spice: import from meta-cloud-services

* http://git.yoctoproject.org/cgit/cgit.cgi/meta-cloud-services/commit/recipes-support/spice/spice_git.bb?id=19f0c979abbc72a300c0b1cb92f9328f96728f5a * will be used by qemu-native to provide a way for headless servers to export accelerated (virglrenderer) graphics to remove clients Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
author: Martin Jansa <martin.jansa@gmail.com> 2018-05-11 19:21:37 +0000
committer: Armin Kuster <akuster808@gmail.com> 2018-05-17 08:32:26 -0700
commit: 63a5e273b7d653d4a239d23cd447a36b685b839e (patch)
tree: 2bb19b42a8cf601787b5407c1d9ec502ffa2f855 /meta-networking
parent: e7b6b648da153b60f2310744b01140e892bb8dbc (diff)
download: meta-openembedded-63a5e273b7d653d4a239d23cd447a36b685b839e.tar.gz
7 files changed, 427 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/spice/files/0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch b/meta-networking/recipes-support/spice/files/0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch
new file mode 100644
index 0000000000..18fa8fade8
--- /dev/null
+++ b/meta-networking/recipes-support/spice/files/0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch
@@ -0,0 +1,72 @@
+From 3cb746329ea4846bd9c65e0198e69423379b6f62 Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?=EC=86=8C=EB=B3=91=EC=B2=A0?= <byungchul.so@samsung.com>
+Date: Thu, 24 Apr 2014 12:26:32 +0000
+Subject: [PATCH] Use PRI macros in printf to keep compatibility between
+ 32/64bit system
+gcc's some integer type definitions are different between 32/64bit system.
+This causes platform dependency problem with printf function. However,
+we can avoid this problem by using PRI macros that supports platform
+independent printf.
+---
+ server/mjpeg_encoder.c | 7 ++++---
+ server/red_worker.c    | 4 ++--
+ 2 files changed, 6 insertions(+), 5 deletions(-)
+diff --git a/server/mjpeg_encoder.c b/server/mjpeg_encoder.c
+index aea4964..f465d88 100644
+--- a/server/mjpeg_encoder.c
+++ b/server/mjpeg_encoder.c
+@@ -23,6 +23,7 @@
+ #include "mjpeg_encoder.h"
+ #include <jerror.h>
+ #include <jpeglib.h>
+#include <inttypes.h>
+ 
+ #define MJPEG_MAX_FPS 25
+ #define MJPEG_MIN_FPS 1
+@@ -66,7 +67,7 @@ static const int mjpeg_quality_samples[MJPEG_QUALITY_SAMPLE_NUM] = {20, 30, 40,
+  * are not necessarily related to mis-estimation of the bit rate, and we would
+  * like to wait till the stream stabilizes.
+  */
+-#define MJPEG_WARMUP_TIME 3000L // 3 sec
+#define MJPEG_WARMUP_TIME 3000LL // 3 sec
+ 
+ enum {
+     MJPEG_QUALITY_EVAL_TYPE_SET,
+@@ -638,7 +639,7 @@ static void mjpeg_encoder_adjust_params_to_bit_rate(MJpegEncoder *encoder)
+ 
+     spice_debug("cur-fps=%u new-fps=%u (new/old=%.2f) |"
+                 "bit-rate=%.2f (Mbps) latency=%u (ms) quality=%d |"
+-                " new-size-avg %lu , base-size %lu, (new/old=%.2f) ",
+                " new-size-avg %"PRIu64" , base-size %"PRIu64", (new/old=%.2f) ",
+                 rate_control->fps, new_fps, ((double)new_fps)/rate_control->fps,
+                 ((double)rate_control->byte_rate*8)/1024/1024,
+                 latency,
+@@ -703,7 +704,7 @@ static void mjpeg_encoder_adjust_fps(MJpegEncoder *encoder, uint64_t now)
+ 
+         avg_fps = ((double)rate_control->adjusted_fps_num_frames*1000) /
+                   adjusted_fps_time_passed;
+-        spice_debug("#frames-adjust=%lu #adjust-time=%lu avg-fps=%.2f",
+        spice_debug("#frames-adjust=%"PRIu64" #adjust-time=%"PRIu64" avg-fps=%.2f",
+                     rate_control->adjusted_fps_num_frames, adjusted_fps_time_passed, avg_fps);
+         spice_debug("defined=%u old-adjusted=%.2f", rate_control->fps, rate_control->adjusted_fps);
+         fps_ratio = avg_fps / rate_control->fps;
+diff --git a/server/red_worker.c b/server/red_worker.c
+index 619f7bc..1871e13 100644
+--- a/server/red_worker.c
+++ b/server/red_worker.c
+@@ -2594,8 +2594,8 @@ static void red_print_stream_stats(DisplayChannelClient *dcc, StreamAgent *agent
+         mjpeg_encoder_get_stats(agent->mjpeg_encoder, &encoder_stats);
+     }
+ 
+-    spice_debug("stream=%ld dim=(%dx%d) #in-frames=%lu #in-avg-fps=%.2f #out-frames=%lu "
+-                "out/in=%.2f #drops=%lu (#pipe=%lu #fps=%lu) out-avg-fps=%.2f "
+    spice_debug("stream=%"PRIdPTR" dim=(%dx%d) #in-frames=%"PRIu64" #in-avg-fps=%.2f #out-frames=%"PRIu64" "
+                "out/in=%.2f #drops=%"PRIu64" (#pipe=%"PRIu64" #fps=%"PRIu64") out-avg-fps=%.2f "
+                 "passed-mm-time(sec)=%.2f size-total(MB)=%.2f size-per-sec(Mbps)=%.2f "
+                 "size-per-frame(KBpf)=%.2f avg-quality=%.2f "
+                 "start-bit-rate(Mbps)=%.2f end-bit-rate(Mbps)=%.2f",
+-- 
+2.10.2
diff --git a/meta-networking/recipes-support/spice/files/0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch b/meta-networking/recipes-support/spice/files/0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch
new file mode 100644
index 0000000000..ccae5f50f2
--- /dev/null
+++ b/meta-networking/recipes-support/spice/files/0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch
@@ -0,0 +1,29 @@
+From 85838d4c9f2322aedb99b38fffd7da95a494d8ed Mon Sep 17 00:00:00 2001
+From: He Zhe <zhe.he@windriver.com>
+Date: Thu, 29 Jun 2017 08:26:35 +0000
+Subject: [PATCH] red_parse_qxl: Fix BITMAP_FMT_IS_RGB defined but not used
+| ../../git/server/red_parse_qxl.c:367:18: error: 'BITMAP_FMT_IS_RGB'
+defined but not used [-Werror=unused-const-variable=]
+|  static const int BITMAP_FMT_IS_RGB[] = {0, 0, 0, 0, 0, 0, 1, 1, 1, 1, 1};
+Signed-off-by: He Zhe <zhe.he@windriver.com>
+---
+ server/red_parse_qxl.c | 1 -
+ 1 file changed, 1 deletion(-)
+diff --git a/server/red_parse_qxl.c b/server/red_parse_qxl.c
+index 6c0b0658..cfc2da95 100644
+--- a/server/red_parse_qxl.c
+++ b/server/red_parse_qxl.c
+@@ -364,7 +364,6 @@ static int bitmap_consistent(SpiceBitmap *bitmap)
+ 
+ // This is based on SPICE_BITMAP_FMT_*, copied from server/red_worker.c
+ // to avoid a possible unoptimization from making it non static.
+-static const int BITMAP_FMT_IS_RGB[] = {0, 0, 0, 0, 0, 0, 1, 1, 1, 1, 1};
+ 
+ static SpiceImage *red_get_image(RedMemSlotInfo *slots, int group_id,
+                                  QXLPHYSICAL addr, uint32_t flags, int is_mask)
+-- 
+2.11.0
diff --git a/meta-networking/recipes-support/spice/files/Fix-build-issues-with-gcc-7.patch b/meta-networking/recipes-support/spice/files/Fix-build-issues-with-gcc-7.patch
new file mode 100644
index 0000000000..7fcafdc7ef
--- /dev/null
+++ b/meta-networking/recipes-support/spice/files/Fix-build-issues-with-gcc-7.patch
@@ -0,0 +1,59 @@
+From 9f001b6818ac4baa1df010ccf4200ca56bfb11b2 Mon Sep 17 00:00:00 2001
+From: Mark Asselstine <mark.asselstine@windriver.com>
+Date: Wed, 23 Aug 2017 13:47:29 -0400
+Subject: [PATCH] Fix build issues with gcc 7
+gcc 7 checks for when a switch statement doesn't break between
+cases. When a break is not found you will see
+| ../../git/server/reds.c: In function 'vdi_port_read_one_msg_from_device':
+| ../../git/server/reds.c:797:31: error: this statement may fall through [-Werror=implicit-fallthrough=]
+|              state->read_state = VDI_PORT_READ_STATE_GET_BUFF;
+|              ~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+| ../../git/server/reds.c:798:9: note: here
+|          case VDI_PORT_READ_STATE_GET_BUFF: {
+|          ^~~~
+The 'fallthrough' comment will let gcc know this is done on purpose.
+Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
+---
+ server/inputs_channel.c | 1 +
+ server/reds.c           | 2 ++
+ 2 files changed, 3 insertions(+)
+diff --git a/server/inputs_channel.c b/server/inputs_channel.c
+index 931dac1..534ab66 100644
+--- a/server/inputs_channel.c
+++ b/server/inputs_channel.c
+@@ -321,6 +321,7 @@ static int inputs_channel_handle_parsed(RedChannelClient *rcc, uint32_t size, ui
+             activate_modifiers_watch();
+         }
+     }
+        /* fallthrough */
+     case SPICE_MSGC_INPUTS_KEY_UP: {
+         SpiceMsgcKeyDown *key_down = (SpiceMsgcKeyDown *)buf;
+         for (i = 0; i < 4; i++) {
+diff --git a/server/reds.c b/server/reds.c
+index 30d0652..8c80eb6 100644
+--- a/server/reds.c
+++ b/server/reds.c
+@@ -795,6 +795,7 @@ static SpiceCharDeviceMsgToClient *vdi_port_read_one_msg_from_device(SpiceCharDe
+             }
+             state->message_recive_len = state->vdi_chunk_header.size;
+             state->read_state = VDI_PORT_READ_STATE_GET_BUFF;
+            /* fallthrough */
+         case VDI_PORT_READ_STATE_GET_BUFF: {
+             if (!(state->current_read_buf = vdi_port_read_buf_get())) {
+                 return NULL;
+@@ -806,6 +807,7 @@ static SpiceCharDeviceMsgToClient *vdi_port_read_one_msg_from_device(SpiceCharDe
+             state->message_recive_len -= state->recive_len;
+             state->read_state = VDI_PORT_READ_STATE_READ_DATA;
+         }
+            /* fallthrough */
+         case VDI_PORT_READ_STATE_READ_DATA:
+             n = sif->read(vdagent, state->recive_pos, state->recive_len);
+             if (!n) {
+-- 
+2.7.4
diff --git a/meta-networking/recipes-support/spice/files/build-allow-separated-src-and-build-dirs.patch b/meta-networking/recipes-support/spice/files/build-allow-separated-src-and-build-dirs.patch
new file mode 100644
index 0000000000..9cbbff9b64
--- /dev/null
+++ b/meta-networking/recipes-support/spice/files/build-allow-separated-src-and-build-dirs.patch
@@ -0,0 +1,62 @@
+From 7d0d0ff080b159e647ebb26c337cb75314d64b52 Mon Sep 17 00:00:00 2001
+From: Mark Asselstine <mark.asselstine@windriver.com>
+Date: Thu, 1 May 2014 12:09:16 -0400
+Subject: [PATCH] build: allow separated src and build dirs
+We need to expland the list of include dirs to include the build dir since
+generated files will be created there instead of in the src dir.
+We also don't want to force using $srcdir for generated files as this will
+allow them to be created in the build dir. We account for the slight
+deviation in the generated files with expanded include paths.
+Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
+---
+ configure.ac | 2 +-
+ spice-common/common/Makefile.am | 14 +++++++-------
+ 2 file changed, 8 insertions(+), 8 deletions(-)
+diff --git a/configure.ac b/configure.ac
+index edda8e9..9151fcb 100644
+--- a/configure.ac
+++ b/configure.ac
+@@ -165,7 +165,7 @@ dnl =========================================================================
+ dnl Check deps
+ 
+ AC_CONFIG_SUBDIRS([spice-common])
+-COMMON_CFLAGS='-I ${top_srcdir}/spice-common/ -I ${top_srcdir}/spice-common/spice-protocol/'
+COMMON_CFLAGS='-I ${top_srcdir}/spice-common/ -I ${top_srcdir}/spice-common/common/ -I ${top_srcdir}/spice-common/spice-protocol/ -I ${top_builddir}/spice-common/'
+ AC_SUBST(COMMON_CFLAGS)
+ 
+ AC_CHECK_LIBM
+diff --git a/spice-common/common/Makefile.am b/spice-common/common/Makefile.am
+index 45568c6..4c65ac4 100644
+--- a/spice-common/common/Makefile.am
+++ b/spice-common/common/Makefile.am
+@@ -2,16 +2,16 @@ NULL =
+ 
+ # Avoid need for python(pyparsing) by end users
+ CLIENT_MARSHALLERS =                                   \
+-       $(srcdir)/generated_client_demarshallers.c      \
+-       $(srcdir)/generated_client_demarshallers1.c     \
+-       $(srcdir)/generated_client_marshallers.c        \
+-       $(srcdir)/generated_client_marshallers1.c       \
+       generated_client_demarshallers.c        \
+       generated_client_demarshallers1.c       \
+       generated_client_marshallers.c  \
+       generated_client_marshallers1.c \
+        $(NULL)
+ 
+ SERVER_MARSHALLERS =                                   \
+-       $(srcdir)/generated_server_demarshallers.c      \
+-       $(srcdir)/generated_server_marshallers.c        \
+-       $(srcdir)/generated_server_marshallers.h        \
+       generated_server_demarshallers.c        \
+       generated_server_marshallers.c  \
+       generated_server_marshallers.h  \
+        $(NULL)
+ 
+ BUILT_SOURCES = $(CLIENT_MARSHALLERS) $(SERVER_MARSHALLERS) $(top_srcdir)/spice-protocol/spice/enums.h
+-- 
+1.8.3.2
diff --git a/meta-networking/recipes-support/spice/files/configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch b/meta-networking/recipes-support/spice/files/configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch
new file mode 100644
index 0000000000..323ef52f8b
--- /dev/null
+++ b/meta-networking/recipes-support/spice/files/configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch
@@ -0,0 +1,29 @@
+From 36efb79076420975f7fa7aa0b03a1fc282291b05 Mon Sep 17 00:00:00 2001
+From: Mark Asselstine <mark.asselstine@windriver.com>
+Date: Tue, 25 Mar 2014 15:23:25 -0400
+Subject: [PATCH] configure.ac: add subdir-objects to AM_INIT_AUTOMAKE
+Without this you will get subdir-objects error which will cause
+autoreconf to complete successfully.
+Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
+---
+ spice-common/configure.ac | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+diff --git a/spice-common/configure.ac b/spice-common/configure.ac
+index b5cb960..78f1360 100644
+--- a/spice-common/configure.ac
+++ b/spice-common/configure.ac
+@@ -13,7 +13,7 @@ AC_CONFIG_AUX_DIR([build-aux])
+ m4_ifdef([AM_PROG_AR], [AM_PROG_AR])
+ 
+ # Checks for programs
+-AM_INIT_AUTOMAKE([1.11 dist-xz no-dist-gzip tar-ustar foreign -Wall -Werror])
+AM_INIT_AUTOMAKE([1.11 dist-xz no-dist-gzip tar-ustar foreign subdir-objects -Wall -Werror])
+ AM_MAINTAINER_MODE
+ AM_SILENT_RULES([yes])
+ LT_INIT
+-- 
+1.8.3.2
diff --git a/meta-networking/recipes-support/spice/files/spice-fix-CVE-2013-4282.patch b/meta-networking/recipes-support/spice/files/spice-fix-CVE-2013-4282.patch
new file mode 100644
index 0000000000..1a00a85185
--- /dev/null
+++ b/meta-networking/recipes-support/spice/files/spice-fix-CVE-2013-4282.patch
@@ -0,0 +1,100 @@
+Fix buffer overflow when decrypting client SPICE ticket
+commit 8af619009660b24e0b41ad26b30289eea288fcc2     upstream
+reds_handle_ticket uses a fixed size 'password' buffer for the decrypted
+password whose size is SPICE_MAX_PASSWORD_LENGTH. However,
+RSA_private_decrypt which we call for the decryption expects the
+destination buffer to be at least RSA_size(link->tiTicketing.rsa)
+bytes long. On my spice-server build, SPICE_MAX_PASSWORD_LENGTH
+is 60 while RSA_size() is 128, so we end up overflowing 'password'
+when using long passwords (this was reproduced using the string:
+'fullscreen=1proxy=#enter proxy here; e.g spice_proxy = http://[proxy]:[port]'
+as a password).
+When the overflow occurs, QEMU dies with:
+*** stack smashing detected ***: qemu-system-x86_64 terminated
+This commit ensures we use a corectly sized 'password' buffer,
+and that it's correctly nul-terminated so that we can use strcmp
+instead of strncmp. To keep using strncmp, we'd need to figure out
+which one of 'password' and 'taTicket.password' is the smaller buffer,
+and use that size.
+This fixes rhbz#999839
+diff --git a/server/reds.c b/server/reds.c
+index 30d0652..6f262b0 100644
+--- a/server/reds.c
+++ b/server/reds.c
+@@ -1931,39 +1931,59 @@ static void reds_handle_link(RedLinkInfo *link)
+ static void reds_handle_ticket(void *opaque)
+ {
+     RedLinkInfo *link = (RedLinkInfo *)opaque;
+-    char password[SPICE_MAX_PASSWORD_LENGTH];
+    char *password;
+     time_t ltime;
+    int password_size;
+ 
+     //todo: use monotonic time
+     time(&ltime);
+-    RSA_private_decrypt(link->tiTicketing.rsa_size,
+-                        link->tiTicketing.encrypted_ticket.encrypted_data,
+-                        (unsigned char *)password, link->tiTicketing.rsa, RSA_PKCS1_OAEP_PADDING);
+    if (RSA_size(link->tiTicketing.rsa) < SPICE_MAX_PASSWORD_LENGTH) {
+        spice_warning("RSA modulus size is smaller than SPICE_MAX_PASSWORD_LENGTH (%d < %d), "
+                      "SPICE ticket sent from client may be truncated",
+                      RSA_size(link->tiTicketing.rsa), SPICE_MAX_PASSWORD_LENGTH);
+    }
+
+    password = g_malloc0(RSA_size(link->tiTicketing.rsa) + 1);
+    password_size = RSA_private_decrypt(link->tiTicketing.rsa_size,
+                                        link->tiTicketing.encrypted_ticket.encrypted_data,
+                                        (unsigned char *)password,
+                                        link->tiTicketing.rsa,
+                                        RSA_PKCS1_OAEP_PADDING);
+    if (password_size == -1) {
+        spice_warning("failed to decrypt RSA encrypted password: %s",
+                      ERR_error_string(ERR_get_error(), NULL));
+        goto error;
+    }
+    password[password_size] = '\0';
+ 
+     if (ticketing_enabled && !link->skip_auth) {
+         int expired =  taTicket.expiration_time < ltime;
+ 
+         if (strlen(taTicket.password) == 0) {
+-            reds_send_link_result(link, SPICE_LINK_ERR_PERMISSION_DENIED);
+             spice_warning("Ticketing is enabled, but no password is set. "
+-                        "please set a ticket first");
+-            reds_link_free(link);
+-            return;
+                          "please set a ticket first");
+            goto error;
+         }
+ 
+-        if (expired || strncmp(password, taTicket.password, SPICE_MAX_PASSWORD_LENGTH) != 0) {
+        if (expired || strcmp(password, taTicket.password) != 0) {
+             if (expired) {
+                 spice_warning("Ticket has expired");
+             } else {
+                 spice_warning("Invalid password");
+             }
+-            reds_send_link_result(link, SPICE_LINK_ERR_PERMISSION_DENIED);
+-            reds_link_free(link);
+-            return;
+            goto error;
+         }
+     }
+ 
+     reds_handle_link(link);
+    goto end;
+
+error:
+    reds_send_link_result(link, SPICE_LINK_ERR_PERMISSION_DENIED);
+    reds_link_free(link);
+
+end:
+    g_free(password);
+ }
+ 
+ static inline void async_read_clear_handlers(AsyncRead *obj)
diff --git a/meta-networking/recipes-support/spice/spice_git.bb b/meta-networking/recipes-support/spice/spice_git.bb
new file mode 100644
index 0000000000..04e7a25d70
--- /dev/null
+++ b/meta-networking/recipes-support/spice/spice_git.bb
@@ -0,0 +1,76 @@
+#
+# Copyright (C) 2013 Wind River Systems, Inc.
+#
+SUMMARY = "Simple Protocol for Independent Computing Environments"
+DESCRIPTION = "SPICE (the Simple Protocol for Independent Computing \
+Environments) is a remote-display system built for virtual \
+environments which allows users to view a computing 'desktop' \ 
+environment - not only on its computer-server machine, but also from \
+anywhere on the Internet and using a wide variety of machine \
+architectures."
+LICENSE = "BSD & LGPLv2.1+"
+LIC_FILES_CHKSUM = "file://COPYING;md5=4fbd65380cdd255951079008b364516c"
+PR = "r0"
+PV = "0.12.4"
+# Actual versions based on the checkouts below
+# spice = "0.12.4"
+# common = "0.12.6"
+# protocol = "0.12.6"
+SRCREV_spice = "b270fb010a3ddb432dfe6b15e4bdffa6ac086cd0"
+SRCREV_spice-common = "fe93908238196bd632287fc9875e6f2e11105d04"
+SRCREV_spice-protocol = "784407f248e7f99d2bfcc9368f9acd1efb2b9617"
+SRCREV_FORMAT = "spice_spice-common_spice-protocol"
+SRC_URI = "git://anongit.freedesktop.org/spice/spice;name=spice \
+           git://anongit.freedesktop.org/spice/spice-common;destsuffix=git/spice-common;name=spice-common \
+           git://anongit.freedesktop.org/spice/spice-protocol;destsuffix=git/spice-common/spice-protocol;name=spice-protocol \
+          "
+SRC_URI += " \
+        file://spice-fix-CVE-2013-4282.patch \
+        file://configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch \
+        file://build-allow-separated-src-and-build-dirs.patch \
+        file://0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch \
+        file://0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch \
+        file://Fix-build-issues-with-gcc-7.patch \
+        "
+S = "${WORKDIR}/git"
+inherit autotools gettext pythonnative python-dir pkgconfig
+DEPENDS += "python-native celt051 python-pyparsing jpeg pixman alsa-lib glib-2.0"
+export PYTHON="${STAGING_BINDIR_NATIVE}/python-native/python"
+export PYTHONPATH="${PKG_CONFIG_SYSROOT_DIR}${libdir}/python2.7/site-packages"
+PACKAGECONFIG ?= "sasl"
+PACKAGECONFIG[smartcard] = "--enable-smartcard,--disable-smartcard,libcacard,"
+PACKAGECONFIG[sasl] = "--with-sasl,--without-sasl,cyrus-sasl,"
+PACKAGECONFIG[client] = "--enable-client,--disable-client,,"
+PACKAGECONFIG[gui] = "--enable-gui,--disable-gui,,"
+PACKAGECONFIG[opengl] = "--enable-opengl,--disable-opengl,,"
+PACKAGECONFIG[xinerama] = "--enable-xinerama,--disable-xinerama,libxinerama,"
+PACKAGES =+ "${PN}-protocol"
+LICENSE_${PN}-protocol = "BSD"
+FILES_${PN}-protocol += "${includedir}/spice-1"
+FILES_${PN}-protocol += "${datadir}/pkgconfig"
+do_configure_prepend() {
+        mkdir -p ${S}/spice-common/spice-protocol/m4
+}
+do_install_append() {
+        cd ${B}/spice-common/spice-protocol
+        oe_runmake DESTDIR="${D}" install
+        cd -
+}
+COMPATIBLE_HOST = '(x86_64|i.86).*-linux'
author	Martin Jansa <martin.jansa@gmail.com>	2018-05-11 19:21:37 +0000
committer	Armin Kuster <akuster808@gmail.com>	2018-05-17 08:32:26 -0700
commit	63a5e273b7d653d4a239d23cd447a36b685b839e (patch)
tree	2bb19b42a8cf601787b5407c1d9ec502ffa2f855 /meta-networking
parent	e7b6b648da153b60f2310744b01140e892bb8dbc (diff)
download	meta-openembedded-63a5e273b7d653d4a239d23cd447a36b685b839e.tar.gz

diff --git a/meta-networking/recipes-support/spice/files/0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch b/meta-networking/recipes-support/spice/files/0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch new file mode 100644 index 0000000000..18fa8fade8 --- /dev/null +++ b/meta-networking/recipes-support/spice/files/0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch
@@ -0,0 +1,72 @@
	1	From 3cb746329ea4846bd9c65e0198e69423379b6f62 Mon Sep 17 00:00:00 2001
	2	From: =?UTF-8?q?=EC=86=8C=EB=B3=91=EC=B2=A0?= <byungchul.so@samsung.com>
	3	Date: Thu, 24 Apr 2014 12:26:32 +0000
	4	Subject: [PATCH] Use PRI macros in printf to keep compatibility between
	5	32/64bit system
	6
	7	gcc's some integer type definitions are different between 32/64bit system.
	8	This causes platform dependency problem with printf function. However,
	9	we can avoid this problem by using PRI macros that supports platform
	10	independent printf.
	11	---
	12	server/mjpeg_encoder.c \| 7 ++++---
	13	server/red_worker.c \| 4 ++--
	14	2 files changed, 6 insertions(+), 5 deletions(-)
	15
	16	diff --git a/server/mjpeg_encoder.c b/server/mjpeg_encoder.c
	17	index aea4964..f465d88 100644
	18	--- a/server/mjpeg_encoder.c
	19	+++ b/server/mjpeg_encoder.c
	20	@@ -23,6 +23,7 @@
	21	#include "mjpeg_encoder.h"
	22	#include <jerror.h>
	23	#include <jpeglib.h>
	24	+#include <inttypes.h>
	25
	26	#define MJPEG_MAX_FPS 25
	27	#define MJPEG_MIN_FPS 1
	28	@@ -66,7 +67,7 @@ static const int mjpeg_quality_samples[MJPEG_QUALITY_SAMPLE_NUM] = {20, 30, 40,
	29	* are not necessarily related to mis-estimation of the bit rate, and we would
	30	* like to wait till the stream stabilizes.
	31	*/
	32	-#define MJPEG_WARMUP_TIME 3000L // 3 sec
	33	+#define MJPEG_WARMUP_TIME 3000LL // 3 sec
	34
	35	enum {
	36	MJPEG_QUALITY_EVAL_TYPE_SET,
	37	@@ -638,7 +639,7 @@ static void mjpeg_encoder_adjust_params_to_bit_rate(MJpegEncoder *encoder)
	38
	39	spice_debug("cur-fps=%u new-fps=%u (new/old=%.2f) \|"
	40	"bit-rate=%.2f (Mbps) latency=%u (ms) quality=%d \|"
	41	- " new-size-avg %lu , base-size %lu, (new/old=%.2f) ",
	42	+ " new-size-avg %"PRIu64" , base-size %"PRIu64", (new/old=%.2f) ",
	43	rate_control->fps, new_fps, ((double)new_fps)/rate_control->fps,
	44	((double)rate_control->byte_rate*8)/1024/1024,
	45	latency,
	46	@@ -703,7 +704,7 @@ static void mjpeg_encoder_adjust_fps(MJpegEncoder *encoder, uint64_t now)
	47
	48	avg_fps = ((double)rate_control->adjusted_fps_num_frames*1000) /
	49	adjusted_fps_time_passed;
	50	- spice_debug("#frames-adjust=%lu #adjust-time=%lu avg-fps=%.2f",
	51	+ spice_debug("#frames-adjust=%"PRIu64" #adjust-time=%"PRIu64" avg-fps=%.2f",
	52	rate_control->adjusted_fps_num_frames, adjusted_fps_time_passed, avg_fps);
	53	spice_debug("defined=%u old-adjusted=%.2f", rate_control->fps, rate_control->adjusted_fps);
	54	fps_ratio = avg_fps / rate_control->fps;
	55	diff --git a/server/red_worker.c b/server/red_worker.c
	56	index 619f7bc..1871e13 100644
	57	--- a/server/red_worker.c
	58	+++ b/server/red_worker.c
	59	@@ -2594,8 +2594,8 @@ static void red_print_stream_stats(DisplayChannelClient dcc, StreamAgent agent
	60	mjpeg_encoder_get_stats(agent->mjpeg_encoder, &encoder_stats);
	61	}
	62
	63	- spice_debug("stream=%ld dim=(%dx%d) #in-frames=%lu #in-avg-fps=%.2f #out-frames=%lu "
	64	- "out/in=%.2f #drops=%lu (#pipe=%lu #fps=%lu) out-avg-fps=%.2f "
	65	+ spice_debug("stream=%"PRIdPTR" dim=(%dx%d) #in-frames=%"PRIu64" #in-avg-fps=%.2f #out-frames=%"PRIu64" "
	66	+ "out/in=%.2f #drops=%"PRIu64" (#pipe=%"PRIu64" #fps=%"PRIu64") out-avg-fps=%.2f "
	67	"passed-mm-time(sec)=%.2f size-total(MB)=%.2f size-per-sec(Mbps)=%.2f "
	68	"size-per-frame(KBpf)=%.2f avg-quality=%.2f "
	69	"start-bit-rate(Mbps)=%.2f end-bit-rate(Mbps)=%.2f",
	70	--
	71	2.10.2
	72


diff --git a/meta-networking/recipes-support/spice/files/0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch b/meta-networking/recipes-support/spice/files/0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch new file mode 100644 index 0000000000..ccae5f50f2 --- /dev/null +++ b/meta-networking/recipes-support/spice/files/0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch
@@ -0,0 +1,29 @@
	1	From 85838d4c9f2322aedb99b38fffd7da95a494d8ed Mon Sep 17 00:00:00 2001
	2	From: He Zhe <zhe.he@windriver.com>
	3	Date: Thu, 29 Jun 2017 08:26:35 +0000
	4	Subject: [PATCH] red_parse_qxl: Fix BITMAP_FMT_IS_RGB defined but not used
	5
	6	\| ../../git/server/red_parse_qxl.c:367:18: error: 'BITMAP_FMT_IS_RGB'
	7	defined but not used [-Werror=unused-const-variable=]
	8	\| static const int BITMAP_FMT_IS_RGB[] = {0, 0, 0, 0, 0, 0, 1, 1, 1, 1, 1};
	9
	10	Signed-off-by: He Zhe <zhe.he@windriver.com>
	11	---
	12	server/red_parse_qxl.c \| 1 -
	13	1 file changed, 1 deletion(-)
	14
	15	diff --git a/server/red_parse_qxl.c b/server/red_parse_qxl.c
	16	index 6c0b0658..cfc2da95 100644
	17	--- a/server/red_parse_qxl.c
	18	+++ b/server/red_parse_qxl.c
	19	@@ -364,7 +364,6 @@ static int bitmap_consistent(SpiceBitmap *bitmap)
	20
	21	// This is based on SPICE_BITMAP_FMT_*, copied from server/red_worker.c
	22	// to avoid a possible unoptimization from making it non static.
	23	-static const int BITMAP_FMT_IS_RGB[] = {0, 0, 0, 0, 0, 0, 1, 1, 1, 1, 1};
	24
	25	static SpiceImage red_get_image(RedMemSlotInfo slots, int group_id,
	26	QXLPHYSICAL addr, uint32_t flags, int is_mask)
	27	--
	28	2.11.0
	29


diff --git a/meta-networking/recipes-support/spice/files/Fix-build-issues-with-gcc-7.patch b/meta-networking/recipes-support/spice/files/Fix-build-issues-with-gcc-7.patch new file mode 100644 index 0000000000..7fcafdc7ef --- /dev/null +++ b/meta-networking/recipes-support/spice/files/Fix-build-issues-with-gcc-7.patch
@@ -0,0 +1,59 @@
	1	From 9f001b6818ac4baa1df010ccf4200ca56bfb11b2 Mon Sep 17 00:00:00 2001
	2	From: Mark Asselstine <mark.asselstine@windriver.com>
	3	Date: Wed, 23 Aug 2017 13:47:29 -0400
	4	Subject: [PATCH] Fix build issues with gcc 7
	5
	6	gcc 7 checks for when a switch statement doesn't break between
	7	cases. When a break is not found you will see
	8
	9	\| ../../git/server/reds.c: In function 'vdi_port_read_one_msg_from_device':
	10	\| ../../git/server/reds.c:797:31: error: this statement may fall through [-Werror=implicit-fallthrough=]
	11	\| state->read_state = VDI_PORT_READ_STATE_GET_BUFF;
	12	\| ~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	13	\| ../../git/server/reds.c:798:9: note: here
	14	\| case VDI_PORT_READ_STATE_GET_BUFF: {
	15	\| ^~~~
	16
	17	The 'fallthrough' comment will let gcc know this is done on purpose.
	18
	19	Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
	20	---
	21	server/inputs_channel.c \| 1 +
	22	server/reds.c \| 2 ++
	23	2 files changed, 3 insertions(+)
	24
	25	diff --git a/server/inputs_channel.c b/server/inputs_channel.c
	26	index 931dac1..534ab66 100644
	27	--- a/server/inputs_channel.c
	28	+++ b/server/inputs_channel.c
	29	@@ -321,6 +321,7 @@ static int inputs_channel_handle_parsed(RedChannelClient *rcc, uint32_t size, ui
	30	activate_modifiers_watch();
	31	}
	32	}
	33	+ /* fallthrough */
	34	case SPICE_MSGC_INPUTS_KEY_UP: {
	35	SpiceMsgcKeyDown key_down = (SpiceMsgcKeyDown )buf;
	36	for (i = 0; i < 4; i++) {
	37	diff --git a/server/reds.c b/server/reds.c
	38	index 30d0652..8c80eb6 100644
	39	--- a/server/reds.c
	40	+++ b/server/reds.c
	41	@@ -795,6 +795,7 @@ static SpiceCharDeviceMsgToClient *vdi_port_read_one_msg_from_device(SpiceCharDe
	42	}
	43	state->message_recive_len = state->vdi_chunk_header.size;
	44	state->read_state = VDI_PORT_READ_STATE_GET_BUFF;
	45	+ /* fallthrough */
	46	case VDI_PORT_READ_STATE_GET_BUFF: {
	47	if (!(state->current_read_buf = vdi_port_read_buf_get())) {
	48	return NULL;
	49	@@ -806,6 +807,7 @@ static SpiceCharDeviceMsgToClient *vdi_port_read_one_msg_from_device(SpiceCharDe
	50	state->message_recive_len -= state->recive_len;
	51	state->read_state = VDI_PORT_READ_STATE_READ_DATA;
	52	}
	53	+ /* fallthrough */
	54	case VDI_PORT_READ_STATE_READ_DATA:
	55	n = sif->read(vdagent, state->recive_pos, state->recive_len);
	56	if (!n) {
	57	--
	58	2.7.4
	59


diff --git a/meta-networking/recipes-support/spice/files/build-allow-separated-src-and-build-dirs.patch b/meta-networking/recipes-support/spice/files/build-allow-separated-src-and-build-dirs.patch new file mode 100644 index 0000000000..9cbbff9b64 --- /dev/null +++ b/meta-networking/recipes-support/spice/files/build-allow-separated-src-and-build-dirs.patch
@@ -0,0 +1,62 @@
	1	From 7d0d0ff080b159e647ebb26c337cb75314d64b52 Mon Sep 17 00:00:00 2001
	2	From: Mark Asselstine <mark.asselstine@windriver.com>
	3	Date: Thu, 1 May 2014 12:09:16 -0400
	4	Subject: [PATCH] build: allow separated src and build dirs
	5
	6	We need to expland the list of include dirs to include the build dir since
	7	generated files will be created there instead of in the src dir.
	8
	9	We also don't want to force using $srcdir for generated files as this will
	10	allow them to be created in the build dir. We account for the slight
	11	deviation in the generated files with expanded include paths.
	12
	13	Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
	14	---
	15	configure.ac \| 2 +-
	16	spice-common/common/Makefile.am \| 14 +++++++-------
	17	2 file changed, 8 insertions(+), 8 deletions(-)
	18
	19	diff --git a/configure.ac b/configure.ac
	20	index edda8e9..9151fcb 100644
	21	--- a/configure.ac
	22	+++ b/configure.ac
	23	@@ -165,7 +165,7 @@ dnl =========================================================================
	24	dnl Check deps
	25
	26	AC_CONFIG_SUBDIRS([spice-common])
	27	-COMMON_CFLAGS='-I ${top_srcdir}/spice-common/ -I ${top_srcdir}/spice-common/spice-protocol/'
	28	+COMMON_CFLAGS='-I ${top_srcdir}/spice-common/ -I ${top_srcdir}/spice-common/common/ -I ${top_srcdir}/spice-common/spice-protocol/ -I ${top_builddir}/spice-common/'
	29	AC_SUBST(COMMON_CFLAGS)
	30
	31	AC_CHECK_LIBM
	32	diff --git a/spice-common/common/Makefile.am b/spice-common/common/Makefile.am
	33	index 45568c6..4c65ac4 100644
	34	--- a/spice-common/common/Makefile.am
	35	+++ b/spice-common/common/Makefile.am
	36	@@ -2,16 +2,16 @@ NULL =
	37
	38	# Avoid need for python(pyparsing) by end users
	39	CLIENT_MARSHALLERS = \
	40	- $(srcdir)/generated_client_demarshallers.c \
	41	- $(srcdir)/generated_client_demarshallers1.c \
	42	- $(srcdir)/generated_client_marshallers.c \
	43	- $(srcdir)/generated_client_marshallers1.c \
	44	+ generated_client_demarshallers.c \
	45	+ generated_client_demarshallers1.c \
	46	+ generated_client_marshallers.c \
	47	+ generated_client_marshallers1.c \
	48	$(NULL)
	49
	50	SERVER_MARSHALLERS = \
	51	- $(srcdir)/generated_server_demarshallers.c \
	52	- $(srcdir)/generated_server_marshallers.c \
	53	- $(srcdir)/generated_server_marshallers.h \
	54	+ generated_server_demarshallers.c \
	55	+ generated_server_marshallers.c \
	56	+ generated_server_marshallers.h \
	57	$(NULL)
	58
	59	BUILT_SOURCES = $(CLIENT_MARSHALLERS) $(SERVER_MARSHALLERS) $(top_srcdir)/spice-protocol/spice/enums.h
	60	--
	61	1.8.3.2
	62


diff --git a/meta-networking/recipes-support/spice/files/configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch b/meta-networking/recipes-support/spice/files/configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch new file mode 100644 index 0000000000..323ef52f8b --- /dev/null +++ b/meta-networking/recipes-support/spice/files/configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch
@@ -0,0 +1,29 @@
	1	From 36efb79076420975f7fa7aa0b03a1fc282291b05 Mon Sep 17 00:00:00 2001
	2	From: Mark Asselstine <mark.asselstine@windriver.com>
	3	Date: Tue, 25 Mar 2014 15:23:25 -0400
	4	Subject: [PATCH] configure.ac: add subdir-objects to AM_INIT_AUTOMAKE
	5
	6	Without this you will get subdir-objects error which will cause
	7	autoreconf to complete successfully.
	8
	9	Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
	10	---
	11	spice-common/configure.ac \| 2 +-
	12	1 file changed, 1 insertion(+), 1 deletion(-)
	13
	14	diff --git a/spice-common/configure.ac b/spice-common/configure.ac
	15	index b5cb960..78f1360 100644
	16	--- a/spice-common/configure.ac
	17	+++ b/spice-common/configure.ac
	18	@@ -13,7 +13,7 @@ AC_CONFIG_AUX_DIR([build-aux])
	19	m4_ifdef([AM_PROG_AR], [AM_PROG_AR])
	20
	21	# Checks for programs
	22	-AM_INIT_AUTOMAKE([1.11 dist-xz no-dist-gzip tar-ustar foreign -Wall -Werror])
	23	+AM_INIT_AUTOMAKE([1.11 dist-xz no-dist-gzip tar-ustar foreign subdir-objects -Wall -Werror])
	24	AM_MAINTAINER_MODE
	25	AM_SILENT_RULES([yes])
	26	LT_INIT
	27	--
	28	1.8.3.2
	29


diff --git a/meta-networking/recipes-support/spice/files/spice-fix-CVE-2013-4282.patch b/meta-networking/recipes-support/spice/files/spice-fix-CVE-2013-4282.patch new file mode 100644 index 0000000000..1a00a85185 --- /dev/null +++ b/meta-networking/recipes-support/spice/files/spice-fix-CVE-2013-4282.patch
@@ -0,0 +1,100 @@
	1	Fix buffer overflow when decrypting client SPICE ticket
	2
	3	commit 8af619009660b24e0b41ad26b30289eea288fcc2 upstream
	4
	5	reds_handle_ticket uses a fixed size 'password' buffer for the decrypted
	6	password whose size is SPICE_MAX_PASSWORD_LENGTH. However,
	7	RSA_private_decrypt which we call for the decryption expects the
	8	destination buffer to be at least RSA_size(link->tiTicketing.rsa)
	9	bytes long. On my spice-server build, SPICE_MAX_PASSWORD_LENGTH
	10	is 60 while RSA_size() is 128, so we end up overflowing 'password'
	11	when using long passwords (this was reproduced using the string:
	12	'fullscreen=1proxy=#enter proxy here; e.g spice_proxy = http://[proxy]:[port]'
	13	as a password).
	14
	15	When the overflow occurs, QEMU dies with:
	16	* stack smashing detected *: qemu-system-x86_64 terminated
	17
	18	This commit ensures we use a corectly sized 'password' buffer,
	19	and that it's correctly nul-terminated so that we can use strcmp
	20	instead of strncmp. To keep using strncmp, we'd need to figure out
	21	which one of 'password' and 'taTicket.password' is the smaller buffer,
	22	and use that size.
	23
	24	This fixes rhbz#999839
	25	diff --git a/server/reds.c b/server/reds.c
	26	index 30d0652..6f262b0 100644
	27	--- a/server/reds.c
	28	+++ b/server/reds.c
	29	@@ -1931,39 +1931,59 @@ static void reds_handle_link(RedLinkInfo *link)
	30	static void reds_handle_ticket(void *opaque)
	31	{
	32	RedLinkInfo link = (RedLinkInfo )opaque;
	33	- char password[SPICE_MAX_PASSWORD_LENGTH];
	34	+ char *password;
	35	time_t ltime;
	36	+ int password_size;
	37
	38	//todo: use monotonic time
	39	time(&ltime);
	40	- RSA_private_decrypt(link->tiTicketing.rsa_size,
	41	- link->tiTicketing.encrypted_ticket.encrypted_data,
	42	- (unsigned char *)password, link->tiTicketing.rsa, RSA_PKCS1_OAEP_PADDING);
	43	+ if (RSA_size(link->tiTicketing.rsa) < SPICE_MAX_PASSWORD_LENGTH) {
	44	+ spice_warning("RSA modulus size is smaller than SPICE_MAX_PASSWORD_LENGTH (%d < %d), "
	45	+ "SPICE ticket sent from client may be truncated",
	46	+ RSA_size(link->tiTicketing.rsa), SPICE_MAX_PASSWORD_LENGTH);
	47	+ }
	48	+
	49	+ password = g_malloc0(RSA_size(link->tiTicketing.rsa) + 1);
	50	+ password_size = RSA_private_decrypt(link->tiTicketing.rsa_size,
	51	+ link->tiTicketing.encrypted_ticket.encrypted_data,
	52	+ (unsigned char *)password,
	53	+ link->tiTicketing.rsa,
	54	+ RSA_PKCS1_OAEP_PADDING);
	55	+ if (password_size == -1) {
	56	+ spice_warning("failed to decrypt RSA encrypted password: %s",
	57	+ ERR_error_string(ERR_get_error(), NULL));
	58	+ goto error;
	59	+ }
	60	+ password[password_size] = '\0';
	61
	62	if (ticketing_enabled && !link->skip_auth) {
	63	int expired = taTicket.expiration_time < ltime;
	64
	65	if (strlen(taTicket.password) == 0) {
	66	- reds_send_link_result(link, SPICE_LINK_ERR_PERMISSION_DENIED);
	67	spice_warning("Ticketing is enabled, but no password is set. "
	68	- "please set a ticket first");
	69	- reds_link_free(link);
	70	- return;
	71	+ "please set a ticket first");
	72	+ goto error;
	73	}
	74
	75	- if (expired \|\| strncmp(password, taTicket.password, SPICE_MAX_PASSWORD_LENGTH) != 0) {
	76	+ if (expired \|\| strcmp(password, taTicket.password) != 0) {
	77	if (expired) {
	78	spice_warning("Ticket has expired");
	79	} else {
	80	spice_warning("Invalid password");
	81	}
	82	- reds_send_link_result(link, SPICE_LINK_ERR_PERMISSION_DENIED);
	83	- reds_link_free(link);
	84	- return;
	85	+ goto error;
	86	}
	87	}
	88
	89	reds_handle_link(link);
	90	+ goto end;
	91	+
	92	+error:
	93	+ reds_send_link_result(link, SPICE_LINK_ERR_PERMISSION_DENIED);
	94	+ reds_link_free(link);
	95	+
	96	+end:
	97	+ g_free(password);
	98	}
	99
	100	static inline void async_read_clear_handlers(AsyncRead *obj)


diff --git a/meta-networking/recipes-support/spice/spice_git.bb b/meta-networking/recipes-support/spice/spice_git.bb new file mode 100644 index 0000000000..04e7a25d70 --- /dev/null +++ b/meta-networking/recipes-support/spice/spice_git.bb
@@ -0,0 +1,76 @@
	1	#
	2	# Copyright (C) 2013 Wind River Systems, Inc.
	3	#
	4
	5	SUMMARY = "Simple Protocol for Independent Computing Environments"
	6	DESCRIPTION = "SPICE (the Simple Protocol for Independent Computing \
	7	Environments) is a remote-display system built for virtual \
	8	environments which allows users to view a computing 'desktop' \
	9	environment - not only on its computer-server machine, but also from \
	10	anywhere on the Internet and using a wide variety of machine \
	11	architectures."
	12
	13	LICENSE = "BSD & LGPLv2.1+"
	14	LIC_FILES_CHKSUM = "file://COPYING;md5=4fbd65380cdd255951079008b364516c"
	15
	16	PR = "r0"
	17	PV = "0.12.4"
	18
	19	# Actual versions based on the checkouts below
	20	# spice = "0.12.4"
	21	# common = "0.12.6"
	22	# protocol = "0.12.6"
	23	SRCREV_spice = "b270fb010a3ddb432dfe6b15e4bdffa6ac086cd0"
	24	SRCREV_spice-common = "fe93908238196bd632287fc9875e6f2e11105d04"
	25	SRCREV_spice-protocol = "784407f248e7f99d2bfcc9368f9acd1efb2b9617"
	26
	27	SRCREV_FORMAT = "spice_spice-common_spice-protocol"
	28
	29	SRC_URI = "git://anongit.freedesktop.org/spice/spice;name=spice \
	30	git://anongit.freedesktop.org/spice/spice-common;destsuffix=git/spice-common;name=spice-common \
	31	git://anongit.freedesktop.org/spice/spice-protocol;destsuffix=git/spice-common/spice-protocol;name=spice-protocol \
	32	"
	33
	34	SRC_URI += " \
	35	file://spice-fix-CVE-2013-4282.patch \
	36	file://configure.ac-add-subdir-objects-to-AM_INIT_AUTOMAKE.patch \
	37	file://build-allow-separated-src-and-build-dirs.patch \
	38	file://0001-red_parse_qxl-Fix-BITMAP_FMT_IS_RGB-defined-but-not-.patch \
	39	file://0001-Use-PRI-macros-in-printf-to-keep-compatibility-betwe.patch \
	40	file://Fix-build-issues-with-gcc-7.patch \
	41	"
	42
	43	S = "${WORKDIR}/git"
	44
	45	inherit autotools gettext pythonnative python-dir pkgconfig
	46
	47	DEPENDS += "python-native celt051 python-pyparsing jpeg pixman alsa-lib glib-2.0"
	48
	49	export PYTHON="${STAGING_BINDIR_NATIVE}/python-native/python"
	50	export PYTHONPATH="${PKG_CONFIG_SYSROOT_DIR}${libdir}/python2.7/site-packages"
	51
	52	PACKAGECONFIG ?= "sasl"
	53
	54	PACKAGECONFIG[smartcard] = "--enable-smartcard,--disable-smartcard,libcacard,"
	55	PACKAGECONFIG[sasl] = "--with-sasl,--without-sasl,cyrus-sasl,"
	56	PACKAGECONFIG[client] = "--enable-client,--disable-client,,"
	57	PACKAGECONFIG[gui] = "--enable-gui,--disable-gui,,"
	58	PACKAGECONFIG[opengl] = "--enable-opengl,--disable-opengl,,"
	59	PACKAGECONFIG[xinerama] = "--enable-xinerama,--disable-xinerama,libxinerama,"
	60
	61	PACKAGES =+ "${PN}-protocol"
	62	LICENSE_${PN}-protocol = "BSD"
	63	FILES_${PN}-protocol += "${includedir}/spice-1"
	64	FILES_${PN}-protocol += "${datadir}/pkgconfig"
	65
	66	do_configure_prepend() {
	67	mkdir -p ${S}/spice-common/spice-protocol/m4
	68	}
	69
	70	do_install_append() {
	71	cd ${B}/spice-common/spice-protocol
	72	oe_runmake DESTDIR="${D}" install
	73	cd -
	74	}
	75
	76	COMPATIBLE_HOST = '(x86_64\|i.86).*-linux'