ad14938327
Fixes CVE-2020-12867 (GHSL-2020-075), CVE-2020-12862 (GHSL-2020-082), CVE-2020-12863 (GHSL-2020-083), CVE-2020-12865 (GHSL-2020-084), and several other memory management bugs. Mitigates CVE-2020-12866 (GHSL-2020-079), CVE-2020-12861 (GHSL-2020-080), and CVE-2020-12864 (GHSL-2020-081). * gnu/packages/scanner.scm (sane-backends-minimal): Update to 1.0.30.
247 lines
11 KiB
Scheme
247 lines
11 KiB
Scheme
;;; GNU Guix --- Functional package management for GNU
|
||
;;; Copyright © 2014 John Darrington <jmd@gnu.org>
|
||
;;; Copyright © 2015 Andy Wingo <wingo@igalia.com>
|
||
;;; Copyright © 2016 Andy Patterson <ajpatter@uwaterloo.ca>
|
||
;;; Copyright © 2017, 2019, 2020 Tobias Geerinckx-Rice <me@tobias.gr>
|
||
;;; Copyright © 2018 Efraim Flashner <efraim@flashner.co.il>
|
||
;;;
|
||
;;; This file is part of GNU Guix.
|
||
;;;
|
||
;;; GNU Guix is free software; you can redistribute it and/or modify it
|
||
;;; under the terms of the GNU General Public License as published by
|
||
;;; the Free Software Foundation; either version 3 of the License, or (at
|
||
;;; your option) any later version.
|
||
;;;
|
||
;;; GNU Guix is distributed in the hope that it will be useful, but
|
||
;;; WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||
;;; GNU General Public License for more details.
|
||
;;;
|
||
;;; You should have received a copy of the GNU General Public License
|
||
;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
|
||
|
||
(define-module (gnu packages scanner)
|
||
#:use-module (gnu packages)
|
||
#:use-module (gnu packages freedesktop)
|
||
#:use-module (gnu packages ghostscript)
|
||
#:use-module (gnu packages gtk)
|
||
#:use-module (gnu packages image)
|
||
#:use-module (gnu packages libusb)
|
||
#:use-module (gnu packages pkg-config)
|
||
#:use-module (guix build-system gnu)
|
||
#:use-module (guix download)
|
||
#:use-module (guix git-download)
|
||
#:use-module ((guix licenses)
|
||
#:prefix licence:)
|
||
#:use-module (guix packages)
|
||
#:use-module (guix utils))
|
||
|
||
(define-public sane-backends-minimal
|
||
(package
|
||
(name "sane-backends-minimal")
|
||
(version "1.0.30")
|
||
(source (origin
|
||
(method url-fetch)
|
||
(uri (string-append
|
||
"https://gitlab.com/sane-project/backends/uploads/"
|
||
"c3dd60c9e054b5dee1e7b01a7edc98b0/"
|
||
"sane-backends-" version ".tar.gz"))
|
||
(sha256
|
||
(base32
|
||
"18vryaycps3zpjzxh0wjgg8nv2f4pdvcfxxmdfj28qbzqjlrcp9z"))
|
||
(modules '((guix build utils)))
|
||
(snippet
|
||
;; Generated HTML files and udev rules normally embed a
|
||
;; timestamp. Work around that to build things reproducibly.
|
||
'(begin
|
||
(substitute* "tools/sane-desc.c"
|
||
(("asctime \\(localtime \\(¤t_time\\)\\)")
|
||
"\"1970-01-01\""))
|
||
#t))))
|
||
(build-system gnu-build-system)
|
||
(native-inputs
|
||
`(("pkg-config" ,pkg-config)))
|
||
(inputs
|
||
`(("libusb" ,libusb)))
|
||
(arguments
|
||
`(#:phases
|
||
(modify-phases %standard-phases
|
||
(add-before 'configure 'disable-backends
|
||
(lambda _
|
||
(setenv "BACKENDS" " ")
|
||
|
||
;; Disable tests that may require back ends to be built.
|
||
(substitute* "testsuite/Makefile.in"
|
||
((" backend ") " "))
|
||
#t))
|
||
(add-after 'unpack 'disable-failing-tests
|
||
(lambda _
|
||
;; Disable unmaintained tests that that fail with errors resembling:
|
||
;;
|
||
;; < # by sane-desc 3.5 from sane-backends 1.0.24git on Jul 31 2013
|
||
;; ---
|
||
;; > # by sane-desc 3.5 from sane-backends 1.0.27 on 1970-01-01#
|
||
;; FAIL: sane-desc -m usermap -s ./data
|
||
(for-each
|
||
(lambda (pattern)
|
||
(substitute* "testsuite/tools/Makefile.in"
|
||
(((string-append " " pattern " ")) " ")))
|
||
(list "usermap" "db" "udev" "udev\\+acl" "udev\\+hwdb" "hwdb"))
|
||
|
||
;; Disable tests that try to connect to actual USB hardware & fail
|
||
;; with the following error when no USB access is allowed at all:
|
||
;;
|
||
;; sanei_usb_test: sanei_usb_test.c:849: main: Assertion
|
||
;; `test_init (1)' failed.
|
||
(substitute* "testsuite/sanei/Makefile.in"
|
||
(("sanei_usb_test\\$\\(EXEEXT\\) ") ""))
|
||
#t))
|
||
(add-after 'install 'install-udev-rules
|
||
(lambda* (#:key outputs #:allow-other-keys)
|
||
(let ((out (assoc-ref outputs "out")))
|
||
(mkdir-p (string-append out "/lib/udev/rules.d"))
|
||
(copy-file "tools/udev/libsane.rules"
|
||
(string-append out
|
||
"/lib/udev/rules.d/"
|
||
"60-libsane.rules"))
|
||
#t))))))
|
||
(home-page "http://www.sane-project.org")
|
||
(synopsis
|
||
"Raster image scanner library and drivers, without scanner support")
|
||
(description "SANE stands for \"Scanner Access Now Easy\" and is an API
|
||
proving access to any raster image scanner hardware (flatbed scanner,
|
||
hand-held scanner, video- and still-cameras, frame-grabbers, etc.). The
|
||
package contains the library, but no drivers.")
|
||
(license licence:gpl2+))) ; plus linking exception
|
||
|
||
;; This variant links in the hpaio backend, provided by hplip, which adds
|
||
;; support for HP scanners whose backends are not maintained by
|
||
;; 'sane-backends'. It also builds all of those backends.
|
||
(define-public sane-backends
|
||
(package
|
||
(inherit sane-backends-minimal)
|
||
(name "sane-backends")
|
||
(inputs
|
||
`(("hplip" ,(@ (gnu packages cups) hplip-minimal))
|
||
("libjpeg" ,libjpeg-turbo) ; wanted by pixma, epsonds, others
|
||
("libpng" ,libpng) ; support ‘scanimage --format=png’
|
||
,@(package-inputs sane-backends-minimal)))
|
||
(arguments
|
||
(substitute-keyword-arguments (package-arguments sane-backends-minimal)
|
||
((#:phases phases)
|
||
`(modify-phases ,phases
|
||
(delete 'disable-backends)
|
||
(add-after 'disable-failing-tests 'disable-failing-backend-tests
|
||
(lambda _
|
||
;; Disable test that fails on i686:
|
||
;; <https://bugs.gnu.org/39449>
|
||
(substitute* "testsuite/backend/genesys/Makefile.in"
|
||
((" genesys_unit_tests\\$\\(EXEEXT\\)") ""))
|
||
#t))
|
||
(add-after 'unpack 'add-backends
|
||
(lambda _
|
||
(substitute* "backend/dll.conf.in"
|
||
(("hp5590" all) (format #f "~a~%~a" all "hpaio")))
|
||
#t))
|
||
(add-after 'install 'install-hpaio
|
||
(lambda* (#:key inputs outputs #:allow-other-keys)
|
||
(define hplip (string-append (assoc-ref inputs "hplip")
|
||
"/lib/sane"))
|
||
(define out (string-append (assoc-ref outputs "out")
|
||
"/lib/sane"))
|
||
(for-each
|
||
(lambda (file)
|
||
(symlink file (string-append out "/" (basename file))))
|
||
(find-files hplip))
|
||
#t))))))
|
||
(synopsis
|
||
"Raster image scanner library and drivers, with scanner support")
|
||
(description "SANE stands for \"Scanner Access Now Easy\" and is an API
|
||
proving access to any raster image scanner hardware (flatbed scanner,
|
||
hand-held scanner, video- and still-cameras, frame-grabbers, etc.). The
|
||
package contains the library and drivers.")))
|
||
|
||
(define-public xsane
|
||
(package
|
||
(name "xsane")
|
||
(version "0.999")
|
||
(source
|
||
(origin
|
||
(method git-fetch)
|
||
(uri (git-reference
|
||
(url "https://gitlab.com/sane-project/frontend/xsane.git")
|
||
(commit version)))
|
||
(file-name (git-file-name name version))
|
||
(sha256
|
||
(base32 "08zvxj7i1s88ckrsqldmsrikc3g62a6p3s3i5b5x4krcfpi3vs50"))
|
||
;; Apply some important-looking fixes. There are many more unreleased
|
||
;; commits upstream. A 1.0 release is planned.
|
||
(patches (search-patches "xsane-fix-memory-leak.patch"
|
||
"xsane-fix-pdf-floats.patch"
|
||
"xsane-fix-snprintf-buffer-length.patch"
|
||
"xsane-support-ipv6.patch"
|
||
"xsane-tighten-default-umask.patch"))
|
||
(modules '((guix build utils)))
|
||
(snippet
|
||
'(begin
|
||
;; Remove ancient bundled lprng code under a non-free licence. See
|
||
;; <https://trisquel.info/en/issues/10713>, which solves the problem
|
||
;; by replacing it with a newer (free) copy. We let the build fall
|
||
;; back to the system version instead, which appears to work fine.
|
||
(delete-file "lib/snprintf.c")
|
||
(substitute* "lib/Makefile.in"
|
||
(("snprintf\\.o ") ""))
|
||
#t))))
|
||
(build-system gnu-build-system)
|
||
(arguments
|
||
`(#:make-flags
|
||
(list (string-append "xsanedocdir=" (assoc-ref %outputs "out")
|
||
"/share/doc/" ,name "-" ,version))
|
||
#:tests? #f ; no test suite
|
||
#:phases
|
||
(modify-phases %standard-phases
|
||
(add-after 'unpack 'patch-invalid-dereference
|
||
;; Fix the following compilation error with libpng:
|
||
;; xsane-save.c: In function ‘xsane_save_png’:
|
||
;; xsane-save.c:4913:21: error: dereferencing pointer to
|
||
;; incomplete type ‘png_struct {aka struct png_struct_def}’
|
||
;; if (setjmp(png_ptr->jmpbuf))
|
||
;; ^
|
||
(lambda _
|
||
(substitute* "src/xsane-save.c"
|
||
(("png_ptr->jmpbuf") "png_jmpbuf(png_ptr)"))
|
||
#t))
|
||
(add-after 'unpack 'use-sane-help-browser
|
||
(lambda _
|
||
(substitute* "src/xsane.h"
|
||
(("netscape") (which "xdg-open")))
|
||
#t))
|
||
(add-after 'install 'delete-empty-/sbin
|
||
(lambda* (#:key outputs #:allow-other-keys)
|
||
(let ((out (assoc-ref outputs "out")))
|
||
(rmdir (string-append out "/sbin"))
|
||
#t))))))
|
||
(native-inputs
|
||
`(("pkg-config" ,pkg-config)))
|
||
(inputs
|
||
`(("gtk+" ,gtk+-2)
|
||
("lcms" ,lcms)
|
||
("libjpeg" ,libjpeg-turbo)
|
||
("libtiff" ,libtiff)
|
||
("sane-backends" ,sane-backends)
|
||
|
||
;; To open the manual from the Help menu.
|
||
("xdg-utils" ,xdg-utils)))
|
||
(home-page "https://gitlab.com/sane-project/frontend/xsane")
|
||
(synopsis "Featureful graphical interface for document and image scanners")
|
||
(description
|
||
"XSane is a graphical interface for controlling a scanner and acquiring
|
||
images from it. You can photocopy multi-page documents and save, fax, print,
|
||
or e-mail your scanned images. It is highly configurable and exposes all
|
||
device settings, letting you fine-tune the final result. It can also be used
|
||
as a GIMP plugin to acquire images directly from a scanner.
|
||
|
||
XSane talks to scanners through the @acronym{SANE, Scanner Access Now Easy}
|
||
back-end library, which supports almost all existing scanners.")
|
||
(license licence:gpl2+)))
|