Merge virglrenderer from Debian unstable for lunar

In processing the merge, I found that all the delta is included in the upstream release, so this can become a sync. A new version 0.10.4 just came out yesterday so I think we should sync that, however it looks like it hasn't finished migrating in Debian just yet.

Bryce, I believe you'll need to add an Ubuntu delta. See
https://salsa.debian.org/debian/virglrenderer/-/merge_requests/5

Thanks for the note Jeremy, you mention there a hope libva would return to main. Do you have any further info about if that's in the plans? It looks like libva left main in Trusty and I'm not spotting bugs or other discussions relating to its return.

In any case, HA is new this release so not a regression if we skip it for now. I'll include your change with my package merge.

I haven't seen any discussion about pulling libva back into main. And it's not a priority for me for this cycle. I think there are enough things that could use it for someone to go through the MIR process for it eventually.

Thanks Jeremy (and Timo who commented off the bug).
Indeed it seems there are quite some use-cases and users to consider bringing it back towards 24.04
The server team isn't too experienced in maintaining video acceleration though (except maybe bryce), but that only means to ack that we might want/need to co-maintain it once promoted.

The only thing I'd be concerned here before making a decision for the following cycle would be my lack of expertise in this section of the ecosystem. libva (and the nvidia sibling vdpau) feel old/known to me, but they never made it to the core - there must be a reason right? I'd feel bad if we work on libva only to then be told afterwards "oh yeah, this is very much 2010, nowadays everyone uses foo instead and this isn't really helpful".
@Bryce - I've added a roadmap candidate for it, but would appreciate if you could have some discussions with more desktop people to ensure this isn't such a case before too much time is spent.

In terms of use-cases I had a look at what makes use of it in Debian already and compared that to what is in main in Ubuntu - mesa, virglrenderer and qemu (which is actually a temp fix, just virtglrenderer really uses it).

Because that adding of dependencies does not seem to stop with libva.
Have a look:
[1]: https://salsa.debian.org/debian/virglrenderer/-/commit/422556f80a16d5d9b230ead573f9d2f0edbfcd39
[2]: https://salsa.debian.org/debian/virglrenderer/-/commit/d8b4b8f0db4d8bf0b2bd78bf5e07d2ef1b87c404
[3]: https://www.collabora.com/news-and-blog/blog/2021/11/26/venus-on-qemu-enabling-new-virtual-vulkan-driver/
[4]: https://bugs.launchpad.net/ubuntu/+source/vulkan-tools/+bug/1946359

[1] enabled libva for video acceleration through virglrenderer
[2] but shortly after there is also vulkan for support of venus to get guest-vulkan features, see [3] for more.
And while it was disabled in 0.10.3-2 realizing venus isn't a thing yet it might come back.
Sounds all nice, but I'd like to remind of the infamous delayed and complex vulkan MIR that already exists [4].

All that sounds nice, but also fairly new and experimental still.

Debian-sid:

Reverse Build-depends in main:
------------------------------

celluloid
chromium
deepin-movie-reborn
ffmpeg
gavl
gst-plugins-bad1.0
gstreamer-vaapi
handbrake
haruna
intel-compute-runtime
intel-media-driver
intel-mediasdk
intel-vaapi-driver
kodi
kylin-video
libcmrt
libva-utils
libvdpau-va-gl
mesa
minitube
mpv
mpv-mpris
nageru
nvidia-vaapi-driver
onevpl
onevpl-intel-gpu
openboard
qemu
ring
spice-gtk
virglrenderer
vlc
waypipe
weston
xine-lib-1.2
yuzu

Of those in main in Lunar:

root@l:~# rmadison -u ubuntu -a source --suite lunar $(cat /tmp/foo | xargs)
 celluloid | 0.20-2build1 | lunar/universe | source
 deepin-movie-reborn | 5.10.8-2 | lunar/universe | source
 ffmpeg | 7:5.1.2-1ubuntu2 | lunar/universe | source
 gavl | 2.0.0~svn6298-1 | lunar/universe | source
 gst-plugins-bad1.0 | 1.20.4-1ubuntu1 | lunar/universe | source
 gstreamer-vaapi | 1.20.5-1 | lunar/universe | source
 handbrake | 1.6.0+ds1-2 | lunar/unive...

I don't know much about venus, but vulkan is still relatively new so while nice I assume will be a secondary priority. libva seems like it may be more straightforward since it's been around a long time. It did used to be included in main but dropped to universe in the Trusty timeframe (I don't know why it demoted but maybe there just wasn't anything in main at the time that needed it?)

One thing I'm unclear on is if there are alternative ways for virglrenderer users to get 3D accelerated virtual desktops, or if libva is required first?

> One thing I'm unclear on is if there are alternative ways for
> virglrenderer users to get 3D accelerated virtual desktops

yes, openGL works fine without libva

> , or if libva
> is required first?

AFAICS libva really is for adding video accel through similar G2H
channels that opengl already uses

This bug was fixed in the package virglrenderer - 0.10.4-1ubuntu1

---------------
virglrenderer (0.10.4-1ubuntu1) lunar; urgency=medium

  * Merge with Debian unstable (LP: #1993453).
  * Added changes:
    - d/rules: Disable video acceleration on Ubuntu until libva gets repromoted.
  * Dropped:
    - d/p/lp-1950941*: fix out of bounds check
      (LP #1950941)
      [Fixed in upstream release 0.10.0]
    - out-of-bounds write in read_transfer_data()
      + d/p/CVE-2022-0135.patch: Add test to resource OOB write
        and fix it in src/vrend_renderer.c, tests/test_fuzzer_formats.c.
      [Fixed in upstream release 0.10.0]
    - info leak in vrend_resource_alloc_buffer()
      + d/p/CVE-2022-0175.patch: clear memory when allocating a
        host-backed memory resource in src/vrend_renderer.c,
        tests/test_virgl_transfer.c.
      [Fixed in upstream release 0.10.0]

 -- Bryce Harrington <email address hidden> Thu, 05 Jan 2023 06:49:25 -0800