Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package chromium for openSUSE:Factory
checked in at 2025-03-05 16:59:46
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/chromium (Old)
and /work/SRC/openSUSE:Factory/.chromium.new.19136 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium"
Wed Mar 5 16:59:46 2025 rev:452 rq:1250276 version:134.0.6998.35
Changes:
--------
--- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2025-02-26
17:26:34.939444544 +0100
+++ /work/SRC/openSUSE:Factory/.chromium.new.19136/chromium.changes
2025-03-05 17:02:18.579730362 +0100
@@ -1,0 +2,36 @@
+Thu Feb 27 15:33:11 CET 2025 - r...@suse.de
+
+- Chromium 134.0.6998.35
+ (stable release 2025-03-04) (boo#1238575)
+ * CVE-2025-1914: Out of bounds read in V8
+ * CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory
in DevTools
+ * CVE-2025-1916: Use after free in Profiles
+ * CVE-2025-1917: Inappropriate Implementation in Browser UI
+ * CVE-2025-1918: Out of bounds read in PDFium
+ * CVE-2025-1919: Out of bounds read in Media
+ * CVE-2025-1921: Inappropriate Implementation in Media Stream
+ * CVE-2025-1922: Inappropriate Implementation in Selection
+ * CVE-2025-1923: Inappropriate Implementation in Permission Prompts
+
+- modified patches:
+ fix_building_widevinecdm_with_chromium.patch
+ (do not define WIDEVINE_CDM_VERSION_STRING, gone upstream)
+ system-libdrm.patch (context update)
+- added patches:
+ chromium-134-revert-allowlist.patch
+ (avoid having to update gn on all targets)
+ chromium-134-revert-rust-adler2.patch
+ (revert rust change from adler to adler2 while we have 1.83)
+ chromium-134-specialize-some-to_value_list.patch
+- dropped patches (llvm17 is gone):
+ chromium-127-clang17-traitors.patch
+ chromium-add-atomicops.patch
+ chromium-133-string_view.patch
+- add to keeplibs:
+ third_party/search_engines_data
+ v8/third_party/rapidhash-v8
+- drop from keeplibs:
+ third_party/libavif (gone) (FIXME cleanup)
+- reenable qt6 for TW
+
+-------------------------------------------------------------------
@@ -140,0 +177 @@
+
Old:
----
chromium-127-clang17-traitors.patch
chromium-133-string_view.patch
chromium-133.0.6943.141.tar.xz
chromium-add-atomicops.patch
New:
----
chromium-134-revert-allowlist.patch
chromium-134-revert-rust-adler2.patch
chromium-134-specialize-some-to_value_list.patch
chromium-134.0.6998.35.tar.xz
BETA DEBUG BEGIN:
Old:- dropped patches (llvm17 is gone):
chromium-127-clang17-traitors.patch
chromium-add-atomicops.patch
Old: chromium-add-atomicops.patch
chromium-133-string_view.patch
- add to keeplibs:
Old: chromium-127-clang17-traitors.patch
chromium-add-atomicops.patch
chromium-133-string_view.patch
BETA DEBUG END:
BETA DEBUG BEGIN:
New:- added patches:
chromium-134-revert-allowlist.patch
(avoid having to update gn on all targets)
New: (avoid having to update gn on all targets)
chromium-134-revert-rust-adler2.patch
(revert rust change from adler to adler2 while we have 1.83)
New: (revert rust change from adler to adler2 while we have 1.83)
chromium-134-specialize-some-to_value_list.patch
- dropped patches (llvm17 is gone):
BETA DEBUG END:
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ chromium.spec ++++++
--- /var/tmp/diff_new_pack.jj1Ixy/_old 2025-03-05 17:02:48.272985342 +0100
+++ /var/tmp/diff_new_pack.jj1Ixy/_new 2025-03-05 17:02:48.276985510 +0100
@@ -115,7 +115,7 @@
%define n_suffix %{nil}
%endif
Name: chromium%{n_suffix}
-Version: 133.0.6943.141
+Version: 134.0.6998.35
Release: 0
Summary: Google's open source browser project
License: BSD-3-Clause AND LGPL-2.1-or-later
@@ -164,6 +164,8 @@
Patch369: chromium-132-pdfium-explicit-template.patch
Patch370: fix-build-with-pipewire-1.3.82.patch
Patch371: chromium-133-bring_back_and_disable_allowlist.patch
+Patch372: chromium-134-revert-allowlist.patch
+Patch373: chromium-134-specialize-some-to_value_list.patch
Patch375: chromium-131-fix-qt-ui.pach
# conditionally applied patches
# patch where ffmpeg < 5
@@ -175,10 +177,8 @@
Patch1006: chromium-93-ffmpeg-4.4-rest.patch
# patch where libxml < 2.12
Patch1010: chromium-124-system-libxml.patch
-# patch where llvm < 19
-Patch1020: chromium-127-clang17-traitors.patch
-Patch1021: chromium-add-atomicops.patch
-Patch1022: chromium-133-string_view.patch
+# patch where rust < 1.84
+Patch1030: chromium-134-revert-rust-adler2.patch
# end conditionally applied patches
BuildRequires: SDL-devel
BuildRequires: bison
@@ -451,11 +451,8 @@
%patch -p1 -P 1010
%endif
-%if 0%{?llvm_version} == 17
-# chromium-127-clang17-traitors.patch only needed for older clang
-%patch -p1 -P 1020
-%patch -p1 -R -P 1021
-%patch -p1 -R -P 1022
+%if "%{?rust_version}" == "1.83"
+%patch -p1 -R -P 1030
%endif
%build
@@ -687,6 +684,7 @@
third_party/rust
third_party/ruy
third_party/s2cellid
+ third_party/search_engines_data
third_party/securemessage
third_party/selenium-atoms
third_party/sentencepiece
@@ -743,6 +741,7 @@
url/third_party/mozilla
v8/third_party/glibc
v8/third_party/inspector_protocol
+ v8/third_party/rapidhash-v8
v8/third_party/siphash
v8/third_party/utf8-decoder
v8/third_party/valgrind
@@ -776,7 +775,6 @@
%endif
%if !%{with system_avif}
keeplibs+=( third_party/libyuv )
-keeplibs+=( third_party/libavif )
%endif
%if !%{with system_webp} || !%{with system_avif}
keeplibs+=( third_party/libwebp )
++++++ chromium-134-revert-allowlist.patch ++++++
--- chromium-134.0.6974.3/.gn 2025/01/28 13:04:11 1.1
+++ chromium-134.0.6974.3/.gn 2025/01/28 13:05:01
@@ -90,7 +90,7 @@
"//v8:v8_libplatform", # 2 errors
]
-# These are the list of GN files that run exec_script. This allowlist exists
+# These are the list of GN files that run exec_script. This whitelist exists
# to force additional review for new uses of exec_script, which is strongly
# discouraged.
#
@@ -145,11 +145,11 @@
# this situation much easier to create. if the build always lists the
# files and passes them to a script, it will always be correct.
-exec_script_allowlist =
- build_dotfile_settings.exec_script_allowlist +
+exec_script_whitelist =
+ build_dotfile_settings.exec_script_whitelist +
angle_dotfile_settings.exec_script_whitelist +
[
- # Allowlist entries for //build should go into
+ # Whitelist entries for //build should go into
# //build/dotfile_settings.gni instead, so that they can be shared
# with other repos. The entries in this list should be only for files
# in the Chromium repo outside of //build.
++++++ chromium-134-revert-rust-adler2.patch ++++++
diff --git a/build/rust/std/BUILD.gn b/build/rust/std/BUILD.gn
index 68b085be200fa..6b996aa1fe386 100644
--- a/build/rust/std/BUILD.gn
+++ b/build/rust/std/BUILD.gn
@@ -89,7 +89,7 @@ if (toolchain_has_rust) {
# These are no longer present in the Windows toolchain.
stdlib_files += [
"addr2line",
- "adler",
+ "adler2",
"gimli",
"libc",
"memchr",
diff --git a/build/rust/std/rules/BUILD.gn b/build/rust/std/rules/BUILD.gn
index 6b59b0894d365..e44d638832b6f 100644
--- a/build/rust/std/rules/BUILD.gn
+++ b/build/rust/std/rules/BUILD.gn
@@ -65,22 +70,22 @@ cargo_crate("addr2line") {
output_dir =
"$root_out_dir/local_rustc_sysroot/lib/rustlib/$rust_abi_target/lib/"
}
-cargo_crate("adler") {
+cargo_crate("adler2") {
crate_type = "rlib"
- crate_root =
"//third_party/rust-toolchain/lib/rustlib/src/rust/library/vendor/adler-1.0.2/src/lib.rs"
+ crate_root =
"//third_party/rust-toolchain/lib/rustlib/src/rust/library/vendor/adler2-2.0.0/src/lib.rs"
sources = [
-
"//third_party/rust-toolchain/lib/rustlib/src/rust/library/vendor/adler-1.0.2/src/algo.rs",
-
"//third_party/rust-toolchain/lib/rustlib/src/rust/library/vendor/adler-1.0.2/src/lib.rs",
+
"//third_party/rust-toolchain/lib/rustlib/src/rust/library/vendor/adler2-2.0.0/src/algo.rs",
+
"//third_party/rust-toolchain/lib/rustlib/src/rust/library/vendor/adler2-2.0.0/src/lib.rs",
]
inputs = []
no_std = true
# Unit tests skipped. Generate with --with-tests to include them.
build_native_rust_unit_tests = false
- edition = "2015"
- cargo_pkg_version = "1.0.2"
- cargo_pkg_authors = "Jonas Schievink <jonasschiev...@gmail.com>"
- cargo_pkg_name = "adler"
+ edition = "2021"
+ cargo_pkg_version = "2.0.0"
+ cargo_pkg_authors = "Jonas Schievink <jonasschiev...@gmail.com>, oyvindln
<oyvin...@users.noreply.github.com>"
+ cargo_pkg_name = "adler2"
cargo_pkg_description =
"A simple clean-room implementation of the Adler-32 checksum"
library_configs -= [
@@ -1618,7 +1624,7 @@ cargo_crate("miniz_oxide") {
]
executable_configs += [ "//build/config/compiler:no_chromium_code" ]
deps = [
- ":adler",
+ ":adler2",
":compiler_builtins",
":rustc_std_workspace_alloc",
":rustc_std_workspace_core",
++++++ chromium-134-specialize-some-to_value_list.patch ++++++
--- chromium-135.0.7023.0/base/containers/to_value_list.h 2025/02/24
23:16:57 1.1
+++ chromium-135.0.7023.0/base/containers/to_value_list.h 2025/02/24
23:19:08
@@ -41,6 +41,16 @@
return container;
}
+template <typename Range, typename Proj = std::identity>
+base::Value::List ToValueList_(const Range& items, Proj proj = {}) {
+ base::Value::List list;
+ for (const auto& item : items) {
+ list.Append(std::invoke(proj, item));
+ }
+ return list;
+}
+
+
} // namespace base
#endif // BASE_CONTAINERS_TO_VALUE_LIST_H_
--- chromium-135.0.7023.0/chrome/browser/extensions/menu_manager.cc
2025/02/24 23:15:22 1.1
+++ chromium-135.0.7023.0/chrome/browser/extensions/menu_manager.cc
2025/02/24 23:21:26
@@ -881,7 +881,7 @@
if (store_) {
store_->SetExtensionValue(
extension_key.extension_id, kContextMenusKey,
- base::Value(base::ToValueList(all_items, &MenuItem::ToValue)));
+ base::Value(base::ToValueList_(all_items, &MenuItem::ToValue)));
}
}
---
chromium-135.0.7023.0/components/services/app_service/public/cpp/permission.cc
2025/02/24 23:13:35 1.1
+++
chromium-135.0.7023.0/components/services/app_service/public/cpp/permission.cc
2025/02/24 23:22:20
@@ -167,7 +167,7 @@
}
base::Value::List ConvertPermissionsToList(const Permissions& permissions) {
- return base::ToValueList(permissions, &ConvertPermissionToDict);
+ return base::ToValueList_(permissions, &ConvertPermissionToDict);
}
Permissions ConvertListToPermissions(const base::Value::List* list) {
---
chromium-135.0.7023.0/chrome/browser/web_applications/isolated_web_apps/isolated_web_app_integrity_block_data.cc
2025/02/24 23:23:03 1.1
+++
chromium-135.0.7023.0/chrome/browser/web_applications/isolated_web_apps/isolated_web_app_integrity_block_data.cc
2025/02/24 23:23:26
@@ -156,7 +156,7 @@
base::Value IsolatedWebAppIntegrityBlockData::AsDebugValue() const {
return base::Value(base::Value::Dict().Set(
- "signatures", base::ToValueList(signatures_, [](const auto& signature) {
+ "signatures", base::ToValueList_(signatures_, [](const auto& signature) {
return absl::visit(
base::Overloaded{
[](const web_package::SignedWebBundleSignatureInfoEd25519&
---
chromium-135.0.7023.0/chrome/browser/web_applications/isolated_web_apps/policy/isolated_web_app_policy_manager.cc
2025/02/24 23:24:24 1.1
+++
chromium-135.0.7023.0/chrome/browser/web_applications/isolated_web_apps/policy/isolated_web_app_policy_manager.cc
2025/02/24 23:25:45
@@ -447,7 +447,7 @@
return base::ToString(web_bundle_id);
}));
debug_info.Set(
- "app_actions", base::ToValueList(app_actions, [](const auto& entry) {
+ "app_actions", base::ToValueList_(app_actions, [](const auto& entry) {
const auto& [web_bundle_id, app_action] = entry;
return base::Value::Dict()
.Set("web_bundle_id", base::ToString(web_bundle_id))
@@ -634,7 +634,7 @@
}
base::Value IsolatedWebAppPolicyManager::ProcessLogs::ToDebugValue() const {
- return base::Value(base::ToValueList(logs_, &base::Value::Dict::Clone));
+ return base::Value(base::ToValueList_(logs_, &base::Value::Dict::Clone));
}
} // namespace web_app
---
chromium-135.0.7023.0/chrome/browser/ui/webui/support_tool/support_tool_ui_utils.cc
2025/02/24 23:05:07 1.1
+++
chromium-135.0.7023.0/chrome/browser/ui/webui/support_tool/support_tool_ui_utils.cc
2025/02/24 23:06:08
@@ -233,7 +242,7 @@
// keep: boolean,
// }
base::Value::List GetDetectedPIIDataItems(const PIIMap& detected_pii) {
- return base::ToValueList(detected_pii, [](const auto& detected_pii_entry) {
+ return base::ToValueList_(detected_pii, [](const auto& detected_pii_entry) {
const auto& [pii_key, pii_data] = detected_pii_entry;
return base::Value::Dict()
.Set(support_tool_ui::kPiiItemDescriptionKey,
---
chromium-135.0.7023.0/chrome/browser/web_applications/isolated_web_apps/isolated_web_app_update_discovery_task.cc
2025/02/24 23:08:02 1.1
+++
chromium-135.0.7023.0/chrome/browser/web_applications/isolated_web_apps/isolated_web_app_update_discovery_task.cc
2025/02/24 23:09:07
@@ -236,11 +246,11 @@
debug_log_.Set(
"available_versions",
- base::ToValueList(update_manifest.versions(), [](const auto& entry) {
+ base::ToValueList_(update_manifest.versions(), [](const auto& entry) {
return base::Value::Dict()
.Set("version", entry.version().GetString())
.Set("update_channels",
- base::ToValueList(entry.channels(), [](const auto& channel) {
+ base::ToValueList_(entry.channels(), [](const auto& channel) {
return channel.ToString();
}));
}));
--- chromium-135.0.7023.0/printing/print_settings_conversion.cc 2025/02/24
23:10:58 1.1
+++ chromium-135.0.7023.0/printing/print_settings_conversion.cc 2025/02/24
23:11:37
@@ -370,7 +379,7 @@
if (!settings.ranges().empty()) {
job_settings.Set(
kSettingPageRange,
- base::ToValueList(settings.ranges(), [](const auto& range) {
+ base::ToValueList_(settings.ranges(), [](const auto& range) {
return base::Value::Dict()
.Set(kSettingPageRangeFrom, static_cast<int>(range.from + 1))
.Set(kSettingPageRangeTo, static_cast<int>(range.to + 1));
++++++ chromium-133.0.6943.141.tar.xz -> chromium-134.0.6998.35.tar.xz ++++++
/work/SRC/openSUSE:Factory/chromium/chromium-133.0.6943.141.tar.xz
/work/SRC/openSUSE:Factory/.chromium.new.19136/chromium-134.0.6998.35.tar.xz
differ: char 15, line 1
++++++ fix_building_widevinecdm_with_chromium.patch ++++++
--- /var/tmp/diff_new_pack.jj1Ixy/_old 2025-03-05 17:02:48.540996669 +0100
+++ /var/tmp/diff_new_pack.jj1Ixy/_new 2025-03-05 17:02:48.544996838 +0100
@@ -1,15 +1,3 @@
-Index: chromium-79.0.3941.4/third_party/widevine/cdm/widevine_cdm_version.h
-===================================================================
---- chromium-79.0.3941.4.orig/third_party/widevine/cdm/widevine_cdm_version.h
-+++ chromium-79.0.3941.4/third_party/widevine/cdm/widevine_cdm_version.h
-@@ -11,5 +11,6 @@
- // If the Widevine CDM is available define the following:
- // - WIDEVINE_CDM_VERSION_STRING (with the version of the CDM that's
available
- // as a string, e.g., "1.0.123.456").
-+#define WIDEVINE_CDM_VERSION_STRING "unknown"
-
- #endif // WIDEVINE_CDM_VERSION_H_
-
--- chromium-125.0.6422.141.orig/third_party/widevine/cdm/widevine.gni
+++ chromium-125.0.6422.141/third_party/widevine/cdm/widevine.gni
@@ -27,7 +27,7 @@
++++++ system-libdrm.patch ++++++
--- /var/tmp/diff_new_pack.jj1Ixy/_old 2025-03-05 17:02:48.572998021 +0100
+++ /var/tmp/diff_new_pack.jj1Ixy/_new 2025-03-05 17:02:48.576998191 +0100
@@ -19,8 +19,8 @@
---
chromium-114.0.5735.90.orig/ui/ozone/platform/drm/gpu/hardware_display_controller.cc
+++
chromium-114.0.5735.90/ui/ozone/platform/drm/gpu/hardware_display_controller.cc
@@ -18,7 +18,7 @@
+ #include "base/logging.h"
#include "base/metrics/histogram_macros.h"
- #include "base/ranges/algorithm.h"
#include "base/trace_event/typed_macros.h"
-#include "third_party/libdrm/src/include/drm/drm_fourcc.h"
+#include <drm_fourcc.h>
