%global somajor 5 %global sominor 0 %global sotiny 0 %global soversion %{somajor}.%{sominor}.%{sotiny} Name: libvpx Summary: VP8/VP9 Video Codec SDK Version: 1.7.0 Release: 11%{?dist} License: BSD Group: System Environment/Libraries #Source0: http://downloads.webmproject.org/releases/webm/%{name}-%{version}.tar.bz2 Source0: https://github.com/webmproject/libvpx/archive/v%{version}.tar.gz Source1: vpx_config.h # Thanks to debian. Source2: libvpx.ver URL: http://www.webmproject.org/code/ %ifarch %{ix86} x86_64 BuildRequires: yasm %endif BuildRequires: doxygen, perl(Getopt::Long) # Do not disable FORTIFY_SOURCE=2 Patch0: libvpx-1.7.0-leave-fortify-source-on.patch Patch1: 0001-CVE-2019-9232-Fix-OOB-memory-access-on-fuzzed-data.patch Patch2: 0002-CVE-2019-9433-VP8-Fix-use-after-free-in-postproc.patch Patch3: 0003-CVE-2019-9371-update-libwebm.patch Patch4: 0004-CVE-2019-2126-update-libwebm-to-libwebm-1.0.0.27-361.patch Patch5: 0001-Fix-bug-with-smaller-width-bigger-size.patch Patch6: 0001-VP8-disallow-thread-count-changes.patch Patch7: 0001-Fix-integer-overflows-in-calc-of-stride_in_bytes.patch Patch8: 0002-Apply-stride_align-to-byte-count-not-pixel-count.patch Patch9: 0003-Fix-a-bug-in-alloc_size-for-high-bit-depths.patch Patch10: include-limits.patch %description libvpx provides the VP8/VP9 SDK, which allows you to integrate your applications with the VP8 and VP9 video codecs, high quality, royalty free, open source codecs deployed on millions of computers and devices worldwide. %package devel Summary: Development files for libvpx Group: Development/Libraries Requires: %{name}%{?_isa} = %{version}-%{release} %description devel Development libraries and headers for developing software against libvpx. %package utils Summary: VP8 utilities and tools Group: Development/Tools Requires: %{name}%{?_isa} = %{version}-%{release} %description utils A selection of utilities and tools for VP8, including a sample encoder and decoder. %prep %setup -q -n libvpx-%{version} %patch0 -p1 -b .leave-fs-on %patch1 -p1 -b .0001 %patch2 -p1 -b .0002 %patch3 -p1 -b .0003 %patch4 -p1 -b .0004 %patch5 -p1 -b .0005 %patch6 -p1 -b .0006 %patch7 -p1 -b .0007 %patch8 -p1 -b .0008 %patch9 -p1 -b .0009 %patch10 -p1 -b .0010 %build %ifarch %{ix86} %global vpxtarget x86-linux-gcc %else %ifarch x86_64 %global vpxtarget x86_64-linux-gcc %else %ifarch armv7hl %global vpxtarget armv7-linux-gcc %else %ifarch aarch64 %global vpxtarget arm64-linux-gcc %else %global vpxtarget generic-gnu %endif %endif %endif %endif # History: The configure script used to reject the shared flag on the generic target. # This meant that we needed to fall back to manual shared lib creation. # However, the modern configure script permits the shared flag and assumes ELF. # Additionally, the libvpx.ver would need to be updated to work properly. # As a result, we disable this universally, but keep it around in case we ever need to support # something "special". %if "%{vpxtarget}" == "generic-gnu" %global generic_target 0 %else %global generic_target 0 %endif %set_build_flags %ifarch armv7hl CROSS=armv7hl-redhat-linux-gnueabi- CHOST=armv7hl-redhat-linux-gnueabi-hardfloat ./configure \ %else ./configure --target=%{vpxtarget} \ %endif %ifarch %{arm} --disable-neon --disable-neon_asm \ %endif --enable-pic --disable-install-srcs \ --enable-vp9-decoder --enable-vp9-encoder \ --enable-experimental --enable-spatial-svc \ --enable-vp9-highbitdepth --enable-webm-io \ %if ! %{generic_target} --enable-shared \ %endif --enable-install-srcs \ --prefix=%{_prefix} --libdir=%{_libdir} --size-limit=16384x16384 # Hack our optflags in. sed -i "s|-O3|%{optflags}|g" libs-%{vpxtarget}.mk sed -i "s|-O3|%{optflags}|g" examples-%{vpxtarget}.mk sed -i "s|-O3|%{optflags}|g" docs-%{vpxtarget}.mk %ifarch armv7hl #hackety hack hack sed -i "s|AR=armv7hl-redhat-linux-gnueabi-ar|AR=ar|g" libs-%{vpxtarget}.mk sed -i "s|AR=armv7hl-redhat-linux-gnueabi-ar|AR=ar|g" examples-%{vpxtarget}.mk sed -i "s|AR=armv7hl-redhat-linux-gnueabi-ar|AR=ar|g" docs-%{vpxtarget}.mk sed -i "s|AS=armv7hl-redhat-linux-gnueabi-as|AS=as|g" libs-%{vpxtarget}.mk sed -i "s|AS=armv7hl-redhat-linux-gnueabi-as|AS=as|g" examples-%{vpxtarget}.mk sed -i "s|AS=armv7hl-redhat-linux-gnueabi-as|AS=as|g" docs-%{vpxtarget}.mk sed -i "s|NM=armv7hl-redhat-linux-gnueabi-nm|NM=nm|g" libs-%{vpxtarget}.mk sed -i "s|NM=armv7hl-redhat-linux-gnueabi-nm|NM=nm|g" examples-%{vpxtarget}.mk sed -i "s|NM=armv7hl-redhat-linux-gnueabi-nm|NM=nm|g" docs-%{vpxtarget}.mk %endif make %{?_smp_mflags} verbose=true # Manual shared library creation # We should never need to do this anymore, and if we do, we need to fix the version-script. %if %{generic_target} mkdir tmp cd tmp ar x ../libvpx_g.a cd .. gcc -fPIC -shared -pthread -lm -Wl,--no-undefined -Wl,-soname,libvpx.so.%{somajor} -Wl,--version-script,%{SOURCE2} -Wl,-z,noexecstack -o libvpx.so.%{soversion} tmp/*.o rm -rf tmp %endif # Temporarily dance the static libs out of the way # mv libvpx.a libNOTvpx.a # mv libvpx_g.a libNOTvpx_g.a # We need to do this so the examples can link against it. # ln -sf libvpx.so.%{soversion} libvpx.so # make %{?_smp_mflags} verbose=true target=examples CONFIG_SHARED=1 # make %{?_smp_mflags} verbose=true target=docs # Put them back so the install doesn't fail # mv libNOTvpx.a libvpx.a # mv libNOTvpx_g.a libvpx_g.a %install %ifarch armv7hl export CROSS=armv7hl-redhat-linux-gnueabi- export CHOST=armv7hl-redhat-linux-gnueabi-hardfloat %endif make DIST_DIR=%{buildroot}%{_prefix} dist # Simpler to label the dir as %%doc. if [ -d %{buildroot}/usr/docs ]; then mv %{buildroot}/usr/docs doc/ fi # Again, we should never need to do this anymore. %if %{generic_target} install -p libvpx.so.%{soversion} %{buildroot}%{_libdir} pushd %{buildroot}%{_libdir} ln -sf libvpx.so.%{soversion} libvpx.so ln -sf libvpx.so.%{soversion} libvpx.so.%{somajor} ln -sf libvpx.so.%{soversion} libvpx.so.%{somajor}.%{sominor} popd %endif pushd %{buildroot} # Stuff we don't need. rm -rf usr/build/ usr/md5sums.txt usr/lib*/*.a usr/CHANGELOG usr/README # No, bad google. No treat. mv usr/bin/examples/* usr/bin/ rm -rf usr/bin/examples # Rename a few examples mv usr/bin/postproc usr/bin/vp8_postproc mv usr/bin/simple_decoder usr/bin/vp8_simple_decoder mv usr/bin/simple_encoder usr/bin/vp8_simple_encoder mv usr/bin/twopass_encoder usr/bin/vp8_twopass_encoder # Fix the binary permissions chmod 755 usr/bin/* popd # Get the vpx_config.h file %ifarch %{arm} cp -a vpx_config.h %{buildroot}%{_includedir}/vpx/vpx_config-arm.h %else # Does ppc64le need its own? %ifarch ppc64 ppc64le cp -a vpx_config.h %{buildroot}%{_includedir}/vpx/vpx_config-ppc64.h %else %ifarch s390 s390x cp -a vpx_config.h %{buildroot}%{_includedir}/vpx/vpx_config-s390.h %else %ifarch %{ix86} cp -a vpx_config.h %{buildroot}%{_includedir}/vpx/vpx_config-x86.h %else cp -a vpx_config.h %{buildroot}%{_includedir}/vpx/vpx_config-%{_arch}.h %endif %endif %endif %endif cp %{SOURCE1} %{buildroot}%{_includedir}/vpx/vpx_config.h # for timestamp sync touch -r AUTHORS %{buildroot}%{_includedir}/vpx/vpx_config.h mv %{buildroot}%{_prefix}/src/vpx_dsp %{buildroot}%{_includedir}/ mv %{buildroot}%{_prefix}/src/vpx_mem %{buildroot}%{_includedir}/ mv %{buildroot}%{_prefix}/src/vpx_ports %{buildroot}%{_includedir}/ mv %{buildroot}%{_prefix}/src/vpx_scale %{buildroot}%{_includedir}/ rm -rf %{buildroot}%{_prefix}/src %ldconfig_scriptlets %files %license LICENSE %doc AUTHORS CHANGELOG README %{_libdir}/libvpx.so.* %files devel # These are SDK docs, not really useful to an end-user. %doc docs/html/ %{_includedir}/vpx/ %{_includedir}/vpx_dsp/ %{_includedir}/vpx_mem/ %{_includedir}/vpx_ports/ %{_includedir}/vpx_scale/ %{_libdir}/pkgconfig/vpx.pc %{_libdir}/libvpx.so %files utils %{_bindir}/* %changelog * Fri Jul 5 2024 Wim Taymans - 1.7.0-11 - Add patch to fix integer overflows. - Fix compilation by including limits.h - Resolves: RHEL-40650 * Thu Oct 5 2023 Wim Taymans - 1.7.0-10 - Add patch for CVE-2023-5217 - Resolves: RHEL-10612 * Tue Oct 3 2023 Wim Taymans - 1.7.0-9 - Add patch for CVE-2023-44488 - Resolves: RHEL-11615 * Wed Apr 1 2020 Wim Taymans - 1.7.0-8 - Resolves: rhbz#1796086, rhbz#1796100, rhbz#1796448, rhbz#1796454 - Enable webm-io explicitly * Wed Mar 25 2020 Wim Taymans - 1.7.0-7 - Fix for CVE-2019-9232, CVE-2019-9433, CVE-2019-9371, CVE-2019-2126 - Resolves: rhbz#1796086, rhbz#1796100, rhbz#1796448, rhbz#1796454 - Remove php-cli BR * Tue Oct 09 2018 Wim Taymans - 1.7.0-6 - Set build flags in all cases - Resolves: #1630588 * Mon Feb 12 2018 Tom Callaway - 1.7.0-5 - properly set build flags in rawhide (bz1543819) * Wed Feb 07 2018 Fedora Release Engineering - 1.7.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Sat Feb 3 2018 Tom Callaway - 1.7.0-3 - package more files (for firefox) - setup vpx_config.h for multilib * Sat Feb 03 2018 Igor Gnatenko - 1.7.0-2 - Switch to %%ldconfig_scriptlets * Fri Jan 26 2018 Tom Callaway - 1.7.0-1 - update to 1.7.0 (ABI change) * Wed Jan 17 2018 Wim Taymans - 1.6.1-5 - fix for CVE-2017-13194 * Thu Aug 03 2017 Fedora Release Engineering - 1.6.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering - 1.6.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Fri Feb 10 2017 Fedora Release Engineering - 1.6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Mon Jan 16 2017 Tom Callaway - 1.6.1-1 - update to 1.6.1 * Thu Jan 12 2017 Tom Callaway - 1.6.0-2 - enable vp9-highbitdepth (thanks to mike@cchtml.com) * Fri Jul 22 2016 Tom Callaway - 1.6.0-1 - update to 1.6.0 * Wed Mar 16 2016 Tom Callaway - 1.5.0-4 - disable generic_target conditional universally (bz1311125) * Tue Mar 8 2016 Tom Callaway - 1.5.0-3 - enable-experimental and enable-spatial-svc * Thu Feb 04 2016 Fedora Release Engineering - 1.5.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Tue Dec 1 2015 Tom Callaway - 1.5.0-1 - update to 1.5.0 * Mon Sep 21 2015 Tom Callaway - 1.4.0-6 - remove exit 0 * Tue Sep 15 2015 Tom Callaway - 1.4.0-5 - set --size-limit=16384x16384 to avoid CVE-2015-1258 * Mon Jul 27 2015 Kalev Lember - 1.4.0-4 - Package review fixes (#1225648) - Update URL - Use license macro - Escape a commented out macro * Wed Jun 17 2015 Fedora Release Engineering - 1.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sat May 02 2015 Kalev Lember - 1.4.0-2 - Rebuilt for GCC 5 C++11 ABI change * Mon Apr 6 2015 Tom Callaway - 1.4.0-1 - update to 1.4.0 * Sun Aug 17 2014 Fedora Release Engineering - 1.3.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 07 2014 Fedora Release Engineering - 1.3.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Mar 20 2014 Wim Taymans - 1.3.0-4 - fix Illegal Instruction abort * Thu Feb 13 2014 Dan Horák - 1.3.0-3 - update library symbol list for 1.3.0 from Debian * Tue Feb 11 2014 Tom Callaway - 1.3.0-2 - armv7hl specific target * Tue Feb 11 2014 Tom Callaway - 1.3.0-1 - update to 1.3.0 * Sat Aug 03 2013 Fedora Release Engineering - 1.2.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Thu Feb 28 2013 Tom Callaway - 1.2.0-1 - update to 1.2.0 * Thu Feb 14 2013 Fedora Release Engineering - 1.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering - 1.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue May 29 2012 Tom Callaway - 1.1.0-1 - update to 1.1.0 * Tue May 29 2012 Tom Callaway - 1.0.0-3 - fix vpx.pc file to include -lm (bz825754) * Fri May 11 2012 Tom Callaway - 1.0.0-2 - use included vpx.pc file (drop local libvpx.pc) - apply upstream fix to vpx.pc file (bz 814177) * Mon Jan 30 2012 Tom Callaway - 1.0.0-1 - update to 1.0.0 * Fri Jan 13 2012 Fedora Release Engineering - 0.9.7.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Mon Oct 10 2011 Dan Horák - 0.9.7.1-3 - use macro instead of hard-coded version * Mon Sep 12 2011 Dan Horák - 0.9.7.1-2 - fix build on generic targets * Tue Aug 16 2011 Adam Jackson 0.9.7.1-1 - libvpx 0.9.7-p1 * Tue Aug 09 2011 Adam Jackson 0.9.7-1 - libvpx 0.9.7 * Mon Mar 21 2011 Dan Horák - 0.9.6-2 - add 2 symbols to the shared library for generic targets * Thu Mar 10 2011 Tom Callaway - 0.9.6-1 - update to 0.9.6 * Tue Feb 08 2011 Fedora Release Engineering - 0.9.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Wed Nov 17 2010 Tom "spot" Callaway 0.9.5-2 - apply patch from upstream git (Change I6266aba7), should resolve CVE-2010-4203 * Mon Nov 1 2010 Tom "spot" Callaway 0.9.5-1 - update to 0.9.5 * Wed Sep 1 2010 Tom "spot" Callaway 0.9.1-3 - only package html docs to avoid multilib conflict (bz 613185) * Thu Jun 24 2010 Tom "spot" Callaway 0.9.1-2 - build shared library the old way for generic arches * Thu Jun 24 2010 Tom "spot" Callaway 0.9.1-1 - update to 0.9.1 * Fri Jun 11 2010 Tom "spot" Callaway 0.9.0-7 - update to git revision 8389f1967c5f8b3819cca80705b1b4ba04132b93 - upstream fix for bz 599147 - proper shared library support * Wed Jun 2 2010 Tom "spot" Callaway 0.9.0-6 - add hackish fix for bz 599147 (upstream will hopefully fix properly in future release) * Fri May 21 2010 Tom "spot" Callaway 0.9.0-5 - fix noexecstack flag * Thu May 20 2010 Tom "spot" Callaway 0.9.0-4 - BuildRequires: yasm (we're optimized again) * Thu May 20 2010 Tom "spot" Callaway 0.9.0-3 - add pkg-config file - move headers into include/vpx/ - enable optimization * Thu May 20 2010 Tom "spot" Callaway 0.9.0-2 - fix permissions on binaries - rename generic binaries to v8_* - link shared library to -lm, -lpthread to resolve missing weak symbols * Wed May 19 2010 Tom "spot" Callaway 0.9.0-1 - Initial package for Fedora