Hello community, here is the log from the commit of package chromium for openSUSE:Factory checked in at 2018-03-09 10:44:46 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/chromium (Old) and /work/SRC/openSUSE:Factory/.chromium.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium" Fri Mar 9 10:44:46 2018 rev:180 rq:584220 version:65.0.3325.146 Changes: -------- --- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2018-02-25 11:52:44.696014680 +0100 +++ /work/SRC/openSUSE:Factory/.chromium.new/chromium.changes 2018-03-09 10:45:21.949336762 +0100 @@ -1,0 +2,42 @@ +Thu Mar 8 09:00:54 UTC 2018 - [email protected] + +- Version update to 65.0.3325.146 bsc#1084296: + * High CVE-2017-11215: Use after free in Flash. + * High CVE-2017-11225: Use after free in Flash. + * High CVE-2018-6060: Use after free in Blink. + * High CVE-2018-6061: Race condition in V8. + * High CVE-2018-6062: Heap buffer overflow in Skia. + * High CVE-2018-6057: Incorrect permissions on shared memory. + * High CVE-2018-6063: Incorrect permissions on shared memory. + * High CVE-2018-6064: Type confusion in V8. + * High CVE-2018-6065: Integer overflow in V8. + * Medium CVE-2018-6066: Same Origin Bypass via canvas. + * Medium CVE-2018-6067: Buffer overflow in Skia. + * Medium CVE-2018-6068: Object lifecycle issues in Chrome Custom Tab. + * Medium CVE-2018-6069: Stack buffer overflow in Skia. + * Medium CVE-2018-6070: CSP bypass through extensions. + * Medium CVE-2018-6071: Heap bufffer overflow in Skia. + * Medium CVE-2018-6072: Integer overflow in PDFium. + * Medium CVE-2018-6073: Heap bufffer overflow in WebGL. + * Medium CVE-2018-6074: Mark-of-the-Web bypass. + * Medium CVE-2018-6075: Overly permissive cross origin downloads. + * Medium CVE-2018-6076: Incorrect handling of URL fragment identifiers in Blink. + * Medium CVE-2018-6077: Timing attack using SVG filters. + * Medium CVE-2018-6078: URL Spoof in OmniBox. + * Medium CVE-2018-6079: Information disclosure via texture data in WebGL. + * Medium CVE-2018-6080: Information disclosure in IPC call. + * Low CVE-2018-6081: XSS in interstitials. + * Low CVE-2018-6082: Circumvention of port blocking. + * Low CVE-2018-6083: Incorrect processing of AppManifests. +- Add new patches: + * chromium-compiler.patch + * chromium-glibc-2.27.patch + * mojo.patch +- Drop patches: + * chromium-angle.patch + * chromium-memcpy.patch +- Update constraints +- Refresh patch chromium-non-void-return.patch to include more + fixes + +------------------------------------------------------------------- Old: ---- chromium-64.0.3282.186.tar.xz chromium-angle.patch chromium-memcpy.patch New: ---- chromium-65.0.3325.146.tar.xz chromium-compiler.patch chromium-glibc-2.27.patch mojo.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ chromium.spec ++++++ --- /var/tmp/diff_new_pack.uNLZr7/_old 2018-03-09 10:45:40.252677501 +0100 +++ /var/tmp/diff_new_pack.uNLZr7/_new 2018-03-09 10:45:40.252677501 +0100 @@ -17,14 +17,6 @@ %define rname chromium -%if %{?suse_version} >= 1320 || (%{?suse_version} == 1315 && 0%{?leap_version} >= 420200) -%bcond_without system_minizip -# Disable harfbuzz as it needs to be build with the same freetype... atm bundle -%bcond_with system_harfbuzz -%else -%bcond_with system_minizip -%bcond_with system_harfbuzz -%endif # This is just overall condition to contain everything we can't provide on SLE12 %if 0%{?suse_version} >= 1320 || 0%{?is_opensuse} %bcond_with sle_bundles @@ -41,10 +33,10 @@ %bcond_with system_vpx %bcond_with clang Name: chromium -Version: 64.0.3282.186 +Version: 65.0.3325.146 Release: 0 Summary: Google's open source browser project -License: BSD-3-Clause AND LGPL-2.1+ +License: BSD-3-Clause AND LGPL-2.1-or-later Group: Productivity/Networking/Web/Browsers Url: http://code.google.com/p/chromium/ Source0: http://commondatastorage.googleapis.com/chromium-browser-official/%{rname}-%{version}.tar.xz @@ -68,11 +60,12 @@ Patch6: fix_building_widevinecdm_with_chromium.patch # PATCH-FIX-OPENSUSE fix_network_api_crash.patch - Fix crash in network API, e.g. when using chromecast extension Patch7: fix_network_api_crash.patch +Patch8: chromium-glibc-2.27.patch +Patch9: chromium-compiler.patch +Patch10: mojo.patch Patch12: chromium-dma-buf.patch Patch14: chromium-buildname.patch Patch17: chromium-non-void-return.patch -Patch18: chromium-memcpy.patch -Patch19: chromium-angle.patch # GN buildsystem related patches Patch200: chromium-last-commit-position-r0.patch Patch201: fix-gn-bootstrap.diff @@ -98,11 +91,6 @@ BuildRequires: libva-devel BuildRequires: ncurses-devel BuildRequires: ninja >= 1.7.2 -%if 0%{?suse_version} >= 1330 -BuildRequires: nodejs8 -%else -BuildRequires: nodejs6 -%endif BuildRequires: pam-devel BuildRequires: pkgconfig BuildRequires: python @@ -122,11 +110,11 @@ BuildRequires: pkgconfig(expat) BuildRequires: pkgconfig(flac++) BuildRequires: pkgconfig(freetype2) -BuildRequires: pkgconfig(gconf-2.0) BuildRequires: pkgconfig(glib-2.0) BuildRequires: pkgconfig(gnome-keyring-1) BuildRequires: pkgconfig(gtk+-2.0) BuildRequires: pkgconfig(gtk+-3.0) +BuildRequires: pkgconfig(harfbuzz) >= 1.7.0 BuildRequires: pkgconfig(hunspell) BuildRequires: pkgconfig(imlib2) BuildRequires: pkgconfig(jack) @@ -151,6 +139,7 @@ BuildRequires: pkgconfig(libudev) BuildRequires: pkgconfig(libwebp) BuildRequires: pkgconfig(libxslt) +BuildRequires: pkgconfig(minizip) BuildRequires: pkgconfig(nspr) >= 4.9.5 BuildRequires: pkgconfig(nss) >= 3.26 BuildRequires: pkgconfig(ogg) @@ -161,7 +150,6 @@ BuildRequires: pkgconfig(slang) BuildRequires: pkgconfig(sqlite3) BuildRequires: pkgconfig(theora) >= 1.1 -BuildRequires: pkgconfig(valgrind) BuildRequires: pkgconfig(vdpau) BuildRequires: pkgconfig(vorbis) BuildRequires: pkgconfig(x11) @@ -182,7 +170,7 @@ Requires(pre): permissions Recommends: noto-coloremoji-fonts Recommends: noto-emoji-fonts -Conflicts: otherproviders(chromium-browser) +Conflicts: chromium-browser Provides: chromium-based-browser = %{version} Provides: chromium-browser = %{version} Obsoletes: %{name}-suid-helper < %{version} @@ -196,10 +184,13 @@ Obsoletes: chromium-dev-desktop-kde Obsoletes: chromium-ffmpeg Obsoletes: chromium-ffmpegsumo -# There is no v8 for ppc and thus chromium won't run on ppc. For aarch64 -# certain buildrequires are missing (e.g. valgrind) -# while it would build for %arm, we exclude it as it takes forever to build +# no 32bit supported and it takes ages to build ExcludeArch: %{arm} aarch64 i586 ppc ppc64 ppc64le +%if 0%{?suse_version} >= 1330 +BuildRequires: nodejs8 +%else +BuildRequires: nodejs6 +%endif %if %{with system_libxml} BuildRequires: pkgconfig(libxml-2.0) >= 2.9.5 %endif @@ -210,12 +201,6 @@ BuildRequires: python-xml BuildRequires: yasm-devel %endif -%if %{with system_minizip} -BuildRequires: pkgconfig(minizip) -%endif -%if %{with system_harfbuzz} -BuildRequires: pkgconfig(harfbuzz) >= 1.5.0 -%endif %if %{with system_icu} BuildRequires: pkgconfig(icu-i18n) >= 59.0 %endif @@ -229,8 +214,8 @@ BuildRequires: gcc >= 6.0 BuildRequires: gcc-c++ >= 6.0 %else -BuildRequires: gcc7 -BuildRequires: gcc7-c++ +BuildRequires: gcc6 +BuildRequires: gcc6-c++ %endif %endif @@ -260,11 +245,12 @@ %patch4 %patch6 -p1 %patch7 +%patch8 -p1 +%patch9 -p1 +%patch10 -p1 %patch12 -p1 %patch14 -p1 %patch17 -p1 -%patch18 -p1 -%patch19 -p1 # Copy the toolchain settings mkdir toolchain @@ -323,7 +309,6 @@ third_party/fips181 third_party/flatbuffers third_party/flot - third_party/freetype third_party/glslang third_party/glslang-angle third_party/google_input_tools @@ -339,7 +324,7 @@ third_party/leveldatabase third_party/libXNVCtrl third_party/libaddressinput - third_party/libdrm + third_party/libaom third_party/libjingle third_party/libphonenumber third_party/libsecret @@ -349,6 +334,7 @@ third_party/libwebm third_party/libxml/chromium third_party/libyuv + third_party/llvm third_party/lss third_party/lzma_sdk third_party/markupsafe @@ -376,6 +362,7 @@ third_party/protobuf third_party/protobuf/third_party/six third_party/qcms + third_party/s2cellid third_party/sfntly third_party/shaderc third_party/skia @@ -393,6 +380,8 @@ third_party/usrsctp third_party/vulkan third_party/vulkan-validation-layers + third_party/wayland + third_party/wayland-protocols third_party/web-animations-js third_party/webdriver third_party/webrtc @@ -401,6 +390,7 @@ third_party/zlib/google url/third_party/mozilla v8/src/third_party/valgrind + v8/src/third_party/utf8-decoder v8/third_party/inspector_protocol ) %if %{with sle_bundles} @@ -412,9 +402,6 @@ third_party/catapult/third_party/six ) %endif -%if !%{with system_minizip} -keeplibs+=( third_party/zlib ) -%endif %if !%{with system_icu} keeplibs+=( third_party/icu ) %endif @@ -427,9 +414,6 @@ third_party/libvpx/source/libvpx/third_party/x86inc ) %endif -%if !%{with system_harfbuzz} -keeplibs+=( third_party/harfbuzz-ng ) -%endif # needed due to bugs in GN keeplibs+=( base/third_party/libevent @@ -453,12 +437,12 @@ export CC=gcc export CXX=g++ %if 0%{?suse_version} < 1330 -export CC=gcc-7 -export CXX=g++-7 +export CC=gcc-6 +export CXX=g++-6 # some still call gcc/g++ mkdir -p "$HOME/bin/" -ln -sfn /usr/bin/$CC $HOME/bin/gcc -ln -sfn /usr/bin/$CXX $HOME/bin/g++ +ln -sfn %{_bindir}/$CC $HOME/bin/gcc +ln -sfn %{_bindir}/$CXX $HOME/bin/g++ export PATH="$HOME/bin/:$PATH" %endif %endif @@ -469,7 +453,7 @@ echo "System limits:" ulimit -a if test -n "$ninjaproc" -a "$ninjaproc" -gt 1 ; then - mem_per_process=1300000 + mem_per_process=1600000 max_mem=$(awk '/MemTotal/ { print $2 }' /proc/meminfo) max_jobs="$(($max_mem / $mem_per_process))" test "$ninjaproc" -gt "$max_jobs" && ninjaproc="$max_jobs" && echo "Warning: Reducing number of jobs to $max_jobs because of memory limits" @@ -480,6 +464,9 @@ gn_system_libraries=( ffmpeg flac + fontconfig + freetype + harfbuzz-ng libdrm libjpeg libpng @@ -488,17 +475,11 @@ opus re2 snappy - yasm + zlib ) %if !%{with sle_bundles} gn_system_libraries+=( yasm ) %endif -%if %{with system_minizip} -gn_system_libraries+=( zlib ) -%endif -%if %{with system_harfbuzz} -gn_system_libraries+=( harfbuzz-ng ) -%endif %if %{with system_icu} gn_system_libraries+=( icu ) %endif @@ -518,13 +499,14 @@ myconf_gn+=" use_custom_libcxx=false" myconf_gn+=" is_debug=false" myconf_gn+=" enable_nacl=false" +myconf_gn+=" use_swiftshader_with_subzero=true" myconf_gn+=" is_component_ffmpeg=true" myconf_gn+=" use_cups=true" -myconf_gn+=" use_gconf=true" myconf_gn+=" use_aura=true" myconf_gn+=" symbol_level=1" myconf_gn+=" remove_webcore_debug_symbols=true" myconf_gn+=" use_kerberos=true" +myconf_gn+=" enable_vr=false" myconf_gn+=" use_pulseaudio=true link_pulseaudio=true" myconf_gn+=" is_component_build=false" myconf_gn+=" use_sysroot=false" @@ -532,16 +514,17 @@ myconf_gn+=" use_allocator=\"tcmalloc\"" myconf_gn+=" fieldtrial_testing_like_official_build=true" myconf_gn+=" use_gold=true" +myconf_gn+=" use_lld=false" +myconf_gn+=" use_vaapi=true" myconf_gn+=" use_sysroot=false" myconf_gn+=" treat_warnings_as_errors=false" myconf_gn+=" enable_widevine=true" # See dependency logic in third_party/BUILD.gn -myconf_gn+=" use_system_harfbuzz=false" +myconf_gn+=" use_system_harfbuzz=true use_system_freetype=true" myconf_gn+=" enable_hangout_services_extension=true" myconf_gn+=" enable_vulkan=false" # fails to compile now # ozone stuff -#myconf_gn+=" use_ozone=true use_xkbcommon=false enable_mus=true ozone_auto_platforms=false" -#myconf_gn+=" ozone_platform_wayland=false ozone_platform_x11=true ozone_platform_headless=true" +#myconf_gn+=" use_ozone=true use_xkbcommon=true enable_mus=true" %if %{with clang} myconf_gn+=" is_clang=true clang_base_path=\"/usr\" clang_use_chrome_plugins=false" %else ++++++ _constraints ++++++ --- /var/tmp/diff_new_pack.uNLZr7/_old 2018-03-09 10:45:40.320675052 +0100 +++ /var/tmp/diff_new_pack.uNLZr7/_new 2018-03-09 10:45:40.324674908 +0100 @@ -15,7 +15,7 @@ </conditions> <hardware> <physicalmemory> - <size unit="G">2</size> + <size unit="G">4</size> </physicalmemory> </hardware> </overwrite> ++++++ chromium-64.0.3282.186.tar.xz -> chromium-65.0.3325.146.tar.xz ++++++ /work/SRC/openSUSE:Factory/chromium/chromium-64.0.3282.186.tar.xz /work/SRC/openSUSE:Factory/.chromium.new/chromium-65.0.3325.146.tar.xz differ: char 26, line 1 ++++++ chromium-compiler.patch ++++++ --- a/device/u2f/u2f_ble_transaction.cc +++ b/device/u2f/u2f_ble_transaction.cc @@ -131,7 +131,7 @@ void U2fBleTransaction::OnError() { request_frame_.reset(); - request_cont_fragments_ = {}; + request_cont_fragments_ = base::queue<U2fBleFrameContinuationFragment>(); response_frame_assembler_.reset(); std::move(callback_).Run(base::nullopt); } ++++++ chromium-glibc-2.27.patch ++++++ >From 9f63f94a11abc34d40ede8b8712fa15b5844a8c0 Mon Sep 17 00:00:00 2001 From: Tom Anderson <[email protected]> Date: Sat, 27 Jan 2018 20:03:37 +0000 Subject: [PATCH] Fix build with glibc 2.27 BUG=806340 [email protected] Change-Id: Ib4e5091212d874d9ad88f3e9a1fdfee3ed7e0d5e Reviewed-on: https://chromium-review.googlesource.com/890059 Reviewed-by: Thomas Anderson <[email protected]> Reviewed-by: Philippe Hamel <[email protected]> Commit-Queue: Thomas Anderson <[email protected]> Cr-Commit-Position: refs/heads/master@{#532249} --- diff --git a/components/assist_ranker/ranker_example_util.cc b/components/assist_ranker/ranker_example_util.cc index 54d4dbd..ceedd8f 100644 --- a/components/assist_ranker/ranker_example_util.cc +++ b/components/assist_ranker/ranker_example_util.cc @@ -2,6 +2,8 @@ // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. +#include <math.h> + #include "components/assist_ranker/ranker_example_util.h" #include "base/bit_cast.h" #include "base/format_macros.h" >From 0235c2b657d936f3cdb09053776e5929fc84704b Mon Sep 17 00:00:00 2001 From: Tomas Popela <[email protected]> Date: Wed, 31 Jan 2018 18:57:07 +0000 Subject: [PATCH] Add missing stdint include diff --git a/chrome/browser/vr/sample_queue.cc b/chrome/browser/vr/sample_queue.cc index c2ca777ce90c..53cb3aab1576 100644 --- a/chrome/browser/vr/sample_queue.cc +++ b/chrome/browser/vr/sample_queue.cc @@ -2,6 +2,8 @@ // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. +#include <stdint.h> + #include "chrome/browser/vr/sample_queue.h" namespace vr { -- 2.16.2 ++++++ chromium-non-void-return.patch ++++++ --- /var/tmp/diff_new_pack.uNLZr7/_old 2018-03-09 10:45:40.460670009 +0100 +++ /var/tmp/diff_new_pack.uNLZr7/_new 2018-03-09 10:45:40.460670009 +0100 @@ -1,8 +1,8 @@ -Index: chromium-63.0.3239.30/chrome/browser/ui/libgtkui/app_indicator_icon.cc +Index: chromium-65.0.3325.146/chrome/browser/ui/libgtkui/app_indicator_icon.cc =================================================================== ---- chromium-63.0.3239.30.orig/chrome/browser/ui/libgtkui/app_indicator_icon.cc -+++ chromium-63.0.3239.30/chrome/browser/ui/libgtkui/app_indicator_icon.cc -@@ -97,6 +97,8 @@ bool ShouldUseLibAppIndicator() { +--- chromium-65.0.3325.146.orig/chrome/browser/ui/libgtkui/app_indicator_icon.cc ++++ chromium-65.0.3325.146/chrome/browser/ui/libgtkui/app_indicator_icon.cc +@@ -98,6 +98,8 @@ bool ShouldUseLibAppIndicator() { case base::nix::DESKTOP_ENVIRONMENT_OTHER: case base::nix::DESKTOP_ENVIRONMENT_XFCE: return false; @@ -11,3 +11,16 @@ } } +Index: chromium-65.0.3325.146/media/gpu/vaapi/vaapi_wrapper.cc +=================================================================== +--- chromium-65.0.3325.146.orig/media/gpu/vaapi/vaapi_wrapper.cc ++++ chromium-65.0.3325.146/media/gpu/vaapi/vaapi_wrapper.cc +@@ -350,6 +350,8 @@ static VAEntrypoint GetVaEntryPoint(Vaap + case VaapiWrapper::kCodecModeMax: + NOTREACHED(); + return VAEntrypointVLD; ++ default: ++ return 0; + } + } + ++++++ mojo.patch ++++++ description: fix mojo layout test build error author: Michael Gilbert <[email protected]> --- a/content/shell/BUILD.gn +++ b/content/shell/BUILD.gn @@ -93,8 +93,6 @@ static_library("content_shell_lib") { "browser/layout_test/layout_test_resource_dispatcher_host_delegate.h", "browser/layout_test/layout_test_url_request_context_getter.cc", "browser/layout_test/layout_test_url_request_context_getter.h", - "browser/layout_test/mojo_layout_test_helper.cc", - "browser/layout_test/mojo_layout_test_helper.h", "browser/layout_test/secondary_test_window_observer.cc", "browser/layout_test/secondary_test_window_observer.h", "browser/layout_test/test_info_extractor.cc", @@ -244,9 +242,7 @@ static_library("content_shell_lib") { "//content/public/common", "//content/public/common:service_names", "//content/shell/test_runner:test_runner", - "//content/test:content_test_mojo_bindings", "//content/test:layouttest_support", - "//content/test:mojo_layouttest_bindings", "//content/test:test_support", "//device/bluetooth", "//device/bluetooth:fake_bluetooth", --- a/content/shell/browser/layout_test/layout_test_content_browser_client.cc +++ b/content/shell/browser/layout_test/layout_test_content_browser_client.cc @@ -19,7 +19,6 @@ #include "content/shell/browser/layout_test/layout_test_message_filter.h" #include "content/shell/browser/layout_test/layout_test_notification_manager.h" #include "content/shell/browser/layout_test/layout_test_resource_dispatcher_host_delegate.h" -#include "content/shell/browser/layout_test/mojo_layout_test_helper.h" #include "content/shell/browser/shell_browser_context.h" #include "content/shell/common/layout_test/layout_test_switches.h" #include "content/shell/common/shell_messages.h" @@ -32,11 +31,6 @@ namespace { LayoutTestContentBrowserClient* g_layout_test_browser_client; -void BindLayoutTestHelper(mojom::MojoLayoutTestHelperRequest request, - RenderFrameHost* render_frame_host) { - MojoLayoutTestHelper::Create(std::move(request)); -} - } // namespace LayoutTestContentBrowserClient::LayoutTestContentBrowserClient() { @@ -98,7 +92,6 @@ void LayoutTestContentBrowserClient::Exp registry->AddInterface(base::Bind(&bluetooth::FakeBluetooth::Create), ui_task_runner); - registry->AddInterface(base::Bind(&MojoLayoutTestHelper::Create)); } void LayoutTestContentBrowserClient::OverrideWebkitPrefs( @@ -193,7 +186,6 @@ bool LayoutTestContentBrowserClient::Can void LayoutTestContentBrowserClient::ExposeInterfacesToFrame( service_manager::BinderRegistryWithArgs<content::RenderFrameHost*>* registry) { - registry->AddInterface(base::Bind(&BindLayoutTestHelper)); } } // namespace content
