xen-4.20.1_02-160000.1.2

- Update to Xen 4.20.1 bug fix release (jsc#PED-8907)
  * No upstream changelog found in sources or webpage
- bsc#1246112 - VUL-0: xen: More AMD transient execution attacks
  (XSA-471)
  Patches contained in new tarball for 4.20.1
- Drop patches contained in new tarball
  67c818d4-x86-log-unhandled-mem-accesses-for-PVH-dom0.patch
  67c818d5-x86-fixup-p2m-page-faults-for-PVH-dom0.patch
  67c818d6-x86-PVH-dom0-correct-iomem_caps-bound.patch
  67c818d7-x86-IOMMU-account-for-IOMEM-caps-when-populating.patch
  67c818d8-x86-Dom0-relax-Interrupt-Address-Range.patch
  67c86fc1-xl-fix-channel-configuration-setting.patch
  67cb03e0-x86-vlapic-ESR-write-handling.patch
  67d17edd-x86-expose-MSR_FAM10H_MMIO_CONF_BASE-on-AMD.patch
  67d17ede-VT-x-PI-usage-of-msi_desc-msg-field.patch
  67d2a3fe-libxl-avoid-infinite-loop-in-libxl__remove_directory.patch
  67dada68-x86-mm-IS_ALIGNED-in-IS_LnE_ALIGNED.patch
  67ea4268-x86-P2M-sync-fast-slow-p2m_get_page_from_gfn.patch
  67ea428e-percpu-dont-init-on-resume.patch
  67f8ecda-rangeset-incorrect-subtraction.patch
  6800b54f-x86-HVM-update-repeat-count-upon.patch
  68076044-x86emul-clip-rep-count-for-STOS.patch
  6808f549-x86-Intel-work-around-MONITOR-MWAIT-errata.patch
  68221f20-x86-alternative-when-feature-not-present.patch
  68221f21-x86-guest-remove-Xen-hypercall_page.patch
  68221f22-x86-misalign-__x86_indirect_thunk.patch
  68221f23-x86-misalign-RETs-in-clear_bhb_loops.patch
  68221f24-x86-stubs-introduce-place_ret.patch
  68221f25-x86-build-with-Return-Thunks.patch
  68221f26-x86-spec-ctrl-synthesise-ITS_NO.patch
  682dff83-x86-vPCI-BAR-overlaps-with-non-holes.patch
  6835a042-VMX-VMEntry-failure-on-ADL-SPR-with-shadow.patch
  6835a043-x86-PV-breakpoint-reporting.patch
  xsa470.patch

- bsc#1244644 - VUL-0: CVE-2025-27465: xen: x86: Incorrect stubs
  exception handling for flags recovery (XSA-470)
  xsa470.patch
- Upstream bug fixes (bsc#1027519)
  682dff83-x86-vPCI-BAR-overlaps-with-non-holes.patch
  6835a042-VMX-VMEntry-failure-on-ADL-SPR-with-shadow.patch
  6835a043-x86-PV-breakpoint-reporting.patch

- bsc#1243117 - VUL-0: CVE-2024-28956: xen: Intel CPU: Indirect
  Target Selection (ITS) (XSA-469)
  68221f20-x86-alternative-when-feature-not-present.patch
  68221f21-x86-guest-remove-Xen-hypercall_page.patch
  68221f22-x86-misalign-__x86_indirect_thunk.patch
  68221f23-x86-misalign-RETs-in-clear_bhb_loops.patch
  68221f24-x86-stubs-introduce-place_ret.patch
  68221f25-x86-build-with-Return-Thunks.patch
  68221f26-x86-spec-ctrl-synthesise-ITS_NO.patch

- Default to running xenstored in pvh mode
  xenstore-run-in-pvh-mode.patch

- Upstream bug fixes (bsc#1027519)
  67dada68-x86-mm-IS_ALIGNED-in-IS_LnE_ALIGNED.patch
  67ea4268-x86-P2M-sync-fast-slow-p2m_get_page_from_gfn.patch
  67ea428e-percpu-dont-init-on-resume.patch
  67f8ecda-rangeset-incorrect-subtraction.patch
  6800b54f-x86-HVM-update-repeat-count-upon.patch
  68076044-x86emul-clip-rep-count-for-STOS.patch
  6808f549-x86-Intel-work-around-MONITOR-MWAIT-errata.patch

- Disable pv support for PVH only systems.
  disable-pv-support.patch
- Updated the spec file by removing what isn't needed to support
  PVH only systems

- Drop legacy patches supporting deprecated features
  suse-xendomains-service.patch
  build-python3-conversion.patch
  pygrub-boot-legacy-sles.patch
  pygrub-handle-one-line-menu-entries.patch
  xen2libvirt.py

- bsc#1219354 - xen channels and domU console
  67c86fc1-xl-fix-channel-configuration-setting.patch
- bsc#1227301 - Kernel boot crashes on Thinkpad P14s Gen 3 AMD
  67c818d4-x86-log-unhandled-mem-accesses-for-PVH-dom0.patch
  67c818d5-x86-fixup-p2m-page-faults-for-PVH-dom0.patch
  67c818d6-x86-PVH-dom0-correct-iomem_caps-bound.patch
  67c818d7-x86-IOMMU-account-for-IOMEM-caps-when-populating.patch
  67c818d8-x86-Dom0-relax-Interrupt-Address-Range.patch
- bsc#1237692 - When attempting to start guest vm's libxl fills disk with errors
  67d2a3fe-libxl-avoid-infinite-loop-in-libxl__remove_directory.patch
- bsc#1241206 - xen fv domU failed to migrate from sle15SP6 host
  to sle15SP7 host
  67cb03e0-x86-vlapic-ESR-write-handling.patch
- Upstream bug fixes (bsc#1027519)
  67d17edd-x86-expose-MSR_FAM10H_MMIO_CONF_BASE-on-AMD.patch
  67d17ede-VT-x-PI-usage-of-msi_desc-msg-field.patch

- Update to Xen 4.20.0 FCS release (jsc#PED-8907)
  * See release candidate changelog entries below for 4.20.0
  * Reduce xenstore library dependencies.
  * Enable CONFIG_UBSAN (Arm64, x86, PPC, RISC-V) for GitLab CI.
  * Support for Intel EPT Paging-Write Feature.
  * AMD Zen 5 CPU support, including for new hardware mitigations
    for the SRSO speculative vulnerability.
- bsc#1238043 - VUL-0: CVE-2025-1713: xen: deadlock potential with
  VT-d and legacy PCI device pass-through (XSA-467)
  This fix is part of the final tarball
- Remove references to vm-install from README.SUSE

- refresh replace-obsolete-network-configuration-commands-in-s.patch
  to not accidently enter untested brctl code paths
- bsc#985503 - vif-route.patch is obsolete since Xen 4.15
- bsc#1035231 - remove SUSE specific changes for save/restore/migrate
  to reduce future maintainence overhead. The bottleneck during
  migration is the overhead of mapping HVM domU pages into dom0,
  which was not addressed by these changes.
  The options --abort_if_busy --max_iters --min_remaining will not
  be recognized anymore by xl or virsh.
  libxc-bitmap-long.patch
  libxc-sr-xl-migration-debug.patch
  libxc-sr-readv_exact.patch
  libxc-sr-save-show_transfer_rate.patch
  libxc-sr-save-mfns.patch
  libxc-sr-save-types.patch
  libxc-sr-save-errors.patch
  libxc-sr-save-iov.patch
  libxc-sr-save-rec_pfns.patch
  libxc-sr-save-guest_data.patch
  libxc-sr-save-local_pages.patch
  libxc-sr-restore-pfns.patch
  libxc-sr-restore-types.patch
  libxc-sr-restore-mfns.patch
  libxc-sr-restore-map_errs.patch
  libxc-sr-restore-populate_pfns-pfns.patch
  libxc-sr-restore-populate_pfns-mfns.patch
  libxc-sr-restore-read_record.patch
  libxc-sr-restore-handle_buffered_page_data.patch
  libxc-sr-restore-handle_incoming_page_data.patch
  libxc-sr-LIBXL_HAVE_DOMAIN_SUSPEND_PROPS.patch
  libxc-sr-precopy_policy.patch
  libxc-sr-max_iters.patch
  libxc-sr-min_remaining.patch
  libxc-sr-abort_if_busy.patch
  libxc-sr-xg_sr_bitmap.patch
  libxc-sr-xg_sr_bitmap-populated_pfns.patch
  libxc-sr-restore-hvm-legacy-superpage.patch
  libxc-sr-track-migration-time.patch
  libxc-sr-number-of-iterations.patch