diff --git a/SOURCES/cfergeau-29AC6C82.keyring b/SOURCES/cfergeau-29AC6C82.keyring new file mode 100644 index 0000000..02d5c49 Binary files /dev/null and b/SOURCES/cfergeau-29AC6C82.keyring differ diff --git a/SPECS/spice.spec b/SPECS/spice.spec index 2838eb9..4a6d506 100644 --- a/SPECS/spice.spec +++ b/SPECS/spice.spec @@ -1,50 +1,33 @@ Name: spice -Version: 0.14.0 -Release: 2%{?dist} +Version: 0.14.1 +Release: 1%{?dist} Summary: Implements the SPICE protocol Group: User Interface/Desktops License: LGPLv2+ URL: http://www.spice-space.org/ Source0: http://www.spice-space.org/download/releases/%{name}-%{version}.tar.bz2 -Patch1: 0001-inputs-channel-Check-message-size-handling-migration.patch -Patch2: 0002-red-channel-Remove-red_channel_init_outgoing_message.patch -Patch3: 0003-reds-Remove-leak-allocating-migration-state.patch -Patch4: 0004-tests-Check-leaks-registering-migration-interface.patch -Patch5: 0005-Notify-client-of-the-creation-of-new-channels-dynami.patch -Patch6: 0006-stream-device-Add-device-to-handle-streaming.patch -Patch7: 0007-stream-device-Start-parsing-new-protocol-from-guest.patch -Patch8: 0008-stream-channel-Write-a-base-channel-to-implement-the.patch -Patch9: 0009-stream-channel-Start-implementing-DisplayChannel-pro.patch -Patch10: 0010-stream-device-Create-channel-for-stream-device.patch -Patch11: 0011-stream-device-Handle-streaming-data-from-device-to-c.patch -Patch12: 0012-stream-channel-Allows-not-fixed-size.patch -Patch13: 0013-stream-channel-Allows-to-register-callback-to-get-ne.patch -Patch14: 0014-stream-channel-Support-client-connection-disconnecti.patch -Patch15: 0015-stream-channel-Do-not-show-an-empty-blank-screen-on-.patch -Patch16: 0016-char-device-Do-not-stop-and-clear-interface-on-reset.patch -Patch17: 0017-stream-device-Start-supporting-resetting-device-when.patch -Patch18: 0018-stream-device-Create-channel-when-needed.patch -Patch19: 0019-stream-device-Limit-sending-queue-from-guest-to-serv.patch -Patch20: 0020-stream-channel-Activate-streaming-report-from-client.patch +Source1: http://www.spice-space.org/download/releases/%{name}-%{version}.tar.bz2.sign +Source2: cfergeau-29AC6C82.keyring # https://bugzilla.redhat.com/show_bug.cgi?id=613529 -%if 0%{?rhel} +%if 0%{?rhel} && 0%{?rhel} <= 7 ExclusiveArch: x86_64 %else -ExclusiveArch: i686 x86_64 armv6l armv7l armv7hl +ExclusiveArch: %{ix86} x86_64 %{arm} aarch64 %endif +BuildRequires: gcc BuildRequires: pkgconfig BuildRequires: glib2-devel >= 2.22 -BuildRequires: spice-protocol >= 0.12.10 -BuildRequires: celt051-devel -BuildRequires: pixman-devel alsa-lib-devel openssl-devel libjpeg-turbo-devel +BuildRequires: spice-protocol >= 0.12.3 +BuildRequires: opus-devel +BuildRequires: pixman-devel openssl-devel libjpeg-devel BuildRequires: libcacard-devel cyrus-sasl-devel BuildRequires: lz4-devel -BuildRequires: pyparsing -BuildRequires: opus-devel -BuildRequires: git -BuildRequires: autoconf automake libtool +BuildRequires: gstreamer1-devel gstreamer1-plugins-base-devel +BuildRequires: orc-devel +BuildRequires: gnupg2 +BuildRequires: git-core %description The Simple Protocol for Independent Computing Environments (SPICE) is @@ -75,7 +58,6 @@ Summary: Header files, libraries and development documentation for spice- Group: Development/Libraries Requires: %{name}-server%{?_isa} = %{version}-%{release} Requires: pkgconfig -Requires: spice-protocol >= 0.12.3 %description server-devel This package contains the header files, static libraries and development @@ -84,12 +66,13 @@ using spice-server, you will need to install spice-server-devel. %prep +gpgv2 --quiet --keyring %{SOURCE2} %{SOURCE1} %{SOURCE0} %autosetup -S git_am %build -autoreconf -fi -%configure --enable-smartcard --disable-client +%define configure_client --disable-client +%configure --enable-smartcard --disable-client --enable-lz4 --enable-gstreamer=1.0 make %{?_smp_mflags} WARN_CFLAGS='' V=1 @@ -100,12 +83,13 @@ rm -f %{buildroot}%{_libdir}/libspice-server.la mkdir -p %{buildroot}%{_libexecdir} -%post server -p /sbin/ldconfig -%postun server -p /sbin/ldconfig +%ldconfig_scriptlets server %files server -%doc COPYING README NEWS +%{!?_licensedir:%global license %%doc} +%license COPYING +%doc README NEWS %{_libdir}/libspice-server.so.1* %files server-devel @@ -115,165 +99,104 @@ mkdir -p %{buildroot}%{_libexecdir} %changelog -* Thu Oct 12 2017 Christophe Fergeau - 0.14.0-2 -- Add streaming patches for use with spice-streaming-agent - Related: rhbz#1478356 +* Fri Aug 17 2018 Christophe Fergeau - 0.14.1-1 +- New upstream release +- Disable celt 0.5.1 support, Opus support has been there for 4 years, so + celt should no longer be needed + +* Sat Jul 14 2018 Fedora Release Engineering - 0.14.0-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild + +* Fri Feb 09 2018 Fedora Release Engineering - 0.14.0-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild + +* Sat Feb 03 2018 Igor Gnatenko - 0.14.0-3 +- Switch to %%ldconfig_scriptlets + +* Wed Nov 08 2017 Merlin Mathesius - 0.14.0-2 +- Cleanup spec file conditionals * Wed Oct 11 2017 Christophe Fergeau - 0.14.0-1 -- Rebase to 0.14.0 release - Resolves: rhbz#1472948 +- Update to new stable release + +* Tue Sep 26 2017 Christophe Fergeau - 0.13.91-1 +- Update to latest upstream release -* Fri Sep 22 2017 Christophe Fergeau 0.13.90-2 -- Add lz4-devel BuildRequires - Resolves: rhbz#1460191 +* Thu Aug 24 2017 Christophe Fergeau - 0.13.90-3 +- Add missing (new) BuildRequires, remove obsolete one + +* Thu Aug 03 2017 Fedora Release Engineering - 0.13.90-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Christophe Fergeau 0.13.90-1 -- Rebase to latest upstream release - Resolves: rhbz#1472948 - -* Fri Jul 14 2017 Jonathon Jongsma - 0.12.8-4 -- build with opus support - Resolves: rhbz#1456832 - -* Fri Jun 30 2017 Christophe Fergeau 0.12.8-3 -- Prevent potential buffer/integer overflows with invalid MonitorsConfig messages - sent from an authenticated client - Resolves: CVE-2017-7506 - -* Tue Apr 25 2017 Christophe Fergeau 0.12.8-2 -- Drop clients immediatly if the magic they send is wrong - Resolves: rhbz#1416692 - -* Mon Jan 16 2017 Christophe Fergeau 0.12.8-1 -- Rebase to spice-server 0.12.8 - Resolves: rhbz#1388947 - Resolves: rhbz#1377551 - Resolves: rhbz#1283202 -* Fri Dec 09 2016 Frediano Ziglio - 0.12.4-20 -- Fix buffer overflow in main_channel_alloc_msg_rcv_buf when reading large - messages. - Resolves: CVE-2016-9577 -- Fix remote DoS via crafted message. - Resolves: CVE-2016-9578 -* Fri Sep 09 2016 Christophe Fergeau 0.12.4-19 -- Ensure SPICE_MIGRATE_COMPLETED is sent in all cases when it's needed. - Resolves: rhbz#1352836 -* Fri Jul 01 2016 Christophe Fergeau - 0.12.4-18 -- Fix crash when connecting to VM using smartcard passthrough - Resolves: rhbz#1340899 -- Fix hang after unredirecting a USB device - Resolves: rhbz#1338752 -- Backport spice_qxl_set_max_monitors() - Resolves: rhbz#1283202 -* Wed Apr 27 2016 Christophe Fergeau - 0.12.4-17 -- Fix crash when the client sends a wrong header (for example when using spice-html5) - Resolves: rhbz#1281442 -- Fix crash when guest provides wrong address - Resolves: rhbz#1264356 -- Fix thread-safety issue causing a crash when playing a Youtube video spanning - multiple monitors - Resolves: rhbz#1253375 -- Add patches reducing QEMU wake-ups - Related: rhbz#912763, rhbz#1186146 -- Fix use-after-free after resetting a VM - Resolves: rhbz#1281455 -- Send KeepAlive probes every 10 minutes - Resolves: rhbz#1298590 -- Add client to guest volume synchronization - Resolves: rhbz#1264107 - -* Mon Apr 25 2016 Christophe Fergeau - 0.12.4-16 -- Use autosetup - Related: CVE-2016-0749 -- Fix heap-based memory corruption within smartcard handling - Resolves: CVE-2016-0749 -- Fix host memory access from guest with invalid primary surface parameters - Resolves: CVE-2016-2150 - -* Wed Sep 23 2015 Frediano Ziglio 0.12.4-15 -- CVE-2015-5260 CVE-2015-5261 fixed various security flaws - Resolves: rhbz#1267134 - -* Thu Sep 10 2015 Frediano Ziglio 0.12.4-14 -- Validate surface_id - Resolves: rhbz#1260971 - -* Tue Jul 21 2015 Frediano Ziglio 0.12.4-13 -- Clean stale statistics file before creating a new one - Resolves: rhbz#1177326 - -* Fri Jul 10 2015 Fabiano FidĂȘncio 0.12.4-12 -- Fix a backport issue on Patch0040. - Related: rhbz#1071176 - Resolves: rhbz#1241860 - -* Thu Jul 09 2015 Fabiano FidĂȘncio 0.12.4-11 -- Don't assert on invalid client message - Resolves: rhbz#1227410 -- Don't truncate large 'now' values in _spice_timer_set - Resolves: rhbz#1227408 -- Avoid race conditions reading monitor configs from guest - Resolves: rhbz#1239128 -- Lock the pixmap image cache for the entire fill_bits call - Resolves: rhbz#1235443 - -* Wed Jul 08 2015 Fabiano FidĂȘncio 0.12.4-10 -- Fix qemu segmentation fault (core dumped) when boot KVM guest with - spice in FIPS enabled mode. - Resolves: rhbz#1071176 - -* Mon Jan 05 2015 Marc-Andre Lureau 0.12.4-9 -- Allow recent TLS/SSL methods, block SSLv2/SSLv3. Resolves: rhbz#1175540 - -* Tue Oct 21 2014 Christophe Fergeau 0.12.4-8 -- Fix defects reported by Coverity - Resolves: rhbz#885717 -- Validate surface bounding box sent from QXL driver - Resolves: rhbz#1052856 -- Fix assertion sometimes happening during migration while a client is - connected - Resolves: rhbz#1035184 -- Fix crash when restarting VM with old client - Resolves: rhbz#1145919 - -* Thu Sep 18 2014 Christophe Fergeau 0.12.4-7 -- Fix assert in mjpeg_encoder_adjust_params_to_bit_rate() - Resolves: rhbz#1086823 -- Fix "Spice-ERROR **: reds.c:1464:reds_send_link_ack: assertion - `link->link_mess->channel_type == SPICE_CHANNEL_MAIN' failed" assertion - Resolves: rhbz#1058625 -- Lower a monitor-config warning to debug level - Resolves: rhbz#1119220 -- mjpeg: Don't warn on unsupported image formats - Resolves: rhbz#1070028 - -* Thu Aug 07 2014 Marc-Andre Lureau 0.12.4-6 -- Fix invalid surface clearing - Resolves: rhbz#1029646 - -* Wed Jan 29 2014 Christophe Fergeau 0.12.4-5 -- Fix qemu crash during migration with reboot - Resolves: rhbz#1016795 -- Monitor whether the client is alive - Resolves: rhbz#1016790 - -* Tue Oct 15 2013 Christophe Fergeau 0.12.4-3 -- Fix spice-server crash when client sends a password which is too long - Resolves: CVE-2013-4282 +- Update to latest upstream release (0.13.90) + +* Mon Feb 06 2017 Christophe Fergeau 0.13.3-2 +- Add upstream patches fixing CVE-2016-9577 and CVE-2016-9578 + +* Mon Nov 21 2016 Christophe Fergeau 0.13.3-1 +- Update to spice 0.13.3 + +* Fri Aug 05 2016 Christophe Fergeau - 0.13.2-1 +- Update to spice 0.13.2 + +* Tue Jun 14 2016 Peter Robinson 0.13.1-2 +- Use %%license +- Build on aarch64 + +* Wed Apr 13 2016 Christophe Fergeau 0.13.1-1 +- Update to 0.13.1 release. This is a development release, but by the + time Fedora 25 gets released, a stable 0.14.0 should be released. + +* Fri Feb 05 2016 Fedora Release Engineering - 0.12.6-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild + +* Tue Oct 06 2015 Christophe Fergeau 0.12.6-1 +- Update to new 0.12.6 upstream release + +* Wed Jul 29 2015 Christophe Fergeau 0.12.5-9 +- Drop patch added in previous build which is no longer needed with + spice-protocol 0.12.9 (and actually is actually breaking QEMU compilation + without an additional patch) + +* Fri Jul 03 2015 Christophe Fergeau 0.12.5-8 +- Add upstream patch avoiding a regression in spice-protocol 0.12.8 which + breaks SPICE support in QEMU + +* Thu Jul 02 2015 Christophe Fergeau 0.12.5-7 +- Fix migration race condition which causes a crash when triggered + Resolves: rhbz#1238212 + +* Fri Jun 19 2015 Fedora Release Engineering - 0.12.5-6 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild + +* Mon Aug 25 2014 Christophe Fergeau 0.12.5-5 +- Fix advertised sound playback/recording rates in public headers + Resolves: rhbz#1129961 (QEMU would need a rebuild though) + +* Mon Aug 18 2014 Fedora Release Engineering - 0.12.5-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild + +* Sun Jun 08 2014 Fedora Release Engineering - 0.12.5-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild + +* Mon May 19 2014 Christophe Fergeau 0.12.5-2 +- Add missing BuildRequires in order to enable Opus support + +* Mon May 19 2014 Christophe Fergeau 0.12.5-1 +- Update to new 0.12.5 release + +* Wed Oct 30 2013 Christophe Fergeau 0.12.4-3 +- Add patch fixing CVE-2013-4282 * Fri Sep 13 2013 Christophe Fergeau 0.12.4-2 - Add upstream patch fixing rhbz#995041 * Fri Aug 2 2013 Hans de Goede - 0.12.4-1 +- New upstream bug-fix release 0.12.4 - Add patches from upstream git to fix sound-channel-free crash (rhbz#986407) - Add Obsoletes for dropped spice-client sub-package -* Mon Jul 22 2013 Yonit Halperin 0.12.4-1 -- New upstream release 0.12.4 -- Require libjpeg-turbo-devel instead of libjpeg-devel -- Remove "BuildRequires: spice-protocol" from spice-server -- Add "Requires: spice-protocol" to spice-server-devel. - * Thu May 23 2013 Christophe Fergeau 0.12.3-2 - Stop building spicec, it's obsolete and superseded by remote-viewer (part of virt-viewer)