CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2019/12/03 10:00:46
Modified files:
www/mozilla-firefox: Makefile distinfo
www/mozilla-firefox/files: all-openbsd.js
www/mozilla-firefox/patches:
patch-js_src_jit_ProcessExecutableMemory_cpp
www/mozilla-firefox/pkg: PLIST README
Added files:
www/mozilla-firefox/files: pledge.content pledge.gpu pledge.main
unveil.content unveil.gpu unveil.main
www/mozilla-firefox/patches:
patch-browser_app_profile_firefox_js
patch-dom_ipc_ContentChild_cpp
patch-dom_ipc_moz_build
patch-gfx_ipc_GPUProcessImpl_cpp
patch-media_libcubeb_src_moz_build
patch-toolkit_library_moz_build
patch-toolkit_modules_subprocess_subprocess_worker_unix_js
patch-toolkit_system_gnome_nsGIOService_cpp
Log message:
Update to firefox 71.0.
See https://www.mozilla.org/en-US/firefox/71.0/releasenotes/
Fixes https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/
- Adds unveil support (cf #1580271): firefox can now only access files
from /tmp & ~/Download by default, as chrome does
- pledge the gpu process (cf #1580268)
- overhaul pledge configuration which now lives in root-owned files and
can be overriden in /etc/firefox, cf #1584839.
- fix sound with unveil by disabling sndio lazy loading, cf #1596546
most of the work done by jcs@, upstreaming by yours truly - this has
been commited to firefox 72, but backport it to 71 so that it gets wider
testing. See /usr/local/share/doc/pkg-readmes/firefox for configuration
changes.
Note that security.sandbox.pledge.main & security.sandbox.pledge.content
about:config keys are now useless.
Add 3 patches to fix the build with upcoming rust 1.39, from semarie@.
