
 possible use to the public, the best way to achieve this is to make it

COPYING.LIB

@@ -1,112 +1,125 @@
-		  GNU LIBRARY GENERAL PUBLIC LICENSE
-		       Version 2, June 1991
+                  GNU LESSER GENERAL PUBLIC LICENSE
+                       Version 2.1, February 1999
 
- Copyright (C) 1991 Free Software Foundation, Inc.
- 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
+ Copyright (C) 1991, 1999 Free Software Foundation, Inc.
+ 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
  Everyone is permitted to copy and distribute verbatim copies
  of this license document, but changing it is not allowed.
 
-[This is the first released version of the library GPL.  It is
- numbered 2 because it goes with version 2 of the ordinary GPL.]
+[This is the first released version of the Lesser GPL.  It also counts
+ as the successor of the GNU Library Public License, version 2, hence
+ the version number 2.1.]
 
-			    Preamble
+                            Preamble
 
   The licenses for most software are designed to take away your
 freedom to share and change it.  By contrast, the GNU General Public
 Licenses are intended to guarantee your freedom to share and change
 free software--to make sure the software is free for all its users.
 
-  This license, the Library General Public License, applies to some
-specially designated Free Software Foundation software, and to any
-other libraries whose authors decide to use it.  You can use it for
-your libraries, too.
+  This license, the Lesser General Public License, applies to some
+specially designated software packages--typically libraries--of the
+Free Software Foundation and other authors who decide to use it.  You
+can use it too, but we suggest you first think carefully about whether
+this license or the ordinary General Public License is the better
+strategy to use in any particular case, based on the explanations below.
 
-  When we speak of free software, we are referring to freedom, not
-price.  Our General Public Licenses are designed to make sure that you
-have the freedom to distribute copies of free software (and charge for
-this service if you wish), that you receive source code or can get it
-if you want it, that you can change the software or use pieces of it
-in new free programs; and that you know you can do these things.
+  When we speak of free software, we are referring to freedom of use,
+not price.  Our General Public Licenses are designed to make sure that
+you have the freedom to distribute copies of free software (and charge
+for this service if you wish); that you receive source code or can get
+it if you want it; that you can change the software and use pieces of
+it in new free programs; and that you are informed that you can do
+these things.
 
   To protect your rights, we need to make restrictions that forbid
-anyone to deny you these rights or to ask you to surrender the rights.
-These restrictions translate to certain responsibilities for you if
-you distribute copies of the library, or if you modify it.
+distributors to deny you these rights or to ask you to surrender these
+rights.  These restrictions translate to certain responsibilities for
+you if you distribute copies of the library or if you modify it.
 
   For example, if you distribute copies of the library, whether gratis
 or for a fee, you must give the recipients all the rights that we gave
 you.  You must make sure that they, too, receive or can get the source
-code.  If you link a program with the library, you must provide
-complete object files to the recipients so that they can relink them
-with the library, after making changes to the library and recompiling
+code.  If you link other code with the library, you must provide
+complete object files to the recipients, so that they can relink them
+with the library after making changes to the library and recompiling
 it.  And you must show them these terms so they know their rights.
 
-  Our method of protecting your rights has two steps: (1) copyright
-the library, and (2) offer you this license which gives you legal
+  We protect your rights with a two-step method: (1) we copyright the
+library, and (2) we offer you this license, which gives you legal
 permission to copy, distribute and/or modify the library.
 
-  Also, for each distributor's protection, we want to make certain
-that everyone understands that there is no warranty for this free
-library.  If the library is modified by someone else and passed on, we
-want its recipients to know that what they have is not the original
-version, so that any problems introduced by others will not reflect on
-the original authors' reputations.
+  To protect each distributor, we want to make it very clear that
+there is no warranty for the free library.  Also, if the library is
+modified by someone else and passed on, the recipients should know
+that what they have is not the original version, so that the original
+author's reputation will not be affected by problems that might be
+introduced by others.
 
-  Finally, any free program is threatened constantly by software
-patents.  We wish to avoid the danger that companies distributing free
-software will individually obtain patent licenses, thus in effect
-transforming the program into proprietary software.  To prevent this,
-we have made it clear that any patent must be licensed for everyone's
-free use or not licensed at all.
+  Finally, software patents pose a constant threat to the existence of
+any free program.  We wish to make sure that a company cannot
+effectively restrict the users of a free program by obtaining a
+restrictive license from a patent holder.  Therefore, we insist that
+any patent license obtained for a version of the library must be
+consistent with the full freedom of use specified in this license.
 
-  Most GNU software, including some libraries, is covered by the ordinary
-GNU General Public License, which was designed for utility programs.  This
-license, the GNU Library General Public License, applies to certain
-designated libraries.  This license is quite different from the ordinary
-one; be sure to read it in full, and don't assume that anything in it is
-the same as in the ordinary license.
+  Most GNU software, including some libraries, is covered by the
+ordinary GNU General Public License.  This license, the GNU Lesser
+General Public License, applies to certain designated libraries, and
+is quite different from the ordinary General Public License.  We use
+this license for certain libraries in order to permit linking those
+libraries into non-free programs.
 
-  The reason we have a separate public license for some libraries is that
-they blur the distinction we usually make between modifying or adding to a
-program and simply using it.  Linking a program with a library, without
-changing the library, is in some sense simply using the library, and is
-analogous to running a utility program or application program.  However, in
-a textual and legal sense, the linked executable is a combined work, a
-derivative of the original library, and the ordinary General Public License
-treats it as such.
+  When a program is linked with a library, whether statically or using
+a shared library, the combination of the two is legally speaking a
+combined work, a derivative of the original library.  The ordinary
+General Public License therefore permits such linking only if the
+entire combination fits its criteria of freedom.  The Lesser General
+Public License permits more lax criteria for linking other code with
+the library.
 
-  Because of this blurred distinction, using the ordinary General
-Public License for libraries did not effectively promote software
-sharing, because most developers did not use the libraries.  We
-concluded that weaker conditions might promote sharing better.
+  We call this license the "Lesser" General Public License because it
+does Less to protect the user's freedom than the ordinary General
+Public License.  It also provides other free software developers Less
+of an advantage over competing non-free programs.  These disadvantages
+are the reason we use the ordinary General Public License for many
+libraries.  However, the Lesser license provides advantages in certain
+special circumstances.
 
-  However, unrestricted linking of non-free programs would deprive the
-users of those programs of all benefit from the free status of the
-libraries themselves.  This Library General Public License is intended to
-permit developers of non-free programs to use free libraries, while
-preserving your freedom as a user of such programs to change the free
-libraries that are incorporated in them.  (We have not seen how to achieve
-this as regards changes in header files, but we have achieved it as regards
-changes in the actual functions of the Library.)  The hope is that this
-will lead to faster development of free libraries.
+  For example, on rare occasions, there may be a special need to
+encourage the widest possible use of a certain library, so that it becomes
+a de-facto standard.  To achieve this, non-free programs must be
+allowed to use the library.  A more frequent case is that a free
+library does the same job as widely used non-free libraries.  In this
+case, there is little to gain by limiting the free library to free
+software only, so we use the Lesser General Public License.
+
+  In other cases, permission to use a particular library in non-free
+programs enables a greater number of people to use a large body of
+free software.  For example, permission to use the GNU C Library in
+non-free programs enables many more people to use the whole GNU
+operating system, as well as its variant, the GNU/Linux operating
+system.
+
+  Although the Lesser General Public License is Less protective of the
+users' freedom, it does ensure that the user of a program that is
+linked with the Library has the freedom and the wherewithal to run
+that program using a modified version of the Library.
 
   The precise terms and conditions for copying, distribution and
 modification follow.  Pay close attention to the difference between a
 "work based on the library" and a "work that uses the library".  The
-former contains code derived from the library, while the latter only
-works together with the library.
-
-  Note that it is possible for a library to be covered by the ordinary
-General Public License rather than by this special one.
+former contains code derived from the library, whereas the latter must
+be combined with the library in order to run.
 
-		  GNU LIBRARY GENERAL PUBLIC LICENSE
+                  GNU LESSER GENERAL PUBLIC LICENSE
    TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
 
-  0. This License Agreement applies to any software library which
-contains a notice placed by the copyright holder or other authorized
-party saying it may be distributed under the terms of this Library
-General Public License (also called "this License").  Each licensee is
-addressed as "you".
+  0. This License Agreement applies to any software library or other
+program which contains a notice placed by the copyright holder or
+other authorized party saying it may be distributed under the terms of
+this Lesser General Public License (also called "this License").
+Each licensee is addressed as "you".
 
   A "library" means a collection of software functions and/or data
 prepared so as to be conveniently linked with application programs
@@ -255,7 +268,7 @@ distribute the object code for the work under the terms of Section 6.
 Any executables containing that work also fall under Section 6,
 whether or not they are linked directly with the Library itself.
 
-  6. As an exception to the Sections above, you may also compile or
+  6. As an exception to the Sections above, you may also combine or
 link a "work that uses the Library" with the Library to produce a
 work containing portions of the Library, and distribute that work
 under terms of your choice, provided that the terms permit
@@ -282,23 +295,31 @@ of these things:
     Library will not necessarily be able to recompile the application
     to use the modified definitions.)
 
-    b) Accompany the work with a written offer, valid for at
+    b) Use a suitable shared library mechanism for linking with the
+    Library.  A suitable mechanism is one that (1) uses at run time a
+    copy of the library already present on the user's computer system,
+    rather than copying library functions into the executable, and (2)
+    will operate properly with a modified version of the library, if
+    the user installs one, as long as the modified version is
+    interface-compatible with the version that the work was made with.
+
+    c) Accompany the work with a written offer, valid for at
     least three years, to give the same user the materials
     specified in Subsection 6a, above, for a charge no more
     than the cost of performing this distribution.
 
-    c) If distribution of the work is made by offering access to copy
+    d) If distribution of the work is made by offering access to copy
     from a designated place, offer equivalent access to copy the above
     specified materials from the same place.
 
-    d) Verify that the user has already received a copy of these
+    e) Verify that the user has already received a copy of these
     materials or that you have already sent this user a copy.
 
   For an executable, the required form of the "work that uses the
 Library" must include any data and utility programs needed for
 reproducing the executable from it.  However, as a special exception,
-the source code distributed need not include anything that is normally
-distributed (in either source or binary form) with the major
+the materials to be distributed need not include anything that is
+normally distributed (in either source or binary form) with the major
 components (compiler, kernel, and so on) of the operating system on
 which the executable runs, unless that component itself accompanies
 the executable.
@@ -347,7 +368,7 @@ Library), the recipient automatically receives a license from the
 original licensor to copy, distribute, link with or modify the Library
 subject to these terms and conditions.  You may not impose any further
 restrictions on the recipients' exercise of the rights granted herein.
-You are not responsible for enforcing compliance by third parties to
+You are not responsible for enforcing compliance by third parties with
 this License.
 
   11. If, as a consequence of a court judgment or allegation of patent
@@ -390,7 +411,7 @@ excluded.  In such case, this License incorporates the limitation as if
 written in the body of this License.
 
   13. The Free Software Foundation may publish revised and/or new
-versions of the Library General Public License from time to time.
+versions of the Lesser General Public License from time to time.
 Such new versions will be similar in spirit to the present version,
 but may differ in detail to address new problems or concerns.
 
@@ -411,7 +432,7 @@ decision will be guided by the two goals of preserving the free status
 of all derivatives of our free software and of promoting the sharing
 and reuse of software generally.
 
-			    NO WARRANTY
+                            NO WARRANTY
 
   15. BECAUSE THE LIBRARY IS LICENSED FREE OF CHARGE, THERE IS NO
 WARRANTY FOR THE LIBRARY, TO THE EXTENT PERMITTED BY APPLICABLE LAW.
@@ -434,9 +455,9 @@ FAILURE OF THE LIBRARY TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF
 SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH
 DAMAGES.
 
-		     END OF TERMS AND CONDITIONS
+                     END OF TERMS AND CONDITIONS
 
-     Appendix: How to Apply These Terms to Your New Libraries
+           How to Apply These Terms to Your New Libraries
 
   If you develop a new library, and you want it to be of the greatest
 possible use to the public, we recommend making it free software that
@@ -453,19 +474,18 @@ convey the exclusion of warranty; and each file should have at least the
     Copyright (C) <year>  <name of author>
 
     This library is free software; you can redistribute it and/or
-    modify it under the terms of the GNU Library General Public
+    modify it under the terms of the GNU Lesser General Public
     License as published by the Free Software Foundation; either
-    version 2 of the License, or (at your option) any later version.
+    version 2.1 of the License, or (at your option) any later version.
 
     This library is distributed in the hope that it will be useful,
     but WITHOUT ANY WARRANTY; without even the implied warranty of
     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
-    Library General Public License for more details.
+    Lesser General Public License for more details.
 
-    You should have received a copy of the GNU Library General Public
-    License along with this library; if not, write to the Free
-    Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
-    Boston, MA 02110-1301, USA
+    You should have received a copy of the GNU Lesser General Public
+    License along with this library; if not, write to the Free Software
+    Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
 
 Also add information on how to contact you by electronic and paper mail.
 

Makefile.am

@@ -1,5 +1,5 @@
 # libguestfs
-# Copyright (C) 2009-2012 Red Hat Inc.
+# Copyright (C) 2009-2014 Red Hat Inc.
 #
 # This program is free software; you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
@@ -15,12 +15,15 @@
 # along with this program; if not, write to the Free Software
 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 
-include $(top_srcdir)/subdir-rules.mk
+include $(top_srcdir)/common-rules.mk
 
 ACLOCAL_AMFLAGS = -I m4
 
 # Gnulib - must be built and tested before the library.
-SUBDIRS = gnulib/lib gnulib/tests
+SUBDIRS = gnulib/lib
+if ENABLE_GNULIB_TESTS
+SUBDIRS += gnulib/tests
+endif
 
 # Basic source for the library.
 SUBDIRS += tests/data generator src examples po
@@ -37,22 +40,38 @@ if ENABLE_APPLIANCE
 SUBDIRS += tests/qemu
 SUBDIRS += tests/guests
 SUBDIRS += tests/c-api
+SUBDIRS += tests/tmpdirs
 SUBDIRS += tests/protocol
+SUBDIRS += tests/events
+SUBDIRS += tests/parallel
+SUBDIRS += tests/create
 SUBDIRS += tests/disks
+SUBDIRS += tests/mountable
+SUBDIRS += tests/network
 SUBDIRS += tests/lvm
 SUBDIRS += tests/luks
 SUBDIRS += tests/md
 SUBDIRS += tests/selinux
 SUBDIRS += tests/ntfsclone
 SUBDIRS += tests/btrfs
+SUBDIRS += tests/xfs
 SUBDIRS += tests/charsets
 SUBDIRS += tests/xml
+SUBDIRS += tests/mount-local
+SUBDIRS += tests/9p
+SUBDIRS += tests/rsync
+SUBDIRS += tests/bigdirs
+SUBDIRS += tests/disk-labels
+SUBDIRS += tests/hotplug
+SUBDIRS += tests/nbd
+SUBDIRS += tests/http
+SUBDIRS += tests/syslinux
+SUBDIRS += tests/journal
+SUBDIRS += tests/fuzz
+SUBDIRS += tests/relative-paths
 SUBDIRS += tests/regressions
 endif
 
-# Extra tests don't run by default.  You have to do 'make extra-tests'.
-SUBDIRS += tests/extra
-
 # libguestfs-test-tool
 SUBDIRS += test-tool
 
@@ -60,7 +79,10 @@ SUBDIRS += test-tool
 SUBDIRS += fish
 
 # virt-tools in C.
-SUBDIRS += align cat df edit format inspector rescue
+SUBDIRS += align cat diff df edit format inspector make-fs rescue
+
+# bash-completion
+SUBDIRS += bash
 
 # Language bindings.
 if HAVE_PERL
@@ -87,16 +109,23 @@ endif
 if HAVE_ERLANG
 SUBDIRS += erlang erlang/examples
 endif
+if HAVE_LUA
+SUBDIRS += lua lua/examples
+endif
 if HAVE_GOBJECT
 SUBDIRS += gobject
 endif
+if HAVE_GOLANG
+SUBDIRS += golang golang/examples
+endif
 
 # Unconditional because nothing is built yet.
 SUBDIRS += csharp
 
-# OCaml tools.
+# OCaml tools.  Note 'mllib' contains random shared code used by
+# all of the OCaml tools.
 if HAVE_OCAML
-SUBDIRS += resize sparsify sysprep
+SUBDIRS += mllib builder builder/website resize sparsify sysprep
 endif
 
 # Perl tools.
@@ -115,18 +144,28 @@ SUBDIRS += po-docs
 endif
 
 EXTRA_DIST = \
-	$(generator_built) \
-	BUGS HACKING RELEASE-NOTES ROADMAP TODO \
+	BUGS HACKING ROADMAP TODO \
 	.gitignore \
+	.lvimrc \
+	.mailmap \
+	.tx/config \
+	bootstrap \
 	bugs-in-changelog.sh \
 	autogen.sh \
 	bindtests \
+	cfg.mk \
 	contrib/autobuild/autobuild.sh \
-	contrib/guestfsd-in-wine.sh \
 	contrib/intro/libguestfs-intro.html \
+	contrib/intro/overview.png \
 	contrib/intro/overview.svg \
 	contrib/intro/talk.txt \
+	contrib/intro/tools.png \
 	contrib/intro/tools.svg \
+	contrib/intro/virt-manager-t.png \
+	contrib/intro/virt-manager.png \
+	contrib/intro/vmm-icons-t.png \
+	contrib/intro/vmm-icons.png \
+	contrib/intro/win7.xml \
 	contrib/make-check-on-installed.pl \
 	contrib/README \
 	contrib/visualize-alignment/.gitignore \
@@ -139,11 +178,29 @@ EXTRA_DIST = \
 	contrib/visualize-alignment/qemu-0.13-trace-block-device-access.patch \
 	contrib/visualize-alignment/README \
 	contrib/visualize-alignment/tracetops.ml \
+	contrib/windows-icons.pl \
+	guestfs-release-notes.pod \
+	guestfs-release-notes.txt \
+	html/draft.png \
+	html/draft.svg \
 	html/pod.css \
+	html/virt-builder.svg \
 	libtool-kill-dependency_libs.sh \
 	logo/fish.svg logo/fish.png \
+	logo/fish-5yrs.svg logo/fish-5yrs.png \
+	logo/virt-builder.svg \
 	m4/.gitignore \
-	update-bugs.sh
+	tmp/.gitignore \
+	tx-pull.sh \
+	update-bugs.sh \
+	valgrind-suppressions \
+	.x-sc_avoid_ctype_macros \
+	.x-sc_prohibit_have_config_h \
+	.x-sc_prohibit_magic_number_exit \
+	.x-sc_prohibit_strcmp \
+	.x-sc_prohibit_strcmp_and_strncmp \
+	.x-sc_TAB_in_indentation \
+	.x-sc_trailing_blank
 
 # The website.
 HTMLFILES = \
@@ -151,23 +208,30 @@ HTMLFILES = \
 	html/guestfs-examples.3.html \
 	html/guestfs-erlang.3.html \
 	html/guestfs-faq.1.html \
+	html/guestfs-golang.3.html \
 	html/guestfs-java.3.html \
+	html/guestfs-lua.3.html \
 	html/guestfs-ocaml.3.html \
 	html/guestfs-performance.1.html \
 	html/guestfs-perl.3.html \
 	html/guestfs-python.3.html \
 	html/guestfs-recipes.1.html \
+	html/guestfs-release-notes.1.html \
 	html/guestfs-ruby.3.html \
 	html/guestfs-testing.1.html \
+	html/guestfsd.8.html \
 	html/guestfish.1.html \
 	html/guestmount.1.html \
+	html/guestunmount.1.html \
 	html/libguestfs-make-fixed-appliance.1.html \
 	html/libguestfs-test-tool.1.html \
 	html/virt-alignment-scan.1.html \
+	html/virt-builder.1.html \
 	html/virt-cat.1.html \
 	html/virt-copy-in.1.html \
 	html/virt-copy-out.1.html \
 	html/virt-df.1.html \
+	html/virt-diff.1.html \
 	html/virt-edit.1.html \
 	html/virt-filesystems.1.html \
 	html/virt-format.1.html \
@@ -185,17 +249,30 @@ HTMLFILES = \
 	html/virt-tar-out.1.html \
 	html/virt-win-reg.1.html
 
-TEXTFILES = BUGS README RELEASE-NOTES ROADMAP TODO
+HTMLSUPPORTFILES = \
+	html/draft.png \
+	html/pod.css \
+	html/virt-builder.svg
 
-WEBSITEDIR = $(HOME)/d/redhat/websites/libguestfs
+TEXTFILES = BUGS README ROADMAP TODO
+
+BUILDERFILES = \
+	builder/website/README \
+	builder/website/index \
+	builder/website/index.asc \
+	builder/website/*.xz \
+	builder/website/*.xz.sig
+
+WEBSITEDIR = $(HOME)/d/websites/libguestfs
 
 # For reasons not fully understood, we need to rebuild all the
 # man pages and HTMLFILES from scratch here.
-website: $(HTMLFILES) $(TEXTFILES)
+website: $(HTMLFILES) $(HTMLSUPPORTFILES) $(TEXTFILES) $(BUILDERFILES)
 	find -name 'stamp-*.pod' -delete
 	$(MAKE)
-	cp $(HTMLFILES) $(WEBSITEDIR)
+	cp $(HTMLFILES) $(HTMLSUPPORTFILES) $(WEBSITEDIR)
 	for f in $(TEXTFILES); do cp $$f $(WEBSITEDIR)/$$f.txt; done
+	cp $(BUILDERFILES) $(WEBSITEDIR)/download/builder/
 	cd $(WEBSITEDIR) && \
 	date=`date +%F`; \
 	sed -e "s/SUBST_VERSION/$(VERSION)/" \
@@ -204,68 +281,266 @@ website: $(HTMLFILES) $(TEXTFILES)
 
 # When doing 'make dist' update a few files automatically.
 dist-hook:
-	$(top_srcdir)/build-aux/gitlog-to-changelog > ChangeLog
+	git log --decorate=false > ChangeLog
 	cp ChangeLog $(distdir)/ChangeLog
 	$(top_srcdir)/update-bugs.sh > BUGS-t
 	mv BUGS-t BUGS
 	cp BUGS $(distdir)/BUGS
-	git log --pretty="format:%an <%ae>" | sort -u | uniq -w 10 | \
-		grep -v rjones | \
-		grep -v "Richard Jones" \
-		> AUTHORS-t
+	git shortlog -s | awk -F'\t' '{print $$2}' | sort -f > AUTHORS-t
 	mv AUTHORS-t AUTHORS
 	cp AUTHORS $(distdir)/AUTHORS
 
-# Update the list of translatable files (po/POTFILES po/POTFILES-ml).
+# Update the list of translatable files.  These are separated into:
+#
+#  po/POTFILES - files with ordinary extensions, but not OCaml files
+#  po/POTFILES-pl - Perl files that don't end in *.pl, which need a
+#                   special xgettext option [not generated here]
+#  po/POTFILES-ml - OCaml files, which need a special tool to translate
+#
+# See po/Makefile.am.
+#
 # This has to be in the top-level Makefile.am so that we have access
 # to DIST_SUBDIRS.
 all-local:
 	cd $(srcdir); \
-	find $(DIST_SUBDIRS) \
-	    -name '*.c' -o -name '*.pl' -o -name '*.pm' | \
-	grep -v '^perl/blib/' | \
-	grep -v '^tests/' | \
-	grep -v '^daemon/lib/' | \
-	grep -v '^daemon/tests/' | \
-	grep -v '^examples/' | \
-	grep -v '^gnulib/' | \
-	grep -v '^perl/examples/' | \
-	grep -v '/guestfs_protocol.c' | \
-	grep -v '/rc_protocol.c' | \
-	grep -v '^po-docs/' | \
-	grep -v '^images/' | \
-	LC_ALL=C sort | \
-	sed 's,^\./,,' > po/POTFILES
+	find $(DIST_SUBDIRS) -name '*.c' -o -name '*.pl' -o -name '*.pm' | \
+	grep -v -E '^(examples|gnulib|perl/(blib|examples)|po-docs|tests)/' | \
+	grep -v -E '/((guestfs|rc)_protocol\.c)$$' | \
+	LC_ALL=C sort > po/POTFILES
 	cd $(srcdir); \
-	find resize sparsify sysprep -name '*.ml' | \
+	find builder mllib resize sparsify sysprep -name '*.ml' | \
 	LC_ALL=C sort > po/POTFILES-ml
 
+# Manual pages in top level directory.
+
+man_MANS = \
+	guestfs-release-notes.1
+noinst_DATA = \
+	$(top_builddir)/html/guestfs-release-notes.1.html
+
+guestfs-release-notes.1 guestfs-release-notes.txt $(top_builddir)/html/guestfs-release-notes.1.html: stamp-guestfs-release-notes.pod
+
+stamp-guestfs-release-notes.pod: guestfs-release-notes.pod
+	$(PODWRAPPER) \
+	  --section 1 \
+	  --man guestfs-release-notes.1 \
+	  --text guestfs-release-notes.txt \
+	  --html $(top_builddir)/html/guestfs-release-notes.1.html \
+	  --license GPLv2+ \
+	  $<
+	touch $@
+
+# NB. podwrapper is an internal tool, so the man page mustn't be installed.
+noinst_MANS = podwrapper.1
+podwrapper.1: podwrapper.pl
+	$(PODWRAPPER) \
+	  --section 1 \
+	  --man $@-t \
+	  --license GPLv2+ \
+	  $<
+	mv $@-t $@
+
 # Make clean.
 
 CLEANFILES = \
+	*~ \
+	html/*.html \
 	pod2htm?.tmp \
-	html/*.html
+	podwrapper.1 \
+	qemu-wrapper.sh \
+	stamp-guestfs-release-notes.pod \
+	tmp/disk* \
+	tmp/run-* \
+	tmp/valgrind-*.log
+
+clean-local:
+	-rm -rf tmp/libguestfs??????
+	-rm -rf tmp/guestfs.*
+	-rm -rf tmp/.guestfs-*
 
 # If you don't want to run all of the tests ('make check') then this
 # will just run libguestfs-test-tool for a quick check.  Note this
 # is NOT a substitute for proper testing!
 
 quickcheck:
-	./run test-tool/libguestfs-test-tool $(QUICKCHECK_TEST_TOOL_ARGS)
+	$(top_builddir)/run test-tool/libguestfs-test-tool $(QUICKCHECK_TEST_TOOL_ARGS)
 
-# Run extra-tests in tests/extra/ subdirectory.
+# Non-standard tests.
 
-extra-tests:
-	make -C tests/extra $@
+check-all:
+	$(MAKE) -j1 \
+	  check \
+	  check-valgrind \
+	  check-valgrind-local-guests \
+	  check-direct \
+	  check-valgrind-direct \
+	  check-uml \
+	  check-valgrind-uml \
+	  check-with-upstream-qemu \
+	  check-with-upstream-libvirt \
+	  check-slow
 
-# Make binary distribution.
+check-release:
+	$(MAKE) -j1 \
+	  check \
+	  check-valgrind \
+	  check-direct \
+	  check-valgrind-direct
+	$(MAKE) -j1 LIBGUESTFS_HV=$(HOME)/d/linux-um/vmlinux \
+	  check-uml \
+	  check-valgrind-uml
+	$(MAKE) -j1 \
+	  check-slow
 
-BINTMPDIR = /tmp/libguestfs-bin
-bindist:
-	rm -rf $(BINTMPDIR)
-	mkdir $(BINTMPDIR)
-	$(MAKE)
-	$(MAKE) DESTDIR=$(BINTMPDIR) install
-	-find $(BINTMPDIR) -type d -exec rmdir --ignore-fail-on-non-empty {} \;
-	(cd $(BINTMPDIR) && tar cf - .) | \
-	  gzip -c -9 > libguestfs-$(VERSION)-$(DISTRO)-$(host_cpu).tar.gz
+check-valgrind: build-test-guests
+	@errors=0; \
+	for f in `grep -l '^$@:' $(SUBDIRS:%=%/Makefile.am)`; do \
+	  echo $(MAKE) -C `dirname $$f` $@; \
+	  $(MAKE) -C `dirname $$f` $@ || (( errors++ )); \
+	done; \
+	exit $$(( $$errors ? 1 : 0 ))
+
+check-valgrind-local-guests:
+	@GUESTS=`$(top_builddir)/run ./pick-guests.pl 5`; \
+	errors=0; \
+	for f in `grep -l '^$@:' $(SUBDIRS:%=%/Makefile.am)`; do \
+	  echo $(MAKE) GUESTS="$$GUESTS" -C `dirname $$f` $@; \
+	  $(MAKE) GUESTS="$$GUESTS" -C `dirname $$f` $@ || (( errors++ )); \
+	done; \
+	exit $$(( $$errors ? 1 : 0 ))
+
+check-direct:
+	@backend=`$(top_builddir)/run ./fish/guestfish get-backend`; \
+	if [ "$$backend" != "direct" ]; then \
+	  $(MAKE) LIBGUESTFS_BACKEND=direct check || exit $$?; \
+	fi
+
+check-with-appliance: check-direct
+
+check-valgrind-direct:
+	@backend=`$(top_builddir)/run ./fish/guestfish get-backend`; \
+	if [ "$$backend" != "direct" ]; then \
+	  $(MAKE) LIBGUESTFS_BACKEND=direct check-valgrind || exit $$?; \
+	fi
+
+check-valgrind-with-appliance: check-valgrind-direct
+
+# Tests which currently fail under UML:
+# - blockdev --setro seems to have no effect on /dev/ubd* devices [*]
+# - RHBZ#914931: test is sent a SIGTERM, apparently by UML [*]
+# - tests/md/test-inspect-fstab-md.sh hangs at various places during the
+#   test, eg. running mdadm, mounting MD filesystem [*]
+# [*] = likely to be a bug in UML itself
+SKIP_TESTS_FAILING_IN_UML = \
+	SKIP_TEST_BLOCKDEV_GETRO=1 \
+	SKIP_TEST_BLOCKDEV_SETRO=1 \
+	SKIP_TEST_RHBZ914931=1 \
+	SKIP_TEST_INSPECT_FSTAB_MD_SH=1
+
+check-uml:
+	$(MAKE) LIBGUESTFS_BACKEND=uml $(SKIP_TESTS_FAILING_IN_UML) check
+
+check-valgrind-uml:
+	$(MAKE) LIBGUESTFS_BACKEND=uml $(SKIP_TESTS_FAILING_IN_UML) check-valgrind
+
+QEMUDIR = $(HOME)/d/qemu
+QEMUBINARY = $(QEMUDIR)/x86_64-softmmu/qemu-system-x86_64
+
+check-with-upstream-qemu:
+	rm -f $(top_builddir)/qemu-wrapper.sh
+	$(MAKE) check-with-upstream-qemu-1 || exit $$?
+
+check-with-upstream-qemu-1: $(top_builddir)/qemu-wrapper.sh
+	$(QEMUBINARY) --version
+	$(MAKE) LIBGUESTFS_HV=$(abs_top_builddir)/qemu-wrapper.sh check
+
+$(top_builddir)/qemu-wrapper.sh: Makefile
+	rm -f $@ $@-t
+	echo -e "#!/bin/sh\nexec" "$(QEMUBINARY)" -L "$(QEMUDIR)/pc-bios" \"\$$@\" > $@-t
+	chmod +x,-w $@-t
+	mv $@-t $@
+
+LIBVIRTDIR = $(HOME)/d/libvirt
+
+check-with-upstream-libvirt:
+	@backend=`$(top_builddir)/run ./fish/guestfish get-backend`; \
+	if [ "$$backend" = "libvirt" ] && [ -x "$(LIBVIRTDIR)/run" ]; then \
+	  $(LIBVIRTDIR)/run $(MAKE) check || exit $$?; \
+	fi
+
+check-slow: build-test-guests
+	@errors=0; \
+	for f in `grep -l '^$@:' $(SUBDIRS:%=%/Makefile.am)`; do \
+	  echo $(MAKE) -C `dirname $$f` $@; \
+	  $(MAKE) -C `dirname $$f` $@ || (( errors++ )); \
+	done; \
+	exit $$(( $$errors ? 1 : 0 ))
+
+build-test-guests:
+	$(MAKE) -C tests/guests check
+
+# Print subdirs.
+#
+# If you want to selectively run tests, or if the test suite fails half
+# way through, use:
+#
+#   make print-subdirs
+#
+# to print the subdirectories, select the ones you want to run / the
+# remaining ones, and do:
+#
+#   make check SUBDIRS="..."
+
+print-subdirs:
+	@echo $(SUBDIRS)
+
+# Tag HEAD with current version (only for maintainer).
+
+maintainer-tag:
+	git tag -a $(VERSION) -m "Version $(VERSION) ($(BRANCH_TYPE))" -f
+
+# Maintainer only: check EXTRA_DIST rule is complete.
+# (Note you must have done 'make dist')
+
+maintainer-check-extra-dist:
+	zcat $(PACKAGE_NAME)-$(VERSION).tar.gz | tar tf - | sort | \
+	  sed 's,^$(PACKAGE_NAME)-$(VERSION)/,,' > tmp/tarfiles
+	git ls-files | sort > tmp/gitfiles
+	diff -ur tmp/tarfiles tmp/gitfiles | grep '^\+' | \
+	  grep -v src/api-support/[0-9]
+	rm tmp/tarfiles tmp/gitfiles
+
+# Provide help on common Makefile targets.
+
+help:
+	@echo
+	@echo "make                              Build everything."
+	@echo
+	@echo "make check                        Run the standard tests"
+	@echo "make -k check                       ... and display all errors at once."
+	@echo
+	@echo "make check-valgrind               Run a subset of the tests under valgrind."
+	@echo "make check-valgrind-local-guests  Test under valgrind using local guests."
+	@echo "make check-direct                 Test using direct backend."
+	@echo "make check-valgrind-direct        Test valgrind + direct backend."
+	@echo "make check-uml                    Test using User-Mode Linux."
+	@echo "make check-valgrind-uml           Test valgrind + User-Mode Linux."
+	@echo "make check-with-upstream-qemu     Test using upstream qemu."
+	@echo "make check-with-upstream-libvirt  Test using upstream libvirt."
+	@echo "make check-slow                   Slow/long-running tests."
+	@echo
+	@echo "make check-all                    Runs all 'check*' rules."
+	@echo "make check-release                Runs 'check*' rules required for release."
+	@echo
+	@echo "make syntax-check -j1 -k          Check syntax and style problems in the code."
+	@echo "make print-subdirs                Print subdirectories."
+	@echo
+	@echo "make install                      Install everything."
+	@echo
+	@echo "make clean                        Clean everything."
+	@echo
+	@echo "To run programs without installing:"
+	@echo "  ./run ./fish/guestfish [or any other program]"
+	@echo
+	@echo "For more information, see EXTENDING LIBGUESTFS in guestfs(3); and README."
+	@echo

README

@@ -41,169 +41,269 @@ Debian/Ubuntu users:
 
 The full requirements are described below.
 
-For basic functionality and the C tools:
-
-- look at appliance/packagelist.in and install as many of the packages
-  that apply to your distro as possible
-
-- QEMU >= 1.1.0.
-
-- kernel >= 2.6.34 with virtio-serial support enabled.
-
-- virtio-block and virtio-net drivers should be compiled into your
-  host kernel (strictly speaking this is optional, but you will have
-  to make complex changes to the ./configure command line to get it
-  to work if you don't have virtio)
-
-- febootstrap >= 3.17
-
-  Notes: (1) febootstrap 2.x WILL NOT WORK
-         (2) febootstrap 3.x is distro-independent, and is required on
-             Debian and other distros as well as Fedora
-         (3) that is the minimum version, but later versions are better
-
-- XDR, rpcgen (on Linux these are provided by glibc)
-
-- cpio
-
-- gperf
-
-- pcre (Perl Compatible Regular Expressions C library)
-
-- genisoimage (NOT mkisofs any more)
-
-- hivex >= 1.2.7 (http://libguestfs.org/download) (optional)
-
-- libmagic (the library that corresponds to the 'file' command) (optional)
-
-- libvirt (optional)
-
-- libxml2 (optional)
-
-- libconfig (optional)
-
-- augeas >= 0.5.0 (http://augeas.net/) (optional)
-
-- Berkeley DB 'db_dump' and 'db_load' utilities
-  (db4-utils or db4.X-util or similar) (optional)
-
-- systemtap/DTrace userspace probes (optional)
-  http://sourceware.org/systemtap/wiki/AddingUserSpaceProbingToApps
-
-- perldoc (pod2man, pod2text, pod2html) to generate the manual pages
-  and other documentation.
-
-- Readline to have nicer command-line editing in guestfish (optional)
-
-- xmllint (part of libxml2) to validate virt-inspector
-  RELAX NG schema (optional)
-
-- OCaml if you want to rebuild the generated files, and
-  also to build the OCaml bindings (optional)
-
-- ocaml-gettext if you want to translate OCaml tools (optional)
-
-- po4a for translating manpages and POD files.
-  This is optional when compiling from the tarball, but mandatory
-  if you compile from git.
-
-- getfacl, getfattr libraries and programs (optional)
-
-- netpbm, icoutils (optional)
-  These programs are used to render icons from guests.
-
-To build FUSE support (guestmount):
-
-- FUSE libraries and kernel module (optional)
-
-To build language bindings:
-
-- Perl if you want to build the perl bindings (optional)
-
-- Python if you want to build the python bindings (optional)
-
-- Ruby, rake if you want to build the ruby bindings (optional)
-
-- Java, JNI, jpackage-utils if you want to build the java
-  bindings (optional)
-
-- GHC if you want to build the Haskell bindings (optional)
-
-- PHP, phpize if you want to build the PHP bindings (optional)
-
-To build the Perl tools:
-
-- Perl Sys::Virt module (optional)
-
-- Perl Win::Hivex module (optional)
-
-- Perl Pod::Usage module (optional)
-
-- Perl Test::More module (from perl Test::Simple) (optional)
-
-- Perl String::ShellQuote module (optional)
-
-- perl-libintl for translating perl code (optional)
-
-To run virt-sysprep:
-
-- virt-sysprep requires FUSE support since it uses guestmount
+                               R = Required
+                               O = Optional
++==============+=============+===+=========================================+
+| Package name | Min.version |   | Notes                                   |
++==============+=============+===+=========================================+
+| Install as many packages listed in appliance/packagelist.in as possible. |
+| This installs the disk management tools required by the appliance.  The  |
+| list below is *additional* packages needed on the host.                  |
++--------------+-------------+---+-----------------------------------------+
+| qemu         | 1.2.0       | R | 1.1 may work, but has broken virtio-scsi|
++--------------+-------------+---+-----------------------------------------+
+| qemu-img     |             | R |                                         |
++--------------+-------------+---+-----------------------------------------+
+| kernel       | 2.6.34      | R | Make sure the following are enabled     |
+|              |             |   | compiled in or as a module:             |
+|              |             |   |  - virtio-pci                           |
+|              |             |   |  - virtio-serial                        |
+|              |             |   |  - virtio-block                         |
+|              |             |   |  - virtio-net                           |
++--------------+-------------+---+-----------------------------------------+
+| supermin     | 5.1.0       | R | This is required on all distros.        |
+|              |             |   | 'supermin' is the new name for          |
+|              |             |   | 'febootstrap'.                          |
+|              |             |   | For alternatives, see:                  |
+|              |             |   | libguestfs.org/download/binaries/appliance/
++--------------+-------------+---+-----------------------------------------+
+| glibc        |             | R | We use various glibc-isms.              |
+|              |             |   | Also glibc provides XDR, rpcgen.        |
++--------------+-------------+---+-----------------------------------------+
+| GCC or LLVM  |             | R | We use __attribute__((cleanup)).        |
++--------------+-------------+---+-----------------------------------------+
+| Perl         |             | R | Various build and test programs need    |
+|              |             |   | Perl.  Not needed at runtime except if  |
+|              |             |   | you need to run a handful of virt-*     |
+|              |             |   | tools that are still written in Perl.   |
++--------------+-------------+---+-----------------------------------------+
+| Pod::Man     |             | R | Part of Perl core.                      |
++--------------+-------------+---+-----------------------------------------+
+| Pod::Simple  |             | R | Part of Perl core.                      |
++--------------+-------------+---+-----------------------------------------+
+| OCaml        |             |R/O| Required if compiling from git.         |
+|              |             |   | Optional if compiling from tarball.     |
+|              |             |   | To build generated files and OCaml bindings.
++--------------+-------------+---+-----------------------------------------+
+| autotools    |             |R/O| Required if compiling from git.         |
+|              |             |   | Optional if compiling from tarball.     |
+|              |             |   | Autotools-based build system.           |
++--------------+-------------+---+-----------------------------------------+
+| cpio         |             | R |                                         |
++--------------+-------------+---+-----------------------------------------+
+| gperf        |             | R |                                         |
++--------------+-------------+---+-----------------------------------------+
+| flex         |             | R | flex & bison are required for virt-     |
++--------------+-------------+---| builder.  We could make these           |
+| bison        |             | R | optional but automakes makes it hard.   |
++--------------+-------------+---+-----------------------------------------+
+| PCRE         |             | R | Perl-compatible Regular Expression lib. |
++--------------+-------------+---+-----------------------------------------+
+| genisoimage  |             | R | mkisofs may work.                       |
++--------------+-------------+---+-----------------------------------------+
+| libxml2      |             | R | Popular XML library.                    |
++--------------+-------------+---+-----------------------------------------+
+| augeas       | 1.0.0       | R |                                         |
++--------------+-------------+---+-----------------------------------------+
+| xz           |             | R | Used to compress disk images.           |
+|              |             |   | Used by virt-builder for compression.   |
++--------------+-------------+---+-----------------------------------------+
+| po4a         |             |R/O| Required if compiling from git.         |
+|              |             |   | Optional if compiling from tarball.     |
+|              |             |   | For localizing man pages.               |
++--------------+-------------+---+-----------------------------------------+
+| hivex        | 1.2.7       |R/O| Require if compiling from git.          |
+|              |             |   | Windows Registry hive parser.           |
++--------------+-------------+---+-----------------------------------------+
+| libmagic     |             | O | The library used by the 'file' command. |
++--------------+-------------+---+-----------------------------------------+
+| libvirt      |             | O | >= 0.10.2 is needed if you want to use  |
+|              |             |   | libvirt to manage transient VMs.        |
++--------------+-------------+---+-----------------------------------------+
+| xmllint      |             | O | Part of libxml2.  Used for tests only.  |
++--------------+-------------+---+-----------------------------------------+
+| libconfig    |             | O | Used to parse libguestfs's own config   |
+|              |             |   | files eg. /etc/libguestfs-tools.conf.   |
++--------------+-------------+---+-----------------------------------------+
+| libselinux   |             | O | Used by the libvirt backend to securely |
+|              |             |   | confine the appliance (sVirt).          |
++--------------+-------------+---+-----------------------------------------+
+| db utils     |             | O | db_dump, db_load etc.  Usually found in |
+|              |             |   | a package called db-utils, db4-utils,   |
+|              |             |   | db4.X-utils, Berkeley DB utils, etc.    |
++--------------+-------------+---+-----------------------------------------+
+| systemtap    |             | O | For userspace probes.                   |
++--------------+-------------+---+-----------------------------------------+
+| readline     |             | O | For nicer command line in guestfish.    |
++--------------+-------------+---+-----------------------------------------+
+| acl          |             | O | Library (libacl) and programs for       |
+|              |             |   | handling POSIX ACLs.                    |
++--------------+-------------+---+-----------------------------------------+
+| libcap       |             | O | Library (libcap) and programs for       |
+|              |             |   | handling Linux capabilities.            |
++--------------+-------------+---+-----------------------------------------+
+| libldm       |             | O | Library (libldm) and 'ldmtool' for      |
+|              |             |   | handling Windows Dynamic Disks.         |
++--------------+-------------+---+-----------------------------------------+
+| sd-journal   |             | O | systemd journal library                 |
++--------------+-------------+---+-----------------------------------------+
+| yajl         | 2           | O | JSON parser for parsing output of       |
+|              |             |   | ldmtool and qemu-img info commands.     |
++--------------+-------------+---+-----------------------------------------+
+| gdisk        |             | O | GPT disk support.                       |
++--------------+-------------+---+-----------------------------------------+
+| netpbm       |             | O | Render icons from guests.               |
++--------------+-------------+---+-----------------------------------------+
+| icoutils     |             | O | Render icons from Windows guests.       |
++--------------+-------------+---+-----------------------------------------+
+| Expect       |             | O | Perl module used to test virt-rescue.   |
++--------------+-------------+---+-----------------------------------------+
+| FUSE         |             | O | fusermount, libfuse, and kernel module  |
+|              |             |   | are all needed if you want guestmount   |
+|              |             |   | and/or 'mount-local' support.           |
++--------------+-------------+---+-----------------------------------------+
+| static glibc |             | O | Used for testing only.                  |
++--------------+-------------+---+-----------------------------------------+
+| qemu-nbd     |             | O | Used for testing only.                  |
++--------------+-------------+---+-----------------------------------------+
+| uml_mkcow    |             | O | For the UML backend.                    |
++--------------+-------------+---+-----------------------------------------+
+| curl         |             | O | Used by virt-builder for downloads      |
++--------------+-------------+---+-----------------------------------------+
+| gpg          |             | O | Used by virt-builder for digital        |
+|              |             |   | signatures                              |
++--------------+-------------+---+-----------------------------------------+
+| liblzma      |             | O | Can be used by virt-builder for fast    |
+|              |             |   | uncompression of templates.             |
++--------------+-------------+---+-----------------------------------------+
+| findlib      |             | O | For the OCaml bindings.                 |
++--------------+-------------+---+-----------------------------------------+
+| ocaml-gettext|             | O | For localizing OCaml virt-* tools.      |
++--------------+-------------+---+-----------------------------------------+
+| Python       | 2.2         | O | For the Python bindings.                |
++--------------+-------------+---+-----------------------------------------+
+| Ruby         |             | O | >= 1.9 is better than 1.8.              |
++--------------+-------------+---+-----------------------------------------+
+| rake         |             | O | For the Ruby bindings.                  |
++--------------+-------------+---+-----------------------------------------+
+| rubygem-minitest           | O | For the Ruby bindings.                  |
++--------------+-------------+---+-----------------------------------------+
+| Java         | 1.6         | O | Java + JNI + jpackage-utils are needed  |
+|              |             |   | for the Java bindings.                  |
++--------------+-------------+---+-----------------------------------------+
+| GHC          |             | O | For the Haskell bindings.               |
++--------------+-------------+---+-----------------------------------------+
+| PHP          |             | O | For the PHP bindings.                   |
++--------------+-------------+---+-----------------------------------------+
+| phpize       |             | O | For the PHP bindings.                   |
++--------------+-------------+---+-----------------------------------------+
+| glib2        |             | O | For the GObject bindings.               |
++--------------+-------------+---+-----------------------------------------+
+| gobject-introspection      | O | For the GObject bindings.               |
++--------------+-------------+---+-----------------------------------------+
+| gjs          |             | O | For testing the GObject bindings.       |
++--------------+-------------+---+-----------------------------------------+
+| LUA          |             | O | For the LUA bindings.                   |
++--------------+-------------+---+-----------------------------------------+
+| Erlang       |             | O | For the Erlang bindings.                |
++--------------+-------------+---+-----------------------------------------+
+| erl_interface|             | O | For the Erlang bindings.                |
++--------------+-------------+---+-----------------------------------------+
+| golang       | 1.1.1       | O | For the Go bindings.                    |
++--------------+-------------+---+-----------------------------------------+
+| valgrind     |             | O | For testing for memory problems.        |
++--------------+-------------+---+-----------------------------------------+
+| Sys::Virt    |             | O | Perl bindings for libvirt.              |
++--------------+-------------+---+-----------------------------------------+
+| Win::Hivex   |             | O | Perl bindings for hivex.                |
++--------------+-------------+---+-----------------------------------------+
+| Pod::Usage   |             | O | Perl module used by tests.              |
++--------------+-------------+---+-----------------------------------------+
+| Test::More   |             | O | Perl module used by tests.              |
++--------------+-------------+---+-----------------------------------------+
+| XML::XPath   |             | O | Perl module used by some virt-* tools.  |
++--------------+-------------+---+-----------------------------------------+
+| XML::XPath::XMLParser      | O | Perl module used by some virt-* tools.  |
++--------------+-------------+---+-----------------------------------------+
+| perl-libintl |             | O | Perl module for localization.           |
++--------------+-------------+---+-----------------------------------------+
+| bash-completion            | O | For tab-completion of commands in bash. |
++==============+=============+===+=========================================+
+                               R = Required
+                               O = Optional
 
 
 Building
 ----------------------------------------------------------------------
 
-Then make the daemon, library and root filesystem:
+Build the daemon, library and root filesystem:
 
-  ./configure
-  make
+  building from tarball     building from git
+  ---------------------     -----------------
+    ./configure               ./autogen.sh
+    make                      make
 
-Finally run the tests:
+Run the tests:
 
   make check
 
-There are some extra tests, but these require that you have some
-libvirt guests installed, that these guests' disks are accessible by
-the current user, and these tests may fail for other reasons which are
-not necessarily because of real problems.  If you want to run these
-extra tests do:
+Also:
 
-  make extra-tests
+ make check-valgrind
 
-If everything works, you can install the library and tools by running
-this command as root:
+runs a subset of the test suite under valgrind (requires valgrind to
+be installed obviously).
+
+ make check-all
+
+runs check-valgrind + even more tests, but these require that you have
+some libvirt guests installed, that these guests' disks are accessible
+by the current user, and these tests may fail for other reasons which
+are not necessarily because of real problems.
+
+ make help
+
+lists all 'make' targets.
+
+You may install the library by running the following command as root.
+However *most users should probably not do this*.  Instead, './run'
+the programs from the build directory as described below.
 
   make install
 
+Distro packagers should use this instead:
+
+ make INSTALLDIRS=vendor [DESTDIR=...] install
+
 You can run guestfish, guestmount and the virt tools without needing
-to install, using the "run" script in the top directory.  This script
-sets up some environment variables.  For example:
+to install, using the "./run" script in the top directory.  This
+script sets up some environment variables.  For example:
 
-  ./run ./fish/guestfish [usual guestfish args ...]
+  ./run guestfish [usual guestfish args ...]
 
-  ./run ./inspector/virt-inspector [usual virt-inspector args ...]
+  ./run virt-inspector [usual virt-inspector args ...]
 
 If you are already in the fish/ subdirectory, then the following
 command will also work:
 
-  ../run ./guestfish [...]
+  ../run guestfish [...]
 
-You can also make a symlink (note: NOT a hard link) from your $PATH to
-the run script, eg:
-
-  cd ~/bin
-  ln -s ~/libguestfs/run libguestfs-run
-  cd ~/libguestfs
-  libguestfs-run ./inspector/virt-inspector [...]
+The ./run script adds every libguestfs binary to the $PATH, so the
+above example runs guestfish from the build directory (not the
+globally installed guestfish if there is one).
 
 You can also run the C programs under valgrind like this:
 
-  ./run valgrind [valgrind opts...] ./cat/virt-cat [virt-cat opts...]
+  ./run valgrind [valgrind opts...] virt-cat [virt-cat opts...]
+
+or under gdb:
+
+  ./run gdb --args virt-cat [virt-cat opts...]
 
 This also works with sudo (eg. if you need root access for libvirt or
 to access a block device):
 
-  sudo ./run ./cat/virt-cat -d LinuxGuest /etc/passwd
+  sudo ./run virt-cat -d LinuxGuest /etc/passwd
 
 
 qemu
@@ -235,7 +335,7 @@ these instructions:
 
 On some systems, this will work too:
 
-  chmod o+rw /dev/kvm
+  chmod 0666 /dev/kvm
 
 On some systems, the chmod will not survive a reboot, and you will
 need to make edits to the udev configuration.
@@ -269,7 +369,7 @@ distributions.  Non-Linux ports are trickier, but we will accept
 patches if they aren't too invasive.
 
 The main porting issues are with the dependencies needed to build the
-appliance.  You will need to port the febootstrap first
+appliance.  You will need to port febootstrap first
 (http://people.redhat.com/~rjones/febootstrap/).
 
 
@@ -287,44 +387,13 @@ Don't enable GCC warnings (ie. *don't* use
 './configure --enable-gcc-warnings').
 
 
-Note on using non-x86 architectures
-----------------------------------------------------------------------
-
-In theory libguestfs should work on non-x86 architectures.  Usually if
-it doesn't it's because qemu isn't available or cannot boot the
-kernel.
-
-For ARM you will need to specify the exact machine type and CPU
-variant that is required to boot the Linux kernel (there's no way to
-know this except by looking at how the Linux kernel was configured).
-For example:
-
-  ./configure \
-        --with-qemu="qemu-system-arm" \
-        --with-qemu-options="-M versatilepb -cpu arm926"
-  ./configure \
-        --with-qemu="qemu-system-arm" \
-        --with-qemu-options="-M vexpress-a9 -cpu cortex-a9"
-
-Note that since virtio is required by libguestfs, and virtio is a
-PCI-based architecture, whatever architecture qemu emulates must
-support PCI also.
-
-For PPC64 you will need to specify the IBM pSeries machine type:
-
-  ./configure \
-        --with-qemu="qemu-system-ppc64" \
-        --with-qemu-options="-M pseries"
-
-After building libguestfs, run 'make quickcheck' and pay close
-attention to the qemu command line and kernel output.
-
-
 Copyright and license information
 ----------------------------------------------------------------------
 
-Copyright (C) 2009-2012 Red Hat Inc.
+Copyright (C) 2009-2014 Red Hat Inc.
 
 The library is distributed under the LGPLv2+.  The programs are
 distributed under the GPLv2+.  Please see the files COPYING and
 COPYING.LIB for full license information.
+
+The examples are under a very liberal license.

ROADMAP

@@ -3,7 +3,7 @@ Roadmap for future releases
 
 Before you read this:
 
-(1) To see what's in the current release, read 'RELEASE-NOTES'.
+(1) To see what's in the current release, read 'guestfs-release-notes(1)'.
 
 (2) To see the list of bugs, read 'BUGS'.
 
@@ -12,19 +12,15 @@ Before you read this:
 
 (4) For general "might be good to have" items, see 'TODO'.
 
-For next major stable release (1.20)
+For next major stable release (1.26)
 ------------------------------------
 
-* Allow remote libvirt volumes to be accessed.  This requires some
-  enhancements to libvirt which have been agreed but not yet
-  implemented.
-
-Bugs assigned to 1.20 (put "1.20" in the Devel Whiteboard field in
+Bugs assigned to 1.26 (put "1.26" in the Devel Whiteboard field in
 Bugzilla):
 
-https://bugzilla.redhat.com/buglist.cgi?query_format=advanced&field0-0-0=cf_devel_whiteboard&bug_status=NEW&bug_status=ASSIGNED&bug_status=MODIFIED&bug_status=ON_DEV&bug_status=ON_QA&bug_status=VERIFIED&bug_status=FAILS_QA&bug_status=RELEASE_PENDING&bug_status=POST&bug_status=PASSES_QA&type0-0-0=anywords&value0-0-0=1.20&component=libguestfs&product=Virtualization%20Tools
+https://bugzilla.redhat.com/buglist.cgi?query_format=advanced&field0-0-0=cf_devel_whiteboard&bug_status=NEW&bug_status=ASSIGNED&bug_status=MODIFIED&bug_status=ON_DEV&bug_status=ON_QA&bug_status=VERIFIED&bug_status=FAILS_QA&bug_status=RELEASE_PENDING&bug_status=POST&bug_status=PASSES_QA&type0-0-0=anywords&value0-0-0=1.26&component=libguestfs&product=Virtualization%20Tools
 
-Beyond 1.20
+Beyond 1.26
 -----------
 
 * Make 'guestfish --ro' be the default, and get users to use
@@ -33,20 +29,7 @@ Beyond 1.20
   for 1.10 but there's not nearly enough adoption of the new
   'guestfish --rw' option out there to do this yet.
 
-* Allow alternate methods to start the appliance, including through
-  libvirt, by connecting to an existing appliance, and remotely over
-  ssh.  Libvirt integration was originally planned for 1.10 but we
-  didn't get patches in time.
-
 * Write a new partition handling library to replace parted, and use it
   instead of parted.  (RHBZ#593511, RHBZ#642821).
 
-* Hot plugging of disks using QMP.  This would allow more efficient
-  reuse of the appliance in some circumstances: multiple disks
-  (ie. VMs) can be added in turn to the same appliance.  In particular
-  this would help virt-df.
-
-  [Note this requires upstream work on QMP, see:
-  https://www.redhat.com/archives/libguestfs/2011-March/msg00124.html]
-
 See TODO and BUGS files.

TODO

@@ -48,7 +48,6 @@ Ideas for extra commands
 
   General glibc / core programs:
     chgrp
-    more mk*temp calls
 
   ext2 properties:
     badblocks
@@ -57,17 +56,23 @@ Ideas for extra commands
     e2image
     e2undo
     filefrag
-    mklost+found
 
   SELinux:
     chcat
     restorecon
-    ch???
+      [Wanlong Gao submitted patches for restorecon, but
+       there are problems with using the restorecon binary
+       from the host on the guest.  Most of the time it
+       would do more harm than good.]
+    setfiles
 
   Oddball:
     pivot_root
     fts(3) / ftw(3)
 
+  sh-in, sh-out: run shell command with large input/output
+  debug sh-in, debug sh-out: debug versions of the above
+
 Other initrd-* commands
 -----------------------
 
@@ -90,10 +95,22 @@ two sides to a pty, and one has to be handled after the fork).
 work.  qemu is implementing its own ptys, and they are broken.  Need
 to fix qemu.]
 
-Windows-based daemon/appliance
-------------------------------
+Port to Windows
+---------------
 
-See discussion on list:
+"Port to Windows" means different things to different people.
+
+The easiest is to port the library to Windows, but reuse the Linux
+appliance/daemon.  This would allow people to use libguestfs on
+Windows hosts and link libguestfs to Windows programs.  Doing this is
+just a matter of chugging through the code fixing portability issues,
+using gnulib as far as possible as the portability layer.
+
+The hardest is probably a port of the daemon to Windows.  The reason
+to do this is so that you can use the native NTFS drivers (in Windows)
+in order to edit Windows guests.  Although back in 2009 we did some
+work on this, I am now dubious about the utility of this, since
+ntfs-3g works very well.  See also discussion on list:
 https://www.redhat.com/archives/libguestfs/2009-November/msg00165.html
 
 virt-disk-explore
@@ -136,11 +153,8 @@ http://sourceforge.net/projects/aide/
 http://osiris.shmoo.com/
 http://sourceforge.net/projects/tripwire/
 
-Freeze/thaw filesystems
------------------------
-
-Access to these ioctls:
-http://git.kernel.org/linus/fcccf502540e3d7
+See also: virt-aide;
+https://rwmj.wordpress.com/2013/05/16/scanning-offline-guests-using-openscap-and-guestmount/#content
 
 Tips for new users in guestfish
 -------------------------------
@@ -193,7 +207,7 @@ There are some places where we call out to the 'blkid' program.  This
 might be replaced by direct use of the library (if this is easier).
 
 But it is very hard to be compatible between RHEL6 and RHEL5 when
-using direct library.
+using the library directly.
 
 Visualization
 -------------
@@ -356,14 +370,14 @@ Interactive disk creator
 
 An interactive disk creator program.
 
-Attach method for disconnected operation
-----------------------------------------
+Backend for disconnected operation
+----------------------------------
 
-http://libguestfs.org/guestfs.3.html#guestfs_set_attach_method
+http://libguestfs.org/guestfs.3.html#guestfs_set_backend
 
 "Librarian" has an idea that he should be able to attach to a regular
 appliance, but disconnect from it and reconnect to it later.  This
-would be some sort of modified attach method (see link above).
+would be some sort of modified backend (see link above).
 
 The complexity here is that we would no longer have access to
 stdin/stdout (or we'd have to direct that somewhere else).
@@ -380,22 +394,28 @@ virt-sysprep ideas
  - Windows sysprep
    (see: https://github.com/clalancette/oz/blob/e74ce83283d468fd987583d6837b441608e5f8f0/oz/Windows.py )
  - (librarian suggests ...)
-   . install a firstboot script      virt-sysprep --script=/tmp/foo.sh
    . run external guestfish script   virt-sysprep --fish=/tmp/foo.fish
  - if drives are encrypted, then dm-crypt key should be changed
    and drives all re-encrypted
- - /etc/pki
-   (Steve says ...)
-   Rpm uses nss. Nss sets up its crypto database in
-   /etc/pki. Depending on how long the machine ran before cloning, you
-   may have picked up some certificates or things. This is an area
-   that you would want to look into.
  - secure erase of inodes etc using scrub (Steve Grubb)
- - other directories that could require cleaning include:
-    /var/run/*
-   (thanks Marko Myllynen, James Antill)
- - remove or modify UUIDs in /etc/fstab (eg. on Ubuntu)
-   (thanks Joshua Daniel Franklin)
+ - fix the virt-sysprep fs-uuids plugin
+
+ - virt-sysprep should be able to zero-free space on the disks (a bit
+   like virt-sparsify).  This is a security measure to stop people
+   trying to read the deleted files.
+
+Kazuo Moriwaka adds:
+
+ - swap devices (both of block device and file) should be wiped. This may
+   good for security purpose, and size.  I found virt-sparsify can clear
+   swap partition.
+ - --script is nice.  Defining default sysprep script directory
+   like /usr/lib/guestfs/sysprep-scripts.d/ may be useful to integrate
+   other package maintainer(or ISV)'s effort.
+ - To achieve better (or crazy) coverage, a simple examination will be
+   help:
+     Install the same kickstart into VM twice, and diff the trees.
+     Many autogenerated IDs and configs can be found :)
 
 As well as 'virt-sysprep' there is a case for a 'virt-customize' tool
 which can customize templated guests.  This would be useful within
@@ -404,19 +424,11 @@ customized with the organization logo etc.  Some ideas:
 
  - change the background image to some custom desktop
  - change the sign-on messages (/etc/issue.net etc)
- - firstboot script (as suggested by librarian above)
  - Windows login script/service
 
-Launch remote sessions over ssh
--------------------------------
-
-We had an idea you could add a launch method that uses ssh, ie.  all
-febootstrap and qemu commands happen the same as now, but prefixed by
-ssh so it happens on a remote machine.
-
-Note that proper remote support and integration with libvirt is
-different from this, and people are working on that.  ssh would just
-be "remote-lite".
+Note that virt-sysprep has gradually gained some of these features,
+eg. setting hostname, changing passwords.  Since this precedent has
+now been set, it could do more of the same.
 
 virt-make-fs and virt-win-reg need to not be in Perl
 ----------------------------------------------------
@@ -457,11 +469,6 @@ opened with O_CLOEXEC.  Therefore we need to examine every call to:
 virt-sparsify enhancements
 --------------------------
 
-TMPDIR should be checked to ensure that we won't run out of space
-during the conversion, since current behaviour is very bad when this
-happens (it usually causes virt-sparsify to hang).  This requires
-writing a small C binding to statvfs for OCaml.
-
 'virt-sparsify --whitelist' option to generate skeletons (for
 debugging, bug forensics, diagnosis).  The whilelist option would
 specify a list of files to be *preserved*.  All other files in the
@@ -469,11 +476,6 @@ image would be replaced by equivalent files of zeroes, thus minimizing
 the size of the debug image that needs to be shipped to us by the
 customer.
 
-Optimize the appliance
-----------------------
-
-Pass -cpu host.  Anything else?
-
 Sort out partitioning
 ---------------------
 
@@ -499,18 +501,86 @@ this approach works, it doesn't solve the MBR problem, so likely we'd
 have to write a library for that (or perhaps go back to sfdisk but
 using a very abstracted interface over sfdisk).
 
-qemu caching
+virt-sparsify should use discard
+--------------------------------
+
+This requires some changes to qemu to make discard work properly
+throughout the entire stack.
+
+Reimplement some APIs to avoid protocol limits
+----------------------------------------------
+
+Mostly this item was done (eg. commits a69f44f56f and before).  The
+most notable API with a protocol limit remaining is:
+
+ - guestfs_readdir
+
+hivex
+-----
+
+Reimplement virt-win-reg to use this API.  (This is difficult because
+the Perl libraries underneath access the hivex API directly).
+
+ruby
+----
+
+Implement blocking calls.  The API for this:
+
+  http://www.spacevatican.org/2012/7/5/whos-afraid-of-the-big-bad-lock/
+
+is very poorly designed and essentially impossible for us to use:
+
+  https://bugs.ruby-lang.org/issues/5543
+
+particularly if we also want to maintain backwards compatibility with
+Ruby 1.8, and/or maintain volatile VALUEs on the stack.
+
+virt-builder
 ------------
 
-(Suggested by Paolo Bonzini and Kevin Wolf)
+ - set keyboard
 
-Measure the effect of cache=none, cache=directsync,
-cache=writethrough, cache=writeback.
+ - set default timezone and language
 
-It's doubtful that using cache=none is useful, since it disables the
-host cache making read-heavy workloads slower (they rely entirely on
-the smaller appliance kernel's cache).  And in libguestfs we don't
-necessarily care about ongoing data integrity while writing, as long
-as data is reliably written out when g.sync or g.close return.  Also
-in libguestfs we effectively control the whole stack, so we can ensure
-write barriers happen when we want.
+ - set permissions on uploaded files & created directories
+
+ - how can we give users a shell for debugging purposes?
+
+ - allow non-xz-compressed templates (faster)
+
+ - let notes etc be localized, ie. notes[en]=...
+
+ - add a CLI option to print the in-built path/fingerprint(s)
+
+ - allow public keys to come from local file paths
+
+ - doing virt-builder then running (eg. via qemu, libvirt?) is common; is
+   it possible to make this more automatic?
+
+ - more common code between virt-sysprep & virt-builder:
+
+   * virt-sysprep should have --run, --run-command,
+     --firstboot-command options with common code from virt-builder
+
+ - document:
+
+   * how to integrate with ansible, puppet, chef
+   * how to import to OpenStack / Glance
+   * how to import to EC2
+
+ - /etc/resolv.conf handling works but is best described as a hack:
+   https://github.com/libguestfs/libguestfs/commit/9521422ce60578f7196cc8b7977d998159238c19
+
+ - let's make UML work
+   + SLIRP is insecure, but we could allow just a bare web proxy which
+     gets proxied over virtio-serial to the outside world (except
+     virtio-serial can't be multiplexed)
+
+ - sometimes (not always) aug_init takes ages, why?
+
+Midnight Commander (mc) extension
+---------------------------------
+
+Write an extension for mc that would let people browse into
+filesystems.  See
+http://repo.or.cz/w/midnight-commander.git/tree/HEAD:/misc/ext.d

align/Makefile.am

@@ -18,6 +18,8 @@
 include $(top_srcdir)/subdir-rules.mk
 
 EXTRA_DIST = \
+	test-virt-alignment-scan.sh \
+	test-virt-alignment-scan-guests.sh \
 	virt-alignment-scan.pod
 
 CLEANFILES = stamp-virt-alignment-scan.pod
@@ -25,34 +27,49 @@ CLEANFILES = stamp-virt-alignment-scan.pod
 bin_PROGRAMS = virt-alignment-scan
 
 SHARED_SOURCE_FILES = \
+	../df/domains.c \
+	../df/domains.h \
+	../df/estimate-max-threads.c \
+	../df/estimate-max-threads.h \
+	../df/parallel.c \
+	../df/parallel.h \
 	../fish/config.c \
+	../fish/domain.c \
 	../fish/inspect.c \
 	../fish/keys.c \
 	../fish/options.h \
 	../fish/options.c \
-	../fish/virt.c
+	../fish/uri.h \
+	../fish/uri.c
 
 virt_alignment_scan_SOURCES = \
 	$(SHARED_SOURCE_FILES) \
-	domains.c \
-	scan.c \
-	scan.h
+	scan.c
 
-virt_alignment_scan_CFLAGS = \
+virt_alignment_scan_CPPFLAGS = \
 	-DGUESTFS_WARN_DEPRECATED=1 \
+	-DGUESTFS_PRIVATE=1 \
 	-I$(top_srcdir)/src -I$(top_builddir)/src \
+	-I$(top_srcdir)/df \
 	-I$(top_srcdir)/fish \
 	-I$(srcdir)/../gnulib/lib -I../gnulib/lib \
-	-DLOCALEBASEDIR=\""$(datadir)/locale"\" \
+	-DLOCALEBASEDIR=\""$(datadir)/locale"\"
+
+virt_alignment_scan_CFLAGS = \
+	-pthread \
 	$(WARN_CFLAGS) $(WERROR_CFLAGS) \
+	$(GPROF_CFLAGS) $(GCOV_CFLAGS) \
 	$(LIBCONFIG_CFLAGS) \
+	$(LIBXML2_CFLAGS) \
 	$(LIBVIRT_CFLAGS)
 
 virt_alignment_scan_LDADD = \
 	$(LIBCONFIG_LIBS) \
+	$(top_builddir)/src/libutils.la \
 	$(top_builddir)/src/libguestfs.la \
-	../gnulib/lib/libgnu.la \
+	$(LIBXML2_LIBS) \
 	$(LIBVIRT_LIBS) \
+	../gnulib/lib/libgnu.la \
 	-lm
 
 # Manual pages and HTML files for the website.
@@ -62,14 +79,24 @@ noinst_DATA = $(top_builddir)/html/virt-alignment-scan.1.html
 virt-alignment-scan.1 $(top_builddir)/html/virt-alignment-scan.1.html: stamp-virt-alignment-scan.pod
 
 stamp-virt-alignment-scan.pod: virt-alignment-scan.pod
-	$(top_builddir)/podwrapper.sh \
+	$(PODWRAPPER) \
 	  --man virt-alignment-scan.1 \
 	  --html $(top_builddir)/html/virt-alignment-scan.1.html \
+	  --license GPLv2+ \
 	  $<
 	touch $@
 
 # Tests.
 
-# TESTS_ENVIRONMENT = $(top_builddir)/run --test
+TESTS_ENVIRONMENT = $(top_builddir)/run --test
 
-# TESTS = test-virt-alignment-scan.sh
+TESTS =
+
+if ENABLE_APPLIANCE
+TESTS += \
+	test-virt-alignment-scan.sh \
+	test-virt-alignment-scan-guests.sh
+endif
+
+check-valgrind:
+	$(MAKE) VG="$(top_builddir)/run @VG@" check

align/domains.c

@@ -1,360 +0,0 @@
-/* virt-alignment-scan
- * Copyright (C) 2012 Red Hat Inc.
- *
- * This program is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with this program; if not, write to the Free Software
- * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
- */
-
-#include <config.h>
-
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <libintl.h>
-#include <assert.h>
-
-#ifdef HAVE_LIBVIRT
-#include <libvirt/libvirt.h>
-#include <libvirt/virterror.h>
-#endif
-
-#include "progname.h"
-
-#if defined(HAVE_LIBVIRT) && defined(HAVE_LIBXML2)
-#define GUESTFS_PRIVATE_FOR_EACH_DISK 1
-#endif
-
-#include "guestfs.h"
-#include "options.h"
-#include "scan.h"
-
-#if defined(HAVE_LIBVIRT) && defined(HAVE_LIBXML2)
-
-/* The list of domains and disks that we build up in
- * get_domains_from_libvirt.
- */
-struct disk {
-  struct disk *next;
-  char *filename;
-  char *format; /* could be NULL */
-};
-
-struct domain {
-  char *name;
-  char *uuid;
-  struct disk *disks;
-  size_t nr_disks;
-};
-
-struct domain *domains = NULL;
-size_t nr_domains;
-
-static int
-compare_domain_names (const void *p1, const void *p2)
-{
-  const struct domain *d1 = p1;
-  const struct domain *d2 = p2;
-
-  return strcmp (d1->name, d2->name);
-}
-
-static void
-free_domain (struct domain *domain)
-{
-  struct disk *disk, *next;
-
-  for (disk = domain->disks; disk; disk = next) {
-    next = disk->next;
-    free (disk->filename);
-    free (disk->format);
-    free (disk);
-  }
-
-  free (domain->name);
-  free (domain->uuid);
-}
-
-static void add_domains_by_id (virConnectPtr conn, int *ids, size_t n);
-static void add_domains_by_name (virConnectPtr conn, char **names, size_t n);
-static void add_domain (virDomainPtr dom);
-static int add_disk (guestfs_h *g, const char *filename, const char *format, int readonly, void *domain_vp);
-static size_t add_disks_to_handle_reverse (struct disk *disk, size_t *errors_r);
-static void reset_guestfs_handle (void);
-
-void
-get_domains_from_libvirt (int uuid, size_t *worst_alignment_ptr)
-{
-  virErrorPtr err;
-  virConnectPtr conn;
-  int n;
-  size_t i, count, errors;
-  const char *prefix;
-
-  nr_domains = 0;
-  domains = NULL;
-
-  /* Get the list of all domains. */
-  conn = virConnectOpenReadOnly (libvirt_uri);
-  if (!conn) {
-    err = virGetLastError ();
-    fprintf (stderr,
-             _("%s: could not connect to libvirt (code %d, domain %d): %s\n"),
-             program_name, err->code, err->domain, err->message);
-    exit (EXIT_FAILURE);
-  }
-
-  n = virConnectNumOfDomains (conn);
-  if (n == -1) {
-    err = virGetLastError ();
-    fprintf (stderr,
-             _("%s: could not get number of running domains (code %d, domain %d): %s\n"),
-             program_name, err->code, err->domain, err->message);
-    exit (EXIT_FAILURE);
-  }
-
-  int ids[n];
-  n = virConnectListDomains (conn, ids, n);
-  if (n == -1) {
-    err = virGetLastError ();
-    fprintf (stderr,
-             _("%s: could not list running domains (code %d, domain %d): %s\n"),
-             program_name, err->code, err->domain, err->message);
-    exit (EXIT_FAILURE);
-  }
-
-  add_domains_by_id (conn, ids, n);
-
-  n = virConnectNumOfDefinedDomains (conn);
-  if (n == -1) {
-    err = virGetLastError ();
-    fprintf (stderr,
-             _("%s: could not get number of inactive domains (code %d, domain %d): %s\n"),
-             program_name, err->code, err->domain, err->message);
-    exit (EXIT_FAILURE);
-  }
-
-  char *names[n];
-  n = virConnectListDefinedDomains (conn, names, n);
-  if (n == -1) {
-    err = virGetLastError ();
-    fprintf (stderr,
-             _("%s: could not list inactive domains (code %d, domain %d): %s\n"),
-             program_name, err->code, err->domain, err->message);
-    exit (EXIT_FAILURE);
-  }
-
-  add_domains_by_name (conn, names, n);
-
-  /* You must free these even though the libvirt documentation doesn't
-   * mention it.
-   */
-  for (i = 0; i < (size_t) n; ++i)
-    free (names[i]);
-
-  virConnectClose (conn);
-
-  /* No domains? */
-  if (nr_domains == 0)
-    return;
-
-  /* Sort the domains alphabetically by name for display. */
-  qsort (domains, nr_domains, sizeof (struct domain), compare_domain_names);
-
-  errors = 0;
-  for (i = 0; i < nr_domains; ++i) {
-    if (domains[i].disks == NULL)
-      continue;
-
-    count = add_disks_to_handle_reverse (domains[i].disks, &errors);
-    if (count == 0)
-      continue;
-
-    if (guestfs_launch (g) == -1)
-      exit (EXIT_FAILURE);
-
-    prefix = !uuid ? domains[i].name : domains[i].uuid;
-
-    /* Perform the scan. */
-    scan (worst_alignment_ptr, prefix);
-
-    if (i < nr_domains - 1)
-      reset_guestfs_handle ();
-  }
-
-  /* Free up domains structure. */
-  for (i = 0; i < nr_domains; ++i)
-    free_domain (&domains[i]);
-  free (domains);
-
-  if (errors > 0) {
-    fprintf (stderr, _("%s: failed to analyze a disk, see error(s) above\n"),
-             program_name);
-    exit (EXIT_FAILURE);
-  }
-}
-
-static void
-add_domains_by_id (virConnectPtr conn, int *ids, size_t n)
-{
-  size_t i;
-  virDomainPtr dom;
-
-  for (i = 0; i < n; ++i) {
-    if (ids[i] != 0) {          /* RHBZ#538041 */
-      dom = virDomainLookupByID (conn, ids[i]);
-      if (dom) { /* transient errors are possible here, ignore them */
-        add_domain (dom);
-        virDomainFree (dom);
-      }
-    }
-  }
-}
-
-static void
-add_domains_by_name (virConnectPtr conn, char **names, size_t n)
-{
-  size_t i;
-  virDomainPtr dom;
-
-  for (i = 0; i < n; ++i) {
-    dom = virDomainLookupByName (conn, names[i]);
-    if (dom) { /* transient errors are possible here, ignore them */
-      add_domain (dom);
-      virDomainFree (dom);
-    }
-  }
-}
-
-static void
-add_domain (virDomainPtr dom)
-{
-  struct domain *domain;
-
-  domains = realloc (domains, (nr_domains + 1) * sizeof (struct domain));
-  if (domains == NULL) {
-    perror ("realloc");
-    exit (EXIT_FAILURE);
-  }
-
-  domain = &domains[nr_domains];
-  nr_domains++;
-
-  domain->name = strdup (virDomainGetName (dom));
-  if (domain->name == NULL) {
-    perror ("strdup");
-    exit (EXIT_FAILURE);
-  }
-
-  char uuid[VIR_UUID_STRING_BUFLEN];
-  if (virDomainGetUUIDString (dom, uuid) == 0) {
-    domain->uuid = strdup (uuid);
-    if (domain->uuid == NULL) {
-      perror ("strdup");
-      exit (EXIT_FAILURE);
-    }
-  }
-  else
-    domain->uuid = NULL;
-
-  domain->disks = NULL;
-  int n = guestfs___for_each_disk (g, dom, add_disk, domain);
-  if (n == -1)
-    exit (EXIT_FAILURE);
-  domain->nr_disks = n;
-}
-
-static int
-add_disk (guestfs_h *g,
-          const char *filename, const char *format, int readonly,
-          void *domain_vp)
-{
-  struct domain *domain = domain_vp;
-  struct disk *disk;
-
-  disk = malloc (sizeof *disk);
-  if (disk == NULL) {
-    perror ("malloc");
-    return -1;
-  }
-
-  disk->next = domain->disks;
-  domain->disks = disk;
-
-  disk->filename = strdup (filename);
-  if (disk->filename == NULL) {
-    perror ("malloc");
-    return -1;
-  }
-  if (format) {
-    disk->format = strdup (format);
-    if (disk->format == NULL) {
-      perror ("malloc");
-      return -1;
-    }
-  }
-  else
-    disk->format = NULL;
-
-  return 0;
-}
-
-static size_t
-add_disks_to_handle_reverse (struct disk *disk, size_t *errors_r)
-{
-  size_t nr_disks_added;
-
-  if (disk == NULL)
-    return 0;
-
-  nr_disks_added = add_disks_to_handle_reverse (disk->next, errors_r);
-
-  struct guestfs_add_drive_opts_argv optargs = { .bitmask = 0 };
-
-  optargs.bitmask |= GUESTFS_ADD_DRIVE_OPTS_READONLY_BITMASK;
-  optargs.readonly = 1;
-
-  if (disk->format) {
-    optargs.bitmask |= GUESTFS_ADD_DRIVE_OPTS_FORMAT_BITMASK;
-    optargs.format = disk->format;
-  }
-
-  if (guestfs_add_drive_opts_argv (g, disk->filename, &optargs) == -1) {
-    (*errors_r)++;
-    return nr_disks_added;
-  }
-
-  return nr_disks_added+1;
-}
-
-/* Close and reopen the libguestfs handle. */
-static void
-reset_guestfs_handle (void)
-{
-  /* Copy the settings from the old handle. */
-  int verbose = guestfs_get_verbose (g);
-  int trace = guestfs_get_trace (g);
-
-  guestfs_close (g);
-
-  g = guestfs_create ();
-  if (g == NULL) {
-    fprintf (stderr, _("guestfs_create: failed to create handle\n"));
-    exit (EXIT_FAILURE);
-  }
-
-  guestfs_set_verbose (g, verbose);
-  guestfs_set_trace (g, trace);
-}
-
-#endif

align/scan.c

@@ -25,21 +25,32 @@
 #include <inttypes.h>
 #include <unistd.h>
 #include <getopt.h>
+#include <errno.h>
 #include <locale.h>
 #include <assert.h>
 #include <libintl.h>
 
+#include <pthread.h>
+
 #ifdef HAVE_LIBVIRT
 #include <libvirt/libvirt.h>
 #include <libvirt/virterror.h>
 #endif
 
-#include "progname.h"
-#include "c-ctype.h"
-
 #include "guestfs.h"
 #include "options.h"
-#include "scan.h"
+#include "parallel.h"
+#include "domains.h"
+
+/* This just needs to be larger than any alignment we care about. */
+static size_t worst_alignment = UINT_MAX;
+static pthread_mutex_t worst_alignment_mutex = PTHREAD_MUTEX_INITIALIZER;
+
+static int scan (guestfs_h *g, const char *prefix, FILE *fp);
+
+#ifdef HAVE_LIBVIRT
+static int scan_work (guestfs_h *g, size_t i, FILE *fp);
+#endif
 
 /* These globals are shared with options.c. */
 guestfs_h *g;
@@ -53,12 +64,7 @@ const char *libvirt_uri = NULL;
 int inspector = 0;
 
 static int quiet = 0;           /* --quiet */
-
-static inline char *
-bad_cast (char const *s)
-{
-  return (char *) s;
-}
+static int uuid = 0;            /* --uuid */
 
 static void __attribute__((noreturn))
 usage (int status)
@@ -79,6 +85,7 @@ usage (int status)
              "  -d|--domain guest    Add disks from libvirt guest\n"
              "  --format[=raw|..]    Force disk format for -a option\n"
              "  --help               Display brief help\n"
+             "  -P nr_threads        Use at most nr_threads\n"
              "  -q|--quiet           No output, just exit code\n"
              "  -v|--verbose         Verbose messages\n"
              "  -V|--version         Display version and exit\n"
@@ -93,22 +100,20 @@ usage (int status)
 int
 main (int argc, char *argv[])
 {
-  /* Set global program name that is not polluted with libtool artifacts.  */
-  set_program_name (argv[0]);
-
   setlocale (LC_ALL, "");
   bindtextdomain (PACKAGE, LOCALEBASEDIR);
   textdomain (PACKAGE);
 
   enum { HELP_OPTION = CHAR_MAX + 1 };
 
-  static const char *options = "a:c:d:qvVx";
+  static const char *options = "a:c:d:P:qvVx";
   static const struct option long_options[] = {
     { "add", 1, 0, 'a' },
     { "connect", 1, 0, 'c' },
     { "domain", 1, 0, 'd' },
     { "format", 2, 0, 0 },
     { "help", 0, 0, HELP_OPTION },
+    { "long-options", 0, 0, 0 },
     { "quiet", 0, 0, 'q' },
     { "uuid", 0, 0, 0, },
     { "verbose", 0, 0, 'v' },
@@ -116,14 +121,12 @@ main (int argc, char *argv[])
     { 0, 0, 0, 0 }
   };
   struct drv *drvs = NULL;
-  struct drv *drv;
   const char *format = NULL;
   int c;
   int option_index;
-  int uuid = 0;
-  /* This just needs to be larger than any alignment we care about. */
-  size_t worst_alignment = UINT_MAX;
   int exit_code;
+  size_t max_threads = 0;
+  int r;
 
   g = guestfs_create ();
   if (g == NULL) {
@@ -131,15 +134,15 @@ main (int argc, char *argv[])
     exit (EXIT_FAILURE);
   }
 
-  argv[0] = bad_cast (program_name);
-
   for (;;) {
     c = getopt_long (argc, argv, options, long_options, &option_index);
     if (c == -1) break;
 
     switch (c) {
     case 0:			/* options which are long only */
-      if (STREQ (long_options[option_index].name, "format")) {
+      if (STREQ (long_options[option_index].name, "long-options"))
+        display_long_options (long_options);
+      else if (STREQ (long_options[option_index].name, "format")) {
         if (!optarg || STREQ (optarg, ""))
           format = NULL;
         else
@@ -165,6 +168,13 @@ main (int argc, char *argv[])
       OPTION_d;
       break;
 
+    case 'P':
+      if (sscanf (optarg, "%zu", &max_threads) != 1) {
+        fprintf (stderr, _("%s: -P option is not numeric\n"), program_name);
+        exit (EXIT_FAILURE);
+      }
+      break;
+
     case 'q':
       quiet = 1;
       break;
@@ -201,16 +211,25 @@ main (int argc, char *argv[])
   if (optind != argc)
     usage (EXIT_FAILURE);
 
-  /* The user didn't specify any drives to scan. */
+  /* virt-alignment-scan has two modes.  If the user didn't specify
+   * any drives, then we do the scan on every libvirt guest.  That's
+   * the if-clause below.  If the user specified domains/drives, then
+   * we assume they belong to a single guest.  That's the else-clause
+   * below.
+   */
   if (drvs == NULL) {
-#if defined(HAVE_LIBVIRT) && defined(HAVE_LIBXML2)
-    get_domains_from_libvirt (uuid, &worst_alignment);
+#if defined(HAVE_LIBVIRT)
+    get_all_libvirt_domains (libvirt_uri);
+    r = start_threads (max_threads, g, scan_work);
+    free_domains ();
+    if (r == -1)
+      exit (EXIT_FAILURE);
 #else
-    fprintf (stderr, _("%s: compiled without support for libvirt and/or libxml2.\n"),
+    fprintf (stderr, _("%s: compiled without support for libvirt.\n"),
              program_name);
     exit (EXIT_FAILURE);
 #endif
-  } else {
+  } else {                      /* Single guest. */
     if (uuid) {
       fprintf (stderr, _("%s: --uuid option cannot be used with -a or -d\n"),
                program_name);
@@ -227,9 +246,12 @@ main (int argc, char *argv[])
     free_drives (drvs);
 
     /* Perform the scan. */
-    scan (&worst_alignment, NULL);
+    r = scan (g, NULL, stdout);
 
     guestfs_close (g);
+
+    if (r == -1)
+      exit (EXIT_FAILURE);
   }
 
   /* Decide on an appropriate exit code. */
@@ -243,30 +265,30 @@ main (int argc, char *argv[])
   exit (exit_code);
 }
 
-void
-scan (size_t *worst_alignment, const char *prefix)
+static int
+scan (guestfs_h *g, const char *prefix, FILE *fp)
 {
-  char **devices, *p;
   size_t i, j;
   size_t alignment;
   uint64_t start;
-  struct guestfs_partition_list *parts;
+  int err;
 
-  devices = guestfs_list_devices (g);
+  CLEANUP_FREE_STRING_LIST char **devices = guestfs_list_devices (g);
   if (devices == NULL)
-    exit (EXIT_FAILURE);
+    return -1;
 
   for (i = 0; devices[i] != NULL; ++i) {
-    parts = guestfs_part_list (g, devices[i]);
+    CLEANUP_FREE char *name = NULL;
+
+    CLEANUP_FREE_PARTITION_LIST struct guestfs_partition_list *parts =
+      guestfs_part_list (g, devices[i]);
     if (parts == NULL)
-      exit (EXIT_FAILURE);
+      return -1;
 
     /* Canonicalize the name of the device for printing. */
-    p = guestfs_canonical_device_name (g, devices[i]);
-    if (p == NULL)
-      exit (EXIT_FAILURE);
-    free (devices[i]);
-    devices[i] = p;
+    name = guestfs_canonical_device_name (g, devices[i]);
+    if (name == NULL)
+      return -1;
 
     for (j = 0; j < parts->len; ++j) {
       /* Start offset of the partition in bytes. */
@@ -274,10 +296,10 @@ scan (size_t *worst_alignment, const char *prefix)
 
       if (!quiet) {
         if (prefix)
-          printf ("%s:", prefix);
+          fprintf (fp, "%s:", prefix);
 
-        printf ("%s%d %12" PRIu64 " ",
-                devices[i], (int) parts->val[j].part_num, start);
+        fprintf (fp, "%s%d %12" PRIu64 " ",
+                 name, (int) parts->val[j].part_num, start);
       }
 
       /* What's the alignment? */
@@ -289,30 +311,60 @@ scan (size_t *worst_alignment, const char *prefix)
 
       if (!quiet) {
         if (alignment < 10)
-          printf ("%12" PRIu64 "    ", UINT64_C(1) << alignment);
+          fprintf (fp, "%12" PRIu64 "    ", UINT64_C(1) << alignment);
         else if (alignment < 64)
-          printf ("%12" PRIu64 "K   ", UINT64_C(1) << (alignment - 10));
+          fprintf (fp, "%12" PRIu64 "K   ", UINT64_C(1) << (alignment - 10));
         else
-          printf ("- ");
+          fprintf (fp, "- ");
       }
 
-      if (alignment < *worst_alignment)
-        *worst_alignment = alignment;
+      err = pthread_mutex_lock (&worst_alignment_mutex);
+      assert (err == 0);
+      if (alignment < worst_alignment)
+        worst_alignment = alignment;
+      err = pthread_mutex_unlock (&worst_alignment_mutex);
+      assert (err == 0);
 
       if (alignment < 12) {     /* Bad in general: < 4K alignment */
         if (!quiet)
-          printf ("bad (%s)\n", _("alignment < 4K"));
+          fprintf (fp, "bad (%s)\n", _("alignment < 4K"));
       } else if (alignment < 16) { /* Bad on NetApps: < 64K alignment */
         if (!quiet)
-          printf ("bad (%s)\n", _("alignment < 64K"));
+          fprintf (fp, "bad (%s)\n", _("alignment < 64K"));
       } else {
         if (!quiet)
-          printf ("ok\n");
+          fprintf (fp, "ok\n");
       }
     }
-
-    guestfs_free_partition_list (parts);
-    free (devices[i]);
   }
-  free (devices);
+
+  return 0;
 }
+
+#if defined(HAVE_LIBVIRT)
+
+/* The multi-threaded version.  This callback is called from the code
+ * in "parallel.c".
+ */
+
+static int
+scan_work (guestfs_h *g, size_t i, FILE *fp)
+{
+  struct guestfs___add_libvirt_dom_argv optargs;
+
+  optargs.bitmask =
+    GUESTFS___ADD_LIBVIRT_DOM_READONLY_BITMASK |
+    GUESTFS___ADD_LIBVIRT_DOM_READONLYDISK_BITMASK;
+  optargs.readonly = 1;
+  optargs.readonlydisk = "read";
+
+  if (guestfs___add_libvirt_dom (g, domains[i].dom, &optargs) == -1)
+    return -1;
+
+  if (guestfs_launch (g) == -1)
+    return -1;
+
+  return scan (g, !uuid ? domains[i].name : domains[i].uuid, fp);
+}
+
+#endif /* HAVE_LIBVIRT */

align/test-virt-alignment-scan-guests.sh

@@ -0,0 +1,35 @@
+#!/bin/bash -
+# libguestfs
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+export LANG=C
+
+if [ -n "$SKIP_TEST_VIRT_ALIGNMENT_SCAN_GUESTS_SH" ]; then
+    echo "$0: skipping test because SKIP_TEST_VIRT_ALIGNMENT_SCAN_GUESTS_SH is set."
+    exit 77
+fi
+
+guestsdir="$(cd ../tests/guests && pwd)"
+libvirt_uri="test://$guestsdir/guests-all-good.xml"
+
+$VG ./virt-alignment-scan -c "$libvirt_uri"
+r=$?
+
+# 0, 2 and 3 are reasonable non-error exit codes.  Others are errors.
+if [ $r -ne 0 -a $r -ne 2 -a $r -ne 3 ]; then
+    exit $r
+fi

align/test-virt-alignment-scan.sh

@@ -0,0 +1,27 @@
+#!/bin/bash -
+# libguestfs
+# Copyright (C) 2012 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+export LANG=C
+
+$VG ./virt-alignment-scan -a ../tests/guests/fedora.img
+r=$?
+
+# 0, 2 and 3 are reasonable non-error exit codes.  Others are errors.
+if [ $r -ne 0 -a $r -ne 2 -a $r -ne 3 ]; then
+    exit $r
+fi

align/virt-alignment-scan.pod

@@ -117,6 +117,12 @@ Add I<file> which should be a disk image from a virtual machine.
 The format of the disk image is auto-detected.  To override this and
 force a particular format use the I<--format=..> option.
 
+=item B<-a URI>
+
+=item B<--add URI>
+
+Add a remote disk.  See L<guestfish(1)/ADDING REMOTE STORAGE>.
+
 =item B<-c> URI
 
 =item B<--connect> URI
@@ -158,6 +164,18 @@ If you have untrusted raw-format guest disk images, you should use
 this option to specify the disk format.  This avoids a possible
 security problem with malicious guests (CVE-2010-3851).
 
+=item B<-P> nr_threads
+
+Since libguestfs 1.22, virt-alignment-scan is multithreaded and
+examines guests in parallel.  By default the number of threads to use
+is chosen based on the amount of free memory available at the time
+that virt-alignment-scan is started.  You can force
+virt-alignment-scan to use at most C<nr_threads> by using the I<-P>
+option.
+
+Note that I<-P 0> means to autodetect, and I<-P 1> means to use a
+single thread.
+
 =item B<-q>
 
 =item B<--quiet>
@@ -388,17 +406,3 @@ Richard W.M. Jones L<http://people.redhat.com/~rjones/>
 =head1 COPYRIGHT
 
 Copyright (C) 2011 Red Hat Inc.
-
-This program is free software; you can redistribute it and/or modify
-it under the terms of the GNU General Public License as published by
-the Free Software Foundation; either version 2 of the License, or
-(at your option) any later version.
-
-This program is distributed in the hope that it will be useful,
-but WITHOUT ANY WARRANTY; without even the implied warranty of
-MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-GNU General Public License for more details.
-
-You should have received a copy of the GNU General Public License
-along with this program; if not, write to the Free Software
-Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.

appliance/99-guestfs-serial.rules

@@ -0,0 +1,17 @@
+# For libguestfs, create /dev/disk/guestfs/<serial>
+# and /dev/disk/guestfs/<serial><partnum>
+
+KERNEL=="sd*[!0-9]", ENV{DEVTYPE}=="disk", ENV{ID_SCSI_SERIAL}=="?*", \
+  SYMLINK+="disk/guestfs/$env{ID_SCSI_SERIAL}"
+KERNEL=="sd*", ENV{DEVTYPE}=="partition", ENV{ID_SCSI_SERIAL}=="?*", \
+  SYMLINK+="disk/guestfs/$env{ID_SCSI_SERIAL}%n"
+
+# As written, it's likely the above only works with virtio-scsi
+# because ID_SCSI_SERIAL is specific to the output of the 'scsi_id'
+# program.  The following will not work because ID_SERIAL contains
+# some unwanted text.
+
+#KERNEL=="vd*[!0-9]", ATTRS{serial}=="?*", ENV{ID_SERIAL}="$attr{serial}", \
+#  SYMLINK+="disk/guestfs/$env{ID_SERIAL}"
+#KERNEL=="vd*[0-9]", ATTRS{serial}=="?*", ENV{ID_SERIAL}="$attr{serial}", \
+#  SYMLINK+="disk/guestfs/$env{ID_SERIAL}%n"

appliance/Makefile.am

@@ -1,5 +1,5 @@
 # libguestfs
-# Copyright (C) 2009 Red Hat Inc.
+# Copyright (C) 2009-2014 Red Hat Inc.
 #
 # This program is free software; you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
@@ -15,14 +15,13 @@
 # along with this program; if not, write to the Free Software
 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 
-# Old RHEL 5 autoconf doesn't have builddir.
-builddir ?= .
-
 include $(top_srcdir)/subdir-rules.mk
 
 EXTRA_DIST = \
-	excludelist.in \
+	99-guestfs-serial.rules \
+	excludefiles.in \
 	guestfsd.suppressions \
+	hostfiles.in \
 	init \
 	libguestfs-make-fixed-appliance.in \
 	libguestfs-make-fixed-appliance.pod \
@@ -34,60 +33,100 @@ superminfsdir = $(libdir)/guestfs/supermin.d
 
 fs_DATA =
 superminfs_DATA = \
-	supermin.d/base.img \
-	supermin.d/daemon.img \
-	supermin.d/init.img \
-	supermin.d/hostfiles
+	supermin.d/base.tar.gz \
+	supermin.d/daemon.tar.gz \
+	supermin.d/excludefiles \
+	supermin.d/hostfiles \
+	supermin.d/init.tar.gz \
+	supermin.d/packages \
+	supermin.d/udev-rules.tar.gz
 
-# This used to be a configure-generated file (as is update.sh still).
-# However config.status always touches the destination file, which
-# means the appliance got rebuilt too often.
-make.sh: make.sh.in
+supermin.d/base.tar.gz \
+supermin.d/daemon.tar.gz \
+supermin.d/excludefiles \
+supermin.d/hostfiles \
+supermin.d/init.tar.gz \
+supermin.d/packages \
+supermin.d/udev-rules.tar.gz: stamp-supermin
+stamp-supermin: make.sh \
+	  packagelist \
+	  hostfiles \
+	  excludefiles \
+	  daemon.tar.gz \
+	  init.tar.gz \
+	  udev-rules.tar.gz
+	rm -f $@ supermin.d/base.tar.gz supermin.d/packages
+	./make.sh
+	cp -t supermin.d \
+	    daemon.tar.gz excludefiles hostfiles init.tar.gz udev-rules.tar.gz
+	touch $@
+
+# This used to be a configure-generated file.  However config.status
+# always touches the destination file, which means the appliance got
+# rebuilt too often.
+make.sh: make.sh.in $(top_builddir)/config.log $(top_builddir)/config.status
 	cd $(top_builddir) && \
 	  ./config.status --file=appliance/$@-t:appliance/$<
 	chmod +x $@-t
-	mv $@-t $@
+	cmp -s $@ $@-t || mv $@-t $@
+	rm -f $@-t
 
-PACKAGELIST_CPP_FLAGS = -D$(DISTRO)=1
+PACKAGELIST_CPP_FLAGS = -D$(DISTRO)=1 -DEXTRA_PACKAGES="$(EXTRA_PACKAGES)"
 if VALGRIND_DAEMON
 PACKAGELIST_CPP_FLAGS += -DVALGRIND_DAEMON=1
 endif
 
-packagelist: packagelist.in
-	cpp -undef $(PACKAGELIST_CPP_FLAGS) < $< | \
+excludefiles: excludefiles.in Makefile
+	m4 $(PACKAGELIST_CPP_FLAGS) $< | \
 	grep -v '^[[:space:]]*$$' | grep -v '^#' > $@-t
-	mv $@-t $@
+	cmp -s $@ $@-t || mv $@-t $@
+	rm -f $@-t
 
-excludelist: excludelist.in
-	cpp -undef $(PACKAGELIST_CPP_FLAGS) < $< | \
+hostfiles: hostfiles.in Makefile
+	m4 $(PACKAGELIST_CPP_FLAGS) $< | \
 	grep -v '^[[:space:]]*$$' | grep -v '^#' > $@-t
-	mv $@-t $@
+	cmp -s $@ $@-t || mv $@-t $@
+	rm -f $@-t
 
-supermin.d/base.img supermin.d/hostfiles: stamp-supermin
-stamp-supermin: make.sh packagelist excludelist
-	mkdir -p supermin.d
-	rm -f $@ supermin.d/base.img supermin.d/hostfiles
-	./make.sh
-	touch $@
+packagelist: packagelist.in Makefile
+	m4 $(PACKAGELIST_CPP_FLAGS) $< | \
+	grep -v '^[[:space:]]*$$' | grep -v '^#' > $@-t
+	cmp -s $@ $@-t || mv $@-t $@
+	rm -f $@-t
 
-supermin.d/daemon.img: ../daemon/guestfsd guestfsd.suppressions
-	mkdir -p supermin.d
+daemon.tar.gz: ../daemon/guestfsd guestfsd.suppressions
 	rm -f $@ $@-t
-	rm -rf tmp
-	mkdir -p tmp$(DAEMON_SUPERMIN_DIR) tmp/etc
-	ln ../daemon/guestfsd tmp$(DAEMON_SUPERMIN_DIR)/guestfsd
-	ln $(srcdir)/guestfsd.suppressions tmp/etc/guestfsd.suppressions
-	( cd tmp && find | cpio --quiet -o -H newc ) > $@-t
-	rm -rf tmp
+	rm -rf tmp-d
+	mkdir -p tmp-d$(DAEMON_SUPERMIN_DIR) tmp-d/etc
+	ln ../daemon/guestfsd tmp-d$(DAEMON_SUPERMIN_DIR)/guestfsd
+	ln $(srcdir)/guestfsd.suppressions tmp-d/etc/guestfsd.suppressions
+	( cd tmp-d && tar zcf - * ) > $@-t
+	rm -r tmp-d
 	mv $@-t $@
 
-supermin.d/init.img: init
-	cmp -s $(srcdir)/init $(builddir)/init || cp $(srcdir)/init $(builddir)/init
-	mkdir -p supermin.d
+init.tar.gz: init
 	rm -f $@ $@-t
-	echo "init" | cpio --quiet -o -H newc > $@-t
+	( cd $(srcdir) && tar zcf - init ) > $@-t
 	mv $@-t $@
 
+# We should put this file in /lib/udev/rules.d, but put it in /etc so
+# we don't have to deal with all the UsrMove crap in Fedora.
+udev-rules.tar.gz: 99-guestfs-serial.rules
+	rm -f $@ $@-t
+	rm -rf tmp-u
+	mkdir -p tmp-u/etc/udev/rules.d
+	for f in $^; do ln $$f tmp-u/etc/udev/rules.d/$$(basename $$f); done
+	( cd tmp-u && tar zcf - etc ) > $@-t
+	rm -r tmp-u
+	mv $@-t $@
+
+# If installing the daemon, install the udev rules too.
+
+if INSTALL_DAEMON
+udevrulesdir = /lib/udev/rules.d
+udevrules_DATA = 99-guestfs-serial.rules
+endif
+
 # libguestfs-make-fixed-appliance script and man page.
 
 sbin_SCRIPTS = libguestfs-make-fixed-appliance
@@ -97,17 +136,23 @@ man_MANS = libguestfs-make-fixed-appliance.1
 libguestfs-make-fixed-appliance.1 $(top_builddir)/html/libguestfs-make-fixed-appliance.1.html: stamp-libguestfs-make-fixed-appliance.pod
 
 stamp-libguestfs-make-fixed-appliance.pod: libguestfs-make-fixed-appliance.pod
-	$(top_builddir)/podwrapper.sh \
+	$(PODWRAPPER) \
 	  --man libguestfs-make-fixed-appliance.1 \
 	  --html $(top_builddir)/html/libguestfs-make-fixed-appliance.1.html \
+	  --license GPLv2+ \
 	  $<
 	touch $@
 
 # Make clean.
 
-CLEANFILES = packagelist excludelist \
+CLEANFILES = \
+	*~ \
+	daemon.tar.gz \
+	excludefiles \
+	hostfiles \
+	init.tar.gz \
 	libguestfs-make-fixed-appliance.1 \
-	stamp-libguestfs-make-fixed-appliance.pod
-
-clean-local:
-	rm -rf supermin.d
+	packagelist \
+	stamp-libguestfs-make-fixed-appliance.pod \
+	supermin.d/* \
+	udev-rules.tar.gz

appliance/excludefiles.in

@@ -0,0 +1,34 @@
+dnl This is the list of files excluded from the appliance, even if
+dnl they appear in packagelist.in (or more likely, as dependencies of
+dnl packages in packagelist.in).
+dnl
+dnl List is a list of wildcards, one per line, prefixed by a '-' character.
+dnl
+dnl This file is processed by m4 with one of the
+dnl following symbols defined (depending on the distro):
+dnl
+dnl   REDHAT=1     For Fedora, RHEL, EPEL and workalikes.
+dnl   DEBIAN=1     For Debian.
+dnl   UBUNTU=1     For Ubuntu.
+dnl   ARCHLINUX=1  For Archlinux.
+dnl
+dnl Note that any matching file will be dropped from the appliance.
+dnl Of course, this may break the appliance, so be careful.
+
+dnl The right kernel modules are added back by supermin.
+-/boot/*
+-/lib/modules/*
+
+-/usr/lib/locale/*
+-/usr/share/locale/*
+-/usr/share/man/*
+-/usr/share/doc/*
+-/usr/share/info/*
+-/usr/share/gnome/help/*
+-/usr/share/cracklib/*
+-/usr/share/i18n/*
+
+dnl For Debian:
+-/usr/share/lintian/*
+-/usr/share/initramfs-tools/*
+-/etc/initramfs-tools/*

appliance/excludelist.in

@@ -1,52 +0,0 @@
-/* This is the list of distro packages which are
- * excluded from the appliance, even if they appear in
- * packagelist.in (or more likely, as dependencies of
- * packages in packagelist.in).
- *
- * List is a list of basic regular expressions, one per line.
- *
- * This file is processed by cpp with one of the
- * following symbols defined (depending on the distro):
- *
- *   REDHAT=1     For Fedora, RHEL, EPEL and workalikes.
- *   DEBIAN=1     For Debian.
- *   UBUNTU=1     For Ubuntu.
- *   ARCHLINUX=1  For Archlinux.
- *
- * Note that any file provided by one of these packages will
- * be dropped from the appliance.  Of course, this may break
- * the appliance, so be careful.  Other files are also dropped
- * from the appliance such as docs and man pages: see 'make.sh.in'
- * for the full details.
- */
-
-/* Basically the same with a few minor tweaks. */
-#ifdef UBUNTU
-#define DEBIAN 1
-#endif
-
-/* Don't need any Perl or Python appearing in the appliance. */
-^perl
-^python
-
-/* Plymouth is a graphical boot thing - not needed. */
-^plymouth
-
-/* Linux firmware.  Note that febootstrap itself excludes the kernel
- * which is also not needed since we get the kernel, modules etc
- * from the host at appliance boot.
- */
-^linux-firmware
-
-/* Keyboard maps - appliance is not interactive. */
-^kbd-misc
-
-#ifdef REDHAT
-^fedora-logos
-^redhat-logos
-^dracut
-#endif
-
-#ifdef DEBIAN
-^file-rc
-#endif

appliance/guestfsd.suppressions

@@ -17,3 +17,11 @@
   fun:expand_dynamic_string_token
   fun:_dl_map_object
 }
+
+# aug_setm memory leak
+{
+  aug_setm_leak
+  Memcheck:Leak
+  ...
+  fun:aug_setm
+}

appliance/hostfiles.in

@@ -0,0 +1,14 @@
+dnl This is the list of extra files added to appliance.
+dnl
+dnl List is a list of wildcards, one per line.
+dnl
+dnl This file is processed by m4 with one of the
+dnl following symbols defined (depending on the distro):
+dnl
+dnl   REDHAT=1     For Fedora, RHEL, EPEL and workalikes.
+dnl   DEBIAN=1     For Debian.
+dnl   UBUNTU=1     For Ubuntu.
+dnl   ARCHLINUX=1  For Archlinux.
+
+/lib/lsb/*
+/usr/share/augeas/lenses/*.aug

appliance/init

@@ -10,6 +10,16 @@ RUNLEVEL=S
 PREVLEVEL=N
 export RUNLEVEL PREVLEVEL
 
+# Try to print a stack trace for segfaults inside the appliance.
+for d in /lib64 /lib; do
+  f=$d/libSegFault.so
+  if [ -f "$f" ]; then
+    LD_PRELOAD=$f
+    export LD_PRELOAD
+    break
+  fi
+done
+
 mkdir -p /sysroot
 
 if [ ! -d /proc ]; then rm -f /proc; fi
@@ -18,58 +28,46 @@ mount -t proc /proc /proc
 if [ ! -d /sys ]; then rm -f /sys; fi
 mkdir -p /sys
 mount -t sysfs /sys /sys
+# taken from initramfs-tools/init --Hilko Bengen
+mkdir -p /run
+mount -t tmpfs -o "nosuid,size=20%,mode=0755" tmpfs /run
 mkdir -p /run/lock
+ln -s ../run/lock /var/lock
 
 # devtmpfs is required since udev 176
 mount -t devtmpfs /dev /dev
 
-if [ ! -L /etc/init.d/udev -a -x /etc/init.d/udev ]; then
-  if type service >/dev/null 2>&1; then
-     service udev start
-  else
-     /etc/init.d/udev start
-  fi
-elif [ -x /sbin/start_udev ] && /sbin/start_udev; then
-  :
-else
-  # Find udevd and run it directly.
-  for f in /sbin/udevd /lib/udev/udevd \
-      /lib/systemd/systemd-udevd /usr/lib/systemd/systemd-udevd \
-      /usr/lib/udev/udevd; do
-    if [ -x "$f" ]; then UDEVD="$f"; fi
-  done
-  if [ -n "$UDEVD" ]; then
-    echo -e '\000\000\000\000' > /proc/sys/kernel/hotplug
-    $UDEVD --daemon
-    udevadm trigger
-    udevadm settle --timeout=600
-  else
-    echo No udevd, creating /dev manually.
-    mount -t tmpfs none /dev
-    mkdir /dev/pts /dev/shm /dev/mapper
-    mount -t devpts -o gid=5,mode=620 /dev/pts /dev/pts
-    # Must do each MAKEDEV individually, because if one device fails,
-    # MAKEDEV will quit without creating the rest (RHBZ#507374).
-    for dev in mem null port zero core full ram tty console fd \
-      hda hdb hdc hdd sda sdb sdc sdd loop sd; do
-      MAKEDEV $dev ||:
-    done
-    mknod /dev/ptmx c 5 2;    chmod 0666 /dev/ptmx
-    mknod /dev/random c 1 8;  chmod 0666 /dev/random
-    mknod /dev/urandom c 1 9; chmod 0444 /dev/urandom
-    ln -sf /proc/self/fd/0 /dev/stdin
-    ln -sf /proc/self/fd/1 /dev/stdout
-    ln -sf /proc/self/fd/2 /dev/stderr
-
-    modprobe virtio_pci
-    modprobe virtio_net
-  fi
+# Find udevd and run it directly.
+for f in /sbin/udevd /lib/udev/udevd \
+    /lib/systemd/systemd-udevd /usr/lib/systemd/systemd-udevd \
+    /usr/lib/udev/udevd; do
+  if [ -x "$f" ]; then UDEVD="$f"; fi
+done
+if [ -z "$UDEVD" ]; then
+  echo "udev not found!  Things will probably not work ..."
 fi
 
+$UDEVD --daemon
+udevadm trigger
+udevadm settle --timeout=600
+
 if grep -sq selinux=1 /proc/cmdline; then
-  mount -t selinuxfs none /selinux
+  mount -t selinuxfs none /sys/fs/selinux
 fi
 
+# Set up kmod static-nodes (RHBZ#1011907).
+mkdir -p /run/tmpfiles.d
+kmod static-nodes --format=tmpfiles --output=/run/tmpfiles.d/kmod.conf
+
+# Set up tmpfiles (must run after kmod.conf is created above).
+systemd-tmpfiles --prefix=/dev --create
+
+# Disk optimizations.
+# Increase the SCSI timeout so we can read remote images.
+for f in /sys/block/sd*/device/timeout; do echo 300 > $f; done
+# https://access.redhat.com/site/solutions/5427
+for f in /sys/block/{h,s,ub,v}d*/queue/scheduler; do echo noop > $f; done
+
 # Update the system clock.
 hwclock -u -s
 
@@ -82,25 +80,23 @@ ip link set dev eth0 up
 
 ip route add default via 169.254.2.2
 
+echo nameserver 169.254.2.3 > /etc/resolv.conf
+
 # Scan for MDs.
 mdadm -As --auto=yes --run
 
 # Scan for LVM.
 modprobe dm_mod ||:
+lvmetad ||:
 
-lvm vgscan --ignorelockingfailure
-lvm vgchange -ay --ignorelockingfailure
+lvm vgchange -aay --sysinit
 
-# Improve virtio-blk performance (RHBZ#509383).
-for f in /sys/block/vd*/queue/rotational; do echo 1 > $f; done
-
-# http://kbase.redhat.com/faq/docs/DOC-5428
-# Disabled this until https://bugzilla.redhat.com/show_bug.cgi?id=630583
-# is fixed (broken in Linux 2.6.36).
-#for f in /sys/block/[hsv]d*/queue/scheduler; do echo noop > $f; done
+# Scan for Windows dynamic disks.
+ldmtool create all
 
 # These are useful when debugging.
 if grep -sq guestfs_verbose=1 /proc/cmdline; then
+    uname -a
     ls -lR /dev
     cat /proc/mounts
     lvm pvs
@@ -111,6 +107,8 @@ if grep -sq guestfs_verbose=1 /proc/cmdline; then
     lsmod
     #hwclock -r
     date
+    echo -n "clocksource: "
+    cat /sys/devices/system/clocksource/clocksource0/current_clocksource
     #ping -n -v -c 5 10.0.2.2
     #ping -n -v -c 5 10.0.2.4
 
@@ -118,23 +116,31 @@ if grep -sq guestfs_verbose=1 /proc/cmdline; then
 fi
 
 if ! grep -sq guestfs_rescue=1 /proc/cmdline; then
+  # Run the daemon.
+
   # Run the daemon under valgrind if ./configure --enable-valgrind-daemon
-  vg_channel=/dev/virtio-ports/org.libguestfs.valgrind
-  if [ -w $vg_channel ]; then
+  if grep -sq guestfs_valgrind_daemon=1 /proc/cmdline; then
     if [ -r /etc/guestfsd.suppressions ]; then
       suppressions="--suppressions=/etc/guestfsd.suppressions"
     fi
-    exec 3>$vg_channel
-    vg="valgrind --leak-check=full --log-fd=3 --error-exitcode=119 --max-stackframe=8388608 --child-silent-after-fork=yes $suppressions"
+    vg="valgrind --leak-check=full --error-exitcode=119 --max-stackframe=8388608 --child-silent-after-fork=yes $suppressions"
     echo "enabling valgrind: $vg"
   fi
 
-  # The host will kill qemu abruptly if guestfsd shuts down normally
+  # Run guestfsd, under valgrind if asked.
   $vg guestfsd
-
-  # Otherwise we try to clean up gracefully. For example, this ensures that a
-  # core dump generated by the guest daemon will be written to disk.
+  if [ $? -eq 119 ]; then
+      echo "DAEMON VALGRIND FAILED"
+      # Sleep so valgrind messages are seen by the host.  Note this
+      # only happens in non-production builds
+      # (--enable-valgrind-daemon) + on an error path.
+      sleep 10
+  fi
 else
+  # Run virt-rescue shell.
+
+  # Remove LD_PRELOAD=libSegFault set above.
+  unset LD_PRELOAD
   # Use appliance in rescue mode, also used by the virt-rescue command.
   eval $(grep -Eo 'TERM=[^[:space:]]+' /proc/cmdline)
   PS1='><rescue> '
@@ -155,4 +161,9 @@ else
 fi
 
 sync
-reboot -f
+
+if ! grep -sq guestfs_noreboot=1 /proc/cmdline; then
+  # qemu has the -no-reboot flag, so issuing a reboot here actually
+  # causes qemu to exit gracefully.
+  reboot -f
+fi

appliance/libguestfs-make-fixed-appliance.in

@@ -103,11 +103,9 @@ mkdir -p "$outputdir"
 guestfish -a /dev/null run
 
 # Find the location of the appliance.
-if [ -n "$TMPDIR" ]; then
-    appliancedir="$TMPDIR/.guestfs-$(id -u)"
-else
-    appliancedir="/var/tmp/.guestfs-$(id -u)"
-fi
+cachedir="$(guestfish get-cachedir)"
+euid="$(id -u)"
+appliancedir="$cachedir/.guestfs-$euid/appliance.d"
 
 cp "$appliancedir/kernel" "$outputdir/kernel"
 cp "$appliancedir/initrd" "$outputdir/initrd"
@@ -130,8 +128,8 @@ Then copy all four files:
 
 into a directory somewhere, eg. /usr/local/lib/guestfs/appliance/
 
-Then build libguestfs (>= 1.16.7 or >= 1.17.10) from source, disabling
-the normal appliance and daemon:
+Then build libguestfs from source, disabling the normal appliance
+and daemon:
 
   ./configure --disable-appliance --disable-daemon
   make

appliance/libguestfs-make-fixed-appliance.pod

@@ -15,11 +15,33 @@ libguestfs-make-fixed-appliance - Make a "fixed appliance" for libguestfs
 libguestfs-make-fixed-appliance lets you make a pre-built binary
 appliance for libguestfs.
 
-B<Note that ordinary users should not need to run this tool>.  The
-only reason to use it is if you want to make a self-contained
-libguestfs appliance that can be copied to another machine or platform
-that doesn't support L<febootstrap(8)>.  To understand why you might
-need to use this tool, read the section L</FIXED APPLIANCE> below.
+B<Note that ordinary users should not need to run this tool>.
+
+Some reasons why you I<might> want to use this include:
+
+=over 4
+
+=item *
+
+You want to make a self-contained libguestfs appliance that can be
+copied to another machine or platform that doesn't support
+L<supermin(1)>.
+
+=item *
+
+You have multiple users on the same machine and want to avoid the
+storage duplication and start-up overhead of having multiple cached
+copies of the appliance.
+
+=item *
+
+You want to have very predictable performance from libguestfs (see
+L<guestfs-performance(1)>).
+
+=back
+
+For deeper understanding of why you might need this tool, read the
+section L</FIXED APPLIANCE> below.
 
 Instead of running this tool, you can download fixed appliances from
 L<http://libguestfs.org/download/binaries/appliance/>.  These
@@ -107,21 +129,21 @@ looking for an appliance.  The path is built into libguestfs, or can
 be set using the C<LIBGUESTFS_PATH> environment variable.
 
 Normally a supermin appliance is located on this path (see
-L<febootstrap(8)/SUPERMIN APPLIANCE>).  libguestfs reconstructs this
-into a full appliance by running L<febootstrap-supermin-helper(8)>.
+L<supermin(1)/SUPERMIN APPLIANCE>).  libguestfs reconstructs this
+into a full appliance by running C<supermin --build>.
 
 However, a simpler "fixed appliance" can also be used.  libguestfs
 detects this by looking for a directory on the path containing four
 files called C<kernel>, C<initrd>, C<root> and C<README.fixed> (note
 the C<README.fixed> file must be present as well).
 
-If the fixed appliance is found, libguestfs skips febootstrap entirely
+If the fixed appliance is found, libguestfs skips supermin entirely
 and just runs qemu with the kernel, initrd and root disk from the
 fixed appliance.
 
 Thus the fixed appliance can be used when a platform or Linux distro
-does not support febootstrap.  You build the fixed appliance on a
-platform that does support febootstrap, and copy it over, and use that
+does not support supermin.  You build the fixed appliance on a
+platform that does support supermin, and copy it over, and use that
 to run libguestfs.
 
 =head1 LICENSING
@@ -144,8 +166,7 @@ libguestfs, please see the L<guestfs(3)> manual page.
 =head1 SEE ALSO
 
 L<guestfs(3)>,
-L<febootstrap(8)>,
-L<febootstrap-supermin-helper(8)>,
+L<supermin(1)>,
 L<xz(1)>,
 L<http://libguestfs.org/>,
 L<http://qemu.org/>.
@@ -156,19 +177,4 @@ Richard W.M. Jones (C<rjones at redhat dot com>)
 
 =head1 COPYRIGHT
 
-Copyright (C) 2009-2012 Red Hat Inc.
-L<http://libguestfs.org/>
-
-This program is free software; you can redistribute it and/or modify
-it under the terms of the GNU General Public License as published by
-the Free Software Foundation; either version 2 of the License, or
-(at your option) any later version.
-
-This program is distributed in the hope that it will be useful,
-but WITHOUT ANY WARRANTY; without even the implied warranty of
-MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-GNU General Public License for more details.
-
-You should have received a copy of the GNU General Public License
-along with this program; if not, write to the Free Software
-Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+Copyright (C) 2009-2014 Red Hat Inc.

appliance/make.sh.in

@@ -1,6 +1,6 @@
 #!/bin/bash -
 # @configure_input@
-# Copyright (C) 2009-2012 Red Hat Inc.
+# Copyright (C) 2009-2014 Red Hat Inc.
 #
 # This program is free software; you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
@@ -20,47 +20,14 @@ unset CDPATH
 
 set -e
 
-# Turn excludelist file into command line arguments.
-exec 5<excludelist
-while read regexp <&5; do
-    excludes="$excludes --exclude $regexp"
-done
-exec 5<&-
+# Run supermin.
 
-# Run febootstrap on the package list.
-if [ "x@FEBOOTSTRAP_YUM_CONFIG@" != "xno" ]; then
-    extra="--yum-config @FEBOOTSTRAP_YUM_CONFIG@"
+if [ "x@SUPERMIN_PACKAGER_CONFIG@" != "xno" ]; then
+    extra="--packager-config @SUPERMIN_PACKAGER_CONFIG@"
+fi
+if [ "x@SUPERMIN_EXTRA_OPTIONS@" != "xno" ]; then
+    extra="$extra @SUPERMIN_EXTRA_OPTIONS@"
 fi
 
-echo @FEBOOTSTRAP@ -v -o supermin.d --names $(< packagelist ) $excludes $extra
-@FEBOOTSTRAP@ -v -o supermin.d --names $(< packagelist ) $excludes $extra
-
-# Remove some things that we don't want in the appliance.  This is
-# copied from the old febootstrap-minimize.  However minimization is
-# not so important now that we are caching the appliance.
-< supermin.d/hostfiles \
-grep -v '^/usr/lib/locale' |
-grep -v '^/usr/share/locale' |
-grep -v '^/usr/lib/gconv' |
-grep -v '^/usr/lib64/gconv' |
-grep -v '^/usr/bin/localedef' |
-grep -v '^/usr/sbin/build-locale-archive' |
-grep -v '^/usr/share/man/' |
-grep -v '^/usr/share/doc/' |
-grep -v '^/usr/share/info/' |
-grep -v '^/usr/share/gnome/help/' |
-grep -v '^/usr/share/cracklib/' |
-grep -v '^/usr/share/i18n/' > supermin.d/hostfiles-t
-
-# XXX resolv.conf?  The old script had:
-# echo nameserver 169.254.2.3 > resolv.conf
-if ! grep -q /etc/resolv.conf supermin.d/hostfiles-t; then
-    echo /etc/resolv.conf >> supermin.d/hostfiles-t
-fi
-
-# Include any Augeas lenses from the host.
-if grep -q /usr/share/augeas/lenses supermin.d/hostfiles-t; then
-    echo "/usr/share/augeas/lenses/*.aug" >> supermin.d/hostfiles-t
-fi
-
-mv supermin.d/hostfiles-t supermin.d/hostfiles
+echo @SUPERMIN@ --prepare -v -o supermin.d $(< packagelist ) $extra
+@SUPERMIN@ --prepare -v -o supermin.d $(< packagelist ) $extra

appliance/packagelist.in

@@ -1,93 +1,185 @@
-/* This is the list of distro packages which are
- * installed on the appliance.
- *
- * This file is processed by cpp with one of the
- * following symbols defined (depending on the distro):
- *
- *   REDHAT=1     For Fedora, RHEL, EPEL and workalikes.
- *   DEBIAN=1     For Debian.
- *   UBUNTU=1     For Ubuntu.
- *   ARCHLINUX=1  For Archlinux.
- *
- * There is also a list of packages which are excluded if they appear
- * as dependencies of the packages below.  See: excludelist.in
- */
+dnl This is the list of distro packages which are
+dnl installed on the appliance.
+dnl
+dnl This file is processed by m4 with one of the
+dnl following symbols defined (depending on the distro):
+dnl
+dnl   REDHAT=1     For Fedora, RHEL, EPEL and workalikes.
+dnl   DEBIAN=1     For Debian.
+dnl   UBUNTU=1     For Ubuntu.
+dnl   ARCHLINUX=1  For Archlinux.
+dnl
+dnl There is also a list of packages which are excluded if they appear
+dnl as dependencies of the packages below.  See: excludelist.in
+dnl
+dnl To add arbitrary extra packages, use:
+dnl
+dnl   ./configure --with-extra-packages="gdb valgrind [etc]"
 
-/* Basically the same with a few minor tweaks. */
-#ifdef UBUNTU
-#define DEBIAN 1
-#endif
+dnl Basically the same with a few minor tweaks.
+ifelse(UBUNTU,1,define(DEBIAN,1))
 
-#ifdef REDHAT
+ifelse(REDHAT,1,
   augeas-libs
   btrfs-progs
   cryptsetup
-  cryptsetup-luks /* old name used before Fedora 17 */
-  diffutils
+  cryptsetup-luks      dnl old name used before Fedora 17
   e2fsprogs
-  /* e4fsprogs only exists on RHEL 5, will be ignored everywhere else. */
+  dnl e4fsprogs only exists on RHEL 5, will be ignored everywhere else.
   e4fsprogs
+  genisoimage
   gfs-utils
   gfs2-utils
   grub
   hfsplus-tools
+  hivex
+  iproute
   iputils
   kernel
-  MAKEDEV
+  libcap
+  libldm               dnl only Fedora for now, others later
   nilfs-utils
   ntfsprogs
   ntfs-3g
+  openssh-clients
+  pcre
   reiserfs-utils
   libselinux
-  systemd /* for /sbin/reboot and udevd */
-  util-linux-ng
+  syslinux-extlinux
+  systemd              dnl for /sbin/reboot and udevd
   vim-minimal
   xz
+  yajl
   zfs-fuse
-#endif /* REDHAT */
+)
 
-#ifdef DEBIAN
+ifelse(DEBIAN,1,
   bsdmainutils
   btrfs-tools
   cryptsetup
-  diff
   e2fsprogs
+  extlinux
+  genisoimage
   gfs-tools
   gfs2-tools
   grub-pc
   hfsplus
   iproute
   libaugeas0
+  libcap2
+  libhivex0
+  libpcre3
+  libsystemd-id128-0
+  libsystemd-journal0
+  libyajl2
   linux-image
+  dnl syslinux 'suggests' mtools, but in reality it's a hard dependency:
+  mtools
   nilfs-tools
   ntfs-3g
-  ntfsprogs
+  openssh-client
   reiserfsprogs
+  sysvinit                  dnl for /sbin/reboot
   ufsutils
-  util-linux
   vim-tiny
   xz-utils
   zfs-fuse
-#endif /* DEBIAN */
+)
 
-#ifdef ARCHLINUX
-  linux
-  vim
-  btrfs-progs-unstable
-  cryptsetup
-  diffutils
+ifelse(ARCHLINUX,1,
   augeas
-  zfs-fuse
+  btrfs-progs
+  cdrkit
+  cryptsetup
   e2fsprogs
   grub
+  hivex
+  iproute2
   iputils
+  libcap
+  linux
+  lrzip
   nilfs-utils
   ntfsprogs
   ntfs-3g
+  pcre
   reiserfsprogs
-  util-linux-ng
+  systemd
+  vim
   xz
-#endif /* ARCHLINUX */
+  yajl
+  zfs-fuse
+)
+
+ifelse(FRUGALWARE,1,
+  augeas
+  btrfs-progs
+  cryptsetup-luks
+  e2fsprogs
+  cdrkit
+  grub2
+  hfsplus
+  iproute2
+  iputils
+  kernel
+  libcap
+  ntfsprogs
+  ntfs-3g
+  openssh
+  pcre
+  reiserfsprogs
+  syslinux
+  systemd
+  vim
+  xz
+  yajl
+  xfsprogs-acl
+  xfsprogs-attr
+  bash
+  binutils
+  bzip2
+  coreutils
+  cpio
+  diffutils
+  dosfstools
+  file
+  findutils
+  gawk
+  gptfdisk
+  grep
+  gzip
+  jfsutils
+  kmod
+  less
+  libxml2
+  lsof
+  lsscsi
+  lvm2
+  mdadm
+  module-init-tools
+  parted
+  procps
+  psmisc
+  rsync
+  sed
+  strace
+  syslinux
+  tar
+  util-linux
+  xfsprogs
+)
+
+ifelse(MAGEIA,1,
+  hivex
+  libaugeas0
+  lib64augeas0
+  libcryptsetup4
+  lib64cryptsetup4
+  libpcre1
+  lib64pcre1
+  libselinux1
+  lib64selinux1
+)
 
 acl
 attr
@@ -96,15 +188,17 @@ binutils
 bzip2
 coreutils
 cpio
+diffutils
 dosfstools
 file
 findutils
 gawk
-genisoimage
+gdisk
 grep
 gzip
-iproute
 jfsutils
+kmod
+less
 libxml2
 lsof
 lsscsi
@@ -112,26 +206,26 @@ lvm2
 lzop
 mdadm
 module-init-tools
-/*
-Enabling this pulls out 140 extra packages
-into the appliance:
-ocfs2-tools
-*/
+dnl Enabling this pulls out 140 extra packages
+dnl into the appliance:
+dnl ocfs2-tools
 parted
 procps
+procps-ng
 psmisc
+rsync
 scrub
+sed
 strace
+syslinux
 tar
 udev
-#ifndef UBUNTU
-/* on Ubuntu contains a file in /lib64 which conflicts with libc6 that has
- * /lib64 as a symbolic link
- */
+util-linux
+util-linux-ng
 xfsprogs
-#endif
 zerofree
 
-#ifdef VALGRIND_DAEMON
-valgrind
-#endif
+ifelse(VALGRIND_DAEMON,1,valgrind)
+
+dnl Define this by doing: ./configure --with-extra-packages="..."
+EXTRA_PACKAGES

autogen.sh

@@ -44,7 +44,7 @@ fi
 
 # If no arguments were specified and configure has run before, use the previous
 # arguments
-if test $# == 0 && test -x ./config.status; then
+if test $# -eq 0 && test -x ./config.status; then
     ./config.status --recheck
 else
     $CONFIGUREDIR/configure "$@"

bash/Makefile.am

@@ -0,0 +1,71 @@
+# libguestfs
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+include $(top_srcdir)/subdir-rules.mk
+
+scripts = \
+	guestfish \
+	guestmount \
+	virt-alignment-scan \
+	virt-builder \
+	virt-cat \
+	virt-df \
+	virt-edit \
+	virt-filesystems \
+	virt-format \
+	virt-inspector \
+	virt-ls \
+	virt-rescue \
+	virt-resize \
+	virt-sparsify \
+	virt-sysprep
+
+EXTRA_DIST = \
+	README \
+	$(scripts)
+
+# Some of the scripts are simply symbolic links.
+virt-cat:
+	ln -sf virt-alignment-scan $@
+virt-df:
+	ln -sf virt-alignment-scan $@
+virt-edit:
+	ln -sf virt-alignment-scan $@
+virt-filesystems:
+	ln -sf virt-alignment-scan $@
+virt-format:
+	ln -sf virt-alignment-scan $@
+virt-inspector:
+	ln -sf virt-alignment-scan $@
+virt-ls:
+	ln -sf virt-alignment-scan $@
+virt-sysprep:
+	ln -sf virt-alignment-scan $@
+
+virt-builder:
+	ln -sf virt-resize $@
+virt-sparsify:
+	ln -sf virt-resize $@
+
+if HAVE_BASH_COMPLETION
+
+# Bash completion script.
+
+bashcompletiondir = $(BASH_COMPLETIONS_DIR)
+bashcompletion_DATA = $(scripts)
+
+endif

bash/README

@@ -0,0 +1,3 @@
+This directory contains the scripts for tab-completing commands in
+bash.  Note these new-style demand-loaded scripts require
+'bash-completion' >= 1.99.

bash/guestfish

@@ -0,0 +1,72 @@
+# guestfish bash completion script -*- shell-script -*-
+# Copyright (C) 2010-2014 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# List all local libvirt domains.
+_guestfs_virsh_list ()
+{
+    local flag_ro=$1 flags
+
+    if [ "$flag_ro" -eq 1 ]; then
+        flags="--all"
+    else
+        flags="--inactive"
+    fi
+    virsh list $flags | head -n -1 | tail -n +3 | awk '{print $2}'
+}
+
+_guestfish ()
+{
+    local cur prev words cword split
+    local longopts flag_ro=0 c=1 word cmds doms
+
+    _init_completion -s || return
+
+    longopts="$(guestfish --long-options)"
+
+    # See if user has specified certain options anywhere on the
+    # command line before the current word.
+    while [ $c -lt $COMP_CWORD ]; do
+        word="${COMP_WORDS[c]}"
+        case "$word" in
+            -r|--ro) flag_ro=1 ;;
+        esac
+        c=$((++c))
+    done
+
+    case "$prev" in
+        -a|--add)
+            COMPREPLY=( $(compgen "$cur") )
+            return ;;
+        -d|--domain)
+            doms=$(_guestfs_virsh_list "$flag_ro")
+            COMPREPLY=( $(compgen -W "$doms" -- "$cur") )
+            return ;;
+    esac
+
+    case "$cur" in
+        --*)
+            # --options
+            COMPREPLY=( $(compgen -W "$longopts" -- "$cur") )
+            return ;;
+        *)
+            # Might be a guestfish command.
+            cmds=$(guestfish -h| head -n -1 | tail -n +2 | awk '{print $1}')
+            COMPREPLY=( $(compgen -W "$cmds" -- "$cur") )
+            return ;;
+    esac
+} &&
+complete -o default -F _guestfish guestfish

bash/guestmount

@@ -0,0 +1,67 @@
+# guestmount bash completion script -*- shell-script -*-
+# Copyright (C) 2010-2014 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# List all local libvirt domains.
+_guestfs_virsh_list ()
+{
+    local flag_ro=$1 flags
+
+    if [ "$flag_ro" -eq 1 ]; then
+        flags="--all"
+    else
+        flags="--inactive"
+    fi
+    virsh list $flags | head -n -1 | tail -n +3 | awk '{print $2}'
+}
+
+_guestmount ()
+{
+    local cur prev words cword split
+    local longopts flag_ro=0 c=1 word doms
+
+    _init_completion -s || return
+
+    longopts="$(guestmount --long-options)"
+
+    # See if user has specified certain options anywhere on the
+    # command line before the current word.
+    while [ $c -lt $COMP_CWORD ]; do
+        word="${COMP_WORDS[c]}"
+        case "$word" in
+            -r|--ro) flag_ro=1 ;;
+        esac
+        c=$((++c))
+    done
+
+    case "$prev" in
+        -d|--domain)
+            doms=$(_guestfs_virsh_list "$flag_ro")
+            COMPREPLY=( $(compgen -W "$doms" -- "$cur") )
+            return ;;
+    esac
+
+    case "$cur" in
+        --*)
+            # --options
+            COMPREPLY=( $(compgen -W "$longopts" -- "$cur") )
+            return ;;
+        *)
+            COMPREPLY=( $(compgen "$cur") )
+            return ;;
+    esac
+} &&
+complete -o default -F _guestmount guestmount

bash/virt-alignment-scan

@@ -0,0 +1,108 @@
+# virt-tools bash completion script -*- shell-script -*-
+# Copyright (C) 2010-2014 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# List all local libvirt domains.
+_guestfs_virsh_list ()
+{
+    local flag_ro=$1 flags
+
+    if [ "$flag_ro" -eq 1 ]; then
+        flags="--all"
+    else
+        flags="--inactive"
+    fi
+    virsh list $flags | head -n -1 | tail -n +3 | awk '{print $2}'
+}
+
+_guestfs_virttools ()
+{
+    local cur prev words cword split
+    local longopts="$1" flag_ro="$2" doms
+
+    _init_completion -s || return
+
+    case "$prev" in
+        -d|--domain)
+            doms=$(_guestfs_virsh_list "$flag_ro")
+            COMPREPLY=( $(compgen -W "$doms" -- "$cur") )
+            return ;;
+    esac
+
+    case "$cur" in
+        --*)
+            # --options
+            COMPREPLY=( $(compgen -W "$longopts" -- "$cur") )
+            return ;;
+        *)
+            COMPREPLY=( $(compgen "$cur") )
+            return ;;
+    esac
+}
+
+_virt_alignment_scan ()
+{
+    _guestfs_virttools "$(virt-alignment-scan --long-options)" 1
+} &&
+complete -o default -F _virt_alignment_scan virt-alignment-scan
+
+_virt_cat ()
+{
+    _guestfs_virttools "$(virt-cat --long-options)" 1
+} &&
+complete -o default -F _virt_cat virt-cat
+
+_virt_df ()
+{
+    _guestfs_virttools "$(virt-df --long-options)" 1
+} &&
+complete -o default -F _virt_df virt-df
+
+_virt_edit ()
+{
+    _guestfs_virttools "$(virt-edit --long-options)" 0
+} &&
+complete -o default -F _virt_edit virt-edit
+
+_virt_filesystems ()
+{
+    _guestfs_virttools "$(virt-filesystems --long-options)" 1
+} &&
+complete -o default -F _virt_filesystems virt-filesystems
+
+_virt_format ()
+{
+    _guestfs_virttools "$(virt-format --long-options)" 0
+} &&
+complete -o default -F _virt_format virt-format
+
+_virt_inspector ()
+{
+    _guestfs_virttools "$(virt-inspector --long-options)" 1
+} &&
+complete -o default -F _virt_inspector virt-inspector
+
+_virt_ls ()
+{
+    _guestfs_virttools "$(virt-ls --long-options)" 1
+} &&
+complete -o default -F _virt_ls virt-ls
+
+_virt_sysprep ()
+{
+    _guestfs_virttools "$(virt-sysprep --long-options)" 0
+} &&
+complete -o default -F _virt_sysprep virt-sysprep

bash/virt-rescue

@@ -0,0 +1,67 @@
+# virt-rescue bash completion script -*- shell-script -*-
+# Copyright (C) 2010-2014 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# List all local libvirt domains.
+_guestfs_virsh_list ()
+{
+    local flag_ro=$1 flags
+
+    if [ "$flag_ro" -eq 1 ]; then
+        flags="--all"
+    else
+        flags="--inactive"
+    fi
+    virsh list $flags | head -n -1 | tail -n +3 | awk '{print $2}'
+}
+
+_virt_rescue ()
+{
+    local cur prev words cword split
+    local longopts flag_ro=0 c=1 word doms
+
+    _init_completion -s || return
+
+    longopts="$(virt-rescue --long-options)"
+
+    # See if user has specified certain options anywhere on the
+    # command line before the current word.
+    while [ $c -lt $COMP_CWORD ]; do
+        word="${COMP_WORDS[c]}"
+        case "$word" in
+            -r|--ro) flag_ro=1 ;;
+        esac
+        c=$((++c))
+    done
+
+    case "$prev" in
+        -d|--domain)
+            doms=$(_guestfs_virsh_list "$flag_ro")
+            COMPREPLY=( $(compgen -W "$doms" -- "$cur") )
+            return ;;
+    esac
+
+    case "$cur" in
+        --*)
+            # --options
+            COMPREPLY=( $(compgen -W "$longopts" -- "$cur") )
+            return ;;
+        *)
+            COMPREPLY=( $(compgen "$cur") )
+            return ;;
+    esac
+} &&
+complete -o default -F _virt_rescue virt-rescue

bash/virt-resize

@@ -0,0 +1,53 @@
+# virt-resize, virt-builder, virt-sparsify bash completion script
+# -*- shell-script -*-
+# Copyright (C) 2010-2014 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+_guestfs_options_only ()
+{
+    local cur prev words cword split
+    local longopts="$1"
+
+    _init_completion -s || return
+
+    case "$cur" in
+        --*)
+            # --options
+            COMPREPLY=( $(compgen -W "$longopts" -- "$cur") )
+            return ;;
+        *)
+            COMPREPLY=( $(compgen "$cur") )
+            return ;;
+    esac
+}
+
+_virt_builder ()
+{
+    _guestfs_options_only "$(virt-builder --long-options)"
+} &&
+complete -o default -F _virt_builder virt-builder
+
+_virt_resize ()
+{
+    _guestfs_options_only "$(virt-resize --long-options)"
+} &&
+complete -o default -F _virt_resize virt-resize
+
+_virt_sparsify ()
+{
+    _guestfs_options_only "$(virt-sparsify --long-options)"
+} &&
+complete -o default -F _virt_sparsify virt-sparsify

bindtests

@@ -9,8 +9,9 @@ false
 <61><62><63><00><61><62><63>
 obool: true
 oint: 1
-oint64: unset
+oint64: 9223372036854775807
 ostring: unset
+ostringlist: unset
 abc
 null
 []
@@ -24,6 +25,7 @@ obool: unset
 oint: unset
 oint64: 1
 ostring: string
+ostringlist: unset
 
 def
 []
@@ -35,8 +37,9 @@ false
 <61><62><63><00><61><62><63>
 obool: false
 oint: unset
-oint64: unset
+oint64: -9223372036854775808
 ostring: unset
+ostringlist: unset
 
 
 []
@@ -50,6 +53,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
@@ -63,6 +67,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1", "2"]
@@ -76,6 +81,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
@@ -89,6 +95,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
@@ -102,6 +109,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
@@ -115,6 +123,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
@@ -128,6 +137,7 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
@@ -141,12 +151,13 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
 false
 4095
-4095
+9223372036854775807
 123
 456
 <61><62><63><00><61><62><63>
@@ -154,12 +165,13 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
 abc
 def
 ["1"]
 false
 0
-0
+-9223372036854775808
 
 
 <61><62><63><00><61><62><63>
@@ -167,4 +179,61 @@ obool: unset
 oint: unset
 oint64: unset
 ostring: unset
+ostringlist: unset
+abc
+def
+[]
+false
+0
+0
+123
+456
+<61><62><63><00><61><62><63>
+obool: unset
+oint: unset
+oint64: unset
+ostring: unset
+ostringlist: []
+abc
+def
+[]
+false
+0
+0
+123
+456
+<61><62><63><00><61><62><63>
+obool: unset
+oint: unset
+oint64: unset
+ostring: unset
+ostringlist: ["optelem1"]
+abc
+def
+[]
+false
+0
+0
+123
+456
+<61><62><63><00><61><62><63>
+obool: unset
+oint: unset
+oint64: unset
+ostring: unset
+ostringlist: ["optelem1", "optelem2"]
+abc
+def
+[]
+false
+0
+0
+123
+456
+<61><62><63><00><61><62><63>
+obool: unset
+oint: unset
+oint64: unset
+ostring: unset
+ostringlist: ["optelem1", "optelem2", "optelem3"]
 EOF

bootstrap

@@ -34,10 +34,12 @@ libtoolize --copy --install
 gnulib_tool=$GNULIB_SRCDIR/gnulib-tool
 <$gnulib_tool || exit
 
-(cd daemon && mkdir -p tests lib && ../$gnulib_tool --update)
+(cd daemon && mkdir -p tests lib && ../$gnulib_tool --dir=.. --update)
 
 modules='
 accept4
+areadlink
+areadlinkat
 arpa_inet
 byteswap
 c-ctype
@@ -47,6 +49,7 @@ connect
 dup3
 error
 filevercmp
+fstatat
 fsusage
 fts
 full-read
@@ -65,19 +68,22 @@ ignore-value
 lock
 maintainer-makefile
 manywarnings
+memmem
 mkdtemp
+mkstemps
 netdb
 netinet_in
 openat
 perror
+pipe2
 pread
-progname
 read-file
 readlink
 select
 setenv
 sleep
 socket
+stat-time
 strchrnul
 strerror
 strndup
@@ -94,8 +100,12 @@ xstrtoll
 xvasprintf
 '
 
+# If any tests fail, avoid including them by adding them to
+# this list.
+avoid="--avoid=dummy --avoid=getlogin_r-tests"
+
 $gnulib_tool			\
-  --avoid=dummy			\
+  $avoid			\
   --with-tests			\
   --m4-base=m4			\
   --source-base=gnulib/lib	\

bugs-in-changelog.sh

@@ -1,6 +1,6 @@
 #!/bin/bash -
 # bugs-in-changelog.sh
-# Copyright (C) 2009-2012 Red Hat Inc.
+# Copyright (C) 2009-2014 Red Hat Inc.
 #
 # This program is free software; you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
@@ -16,10 +16,10 @@
 # along with this program; if not, write to the Free Software
 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 
-# Used when preparing the RELEASE-NOTES file.  This script looks at
-# the bugs noted in the git changelog since the last stable release
-# (or any release).  To use it, the only parameter should be the git
-# commit range, eg:
+# Used when preparing the guestfs-release-notes(1) man page.  This
+# script looks at the bugs noted in the git changelog since the last
+# stable release (or any release).  To use it, the only parameter
+# should be the git commit range, eg:
 #
 #   ./bugs-in-changelog.sh "1.0.89.."
 
@@ -42,5 +42,10 @@ bugids=$(
 # Filter out any bugs which may still be in NEW or ASSIGNED:
 bugzilla query -b "$bugids" \
     -t MODIFIED,POST,ON_QA,PASSES_QA,VERIFIED,RELEASE_PENDING,CLOSED \
-    --outputformat=' - %{bug_id} %{short_desc}' |
-    sort -n -r
+    --outputformat='%{bug_id} %{short_desc}' |
+    sort -n -r |
+    perl -pe '
+        s{([0-9]+)\s+(.*)}{
+        sprintf ("=item L<https://bugzilla.redhat.com/%s>\n\n%s\n",
+                 $1, $2)
+        }xe'

builder/Makefile.am

@@ -0,0 +1,291 @@
+# libguestfs virt-builder tool
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+include $(top_srcdir)/subdir-rules.mk
+
+AM_YFLAGS = -d
+AM_CFLAGS = \
+	-I$(shell $(OCAMLC) -where) \
+	-I$(top_srcdir)/src \
+	-I$(top_srcdir)/fish \
+	-pthread \
+	$(LIBLZMA_CFLAGS)
+
+EXTRA_DIST = \
+	$(SOURCES) \
+	libguestfs.gpg \
+	virt-builder.pod \
+	virt-index-validate.pod \
+	test-virt-builder.sh \
+	test-virt-builder-list.sh \
+	test-virt-builder-planner.sh
+
+CLEANFILES = *~ *.cmi *.cmo *.cmx *.cmxa *.o virt-builder
+
+# Alphabetical order.
+SOURCES = \
+	builder.ml \
+	cmdline.ml \
+	downloader.mli \
+	downloader.ml \
+	get_kernel.mli \
+	get_kernel.ml \
+	index_parser.mli \
+	index_parser.ml \
+	index-parser-c.c \
+	ini_reader.mli \
+	ini_reader.ml \
+	list_entries.mli \
+	list_entries.ml \
+	paths.ml \
+	pxzcat.ml \
+	pxzcat.mli \
+	pxzcat-c.c \
+	setlocale.ml \
+	setlocale.mli \
+	setlocale-c.c \
+	sigchecker.mli \
+	sigchecker.ml \
+	sources.mli \
+	sources.ml
+
+man_MANS =
+noinst_DATA =
+
+if HAVE_OCAML
+
+# Note this list must be in dependency order.
+deps = \
+	$(top_builddir)/mllib/libdir.cmx \
+	$(top_builddir)/mllib/common_gettext.cmx \
+	$(top_builddir)/mllib/common_utils.cmx \
+	$(top_builddir)/mllib/urandom.cmx \
+	$(top_builddir)/mllib/random_seed.cmx \
+	$(top_builddir)/mllib/hostname.cmx \
+	$(top_builddir)/mllib/timezone.cmx \
+	$(top_builddir)/mllib/firstboot.cmx \
+	$(top_builddir)/mllib/perl_edit.cmx \
+	$(top_builddir)/mllib/crypt-c.o \
+	$(top_builddir)/mllib/crypt.cmx \
+	$(top_builddir)/mllib/fsync-c.o \
+	$(top_builddir)/mllib/fsync.cmx \
+	$(top_builddir)/mllib/password.cmx \
+	$(top_builddir)/mllib/planner.cmx \
+	$(top_builddir)/mllib/config.cmx \
+	$(top_builddir)/fish/guestfish-uri.o \
+	$(top_builddir)/mllib/uri-c.o \
+	$(top_builddir)/mllib/uRI.cmx \
+	$(top_builddir)/mllib/mkdtemp-c.o \
+	$(top_builddir)/mllib/mkdtemp.cmx \
+	index-scan.o \
+	index-struct.o \
+	index-parse.o \
+	index-parser-c.o \
+	pxzcat-c.o \
+	pxzcat.cmx \
+	setlocale-c.o \
+	setlocale.cmx \
+	ini_reader.cmx \
+	paths.cmx \
+	get_kernel.cmx \
+	downloader.cmx \
+	sigchecker.cmx \
+	index_parser.cmx \
+	list_entries.cmx \
+	sources.cmx \
+	cmdline.cmx \
+	builder.cmx
+
+if HAVE_OCAMLOPT
+OBJECTS = $(deps)
+else
+OBJECTS = $(patsubst %.cmx,%.cmo,$(deps))
+endif
+
+bin_SCRIPTS = virt-builder
+
+# -I $(top_builddir)/src/.libs is a hack which forces corresponding -L
+# option to be passed to gcc, so we don't try linking against an
+# installed copy of libguestfs.
+OCAMLPACKAGES = \
+	-package str,unix \
+	-I $(top_builddir)/src/.libs \
+	-I $(top_builddir)/ocaml \
+	-I $(top_builddir)/mllib
+if HAVE_OCAML_PKG_GETTEXT
+OCAMLPACKAGES += -package gettext-stub
+endif
+
+OCAMLCFLAGS = -g -warn-error CDEFLMPSUVYZX $(OCAMLPACKAGES)
+OCAMLOPTFLAGS = $(OCAMLCFLAGS)
+
+OCAMLCLIBS  = \
+	$(LIBLZMA_LIBS) \
+	$(LIBXML2_LIBS) \
+	-L../src/.libs -lutils \
+	-L../gnulib/lib/.libs -lgnu \
+	-pthread -lpthread \
+	-lncurses -lcrypt
+
+if HAVE_OCAMLOPT
+virt-builder: $(OBJECTS)
+	$(OCAMLFIND) ocamlopt $(OCAMLOPTFLAGS) \
+	  mlguestfs.cmxa -linkpkg $^ \
+	  -cclib '$(OCAMLCLIBS)' \
+	  $(OCAML_GCOV_LDFLAGS) \
+	  -o $@
+else
+virt-builder: $(OBJECTS)
+	$(OCAMLFIND) ocamlc $(OCAMLCFLAGS) \
+	  mlguestfs.cma -linkpkg $^ \
+	  -cclib '$(OCAMLCLIBS)' \
+	  -custom \
+	  $(OCAML_GCOV_LDFLAGS) \
+	  -o $@
+endif
+
+.mli.cmi:
+	$(OCAMLFIND) ocamlc $(OCAMLCFLAGS) -c $< -o $@
+.ml.cmo:
+	$(OCAMLFIND) ocamlc $(OCAMLCFLAGS) -c $< -o $@
+.ml.cmx:
+	$(OCAMLFIND) ocamlopt $(OCAMLOPTFLAGS) -c $< -o $@
+
+# Manual pages and HTML files for the website.
+
+man_MANS += virt-builder.1
+noinst_DATA += $(top_builddir)/html/virt-builder.1.html
+
+virt-builder.1 $(top_builddir)/html/virt-builder.1.html: stamp-virt-builder.pod
+
+stamp-virt-builder.pod: virt-builder.pod
+	$(PODWRAPPER) \
+	  --man virt-builder.1 \
+	  --html $(top_builddir)/html/virt-builder.1.html \
+	  --license GPLv2+ \
+	  $<
+	touch $@
+
+CLEANFILES += stamp-virt-builder.pod
+
+# Tests.
+
+TESTS_ENVIRONMENT = $(top_builddir)/run --test
+
+disk_images := \
+	$(shell for f in debian fedora ubuntu windows; do if [ -s "../tests/guests/$$f.img" ]; then echo $$f.xz; fi; done) \
+	$(shell if [ -s "../tests/guests/fedora.img" ]; then echo fedora.qcow2 fedora.qcow2.xz; fi)
+
+CLEANFILES += *.qcow2 *.xz
+
+check_DATA = $(disk_images)
+
+fedora.qcow2: ../tests/guests/fedora.img
+	rm -f $@ $@-t
+	qemu-img convert -f raw -O qcow2 $< $@-t
+	mv $@-t $@
+
+fedora.qcow2.xz: fedora.qcow2
+	rm -f $@ $@-t
+	xz --best --block-size=16777216 -c $< > $@-t
+	mv $@-t $@
+
+%.xz: ../tests/guests/%.img
+	rm -f $@ $@-t
+	xz --best --block-size=16777216 -c $< > $@-t
+	mv $@-t $@
+
+TESTS = test-virt-builder-list.sh
+
+if ENABLE_APPLIANCE
+TESTS += test-virt-builder.sh
+endif ENABLE_APPLIANCE
+
+check-valgrind:
+	$(MAKE) VG="$(top_builddir)/run @VG@" check
+
+check-slow:
+	$(MAKE) TESTS="test-virt-builder-planner.sh" check
+
+# Dependencies.
+depend: .depend
+
+.depend: $(wildcard $(abs_srcdir)/*.mli) $(wildcard $(abs_srcdir)/*.ml)
+	rm -f $@ $@-t
+	$(OCAMLFIND) ocamldep -I ../ocaml -I $(abs_srcdir) -I $(abs_top_builddir)/mllib $^ | \
+	  $(SED) 's/ *$$//' | \
+	  $(SED) -e :a -e '/ *\\$$/N; s/ *\\\n */ /; ta' | \
+	  $(SED) -e 's,$(abs_srcdir)/,$(builddir)/,g' | \
+	  sort > $@-t
+	mv $@-t $@
+
+-include .depend
+
+endif
+
+DISTCLEANFILES = .depend
+
+.PHONY: depend docs
+
+# virt-builder's default repository
+
+repoconfdir = $(sysconfdir)/xdg/virt-builder/repos.d
+repoconf_DATA = libguestfs.conf libguestfs.gpg
+
+install-exec-hook:
+	$(LN_S) xdg/virt-builder $(DESTDIR)$(sysconfdir)/virt-builder
+
+# Build a small C index validator program.
+bin_PROGRAMS = virt-index-validate
+
+virt_index_validate_SOURCES = \
+	index-parse.y \
+	index-scan.l \
+	index-struct.h \
+	index-struct.c \
+	index-validate.c
+
+virt_index_validate_CPPFLAGS = \
+	-DLOCALEBASEDIR=\""$(datadir)/locale"\"
+
+man_MANS += virt-index-validate.1
+noinst_DATA += $(top_builddir)/html/virt-index-validate.1.html
+
+virt-index-validate.1 $(top_builddir)/html/virt-index-validate.1.html: stamp-virt-index-validate.pod
+
+stamp-virt-index-validate.pod: virt-index-validate.pod
+	$(PODWRAPPER) \
+	  --man virt-index-validate.1 \
+	  --html $(top_builddir)/html/virt-index-validate.1.html \
+	  --license GPLv2+ \
+	  $<
+	touch $@
+
+CLEANFILES += \
+	index-parse.c \
+	index-parse.h \
+	index-scan.c \
+	stamp-virt-index-validate.pod
+
+if HAVE_OCAML
+# Automake-generated makefile has a rule ".l.c:" but lacks a rule ".l.h:".
+# Also it doesn't generate dependencies for the C files that include
+# index-parse.h.
+index-parser-c.c index-scan.c index-validate.c: index-parse.h
+index-parse.h: index-parse.y
+	$(MAKE) index-parse.c
+endif

builder/cmdline.ml

@@ -0,0 +1,440 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+(* Command line argument parsing. *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+module G = Guestfs
+
+open Password
+
+open Unix
+open Printf
+
+let prog = Filename.basename Sys.executable_name
+
+let parse_cmdline () =
+  let display_version () =
+    printf "virt-builder %s\n" Config.package_version;
+    exit 0
+  in
+
+  let mode = ref `Install in
+  let list_mode () = mode := `List in
+  let notes_mode () = mode := `Notes in
+  let get_kernel_mode () = mode := `Get_kernel in
+  let cache_all_mode () = mode := `Cache_all in
+  let print_cache_mode () = mode := `Print_cache in
+  let delete_cache_mode () = mode := `Delete_cache in
+
+  let attach = ref [] in
+  let attach_format = ref None in
+  let set_attach_format = function
+    | "auto" -> attach_format := None
+    | s -> attach_format := Some s
+  in
+  let attach_disk s = attach := (!attach_format, s) :: !attach in
+
+  let cache = ref Paths.xdg_cache_home in
+  let set_cache arg = cache := Some arg in
+  let no_cache () = cache := None in
+
+  let check_signature = ref true in
+  let curl = ref "curl" in
+  let debug = ref false in
+
+  let delete = ref [] in
+  let add_delete s = delete := s :: !delete in
+
+  let delete_on_failure = ref true in
+
+  let edit = ref [] in
+  let add_edit arg =
+    let i =
+      try String.index arg ':'
+      with Not_found ->
+        eprintf (f_"%s: invalid --edit format, see the man page.\n") prog;
+        exit 1 in
+    let len = String.length arg in
+    let file = String.sub arg 0 i in
+    let expr = String.sub arg (i+1) (len-(i+1)) in
+    edit := (file, expr) :: !edit
+  in
+
+  let fingerprints = ref [] in
+  let add_fingerprint arg = fingerprints := arg :: !fingerprints in
+
+  let firstboot = ref [] in
+  let add_firstboot s =
+    if not (Sys.file_exists s) then (
+      if not (String.contains s ' ') then
+        eprintf (f_"%s: %s: %s: file not found\n") prog "--firstboot" s
+      else
+        eprintf (f_"%s: %s: %s: file not found [did you mean %s?]\n") prog "--firstboot" s "--firstboot-command";
+      exit 1
+    );
+    firstboot := `Script s :: !firstboot
+  in
+  let add_firstboot_cmd s = firstboot := `Command s :: !firstboot in
+  let add_firstboot_install pkgs =
+    let pkgs = string_nsplit "," pkgs in
+    firstboot := `Packages pkgs :: !firstboot
+  in
+
+  let format = ref "" in
+  let gpg = ref "gpg" in
+
+  let hostname = ref None in
+  let set_hostname s = hostname := Some s in
+
+  let install = ref [] in
+  let add_install pkgs =
+    let pkgs = string_nsplit "," pkgs in
+    install := pkgs @ !install
+  in
+
+  let links = ref [] in
+  let add_link arg =
+    let target, lns =
+      match string_nsplit ":" arg with
+      | [] | [_] ->
+        eprintf (f_"%s: invalid --link format, see the man page.\n") prog;
+        exit 1
+      | target :: lns -> target, lns in
+    links := (target, lns) :: !links
+  in
+
+  let list_format = ref `Short in
+  let list_set_long () = list_format := `Long in
+  let list_set_format arg =
+    list_format := match arg with
+    | "short" -> `Short
+    | "long" -> `Long
+    | "json" -> `Json
+    | fmt ->
+      eprintf (f_"%s: invalid --list-format type '%s', see the man page.\n") prog fmt;
+      exit 1 in
+
+  let memsize = ref None in
+  let set_memsize arg = memsize := Some arg in
+
+  let mkdirs = ref [] in
+  let add_mkdir arg = mkdirs := arg :: !mkdirs in
+
+  let network = ref true in
+  let output = ref "" in
+
+  let password_crypto : password_crypto option ref = ref None in
+  let set_password_crypto arg =
+    password_crypto := Some (password_crypto_of_string ~prog arg)
+  in
+
+  let quiet = ref false in
+
+  let root_password = ref None in
+  let set_root_password arg =
+    let pw = parse_selector ~prog arg in
+    root_password := Some pw
+  in
+
+  let run = ref [] in
+  let add_run s =
+    if not (Sys.file_exists s) then (
+      if not (String.contains s ' ') then
+        eprintf (f_"%s: %s: %s: file not found\n") prog "--run" s
+      else
+        eprintf (f_"%s: %s: %s: file not found [did you mean %s?]\n") prog "--run" s "--run-command";
+      exit 1
+    );
+    run := `Script s :: !run
+  in
+  let add_run_cmd s = run := `Command s :: !run in
+
+  let scrub = ref [] in
+  let add_scrub s = scrub := s :: !scrub in
+
+  let scrub_logfile = ref false in
+  let selinux_relabel = ref false in
+
+  let size = ref None in
+  let set_size arg = size := Some (parse_size ~prog arg) in
+
+  let smp = ref None in
+  let set_smp arg = smp := Some arg in
+
+  let sources = ref [] in
+  let add_source arg = sources := arg :: !sources in
+
+  let sync = ref true in
+
+  let timezone = ref None in
+  let set_timezone s = timezone := Some s in
+
+  let update = ref false in
+
+  let upload = ref [] in
+  let add_upload arg =
+    let i =
+      try String.index arg ':'
+      with Not_found ->
+        eprintf (f_"%s: invalid --upload format, see the man page.\n") prog;
+        exit 1 in
+    let len = String.length arg in
+    let file = String.sub arg 0 i in
+    if not (Sys.file_exists file) then (
+      eprintf (f_"%s: --upload: %s: file not found\n") prog file;
+      exit 1
+    );
+    let dest = String.sub arg (i+1) (len-(i+1)) in
+    upload := (file, dest) :: !upload
+  in
+
+  let writes = ref [] in
+  let add_write arg =
+    let i =
+      try String.index arg ':'
+      with Not_found ->
+        eprintf (f_"%s: invalid --write format, see the man page.\n") prog;
+        exit 1 in
+    let len = String.length arg in
+    let file = String.sub arg 0 i in
+    let content = String.sub arg (i+1) (len-(i+1)) in
+    writes := (file, content) :: !writes
+  in
+
+  let ditto = " -\"-" in
+  let argspec = Arg.align [
+    "--attach",  Arg.String attach_disk,    "iso" ^ " " ^ s_"Attach data disk/ISO during install";
+    "--attach-format",  Arg.String set_attach_format,
+                                            "format" ^ " " ^ s_"Set attach disk format";
+    "--cache",   Arg.String set_cache,      "dir" ^ " " ^ s_"Set template cache dir";
+    "--no-cache", Arg.Unit no_cache,        " " ^ s_"Disable template cache";
+    "--cache-all-templates", Arg.Unit cache_all_mode,
+                                            " " ^ s_"Download all templates to the cache";
+    "--check-signature", Arg.Set check_signature,
+                                            " " ^ s_"Check digital signatures";
+    "--check-signatures", Arg.Set check_signature, ditto;
+    "--no-check-signature", Arg.Clear check_signature,
+                                            " " ^ s_"Disable digital signatures";
+    "--no-check-signatures", Arg.Clear check_signature, ditto;
+    "--curl",    Arg.Set_string curl,       "curl" ^ " " ^ s_"Set curl binary/command";
+    "--delete",  Arg.String add_delete,     "name" ^ " " ^ s_"Delete a file or dir";
+    "--delete-cache", Arg.Unit delete_cache_mode,
+                                            " " ^ s_"Delete the template cache";
+    "--no-delete-on-failure", Arg.Clear delete_on_failure,
+                                            " " ^ s_"Don't delete output file on failure";
+    "--edit",    Arg.String add_edit,       "file:expr" ^ " " ^ s_"Edit file with Perl expr";
+    "--fingerprint", Arg.String add_fingerprint,
+                                            "AAAA.." ^ " " ^ s_"Fingerprint of valid signing key";
+    "--firstboot", Arg.String add_firstboot, "script" ^ " " ^ s_"Run script at first guest boot";
+    "--firstboot-command", Arg.String add_firstboot_cmd, "cmd+args" ^ " " ^ s_"Run command at first guest boot";
+    "--firstboot-install", Arg.String add_firstboot_install,
+                                            "pkg,pkg" ^ " " ^ s_"Add package(s) to install at firstboot";
+    "--format",  Arg.Set_string format,     "raw|qcow2" ^ " " ^ s_"Output format (default: raw)";
+    "--get-kernel", Arg.Unit get_kernel_mode,
+                                            "image" ^ " " ^ s_"Get kernel from image";
+    "--gpg",    Arg.Set_string gpg,         "gpg" ^ " " ^ s_"Set GPG binary/command";
+    "--hostname", Arg.String set_hostname,  "hostname" ^ " " ^ s_"Set the hostname";
+    "--install", Arg.String add_install,    "pkg,pkg" ^ " " ^ s_"Add package(s) to install";
+    "--link",    Arg.String add_link,       "target:link.." ^ " " ^ s_"Create symbolic links";
+    "-l",        Arg.Unit list_mode,        " " ^ s_"List available templates";
+    "--list",    Arg.Unit list_mode,        ditto;
+    "--long",    Arg.Unit list_set_long,    " " ^ s_"Shortcut for --list-format short";
+    "--list-format", Arg.String list_set_format,
+                                            "short|long|json" ^ " " ^ s_"Set the format for --list (default: short)";
+    "--no-logfile", Arg.Set scrub_logfile,  " " ^ s_"Scrub build log file";
+    "--long-options", Arg.Unit display_long_options, " " ^ s_"List long options";
+    "-m",        Arg.Int set_memsize,       "mb" ^ " " ^ s_"Set memory size";
+    "--memsize", Arg.Int set_memsize,       "mb" ^ ditto;
+    "--mkdir",   Arg.String add_mkdir,      "dir" ^ " " ^ s_"Create directory";
+    "--network", Arg.Set network,           " " ^ s_"Enable appliance network (default)";
+    "--no-network", Arg.Clear network,      " " ^ s_"Disable appliance network";
+    "--notes",   Arg.Unit notes_mode,       " " ^ s_"Display installation notes";
+    "-o",        Arg.Set_string output,     "file" ^ " " ^ s_"Set output filename";
+    "--output",  Arg.Set_string output,     "file" ^ ditto;
+    "--password-crypto", Arg.String set_password_crypto,
+                                            "md5|sha256|sha512" ^ " " ^ s_"Set password crypto";
+    "--print-cache", Arg.Unit print_cache_mode,
+                                            " " ^ s_"Print info about template cache";
+    "--quiet",   Arg.Set quiet,             " " ^ s_"No progress messages";
+    "--root-password", Arg.String set_root_password,
+                                            "..." ^ " " ^ s_"Set root password";
+    "--run",     Arg.String add_run,        "script" ^ " " ^ s_"Run script in disk image";
+    "--run-command", Arg.String add_run_cmd, "cmd+args" ^ " " ^ s_"Run command in disk image";
+    "--scrub",   Arg.String add_scrub,      "name" ^ " " ^ s_"Scrub a file";
+    "--selinux-relabel", Arg.Set selinux_relabel,
+                                            " " ^ s_"Relabel files with correct SELinux labels";
+    "--size",    Arg.String set_size,       "size" ^ " " ^ s_"Set output disk size";
+    "--smp",     Arg.Int set_smp,           "vcpus" ^ " " ^ s_"Set number of vCPUs";
+    "--source",  Arg.String add_source,     "URL" ^ " " ^ s_"Set source URL";
+    "--no-sync", Arg.Clear sync,            " " ^ s_"Do not fsync output file on exit";
+    "--timezone",Arg.String set_timezone,   "timezone" ^ " " ^ s_"Set the default timezone";
+    "--update",  Arg.Set update,            " " ^ s_"Update core packages";
+    "--upload",  Arg.String add_upload,     "file:dest" ^ " " ^ s_"Upload file to dest";
+    "-v",        Arg.Set debug,             " " ^ s_"Enable debugging messages";
+    "--verbose", Arg.Set debug,             ditto;
+    "-V",        Arg.Unit display_version,  " " ^ s_"Display version and exit";
+    "--version", Arg.Unit display_version,  ditto;
+    "--write",   Arg.String add_write,      "file:content" ^ " " ^ s_"Write file";
+  ] in
+  long_options := argspec;
+
+  let args = ref [] in
+  let anon_fun s = args := s :: !args in
+  let usage_msg =
+    sprintf (f_"\
+%s: build virtual machine images quickly
+
+ virt-builder OS-VERSION
+ virt-builder -l
+ virt-builder --notes OS-VERSION
+ virt-builder --print-cache
+ virt-builder --cache-all-templates
+ virt-builder --delete-cache
+ virt-builder --get-kernel IMAGE
+
+A short summary of the options is given below.  For detailed help please
+read the man page virt-builder(1).
+")
+      prog in
+  Arg.parse argspec anon_fun usage_msg;
+
+  (* Dereference options. *)
+  let args = List.rev !args in
+  let mode = !mode in
+  let attach = List.rev !attach in
+  let cache = !cache in
+  let check_signature = !check_signature in
+  let curl = !curl in
+  let debug = !debug in
+  let delete = List.rev !delete in
+  let delete_on_failure = !delete_on_failure in
+  let edit = List.rev !edit in
+  let fingerprints = List.rev !fingerprints in
+  let firstboot = List.rev !firstboot in
+  let run = List.rev !run in
+  let format = match !format with "" -> None | s -> Some s in
+  let gpg = !gpg in
+  let hostname = !hostname in
+  let install = List.rev !install in
+  let list_format = !list_format in
+  let links = List.rev !links in
+  let memsize = !memsize in
+  let mkdirs = List.rev !mkdirs in
+  let network = !network in
+  let output = match !output with "" -> None | s -> Some s in
+  let password_crypto = !password_crypto in
+  let quiet = !quiet in
+  let root_password = !root_password in
+  let scrub = List.rev !scrub in
+  let scrub_logfile = !scrub_logfile in
+  let selinux_relabel = !selinux_relabel in
+  let size = !size in
+  let smp = !smp in
+  let sources = List.rev !sources in
+  let sync = !sync in
+  let timezone = !timezone in
+  let update = !update in
+  let upload = List.rev !upload in
+  let writes = List.rev !writes in
+
+  (* Check options. *)
+  let arg =
+    match mode with
+    | `Install ->
+      (match args with
+      | [arg] -> arg
+      | [] ->
+        eprintf (f_"%s: virt-builder os-version\nMissing 'os-version'. Use '--list' to list available template names.\n") prog;
+        exit 1
+      | _ ->
+        eprintf (f_"%s: virt-builder: too many parameters, expecting 'os-version'\n") prog;
+        exit 1
+      )
+    | `List ->
+      (match args with
+      | [] -> ""
+      | _ ->
+        eprintf (f_"%s: virt-builder --list does not need any extra arguments.\n") prog;
+        exit 1
+      )
+    | `Notes ->
+      (match args with
+      | [arg] -> arg
+      | [] ->
+        eprintf (f_"%s: virt-builder --notes os-version\nMissing 'os-version'. Use '--list' to list available template names.\n") prog;
+        exit 1
+      | _ ->
+        eprintf (f_"%s: virt-builder: too many parameters, expecting 'os-version'\n") prog;
+        exit 1
+      )
+    | `Cache_all
+    | `Print_cache
+    | `Delete_cache ->
+      (match args with
+      | [] -> ""
+      | _ ->
+        eprintf (f_"%s: virt-builder --cache-all-templates/--print-cache/--delete-cache does not need any extra arguments.\n") prog;
+        exit 1
+      )
+    | `Get_kernel ->
+      (match args with
+      | [arg] -> arg
+      | [] ->
+        eprintf (f_"%s: virt-builder --get-kernel image\nMissing 'image' (disk image file) argument.\n") prog;
+        exit 1
+      | _ ->
+        eprintf (f_"%s: virt-builder --get-kernel: too many parameters\n") prog;
+        exit 1
+      ) in
+
+  (* Check source(s) and fingerprint(s). *)
+  let sources =
+    let rec repeat x = function
+      | 0 -> [] | 1 -> [x]
+      | n -> x :: repeat x (n-1)
+    in
+
+    let nr_sources = List.length sources in
+    let fingerprints =
+      match fingerprints with
+      | [fingerprint] ->
+        (* You're allowed to have multiple sources and one fingerprint: it
+         * means that the same fingerprint is used for all sources.
+         *)
+        repeat fingerprint nr_sources
+      | xs -> xs in
+
+    if List.length fingerprints <> nr_sources then (
+      eprintf (f_"%s: source and fingerprint lists are not the same length\n")
+        prog;
+      exit 1
+    );
+
+    (* Combine the sources and fingerprints into a single list of pairs. *)
+    List.combine sources fingerprints in
+
+  mode, arg,
+  attach, cache, check_signature, curl, debug, delete, delete_on_failure,
+  edit, firstboot, run, format, gpg, hostname, install, list_format, links,
+  memsize, mkdirs,
+  network, output, password_crypto, quiet, root_password, scrub,
+  scrub_logfile, selinux_relabel, size, smp, sources, sync, timezone,
+  update, upload, writes

builder/downloader.ml

@@ -0,0 +1,139 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+open Unix
+open Printf
+
+let quote = Filename.quote
+let (//) = Filename.concat
+
+let cache_of_name cachedir name revision =
+  cachedir // sprintf "%s.%d" name revision
+
+type uri = string
+type filename = string
+
+type t = {
+  debug : bool;
+  curl : string;
+  cache : string option;                (* cache directory for templates *)
+}
+
+let create ~debug ~curl ~cache = {
+  debug = debug;
+  curl = curl;
+  cache = cache;
+}
+
+let rec download ~prog t ?template ?progress_bar uri =
+  match template with
+  | None ->                       (* no cache, simple download *)
+    (* Create a temporary name. *)
+    let tmpfile = Filename.temp_file "vbcache" ".txt" in
+    download_to ~prog t ?progress_bar uri tmpfile;
+    (tmpfile, true)
+
+  | Some (name, revision) ->
+    match t.cache with
+    | None ->
+      (* Not using the cache at all? *)
+      download t ~prog ?progress_bar uri
+
+    | Some cachedir ->
+      let filename = cache_of_name cachedir name revision in
+
+      (* Is the requested template name + revision in the cache already?
+       * If not, download it.
+       *)
+      if not (Sys.file_exists filename) then
+        download_to ~prog t ?progress_bar uri filename;
+
+      (filename, false)
+
+and download_to ~prog t ?(progress_bar = false) uri filename =
+  let parseduri =
+    try URI.parse_uri uri
+    with Invalid_argument "URI.parse_uri" ->
+      eprintf (f_"Error parsing URI '%s'. Look for error messages printed above.\n") uri;
+      exit 1 in
+
+  (* Note because there may be parallel virt-builder instances running
+   * and also to avoid partial downloads in the cachedir if the network
+   * fails, we download to a random name in the cache and then
+   * atomically rename it to the final filename.
+   *)
+  let filename_new = filename ^ "." ^ string_random8 () in
+  unlink_on_exit filename_new;
+
+  (match parseduri.URI.protocol with
+  | "file" ->
+    let path = parseduri.URI.path in
+    let cmd = sprintf "cp%s %s %s"
+      (if t.debug then " -v" else "")
+      (quote path) (quote filename_new) in
+    let r = Sys.command cmd in
+    if r <> 0 then (
+      eprintf (f_"%s: cp (download) command failed copying '%s'\n")
+        prog path;
+      exit 1
+    )
+  | _ -> (* Any other protocol. *)
+    (* Get the status code first to ensure the file exists. *)
+    let cmd = sprintf "%s%s -g -o /dev/null -I -w '%%{http_code}' %s"
+      t.curl
+      (if t.debug then "" else " -s -S")
+      (quote uri) in
+    if t.debug then eprintf "%s\n%!" cmd;
+    let lines = external_command ~prog cmd in
+    if List.length lines < 1 then (
+      eprintf (f_"%s: unexpected output from curl command, enable debug and look at previous messages\n")
+        prog;
+      exit 1
+    );
+    let status_code = List.hd lines in
+    let bad_status_code = function
+      | "" -> true
+      | s when s.[0] = '4' -> true (* 4xx *)
+      | s when s.[0] = '5' -> true (* 5xx *)
+      | _ -> false
+    in
+    if bad_status_code status_code then (
+      eprintf (f_"%s: failed to download %s: HTTP status code %s\n")
+        prog uri status_code;
+      exit 1
+    );
+
+    (* Now download the file. *)
+    let cmd = sprintf "%s%s -g -o %s %s"
+      t.curl
+      (if t.debug then "" else if progress_bar then " -#" else " -s -S")
+      (quote filename_new) (quote uri) in
+    if t.debug then eprintf "%s\n%!" cmd;
+    let r = Sys.command cmd in
+    if r <> 0 then (
+      eprintf (f_"%s: curl (download) command failed downloading '%s'\n")
+        prog uri;
+      exit 1
+    )
+  );
+
+  (* Rename the file if the download was successful. *)
+  rename filename_new filename

builder/downloader.mli

@@ -0,0 +1,47 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+(** This module is a wrapper around curl, plus local caching. *)
+
+val cache_of_name : string -> string -> int -> string
+(** [cache_of_name cachedir name revision] returns the filename
+    of the cached file.  (Note: It doesn't check if the filename
+    exists, this is just a simple string transformation). *)
+
+type uri = string
+type filename = string
+
+type t
+(** The abstract data type. *)
+
+val create : debug:bool -> curl:string -> cache:string option -> t
+(** Create the abstract type. *)
+
+val download : prog:string -> t -> ?template:(string*int) -> ?progress_bar:bool -> uri -> (filename * bool)
+(** Download the URI, returning the downloaded filename and a
+    temporary file flag.  The temporary file flag is [true] iff
+    the downloaded file is temporary and should be deleted by the
+    caller (otherwise it's in the cache and you shouldn't delete it).
+
+    For templates, you must supply [~template:(name, revision)].  This
+    causes the cache to be used (if possible).  Name and revision are
+    used for cache control (see the man page for details).
+
+    If [~progress_bar:true] then display a progress bar if the file
+    doesn't come from the cache.  In debug mode, progress messages
+    are always displayed. *)

builder/get_kernel.ml

@@ -0,0 +1,121 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+module G = Guestfs
+
+open Printf
+
+let rex_numbers = Str.regexp "^\\([0-9]+\\)\\(.*\\)$"
+let rex_letters = Str.regexp_case_fold "^\\([a-z]+\\)\\(.*\\)$"
+
+(* Originally:
+ * http://rwmj.wordpress.com/2013/09/13/get-kernel-and-initramfs-from-a-disk-image/
+ *)
+let rec get_kernel ~debug ?format ?output disk =
+  let g = new G.guestfs () in
+  if debug then g#set_trace true;
+  g#add_drive_opts ?format ~readonly:true disk;
+  g#launch ();
+
+  let roots = g#inspect_os () in
+  if Array.length roots = 0 then (
+    eprintf (f_"virt-builder: get-kernel: no operating system found\n");
+    exit 1
+  );
+  if Array.length roots > 1 then (
+    eprintf (f_"virt-builder: get-kernel: daual/mult-boot images are not supported by this tool\n");
+    exit 1
+  );
+  let root = roots.(0) in
+
+  (* Mount up the disks. *)
+  let mps = g#inspect_get_mountpoints root in
+  let cmp (a,_) (b,_) = compare (String.length a) (String.length b) in
+  let mps = List.sort cmp mps in
+  List.iter (
+    fun (mp, dev) ->
+      try g#mount_ro dev mp
+      with Guestfs.Error msg -> eprintf "%s (ignored)\n" msg
+  ) mps;
+
+  (* Get all kernels and initramfses. *)
+  let glob w = Array.to_list (g#glob_expand w) in
+  let kernels = glob "/boot/vmlinuz-*" in
+  let initrds = glob "/boot/initramfs-*" in
+
+  (* Old RHEL: *)
+  let initrds = if initrds <> [] then initrds else glob "/boot/initrd-*" in
+
+  (* Debian/Ubuntu: *)
+  let initrds = if initrds <> [] then initrds else glob "/boot/initrd.img-*" in
+
+  (* Sort by version to get the latest version as first element. *)
+  let kernels = List.rev (List.sort compare_version kernels) in
+  let initrds = List.rev (List.sort compare_version initrds) in
+
+  if kernels = [] then (
+    eprintf (f_"virt-builder: no kernel found\n");
+    exit 1
+  );
+
+  (* Download the latest. *)
+  let outputdir =
+    match output with
+    | None -> Filename.current_dir_name
+    | Some dir -> dir in
+  let kernel_in = List.hd kernels in
+  let kernel_out = outputdir // Filename.basename kernel_in in
+  printf "download: %s -> %s\n%!" kernel_in kernel_out;
+  g#download kernel_in kernel_out;
+
+  if initrds <> [] then (
+    let initrd_in = List.hd initrds in
+    let initrd_out = outputdir // Filename.basename initrd_in in
+    printf "download: %s -> %s\n%!" initrd_in initrd_out;
+    g#download initrd_in initrd_out
+  );
+
+  (* Shutdown. *)
+  g#shutdown ();
+  g#close ()
+
+and compare_version v1 v2 =
+  compare (split_version v1) (split_version v2)
+
+and split_version = function
+  | "" -> []
+  | str ->
+    let first, rest =
+      if Str.string_match rex_numbers str 0 then (
+        let n = Str.matched_group 1 str in
+        let rest = Str.matched_group 2 str in
+        let n =
+          try `Number (int_of_string n)
+          with Failure "int_of_string" -> `String n in
+        n, rest
+      )
+      else if Str.string_match rex_letters str 0 then
+        `String (Str.matched_group 1 str), Str.matched_group 2 str
+      else (
+        let len = String.length str in
+        `Char str.[0], String.sub str 1 (len-1)
+      ) in
+    first :: split_version rest

builder/get_kernel.mli

@@ -1,5 +1,5 @@
-(* virt-sparsify
- * Copyright (C) 2010-2012 Red Hat Inc.
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
  *
  * This program is free software; you can redistribute it and/or modify
  * it under the terms of the GNU General Public License as published by
@@ -16,4 +16,4 @@
  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
  *)
 
-val set_up_progress_bar : ?machine_readable:bool -> Guestfs.guestfs -> unit
+val get_kernel : debug:bool -> ?format:string -> ?output:string -> string -> unit

builder/index-parse.y

@@ -0,0 +1,129 @@
+/* libguestfs virt-builder tool -*- fundamental -*-
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+%{
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+
+#include "index-struct.h"
+
+extern void yyerror (const char *);
+extern int yylex (void);
+
+/* Join two strings with \n */
+static char *
+concat_newline (const char *str1, const char *str2)
+{
+  size_t len1, len2, len;
+  char *ret;
+
+  if (str2 == NULL)
+    return strdup (str1);
+
+  len1 = strlen (str1);
+  len2 = strlen (str2);
+  len = len1 + 1 /* \n */ + len2 + 1 /* \0 */;
+  ret = malloc (len);
+  memcpy (ret, str1, len1);
+  ret[len1] = '\n';
+  memcpy (ret + len1 + 1, str2, len2);
+  ret[len-1] = '\0';
+
+  return ret;
+}
+
+%}
+
+%locations
+
+%union {
+  struct section *section;
+  struct field *field;
+  char *str;
+}
+
+%token <str>   SECTION_HEADER
+%token <field> FIELD
+%token <str>   VALUE_CONT
+%token         EMPTY_LINE
+%token         PGP_PROLOGUE
+%token         PGP_EPILOGUE
+
+%type <section> sections section
+%type <field>   fields field
+%type <str>     continuations
+
+%%
+
+index:
+      sections
+        { parsed_index = $1; }
+    | PGP_PROLOGUE sections PGP_EPILOGUE
+        { parsed_index = $2; }
+
+sections:
+      section emptylines
+        { $$ = $1; }
+    | section EMPTY_LINE emptylines sections
+        { $$ = $1; $$->next = $4; }
+
+section:
+      SECTION_HEADER fields
+        { $$ = malloc (sizeof (struct section));
+          $$->next = NULL;
+          $$->name = $1;
+          $$->fields = $2; }
+
+fields:
+      /* empty */
+        { $$ = NULL; }
+    | field fields
+        { $$ = $1; $$->next = $2; }
+
+field: FIELD continuations
+        { $$ = $1;
+          char *old_value = $$->value;
+          $$->value = concat_newline (old_value, $2);
+          free (old_value);
+          free ($2); }
+
+continuations:
+      /* empty */
+        { $$ = NULL; }
+    | VALUE_CONT continuations
+        { $$ = concat_newline ($1, $2);
+          free ($1);
+          free ($2); }
+
+emptylines:
+      /* empty */
+        {}
+    | EMPTY_LINE emptylines
+        {}
+
+%%
+
+void
+yyerror (const char *msg)
+{
+  fprintf (stderr, "syntax error at line %d: %s\n",
+           yylloc.first_line, msg);
+}

builder/index-parser-c.c

@@ -0,0 +1,112 @@
+/* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+/* This file handles the interface between the C/lex/yacc index file
+ * parser, and the OCaml world.  See index_parser.ml for the OCaml
+ * type definition.
+ */
+
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <errno.h>
+#include <unistd.h>
+
+#include <caml/alloc.h>
+#include <caml/fail.h>
+#include <caml/memory.h>
+#include <caml/mlvalues.h>
+
+#ifdef HAVE_CAML_UNIXSUPPORT_H
+#include <caml/unixsupport.h>
+#else
+#define Nothing ((value) 0)
+extern void unix_error (int errcode, char * cmdname, value arg) Noreturn;
+#endif
+
+#include "index-struct.h"
+#include "index-parse.h"
+
+extern FILE *yyin;
+
+value
+virt_builder_parse_index (value filenamev)
+{
+  CAMLparam1 (filenamev);
+  CAMLlocal5 (rv, v, sv, sv2, fv);
+  struct section *sections;
+  size_t i, nr_sections;
+
+  yyin = fopen (String_val (filenamev), "r");
+  if (yyin == NULL)
+    unix_error (errno, (char *) "fopen", filenamev);
+
+  if (yyparse () != 0) {
+    fclose (yyin);
+    caml_invalid_argument ("parse error");
+  }
+
+  if (fclose (yyin) == EOF)
+    unix_error (errno, (char *) "fclose", filenamev);
+
+  /* Convert the parsed data to OCaml structures. */
+  nr_sections = 0;
+  for (sections = parsed_index; sections != NULL; sections = sections->next)
+    nr_sections++;
+  rv = caml_alloc (nr_sections, 0);
+
+  for (i = 0, sections = parsed_index; sections != NULL;
+       i++, sections = sections->next) {
+    struct field *fields;
+    size_t j, nr_fields;
+
+    nr_fields = 0;
+    for (fields = sections->fields; fields != NULL; fields = fields->next)
+      nr_fields++;
+    fv = caml_alloc (nr_fields, 0);
+
+    for (j = 0, fields = sections->fields; fields != NULL;
+         j++, fields = fields->next) {
+      v = caml_alloc_tuple (3);
+      sv = caml_copy_string (fields->key);
+      Store_field (v, 0, sv);   /* (key, Some subkey, value) */
+      if (fields->subkey) {
+        sv2 = caml_copy_string (fields->subkey);
+        sv = caml_alloc (1, 0);
+        Store_field (sv, 0, sv2);
+      } else
+        sv = Val_int (0);
+      Store_field (v, 1, sv);
+      sv = caml_copy_string (fields->value);
+      Store_field (v, 2, sv);
+      Store_field (fv, j, v);   /* assign to return array of fields */
+    }
+
+    v = caml_alloc_tuple (2);
+    sv = caml_copy_string (sections->name);
+    Store_field (v, 0, sv);     /* (name, fields) */
+    Store_field (v, 1, fv);
+    Store_field (rv, i, v);     /* assign to return array of sections */
+  }
+
+  /* Free parsed global data. */
+  free_index ();
+
+  CAMLreturn (rv);
+}

builder/index-scan.l

@@ -0,0 +1,111 @@
+/* libguestfs virt-builder tool -*- fundamental -*-
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+%{
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+
+#include "index-parse.h"
+#include "index-struct.h"
+
+#define YY_USER_ACTION yylloc.first_line = yylloc.last_line = yylineno;
+
+extern void yyerror (const char *);
+
+%}
+
+%option nounput
+%option noyywrap
+%option yylineno
+
+%%
+
+ /* Apart from the PGP prologue/epilogue which is a hack, the
+  * scanning strategy is to deal with the file strictly line by
+  * line, and pass those lines up to the parser which deals with
+  * whether they appear in the right order to be meaningful.
+  * Note that flex does longest-match.
+  */
+
+  /* Ignore comments - '#' MUST appear at the start of a line. */
+^"#".*\n                { seen_comments++; }
+
+  /* An empty line is significant. */
+^\n                                     { return EMPTY_LINE; }
+
+  /* [...] marks beginning of a section. */
+^"["[-A-Za-z0-9._]+"]"\n {
+                      yylval.str = strndup (yytext+1, yyleng-3);
+                      return SECTION_HEADER;
+                    }
+
+  /* field=value or field[subfield]=value */
+^[A-Za-z0-9_.]+("["[A-Za-z0-9_,.]+"]")?"=".*\n {
+                      size_t i = strcspn (yytext, "=[");
+                      yylval.field = malloc (sizeof (struct field));
+                      yylval.field->next = NULL;
+                      yylval.field->key = strndup (yytext, i);
+                      if (yytext[i] == '[') {
+                        size_t j = strcspn (yytext+i+1, "]");
+                        yylval.field->subkey = strndup (yytext+i+1, j);
+                        i += 1+j+1;
+                      } else {
+                        yylval.field->subkey = NULL;
+                      }
+                      /* Note we chop the final \n off here. */
+                      yylval.field->value = strndup (yytext+i+1, yyleng-(i+2));
+                      return FIELD;
+                    }
+
+  /* Continuation line for multi-line values. */
+^[[:blank:]].*\n        {
+                      yylval.str = strndup (yytext+1, yyleng-2);
+                      return VALUE_CONT;
+                    }
+
+ /* Hack to eat the PGP prologue. */
+^"-----BEGIN PGP SIGNED MESSAGE-----\n"  {
+  int c, prevnl = 0;
+
+  /* Eat everything to the first blank line. */
+  while ((c = input ()) != EOF) {
+    if (c == '\n' && prevnl)
+      break;
+    prevnl = c == '\n';
+  }
+
+  return PGP_PROLOGUE;
+}
+
+ /* Hack to eat the PGP epilogue. */
+^"-----BEGIN PGP SIGNATURE-----\n"  {
+  /* Eat everything to the end of the file. */
+  while (input () != EOF)
+    ;
+
+  return PGP_EPILOGUE;
+}
+
+ /* anything else is an error */
+. {
+  yyerror ("unexpected character in input");
+  exit (EXIT_FAILURE);
+}

builder/index-struct.c

@@ -0,0 +1,59 @@
+/* libguestfs virt-builder tool
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+
+#include "index-struct.h"
+
+struct section *parsed_index = NULL;
+int seen_comments = 0;
+
+static void free_section (struct section *section);
+static void free_field (struct field *field);
+
+void
+free_index (void)
+{
+  free_section (parsed_index);
+}
+
+static void
+free_section (struct section *section)
+{
+  if (section) {
+    free_section (section->next);
+    free (section->name);
+    free_field (section->fields);
+    free (section);
+  }
+}
+
+static void
+free_field (struct field *field)
+{
+  if (field) {
+    free_field (field->next);
+    free (field->key);
+    free (field->subkey);
+    free (field->value);
+    free (field);
+  }
+}

builder/index-struct.h

@@ -0,0 +1,49 @@
+/* libguestfs virt-builder tool
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+/* The data structures produced when parsing the index file. */
+
+#ifndef INDEX_STRUCT_H
+#define INDEX_STRUCT_H
+
+/* A section or list of sections. */
+struct section {
+  struct section *next;
+  char *name;
+  struct field *fields;
+};
+
+/* A field or list of fields. */
+struct field {
+  struct field *next;
+  char *key;
+  char *subkey;
+  char *value;
+};
+
+/* The parser (yyparse) stores the result here. */
+extern struct section *parsed_index;
+
+/* yyparse sets this if any comments were seen.  Required for checking
+ * compatibility with virt-builder 1.24.
+ */
+extern int seen_comments;
+
+extern void free_index (void);
+
+#endif /* INDEX_STRUCT_H */

builder/index-validate.c

@@ -0,0 +1,173 @@
+/* libguestfs virt-builder tool
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <limits.h>
+#include <getopt.h>
+#include <errno.h>
+#include <libintl.h>
+
+#include <guestfs.h>
+
+#include "guestfs-internal-frontend.h"
+
+#include "index-struct.h"
+#include "index-parse.h"
+
+extern FILE *yyin;
+
+static void
+usage (int exit_status)
+{
+  printf ("%s index\n", program_name);
+  exit (exit_status);
+}
+
+int
+main (int argc, char *argv[])
+{
+  enum { HELP_OPTION = CHAR_MAX + 1 };
+  static const char *options = "V";
+  static const struct option long_options[] = {
+    { "help", 0, 0, HELP_OPTION },
+    { "compat-1.24.0", 0, 0, 0 },
+    { "compat-1.24.1", 0, 0, 0 },
+    { "version", 0, 0, 'V' },
+    { 0, 0, 0, 0 }
+  };
+  int c;
+  int option_index;
+  int compat_1_24_0 = 0;
+  int compat_1_24_1 = 0;
+  const char *input;
+  struct section *sections;
+
+  setlocale (LC_ALL, "");
+  bindtextdomain (PACKAGE, LOCALEBASEDIR);
+  textdomain (PACKAGE);
+
+  for (;;) {
+    c = getopt_long (argc, argv, options, long_options, &option_index);
+    if (c == -1) break;
+
+    switch (c) {
+    case 0:                     /* options which are long only */
+      if (STREQ (long_options[option_index].name, "compat-1.24.0"))
+        compat_1_24_0 = compat_1_24_1 = 1;
+      else if (STREQ (long_options[option_index].name, "compat-1.24.1"))
+        compat_1_24_1 = 1;
+      else {
+        fprintf (stderr, _("%s: unknown long option: %s (%d)\n"),
+                 program_name, long_options[option_index].name, option_index);
+        exit (EXIT_FAILURE);
+      }
+      break;
+
+    case 'V':
+      printf ("%s %s\n", PACKAGE_NAME, PACKAGE_VERSION);
+      exit (EXIT_SUCCESS);
+
+    case HELP_OPTION:
+      usage (EXIT_SUCCESS);
+
+    default:
+      usage (EXIT_FAILURE);
+    }
+  }
+
+  if (optind != argc-1)
+    usage (EXIT_FAILURE);
+
+  input = argv[optind++];
+
+  yyin = fopen (input, "r");
+  if (yyin == NULL) {
+    perror (input);
+    exit (EXIT_FAILURE);
+  }
+
+  if (yyparse () != 0) {
+    fprintf (stderr, _("%s: '%s' could not be validated, see errors above\n"),
+             program_name, input);
+    exit (EXIT_FAILURE);
+  }
+
+  if (fclose (yyin) == EOF) {
+    fprintf (stderr, _("%s: %s: error reading input file: %m\n"),
+             program_name, input);
+    exit (EXIT_FAILURE);
+  }
+
+  if (compat_1_24_1 && seen_comments) {
+    fprintf (stderr, _("%s: %s contains comments which will not work with virt-builder 1.24.1\n"),
+             program_name, input);
+    exit (EXIT_FAILURE);
+  }
+
+  /* Iterate over the parsed sections, semantically validating it. */
+  for (sections = parsed_index; sections != NULL; sections = sections->next) {
+    int seen_sig = 0;
+    struct field *fields;
+
+    if (compat_1_24_0) {
+      if (strchr (sections->name, '_')) {
+        fprintf (stderr, _("%s: %s: section [%s] has invalid characters which will not work with virt-builder 1.24.0\n"),
+                 program_name, input, sections->name);
+        exit (EXIT_FAILURE);
+      }
+    }
+
+    for (fields = sections->fields; fields != NULL; fields = fields->next) {
+      if (compat_1_24_0) {
+        if (strchr (fields->key, '[') ||
+            strchr (fields->key, ']')) {
+          fprintf (stderr, _("%s: %s: section [%s], field '%s' has invalid characters which will not work with virt-builder 1.24.0\n"),
+                   program_name, input, sections->name, fields->key);
+          exit (EXIT_FAILURE);
+        }
+      }
+      if (compat_1_24_1) {
+        if (strchr (fields->key, '.') ||
+            strchr (fields->key, ',')) {
+          fprintf (stderr, _("%s: %s: section [%s], field '%s' has invalid characters which will not work with virt-builder 1.24.1\n"),
+                   program_name, input, sections->name, fields->key);
+          exit (EXIT_FAILURE);
+        }
+      }
+      if (STREQ (fields->key, "sig"))
+        seen_sig = 1;
+    }
+
+    if (compat_1_24_0 && !seen_sig) {
+      fprintf (stderr, _("%s: %s: section [%s] is missing a 'sig' field which will not work with virt-builder 1.24.0\n"),
+               program_name, input, sections->name);
+      exit (EXIT_FAILURE);
+    }
+  }
+
+  /* Free the parsed data. */
+  free_index ();
+
+  printf ("%s validated OK\n", input);
+
+  exit (EXIT_SUCCESS);
+}

builder/index_parser.ml

@@ -0,0 +1,288 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+open Printf
+open Unix
+
+type index = (string * entry) list      (* string = "os-version" *)
+and entry = {
+  printable_name : string option;       (* the name= field *)
+  osinfo : string option;
+  file_uri : string;
+  arch : string;
+  signature_uri : string option;        (* deprecated, will be removed in 1.26 *)
+  checksum_sha512 : string option;
+  revision : int;
+  format : string option;
+  size : int64;
+  compressed_size : int64 option;
+  expand : string option;
+  lvexpand : string option;
+  notes : (string * string) list;
+  hidden : bool;
+
+  sigchecker : Sigchecker.t;
+}
+
+let print_entry chan (name, { printable_name = printable_name;
+                              file_uri = file_uri;
+                              arch = arch;
+                              osinfo = osinfo;
+                              signature_uri = signature_uri;
+                              checksum_sha512 = checksum_sha512;
+                              revision = revision;
+                              format = format;
+                              size = size;
+                              compressed_size = compressed_size;
+                              expand = expand;
+                              lvexpand = lvexpand;
+                              notes = notes;
+                              hidden = hidden }) =
+  let fp fs = fprintf chan fs in
+  fp "[%s]\n" name;
+  (match printable_name with
+  | None -> ()
+  | Some name -> fp "name=%s\n" name
+  );
+  (match osinfo with
+  | None -> ()
+  | Some id -> fp "osinfo=%s\n" id
+  );
+  fp "file=%s\n" file_uri;
+  fp "arch=%s\n" arch;
+  (match signature_uri with
+  | None -> ()
+  | Some uri -> fp "sig=%s\n" uri
+  );
+  (match checksum_sha512 with
+  | None -> ()
+  | Some uri -> fp "checksum[sha512]=%s\n" uri
+  );
+  fp "revision=%d\n" revision;
+  (match format with
+  | None -> ()
+  | Some format -> fp "format=%s\n" format
+  );
+  fp "size=%Ld\n" size;
+  (match compressed_size with
+  | None -> ()
+  | Some size -> fp "compressed_size=%Ld\n" size
+  );
+  (match expand with
+  | None -> ()
+  | Some expand -> fp "expand=%s\n" expand
+  );
+  (match lvexpand with
+  | None -> ()
+  | Some lvexpand -> fp "lvexpand=%s\n" lvexpand
+  );
+  List.iter (
+    fun (lang, notes) ->
+      match lang with
+      | "" -> fp "notes=%s\n" notes
+      | lang -> fp "notes[%s]=%s\n" lang notes
+  ) notes;
+  if hidden then fp "hidden=true\n"
+
+let get_index ~prog ~debug ~downloader ~sigchecker source =
+  let corrupt_file () =
+    eprintf (f_"\nThe index file downloaded from '%s' is corrupt.\nYou need to ask the supplier of this file to fix it and upload a fixed version.\n")
+      source;
+    exit 1
+  in
+
+  let rec get_index () =
+    (* Get the index page. *)
+    let tmpfile, delete_tmpfile = Downloader.download ~prog downloader source in
+
+    (* Check index file signature (also verifies it was fully
+     * downloaded and not corrupted in transit).
+     *)
+    Sigchecker.verify sigchecker tmpfile;
+
+    (* Try parsing the file. *)
+    let sections = Ini_reader.read_ini tmpfile in
+    if delete_tmpfile then
+      (try Unix.unlink tmpfile with _ -> ());
+
+    (* Check for repeated os-version names. *)
+    let nseen = Hashtbl.create 13 in
+    List.iter (
+      fun (n, _) ->
+        if Hashtbl.mem nseen n then (
+          eprintf (f_"virt-builder: index is corrupt: os-version '%s' appears two or more times\n") n;
+          corrupt_file ()
+        );
+        Hashtbl.add nseen n true
+    ) sections;
+
+    (* Check for repeated fields. *)
+    List.iter (
+      fun (n, fields) ->
+        let fseen = Hashtbl.create 13 in
+        List.iter (
+          fun (field, subkey, _) ->
+            let hashkey = (field, subkey) in
+            if Hashtbl.mem fseen hashkey then (
+              (match subkey with
+              | Some value ->
+                eprintf (f_"virt-builder: index is corrupt: %s: field '%s[%s]' appears two or more times\n") n field value
+              | None ->
+                eprintf (f_"virt-builder: index is corrupt: %s: field '%s' appears two or more times\n") n field);
+              corrupt_file ()
+            );
+            Hashtbl.add fseen hashkey true
+        ) fields
+    ) sections;
+
+    (* Turn the sections into the final index. *)
+    let entries =
+      List.map (
+        fun (n, fields) ->
+          let fields = List.map (fun (k, sk, v) -> (k, sk), v) fields in
+          let printable_name =
+            try Some (List.assoc ("name", None) fields) with Not_found -> None in
+          let osinfo =
+            try Some (List.assoc ("osinfo", None) fields) with Not_found -> None in
+          let file_uri =
+            try make_absolute_uri (List.assoc ("file", None) fields)
+            with Not_found ->
+              eprintf (f_"virt-builder: no 'file' (URI) entry for '%s'\n") n;
+            corrupt_file () in
+          let arch =
+            try List.assoc ("arch", None) fields
+            with Not_found ->
+              eprintf (f_"virt-builder: no 'arch' entry for '%s'\n") n;
+            corrupt_file () in
+          let signature_uri =
+            try Some (make_absolute_uri (List.assoc ("sig", None) fields))
+            with Not_found -> None in
+          let checksum_sha512 =
+            try Some (List.assoc ("checksum", Some "sha512") fields)
+            with Not_found ->
+              try Some (List.assoc ("checksum", None) fields)
+              with Not_found -> None in
+          let revision =
+            try int_of_string (List.assoc ("revision", None) fields)
+            with
+            | Not_found -> 1
+            | Failure "int_of_string" ->
+              eprintf (f_"virt-builder: cannot parse 'revision' field for '%s'\n")
+                n;
+              corrupt_file () in
+          let format =
+            try Some (List.assoc ("format", None) fields) with Not_found -> None in
+          let size =
+            try Int64.of_string (List.assoc ("size", None) fields)
+            with
+            | Not_found ->
+              eprintf (f_"virt-builder: no 'size' field for '%s'\n") n;
+              corrupt_file ()
+            | Failure "int_of_string" ->
+              eprintf (f_"virt-builder: cannot parse 'size' field for '%s'\n")
+                n;
+              corrupt_file () in
+          let compressed_size =
+            try Some (Int64.of_string (List.assoc ("compressed_size", None) fields))
+            with
+            | Not_found ->
+              None
+            | Failure "int_of_string" ->
+              eprintf (f_"virt-builder: cannot parse 'compressed_size' field for '%s'\n")
+                n;
+              corrupt_file () in
+          let expand =
+            try Some (List.assoc ("expand", None) fields) with Not_found -> None in
+          let lvexpand =
+            try Some (List.assoc ("lvexpand", None) fields) with Not_found -> None in
+          let notes =
+            let rec loop = function
+              | [] -> []
+              | (("notes", subkey), value) :: xs ->
+                let subkey = match subkey with
+                | None -> ""
+                | Some v -> v in
+                (subkey, value) :: loop xs
+              | _ :: xs -> loop xs in
+            List.sort (
+              fun (k1, _) (k2, _) ->
+                String.compare k1 k2
+            ) (loop fields) in
+          let hidden =
+            try bool_of_string (List.assoc ("hidden", None) fields)
+            with
+            | Not_found -> false
+            | Failure "bool_of_string" ->
+              eprintf (f_"virt-builder: cannot parse 'hidden' field for '%s'\n")
+                n;
+              corrupt_file () in
+
+          let entry = { printable_name = printable_name;
+                        osinfo = osinfo;
+                        file_uri = file_uri;
+                        arch = arch;
+                        signature_uri = signature_uri;
+                        checksum_sha512 = checksum_sha512;
+                        revision = revision;
+                        format = format;
+                        size = size;
+                        compressed_size = compressed_size;
+                        expand = expand;
+                        lvexpand = lvexpand;
+                        notes = notes;
+                        hidden = hidden;
+                        sigchecker = sigchecker } in
+          n, entry
+      ) sections in
+
+    if debug then (
+      eprintf "index file (%s) after parsing (C parser):\n" source;
+      List.iter (print_entry Pervasives.stderr) entries
+    );
+
+    entries
+
+  (* Verify same-origin policy for the file= and sig= fields. *)
+  and make_absolute_uri path =
+    if String.length path = 0 then (
+      eprintf (f_"virt-builder: zero length path in the index file\n");
+      corrupt_file ()
+    )
+    else if string_find path "://" >= 0 then (
+      eprintf (f_"virt-builder: cannot use a URI ('%s') in the index file\n")
+        path;
+      corrupt_file ()
+    )
+    else if path.[0] = '/' then (
+      eprintf (f_"virt-builder: you must use relative paths (not '%s') in the index file\n") path;
+      corrupt_file ()
+    )
+    else (
+      (* Construct the URI. *)
+      try
+        let i = String.rindex source '/' in
+        String.sub source 0 (i+1) ^ path
+      with
+        Not_found -> source // path
+    )
+  in
+
+  get_index ()

builder/index_parser.mli

@@ -0,0 +1,39 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type index = (string * entry) list      (* string = "os-version" *)
+and entry = {
+  printable_name : string option;       (* the name= field *)
+  osinfo : string option;
+  file_uri : string;
+  arch : string;
+  signature_uri : string option;        (* deprecated, will be removed in 1.26 *)
+  checksum_sha512 : string option;
+  revision : int;
+  format : string option;
+  size : int64;
+  compressed_size : int64 option;
+  expand : string option;
+  lvexpand : string option;
+  notes : (string * string) list;
+  hidden : bool;
+
+  sigchecker : Sigchecker.t;
+}
+
+val get_index : prog:string -> debug:bool -> downloader:Downloader.t -> sigchecker:Sigchecker.t -> string -> index

builder/ini_reader.ml

@@ -0,0 +1,38 @@
+(* virt-builder
+ * Copyright (C) 2013-2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type sections = section list
+and section = string * fields                (* [name] + fields *)
+and fields = field list
+and field = string * string option * string  (* key + subkey + value *)
+
+(* Types returned by the C index parser. *)
+type c_sections = c_section array
+and c_section = string * c_fields             (* [name] + fields *)
+and c_fields = field array
+
+(* Calls yyparse in the C code. *)
+external parse_index : string -> c_sections = "virt_builder_parse_index"
+
+let read_ini file =
+  let sections = parse_index file in
+  let sections = Array.to_list sections in
+  List.map (
+    fun (n, fields) ->
+      n, Array.to_list fields
+  ) sections

builder/ini_reader.mli

@@ -0,0 +1,24 @@
+(* virt-builder
+ * Copyright (C) 2013-2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type sections = section list
+and section = string * fields                (* [name] + fields *)
+and fields = field list
+and field = string * string option * string  (* key + subkey + value *)
+
+val read_ini : string -> sections

builder/libguestfs.conf.in

@@ -0,0 +1,3 @@
+[libguestfs.org]
+uri=http://libguestfs.org/download/builder/index.asc
+gpgkey=file://@SYSCONFDIR@/xdg/virt-builder/repos.d/libguestfs.gpg

builder/libguestfs.gpg

@@ -0,0 +1,64 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+Version: GnuPG v1.4.14 (GNU/Linux)
+
+mQINBE6UMMEBEADM811hfTulaF4JpkVpAI10FImyb4ArvOiu8NdcUwTFo+cyWno3
+U85B86H1Bsk/LgLTYtthSrTgsCtdxy+i5OaMjxZDIwKQ2+IYI3FCn9T3Mn28Idyh
+kLHzrO9ph0Dv0BNfrlDZhQEC53aAFe/QxN7+A49BNBV7D1VAOOCsHjxMEDzcZkCa
+oCrtXw1aNm2vkkj5ukbfukHAyLcQL7kow0qKPSVa1G4lfQP0WiG259Ydy+sUmbVb
+TGdb6MEC84PQRDuw6/ZeoV04tn7ZNtQEMOS0uiciHOGfr2hBxQf9VIPNrHg42yaL
+dOv51D99GuaxZ9E0HSoH/RwB1oXgd6rFdqVNYaBIQnnkwJANUEeGBArtIOZNCADT
+Bt8vkSDm+lLEAFS+V8CACyW/LMIrGCvLdHeqtoAv0GDVyR2GPxldYfdtEmCUMWcb
+Jlf71V9iAse2gUdoiHp5FfpGMkA5j7idKuxIws11XxRZJXXbBqiBqmVEAQ/v0m6p
+kdo0MYTHydmecLuUK2bAGhpysfX97EfTSrxfrYphYWjTfKRD9GrADeZNfuz1DbKs
+7LSqVaQJSjQrfgAwcnZLRaU0V4P5zxiz50gz1Aj3AZRL+Y3meZenzZTXcLFdnusg
+wUfhhCuL3tluMtEh6tznumyxb43WO1yLwj6J6LtveiuJN1Z+KSQ6OieZcwARAQAB
+tCVSaWNoYXJkIFcuTS4gSm9uZXMgPHJpY2hAYW5uZXhpYS5vcmc+iQI4BBMBAgAi
+BQJOlDDBAhsDBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRCRc49z4bdooHQY
+D/wJLklSZNyXIW+rG5sUbg7j9cTIF5p/lB9kI2yx6KodJp/2knKyvnmzz0gBw/OE
+HL4E4UW26oWKo+36I8wkBnuGa6UtANeITcJqFE19VpHEXHsxre64jNQnO8/w748W
+1ROW+Ry43xmrlRWKuCm4oPYUzlp0fq9ATAne8eblfG+NOs8DYuA8xZNQzFaI2kDC
+QLD4YoXLoNsP27Koga36b0KwxPFD9tyVZiu9XDH/3hMN7Nb15B66PFr+HcMmQ67G
+nUIN5ulcIwj38i40cyaTs1VRheOzTHXE/a6Q2AhMKiKqOoEjQ73/mV7cAVoPtM3o
+83Q/8aVKBH0bVRwAeV1tju6b14fqKoG0zNBEcXdlSkht6ScxJYIc/LPUxAMDwgSE
+OWshjmeRzKXypBbHn/DP8QVyM2gk5wY+mMSH7MpR0p/hgj+rFO8H9L7pC4dCog3E
+qzrYhRN+TaP6MPH3WkOwPH4d4IfQRFnHp+VPYPijKEiLrUl/o8k3DyAanAPBpJ/x
+na4wXAjlFBctOq6g+SrCUiHpwk7b2YNwGgr5Vl3GmZELzK/G8gg3uJYKQ9Bpv16t
+WWOz+IFiOFa0UULeo0QPmFAIMZiDojNsY1SwBKB3ZL1YWZezgMdQAbpze/IXoSt7
+zxWJoKH2jK7q9mvFiaY12l2YnKuCcegWVAViLxRpBnrbz7QmUmljaGFyZCBXLk0u
+IEpvbmVzIDxyam9uZXNAcmVkaGF0LmNvbT6JAjgEEwECACIFAk6UOQsCGwMGCwkI
+BwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJEJFzj3Pht2igIUYQAKomI0edLakahsUQ
+MxOZuhBbXJ4/VWF8bXYChDNPKvJp5nB7fBXujJ+39cIUM5fe2ViO6qSDpFC29imx
+F5pPbAqspZBPBkLLiZLji8R42hGarntdtTW0UWSBpq+nC5+G1psrnATI3uXGNxKQ
+R99c5HoMY7dBC2Y8TCGE64NINZ/XVh472s6IGLPn8MTn26YdRKC9BrVkCFMP2OBr
+6D4IprnyTAWAzb68ew20QmyWO+NBi9MplaDNQVl8PIOgfpyWlkgX1z9m67pcSDkw
+46hksp0yuOD1VwR4iVZ2/CmIsGRUlx41vWD6BIp9KxKyDIU1CYTRhq72dahHsl/8
+BjCndV5PO0GphqfCzmCv4DXjUwmrMTbH/GFnt5rfwcMcXUgcK0vV9vQ2SOU56Zd1
+fb27ZCFJKZc0Fu8krwFldCp/NYILf6ogUL/C1hfuCGSSuyDVY16Gg3dla1x+6zpF
+asnWQlaw8xT5LlMWvTZs5WsoSVHu7dVZWlgxINP++hlZrTz/S8l38yyQ15YFFl3W
+9M7dzkegOeDTPfx6B89WgfvfJjA/D0/FYxxWPXEtrn9DlJ4daEJqNsrvfLErz9R8
+4IQmfmhR93j+rdotner+6keC/wVByEfbW1wmXtmFKXQ6srdpj8VKRFrvkyXVgepM
+DypLgRH2v7lL2kdWhUu2y4EAgrwzuQINBE6UMMEBEADxQxMgUuDrw5GT4tqARTPI
+SSdNcUsRxRhVA8srYOyECliE+B3TwcRDFBs+MyPFJVEuX8fi4eGj/AK5t1GHerfk
+orUGlz72q4c7LLhkfZrsuJbk2dgkjvldKJnIazQJa6epGLqdsE5RlmSgwedIbtMd
+naGJBQH8aKP/Wi1+wUxsm5N3p7+R2WRx48VfpEhYB+Zf/FkFm1Ycjwh57KQ0+OHw
+ykf8VfMisxuH30tDxOCV+VptWKfOF2rDNdaNPWhij2YIjhJXRpkuRR+1PpI4jLaD
+JxcVZmG/0zucacupUN2g5OUH59ySU/totD6YMnmp3FONoyF1uIEJo6Vs30npHGkO
+XgBo3Pxt7oLJeykLPtdSLgm3cwXIYMWarVsAkKNXitQIVGpVRLeaK373VwmXFqoi
+M2SMHeawTUdOORFjpQzkknlJWM1TmUVtHHKt8Pl9+/5+wXKyt2IDdcUkMrB6K5qF
+fb7EwVhoI8ehJQK+eeDCjFwCAiwB3iV8JlyW+tEU7JuyXOQlwY1VWm/WqMD8gaRi
+rT+RFDFliZ3tQbW2pqUoZBROV5HN4tieDfwxGKCvk6Tsdb30zA9DPQp93+238bYf
+312sg9R+CD0AqxoxFG5FJu4HShcPRrPnYtRZqKRe40GDWvBEArXZprwL1qrP+Kl/
+mRrEQpxAGIoFG8HbVvD3EQARAQABiQIfBBgBAgAJBQJOlDDBAhsMAAoJEJFzj3Ph
+t2igSLQP/2uIrAY2CDr0kWBJiD3TztiHy8IdxwUpyTBTebwmAbi44/EvtJfIisrG
+YjKIEv/w0E61gO7O1JBG4+IG93W+v9fTT/e39JMyxsYqoZZHUhP11Okx5grDS5b0
+O8VXOmXVRMdVNfstRBr10HD9uNDq7ruKD18TxYTwN0GPD4gj1dbHQDR77Tr5cyBs
+6Ou5PBOH4r3qcqf/cJUSMeUUu75xLwixux6E7tD2S+t6F07wlWxntUcPtzyAHj20
+J89orUC+dT6r6MypBoI0jdJCp9JPGtR7i+fE5Gm4E5+AUSubLPtZGRY9Um2eMoS2
+DnQpGOKx1VvsixR/Kw44j2tRAvmYMS4iDKcuZU+nZ+xokAgObILj/b9n/Qe2/fXy
+CFdcgSvbm+dV1fZxsdMF/P9OU8aqdT9A9Fv5y+cDMEg4DVnhwMJTxGh/TCkw/H+A
+frHEtRc98lSQN5odpITNG17mG6JOdHM+wA57qHH0uy4+5RsbyAJahcdBcmObK/RF
+i4WZlThpbHftX5O/LH98aYQ2fJayIxv1EAjzOBOQ0MfBHI0KCJR1pysEisX28sJA
+Ic73gnJJ3BLZbqfBRgxjNMNroxC+5Tw6uPGFHa3YnuIAxxw0HcDVZ9vnTWBWFPGw
+ZvXkQ3FVJwZoLmHw47vvlVpLD/4gi1SuHWieRvZ+UdDq00E348pm
+=neBW
+-----END PGP PUBLIC KEY BLOCK-----

builder/list_entries.ml

@@ -0,0 +1,201 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+open Printf
+
+let split_locale loc =
+  let regex = Str.regexp "^\\([A-Za-z]+\\)\\(_\\([A-Za-z]+\\)\\)?\\(\\.\\([A-Za-z0-9-]+\\)\\)?\\(@\\([A-Za-z]+\\)\\)?$" in
+  let l = ref [] in
+  if Str.string_match regex loc 0 then (
+    let match_or_empty n =
+      try Str.matched_group n loc with
+      | Not_found -> ""
+    in
+    let lang = Str.matched_group 1 loc in
+    let territory = match_or_empty 3 in
+    (match territory with
+    | "" -> ()
+    | territory -> l := (lang ^ "_" ^ territory) :: !l);
+    l := lang :: !l;
+  );
+  l := "" :: !l;
+  List.rev !l
+
+let rec list_entries ~list_format ~sources index =
+  match list_format with
+  | `Short -> list_entries_short index
+  | `Long -> list_entries_long ~sources index
+  | `Json -> list_entries_json ~sources index
+
+and list_entries_short index =
+  List.iter (
+    fun (name, { Index_parser.printable_name = printable_name;
+                 hidden = hidden }) ->
+      if not hidden then (
+        printf "%-24s" name;
+        (match printable_name with
+        | None -> ()
+        | Some s -> printf " %s" s
+        );
+        printf "\n"
+      )
+  ) index
+
+and list_entries_long ~sources index =
+  let langs = match Setlocale.setlocale Setlocale.LC_MESSAGES None with
+  | None -> [""]
+  | Some locale -> split_locale locale in
+
+  List.iter (
+    fun (source, key) ->
+      printf (f_"Source URI: %s\n") source;
+      (match key with
+      | Sigchecker.No_Key -> ()
+      | Sigchecker.Fingerprint fp ->
+        printf (f_"Fingerprint: %s\n") fp;
+      | Sigchecker.KeyFile kf ->
+        printf (f_"Key: %s\n") kf;
+      );
+      printf "\n"
+  ) sources;
+
+  List.iter (
+    fun (name, { Index_parser.printable_name = printable_name;
+                 arch = arch;
+                 size = size;
+                 compressed_size = compressed_size;
+                 notes = notes;
+                 hidden = hidden }) ->
+      if not hidden then (
+        printf "%-24s %s\n" "os-version:" name;
+        (match printable_name with
+        | None -> ()
+        | Some name -> printf "%-24s %s\n" (s_"Full name:") name;
+        );
+        printf "%-24s %s\n" (s_"Architecture:") arch;
+        printf "%-24s %s\n" (s_"Minimum/default size:") (human_size size);
+        (match compressed_size with
+        | None -> ()
+        | Some size ->
+          printf "%-24s %s\n" (s_"Download size:") (human_size size);
+        );
+        let notes = List.fold_left (
+          fun acc lang ->
+            let res = List.filter (
+              fun (langkey, _) ->
+                match langkey with
+                | "C" -> lang = ""
+                | langkey -> langkey = lang
+            ) notes in
+            match res with
+            | (_, noteskey) :: _ -> noteskey :: acc
+            | [] -> acc
+        ) [] langs in
+        let notes = List.rev notes in
+        (match notes with
+        | notes :: _ ->
+          printf "\n";
+          printf (f_"Notes:\n\n%s\n") notes
+        | [] -> ()
+        );
+        printf "\n"
+      )
+  ) index
+
+and list_entries_json ~sources index =
+  let trailing_comma index size =
+    if index = size - 1 then "" else "," in
+  let json_string_of_bool b =
+    if b then "true" else "false" in
+  let json_string_escape str =
+    let res = ref "" in
+    for i = 0 to String.length str - 1 do
+      res := !res ^ (match str.[i] with
+        | '"' -> "\\\""
+        | '\\' -> "\\\\"
+        | '\b' -> "\\b"
+        | '\n' -> "\\n"
+        | '\r' -> "\\r"
+        | '\t' -> "\\t"
+        | c -> String.make 1 c)
+    done;
+    !res in
+  let json_optional_printf_string key = function
+    | None -> ()
+    | Some str ->
+      printf "    \"%s\": \"%s\",\n" key (json_string_escape str) in
+  let json_optional_printf_int64 key = function
+    | None -> ()
+    | Some n ->
+      printf "    \"%s\": \"%Ld\",\n" key n in
+  let print_notes = function
+    | [] -> ()
+    | notes ->
+      printf "    \"notes\": {\n";
+      iteri (
+        fun i (lang, langnotes) ->
+          let lang =
+            match lang with
+            | "" -> "C"
+            | x -> x in
+          printf "      \"%s\": \"%s\"%s\n"
+            (json_string_escape lang) (json_string_escape langnotes)
+            (trailing_comma i (List.length notes))
+      ) notes;
+      printf "    },\n" in
+
+  printf "{\n";
+  printf "  \"version\": %d,\n" 1;
+  printf "  \"sources\": [\n";
+  iteri (
+    fun i (source, key) ->
+      printf "  {\n";
+      (match key with
+      | Sigchecker.No_Key -> ()
+      | Sigchecker.Fingerprint fp ->
+        printf "    \"fingerprint\": \"%s\",\n" fp;
+      | Sigchecker.KeyFile kf ->
+        printf "    \"key\": \"%s\",\n" kf;
+      );
+      printf "    \"uri\": \"%s\"\n" source;
+      printf "  }%s\n" (trailing_comma i (List.length sources))
+  ) sources;
+  printf "  ],\n";
+  printf "  \"templates\": [\n";
+  iteri (
+    fun i (name, { Index_parser.printable_name = printable_name;
+                   arch = arch;
+                   size = size;
+                   compressed_size = compressed_size;
+                   notes = notes;
+                   hidden = hidden }) ->
+      printf "  {\n";
+      printf "    \"os-version\": \"%s\",\n" name;
+      json_optional_printf_string "full-name" printable_name;
+      printf "    \"arch\": \"%s\",\n" arch;
+      printf "    \"size\": %Ld,\n" size;
+      json_optional_printf_int64 "compressed-size" compressed_size;
+      print_notes notes;
+      printf "    \"hidden\": %s\n" (json_string_of_bool hidden);
+      printf "  }%s\n" (trailing_comma i (List.length index))
+  ) index;
+  printf "  ]\n";
+ printf "}\n"

builder/list_entries.mli

@@ -0,0 +1,19 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+val list_entries : list_format:([ `Short | `Long | `Json ]) -> sources:(string * Sigchecker.gpgkey_type) list -> Index_parser.index -> unit

builder/paths.ml

@@ -0,0 +1,41 @@
+(* virt-builder
+ * Copyright (C) 2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_utils
+
+let xdg_cache_home =
+  try Some (Sys.getenv "XDG_CACHE_HOME" // "virt-builder")
+  with Not_found ->
+    try Some (Sys.getenv "HOME" // ".cache" // "virt-builder")
+    with Not_found ->
+      None (* no cache directory *)
+
+let xdg_config_home ~prog =
+  try Some (Sys.getenv "XDG_CONFIG_HOME" // prog)
+  with Not_found ->
+    try Some (Sys.getenv "HOME" // ".config" // prog)
+    with Not_found ->
+      None (* no config directory *)
+
+let xdg_config_dirs ~prog =
+  let dirs =
+    try Sys.getenv "XDG_CONFIG_DIRS"
+    with Not_found -> "/etc/xdg" in
+  let dirs = string_nsplit ":" dirs in
+  let dirs = List.filter (fun x -> x <> "") dirs in
+  List.map (fun x -> x // prog) dirs

builder/pxzcat-c.c

@@ -0,0 +1,650 @@
+/* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+#include <config.h>
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+#include <fcntl.h>
+#include <errno.h>
+#include <sys/types.h>
+#include <sys/wait.h>
+
+#include <pthread.h>
+
+#include <caml/alloc.h>
+#include <caml/fail.h>
+#include <caml/memory.h>
+#include <caml/mlvalues.h>
+
+#ifdef HAVE_CAML_UNIXSUPPORT_H
+#include <caml/unixsupport.h>
+#else
+#define Nothing ((value) 0)
+extern void unix_error (int errcode, char * cmdname, value arg) Noreturn;
+#endif
+
+#ifdef HAVE_LIBLZMA
+#include <lzma.h>
+
+static void pxzcat (value filenamev, value outputfilev, unsigned nr_threads);
+#endif
+
+value
+virt_builder_pxzcat (value inputfilev, value outputfilev)
+{
+  CAMLparam2 (inputfilev, outputfilev);
+
+#ifdef HAVE_LIBLZMA
+
+  /* Parallel implementation of xzcat (pxzcat). */
+  /* XXX Make number of threads configurable? */
+  long i;
+  unsigned nr_threads;
+
+  i = sysconf (_SC_NPROCESSORS_ONLN);
+  if (i <= 0) {
+    perror ("could not get number of cores");
+    i = 1;
+  }
+  nr_threads = (unsigned) i;
+
+  /* NB: This might throw an exception if something fails.  If it
+   * does, this function won't return as a regular C function.
+   */
+  pxzcat (inputfilev, outputfilev, nr_threads);
+
+#else
+
+  /* Fallback: use regular xzcat. */
+  int fd;
+  pid_t pid;
+  int status;
+
+  fd = open (String_val (outputfilev), O_WRONLY|O_CREAT|O_TRUNC|O_NOCTTY, 0666);
+  if (fd == -1)
+    unix_error (errno, "open", outputfilev);
+
+  pid = fork ();
+  if (pid == -1) {
+    int err = errno;
+    close (fd);
+    unix_error (err, "fork", Nothing);
+  }
+
+  if (pid == 0) {               /* child - run xzcat */
+    dup2 (fd, 1);
+    execlp (XZCAT, XZCAT, String_val (inputfilev), NULL);
+    perror (XZCAT);
+    _exit (EXIT_FAILURE);
+  }
+
+  close (fd);
+
+  if (waitpid (pid, &status, 0) == -1)
+    unix_error (errno, "waitpid", Nothing);
+  if (!WIFEXITED (status) || WEXITSTATUS (status) != 0)
+    caml_failwith (XZCAT " program failed, see earlier error messages");
+
+#endif
+
+  CAMLreturn (Val_unit);
+}
+
+#ifdef HAVE_LIBLZMA
+
+#define DEBUG 0
+
+#if DEBUG
+#define debug(fs,...) fprintf (stderr, "pxzcat: debug: " fs "\n", ## __VA_ARGS__)
+#else
+#define debug(fs,...) /* nothing */
+#endif
+
+/* Size of buffers used in decompression loop. */
+#define BUFFER_SIZE (64*1024)
+
+#define XZ_HEADER_MAGIC     "\xfd" "7zXZ\0"
+#define XZ_HEADER_MAGIC_LEN 6
+#define XZ_FOOTER_MAGIC     "YZ"
+#define XZ_FOOTER_MAGIC_LEN 2
+
+static int check_header_magic (int fd);
+static lzma_index *parse_indexes (value filenamev, int fd);
+static void iter_blocks (lzma_index *idx, unsigned nr_threads, value filenamev, int fd, value outputfilev, int ofd);
+
+static void
+pxzcat (value filenamev, value outputfilev, unsigned nr_threads)
+{
+  int fd, ofd;
+  uint64_t size;
+  lzma_index *idx;
+
+  /* Open the file. */
+  fd = open (String_val (filenamev), O_RDONLY);
+  if (fd == -1)
+    unix_error (errno, "open", filenamev);
+
+  /* Check file magic. */
+  if (!check_header_magic (fd)) {
+    close (fd);
+    caml_invalid_argument ("input file is not an xz file");
+  }
+
+  /* Read and parse the indexes. */
+  idx = parse_indexes (filenamev, fd);
+
+  /* Get the file uncompressed size, create the output file. */
+  size = lzma_index_uncompressed_size (idx);
+  debug ("uncompressed size = %" PRIu64 " bytes", size);
+
+  /* Avoid annoying ext4 auto_da_alloc which causes a flush on close
+   * unless we are very careful about not truncating a regular file
+   * from non-zero size to zero size.  (Thanks Eric Sandeen)
+   */
+  ofd = open (String_val (outputfilev), O_WRONLY|O_CREAT|O_NOCTTY, 0644);
+  if (ofd == -1) {
+    int err = errno;
+    close (fd);
+    unix_error (err, "open", outputfilev);
+  }
+
+  if (ftruncate (ofd, 1) == -1) {
+    int err = errno;
+    close (fd);
+    unix_error (err, "ftruncate", outputfilev);
+  }
+
+  if (lseek (ofd, 0, SEEK_SET) == -1) {
+    int err = errno;
+    close (fd);
+    unix_error (err, "lseek", outputfilev);
+  }
+
+  if (write (ofd, "\0", 1) == -1) {
+    int err = errno;
+    close (fd);
+    unix_error (err, "write", outputfilev);
+  }
+
+  if (ftruncate (ofd, size) == -1) {
+    int err = errno;
+    close (fd);
+    unix_error (err, "ftruncate", outputfilev);
+  }
+
+  /* Tell the kernel we won't read the output file. */
+  posix_fadvise (fd, 0, 0, POSIX_FADV_RANDOM|POSIX_FADV_DONTNEED);
+
+  /* Iterate over blocks. */
+  iter_blocks (idx, nr_threads, filenamev, fd, outputfilev, ofd);
+
+  lzma_index_end (idx, NULL);
+
+  if (close (fd) == -1)
+    unix_error (errno, "close", filenamev);
+}
+
+static int
+check_header_magic (int fd)
+{
+  char buf[XZ_HEADER_MAGIC_LEN];
+
+  if (lseek (fd, 0, SEEK_SET) == -1)
+    return 0;
+  if (read (fd, buf, XZ_HEADER_MAGIC_LEN) != XZ_HEADER_MAGIC_LEN)
+    return 0;
+  if (memcmp (buf, XZ_HEADER_MAGIC, XZ_HEADER_MAGIC_LEN) != 0)
+    return 0;
+  return 1;
+}
+
+/* For explanation of this function, see src/xz/list.c:parse_indexes
+ * in the xz sources.
+ */
+static lzma_index *
+parse_indexes (value filenamev, int fd)
+{
+  lzma_ret r;
+  off_t pos, index_size;
+  uint8_t footer[LZMA_STREAM_HEADER_SIZE];
+  uint8_t header[LZMA_STREAM_HEADER_SIZE];
+  lzma_stream_flags footer_flags;
+  lzma_stream_flags header_flags;
+  lzma_stream strm = LZMA_STREAM_INIT;
+  ssize_t n;
+  lzma_index *combined_index = NULL;
+  lzma_index *this_index = NULL;
+  lzma_vli stream_padding = 0;
+  size_t nr_streams = 0;
+
+  /* Check file size is a multiple of 4 bytes. */
+  pos = lseek (fd, 0, SEEK_END);
+  if (pos == (off_t) -1)
+    unix_error (errno, "lseek", filenamev);
+
+  if ((pos & 3) != 0)
+    caml_invalid_argument ("input not an xz file: size is not a multiple of 4 bytes");
+
+  /* Jump backwards through the file identifying each stream. */
+  while (pos > 0) {
+    debug ("looping through streams: pos = %" PRIu64, (uint64_t) pos);
+
+    if (pos < LZMA_STREAM_HEADER_SIZE)
+      caml_invalid_argument ("corrupted xz file");
+
+    if (lseek (fd, -LZMA_STREAM_HEADER_SIZE, SEEK_CUR) == -1)
+      unix_error (errno, "lseek", filenamev);
+
+    if (read (fd, footer, LZMA_STREAM_HEADER_SIZE) != LZMA_STREAM_HEADER_SIZE)
+      unix_error (errno, "read", filenamev);
+
+    /* Skip stream padding. */
+    if (footer[8] == 0 && footer[9] == 0 &&
+        footer[10] == 0 && footer[11] == 0) {
+      stream_padding += 4;
+      pos -= 4;
+      continue;
+    }
+
+    pos -= LZMA_STREAM_HEADER_SIZE;
+    nr_streams++;
+
+    debug ("decode stream footer at pos = %" PRIu64, (uint64_t) pos);
+
+    /* Does the stream footer look reasonable? */
+    r = lzma_stream_footer_decode (&footer_flags, footer);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "invalid stream footer - error %d\n", r);
+      caml_invalid_argument ("invalid stream footer");
+    }
+
+    debug ("backward_size = %" PRIu64, (uint64_t) footer_flags.backward_size);
+    index_size = footer_flags.backward_size;
+    if (pos < index_size + LZMA_STREAM_HEADER_SIZE)
+      caml_invalid_argument ("invalid stream footer");
+
+    pos -= index_size;
+    debug ("decode index at pos = %" PRIu64, (uint64_t) pos);
+
+    /* Seek backwards to the index of this stream. */
+    if (lseek (fd, pos, SEEK_SET) == -1)
+      unix_error (errno, "lseek", filenamev);
+
+    /* Decode the index. */
+    r = lzma_index_decoder (&strm, &this_index, UINT64_MAX);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "invalid stream index - error %d\n", r);
+      caml_invalid_argument ("invalid stream index");
+    }
+
+    do {
+      uint8_t buf[BUFSIZ];
+
+      strm.avail_in = index_size;
+      if (strm.avail_in > BUFSIZ)
+        strm.avail_in = BUFSIZ;
+
+      n = read (fd, &buf, strm.avail_in);
+      if (n == -1)
+        unix_error (errno, "read", filenamev);
+
+      index_size -= strm.avail_in;
+
+      strm.next_in = buf;
+      r = lzma_code (&strm, LZMA_RUN);
+    } while (r == LZMA_OK);
+
+    if (r != LZMA_STREAM_END) {
+      fprintf (stderr, "could not parse index - error %d\n", r);
+      caml_invalid_argument ("could not parse index");
+    }
+
+    pos -= lzma_index_total_size (this_index) + LZMA_STREAM_HEADER_SIZE;
+
+    debug ("decode stream header at pos = %" PRIu64, (uint64_t) pos);
+
+    /* Read and decode the stream header. */
+    if (lseek (fd, pos, SEEK_SET) == -1)
+      unix_error (errno, "lseek", filenamev);
+
+    if (read (fd, header, LZMA_STREAM_HEADER_SIZE) != LZMA_STREAM_HEADER_SIZE)
+      unix_error (errno, "read stream header", filenamev);
+
+    r = lzma_stream_header_decode (&header_flags, header);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "invalid stream header - error %d\n", r);
+      caml_invalid_argument ("invalid stream header");
+    }
+
+    /* Header and footer of the stream should be equal. */
+    r = lzma_stream_flags_compare (&header_flags, &footer_flags);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "header and footer of stream are not equal - error %d\n",
+               r);
+      caml_invalid_argument ("header and footer of stream are not equal");
+    }
+
+    /* Store the decoded stream flags in this_index. */
+    r = lzma_index_stream_flags (this_index, &footer_flags);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "cannot read stream_flags from index - error %d\n", r);
+      caml_invalid_argument ("cannot read stream_flags from index");
+    }
+
+    /* Store the amount of stream padding so far.  Needed to calculate
+     * compressed offsets correctly in multi-stream files.
+     */
+    r = lzma_index_stream_padding (this_index, stream_padding);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "cannot set stream_padding in index - error %d\n", r);
+      caml_invalid_argument ("cannot set stream_padding in index");
+    }
+
+    if (combined_index != NULL) {
+      r = lzma_index_cat (this_index, combined_index, NULL);
+      if (r != LZMA_OK) {
+        fprintf (stderr, "cannot combine indexes - error %d\n", r);
+        caml_invalid_argument ("cannot combine indexes");
+      }
+    }
+
+    combined_index = this_index;
+    this_index = NULL;
+  }
+
+  lzma_end (&strm);
+
+  return combined_index;
+}
+
+/* Return true iff the buffer is all zero bytes.
+ *
+ * Note that gcc is smart enough to optimize this properly:
+ * http://stackoverflow.com/questions/1493936/faster-means-of-checking-for-an-empty-buffer-in-c/1493989#1493989
+ */
+static inline int
+is_zero (const unsigned char *buffer, size_t size)
+{
+  size_t i;
+
+  for (i = 0; i < size; ++i) {
+    if (buffer[i] != 0)
+      return 0;
+  }
+
+  return 1;
+}
+
+struct global_state {
+  /* Current iterator.  Threads update this, but it is protected by a
+   * mutex, and each thread takes a copy of it when working on it.
+   */
+  lzma_index_iter iter;
+  lzma_bool iter_finished;
+  pthread_mutex_t iter_mutex;
+
+  /* Note that all threads are accessing these fds, so you have
+   * to use pread/pwrite instead of lseek!
+   */
+
+  /* Input file. */
+  const char *filename;
+  int fd;
+
+  /* Output file. */
+  const char *outputfile;
+  int ofd;
+};
+
+struct per_thread_state {
+  unsigned thread_num;
+  struct global_state *global;
+  int status;
+};
+
+/* Create threads to iterate over the blocks and uncompress. */
+static void *worker_thread (void *vp);
+
+static void
+iter_blocks (lzma_index *idx, unsigned nr_threads,
+             value filenamev, int fd, value outputfilev, int ofd)
+{
+  struct global_state global;
+  struct per_thread_state per_thread[nr_threads];
+  pthread_t thread[nr_threads];
+  unsigned u, nr_errors;
+  int err;
+  void *status;
+
+  lzma_index_iter_init (&global.iter, idx);
+  global.iter_finished = 0;
+  err = pthread_mutex_init (&global.iter_mutex, NULL);
+  if (err != 0)
+    unix_error (err, "pthread_mutex_init", Nothing);
+
+  global.filename = String_val (filenamev);
+  global.fd = fd;
+  global.outputfile = String_val (outputfilev);
+  global.ofd = ofd;
+
+  for (u = 0; u < nr_threads; ++u) {
+    per_thread[u].thread_num = u;
+    per_thread[u].global = &global;
+  }
+
+  /* Start the threads. */
+  for (u = 0; u < nr_threads; ++u) {
+    err = pthread_create (&thread[u], NULL, worker_thread, &per_thread[u]);
+    if (err != 0)
+      unix_error (err, "pthread_create", Nothing);
+  }
+
+  /* Wait for the threads to exit. */
+  nr_errors = 0;
+  for (u = 0; u < nr_threads; ++u) {
+    err = pthread_join (thread[u], &status);
+    if (err != 0) {
+      fprintf (stderr, "pthread_join (%u): %s\n", u, strerror (err));
+      nr_errors++;
+    }
+    if (*(int *)status == -1)
+      nr_errors++;
+  }
+
+  if (nr_errors > 0)
+    caml_invalid_argument ("some threads failed, see earlier errors");
+}
+
+/* Iterate over the blocks and uncompress. */
+static void *
+worker_thread (void *vp)
+{
+  struct per_thread_state *state = vp;
+  struct global_state *global = state->global;
+  lzma_index_iter iter;
+  int err;
+  off_t position, oposition;
+  uint8_t header[LZMA_BLOCK_HEADER_SIZE_MAX];
+  ssize_t n;
+  lzma_block block;
+  lzma_filter filters[LZMA_FILTERS_MAX + 1];
+  lzma_ret r;
+  lzma_stream strm = LZMA_STREAM_INIT;
+  uint8_t buf[BUFFER_SIZE];
+  unsigned char outbuf[BUFFER_SIZE];
+  size_t i;
+  lzma_bool iter_finished;
+
+  state->status = -1;
+
+  for (;;) {
+    /* Get the next block. */
+    err = pthread_mutex_lock (&global->iter_mutex);
+    if (err != 0) abort ();
+    iter_finished = global->iter_finished;
+    if (!iter_finished) {
+      iter_finished = global->iter_finished =
+        lzma_index_iter_next (&global->iter, LZMA_INDEX_ITER_NONEMPTY_BLOCK);
+      if (!iter_finished)
+        /* Take a local copy of this iterator since another thread will
+         * update the global version.
+         */
+        iter = global->iter;
+    }
+    err = pthread_mutex_unlock (&global->iter_mutex);
+    if (err != 0) abort ();
+    if (iter_finished)
+      break;
+
+    /* Read the block header.  Start by reading a single byte which
+     * tell us how big the block header is.
+     */
+    position = iter.block.compressed_file_offset;
+    n = pread (global->fd, header, 1, position);
+    if (n == 0) {
+      fprintf (stderr,
+               "%s: read: unexpected end of file reading block header byte\n",
+               global->filename);
+      return &state->status;
+    }
+    if (n == -1) {
+      perror (String_val (global->filename));
+      return &state->status;
+    }
+    position++;
+
+    if (header[0] == '\0') {
+      fprintf (stderr,
+               "%s: read: unexpected invalid block in file, header[0] = 0\n",
+               global->filename);
+      return &state->status;
+    }
+
+    block.version = 0;
+    block.check = iter.stream.flags->check;
+    block.filters = filters;
+    block.header_size = lzma_block_header_size_decode (header[0]);
+
+    /* Now read and decode the block header. */
+    n = pread (global->fd, &header[1], block.header_size-1, position);
+    if (n >= 0 && n != block.header_size-1) {
+      fprintf (stderr,
+               "%s: read: unexpected end of file reading block header\n",
+               global->filename);
+      return &state->status;
+    }
+    if (n == -1) {
+      perror (global->filename);
+      return &state->status;
+    }
+    position += n;
+
+    r = lzma_block_header_decode (&block, NULL, header);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "%s: invalid block header (error %d)\n",
+               global->filename, r);
+      return &state->status;
+    }
+
+    /* What this actually does is it checks that the block header
+     * matches the index.
+     */
+    r = lzma_block_compressed_size (&block, iter.block.unpadded_size);
+    if (r != LZMA_OK) {
+      fprintf (stderr,
+               "%s: cannot calculate compressed size (error %d)\n",
+               global->filename, r);
+      return &state->status;
+    }
+
+    /* Where we will start writing to. */
+    oposition = iter.block.uncompressed_file_offset;
+
+    /* Read the block data and uncompress it. */
+    r = lzma_block_decoder (&strm, &block);
+    if (r != LZMA_OK) {
+      fprintf (stderr, "%s: invalid block (error %d)\n", global->filename, r);
+      return &state->status;
+    }
+
+    strm.next_in = NULL;
+    strm.avail_in = 0;
+    strm.next_out = outbuf;
+    strm.avail_out = sizeof outbuf;
+
+    for (;;) {
+      lzma_action action = LZMA_RUN;
+
+      if (strm.avail_in == 0) {
+        strm.next_in = buf;
+        n = pread (global->fd, buf, sizeof buf, position);
+        if (n == -1) {
+          perror (global->filename);
+          return &state->status;
+        }
+        position += n;
+        strm.avail_in = n;
+        if (n == 0)
+          action = LZMA_FINISH;
+      }
+
+      r = lzma_code (&strm, action);
+
+      if (strm.avail_out == 0 || r == LZMA_STREAM_END) {
+        size_t wsz = sizeof outbuf - strm.avail_out;
+
+        /* Don't write if the block is all zero, to preserve output file
+         * sparseness.  However we have to update oposition.
+         */
+        if (!is_zero (outbuf, wsz)) {
+          if (pwrite (global->ofd, outbuf, wsz, oposition) != wsz) {
+            /* XXX Handle short writes. */
+            perror (global->filename);
+            return &state->status;
+          }
+        }
+        oposition += wsz;
+
+        strm.next_out = outbuf;
+        strm.avail_out = sizeof outbuf;
+      }
+
+      if (r == LZMA_STREAM_END)
+        break;
+      if (r != LZMA_OK) {
+        fprintf (stderr,
+                 "%s: could not parse block data (error %d)\n",
+                 global->filename, r);
+        return &state->status;
+      }
+    }
+
+    lzma_end (&strm);
+
+    for (i = 0; filters[i].id != LZMA_VLI_UNKNOWN; ++i)
+      free (filters[i].options);
+  }
+
+  state->status = 0;
+  return &state->status;
+}
+
+#endif /* HAVE_LIBLZMA */

builder/pxzcat.ml

@@ -0,0 +1,19 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+external pxzcat : string -> string -> unit = "virt_builder_pxzcat"

builder/pxzcat.mli

@@ -0,0 +1,31 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+(** {1 Parallel xzcat (or fall back to regular xzcat).}
+
+    Eventually regular xzcat will be able to work in parallel and this
+    code can go away.
+*)
+
+val pxzcat : string -> string -> unit
+    (** [pxzcat input output] uncompresses the file [input] to the file
+        [output].  The input and output must both be seekable.
+
+        If liblzma was found at compile time, this uses an internal
+        implementation of parallel xzcat.  Otherwise regular xzcat is
+        used. *)

builder/setlocale-c.c

@@ -0,0 +1,59 @@
+/* virt-builder
+ * Copyright (C) 2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+
+#include <config.h>
+
+#include <locale.h>
+
+#include <caml/alloc.h>
+#include <caml/fail.h>
+#include <caml/memory.h>
+#include <caml/mlvalues.h>
+
+static const int lc_string_table[7] = {
+  LC_ALL,
+  LC_CTYPE,
+  LC_NUMERIC,
+  LC_TIME,
+  LC_COLLATE,
+  LC_MONETARY,
+  LC_MESSAGES
+};
+
+#define Val_none (Val_int (0))
+
+value
+virt_builder_setlocale (value val_category, value val_name)
+{
+  CAMLparam2 (val_category, val_name);
+  CAMLlocal2 (rv, rv2);
+  char *ret, *locstring;
+  int category;
+
+  category = lc_string_table[Int_val (val_category)];
+  locstring = val_name == Val_none ? NULL : String_val (Field (val_name, 0));
+  ret = setlocale (category, locstring);
+  if (ret) {
+    rv2 = caml_copy_string (ret);
+    rv = caml_alloc (1, 0);
+    Store_field (rv, 0, rv2);
+  } else
+    rv = Val_none;
+
+  CAMLreturn (rv);
+}

builder/setlocale.ml

@@ -0,0 +1,29 @@
+(* virt-builder
+ * Copyright (C) 2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type localecategory =
+  | LC_ALL
+  | LC_CTYPE
+  | LC_NUMERIC
+  | LC_TIME
+  | LC_COLLATE
+  | LC_MONETARY
+  | LC_MESSAGES
+;;
+
+external setlocale : localecategory -> string option -> string option = "virt_builder_setlocale"

builder/setlocale.mli

@@ -0,0 +1,30 @@
+(* virt-builder
+ * Copyright (C) 2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type localecategory =
+  | LC_ALL
+  | LC_CTYPE
+  | LC_NUMERIC
+  | LC_TIME
+  | LC_COLLATE
+  | LC_MONETARY
+  | LC_MESSAGES
+;;
+
+val setlocale : localecategory -> string option -> string option
+(** [setlocale category newlocale] Tiny wrapper to the C [setlocale]. *)

builder/sigchecker.ml

@@ -0,0 +1,219 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+open Printf
+open Unix
+
+let quote = Filename.quote
+
+type gpgkey_type =
+  | No_Key
+  | Fingerprint of string
+  | KeyFile of string
+
+type t = {
+  debug : bool;
+  gpg : string;
+  fingerprint : string;
+  check_signature : bool;
+  gpghome : string;
+}
+
+(* Import the specified key file. *)
+let import_keyfile ~gpg ~gpghome ~debug keyfile =
+  let status_file = Filename.temp_file "vbstat" ".txt" in
+  unlink_on_exit status_file;
+  let cmd = sprintf "%s --homedir %s --status-file %s --import %s%s"
+    gpg gpghome (quote status_file) (quote keyfile)
+    (if debug then "" else " >/dev/null 2>&1") in
+  if debug then eprintf "%s\n%!" cmd;
+  let r = Sys.command cmd in
+  if r <> 0 then (
+    eprintf (f_"virt-builder: error: could not import public key\nUse the '-v' option and look for earlier error messages.\n");
+    exit 1
+  );
+  status_file
+
+let rec create ~debug ~gpg ~gpgkey ~check_signature =
+  (* Create a temporary directory for gnupg. *)
+  let tmpdir = Mkdtemp.mkdtemp (Filename.temp_dir_name // "vb.gpghome.XXXXXX") in
+  rmdir_on_exit tmpdir;
+  (* Make sure we have no check_signature=true with no actual key. *)
+  let check_signature, gpgkey =
+    match check_signature, gpgkey with
+    | true, No_Key -> false, No_Key
+    | x, y -> x, y in
+  let fingerprint =
+    if check_signature then (
+      (* Run gpg so it can setup its own home directory, failing if it
+       * cannot.
+       *)
+      let cmd = sprintf "%s --homedir %s --list-keys%s"
+        gpg tmpdir (if debug then "" else " >/dev/null 2>&1") in
+      if debug then eprintf "%s\n%!" cmd;
+      let r = Sys.command cmd in
+      if r <> 0 then (
+        eprintf (f_"virt-builder: error: GPG failure: could not run GPG the first time\nUse the '-v' option and look for earlier error messages.\n");
+        exit 1
+      );
+      match gpgkey with
+      | No_Key ->
+        assert false
+      | KeyFile kf ->
+        let status_file = import_keyfile gpg tmpdir debug kf in
+        let status = read_whole_file status_file in
+        let status = string_nsplit "\n" status in
+        let fingerprint = ref "" in
+        List.iter (
+          fun line ->
+            let line = string_nsplit " " line in
+            match line with
+            | "[GNUPG:]" :: "IMPORT_OK" :: _ :: fp :: _ -> fingerprint := fp
+            | _ -> ()
+        ) status;
+        !fingerprint
+      | Fingerprint fp ->
+        let filename = Filename.temp_file "vbpubkey" ".asc" in
+        unlink_on_exit filename;
+        let cmd = sprintf "%s --yes --armor --output %s --export %s%s"
+          gpg (quote filename) (quote fp)
+          (if debug then "" else " >/dev/null 2>&1") in
+        if debug then eprintf "%s\n%!" cmd;
+        let r = Sys.command cmd in
+        if r <> 0 then (
+          eprintf (f_"virt-builder: error: could not export public key\nUse the '-v' option and look for earlier error messages.\n");
+          exit 1
+        );
+        ignore (import_keyfile gpg tmpdir debug filename);
+        fp
+    ) else
+      "" in
+  {
+    debug = debug;
+    gpg = gpg;
+    fingerprint = fingerprint;
+    check_signature = check_signature;
+    gpghome = tmpdir;
+  }
+
+(* Compare two strings of hex digits ignoring whitespace and case. *)
+and equal_fingerprints fp1 fp2 =
+  let len1 = String.length fp1 and len2 = String.length fp2 in
+  let rec loop i j =
+    if i = len1 && j = len2 then true (* match! *)
+    else if i = len1 || j = len2 then false (* no match - different lengths *)
+    else (
+      let x1 = getxdigit fp1.[i] and x2 = getxdigit fp2.[j] in
+      match x1, x2 with
+      | Some x1, Some x2 when x1 = x2 -> loop (i+1) (j+1)
+      | Some x1, Some x2 -> false (* no match - different content *)
+      | Some _, None -> loop i (j+1)
+      | None, Some _ -> loop (i+1) j
+      | None, None -> loop (i+1) (j+1)
+    )
+  in
+  loop 0 0
+
+and getxdigit = function
+  | '0'..'9' as c -> Some (Char.code c - Char.code '0')
+  | 'a'..'f' as c -> Some (Char.code c - Char.code 'a')
+  | 'A'..'F' as c -> Some (Char.code c - Char.code 'A')
+  | _ -> None
+
+let rec verify t filename =
+  if t.check_signature then (
+    let args = quote filename in
+    do_verify t args
+  )
+
+and verify_detached t filename sigfile =
+  if t.check_signature then (
+    match sigfile with
+    | None ->
+      eprintf (f_"virt-builder: error: there is no detached signature file\nThis probably means the index file is missing a sig=... line.\nYou can use --no-check-signature to ignore this error, but that means\nyou are susceptible to man-in-the-middle attacks.\n");
+      exit 1
+    | Some sigfile ->
+      let args = sprintf "%s %s" (quote sigfile) (quote filename) in
+      do_verify t args
+  )
+
+and do_verify t args =
+  let status_file = Filename.temp_file "vbstat" ".txt" in
+  unlink_on_exit status_file;
+  let cmd =
+    sprintf "%s --homedir %s --verify%s --status-file %s %s"
+        t.gpg t.gpghome
+        (if t.debug then "" else " -q --logger-file /dev/null")
+        (quote status_file) args in
+  if t.debug then eprintf "%s\n%!" cmd;
+  let r = Sys.command cmd in
+  if r <> 0 then (
+    eprintf (f_"virt-builder: error: GPG failure: could not verify digital signature of file\nTry:\n - Use the '-v' option and look for earlier error messages.\n - Delete the cache: virt-builder --delete-cache\n - Check no one has tampered with the website or your network!\n");
+    exit 1
+  );
+
+  (* Check the fingerprint is who it should be. *)
+  let status = read_whole_file status_file in
+
+  let status = string_nsplit "\n" status in
+  let fingerprint = ref "" in
+  List.iter (
+    fun line ->
+      let line = string_nsplit " " line in
+      match line with
+      | "[GNUPG:]" :: "VALIDSIG" :: fp :: _ -> fingerprint := fp
+      | _ -> ()
+  ) status;
+
+  if not (equal_fingerprints !fingerprint t.fingerprint) then (
+    eprintf (f_"virt-builder: error: fingerprint of signature does not match the expected fingerprint!\n  found fingerprint: %s\n  expected fingerprint: %s\n")
+      !fingerprint t.fingerprint;
+    exit 1
+  )
+
+type csum_t = SHA512 of string
+
+let verify_checksum t (SHA512 csum) filename =
+  let csum_file = Filename.temp_file "vbcsum" ".txt" in
+  unlink_on_exit csum_file;
+  let cmd = sprintf "sha512sum %s | awk '{print $1}' > %s"
+    (quote filename) (quote csum_file) in
+  if t.debug then eprintf "%s\n%!" cmd;
+  let r = Sys.command cmd in
+  if r <> 0 then (
+    eprintf (f_"virt-builder: error: could not run sha512sum command to verify checksum\n");
+    exit 1
+  );
+
+  let csum_actual = read_whole_file csum_file in
+
+  let csum_actual =
+    let len = String.length csum_actual in
+    if len > 0 && csum_actual.[len-1] = '\n' then
+      String.sub csum_actual 0 (len-1)
+    else
+      csum_actual in
+
+  if csum <> csum_actual then (
+    eprintf (f_"virt-builder: error: checksum of template did not match the expected checksum!\n  found checksum: %s\n  expected checksum: %s\nTry:\n - Use the '-v' option and look for earlier error messages.\n - Delete the cache: virt-builder --delete-cache\n - Check no one has tampered with the website or your network!\n")
+      csum_actual csum;
+    exit 1
+  )

builder/sigchecker.mli

@@ -0,0 +1,39 @@
+(* virt-builder
+ * Copyright (C) 2013 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type t
+
+type gpgkey_type =
+  | No_Key
+  | Fingerprint of string
+  | KeyFile of string
+
+val create : debug:bool -> gpg:string -> gpgkey:gpgkey_type -> check_signature:bool -> t
+
+val verify : t -> string -> unit
+(** Verify the file is signed (if check_signature is true). *)
+
+val verify_detached : t -> string -> string option -> unit
+(** Verify the file is signed against the detached signature
+    (if check_signature is true). *)
+
+type csum_t = SHA512 of string
+
+val verify_checksum : t -> csum_t -> string -> unit
+(** Verify the checksum of the file.  This is always verified even if
+    check_signature if false. *)

builder/sources.ml

@@ -0,0 +1,122 @@
+(* virt-builder
+ * Copyright (C) 2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+open Common_gettext.Gettext
+open Common_utils
+
+open Printf
+open Unix
+
+type source = {
+  name : string;
+  uri : string;
+  gpgkey : string option;
+}
+
+let parse_conf ~prog ~debug file =
+  if debug then (
+    eprintf (f_"%s: trying to read %s\n") prog file;
+  );
+  let sections = Ini_reader.read_ini file in
+
+  let sources = List.fold_right (
+    fun (n, fields) acc ->
+      let give_source n fields =
+        let fields = List.map (fun (k, sk, v) -> (k, sk), v) fields in
+        let uri =
+          try List.assoc ("uri", None) fields
+          with Not_found as ex ->
+            eprintf (f_"%s: no 'uri' entry for '%s' in %s, skipping it\n") prog n file;
+            raise ex in
+        let gpgkey =
+          let k =
+            try Some (URI.parse_uri (List.assoc ("gpgkey", None) fields)) with
+            | Not_found -> None
+            | Invalid_argument "URI.parse_uri" as ex ->
+              if debug then (
+                eprintf (f_"%s: '%s' has invalid gpgkey URI\n") prog n;
+              );
+              raise ex in
+          match k with
+          | None -> None
+          | Some uri ->
+            (match uri.URI.protocol with
+            | "file" -> Some uri.URI.path
+            | _ ->
+              if debug then (
+                eprintf (f_"%s: '%s' has non-local gpgkey URI\n") prog n;
+              );
+              None
+            ) in
+        {
+          name = n; uri = uri; gpgkey = gpgkey;
+        }
+      in
+      try (give_source n fields) :: acc
+      with Not_found | Invalid_argument _ -> acc
+  ) sections [] in
+
+  if debug then (
+    eprintf (f_"%s: ... read %d sources\n") prog (List.length sources);
+  );
+
+  sources
+
+let merge_sources current_sources new_sources =
+  List.fold_right (
+    fun source acc ->
+      if List.exists (fun { name = n } -> n = source.name) acc then
+        acc
+      else
+        source :: acc
+  ) new_sources current_sources
+
+let filter_filenames filename =
+  let suffix = ".conf" in
+  let n = String.length filename in
+  let ns = String.length suffix in
+  n >= ns && String.sub filename (n - ns) ns = suffix
+
+let read_sources ~prog ~debug =
+  let dirs = Paths.xdg_config_dirs ~prog in
+  let dirs =
+    match Paths.xdg_config_home ~prog with
+    | None -> dirs
+    | Some dir -> dir :: dirs in
+  let dirs = List.map (fun x -> x // "repos.d") dirs in
+  List.fold_right (
+    fun dir acc ->
+      let files =
+        try List.filter filter_filenames (Array.to_list (Sys.readdir dir))
+        with Sys_error _ -> [] in
+      let files = List.map (fun x -> dir // x) files in
+      List.fold_left (
+        fun acc file ->
+          try merge_sources acc (parse_conf ~prog ~debug file) with
+          | Unix_error (code, fname, _) ->
+            if debug then (
+              eprintf (f_"%s: file error: %s: %s\n") prog fname (error_message code)
+            );
+            acc
+          | Invalid_argument msg ->
+            if debug then (
+              eprintf (f_"%s: internal error: invalid argument: %s\n") prog msg
+            );
+            acc
+      ) acc files
+  ) dirs []

builder/sources.mli

@@ -0,0 +1,25 @@
+(* virt-builder
+ * Copyright (C) 2014 Red Hat Inc.
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ *)
+
+type source = {
+  name : string;
+  uri : string;
+  gpgkey : string option;
+}
+
+val read_sources : prog:string -> debug:bool -> source list

builder/test-config/virt-builder/repos.d/test-index.conf.in

@@ -0,0 +1,2 @@
+[test-index]
+uri=file://@abs_top_builddir@/builder/test-index

builder/test-index.in

@@ -0,0 +1,66 @@
+[phony-debian]
+name=Phony Debian
+arch=x86_64
+file=debian.xz
+format=raw
+size=536870912
+expand=/dev/sda2
+lvexpand=/dev/debian/root
+notes=Phony Debian look-alike used for testing.
+
+[phony-fedora]
+name=Phony Fedora
+arch=x86_64
+file=fedora.xz
+format=raw
+size=1073741824
+expand=/dev/sda2
+lvexpand=/dev/VG/Root
+notes=Phony Fedora look-alike used for testing.
+
+[phony-fedora-qcow2]
+name=Phony Fedora qcow2
+arch=x86_64
+file=fedora.qcow2.xz
+format=qcow2
+size=1073741824
+expand=/dev/sda2
+lvexpand=/dev/VG/Root
+notes=Phony Fedora look-alike used for testing.
+
+[phony-fedora-qcow2-uncompressed]
+name=Phony Fedora qcow2 uncompressed
+arch=x86_64
+file=fedora.qcow2
+format=qcow2
+size=1073741824
+expand=/dev/sda2
+lvexpand=/dev/VG/Root
+notes=Phony Fedora look-alike used for testing.
+
+[phony-fedora-no-format]
+name=Phony Fedora
+arch=x86_64
+file=fedora.qcow2.xz
+size=1073741824
+expand=/dev/sda2
+lvexpand=/dev/VG/Root
+notes=Phony Fedora look-alike used for testing.
+
+[phony-ubuntu]
+name=Phony Ubuntu
+arch=x86_64
+file=ubuntu.xz
+format=raw
+size=536870912
+expand=/dev/sda2
+notes=Phony Ubuntu look-alike used for testing.
+
+[phony-windows]
+name=Phony Windows
+arch=x86_64
+file=windows.xz
+format=raw
+size=536870912
+expand=/dev/sda2
+notes=Phony Windows look-alike used for testing.

builder/test-virt-builder-list.sh

@@ -0,0 +1,198 @@
+#!/bin/bash -
+# libguestfs virt-builder test script
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# Test the virt-builder --list [--long] options.
+
+export LANG=C
+set -e
+
+abs_builddir=$(pwd)
+
+export XDG_CONFIG_DIRS="$abs_builddir/test-config"
+
+short_list=$($VG ./virt-builder --no-check-signature --no-cache --list)
+
+if [ "$short_list" != "phony-debian             Phony Debian
+phony-fedora             Phony Fedora
+phony-fedora-qcow2       Phony Fedora qcow2
+phony-fedora-qcow2-uncompressed Phony Fedora qcow2 uncompressed
+phony-fedora-no-format   Phony Fedora
+phony-ubuntu             Phony Ubuntu
+phony-windows            Phony Windows" ]; then
+    echo "$0: unexpected --list output:"
+    echo "$short_list"
+    exit 1
+fi
+
+long_list=$(./virt-builder --no-check-signature --no-cache --list --long)
+
+if [ "$long_list" != "Source URI: file://$abs_builddir/test-index
+
+os-version:              phony-debian
+Full name:               Phony Debian
+Architecture:            x86_64
+Minimum/default size:    512.0M
+
+Notes:
+
+Phony Debian look-alike used for testing.
+
+os-version:              phony-fedora
+Full name:               Phony Fedora
+Architecture:            x86_64
+Minimum/default size:    1.0G
+
+Notes:
+
+Phony Fedora look-alike used for testing.
+
+os-version:              phony-fedora-qcow2
+Full name:               Phony Fedora qcow2
+Architecture:            x86_64
+Minimum/default size:    1.0G
+
+Notes:
+
+Phony Fedora look-alike used for testing.
+
+os-version:              phony-fedora-qcow2-uncompressed
+Full name:               Phony Fedora qcow2 uncompressed
+Architecture:            x86_64
+Minimum/default size:    1.0G
+
+Notes:
+
+Phony Fedora look-alike used for testing.
+
+os-version:              phony-fedora-no-format
+Full name:               Phony Fedora
+Architecture:            x86_64
+Minimum/default size:    1.0G
+
+Notes:
+
+Phony Fedora look-alike used for testing.
+
+os-version:              phony-ubuntu
+Full name:               Phony Ubuntu
+Architecture:            x86_64
+Minimum/default size:    512.0M
+
+Notes:
+
+Phony Ubuntu look-alike used for testing.
+
+os-version:              phony-windows
+Full name:               Phony Windows
+Architecture:            x86_64
+Minimum/default size:    512.0M
+
+Notes:
+
+Phony Windows look-alike used for testing." ]; then
+    echo "$0: unexpected --list --long output:"
+    echo "$long_list"
+    exit 1
+fi
+
+json_list=$(./virt-builder --no-check-signature --no-cache --list --list-format json)
+
+if [ "$json_list" != "{
+  \"version\": 1,
+  \"sources\": [
+  {
+    \"uri\": \"file://$abs_builddir/test-index\"
+  }
+  ],
+  \"templates\": [
+  {
+    \"os-version\": \"phony-debian\",
+    \"full-name\": \"Phony Debian\",
+    \"arch\": \"x86_64\",
+    \"size\": 536870912,
+    \"notes\": {
+      \"C\": \"Phony Debian look-alike used for testing.\"
+    },
+    \"hidden\": false
+  },
+  {
+    \"os-version\": \"phony-fedora\",
+    \"full-name\": \"Phony Fedora\",
+    \"arch\": \"x86_64\",
+    \"size\": 1073741824,
+    \"notes\": {
+      \"C\": \"Phony Fedora look-alike used for testing.\"
+    },
+    \"hidden\": false
+  },
+  {
+    \"os-version\": \"phony-fedora-qcow2\",
+    \"full-name\": \"Phony Fedora qcow2\",
+    \"arch\": \"x86_64\",
+    \"size\": 1073741824,
+    \"notes\": {
+      \"C\": \"Phony Fedora look-alike used for testing.\"
+    },
+    \"hidden\": false
+  },
+  {
+    \"os-version\": \"phony-fedora-qcow2-uncompressed\",
+    \"full-name\": \"Phony Fedora qcow2 uncompressed\",
+    \"arch\": \"x86_64\",
+    \"size\": 1073741824,
+    \"notes\": {
+      \"C\": \"Phony Fedora look-alike used for testing.\"
+    },
+    \"hidden\": false
+  },
+  {
+    \"os-version\": \"phony-fedora-no-format\",
+    \"full-name\": \"Phony Fedora\",
+    \"arch\": \"x86_64\",
+    \"size\": 1073741824,
+    \"notes\": {
+      \"C\": \"Phony Fedora look-alike used for testing.\"
+    },
+    \"hidden\": false
+  },
+  {
+    \"os-version\": \"phony-ubuntu\",
+    \"full-name\": \"Phony Ubuntu\",
+    \"arch\": \"x86_64\",
+    \"size\": 536870912,
+    \"notes\": {
+      \"C\": \"Phony Ubuntu look-alike used for testing.\"
+    },
+    \"hidden\": false
+  },
+  {
+    \"os-version\": \"phony-windows\",
+    \"full-name\": \"Phony Windows\",
+    \"arch\": \"x86_64\",
+    \"size\": 536870912,
+    \"notes\": {
+      \"C\": \"Phony Windows look-alike used for testing.\"
+    },
+    \"hidden\": false
+  }
+  ]
+}" ]; then
+    echo "$0: unexpected --list --format json output:"
+    echo "$json_list"
+    exit 1
+fi

builder/test-virt-builder-planner.sh

@@ -0,0 +1,51 @@
+#!/bin/bash -
+# libguestfs virt-builder test script
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+export LANG=C
+set -e
+
+abs_builddir=$(pwd)
+
+export XDG_CONFIG_DIRS="$abs_builddir/test-config"
+
+if [ ! -f fedora.xz -o ! -f fedora.qcow2 -o ! -f fedora.qcow2.xz ]; then
+    echo "$0: test skipped because there is no fedora.xz, fedora.qcow2 or fedora.qcow2.xz in the build directory"
+    exit 77
+fi
+
+if [ "$(../fish/guestfish get-backend)" = "uml" ]; then
+    echo "$0: test skipped because backend is UML"
+    exit 77
+fi
+
+rm -f planner-output
+
+for input in phony-fedora phony-fedora-qcow2 phony-fedora-qcow2-uncompressed phony-fedora-no-format; do
+    for size in none 1G 1.1G 2G; do
+        for format in none raw qcow2; do
+            args="--output planner-output --no-cache --no-check-signature"
+            if [ "$size" != "none" ]; then args="$args --size $size"; fi
+            if [ "$format" != "none" ]; then args="$args --format $format"; fi
+
+            echo $VG ./virt-builder $input $args
+            $VG ./virt-builder $input $args
+        done
+    done
+done
+
+rm planner-output

builder/test-virt-builder.sh

@@ -0,0 +1,115 @@
+#!/bin/bash -
+# libguestfs virt-builder test script
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+export LANG=C
+set -e
+
+abs_builddir=$(pwd)
+
+export XDG_CONFIG_DIRS="$abs_builddir/test-config"
+
+if [ ! -f fedora.xz ]; then
+    echo "$0: test skipped because there is no fedora.xz in the build directory"
+    exit 77
+fi
+
+output=phony-fedora.img
+
+format=qcow2
+if [ "$(../fish/guestfish get-backend)" = "uml" ]; then
+    format=raw
+
+    # XXX We specifically want virt-builder to work with the UML
+    # backend.  However currently it fails with:
+    #   error: uml backend does not support networking
+    # We should be able to make uml have a network backend, but in
+    # the meantime add this:
+    no_network=--no-network
+fi
+
+rm -f $output
+
+# Test as many options as we can!
+#
+# Note we cannot test --install, --run since the phony Fedora doesn't
+# have a real OS inside just some configuration files.  Just about
+# every other option is fair game.
+$VG ./virt-builder phony-fedora \
+    -v --no-cache --no-check-signature $no_network \
+    -o $output --size 2G --format $format \
+    --hostname test.example.com \
+    --timezone Europe/London \
+    --root-password password:123456 \
+    --mkdir /etc/foo/bar/baz \
+    --write '/etc/foo/bar/baz/foo:Hello World' \
+    --upload Makefile:/Makefile \
+    --upload Makefile:/etc/foo/bar/baz \
+    --delete /Makefile \
+    --link /etc/foo/bar/baz/foo:/foo \
+    --link /etc/foo/bar/baz/foo:/foo1:/foo2:/foo3 \
+    --firstboot Makefile --firstboot-command 'echo "hello"' \
+    --firstboot-install "minicom,inkscape"
+
+# Check that some modifications were made.
+$VG ../fish/guestfish --ro -i -a $output > test.out <<EOF
+# Uploaded files
+is-file /etc/foo/bar/baz/Makefile
+cat /etc/foo/bar/baz/foo
+is-symlink /foo
+is-symlink /foo1
+is-symlink /foo2
+is-symlink /foo3
+
+echo -----
+# Hostname
+cat /etc/sysconfig/network | grep HOSTNAME=
+
+echo -----
+# Timezone
+is-file /usr/share/zoneinfo/Europe/London
+is-symlink /etc/localtime
+readlink /etc/localtime
+
+echo -----
+# Password
+is-file /etc/shadow
+cat /etc/shadow | sed -r '/^root:/!d;s,^(root:\\\$6\\\$).*,\\1,g'
+EOF
+
+if [ "$(cat test.out)" != "true
+Hello World
+true
+true
+true
+true
+-----
+HOSTNAME=test.example.com
+-----
+true
+true
+/usr/share/zoneinfo/Europe/London
+-----
+true
+root:\$6\$" ]; then
+    echo "$0: unexpected output:"
+    cat test.out
+    exit 1
+fi
+
+rm $output
+rm test.out

builder/test-website/virt-builder/repos.d/libguestfs.conf.in

@@ -0,0 +1,3 @@
+[libguestfs.org]
+uri=file://@abs_top_srcdir@/builder/website/index.asc
+gpgkey=file://@abs_top_srcdir@/builder/libguestfs.gpg

builder/virt-index-validate.pod

@@ -0,0 +1,92 @@
+=encoding utf8
+
+=head1 NAME
+
+virt-index-validate - Validate virt-builder index file
+
+=head1 SYNOPSIS
+
+ virt-index-validate index
+
+=head1 DESCRIPTION
+
+L<virt-builder(1)> uses an index file to store metadata about templates
+that it knows how to use.  This index file has a specific format which
+virt-index-validate knows how to validate.
+
+Note that virt-index-validate can validate either the signed or
+unsigned index file (ie. either C<index> or C<index.asc>).  It can
+only validate a local file, not a URL.
+
+=head1 OPTIONS
+
+=over 4
+
+=item B<--compat-1.24.0>
+
+Check for compatibility with virt-builder 1.24.0.  (Using this option
+implies I<--compat-1.24.1>, so you don't need to use both.)
+
+In particular:
+
+=over 4
+
+=item *
+
+This version of virt-builder could not handle C<[...]>
+(square brackets) in field names (eg. C<checksum[sha512]=...>).
+
+=item *
+
+It required detached signatures (C<sig=...>).
+
+=back
+
+=item B<--compat-1.24.1>
+
+Check for compatibility with virt-builder E<ge> 1.24.1.
+
+In particular:
+
+=over 4
+
+=item *
+
+This version of virt-builder could not handle C<.> (period) in field
+names or C<,> (comma) in subfield names.
+
+=item *
+
+It could not handle comments appearing in the file.
+
+=back
+
+=item B<--help>
+
+Display help.
+
+=item B<-V>
+
+=item B<--version>
+
+Display version number and exit.
+
+=back
+
+=head1 EXIT STATUS
+
+This program returns 0 if the index file validates, or non-zero if
+there was an error.
+
+=head1 SEE ALSO
+
+L<virt-builder(1)>,
+L<http://libguestfs.org/>.
+
+=head1 AUTHOR
+
+Richard W.M. Jones L<http://people.redhat.com/~rjones/>
+
+=head1 COPYRIGHT
+
+Copyright (C) 2013 Red Hat Inc.

builder/website/.gitignore

@@ -0,0 +1 @@
+*.xz

builder/website/Makefile.am

@@ -0,0 +1,47 @@
+# libguestfs virt-builder tool
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+include $(top_srcdir)/subdir-rules.mk
+
+EXTRA_DIST = \
+	.gitignore \
+	compress.sh \
+	test-guest.sh \
+	validate.sh \
+	README \
+	index \
+	index.asc \
+	centos.sh \
+	centos-*.xz.sig \
+	cirros-*.xz.sig \
+	debian.preseed \
+	debian.sh \
+	debian-*.xz.sig \
+	fedora.sh \
+	fedora-*.xz.sig \
+	rhel.sh \
+	scientificlinux.sh \
+	scientificlinux-*.xz.sig \
+	ubuntu.preseed \
+	ubuntu.sh \
+	ubuntu-*.*.xz.sig
+
+CLEANFILES = *~
+
+# Validates the index file.
+TESTS_ENVIRONMENT = $(top_builddir)/run --test
+TESTS = validate.sh

builder/website/README

@@ -0,0 +1,42 @@
+If you are looking at this file at http://libguestfs.org/download/builder
+-------------------------------------------------------------------------
+
+This directory is used by the libguestfs 'virt-builder' to store the
+clean, signed OS templates used for building new virtual machines.
+
+The index file is the default source URL and links to the other OS
+templates.  It has the canonical URL:
+
+  http://libguestfs.org/download/builder/index.asc
+
+If you are looking at this file in the git repository
+-----------------------------------------------------
+
+libguestfs.git/builder/website/ contains a copy of the website, minus
+the huge OS template files (because of their size, they are stored
+elsewhere and merged into the website when it is uploaded).
+
+When you use the ./run script to run virt-builder without installing,
+the ./run script sets $VIRT_BUILDER_SOURCE to point to this directory.
+If you actually want to use this configuration for anything except
+simple testing, you will have to download one or more OS templates
+from the libguestfs website and put them into the builder/website/
+directory.
+
+ie:
+
+  ./run virt-builder fedora-20
+
+will fail unless you have downloaded fedora-20.xz here.
+
+Fedora guests
+-------------
+
+The general plan for using kickstart and virt-install is outlined
+by Kashyap here:
+
+http://kashyapc.wordpress.com/2011/08/18/unattended-guest-install-with-a-local-kickstart/
+
+If you want to reproduce the builds then the kickstart files are
+located in fedora-<N>.ks and the virt-install + other commands are in
+fedora-<N>.sh.

builder/website/centos-6.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.15 (GNU/Linux)
+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+=Phm4
+-----END PGP SIGNATURE-----

builder/website/centos.sh

@@ -0,0 +1,87 @@
+#!/bin/bash -
+# virt-builder
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+unset CDPATH
+export LANG=C
+set -e
+set -x
+
+if [ $# -ne 1 ]; then
+    echo "$0 VERSION"
+    exit 1
+fi
+
+version=$1
+output=centos-$version
+tmpname=tmp-$(tr -cd 'a-f0-9' < /dev/urandom | head -c 8)
+
+# We rebuild this every time there is a new 6.x release, and bump
+# the revision in the index.
+tree=http://mirror.bytemark.co.uk/centos/$version/os/x86_64/
+
+rm -f $output $output.old $output.xz
+
+# Generate the kickstart to a temporary file.
+ks=$(mktemp)
+cat > $ks <<'EOF'
+install
+text
+reboot
+lang en_US.UTF-8
+keyboard us
+network --bootproto dhcp
+rootpw builder
+firewall --enabled --ssh
+selinux --enforcing
+timezone --utc America/New_York
+bootloader --location=mbr --append="console=tty0 console=ttyS0,115200 rd_NO_PLYMOUTH"
+zerombr
+clearpart --all --initlabel
+part /boot --fstype=ext4 --size=512         --asprimary
+part swap                --size=1024        --asprimary
+part /     --fstype=ext4 --size=1024 --grow --asprimary
+
+# Halt the system once configuration has finished.
+poweroff
+
+%packages
+@core
+%end
+EOF
+
+# Clean up function.
+cleanup ()
+{
+    rm -f $ks
+    virsh undefine $tmpname ||:
+}
+trap cleanup INT QUIT TERM EXIT ERR
+
+virt-install \
+    --name=$tmpname \
+    --ram=2048 \
+    --cpu=host --vcpus=2 \
+    --os-type=linux --os-variant=rhel$version \
+    --initrd-inject=$ks \
+    --extra-args="ks=file:/`basename $ks` console=tty0 console=ttyS0,115200 proxy=$http_proxy" \
+    --disk $(pwd)/$output,size=6 \
+    --location=$tree \
+    --nographics \
+    --noreboot
+
+source $(dirname "$0")/compress.sh $output

builder/website/cirros-0.3.1.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1
+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+=KKLo
+-----END PGP SIGNATURE-----

builder/website/compress.sh

@@ -0,0 +1,38 @@
+#!/bin/bash -
+# virt-builder
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# Common code which syspreps, sparsifies and compresses the templates.
+
+output=$1
+
+# Sysprep (removes logfiles and so on).
+# Note this also touches /.autorelabel so the further installation
+# changes that we make will be labelled properly at first boot.
+virt-sysprep -a $output
+
+# Sparsify.
+mv $output $output.old
+virt-sparsify $output.old $output
+rm $output.old
+
+# Compress.
+xz --best --block-size=16777216 $output
+
+# Result.  These can be copied into the index file directly.
+echo -n compressed_size= ; stat -c %s $output.xz
+echo -n checksum= ; sha512sum $output.xz | awk '{print $1}'

builder/website/debian-6.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.14 (GNU/Linux)
+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+=9ZnB
+-----END PGP SIGNATURE-----

builder/website/debian-7.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.14 (GNU/Linux)
+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+=HZIe
+-----END PGP SIGNATURE-----

builder/website/debian.preseed

@@ -0,0 +1,385 @@
+#### Contents of the preconfiguration file (for wheezy)
+### Localization
+# Preseeding only locale sets language, country and locale.
+d-i debian-installer/locale string en_US
+
+# The values can also be preseeded individually for greater flexibility.
+#d-i debian-installer/language string en
+#d-i debian-installer/country string NL
+#d-i debian-installer/locale string en_GB.UTF-8
+# Optionally specify additional locales to be generated.
+#d-i localechooser/supported-locales multiselect en_US.UTF-8, nl_NL.UTF-8
+
+# Keyboard selection.
+# keymap is an alias for keyboard-configuration/xkb-keymap
+d-i keymap select us
+# d-i keyboard-configuration/toggle select No toggling
+
+### Network configuration
+# Disable network configuration entirely. This is useful for cdrom
+# installations on non-networked devices where the network questions,
+# warning and long timeouts are a nuisance.
+d-i netcfg/enable boolean true
+
+# netcfg will choose an interface that has link if possible. This makes it
+# skip displaying a list if there is more than one interface.
+d-i netcfg/choose_interface select auto
+
+# To pick a particular interface instead:
+#d-i netcfg/choose_interface select eth1
+
+# To set a different link detection timeout (default is 3 seconds).
+# Values are interpreted as seconds.
+#d-i netcfg/link_detection_timeout string 10
+
+# If you have a slow dhcp server and the installer times out waiting for
+# it, this might be useful.
+#d-i netcfg/dhcp_timeout string 60
+#d-i netcfg/dhcpv6_timeout string 60
+
+# If you prefer to configure the network manually, uncomment this line and
+# the static network configuration below.
+#d-i netcfg/disable_autoconfig boolean true
+
+# If you want the preconfiguration file to work on systems both with and
+# without a dhcp server, uncomment these lines and the static network
+# configuration below.
+#d-i netcfg/dhcp_failed note
+#d-i netcfg/dhcp_options select Configure network manually
+
+# Static network configuration.
+#
+# IPv4 example
+#d-i netcfg/get_ipaddress string 192.168.1.42
+#d-i netcfg/get_netmask string 255.255.255.0
+#d-i netcfg/get_gateway string 192.168.1.1
+#d-i netcfg/get_nameservers string 192.168.1.1
+#d-i netcfg/confirm_static boolean true
+#
+# IPv6 example
+#d-i netcfg/get_ipaddress string fc00::2
+#d-i netcfg/get_netmask string ffff:ffff:ffff:ffff::
+#d-i netcfg/get_gateway string fc00::1
+#d-i netcfg/get_nameservers string fc00::1
+#d-i netcfg/confirm_static boolean true
+
+# Any hostname and domain names assigned from dhcp take precedence over
+# values set here. However, setting the values still prevents the questions
+# from being shown, even if values come from dhcp.
+d-i netcfg/get_hostname string unassigned-hostname
+d-i netcfg/get_domain string unassigned-domain
+
+# If you want to force a hostname, regardless of what either the DHCP
+# server returns or what the reverse DNS entry for the IP is, uncomment
+# and adjust the following line.
+#d-i netcfg/hostname string somehost
+
+# Disable that annoying WEP key dialog.
+d-i netcfg/wireless_wep string
+# The wacky dhcp hostname that some ISPs use as a password of sorts.
+#d-i netcfg/dhcp_hostname string radish
+
+# If non-free firmware is needed for the network or other hardware, you can
+# configure the installer to always try to load it, without prompting. Or
+# change to false to disable asking.
+#d-i hw-detect/load_firmware boolean true
+
+### Network console
+# Use the following settings if you wish to make use of the network-console
+# component for remote installation over SSH. This only makes sense if you
+# intend to perform the remainder of the installation manually.
+#d-i anna/choose_modules string network-console
+#d-i network-console/authorized_keys_url string http://10.0.0.1/openssh-key
+#d-i network-console/password password r00tme
+#d-i network-console/password-again password r00tme
+
+### Mirror settings
+# If you select ftp, the mirror/country string does not need to be set.
+#d-i mirror/protocol string ftp
+d-i mirror/country string manual
+d-i mirror/http/hostname string ftp.uk.debian.org
+d-i mirror/http/directory string /debian
+d-i mirror/http/proxy string @CACHE@
+
+# Suite to install.
+#d-i mirror/suite string testing
+# Suite to use for loading installer components (optional).
+#d-i mirror/udeb/suite string testing
+
+### Account setup
+# Skip creation of a root account (normal user account will be able to
+# use sudo).
+#d-i passwd/root-login boolean false
+# Alternatively, to skip creation of a normal user account.
+d-i passwd/make-user boolean false
+
+# Root password, either in clear text
+d-i passwd/root-password password builder
+d-i passwd/root-password-again password builder
+# or encrypted using an MD5 hash.
+#d-i passwd/root-password-crypted password [MD5 hash]
+
+# To create a normal user account.
+#d-i passwd/user-fullname string Debian User
+#d-i passwd/username string debian
+# Normal user's password, either in clear text
+#d-i passwd/user-password password insecure
+#d-i passwd/user-password-again password insecure
+# or encrypted using an MD5 hash.
+#d-i passwd/user-password-crypted password [MD5 hash]
+# Create the first user with the specified UID instead of the default.
+#d-i passwd/user-uid string 1010
+
+# The user account will be added to some standard initial groups. To
+# override that, use this.
+#d-i passwd/user-default-groups string audio cdrom video
+
+### Clock and time zone setup
+# Controls whether or not the hardware clock is set to UTC.
+d-i clock-setup/utc boolean true
+
+# You may set this to any valid setting for $TZ; see the contents of
+# /usr/share/zoneinfo/ for valid values.
+d-i time/zone string US/Eastern
+
+# Controls whether to use NTP to set the clock during the install
+d-i clock-setup/ntp boolean true
+# NTP server to use. The default is almost always fine here.
+#d-i clock-setup/ntp-server string ntp.example.com
+
+### Partitioning
+## Partitioning example
+# If the system has free space you can choose to only partition that space.
+# This is only honoured if partman-auto/method (below) is not set.
+#d-i partman-auto/init_automatically_partition select biggest_free
+
+# Alternatively, you may specify a disk to partition. If the system has only
+# one disk the installer will default to using that, but otherwise the device
+# name must be given in traditional, non-devfs format (so e.g. /dev/hda or
+# /dev/sda, and not e.g. /dev/discs/disc0/disc).
+# For example, to use the first SCSI/SATA hard disk:
+#d-i partman-auto/disk string /dev/sda
+# In addition, you'll need to specify the method to use.
+# The presently available methods are:
+# - regular: use the usual partition types for your architecture
+# - lvm:     use LVM to partition the disk
+# - crypto:  use LVM within an encrypted partition
+d-i partman-auto/method string regular
+
+# If one of the disks that are going to be automatically partitioned
+# contains an old LVM configuration, the user will normally receive a
+# warning. This can be preseeded away...
+d-i partman-lvm/device_remove_lvm boolean true
+# The same applies to pre-existing software RAID array:
+d-i partman-md/device_remove_md boolean true
+# And the same goes for the confirmation to write the lvm partitions.
+d-i partman-lvm/confirm boolean true
+d-i partman-lvm/confirm_nooverwrite boolean true
+
+# You can choose one of the three predefined partitioning recipes:
+# - atomic: all files in one partition
+# - home:   separate /home partition
+# - multi:  separate /home, /usr, /var, and /tmp partitions
+d-i partman-auto/choose_recipe select atomic
+
+# Or provide a recipe of your own...
+# If you have a way to get a recipe file into the d-i environment, you can
+# just point at it.
+#d-i partman-auto/expert_recipe_file string /hd-media/recipe
+
+# If not, you can put an entire recipe into the preconfiguration file in one
+# (logical) line. This example creates a small /boot partition, suitable
+# swap, and uses the rest of the space for the root partition:
+#d-i partman-auto/expert_recipe string                         \
+#      boot-root ::                                            \
+#              40 50 100 ext3                                  \
+#                      $primary{ } $bootable{ }                \
+#                      method{ format } format{ }              \
+#                      use_filesystem{ } filesystem{ ext3 }    \
+#                      mountpoint{ /boot }                     \
+#              .                                               \
+#              500 10000 1000000000 ext3                       \
+#                      method{ format } format{ }              \
+#                      use_filesystem{ } filesystem{ ext3 }    \
+#                      mountpoint{ / }                         \
+#              .                                               \
+#              64 512 300% linux-swap                          \
+#                      method{ swap } format{ }                \
+#              .
+
+# The full recipe format is documented in the file partman-auto-recipe.txt
+# included in the 'debian-installer' package or available from D-I source
+# repository. This also documents how to specify settings such as file
+# system labels, volume group names and which physical devices to include
+# in a volume group.
+
+# This makes partman automatically partition without confirmation, provided
+# that you told it what to do using one of the methods above.
+d-i partman-partitioning/confirm_write_new_label boolean true
+d-i partman/choose_partition select finish
+d-i partman/confirm boolean true
+d-i partman/confirm_nooverwrite boolean true
+
+## Partitioning using RAID
+# The method should be set to "raid".
+#d-i partman-auto/method string raid
+# Specify the disks to be partitioned. They will all get the same layout,
+# so this will only work if the disks are the same size.
+#d-i partman-auto/disk string /dev/sda /dev/sdb
+
+# Next you need to specify the physical partitions that will be used. 
+#d-i partman-auto/expert_recipe string \
+#      multiraid ::                                         \
+#              1000 5000 4000 raid                          \
+#                      $primary{ } method{ raid }           \
+#              .                                            \
+#              64 512 300% raid                             \
+#                      method{ raid }                       \
+#              .                                            \
+#              500 10000 1000000000 raid                    \
+#                      method{ raid }                       \
+#              .
+
+# Last you need to specify how the previously defined partitions will be
+# used in the RAID setup. Remember to use the correct partition numbers
+# for logical partitions. RAID levels 0, 1, 5, 6 and 10 are supported;
+# devices are separated using "#".
+# Parameters are:
+# <raidtype> <devcount> <sparecount> <fstype> <mountpoint> \
+#          <devices> <sparedevices>
+
+#d-i partman-auto-raid/recipe string \
+#    1 2 0 ext3 /                    \
+#          /dev/sda1#/dev/sdb1       \
+#    .                               \
+#    1 2 0 swap -                    \
+#          /dev/sda5#/dev/sdb5       \
+#    .                               \
+#    0 2 0 ext3 /home                \
+#          /dev/sda6#/dev/sdb6       \
+#    .
+
+# For additional information see the file partman-auto-raid-recipe.txt
+# included in the 'debian-installer' package or available from D-I source
+# repository.
+
+# This makes partman automatically partition without confirmation.
+d-i partman-md/confirm boolean true
+d-i partman-partitioning/confirm_write_new_label boolean true
+d-i partman/choose_partition select finish
+d-i partman/confirm boolean true
+d-i partman/confirm_nooverwrite boolean true
+
+## Controlling how partitions are mounted
+# The default is to mount by UUID, but you can also choose "traditional" to
+# use traditional device names, or "label" to try filesystem labels before
+# falling back to UUIDs.
+#d-i partman/mount_style select uuid
+
+### Base system installation
+# Configure APT to not install recommended packages by default. Use of this
+# option can result in an incomplete system and should only be used by very
+# experienced users.
+#d-i base-installer/install-recommends boolean false
+
+# The kernel image (meta) package to be installed; "none" can be used if no
+# kernel is to be installed.
+#d-i base-installer/kernel/image string linux-image-486
+
+### Apt setup
+# You can choose to install non-free and contrib software.
+#d-i apt-setup/non-free boolean true
+#d-i apt-setup/contrib boolean true
+# Uncomment this if you don't want to use a network mirror.
+#d-i apt-setup/use_mirror boolean false
+# Select which update services to use; define the mirrors to be used.
+# Values shown below are the normal defaults.
+#d-i apt-setup/services-select multiselect security, volatile
+#d-i apt-setup/security_host string security.debian.org
+#d-i apt-setup/volatile_host string volatile.debian.org
+
+# Additional repositories, local[0-9] available
+#d-i apt-setup/local0/repository string \
+#       http://local.server/debian stable main
+#d-i apt-setup/local0/comment string local server
+# Enable deb-src lines
+#d-i apt-setup/local0/source boolean true
+# URL to the public key of the local repository; you must provide a key or
+# apt will complain about the unauthenticated repository and so the
+# sources.list line will be left commented out
+#d-i apt-setup/local0/key string http://local.server/key
+
+# By default the installer requires that repositories be authenticated
+# using a known gpg key. This setting can be used to disable that
+# authentication. Warning: Insecure, not recommended.
+#d-i debian-installer/allow_unauthenticated boolean true
+
+### Package selection
+#tasksel tasksel/first multiselect standard, web-server
+# If the desktop task is selected, install the kde and xfce desktops
+# instead of the default gnome desktop.
+#tasksel tasksel/desktop multiselect kde, xfce
+
+# Individual additional packages to install
+#d-i pkgsel/include string openssh-server build-essential
+# Whether to upgrade packages after debootstrap.
+# Allowed values: none, safe-upgrade, full-upgrade
+#d-i pkgsel/upgrade select none
+
+# Some versions of the installer can report back on what software you have
+# installed, and what software you use. The default is not to report back,
+# but sending reports helps the project determine what software is most
+# popular and include it on CDs.
+popularity-contest popularity-contest/participate boolean false
+
+### Finishing up the installation
+# During installations from serial console, the regular virtual consoles
+# (VT1-VT6) are normally disabled in /etc/inittab. Uncomment the next
+# line to prevent this.
+#d-i finish-install/keep-consoles boolean true
+
+# Avoid that last message about the install being complete.
+d-i finish-install/reboot_in_progress note
+
+# This will prevent the installer from ejecting the CD during the reboot,
+# which is useful in some situations.
+#d-i cdrom-detect/eject boolean false
+
+# This is how to make the installer shutdown when finished, but not
+# reboot into the installed system.
+#d-i debian-installer/exit/halt boolean true
+# This will power off the machine instead of just halting it.
+#d-i debian-installer/exit/poweroff boolean true
+
+### Preseeding other packages
+# Depending on what software you choose to install, or if things go wrong
+# during the installation process, it's possible that other questions may
+# be asked. You can preseed those too, of course. To get a list of every
+# possible question that could be asked during an install, do an
+# installation, and then run these commands:
+#   debconf-get-selections --installer > file
+#   debconf-get-selections >> file
+
+
+#### Advanced options
+### Running custom commands during the installation
+# d-i preseeding is inherently not secure. Nothing in the installer checks
+# for attempts at buffer overflows or other exploits of the values of a
+# preconfiguration file like this one. Only use preconfiguration files from
+# trusted locations! To drive that home, and because it's generally useful,
+# here's a way to run any shell command you'd like inside the installer,
+# automatically.
+
+# This first command is run as early as possible, just after
+# preseeding is read.
+#d-i preseed/early_command string anna-install some-udeb
+# This command is run immediately before the partitioner starts. It may be
+# useful to apply dynamic partitioner preseeding that depends on the state
+# of the disks (which may not be visible when preseed/early_command runs).
+#d-i partman/early_command \
+#       string debconf-set partman-auto/disk "$(list-devices disk | head -n1)"
+# This command is run just before the install finishes, but when there is
+# still a usable /target directory. You can chroot to /target and use it
+# directly, or use the apt-install and in-target commands to easily install
+# packages and run commands in the target system.
+#d-i preseed/late_command string apt-install zsh; in-target chsh -s /bin/zsh

builder/website/debian.sh

@@ -0,0 +1,77 @@
+#!/bin/bash -
+# libguestfs
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# The basic plan comes from:
+# http://honk.sigxcpu.org/con/Preseeding_Debian_virtual_machines_with_virt_install.html
+# https://wiki.debian.org/DebianInstaller/Preseed
+
+unset CDPATH
+export LANG=C
+set -e
+set -x
+
+if [ $# -ne 2 ]; then
+    echo "$0 VERSION DIST"
+    exit 1
+fi
+
+# Some configuration.
+version=$1
+dist=$2
+location=http://ftp.uk.debian.org/debian/dists/$dist/main/installer-amd64
+output=debian-$version
+tmpname=tmp-$(tr -cd 'a-f0-9' < /dev/urandom | head -c 8)
+
+rm -f $output $output.old $output.xz
+
+# Make sure it's being run from the correct directory.
+if [ ! -f debian.preseed ]; then
+    echo "You are running this script from the wrong directory."
+    exit 1
+fi
+
+# Note that the injected file must be called "/preseed.cfg" in order
+# for d-i to pick it up.
+sed -e "s,@CACHE@,$http_proxy,g" < debian.preseed > preseed.cfg
+
+# Clean up function.
+cleanup ()
+{
+    rm -f preseed.cfg
+    virsh undefine $tmpname ||:
+}
+trap cleanup INT QUIT TERM EXIT ERR
+
+virt-install \
+    --name=$tmpname \
+    --ram=1024 \
+    --os-type=linux --os-variant=debian$dist \
+    --initrd-inject=$(pwd)/preseed.cfg \
+    --extra-args="auto console=tty0 console=ttyS0,115200" \
+    --disk=$(pwd)/$output,size=4 \
+    --location=$location \
+    --nographics \
+    --noreboot
+
+# Remove apt proxy configuration (thanks: Daniel Miranda).
+guestfish -a $output -i <<EOF
+  rm /etc/apt/apt.conf
+  touch /etc/apt/apt.conf
+EOF
+
+source $(dirname "$0")/compress.sh $output

builder/website/fedora-18.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.14 (GNU/Linux)
+
+iQIcBAABAgAGBQJSSt3OAAoJEJFzj3Pht2ig8x4QAKoQVfMWxXiFvV3lrHUVsjpG
+n+fDcoFJqMKeE/kMLhmlmzF+QDz1qRs3Xlypy7C8B5ii5jbFVCv6q5edeEWrVYE3
+HZOeNgUgmVJEiCSgScEXPpVMAOL/zppJ2PjAbg7CNLHQ64HweNkv6F1ePg4NCIoA
+Op5yIvzm0gUHN9ONfsJRBLlZGQRu8bdsNhdYOAr3rmdxhuuunIi/17qNrT6eaWFO
+2pnGFIyYMn9q2ReXBG8mFIkHlac9ZpT2sR7EKY3LBt0FvGz0qQrNM+9M9bQBwbIQ
+dD/IRfSUUQqjCLYLqiFvFVC/pqAAcR1G2rQ20jRLPkpSUFceFL/K5ueI2flEPEJk
+mF6WR4MsN4lX4w0iiJvpWwE0jqlLVQ1GnhoE2GDZEHgkth/4l+0pN0Jos8OKINDJ
+wB4W1Xc2aXNXaD1JAaebu+CthZNnFEXpa5TrXMFAOnBY4oQ4DgOt/ad1s9Ju4zLX
+EI+Zn0Q++l+iMyU2InXnTHoaTagqKqtngvHWGmSuK55dM8jW9HoYsjZZl0oC0lVz
+GbXQ/1t1loTBqh+crr4kcP0oKvRFT9YPASadUVThmeYlxOyhvQ0e30IBdz0Te1OR
+rqfymVGR8NsGdLW+jCKOfbLEaYShTksTnUmr+yF5w5D2uzZHqZasE7cpwPXAEhuZ
+TF7ZoSqz1utSQF9/xBnz
+=L4x6
+-----END PGP SIGNATURE-----

builder/website/fedora-19.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.14 (GNU/Linux)
+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+=l9GJ
+-----END PGP SIGNATURE-----

builder/website/fedora-20.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.15 (GNU/Linux)
+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+=asUm
+-----END PGP SIGNATURE-----

builder/website/fedora.sh

@@ -0,0 +1,85 @@
+#!/bin/bash -
+# virt-builder
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+# This script was used to create the Fedora templates used by
+# virt-builder.
+
+unset CDPATH
+export LANG=C
+set -e
+set -x
+
+if [ $# -ne 1 ]; then
+    echo "$0 VERSION"
+    exit 1
+fi
+
+version=$1
+tree=http://mirror.bytemark.co.uk/fedora/linux/releases/$version/Fedora/x86_64/os/
+output=fedora-$version
+tmpname=tmp-$(tr -cd 'a-f0-9' < /dev/urandom | head -c 8)
+
+rm -f $output $output.old $output.xz
+
+# Generate the kickstart to a temporary file.
+ks=$(mktemp)
+cat > $ks <<'EOF'
+install
+text
+reboot
+lang en_US.UTF-8
+keyboard us
+network --bootproto dhcp
+rootpw builder
+firewall --enabled --ssh
+selinux --enforcing
+timezone --utc America/New_York
+bootloader --location=mbr --append="console=tty0 console=ttyS0,115200 rd_NO_PLYMOUTH"
+zerombr
+clearpart --all --initlabel
+autopart --type=plain
+
+# Halt the system once configuration has finished.
+poweroff
+
+%packages
+@core
+%end
+EOF
+
+# Clean up function.
+cleanup ()
+{
+    rm -f $ks
+    virsh undefine $tmpname ||:
+}
+trap cleanup INT QUIT TERM EXIT ERR
+
+virt-install \
+    --name=$tmpname \
+    --ram=2048 \
+    --cpu=host --vcpus=2 \
+    --os-type=linux --os-variant=fedora18 \
+    --initrd-inject=$ks \
+    --extra-args="ks=file:/`basename $ks` console=tty0 console=ttyS0,115200 proxy=$http_proxy" \
+    --disk $(pwd)/$output,size=6 \
+    --location=$tree \
+    --nographics \
+    --noreboot
+
+source $(dirname "$0")/compress.sh $output

builder/website/index

@@ -0,0 +1,280 @@
+[centos-6]
+name=CentOS 6.5
+revision=5
+osinfo=centos6.5
+arch=x86_64
+file=centos-6.xz
+sig=centos-6.xz.sig
+checksum=8f08505ec708b04a25bbd21816cdda8a5eff8bbf85fec3caff6d7a9a7bfba07dafa707e60772f5676c437a6d3381cd26b4e48bc82a232bc940ca9dcddcff7a85
+format=raw
+size=6442450944
+compressed_size=197139324
+expand=/dev/sda3
+notes=CentOS 6.5
+ 
+ This CentOS image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/centos.sh
+ 
+ Note that `virt-builder centos-6' will always install the latest
+ 6.x release.
+
+[cirros-0.3.1]
+name=CirrOS 0.3.1
+arch=x86_64
+file=cirros-0.3.1.xz
+sig=cirros-0.3.1.xz.sig
+checksum=096209f00eb62d5722accf3d22ca3a4ee5baaac6d7d4ce0be93b56bbd1c8ab2e3eb4f5db1deffcb570e2c3d41f4d721798a1c499675346cee9546554a4b10388
+format=raw
+size=41126400
+compressed_size=11419004
+expand=/dev/sda1
+notes=CirrOS 0.3.1
+ 
+ CirrOS is a commonly used test image, ideal because it is very
+ small and boots into a minimally usable Linux system.
+ 
+ Note this is not a real Linux distribution, and several virt-builder
+ features such as installing packages will not (and cannot) work.
+ 
+ This CirrOS image comes from https://launchpad.net/cirros
+
+[debian-6]
+name=Debian 6 (Squeeze)
+osinfo=debian6
+arch=x86_64
+file=debian-6.xz
+revision=2
+sig=debian-6.xz.sig
+checksum=bff9c28da0375fde65fa238d7a2ea644cbfad0ea3246783a2f44a98f2374850987679c3f1032a632d3c6238de8d9e43291d07a82efc1e824945000e206b9f6cc
+format=raw
+size=4294967296
+compressed_size=139615908
+expand=/dev/sda1
+notes=Debian 6 (Squeeze).
+ 
+ This is a default Debian install.
+ 
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/debian.preseed
+ builder/website/debian.sh
+ 
+ This image is so very minimal that it only includes an ssh
+ server and no virtual consoles.  To enable virtual consoles
+ use this virt-builder option:
+ 
+ virt-builder debian-6 \
+     --edit '/etc/inittab: s,^#([1-9].*respawn.*/sbin/getty.*),$1,'
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[debian-7]
+name=Debian 7 (Wheezy)
+osinfo=debian7
+arch=x86_64
+file=debian-7.xz
+revision=2
+sig=debian-7.xz.sig
+checksum=c980a7d878c086b14619b3b9f644ab131c1f88b87729062f2832de12a938ba9e5a511c49402a9d02b740a30876f51889d20e7d0ed4997755f542650b8485f013
+format=raw
+size=4294967296
+compressed_size=150734028
+expand=/dev/sda1
+notes=Debian 7 (Wheezy).
+ 
+ This is a default Debian install.
+ 
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/debian.preseed
+ builder/website/debian.sh
+ 
+ This image is so very minimal that it only includes an ssh
+ server and no virtual consoles.  To enable virtual consoles
+ use this virt-builder option:
+ 
+ virt-builder debian-7 \
+     --edit '/etc/inittab: s,^#([1-9].*respawn.*/sbin/getty.*),$1,'
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[fedora-18]
+name=Fedora® 18
+osinfo=fedora18
+arch=x86_64
+file=fedora-18.xz
+sig=fedora-18.xz.sig
+checksum=12435775193b69f6e22658aaa001d4ca9b15fd68a04b4b7e9be20b3b517e857e417dc3268a302979d4a702b20f25754025f7ae0e9fb7088419a4ca1669585e6f
+format=raw
+size=6442450944
+compressed_size=148947524
+expand=/dev/sda3
+notes=Fedora 18.
+ 
+ This Fedora image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/fedora.sh
+ 
+ Fedora and the Infinity design logo are trademarks of Red Hat, Inc.
+ Source and further information is available from http://fedoraproject.org/
+
+[fedora-19]
+name=Fedora® 19
+osinfo=fedora19
+arch=x86_64
+file=fedora-19.xz
+sig=fedora-19.xz.sig
+checksum=6228792b15df695260eea5530770e22b1bce40a1986410252928adbe4131ab85c031bcf8892736b63240fd585e39a5f44ed7770ba0dc1e6d8de6834cccee3767
+format=raw
+size=4294967296
+compressed_size=172190964
+expand=/dev/sda3
+notes=Fedora 19.
+ 
+ This Fedora image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/fedora.sh
+ 
+ Fedora and the Infinity design logo are trademarks of Red Hat, Inc.
+ Source and further information is available from http://fedoraproject.org/
+
+[fedora-20]
+name=Fedora® 20
+osinfo=fedora20
+arch=x86_64
+file=fedora-20.xz
+sig=fedora-20.xz.sig
+checksum=fadde95d55323d1d24ad8a968ac0b5b1f94148e8caa8c96e596b3c71a57569f7b6e18767dbe9b32822bf6caecde6e45f89277f85970569079b1f65ceaf6ed7ba
+format=raw
+size=4294967296
+compressed_size=182477140
+expand=/dev/sda3
+notes=Fedora 20.
+ 
+ This Fedora image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/fedora.sh
+ 
+ Fedora and the Infinity design logo are trademarks of Red Hat, Inc.
+ Source and further information is available from http://fedoraproject.org/
+
+[scientificlinux-6]
+name=Scientific Linux 6.5
+revision=5
+osinfo=centos6.5
+arch=x86_64
+file=scientificlinux-6.xz
+sig=scientificlinux-6.xz.sig
+checksum=be42b0e97d256ab5476079fe71411bebf59abe9c6ff4a7d27330aa5383fac9507472c06d11ef061d3c0e6695bec5ac9cfb7fbfd86fdbb5649e5cb535e2ac5b88
+format=raw
+size=6442450944
+compressed_size=191667880
+expand=/dev/sda3
+notes=Scientific Linux 6.5
+ 
+ This Scientific Linux image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/scientificlinux.sh
+ 
+ Note that `virt-builder scientificlinux-6' will always install the
+ latest 6.x release.
+
+[ubuntu-10.04]
+name=Ubuntu 10.04 (Lucid)
+osinfo=ubuntulucid
+arch=x86_64
+file=ubuntu-10.04.xz
+sig=ubuntu-10.04.xz.sig
+checksum=9e322782bc77c740ce956d57d0d89ec9ac9f2b890c474ac937f400db848df3e164683eaf4631b989f8b4771f64e0c0972452d1555a15c65714b5ceefb295fb7e
+format=raw
+size=4294967296
+compressed_size=149728112
+expand=/dev/sda1
+notes=Ubuntu 10.04 (Lucid).
+ 
+ This is a minimal Ubuntu 10.04 (Lucid) install.
+ 
+ Only the openssh-server package is selected in tasksel.
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/ubuntu.preseed
+ builder/website/ubuntu.sh
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[ubuntu-12.04]
+name=Ubuntu 12.04 (Precise)
+osinfo=ubuntuprecise
+arch=x86_64
+file=ubuntu-12.04.xz
+sig=ubuntu-12.04.xz.sig
+checksum=15eab4610a44bf28423c08982cec47f6c3d43f29834791440249916ed76cc2dfeaf0405fddc8627086257bbbdaa4016c8982ad9b269f57f8f625b0e70d09e4e0
+format=raw
+size=4294967296
+compressed_size=168593316
+expand=/dev/sda1
+notes=Ubuntu 12.04 (Precise).
+ 
+ This is a minimal Ubuntu 12.04 (Precise) install.
+ 
+ Only the openssh-server package is selected in tasksel.
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/ubuntu.preseed
+ builder/website/ubuntu.sh
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[ubuntu-13.10]
+name=Ubuntu 13.10 (Saucy)
+osinfo=ubuntusaucy
+arch=x86_64
+file=ubuntu-13.10.xz
+sig=ubuntu-13.10.xz.sig
+checksum=841876f027c63229a0aaac4540ba80d23e56d211138987e3d8187cacb04bc801d144a9831d842fc04aea557fc0c690c812c045ed440123b1d616e61ab2d56049
+format=raw
+size=4294967296
+compressed_size=196481392
+expand=/dev/sda1
+notes=Ubuntu 13.10 (Saucy).
+ 
+ This is a minimal Ubuntu 13.10 (Saucy) install.
+ 
+ Only the openssh-server package is selected in tasksel.
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/ubuntu.preseed
+ builder/website/ubuntu.sh
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"

builder/website/index.asc

@@ -0,0 +1,300 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA1
+
+[centos-6]
+name=CentOS 6.5
+revision=5
+osinfo=centos6.5
+arch=x86_64
+file=centos-6.xz
+sig=centos-6.xz.sig
+checksum=8f08505ec708b04a25bbd21816cdda8a5eff8bbf85fec3caff6d7a9a7bfba07dafa707e60772f5676c437a6d3381cd26b4e48bc82a232bc940ca9dcddcff7a85
+format=raw
+size=6442450944
+compressed_size=197139324
+expand=/dev/sda3
+notes=CentOS 6.5
+ 
+ This CentOS image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/centos.sh
+ 
+ Note that `virt-builder centos-6' will always install the latest
+ 6.x release.
+
+[cirros-0.3.1]
+name=CirrOS 0.3.1
+arch=x86_64
+file=cirros-0.3.1.xz
+sig=cirros-0.3.1.xz.sig
+checksum=096209f00eb62d5722accf3d22ca3a4ee5baaac6d7d4ce0be93b56bbd1c8ab2e3eb4f5db1deffcb570e2c3d41f4d721798a1c499675346cee9546554a4b10388
+format=raw
+size=41126400
+compressed_size=11419004
+expand=/dev/sda1
+notes=CirrOS 0.3.1
+ 
+ CirrOS is a commonly used test image, ideal because it is very
+ small and boots into a minimally usable Linux system.
+ 
+ Note this is not a real Linux distribution, and several virt-builder
+ features such as installing packages will not (and cannot) work.
+ 
+ This CirrOS image comes from https://launchpad.net/cirros
+
+[debian-6]
+name=Debian 6 (Squeeze)
+osinfo=debian6
+arch=x86_64
+file=debian-6.xz
+revision=2
+sig=debian-6.xz.sig
+checksum=bff9c28da0375fde65fa238d7a2ea644cbfad0ea3246783a2f44a98f2374850987679c3f1032a632d3c6238de8d9e43291d07a82efc1e824945000e206b9f6cc
+format=raw
+size=4294967296
+compressed_size=139615908
+expand=/dev/sda1
+notes=Debian 6 (Squeeze).
+ 
+ This is a default Debian install.
+ 
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/debian.preseed
+ builder/website/debian.sh
+ 
+ This image is so very minimal that it only includes an ssh
+ server and no virtual consoles.  To enable virtual consoles
+ use this virt-builder option:
+ 
+ virt-builder debian-6 \
+     --edit '/etc/inittab: s,^#([1-9].*respawn.*/sbin/getty.*),$1,'
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[debian-7]
+name=Debian 7 (Wheezy)
+osinfo=debian7
+arch=x86_64
+file=debian-7.xz
+revision=2
+sig=debian-7.xz.sig
+checksum=c980a7d878c086b14619b3b9f644ab131c1f88b87729062f2832de12a938ba9e5a511c49402a9d02b740a30876f51889d20e7d0ed4997755f542650b8485f013
+format=raw
+size=4294967296
+compressed_size=150734028
+expand=/dev/sda1
+notes=Debian 7 (Wheezy).
+ 
+ This is a default Debian install.
+ 
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/debian.preseed
+ builder/website/debian.sh
+ 
+ This image is so very minimal that it only includes an ssh
+ server and no virtual consoles.  To enable virtual consoles
+ use this virt-builder option:
+ 
+ virt-builder debian-7 \
+     --edit '/etc/inittab: s,^#([1-9].*respawn.*/sbin/getty.*),$1,'
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[fedora-18]
+name=Fedora® 18
+osinfo=fedora18
+arch=x86_64
+file=fedora-18.xz
+sig=fedora-18.xz.sig
+checksum=12435775193b69f6e22658aaa001d4ca9b15fd68a04b4b7e9be20b3b517e857e417dc3268a302979d4a702b20f25754025f7ae0e9fb7088419a4ca1669585e6f
+format=raw
+size=6442450944
+compressed_size=148947524
+expand=/dev/sda3
+notes=Fedora 18.
+ 
+ This Fedora image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/fedora.sh
+ 
+ Fedora and the Infinity design logo are trademarks of Red Hat, Inc.
+ Source and further information is available from http://fedoraproject.org/
+
+[fedora-19]
+name=Fedora® 19
+osinfo=fedora19
+arch=x86_64
+file=fedora-19.xz
+sig=fedora-19.xz.sig
+checksum=6228792b15df695260eea5530770e22b1bce40a1986410252928adbe4131ab85c031bcf8892736b63240fd585e39a5f44ed7770ba0dc1e6d8de6834cccee3767
+format=raw
+size=4294967296
+compressed_size=172190964
+expand=/dev/sda3
+notes=Fedora 19.
+ 
+ This Fedora image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/fedora.sh
+ 
+ Fedora and the Infinity design logo are trademarks of Red Hat, Inc.
+ Source and further information is available from http://fedoraproject.org/
+
+[fedora-20]
+name=Fedora® 20
+osinfo=fedora20
+arch=x86_64
+file=fedora-20.xz
+sig=fedora-20.xz.sig
+checksum=fadde95d55323d1d24ad8a968ac0b5b1f94148e8caa8c96e596b3c71a57569f7b6e18767dbe9b32822bf6caecde6e45f89277f85970569079b1f65ceaf6ed7ba
+format=raw
+size=4294967296
+compressed_size=182477140
+expand=/dev/sda3
+notes=Fedora 20.
+ 
+ This Fedora image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/fedora.sh
+ 
+ Fedora and the Infinity design logo are trademarks of Red Hat, Inc.
+ Source and further information is available from http://fedoraproject.org/
+
+[scientificlinux-6]
+name=Scientific Linux 6.5
+revision=5
+osinfo=centos6.5
+arch=x86_64
+file=scientificlinux-6.xz
+sig=scientificlinux-6.xz.sig
+checksum=be42b0e97d256ab5476079fe71411bebf59abe9c6ff4a7d27330aa5383fac9507472c06d11ef061d3c0e6695bec5ac9cfb7fbfd86fdbb5649e5cb535e2ac5b88
+format=raw
+size=6442450944
+compressed_size=191667880
+expand=/dev/sda3
+notes=Scientific Linux 6.5
+ 
+ This Scientific Linux image contains only unmodified @Core group packages.
+ 
+ It is thus very minimal.  The kickstart and install script can be
+ found in the libguestfs source tree:
+ 
+ builder/website/scientificlinux.sh
+ 
+ Note that `virt-builder scientificlinux-6' will always install the
+ latest 6.x release.
+
+[ubuntu-10.04]
+name=Ubuntu 10.04 (Lucid)
+osinfo=ubuntulucid
+arch=x86_64
+file=ubuntu-10.04.xz
+sig=ubuntu-10.04.xz.sig
+checksum=9e322782bc77c740ce956d57d0d89ec9ac9f2b890c474ac937f400db848df3e164683eaf4631b989f8b4771f64e0c0972452d1555a15c65714b5ceefb295fb7e
+format=raw
+size=4294967296
+compressed_size=149728112
+expand=/dev/sda1
+notes=Ubuntu 10.04 (Lucid).
+ 
+ This is a minimal Ubuntu 10.04 (Lucid) install.
+ 
+ Only the openssh-server package is selected in tasksel.
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/ubuntu.preseed
+ builder/website/ubuntu.sh
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[ubuntu-12.04]
+name=Ubuntu 12.04 (Precise)
+osinfo=ubuntuprecise
+arch=x86_64
+file=ubuntu-12.04.xz
+sig=ubuntu-12.04.xz.sig
+checksum=15eab4610a44bf28423c08982cec47f6c3d43f29834791440249916ed76cc2dfeaf0405fddc8627086257bbbdaa4016c8982ad9b269f57f8f625b0e70d09e4e0
+format=raw
+size=4294967296
+compressed_size=168593316
+expand=/dev/sda1
+notes=Ubuntu 12.04 (Precise).
+ 
+ This is a minimal Ubuntu 12.04 (Precise) install.
+ 
+ Only the openssh-server package is selected in tasksel.
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/ubuntu.preseed
+ builder/website/ubuntu.sh
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+
+[ubuntu-13.10]
+name=Ubuntu 13.10 (Saucy)
+osinfo=ubuntusaucy
+arch=x86_64
+file=ubuntu-13.10.xz
+sig=ubuntu-13.10.xz.sig
+checksum=841876f027c63229a0aaac4540ba80d23e56d211138987e3d8187cacb04bc801d144a9831d842fc04aea557fc0c690c812c045ed440123b1d616e61ab2d56049
+format=raw
+size=4294967296
+compressed_size=196481392
+expand=/dev/sda1
+notes=Ubuntu 13.10 (Saucy).
+ 
+ This is a minimal Ubuntu 13.10 (Saucy) install.
+ 
+ Only the openssh-server package is selected in tasksel.
+ The preseed and virt-install scripts that produced this image
+ can be found in the libguestfs source tree:
+ 
+ builder/website/ubuntu.preseed
+ builder/website/ubuntu.sh
+ 
+ This image does not contain SSH host keys.  To regenerate them use:
+ 
+ --firstboot-command "dpkg-reconfigure openssh-server"
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1
+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+=Jrpl
+-----END PGP SIGNATURE-----

builder/website/rhel.sh

@@ -0,0 +1,175 @@
+#!/bin/bash -
+# virt-builder
+# Copyright (C) 2013 Red Hat Inc.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+unset CDPATH
+export LANG=C
+set -e
+set -x
+
+# Hack for RWMJ
+unset http_proxy
+
+if [ $# -ne 1 ]; then
+    echo "$0 VERSION"
+    exit 1
+fi
+
+version=$1
+output=rhel-$version
+tmpname=tmp-$(tr -cd 'a-f0-9' < /dev/urandom | head -c 8)
+
+case $version in
+    5.*)
+        major=5
+        minor=`echo $version | awk -F. '{print $2}'`
+        topurl=http://download.devel.redhat.com/released/RHEL-$major-Server/U$minor
+        tree=$topurl/x86_64/os
+        srpms=$topurl/source/SRPMS
+        bootfs=ext2
+        ;;
+    6.*)
+        major=6
+        topurl=http://download.devel.redhat.com/released/RHEL-$major/$version
+        tree=$topurl/Server/x86_64/os
+        srpms=$topurl/source/SRPMS
+        optional=$topurl/Server/optional/x86_64/os
+        optionalsrpms=$topurl/Server/optional/source/SRPMS
+        bootfs=ext4
+        ;;
+    7beta1)
+        major=7
+        topurl=http://download.devel.redhat.com/released/RHEL-7/7.0-Beta-1
+        tree=$topurl/Server/x86_64/os
+        srpms=$topurl/source/SRPMS
+        optional=$topurl/Server/optional/x86_64/os
+        optionalsrpms=$topurl/Server/optional/source/SRPMS
+        bootfs=ext4
+        ;;
+    *)
+        echo "$0: version $version not supported by this script yet"
+        exit 1
+esac
+
+rm -f $output $output.old $output.xz
+
+# Generate the kickstart to a temporary file.
+ks=$(mktemp)
+cat > $ks <<'EOF'
+install
+text
+lang en_US.UTF-8
+keyboard us
+network --bootproto dhcp
+rootpw builder
+firewall --enabled --ssh
+selinux --enforcing
+timezone --utc America/New_York
+EOF
+
+if [ $major -eq 5 ]; then
+cat >> $ks <<EOF
+key --skip
+EOF
+fi
+
+cat >> $ks <<EOF
+bootloader --location=mbr --append="console=tty0 console=ttyS0,115200 rd_NO_PLYMOUTH"
+zerombr
+clearpart --all --initlabel
+part /boot --fstype=$bootfs --size=512         --asprimary
+part swap                   --size=1024        --asprimary
+part /     --fstype=ext4    --size=1024 --grow --asprimary
+
+# Halt the system once configuration has finished.
+poweroff
+
+%packages
+@core
+EOF
+
+# RHEL 5 didn't understand the %end directive, but RHEL >= 6
+# requires it.
+if [ $major -ge 6 ]; then
+cat >> $ks <<EOF
+%end
+EOF
+fi
+
+# Yum configuration.
+yum=$(mktemp)
+cat > $yum <<EOF
+[rhel$major]
+name=RHEL $major Server
+baseurl=$tree
+enabled=1
+gpgcheck=0
+keepcache=0
+
+[rhel$major-source]
+name=RHEL $major Server Source
+baseurl=$srpms
+enabled=0
+gpgcheck=0
+keepcache=0
+EOF
+
+if [ -n "$optional" ]; then
+cat >> $yum <<EOF
+[rhel$major-optional]
+name=RHEL $major Server Optional
+baseurl=$optional
+enabled=1
+gpgcheck=0
+keepcache=0
+
+[rhel$major-optional-source]
+name=RHEL $major Server Optional
+baseurl=$optionalsrpms
+enabled=0
+gpgcheck=0
+keepcache=0
+EOF
+fi
+
+# Clean up function.
+cleanup ()
+{
+    rm -f $ks
+    rm -f $yum
+    virsh undefine $tmpname ||:
+}
+trap cleanup INT QUIT TERM EXIT ERR
+
+virt-install \
+    --name=$tmpname \
+    --ram=2048 \
+    --cpu=host --vcpus=2 \
+    --os-type=linux --os-variant=rhel$major \
+    --initrd-inject=$ks \
+    --extra-args="ks=file:/`basename $ks` console=tty0 console=ttyS0,115200" \
+    --disk $(pwd)/$output,size=6 \
+    --location=$tree \
+    --nographics \
+    --noreboot
+
+# We have to replace yum config so it doesn't try to use RHN (it
+# won't be registered).
+guestfish --rw -a $output -m /dev/sda3 \
+  upload $yum /etc/yum.repos.d/download.devel.redhat.com.repo
+
+source $(dirname "$0")/compress.sh $output

builder/website/scientificlinux-6.xz.sig

@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1
+
+iQIcBAABAgAGBQJTBw3vAAoJEJFzj3Pht2igXz0P/jL5R6bgfiLtmq0cjajjHO73
+xEAudM1CrdeeU+1Te8WSw0gZc3fa0mXsGuJGqwsvg8kxn5DnXdAifCcbNo2PuVa5
+VTzZL5FaIlXwc4w9e4Mmo9La7di8MpKRbyictzjkMniiptERT7aslQSjZBp38nZU
+eYGKA9qgrXGsYReoDbQEA3znRzhRbtF0Jb6PZ1u6FrDZ7vVDc0P4dImqMNXRlh7q
+ecOR+eIRp6OXaPPs0xzsCMPvuJfi3tSwT+xZYySIK83JcEFiFuYWA7Zs1nVDGSEV
+vv7aJ3fMH70upmsVTI2ynboD40JvrrOw7fgunGa5KyMeS8obWx8VAWEWb1mzAkQA
+gsMUu1Z0lylTSKUBQkMT378jBUHSN1S44ZUAlkn2EFyxkpEqrJt/joG2tlVxCWYZ
+OMEmLzs8iRJ0uxT4xfNzW2nXFfmIrXTZF3VIUFHphKFr7+w/mYRaAzdGLde9XFle
+L23GJ1LR3udVCNQTyegbKrb7lGve4v1DDSYgjHufyrCtHuD5S2vx2fPqo9iE8I81
+mpBxnmJh/LAs809l34Oc9ZPS9neKj3PXGZyzymoqTUkObL4PQTzB4Jz0DU3WEBSN
+k2BnCteMz7dtph3qtPyst30z8W9MlIhK04BgS/e/wd9645jUwivLdXW8TVzlCdUS
+GVORiRcQInvtTB7Q3jEO
+=AvvG
+-----END PGP SIGNATURE-----