2022-05-26 16:00:00 +00:00
|
|
|
Summary: Experimental HTTP/2 client, server and proxy
|
|
|
|
Name: nghttp2
|
|
|
|
Version: 1.33.0
|
2023-10-13 10:27:46 +00:00
|
|
|
Release: 5%{?dist}
|
2022-05-26 16:00:00 +00:00
|
|
|
License: MIT
|
|
|
|
Group: Applications/Internet
|
|
|
|
URL: https://nghttp2.org/
|
|
|
|
Source0: https://github.com/tatsuhiro-t/nghttp2/releases/download/v%{version}/nghttp2-%{version}.tar.xz
|
|
|
|
|
|
|
|
# backport security fixes from nghttp2-1.39.2 (CVE-2019-9511 and CVE-2019-9513)
|
|
|
|
Patch1: nghttp2-1.31.1-CVE-2019-9511-and-CVE-2019-9513.patch
|
|
|
|
|
|
|
|
# prevent DoS caused by overly large SETTINGS frames (CVE-2020-11080)
|
|
|
|
Patch2: nghttp2-1.33.0-CVE-2020-11080.patch
|
|
|
|
|
2023-10-13 10:27:46 +00:00
|
|
|
# fix HTTP/2 Rapid Reset (CVE-2023-44487)
|
|
|
|
Patch3: 0003-nghttp2-1.33.0-CVE-2023-44487.patch
|
|
|
|
|
2022-05-26 16:00:00 +00:00
|
|
|
BuildRequires: automake
|
|
|
|
BuildRequires: libtool
|
|
|
|
|
|
|
|
BuildRequires: CUnit-devel
|
|
|
|
BuildRequires: c-ares-devel
|
|
|
|
BuildRequires: gcc-c++
|
|
|
|
BuildRequires: libev-devel
|
|
|
|
BuildRequires: openssl-devel
|
|
|
|
BuildRequires: python3-devel
|
|
|
|
BuildRequires: systemd-devel
|
|
|
|
BuildRequires: zlib-devel
|
|
|
|
|
|
|
|
Requires: libnghttp2%{?_isa} = %{version}-%{release}
|
|
|
|
%{?systemd_requires}
|
|
|
|
|
|
|
|
%description
|
|
|
|
This package contains the HTTP/2 client, server and proxy programs.
|
|
|
|
|
|
|
|
|
|
|
|
%package -n libnghttp2
|
|
|
|
Summary: A library implementing the HTTP/2 protocol
|
|
|
|
Group: Development/Libraries
|
|
|
|
|
|
|
|
%description -n libnghttp2
|
|
|
|
libnghttp2 is a library implementing the Hypertext Transfer Protocol
|
|
|
|
version 2 (HTTP/2) protocol in C.
|
|
|
|
|
|
|
|
|
|
|
|
%package -n libnghttp2-devel
|
|
|
|
Summary: Files needed for building applications with libnghttp2
|
|
|
|
Group: Development/Libraries
|
|
|
|
Requires: libnghttp2%{?_isa} = %{version}-%{release}
|
|
|
|
Requires: pkgconfig
|
|
|
|
|
|
|
|
%description -n libnghttp2-devel
|
|
|
|
The libnghttp2-devel package includes libraries and header files needed
|
|
|
|
for building applications with libnghttp2.
|
|
|
|
|
|
|
|
|
|
|
|
%prep
|
|
|
|
%setup -q
|
|
|
|
%patch1 -p1
|
|
|
|
%patch2 -p1
|
2023-10-13 10:27:46 +00:00
|
|
|
%patch3 -p1
|
2022-05-26 16:00:00 +00:00
|
|
|
autoreconf -fiv
|
|
|
|
|
|
|
|
# make fetch-ocsp-response use Python 3
|
|
|
|
sed -e '1 s|^#!/.*python|&3|' -i script/fetch-ocsp-response
|
|
|
|
|
|
|
|
%build
|
|
|
|
%configure PYTHON=%{__python3} \
|
|
|
|
--disable-python-bindings \
|
|
|
|
--disable-static \
|
|
|
|
--without-libxml2 \
|
|
|
|
--without-spdylay
|
|
|
|
|
|
|
|
# avoid using rpath
|
|
|
|
sed -i libtool \
|
|
|
|
-e 's/^runpath_var=.*/runpath_var=/' \
|
|
|
|
-e 's/^hardcode_libdir_flag_spec=".*"$/hardcode_libdir_flag_spec=""/'
|
|
|
|
|
|
|
|
make %{?_smp_mflags} V=1
|
|
|
|
|
|
|
|
|
|
|
|
%install
|
|
|
|
%make_install
|
|
|
|
install -D -m0444 -p contrib/nghttpx.service \
|
|
|
|
"$RPM_BUILD_ROOT%{_unitdir}/nghttpx.service"
|
|
|
|
|
|
|
|
# not needed on Fedora/RHEL
|
|
|
|
rm -f "$RPM_BUILD_ROOT%{_libdir}/libnghttp2.la"
|
|
|
|
|
|
|
|
# will be installed via %%doc
|
|
|
|
rm -f "$RPM_BUILD_ROOT%{_datadir}/doc/nghttp2/README.rst"
|
|
|
|
|
|
|
|
%ldconfig_scriptlets -n libnghttp2
|
|
|
|
|
|
|
|
%post
|
|
|
|
%systemd_post nghttpx.service
|
|
|
|
|
|
|
|
%postun
|
|
|
|
%systemd_postun nghttpx.service
|
|
|
|
|
|
|
|
|
|
|
|
%check
|
|
|
|
# test the just built library instead of the system one, without using rpath
|
|
|
|
export "LD_LIBRARY_PATH=$RPM_BUILD_ROOT%{_libdir}:$LD_LIBRARY_PATH"
|
|
|
|
make %{?_smp_mflags} check
|
|
|
|
|
|
|
|
|
|
|
|
%files
|
|
|
|
%{_bindir}/h2load
|
|
|
|
%{_bindir}/nghttp
|
|
|
|
%{_bindir}/nghttpd
|
|
|
|
%{_bindir}/nghttpx
|
|
|
|
%{_datadir}/nghttp2
|
|
|
|
%{_mandir}/man1/h2load.1*
|
|
|
|
%{_mandir}/man1/nghttp.1*
|
|
|
|
%{_mandir}/man1/nghttpd.1*
|
|
|
|
%{_mandir}/man1/nghttpx.1*
|
|
|
|
%{_unitdir}/nghttpx.service
|
|
|
|
|
|
|
|
%files -n libnghttp2
|
|
|
|
%{_libdir}/libnghttp2.so.*
|
|
|
|
%{!?_licensedir:%global license %%doc}
|
|
|
|
%license COPYING
|
|
|
|
|
|
|
|
%files -n libnghttp2-devel
|
|
|
|
%{_includedir}/nghttp2
|
|
|
|
%{_libdir}/pkgconfig/libnghttp2.pc
|
|
|
|
%{_libdir}/libnghttp2.so
|
|
|
|
%doc README.rst
|
|
|
|
|
|
|
|
|
|
|
|
%changelog
|
2023-10-13 10:27:46 +00:00
|
|
|
* Fri Oct 13 2023 Jan Macku <jamacku@redhat.com> - 1.33.0-5
|
|
|
|
- fix HTTP/2 Rapid Reset (CVE-2023-44487)
|
|
|
|
|
2023-06-29 15:12:43 +00:00
|
|
|
* Tue Jun 09 2020 Kamil Dudka <kdudka@redhat.com> 1.33.0-4
|
2022-05-26 16:00:00 +00:00
|
|
|
- prevent DoS caused by overly large SETTINGS frames (CVE-2020-11080)
|
|
|
|
|
|
|
|
* Wed Aug 28 2019 Kamil Dudka <kdudka@redhat.com> 1.33.0-3
|
|
|
|
- rebuild to trigger gating (#1681044)
|
|
|
|
|
|
|
|
* Mon Aug 19 2019 Kamil Dudka <kdudka@redhat.com> 1.33.0-2
|
|
|
|
- backport security fixes from nghttp2-1.39.2 (CVE-2019-9511 and CVE-2019-9513)
|
|
|
|
|
|
|
|
* Tue Oct 09 2018 Kamil Dudka <kdudka@redhat.com> 1.33.0-1
|
|
|
|
- use python3 for build
|
|
|
|
- update to the latest upstream release (#1636992)
|
|
|
|
|
|
|
|
* Wed May 09 2018 Kamil Dudka <kdudka@redhat.com> 1.32.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Fri Apr 13 2018 Kamil Dudka <kdudka@redhat.com> 1.31.1-1
|
|
|
|
- update to the latest upstream release (fixes CVE-2018-1000168)
|
|
|
|
|
|
|
|
* Thu Mar 15 2018 Kamil Dudka <kdudka@redhat.com> 1.31.0-2
|
|
|
|
- make fetch-ocsp-response use Python 3
|
|
|
|
|
|
|
|
* Tue Feb 27 2018 Kamil Dudka <kdudka@redhat.com> 1.31.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Feb 19 2018 Kamil Dudka <kdudka@redhat.com> 1.30.0-3
|
|
|
|
- add explicit BR for the gcc-c++ compiler
|
|
|
|
|
|
|
|
* Thu Feb 08 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.30.0-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
|
|
|
|
|
|
|
|
* Mon Feb 05 2018 Kamil Dudka <kdudka@redhat.com> 1.30.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sat Feb 03 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> - 1.29.0-2
|
|
|
|
- Switch to %%ldconfig_scriptlets
|
|
|
|
|
|
|
|
* Tue Dec 19 2017 Kamil Dudka <kdudka@redhat.com> 1.29.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sun Nov 26 2017 Kamil Dudka <kdudka@redhat.com> 1.28.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Wed Oct 25 2017 Kamil Dudka <kdudka@redhat.com> 1.27.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Wed Sep 20 2017 Kamil Dudka <kdudka@redhat.com> 1.26.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Fri Aug 18 2017 Kamil Dudka <kdudka@redhat.com> 1.25.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.24.0-4
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
|
|
|
|
|
|
|
|
* Sat Jul 29 2017 Florian Weimer <fweimer@redhat.com> - 1.24.0-3
|
|
|
|
- Rebuild with binutils fix for ppc64le (#1475636)
|
|
|
|
|
|
|
|
* Wed Jul 26 2017 Kamil Dudka <kdudka@redhat.com> 1.24.0-2
|
|
|
|
- drop workaround for a GCC bug that has been fixed (#1358845)
|
|
|
|
|
|
|
|
* Sun Jul 02 2017 Kamil Dudka <kdudka@redhat.com> 1.24.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Tue May 30 2017 Kamil Dudka <kdudka@redhat.com> 1.23.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sat May 27 2017 Kamil Dudka <kdudka@redhat.com> 1.23.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Apr 24 2017 Kamil Dudka <kdudka@redhat.com> 1.22.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Apr 10 2017 Kamil Dudka <kdudka@redhat.com> 1.21.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Mar 27 2017 Kamil Dudka <kdudka@redhat.com> 1.21.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sun Feb 26 2017 Tomasz Torcz <ttorcz@fedoraproject.org> - 1.20.0-1
|
|
|
|
- package systemd unit file (#1426929)
|
|
|
|
- update to latest upstream release
|
|
|
|
|
|
|
|
* Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.19.0-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
|
|
|
|
|
|
|
|
* Wed Jan 25 2017 Kamil Dudka <kdudka@redhat.com> 1.19.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu Jan 05 2017 Kamil Dudka <kdudka@redhat.com> 1.18.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Tue Dec 27 2016 Kamil Dudka <kdudka@redhat.com> 1.18.0-1
|
|
|
|
- update to the latest upstream release (requires c-ares for apps)
|
|
|
|
|
|
|
|
* Mon Nov 28 2016 Kamil Dudka <kdudka@redhat.com> 1.17.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Tue Nov 15 2016 Kamil Dudka <kdudka@redhat.com> 1.16.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Oct 24 2016 Kamil Dudka <kdudka@redhat.com> 1.16.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Sep 26 2016 Kamil Dudka <kdudka@redhat.com> 1.15.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Sep 12 2016 Kamil Dudka <kdudka@redhat.com> 1.14.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu Aug 25 2016 Kamil Dudka <kdudka@redhat.com> 1.14.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Tue Jul 26 2016 Kamil Dudka <kdudka@redhat.com> 1.13.0-2
|
|
|
|
- prevent nghttpx from crashing on armv7hl (#1358845)
|
|
|
|
|
|
|
|
* Thu Jul 21 2016 Kamil Dudka <kdudka@redhat.com> 1.13.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Jun 27 2016 Kamil Dudka <kdudka@redhat.com> 1.12.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sun May 29 2016 Kamil Dudka <kdudka@redhat.com> 1.11.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu May 26 2016 Kamil Dudka <kdudka@redhat.com> 1.11.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Apr 25 2016 Kamil Dudka <kdudka@redhat.com> 1.10.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sun Apr 03 2016 Kamil Dudka <kdudka@redhat.com> 1.9.2-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Tue Mar 29 2016 Kamil Dudka <kdudka@redhat.com> 1.9.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu Feb 25 2016 Kamil Dudka <kdudka@redhat.com> 1.8.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu Feb 11 2016 Kamil Dudka <kdudka@redhat.com> 1.7.1-1
|
|
|
|
- update to the latest upstream release (fixes CVE-2016-1544)
|
|
|
|
|
|
|
|
* Fri Feb 05 2016 Kamil Dudka <kdudka@redhat.com> 1.7.0-3
|
|
|
|
- make the package compile with gcc-6
|
|
|
|
|
|
|
|
* Thu Feb 04 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.7.0-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
|
|
|
|
|
|
|
|
* Mon Jan 25 2016 Kamil Dudka <kdudka@redhat.com> 1.7.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Fri Dec 25 2015 Kamil Dudka <kdudka@redhat.com> 1.6.0-1
|
|
|
|
- update to the latest upstream release (fixes CVE-2015-8659)
|
|
|
|
|
|
|
|
* Thu Nov 26 2015 Kamil Dudka <kdudka@redhat.com> 1.5.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Oct 26 2015 Kamil Dudka <kdudka@redhat.com> 1.4.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Thu Sep 24 2015 Kamil Dudka <kdudka@redhat.com> 1.3.4-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Wed Sep 23 2015 Kamil Dudka <kdudka@redhat.com> 1.3.3-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Wed Sep 16 2015 Kamil Dudka <kdudka@redhat.com> 1.3.2-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Sep 14 2015 Kamil Dudka <kdudka@redhat.com> 1.3.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Aug 31 2015 Kamil Dudka <kdudka@redhat.com> 1.3.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Mon Aug 17 2015 Kamil Dudka <kdudka@redhat.com> 1.2.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Sun Aug 09 2015 Kamil Dudka <kdudka@redhat.com> 1.2.0-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Wed Jul 15 2015 Kamil Dudka <kdudka@redhat.com> 1.1.1-1
|
|
|
|
- update to the latest upstream release
|
|
|
|
|
|
|
|
* Tue Jun 30 2015 Kamil Dudka <kdudka@redhat.com> 1.0.5-1
|
|
|
|
- packaged for Fedora (#1237247)
|