%define major 1
%define libname %mklibname %{name}-server %major
%define libnamedev %mklibname %{name}-server -d
Name: spice
Version: 0.12.5
%define subrel 4
Release: %mkrel 2
Summary: Implements the SPICE protocol
Group: Networking/Remote access
License: LGPLv2+
URL: http://www.spice-space.org/
Source0: http://www.spice-space.org/download/releases/%{name}-%{version}.tar.bz2
Source1: spice-xpi-client-spicec
Patch38: 0038-Avoid-race-conditions-reading-monitor-configs-from-g.patch
Patch41: 0041-Define-a-constant-to-limit-data-from-guest.patch
Patch42: 0042-Fix-some-integer-overflow-causing-large-memory-alloc.patch
Patch43: 0043-Check-properly-surface-to-be-created.patch
Patch44: 0044-Fix-buffer-reading-overflow.patch
Patch45: 0045-Prevent-32-bit-integer-overflow-in-bitmap_consistent.patch
Patch46: 0046-Fix-race-condition-on-red_get_clip_rects.patch
Patch47: 0047-Fix-race-in-red_get_image.patch
Patch48: 0048-Fix-race-condition-in-red_get_string.patch
Patch49: 0049-Fix-integer-overflow-computing-glyph_size-in-red_get.patch
Patch50: 0050-Fix-race-condition-in-red_get_data_chunks_ptr.patch
Patch51: 0051-Prevent-memory-leak-if-red_get_data_chunks_ptr-fails.patch
Patch52: 0052-Prevent-DoS-from-guest-trying-to-allocate-too-much-d.patch
Patch53: 0053-Fix-some-possible-overflows-in-red_get_string-for-32.patch
Patch54: 0054-Make-sure-we-can-read-QXLPathSeg-structures.patch
Patch55: 0055-Avoid-race-condition-copying-segments-in-red_get_pat.patch
Patch56: 0056-Prevent-data_size-to-be-set-independently-from-data.patch
Patch57: 0057-Prevent-leak-if-size-from-red_get_data_chunks-don-t-.patch
Patch65: 0065-smartcard-add-a-ref-to-item-before-adding-to-pipe.patch
Patch66: 0066-smartcard-allocate-msg-with-the-expected-size.patch
Patch67: 0067-create-a-function-to-validate-surface-parameters.patch
Patch68: 0068-improve-primary-surface-parameter-checks.patch
Patch69: 0069-Prevent-possible-DoS-attempts-during-protocol-handsh.patch
Patch70: 0070-Prevent-integer-overflows-in-capability-checks.patch
Patch71: 0071-main-channel-Prevent-overflow-reading-messages-from-.patch
# https://bugzilla.redhat.com/show_bug.cgi?id=613529
ExclusiveArch: %{ix86} x86_64
BuildRequires: pkgconfig
BuildRequires: spice-protocol >= 0.9.1
BuildRequires: celt051-devel
BuildRequires: pixman-devel
BuildRequires: alsa-lib-devel
BuildRequires: openssl-devel
BuildRequires: libjpeg-devel
BuildRequires: pkgconfig(xrandr)
#BuildRequires: cegui06-devel
BuildRequires: libcacard-devel
BuildRequires: libsasl-devel
BuildRequires: pkgconfig(glib-2.0)
BuildRequires: pkgconfig(xfixes)
BuildRequires: pkgconfig(xinerama)
BuildRequires: python-pyparsing
%description
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
%package client
Summary: Implements the client side of the SPICE protocol
Group: Networking/Remote access
Requires(post): %{_sbindir}/update-alternatives
Requires(postun): %{_sbindir}/update-alternatives
%description client
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
This package contains the SPICE client application.
%package -n %libname
Summary: Implements the server side of the SPICE protocol
Group: System/Libraries
%description -n %libname
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
This package contains the run-time libraries for any application that wishes
to be a SPICE server.
%package -n %libnamedev
Summary: Header files, libraries and development documentation for spice-server
Group: Development/C
Requires: %libname = %{version}-%{release}
Requires: pkgconfig
Requires: pkgconfig(libcacard)
Requires: pkgconfig(xinerama)
Provides: %name-server-devel = %version-%release
%description -n %libnamedev
This package contains the header files, static libraries and development
documentation for spice-server. If you like to develop programs
using spice-server, you will need to install spice-server-devel.
%prep
%setup -q
%apply_patches
%build
%configure2_5x --enable-smartcard --enable-client --disable-static
%make
%install
%makeinstall_std
rm -f %{buildroot}%{_libdir}/libspice-server.la
mkdir -p %{buildroot}%{_libexecdir}
touch %{buildroot}%{_libexecdir}/spice-xpi-client
install -m 0755 %{SOURCE1} %{buildroot}%{_libexecdir}/
%files client
%doc COPYING README NEWS
%{_bindir}/spicec
%ghost %{_libexecdir}/spice-xpi-client
%{_libexecdir}/spice-xpi-client-spicec
%post client
%{_sbindir}/update-alternatives --install %{_libexecdir}/spice-xpi-client \
spice-xpi-client %{_libexecdir}/spice-xpi-client-spicec 10
%postun client
if [ $1 -eq 0 ] ; then
%{_sbindir}/update-alternatives --remove spice-xpi-client %{_libexecdir}/spice-xpi-client-spicec
fi
%files -n %libname
%doc COPYING README NEWS
%{_libdir}/libspice-server.so.%{major}*
%files -n %libnamedev
%{_includedir}/spice-server
%{_libdir}/libspice-server.so
%{_libdir}/pkgconfig/spice-server.pc
%changelog
* Thu Feb 16 2017 ns80 <ns80> 0.12.5-2.4.mga5
+ Revision: 1086448
- add upstream patches for CVE-2016-9577 and CVE-2016-9578 (mga#20251)
+ luigiwalser <luigiwalser>
- add patches from redhat to fix CVE-2016-0749 and CVE-2016-2150
- add patches from ubuntu to fix CVE-2015-5260 and CVE-2015-5261
- add patch from redhat to fix CVE-2015-3247
* Wed Oct 15 2014 umeabot <umeabot> 0.12.5-2.mga5
+ Revision: 740791
- Second Mageia 5 Mass Rebuild
* Sat Jun 28 2014 pterjan <pterjan> 0.12.5-1.mga5
+ Revision: 640760
- Drop patch
- 0.12.5
* Fri Jan 10 2014 luigiwalser <luigiwalser> 0.12.4-4.mga4
+ Revision: 566180
- add upstream patch to fix CVE-2013-4282
* Sat Aug 31 2013 fwang <fwang> 0.12.4-3.mga4
+ Revision: 473660
- rebuild for new sasl
* Tue Aug 27 2013 luigiwalser <luigiwalser> 0.12.4-2.mga4
+ Revision: 472090
- rebuild for cyrus-sasl
* Sun Jul 21 2013 fwang <fwang> 0.12.4-1.mga4
+ Revision: 456778
- cleanup spec
- autoreconf is not required
- new version 0.12.4
* Sun May 26 2013 ovitters <ovitters> 0.12.3-1.mga4
+ Revision: 428117
- drop merged patch
- new version 0.12.3
* Mon Jan 14 2013 umeabot <umeabot> 0.12.2-5.mga3
+ Revision: 382520
- Mass Rebuild - https://wiki.mageia.org/en/Feature:Mageia3MassRebuild
* Sun Dec 30 2012 cjw <cjw> 0.12.2-4.mga3
+ Revision: 336347
- patch2: fix build with automake 1.13
o use the packaged spice-protocol instead of the bundled version
* Tue Dec 25 2012 cjw <cjw> 0.12.2-3.mga3
+ Revision: 334948
- also add pkgconfig(xinerama) dep to -devel pkg to fix pkgconfig(spice-server)
* Tue Dec 25 2012 cjw <cjw> 0.12.2-2.mga3
+ Revision: 334943
- add dependency on pkgconfig(libcacard) to -devel package to fix pkgconfig(spice-server)
* Tue Dec 25 2012 cjw <cjw> 0.12.2-1.mga3
+ Revision: 334859
- 0.12.2
- patch1: fix linkage
* Tue Feb 28 2012 ovitters <ovitters> 0.10.1-1.mga2
+ Revision: 215751
- new version 0.10.1
* Wed Jan 11 2012 ovitters <ovitters> 0.10.0-2.mga2
+ Revision: 194920
- also build for i586
* Wed Jan 11 2012 ovitters <ovitters> 0.10.0-1.mga2
+ Revision: 194838
- fix group
- fix buildrequires
- fix group
- clean spec file
- imported package spice
