commit nodejs6 for openSUSE:Factory
Hello community, here is the log from the commit of package nodejs6 for openSUSE:Factory checked in at 2019-03-06 15:49:00 Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old) and /work/SRC/openSUSE:Factory/.nodejs6.new.28833 (New) Package is "nodejs6" Wed Mar 6 15:49:00 2019 rev:30 rq:681821 version:6.17.0 Changes: --- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2019-01-11 14:06:39.991728964 +0100 +++ /work/SRC/openSUSE:Factory/.nodejs6.new.28833/nodejs6.changes 2019-03-06 15:49:03.560424234 +0100 @@ -1,0 +2,28 @@ +Thu Feb 28 13:28:56 UTC 2019 - Adam Majer + +- New upstream LTS release 6.17.0: + * deps: OpenSSL has been upgraded to 1.0.2r. Under certain +circumstances, a TLS server can be forced to respond differently +to a client if a zero-byte record is received with an +invalid padding compared to a zero-byte record with an +invalid MAC. This can be used as the basis of a padding +oracle attack to decrypt data. +(CVE-2019-1559, bsc#1127080) + + * http: ++ Backport server.keepAliveTimeout to prevent keep-alive + HTTP and HTTPS connections remaining open and inactive for + an extended period of time, leading to a potential + Denial of Service (DoS). (CVE-2019-5739, bsc#1127533) ++ Further prevention of "Slowloris" attacks on HTTP and HTTPS + connections by consistently applying the receive timeout set + by server.headersTimeout to connections in keep-alive mode. + (CVE-2019-5737, bsc#1127532) + +--- +Fri Feb 1 12:40:17 UTC 2019 - adam.ma...@suse.de + +- nodejs.keyring: update keyring to today's list as per + https://github.com/nodejs/node + +--- Old: node-v6.16.0.tar.xz New: node-v6.17.0.tar.xz Other differences: -- ++ nodejs6.spec ++ --- /var/tmp/diff_new_pack.lPnyAc/_old 2019-03-06 15:49:04.556424343 +0100 +++ /var/tmp/diff_new_pack.lPnyAc/_new 2019-03-06 15:49:04.560424343 +0100 @@ -26,7 +26,7 @@ ### Name: nodejs6 -Version:6.16.0 +Version:6.17.0 Release:0 %define node_version_number 6 ++ SHASUMS256.txt ++ --- /var/tmp/diff_new_pack.lPnyAc/_old 2019-03-06 15:49:04.584424347 +0100 +++ /var/tmp/diff_new_pack.lPnyAc/_new 2019-03-06 15:49:04.588424347 +0100 @@ -1,42 +1,42 @@ -2defd3ab3f4628cade7d4b415be013fa0ad8e6ec4ee7da556affc3209b6eb0a4 node-v6.16.0-aix-ppc64.tar.gz -12167a8d26f323191b79e37cc9ab042b929ddd5bec4210aa9bd0dbf2c6a3bc5d node-v6.16.0-darwin-x64.tar.gz -9767fe05ffd33ce42070c56cb61a12c73a6d886ba32fedb2ca90e0bba525 node-v6.16.0-darwin-x64.tar.xz -f799b143375a0f9d70dac394da0ffd201657c911fe16a0341ff0687af2ce5cdc node-v6.16.0-headers.tar.gz -f5449926ce150c386090542b3e9ee369b19bc6148ab2f552e9fcb1024f14391e node-v6.16.0-headers.tar.xz -6b94c3c0e807f5350f4e973cece77f373d637f7d7c3c24f90e583407beee916a node-v6.16.0-linux-arm64.tar.gz -10507ebca2f736064dd325854f5b2e1f60f24b2e6a78fadcd7933d8edb978b70 node-v6.16.0-linux-arm64.tar.xz -260547033a9710a5d09807ae2e06c6b9f73636b814c156aac0b7e8c9ed3bfd98 node-v6.16.0-linux-armv6l.tar.gz -ef123b5ce4a4214774adc46d33f8aa5d3ac5cab8679e417b44531ae14b310304 node-v6.16.0-linux-armv6l.tar.xz -a70487b82e4a50ea0a8e10b5b6f922d52a870b15a5e34a8102d93e0765ea8ee1 node-v6.16.0-linux-armv7l.tar.gz -fe3b6d712c1b762ed35782c2f4fc4977711b61435998b89850dad309e38eb0bb node-v6.16.0-linux-armv7l.tar.xz -1c6c30d8d795f8d888526ae97e3dfd0a332fdbf2e703f1696679879fda8a1c62 node-v6.16.0-linux-ppc64le.tar.gz -30085079ee1c039e04bf6533023fe62191ee46d19ddc999f5593324177d12fa4 node-v6.16.0-linux-ppc64le.tar.xz -6f2a3f7713a05ec726af209d5bfe7945c5be6d99a2e2f4a561301c36f5998db8 node-v6.16.0-linux-ppc64.tar.gz -5fb8ef8cd31b15c03101c6e4d04e11accf1ae1b34aeae9007d1cb6a7a51a27d2 node-v6.16.0-linux-ppc64.tar.xz -58d90689ca1d41843532ef098b91e1860530f8a4c131f498b46facecce492c5f node-v6.16.0-linux-s390x.tar.gz -5edd1552bf369bc7eb9643b479d12a25e04a605b8176add2ead7e99802014b43 node-v6.16.0-linux-s390x.tar.xz -7f26cd9a2845df23773755a428d61b74fd80d48a991e964d12e85ae90ced81a0 node-v6.16.0-linux-x64.tar.gz -56c701b19777ffd122832ead132bf0590c9b6280a5cabe19e7642441167f7262 node-v6.16.0-linux-x64.tar.xz -93e47d1bc0dcbe98288247302c65708104d882cc61fe7d0ce2d68a78cdd555db node-v6.16.0-linux-x86.tar.gz -d35a33dcf043d7b30228d423e3a295be7aa9d4fb07f647acf2442cd53d9edcb1 node-v6.16.0-linux-x86.tar.xz -af45957ea17e5358eaa361476648817a4d68e7ae7d1e8f7f0b097cf02f389757 node-v6.16.0.pkg -80bc70012bce0a95284ac09045edb937f3c2da61d7d76f952cb4ccd280b81b44 node-v6.16.0-sunos-x64.tar.gz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2019-01-11 14:05:40
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new.28833 (New)
Package is "nodejs6"
Fri Jan 11 14:05:40 2019 rev:29 rq:664387 version:6.16.0
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-10-23
20:41:43.580448543 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new.28833/nodejs6.changes
2019-01-11 14:06:39.991728964 +0100
@@ -1,0 +2,47 @@
+Mon Jan 7 16:06:53 UTC 2019 - adam.ma...@suse.de
+
+- Update upstream LTS release 6.16.0:
+ * cli: add --max-http-header-size flag
+ * http: add maxHeaderSize property
+
+- Changes in LTS release 6.15.0:
+ * debugger: prevent the debugger from listening on 0.0.0.0.
+It now defaults to 127.0.0.1. (CVE-2018-12120, bsc#1117625)
+ * deps: Upgrade to OpenSSL 1.0.2q, fixing
+CVE-2018-0734 (bsc#1113652) and CVE-2018-5407 (bsc#1113534)
+ * http:
++ Headers received by HTTP servers must not exceed 8192 bytes
+ in total to prevent possible Denial of Service attacks.
+ (CVE-2018-12121, bsc#1117626)
++ A timeout of 40 seconds now applies to servers receiving
+ HTTP headers. This value can be adjusted with
+ server.headersTimeout. Where headers are not completely
+ received within this period, the socket is destroyed on
+ the next received chunk. In conjunction with
+ server.setTimeout(), this aids in protecting against
+ excessive resource retention and possible Denial of Service.
+ (CVE-2018-12122, bsc#1117627)
++ Two-byte characters are now strictly disallowed for the path
+ option in HTTP client requests. Paths containing characters
+ outside of the range \u0021 - \u00ff will now be rejected
+ with a TypeError. This behavior can be reverted if necessary
+ by supplying the --security-revert=CVE-2018-12116 command
+ line argument (this is not recommended).
+ (CVE-2018-12116, bsc#1117630)
+ * util: Fix a bug that would allow a hostname being spoofed when
+parsing URLs with url.parse() with the 'javascript:' protocol.
+(CVE-2018-12123, bsc#1117629)
+
+- skip_test_on_lowmem.patch: skip test on low-memory build machine
+
+---
+Mon Nov 26 14:06:57 UTC 2018 - adam.ma...@suse.de
+
+- flaky_test_rerun.patch: Rerun failing tests in case of flakiness
+
+---
+Mon Nov 12 12:26:46 UTC 2018 - adam.ma...@suse.de
+
+- env_shebang.patch: dropped in favour of programmatic update
+
+---
Old:
env_shebang.patch
node-v6.14.4.tar.xz
New:
flaky_test_rerun.patch
node-v6.16.0.tar.xz
skip_test_on_lowmem.patch
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.I24g5r/_old 2019-01-11 14:06:40.783728167 +0100
+++ /var/tmp/diff_new_pack.I24g5r/_new 2019-01-11 14:06:40.783728167 +0100
@@ -1,7 +1,7 @@
#
# spec file for package nodejs6
#
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.14.4
+Version:6.16.0
Release:0
%define node_version_number 6
@@ -128,12 +128,13 @@
# PATCH-FIX-OPENSUSE -- install user global npm packages to /usr/local
# instead of /usr
Patch104: npm_search_paths.patch
+Patch105: skip_test_on_lowmem.patch
+
+Patch120: flaky_test_rerun.patch
# Use versioned binaries and paths
Patch200: versioned.patch
-Patch201: env_shebang.patch
-
%if 0%{with binutils_gold}
BuildRequires: binutils-gold
%endif
@@ -315,13 +316,19 @@
%patch103 -p1
%endif
%patch104 -p1
+%patch105 -p1
+%patch120 -p1
%patch200 -p1
-%patch201 -p1
# abnormalities from patching
find -name configure.js.orig -delete
%build
+# normalize shebang
+find -name \*.py -perm -1 -type f -exec sed -i '1 s,^#!\s\?/usr/bin/env
python$,#!/usr/bin/python,' {} +
+find deps/npm -type f -exec sed -i '1 s,^#!\s\?/usr/bin/env
node$,#!/usr/bin/node%{node_version_number},' {} +
+find deps/npm -type f -exec sed -i '1 s,^#!\s\?/usr/bin/env
\(bash\|sh\)\?$,#!/bin/bash,' {} +
+
. %{SOURCE20}
# Make sure nothing gets included from bundled deps:
# We only delete the source and header files, because
@@ -420,7 +427,7 @@
# clean
# hidden files and
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-10-23 20:40:23
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Tue Oct 23 20:40:23 2018 rev:28 rq:643770 version:6.14.4
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-08-20
16:23:26.921164418 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-10-23
20:41:43.580448543 +0200
@@ -1,0 +2,5 @@
+Mon Oct 1 14:47:48 UTC 2018 - adam.ma...@suse.de
+
+- fix_ci_tests.patch: Fix unit tests
+
+---
New:
bash_output_helper.bash
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.WrwlFB/_old 2018-10-23 20:41:44.588447339 +0200
+++ /var/tmp/diff_new_pack.WrwlFB/_new 2018-10-23 20:41:44.588447339 +0200
@@ -37,11 +37,12 @@
%define openssl_req_ver 1.0.2
%endif
+%bcond_withvalgrind_tests
+
%if 0%{?suse_version} == 1110
%define _libexecdir %{_exec_prefix}/lib
%endif
-# Only Leap 42.2+, SLE 12 SP2+ and Tumbleweed have OpenSSL 1.0.2.
%if 0%{?suse_version} > 1320 || 0%{?sle_version} >= 120200
%bcond_withintree_openssl
%else
@@ -98,6 +99,8 @@
%bcond_without binutils_gold
%endif
+%define git_node 0
+
Summary:Evented I/O for V8 JavaScript
License:MIT
Group: Development/Languages/NodeJS
@@ -107,6 +110,8 @@
Source2:https://nodejs.org/dist/v%{version}/SHASUMS256.txt.sig
Source3:nodejs.keyring
+Source20: bash_output_helper.bash
+
## Patches not distribution specific
Patch3: fix_ci_tests.patch
Patch6: icu_61_namespacefix.patch
@@ -129,7 +134,7 @@
Patch201: env_shebang.patch
-%if %{with binutils_gold}
+%if 0%{with binutils_gold}
BuildRequires: binutils-gold
%endif
@@ -176,7 +181,12 @@
BuildRequires: python
%endif
-%if ! %{with intree_openssl}
+%if 0%{?suse_version} >= 1500 && %{node_version_number} >= 10
+BuildRequires: group(nobody)
+BuildRequires: user(nobody)
+%endif
+
+%if ! 0%{with intree_openssl}
%if %node_version_number >= 8
BuildRequires: openssl-devel >= %{openssl_req_ver}
@@ -191,18 +201,22 @@
%endif # older node doesn't support OpenSSL 1.1
%endif # ! {with intree_openssl}
-%if ! %{with intree_cares}
+%if ! 0%{with intree_cares}
BuildRequires: pkgconfig(libcares) >= 1.10.0
%endif
-%if ! %{with intree_icu}
+%if ! 0%{with intree_icu}
BuildRequires: pkgconfig(icu-i18n) >= 52
%endif
-%if ! %{with intree_nghttp2}
+%if ! 0%{with intree_nghttp2}
BuildRequires: libnghttp2-devel >= 1.31.0
%endif
+%if 0%{with valgrind_tests}
+BuildRequires: valgrind
+%endif
+
Requires(post): update-alternatives
Requires(postun): update-alternatives
Recommends: npm6
@@ -277,12 +291,23 @@
The API documentation for the Node.js JavaScript runtime.
%prep
+%if ! %{git_node}
echo "`grep node-v%{version}.tar.xz %{S:1} | head -n1 | cut -c1-64` %{S:0}" |
sha256sum -c
%setup -q -n node-v%{version}
+%else
+%setup -q -n node-%{version}
+%endif
+
+%if %{node_version_number} >= 10
+tar Jxvf %{SOURCE11}
+%endif # node_version_number
+
%patch3 -p1
-%if ! %{with intree_openssl}
+%if ! 0%{with intree_openssl}
%endif
%patch6 -p1
+%if 0%{with valgrind_tests}
+%endif
%patch101 -p1
%patch102 -p1
# Add check_output to configure script (not part of Python 2.6 in SLE11).
@@ -297,18 +322,19 @@
find -name configure.js.orig -delete
%build
+. %{SOURCE20}
# Make sure nothing gets included from bundled deps:
# We only delete the source and header files, because
# the remaining build scripts are still used.
-%if ! %{with intree_openssl}
+%if ! 0%{with intree_openssl}
find deps/openssl -name *.[ch] -delete
%endif
-%if ! %{with intree_icu}
+%if ! 0%{with intree_icu}
rm -rf deps/icu-small
%endif
-%if ! %{with intree_cares}
+%if ! 0%{with intree_cares}
find deps/cares -name *.[ch] -delete
%endif
@@ -333,14 +359,14 @@
./configure \
--prefix=%{_prefix} \
-%if ! %{with intree_openssl}
+%if ! 0%{with intree_openssl}
--shared-openssl \
%endif
--shared-zlib \
-%if ! %{with intree_cares}
+%if ! 0%{with intree_cares}
--shared-cares \
%endif
-%if ! %{with intree_icu}
+%if ! 0%{with intree_icu}
--with-intl=system-icu \
%else
%if %{has_small_icu}
@@ -348,22 +374,29 @@
--with-icu-source=deps/icu-small \
%endif
%endif
-%if ! %{with intree_nghttp2}
+%if ! 0%{with intree_nghttp2}
--shared-nghttp2 \
%endif
-%if %{with gdb}
+%if 0%{with gdb}
--gdb \
%endif
--without-dtrace \
--openssl-use-def-ca-store
-make %{?_smp_mflags}
+decoupled_cmd make %{?_smp_mflags}
# Fix documentation
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-08-20 16:22:52
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Mon Aug 20 16:22:52 2018 rev:27 rq:630497 version:6.14.4
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-06-20
15:24:27.997073718 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-08-20
16:23:26.921164418 +0200
@@ -1,0 +2,17 @@
+Mon Aug 20 08:44:21 UTC 2018 - adam.ma...@suse.de
+
+- New upstream LTS release 6.14.4:
+ * buffer: Fix out-of-bounds (OOB) write in Buffer.write() for
+UCS-2 encoding (CVE-2018-12115, bsc#1105019)
+ * deps: Upgrade to OpenSSL 1.0.2p, fixing:
++ Client DoS due to large DH parameter
+ (CVE-2018-0732, bsc#1097158)
++ ECDSA key extraction via local side-channel
+
+---
+Sun Jul 29 10:47:39 UTC 2018 - jeng...@inai.de
+
+- Ensure neutrality of description.
+- Use %make_install.
+
+---
Old:
node-v6.14.3.tar.xz
New:
node-v6.14.4.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.dGxPU8/_old 2018-08-20 16:23:27.549165309 +0200
+++ /var/tmp/diff_new_pack.dGxPU8/_new 2018-08-20 16:23:27.553165315 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.14.3
+Version:6.14.4
Release:0
%define node_version_number 6
@@ -234,10 +234,9 @@
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
-Node.js is a JavaScript runtime built on Chrome's V8 JavaScript engine.
-Node.js uses an event-driven, non-blocking I/O model that makes it
-lightweight and efficient. Node.js' package ecosystem, npm, is the largest
-ecosystem of open source libraries in the world.
+Node.js is a JavaScript runtime built on Chrome's V8 JavaScript engine. Node.js
+uses an event-driven, non-blocking I/O model. Node.js has a package ecosystem
+provided by npm.
%package devel
Summary:Files needed for development of NodeJS platforms
@@ -294,6 +293,9 @@
%patch200 -p1
%patch201 -p1
+# abnormalities from patching
+find -name configure.js.orig -delete
+
%build
# Make sure nothing gets included from bundled deps:
# We only delete the source and header files, because
@@ -361,7 +363,7 @@
find doc/api -type f -exec chmod 0644 {} +
%install
-make install DESTDIR=%{buildroot} %{?_smp_mflags}
+%make_install %{?_smp_mflags}
rm %{buildroot}%{_datadir}/doc/node/gdbinit
rm -f %{buildroot}%{_datadir}/doc/node/lldbinit
rm -f %{buildroot}%{_datadir}/doc/node/lldb_commands.py
@@ -433,7 +435,7 @@
ln -s %{_sysconfdir}/alternatives/npx.1%{ext_man}
%{buildroot}%{_mandir}/man1/npx.1%{ext_man}
%endif
-# We need to own directory on old versions of SLE
+# We need to own license directory on old versions of SLE
%if 0%{?suse_version} < 1500
mkdir -p %{buildroot}%{_defaultlicensedir}
%endif
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.dGxPU8/_old 2018-08-20 16:23:27.581165355 +0200
+++ /var/tmp/diff_new_pack.dGxPU8/_new 2018-08-20 16:23:27.581165355 +0200
@@ -1,42 +1,42 @@
-98055f1b91e283c1d050dfbe78f8b7e5e4ae915c5d4c8ff5b3962b0e1b9d72e9
node-v6.14.3-aix-ppc64.tar.gz
-9d89a1d951c9097cc8ea824a109591f23b86c96ecf2d277c828fb4de18f30e8c
node-v6.14.3-darwin-x64.tar.gz
-67abff5c04f6fdb2b28c3b2292bc865b48d562aef5c125b3d175d9935ee3c34b
node-v6.14.3-darwin-x64.tar.xz
-27f42510182b98a37495a2670869fa675638e270ece3c93f257837262b7ae61f
node-v6.14.3-headers.tar.gz
-05597f4505bdfa532b5951c8171c1e189196f0ca01e28873ce94b2e655339ca5
node-v6.14.3-headers.tar.xz
-07d516d5ba2dca3e66cc034338bd4a68c4c8d3b6c1976feb22c508543f9bffa0
node-v6.14.3-linux-arm64.tar.gz
-a596774de40c4e54319880287c150671810946b747b97189e9a60a9a6b8cfa73
node-v6.14.3-linux-arm64.tar.xz
-d486352b22ecea78f48e2d99db59effc1c9f2308cf0e55ef57a6b7a2b46b2717
node-v6.14.3-linux-armv6l.tar.gz
-06d95058608c09a7f7b3075ee58d66bb9467aad52fc60a6d6e6c28023d7673af
node-v6.14.3-linux-armv6l.tar.xz
-746b0cbc1cff91b2b43ff4fa8310e96842d51c1c65b8bb0f8e158f23af47132e
node-v6.14.3-linux-armv7l.tar.gz
-2017cf2abe335dd14928c2a1b75f4b35f57913c5ce31de1f50adcd85a93cb2af
node-v6.14.3-linux-armv7l.tar.xz
-c1bff8306314f637e99fb5d4c32cbea16586373cdf90e720bb20d25b32e67f35
node-v6.14.3-linux-ppc64le.tar.gz
-e0f51db6b5c9746ea611e40b2cf6cdc87a19858bdebaa637bb4e76ec21cf8cc3
node-v6.14.3-linux-ppc64le.tar.xz
-4186c8aef2fea3bacf6f428e95438a72ff5aee7f2613b31cf4cd05292874fa6f
node-v6.14.3-linux-ppc64.tar.gz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-06-20 15:24:19
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Jun 20 15:24:19 2018 rev:26 rq:617097 version:6.14.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-05-24
23:24:34.258018427 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-06-20
15:24:27.997073718 +0200
@@ -1,0 +2,19 @@
+Fri Jun 15 12:03:47 UTC 2018 - adam.ma...@suse.de
+
+- Recommend same major version npm package (bsc#1097748)
+
+---
+Thu Jun 14 09:20:15 UTC 2018 - adam.ma...@suse.de
+
+- New upstream LTS release 6.14.3:
+ * buffer: Fixes Denial of Service vulnerability where calling
+Buffer.fill() could hang (CVE-2018-7167, bsc#1097375)
+
+---
+Thu May 24 14:17:25 UTC 2018 - adam.ma...@suse.de
+
+- env_shebang.patch: use absolute paths in executable shebang lines
+- versioned.patch: updated to move shebang modifications to above
+ patch.
+
+---
Old:
node-v6.14.2.tar.xz
New:
env_shebang.patch
node-v6.14.3.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.HNvyru/_old 2018-06-20 15:24:29.481019893 +0200
+++ /var/tmp/diff_new_pack.HNvyru/_new 2018-06-20 15:24:29.485019748 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.14.2
+Version:6.14.3
Release:0
%define node_version_number 6
@@ -60,6 +60,12 @@
%bcond_without intree_icu
%endif
+%if 0
+%bcond_withintree_nghttp2
+%else
+%bcond_without intree_nghttp2
+%endif
+
%ifarch aarch64 ppc ppc64 ppc64le s390 s390x
%bcond_withgdb
%else
@@ -101,11 +107,11 @@
Source2:https://nodejs.org/dist/v%{version}/SHASUMS256.txt.sig
Source3:nodejs.keyring
-## UPSTREAM PATCHES HERE, if any
+## Patches not distribution specific
Patch3: fix_ci_tests.patch
Patch6: icu_61_namespacefix.patch
-## Our patches
+## Patches specific to SUSE and openSUSE
# PATCH-FIX-OPENSUSE -- set correct path for dtrace if it is built
Patch101: nodejs-libpath.patch
# PATCH-FIX-UPSTREAM -- use custom addon.gypi by default instead of
@@ -121,6 +127,8 @@
# Use versioned binaries and paths
Patch200: versioned.patch
+Patch201: env_shebang.patch
+
%if %{with binutils_gold}
BuildRequires: binutils-gold
%endif
@@ -145,24 +153,11 @@
%endif # node >= 8
%endif # sles == 11
-# SLE 12 and Leap 42
-# GCC 6 is only available with SLE 12 SP1 and Leap 42.2+.
+# Use GCC 7, since it is in SLE-12:Update
%if %node_version_number >= 8 && 0%{?suse_version} == 1315
-%if 0%{?sle_version} < 120100
-BuildRequires: gcc5-c++
-%define cc_exec gcc-5
-%define cpp_exec g++-5
-%else
-%if 0%{?sle_version} <= 120200 || (0%{?sle_version} == 120300 &&
!0%{?is_opensuse})
-BuildRequires: gcc6-c++
-%define cc_exec gcc-6
-%define cpp_exec g++-6
-%else
BuildRequires: gcc7-c++
%define cc_exec gcc-7
%define cpp_exec g++-7
-%endif # SLE 12 <= SP2 and SLE 12 SP3 but not Leap 42.3
-%endif # SLE 12 < SP1
%endif # node >= 8 and sle == 12
# No special version defined, use default.
@@ -204,9 +199,13 @@
BuildRequires: pkgconfig(icu-i18n) >= 52
%endif
+%if ! %{with intree_nghttp2}
+BuildRequires: libnghttp2-devel >= 1.31.0
+%endif
+
Requires(post): update-alternatives
Requires(postun): update-alternatives
-Recommends: npm(npm) = 3.10.10
+Recommends: npm6
#we need ABI virtual provides where SONAMEs aren't enough/not present so deps
#break when binary compatibility is broken
@@ -293,7 +292,9 @@
%endif
%patch104 -p1
%patch200 -p1
+%patch201 -p1
+%build
# Make sure nothing gets included from bundled deps:
# We only delete the source and header files, because
# the remaining build scripts are still used.
@@ -315,7 +316,6 @@
# documentation changes every version.
find -name *.md.orig -delete
-%build
# percent-configure pulls in something that confuses node's configure
# script, so we'll do it thus:
export CFLAGS="%{optflags}"
@@ -346,6 +346,9 @@
--with-icu-source=deps/icu-small \
%endif
%endif
+%if ! %{with intree_nghttp2}
+--shared-nghttp2 \
+%endif
%if %{with gdb}
--gdb \
%endif
@@ -354,6 +357,9 @@
make %{?_smp_mflags}
+# Fix documentation permissions
+find doc/api -type f -exec chmod 0644 {} +
+
%install
make install DESTDIR=%{buildroot} %{?_smp_mflags}
rm %{buildroot}%{_datadir}/doc/node/gdbinit
@@ -395,7
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-05-24 23:24:31
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Thu May 24 23:24:31 2018 rev:25 rq:610028 version:6.14.2
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-04-05
15:35:12.288427510 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-05-24
23:24:34.258018427 +0200
@@ -1,0 +2,13 @@
+Fri May 11 12:36:46 UTC 2018 - adam.ma...@suse.de
+
+- New upstream LTS release 6.14.2:
+ * n-api: n-api has been backported to v6.x.
+- icu_61_namespacefix.patch: Fix building with ICU61.1 (bsc#1091764)
+- versioned.patch: rebased
+
+---
+Thu Apr 5 07:18:42 UTC 2018 - adam.ma...@suse.de
+
+- Install license with %license, not %doc (bsc#1082318)
+
+---
Old:
node-v6.14.1.tar.xz
New:
icu_61_namespacefix.patch
node-v6.14.2.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.mRkUs7/_old 2018-05-24 23:24:35.117987131 +0200
+++ /var/tmp/diff_new_pack.mRkUs7/_new 2018-05-24 23:24:35.121986986 +0200
@@ -26,11 +26,17 @@
###
Name: nodejs6
-Version:6.14.1
+Version:6.14.2
Release:0
%define node_version_number 6
+%if %node_version_number >= 10
+%define openssl_req_ver 1.1.0
+%else # node8 or older
+%define openssl_req_ver 1.0.2
+%endif
+
%if 0%{?suse_version} == 1110
%define _libexecdir %{_exec_prefix}/lib
%endif
@@ -97,6 +103,7 @@
## UPSTREAM PATCHES HERE, if any
Patch3: fix_ci_tests.patch
+Patch6: icu_61_namespacefix.patch
## Our patches
# PATCH-FIX-OPENSUSE -- set correct path for dtrace if it is built
@@ -177,13 +184,13 @@
%if ! %{with intree_openssl}
%if %node_version_number >= 8
-BuildRequires: openssl-devel >= 1.0.2
+BuildRequires: openssl-devel >= %{openssl_req_ver}
%else # older node doesn't support OpenSSL 1.1
%if 0%{?suse_version} >= 1330
BuildRequires: libopenssl-1_0_0-devel
%else
-BuildRequires: openssl-devel >= 1.0.2
+BuildRequires: openssl-devel >= %{openssl_req_ver}
%endif
%endif # older node doesn't support OpenSSL 1.1
@@ -277,6 +284,7 @@
%patch3 -p1
%if ! %{with intree_openssl}
%endif
+%patch6 -p1
%patch101 -p1
%patch102 -p1
# Add check_output to configure script (not part of Python 2.6 in SLE11).
@@ -419,6 +427,11 @@
ln -s %{_sysconfdir}/alternatives/npx.1%{ext_man}
%{buildroot}%{_mandir}/man1/npx.1%{ext_man}
%endif
+# We need to own directory on old versions of SLE
+%if 0%{?suse_version} < 1500
+mkdir -p %{buildroot}%{_defaultlicensedir}
+%endif
+
%check
ln addon-rpm.gypi deps/npm/node_modules/node-gyp/addon-rpm.gypi
# Tarball doesn't have eslint package distributed, so disable some tests
@@ -435,7 +448,8 @@
%files
%defattr(-, root, root)
-%doc AUTHORS LICENSE *.md
+%license LICENSE
+%doc AUTHORS *.md
%doc deps/v8/tools/gdbinit
%dir %{_libdir}/node_modules
%{_bindir}/node%{node_version_number}
@@ -445,6 +459,10 @@
%ghost %{_sysconfdir}/alternatives/node-default
%ghost %{_sysconfdir}/alternatives/node.1%{ext_man}
%exclude %{_libdir}/node_modules/npm%{node_version_number}
+# We need to own directory on old versions of SLE
+%if 0%{?suse_version} < 1500
+%dir %{_defaultlicensedir}
+%endif
%files -n npm%{node_version_number}
%defattr(-, root, root)
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.mRkUs7/_old 2018-05-24 23:24:35.161985530 +0200
+++ /var/tmp/diff_new_pack.mRkUs7/_new 2018-05-24 23:24:35.161985530 +0200
@@ -1,42 +1,42 @@
-baff3cbf6ad4f386d47aa2fd8c87c9947aea6654578008fc082d3812e9e6f4d3
node-v6.14.1-aix-ppc64.tar.gz
-b561f7a9ff3975b30b8788b0b3830a241a5373fe8e7f52201af92e2d1a4b0a0e
node-v6.14.1-darwin-x64.tar.gz
-0a5e12f4c12039e0b5b05fd92edffc46d52a4edb0cf553ccd59c49e3a146d175
node-v6.14.1-darwin-x64.tar.xz
-1e1519e4797b59799293b867aaccb23376d08baba0dda3cd09cf966f6f037dd4
node-v6.14.1-headers.tar.gz
-a4400dbe159f5464c9e900143c7b336dc1e66726b462329a4ea4f3513feb37ba
node-v6.14.1-headers.tar.xz
-8f73b9a9a9816cc2b7f3b18947da0d644c6ea2c74c0e95101814e4e951a4f270
node-v6.14.1-linux-arm64.tar.gz
-d262b6bee47798c0037d1785cbbf1055a4e167e0965396dc6f3f55486567e44c
node-v6.14.1-linux-arm64.tar.xz
-bcef7dcbce3e349eafefc7dcebddee1f085e85d26707a72752907a1c9535b71d
node-v6.14.1-linux-armv6l.tar.gz
-575810fcfecfe6315571710bddc0a2bc41e52d501f42e3f993ddab2e324dbee0
node-v6.14.1-linux-armv6l.tar.xz
-575b75eb9ce7afa660b8e8bd3abfb8d1cb8401ad402fed8ce5eeeb85ac76a3d3
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-04-05 15:34:59
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Thu Apr 5 15:34:59 2018 rev:24 rq:593711 version:6.14.1
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-03-28
10:33:10.229184949 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-04-05
15:35:12.288427510 +0200
@@ -1,0 +2,19 @@
+Wed Apr 4 13:29:24 UTC 2018 - adam.ma...@suse.de
+
+- Fix some node-gyp permissions
+
+---
+Tue Apr 3 11:02:56 UTC 2018 - adam.ma...@suse.de
+
+- New upstream LTS release 6.14.1:
+ * Security fixes:
++ Fix for inspector DNS rebinding vulnerability
+ (bsc#1087463, CVE-2018-7160)
++ Fix for 'path' module regular expression denial of service
+ (bsc#1087459, CVE-2018-7158)
++ Reject spaces in HTTP Content-Length header values
+ (bsc#1087453, CVE-2018-7159)
+ * Upgrade to OpenSSL 1.0.2o
+ * deps: upgrade http-parser to v2.8.0
+
+---
Old:
node-v6.13.1.tar.xz
New:
node-v6.14.1.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.LcNzEG/_old 2018-04-05 15:35:13.400387324 +0200
+++ /var/tmp/diff_new_pack.LcNzEG/_new 2018-04-05 15:35:13.404387179 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.13.1
+Version:6.14.1
Release:0
%define node_version_number 6
@@ -390,6 +390,11 @@
find %{buildroot}%{_libdir}/node_modules -type f -exec chmod -x {} +
chmod 0755
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/bin/np*-cli.js
chmod 0755
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/bin/node-gyp-bin/node-gyp
+chmod 0755
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/node_modules/node-gyp/bin/node-gyp.js
+%if %{node_version_number} >= 8
+chmod 0755
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/node_modules/npm-lifecycle/node-gyp-bin/node-gyp
+%endif
+
# browser.js is useless for npm cli
find %{buildroot}%{_libdir}/node_modules/npm%{node_version_number} -name
"browser.js" -delete
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.LcNzEG/_old 2018-04-05 15:35:13.432386167 +0200
+++ /var/tmp/diff_new_pack.LcNzEG/_new 2018-04-05 15:35:13.432386167 +0200
@@ -1,42 +1,42 @@
-202fccebc6629de680c13ce3ec69c8ba91ddaa1eace00fa18f9d9b10775442c2
node-v6.13.1-aix-ppc64.tar.gz
-6a34a95342550e75dc8354c96ff5fd71c8401650f6bf83cfc1051b76fd44334d
node-v6.13.1-darwin-x64.tar.gz
-5b5370d7dcaff65eb1509614c62f99bb70042d2f45e1d0e35edca2a8ddcfe32f
node-v6.13.1-darwin-x64.tar.xz
-8f99b4f03926eceee4dc3c7a489f9c529628fac1f617a4e410dc1da1efe9b355
node-v6.13.1-headers.tar.gz
-52c948317c2e4897339d5cbeefb2f2d53ccddf4d6a2f142c8c96af19c68c02ae
node-v6.13.1-headers.tar.xz
-27c9dd1c907f751f073f6d092b72a184a836aac7cac40fdf056edcc1987102b3
node-v6.13.1-linux-arm64.tar.gz
-f144ce6563b8f04b2d077df836663788a5c5a126e0375ea52b283a38fa22d9c1
node-v6.13.1-linux-arm64.tar.xz
-bb9d1aee17eed7c0777d6d7885aedad450d1fe197705c01fd9928d36d18ef5aa
node-v6.13.1-linux-armv6l.tar.gz
-3965e55a412c0f587d4be981c2cfec09f86d40a3386e8d1ec0bc4e4f4b95ab6e
node-v6.13.1-linux-armv6l.tar.xz
-b79921ac58b5d74c7edc012e25d4fb760be2aa5c431cc553e3077c68e8fddaf0
node-v6.13.1-linux-armv7l.tar.gz
-082082c5767b49cd4d9ae9cbef51a7625de38ac7796292eff0c433a1c7aff891
node-v6.13.1-linux-armv7l.tar.xz
-d94f1a709123b864f31c7b877e7a6a654404d8d64a6edf3ce7ebe4f50357a794
node-v6.13.1-linux-ppc64le.tar.gz
-ac6a3a975a12e17426e316c2bc5896dfd703c6bca220366897e30a1408d4d2ea
node-v6.13.1-linux-ppc64le.tar.xz
-ff70ea5baa6655509cfcf4bad907849bb4c2a63fc2a03a0dcedd562fdf0fca03
node-v6.13.1-linux-ppc64.tar.gz
-66f5c48b40acc6f79b85bcf86114fd5e2e65f99d2ee4f9cc4bf979aecd9b27a2
node-v6.13.1-linux-ppc64.tar.xz
-c83cc489f427d325e21a14f24f2a5703351d50e35bfe938f57fe2250509d4bfd
node-v6.13.1-linux-s390x.tar.gz
-d9528bfa42618627e4e3283ab7658efc9f688c501dcadbc9e3f1672b9cc241c7
node-v6.13.1-linux-s390x.tar.xz
-b8eb262c8a0713da7c56736a7e28533303369dae8f0cbdbe901dd3c5f6a19829
node-v6.13.1-linux-x64.tar.gz
-f82072a238bf9e290b84fbadaf0cf0e09a05d2a515d59337775342b4ef96db25
node-v6.13.1-linux-x64.tar.xz
-236b603b1c114b404cea05f5eacddc5620b4b2aa36475e841808b856efdb298a
node-v6.13.1-linux-x86.tar.gz
-95f18d6814a31fcf90abcee4ed2984c0c23611791924692f348e48c4e5472401
node-v6.13.1-linux-x86.tar.xz
-aa2d67d5c481fa2b49909eef338898615e68ffb5a93cd2d83ea8566c7b7d3088
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-03-28 10:33:08
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Mar 28 10:33:08 2018 rev:23 rq:591577 version:6.13.1
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-02-20
17:58:25.239237075 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-03-28
10:33:10.229184949 +0200
@@ -1,0 +2,31 @@
+Thu Mar 22 10:52:48 UTC 2018 - adam.ma...@suse.de
+
+- New upstream LTS release 6.13.1:
+ * http,tls: better support for IPv6 addresses
+ * console: added console.count() and console.clear()
+ * crypto:
++ expose ECDH class
++ added cypto.randomFill() and crypto.randomFillSync()
++ warn on invalid authentication tag length
+ * deps: upgrade libuv to 1.16.1
+ * dgram: added socket.setMulticastInterface()
+ * http: add agent.keepSocketAlive and agent.reuseSocket as to
+allow overridable keep-alive behavior of Agent
+ * lib: return this from net.Socket.end()
+ * module: add builtinModules api that provides list of all
+builtin modules in Node
+ * net: return this from getConnections()
+ * promises: more robust stringification for unhandled rejections
+ * repl: improve require() autocompletion
+ * src:
++ add openssl-system-ca-path configure option
++ add --use-bundled-ca --use-openssl-ca check
++ add process.ppid
+ * tls: accept lookup option for tls.connect()
+ * tools,build: a new macOS installer!
+ * url: WHATWG URL api support
+ * util: add %i and %f formatting specifiers
+- remove any old manpage files in %pre from before update-alternatives
+ were used to manage symlinks to these manpages.
+
+---
Old:
node-v6.12.3.tar.xz
New:
node-v6.13.1.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.szaeoZ/_old 2018-03-28 10:33:12.857090433 +0200
+++ /var/tmp/diff_new_pack.szaeoZ/_new 2018-03-28 10:33:12.861090289 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.12.3
+Version:6.13.1
Release:0
%define node_version_number 6
@@ -166,10 +166,13 @@
BuildRequires: fdupes
BuildRequires: pkg-config
BuildRequires: procps
-BuildRequires: python
-BuildRequires: python2
BuildRequires: xz
BuildRequires: zlib-devel
+%if 0%{?suse_version} >= 1500
+BuildRequires: python2
+%else
+BuildRequires: python
+%endif
%if ! %{with intree_openssl}
@@ -247,7 +250,11 @@
Obsoletes: nodejs-npm < 4.0.0
Provides: npm = %{version}
Provides: npm(npm) = 3.10.10
+%if 0%{?suse_version} >= 1500
Recommends: python2
+%else
+Recommends: python
+%endif
%description -n npm6
A package manager for Node.js that allows developers to install and
@@ -348,8 +355,11 @@
# remove .bak files, if any
find %{buildroot} -name \*.bak -print -delete
-# npm man page
+# npm/npx man page
install -D -m 644 deps/npm/man/man1/npm.1
%{buildroot}%{_mandir}/man1/npm%{node_version_number}.1
+%if %{node_version_number} >= 8
+install -D -m 644 deps/npm/man/man1/npx.1
%{buildroot}%{_mandir}/man1/npx%{node_version_number}.1
+%endif
#node-gyp needs common.gypi too
install -D -m 644 common.gypi \
@@ -443,6 +453,7 @@
%if %{node_version_number} >= 8
%{_bindir}/npx%{node_version_number}
+%{_mandir}/man1/npx%{node_version_number}.1%{ext_man}
%ghost %{_bindir}/npx-default
%ghost %{_mandir}/man1/npx.1%{ext_man}
%ghost %{_sysconfdir}/alternatives/npx-default
@@ -460,6 +471,12 @@
%defattr(-,root,root)
%doc doc/api
+%pre
+# remove files that are no longer owned but provided by update-alternatives
+if ! [ -L %{_mandir}/man1/node.1%{ext_man} ]; then
+rm -f %{_mandir}/man1/node.1%{ext_man}
+fi
+
%post
update-alternatives \
--install %{_bindir}/node-default node-default
%{_bindir}/node%{node_version_number} %{node_version_number} \
@@ -470,6 +487,12 @@
update-alternatives --remove node-default
%{_bindir}/node%{node_version_number}
fi
+%pre -n npm%{node_version_number}
+# remove files that are no longer owned but provided by update-alternatives
+if ! [ -L %{_mandir}/man1/npm.1%{ext_man} ]; then
+rm -f %{_mandir}/man1/npm.1%{ext_man}
+fi
+
%post -n npm%{node_version_number}
update-alternatives \
--install %{_bindir}/npm-default npm-default
%{_bindir}/npm%{node_version_number} %{node_version_number} \
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.szaeoZ/_old 2018-03-28 10:33:12.893089138 +0200
+++ /var/tmp/diff_new_pack.szaeoZ/_new 2018-03-28
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-02-20 17:56:47
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Tue Feb 20 17:56:47 2018 rev:22 rq:578284 version:6.12.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-02-07
18:42:21.565524965 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-02-20
17:58:25.239237075 +0100
@@ -1,0 +2,7 @@
+Tue Feb 13 08:40:52 UTC 2018 - adam.ma...@suse.de
+
+- Add Recommends and BuildRequire on python2 for npm. node-gyp
+ requires this old version of python for now. This is only needed
+ for binary modules.
+
+---
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.YBnIwI/_old 2018-02-20 17:58:26.695184663 +0100
+++ /var/tmp/diff_new_pack.YBnIwI/_new 2018-02-20 17:58:26.703184375 +0100
@@ -146,9 +146,15 @@
%define cc_exec gcc-5
%define cpp_exec g++-5
%else
+%if 0%{?sle_version} <= 120200 || (0%{?sle_version} == 120300 &&
!0%{?is_opensuse})
BuildRequires: gcc6-c++
%define cc_exec gcc-6
%define cpp_exec g++-6
+%else
+BuildRequires: gcc7-c++
+%define cc_exec gcc-7
+%define cpp_exec g++-7
+%endif # SLE 12 <= SP2 and SLE 12 SP3 but not Leap 42.3
%endif # SLE 12 < SP1
%endif # node >= 8 and sle == 12
@@ -161,6 +167,7 @@
BuildRequires: pkg-config
BuildRequires: procps
BuildRequires: python
+BuildRequires: python2
BuildRequires: xz
BuildRequires: zlib-devel
@@ -240,6 +247,7 @@
Obsoletes: nodejs-npm < 4.0.0
Provides: npm = %{version}
Provides: npm(npm) = 3.10.10
+Recommends: python2
%description -n npm6
A package manager for Node.js that allows developers to install and
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-02-07 18:42:07
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Feb 7 18:42:07 2018 rev:21 rq:573620 version:6.12.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-01-17
21:59:46.667089482 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-02-07
18:42:21.565524965 +0100
@@ -1,0 +2,6 @@
+Tue Jan 30 18:10:06 CET 2018 - r...@suse.de
+
+- even on recent codestreams there is no binutils gold on s390
+ only on s390x
+
+---
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.GC8lT2/_old 2018-02-07 18:42:22.981458668 +0100
+++ /var/tmp/diff_new_pack.GC8lT2/_new 2018-02-07 18:42:22.985458481 +0100
@@ -70,13 +70,17 @@
%endif # aarch64
# No binutils_gold on all versions of SLE 12 and Leap 42 (s390x).
-%ifarch s390x s390
+%ifarch s390x
%if 0%{?suse_version} > 1320
%bcond_without binutils_gold
%else
%bcond_withbinutils_gold
%endif
-%endif # s390x s390
+%endif # s390x
+
+%ifarch s390
+%bcond_withbinutils_gold
+%endif
%ifnarch aarch64 s390x s390
%bcond_without binutils_gold
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-01-17 21:58:46
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Jan 17 21:58:46 2018 rev:20 rq:566594 version:6.12.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2018-01-06
18:52:12.990744711 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-01-17
21:59:46.667089482 +0100
@@ -1,0 +2,8 @@
+Tue Jan 9 10:54:48 UTC 2018 - adam.ma...@suse.de
+
+- New upstream LTS release 6.12.3:
+ * v8: profiler-related fixes
+ * mostly documentation and test related changes
+- nodejs-sle11-python26-check_output.patch: refreshed
+
+---
Old:
node-v6.12.2.tar.xz
New:
node-v6.12.3.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.TxnDNM/_old 2018-01-17 21:59:47.991027427 +0100
+++ /var/tmp/diff_new_pack.TxnDNM/_new 2018-01-17 21:59:47.995027239 +0100
@@ -1,7 +1,7 @@
#
# spec file for package nodejs6
#
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -26,12 +26,12 @@
###
Name: nodejs6
-Version:6.12.2
+Version:6.12.3
Release:0
%define node_version_number 6
-%if 0%{?sles_version} == 11
+%if 0%{?suse_version} == 1110
%define _libexecdir %{_exec_prefix}/lib
%endif
@@ -121,7 +121,7 @@
#
# If the default compiler is not supported, use the most recent compiler
# version available.
-%if 0%{?sles_version} == 11
+%if 0%{?suse_version} == 1110
# GCC 5 is only available in the SUSE:SLE-11:SP4:Update repository (SDK).
%if %node_version_number >= 8
BuildRequires: gcc5-c++
@@ -135,8 +135,8 @@
%endif # sles == 11
# SLE 12 and Leap 42
-# GCC 6 is only available with SLE 12 SP1 and Leap 42.2+ (ignore 42.1: EOL).
-%if 6 >= 8 && 0%{?suse_version} == 1315
+# GCC 6 is only available with SLE 12 SP1 and Leap 42.2+.
+%if %node_version_number >= 8 && 0%{?suse_version} == 1315
%if 0%{?sle_version} < 120100
BuildRequires: gcc5-c++
%define cc_exec gcc-5
@@ -205,7 +205,7 @@
# For SLE11, to be able to use the certificate store we need to have properly
# symlinked certificates. The compatability symlinks are provided by the
# openssl1 library in the Security Module
-%if 0%{?sles_version} == 11
+%if 0%{?suse_version} == 1110
Requires: openssl1
%endif
@@ -261,7 +261,7 @@
%patch101 -p1
%patch102 -p1
# Add check_output to configure script (not part of Python 2.6 in SLE11).
-%if 0%{?sles_version} == 11
+%if 0%{?suse_version} == 1110
%patch103 -p1
%endif
%patch104 -p1
@@ -284,6 +284,10 @@
find deps/zlib -name *.[ch] -delete
+# Annoying, over-repetitive patch updated just because lines in
+# documentation changes every version.
+find -name *.md.orig -delete
+
%build
# percent-configure pulls in something that confuses node's configure
# script, so we'll do it thus:
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.TxnDNM/_old 2018-01-17 21:59:48.091022740 +0100
+++ /var/tmp/diff_new_pack.TxnDNM/_new 2018-01-17 21:59:48.095022552 +0100
@@ -1,42 +1,42 @@
-a9ac3110966718640e8da7692b6e8438264a6dec766ff0565ebb0b7b6d8f20b2
node-v6.12.2-aix-ppc64.tar.gz
-ef78e01bab2e59643f70dd7384477c1816e3c327a71841cc58826baa7ab8a5e9
node-v6.12.2-darwin-x64.tar.gz
-7684b91c7a23a1a61a81d8f3f6d080481cdda8f3b452cd64cc142172f7ea1e4b
node-v6.12.2-darwin-x64.tar.xz
-c5e77f5a6d9dffeb8d8f311dc5e26873a65188ba157f72ba0fe972368c6b7685
node-v6.12.2-headers.tar.gz
-44cdfe1819a0e9bc84c0ff69433dada84e1a344ae6b29d1c427a48f93da74327
node-v6.12.2-headers.tar.xz
-8a1aa367e8bdc95a56837b0e96620bd6f68fba56a1773607f3199bf191bdf1e7
node-v6.12.2-linux-arm64.tar.gz
-a9b37f4ad08ffbb86dd2c20e0d86504cfb9131f804167fbd61bd4c6a706e1a09
node-v6.12.2-linux-arm64.tar.xz
-d1011acb0d10b88894cb48f00efbe3621990be8c698c938e9ae2a4949bbd20e6
node-v6.12.2-linux-armv6l.tar.gz
-6144541afc59b9ada04d324257ad7933b184eab1c42d02f6b907bb47b305a263
node-v6.12.2-linux-armv6l.tar.xz
-4d60d4a2bb3987e051a93e9c139cde98a6e9c413eaaa6dd867bfc658fb75ff7d
node-v6.12.2-linux-armv7l.tar.gz
-8262d425b43555c563a88a351a7c5cbc776bd1a8aa7f8ba8a2c211c3cf95dbf0
node-v6.12.2-linux-armv7l.tar.xz
-891737bd7b623e00b3eab3e9575d4e3d1574fcae42b40e4f0db29a5517560282
node-v6.12.2-linux-ppc64le.tar.gz
-198f9e68381cd7aa8bea55e6f391566d630078b1ac8e1b2e75c952840f0d79e1
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2018-01-06 18:52:07
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Sat Jan 6 18:52:07 2018 rev:19 rq:561899 version:6.12.2
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-12-09
20:32:49.598292138 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2018-01-06
18:52:12.990744711 +0100
@@ -1,0 +2,15 @@
+Fri Dec 22 14:28:07 UTC 2017 - adam.ma...@suse.de
+
+- Enable CI tests in %check target
+ + fix_ci_tests.patch:
+- DNS queries in buildroots are failing with EAI_AGAIN
+- disable test-module-loading-globalpaths.js - we have
+ hardcoded global paths
+ + versioned.patch: call versioned node binary for tests
+
+---
+Thu Dec 14 09:45:50 UTC 2017 - adam.ma...@suse.de
+
+- Dropped 8334.diff - no longer needed
+
+---
@@ -6 +21 @@
-and lower)
+and lower) (bsc#1072322)
Old:
8334.diff
New:
fix_ci_tests.patch
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.sovyeI/_old 2018-01-06 18:52:13.922701166 +0100
+++ /var/tmp/diff_new_pack.sovyeI/_new 2018-01-06 18:52:13.922701166 +0100
@@ -92,7 +92,7 @@
Source3:nodejs.keyring
## UPSTREAM PATCHES HERE, if any
-Patch1: 8334.diff
+Patch3: fix_ci_tests.patch
## Our patches
# PATCH-FIX-OPENSUSE -- set correct path for dtrace if it is built
@@ -161,12 +161,19 @@
BuildRequires: zlib-devel
%if ! %{with intree_openssl}
+
+%if %node_version_number >= 8
+BuildRequires: openssl-devel >= 1.0.2
+%else # older node doesn't support OpenSSL 1.1
+
%if 0%{?suse_version} >= 1330
BuildRequires: libopenssl-1_0_0-devel
%else
BuildRequires: openssl-devel >= 1.0.2
%endif
-%endif
+
+%endif # older node doesn't support OpenSSL 1.1
+%endif # ! {with intree_openssl}
%if ! %{with intree_cares}
BuildRequires: pkgconfig(libcares) >= 1.10.0
@@ -248,8 +255,8 @@
%prep
echo "`grep node-v%{version}.tar.xz %{S:1} | head -n1 | cut -c1-64` %{S:0}" |
sha256sum -c
%setup -q -n node-v%{version}
-%if %node_version_number < 6
-%patch1 -p1
+%patch3 -p1
+%if ! %{with intree_openssl}
%endif
%patch101 -p1
%patch102 -p1
@@ -381,9 +388,19 @@
ln -s %{_sysconfdir}/alternatives/npx.1%{ext_man}
%{buildroot}%{_mandir}/man1/npx.1%{ext_man}
%endif
-# Check that Node.js isn't completely broken.
%check
-%{buildroot}%{_bindir}/node%{node_version_number} -e
'require("assert").strictEqual(process.versions.node, "%{version}");'
+ln addon-rpm.gypi deps/npm/node_modules/node-gyp/addon-rpm.gypi
+# Tarball doesn't have eslint package distributed, so disable some tests
+find test -name \*-eslint-\* -print -delete
+# No documentation is generated, don't bother checking it
+rm -f test/doctool/test-make-doc.js
+# DNS lookup doesn't work in build root
+rm -f test/parallel/test-dns-cancel-reverse-lookup.js \
+ test/parallel/test-dns-resolveany.js
+# multicast test fail since no socket?
+rm -f test/parallel/test-dgram-membership.js
+# Run CI tests - 'advisory for now'
+make test-ci || echo "** UNIT TESTS NOT ALL HAPPY *"
%files
%defattr(-, root, root)
++ fix_ci_tests.patch ++
Author: Adam Majer
Date: Dec 20 09:18:49 UTC 2017
Summary: Fix CI unit tests framework for OBS building
Index: node-v6.12.2/test/parallel/test-module-loading-globalpaths.js
===
--- node-v6.12.2.orig/test/parallel/test-module-loading-globalpaths.js
+++ node-v6.12.2/test/parallel/test-module-loading-globalpaths.js
@@ -7,6 +7,9 @@ const fs = require('fs');
const child_process = require('child_process');
const pkgName = 'foo';
+common.skip('hardcoded global paths');
+return;
+
if (process.argv[2] === 'child') {
console.log(require(pkgName).string);
} else {
++ versioned.patch ++
--- /var/tmp/diff_new_pack.sovyeI/_old 2018-01-06 18:52:13.986698176 +0100
+++ /var/tmp/diff_new_pack.sovyeI/_new 2018-01-06 18:52:13.990697989 +0100
@@ -8,10 +8,10 @@
This is also important for generation of binary
modules for multiple versions of NodeJS
-Index: node-v6.11.3/node.gyp
+Index: node-v6.12.2/node.gyp
===
node-v6.11.3.orig/node.gyp
-+++ node-v6.11.3/node.gyp
+--- node-v6.12.2.orig/node.gyp
node-v6.12.2/node.gyp
@@ -19,7 +19,7 @@
'node_shared_openssl%': 'false',
'node_v8_options%': '',
@@ -21,7 +21,7 @@
'library_files': [
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-12-09 20:32:42
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Sat Dec 9 20:32:42 2017 rev:18 rq:27 version:6.12.2
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-11-29
10:54:50.871887562 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-12-09
20:32:49.598292138 +0100
@@ -1,0 +2,23 @@
+Sat Dec 9 03:22:01 UTC 2017 - qantas94he...@gmail.com
+
+- New upstream LTS release 6.12.2:
+ * deps/openssl: updated to 1.0.2n (only applies to SLE 12 SP1
+and lower)
+[ CVE-2017-3738 CVE-2017-15896 ]
+
+- Changes in 6.12.1:
+ * build: fix npm install with --shared
+[ gh#nodejs/node#16438 ]
+ * build: building on systems with default Python 3 is now
+supported
+[ gh#nodejs/node#16058 ]
+ * src: v8 options can be specified with either '_' or '-' in
+NODE_OPTIONS
+[ gh#nodejs/node#14093 ]
+
+- Remove unnecessary curl BuildRequires
+- Enable gold linker on s390x (TW and SLE/Leap 15)
+- Build with bundled ICU if system ICU not available (only applies
+ to SLE 11)
+
+---
Old:
node-v6.12.0.tar.xz
New:
node-v6.12.2.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.cW6FlA/_old 2017-12-09 20:32:50.650242033 +0100
+++ /var/tmp/diff_new_pack.cW6FlA/_new 2017-12-09 20:32:50.650242033 +0100
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.12.0
+Version:6.12.2
Release:0
%define node_version_number 6
@@ -60,25 +60,27 @@
%bcond_without gdb
%endif
-# No binutils_gold on SLE12 (aarch64).
+# No binutils_gold on SLE 12 GA (aarch64).
%ifarch aarch64
-
%if 0%{?sle_version} >= 120100 || 0%{?is_opensuse}
%bcond_without binutils_gold
%else
%bcond_withbinutils_gold
%endif
+%endif # aarch64
-%else # aarch64
-
-# No binutils_gold on s390x.
+# No binutils_gold on all versions of SLE 12 and Leap 42 (s390x).
%ifarch s390x s390
-%bcond_withbinutils_gold
-%else
+%if 0%{?suse_version} > 1320
%bcond_without binutils_gold
+%else
+%bcond_withbinutils_gold
+%endif
%endif # s390x s390
-%endif # aarch64
+%ifnarch aarch64 s390x s390
+%bcond_without binutils_gold
+%endif
Summary:Evented I/O for V8 JavaScript
License:MIT
@@ -133,20 +135,24 @@
%endif # sles == 11
# SLE 12 and Leap 42
-%if 0%{?suse_version} == 1315
-%if %node_version_number >= 8
+# GCC 6 is only available with SLE 12 SP1 and Leap 42.2+ (ignore 42.1: EOL).
+%if 6 >= 8 && 0%{?suse_version} == 1315
+%if 0%{?sle_version} < 120100
+BuildRequires: gcc5-c++
+%define cc_exec gcc-5
+%define cpp_exec g++-5
+%else
BuildRequires: gcc6-c++
%define cc_exec gcc-6
%define cpp_exec g++-6
-%endif
-%endif
+%endif # SLE 12 < SP1
+%endif # node >= 8 and sle == 12
# No special version defined, use default.
%if ! 0%{?cc_exec:1}
BuildRequires: gcc-c++
%endif
-BuildRequires: curl
BuildRequires: fdupes
BuildRequires: pkg-config
BuildRequires: procps
@@ -282,6 +288,9 @@
export CXX=%{?cpp_exec}
%endif
+# Node.js 4.x does not include the ICU database in the source tarball.
+%define has_small_icu %(test -d "deps/icu-small" && echo 1 || echo 0)
+
./configure \
--prefix=%{_prefix} \
%if ! %{with intree_openssl}
@@ -293,6 +302,11 @@
%endif
%if ! %{with intree_icu}
--with-intl=system-icu \
+%else
+%if %{has_small_icu}
+--with-intl=small-icu \
+--with-icu-source=deps/icu-small \
+%endif
%endif
%if %{with gdb}
--gdb \
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.cW6FlA/_old 2017-12-09 20:32:50.686240318 +0100
+++ /var/tmp/diff_new_pack.cW6FlA/_new 2017-12-09 20:32:50.686240318 +0100
@@ -1,42 +1,42 @@
-170d3fe4f32a2a2c15fe93cb74d77e0dffbc9b5058c5381f5253732d564797d6
node-v6.12.0-aix-ppc64.tar.gz
-c1e54ab300bffede79fcaa8545e279d4a3063b9e9c0348743e9efca58848853e
node-v6.12.0-darwin-x64.tar.gz
-5e192ee166a1366eeb2f4a425c2eeb4689b25b7d201eebdd1bb97ece88c828a2
node-v6.12.0-darwin-x64.tar.xz
-626dcb9b0e378a1ea21af57d92046eff949869bcffb12277886fb046a187ff6c
node-v6.12.0-headers.tar.gz
-f3246a83d2fc55164e696825a56dc7958aa00af1c09ccd6a2e02520e7c2fff70
node-v6.12.0-headers.tar.xz
-64622078a1c61aff123de2c7d62c339a6a8e98d3d1ca58c0172e21539bc62387
node-v6.12.0-linux-arm64.tar.gz
-6dbd45ac540e95cee9cd16961b4180d6118db5cd2173267824a0136107bf3315
node-v6.12.0-linux-arm64.tar.xz
-2570a65e53902687e66be14c0a7f87415cdca8d05167e646ab847ed94f4f5fd7
node-v6.12.0-linux-armv6l.tar.gz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-11-29 10:54:48
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Nov 29 10:54:48 2017 rev:17 rq:546334 version:6.12.0
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-11-17
11:00:04.396570194 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-11-29
10:54:50.871887562 +0100
@@ -1,0 +2,12 @@
+Wed Nov 29 01:41:56 UTC 2017 - qantas94he...@gmail.com
+
+- Change BuildRequires from openssl-devel to libopenssl-1_0_0-devel
+ due to Tumbleweed/Leap 15 change to OpenSSL 1.1.0 as default
+
+---
+Thu Nov 16 13:16:25 UTC 2017 - adam.ma...@suse.de
+
+- Update nodejs.keyring based on current Release Team as found on
+ https://github.com/nodejs/node#release-team
+
+---
@@ -5,0 +18 @@
+
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.a6R1oo/_old 2017-11-29 10:54:51.875851138 +0100
+++ /var/tmp/diff_new_pack.a6R1oo/_new 2017-11-29 10:54:51.879850992 +0100
@@ -155,8 +155,12 @@
BuildRequires: zlib-devel
%if ! %{with intree_openssl}
+%if 0%{?suse_version} >= 1330
+BuildRequires: libopenssl-1_0_0-devel
+%else
BuildRequires: openssl-devel >= 1.0.2
%endif
+%endif
%if ! %{with intree_cares}
BuildRequires: pkgconfig(libcares) >= 1.10.0
++ 8334.diff ++
--- /var/tmp/diff_new_pack.a6R1oo/_old 2017-11-29 10:54:51.899850267 +0100
+++ /var/tmp/diff_new_pack.a6R1oo/_new 2017-11-29 10:54:51.899850267 +0100
@@ -1,3 +1,2 @@
Empty patch. Placeholder must exist as long as same patch
for older Node codestreams exist.
-
++ nodejs.keyring ++
Binary files /var/tmp/diff_new_pack.a6R1oo/_old and
/var/tmp/diff_new_pack.a6R1oo/_new differ
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-11-17 10:54:58
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Fri Nov 17 10:54:58 2017 rev:16 rq:542082 version:6.12.0
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-10-26
18:44:22.143993381 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-11-17
11:00:04.396570194 +0100
@@ -1,0 +2,29 @@
+Mon Nov 13 14:29:47 UTC 2017 - adam.ma...@suse.de
+
+- Fix permissions of node-gyp. This should be executable to allow
+ building of binary node modules.
+---
+Mon Nov 13 10:08:04 UTC 2017 - adam.ma...@suse.de
+
+- New upstream LTS release 6.12.0:
+ * assert: assert.fail() can now take one or two arguments
+ * crypto: add sign/verify support for RSASSA-PSS
+ * deps:
++ upgrade openssl sources to 1.0.2m
+ [OpenSSL Security Advisory (bsc#1066242, bsc#1056058)
+ CVE-2017-3735 CVE-2017-3736]
++ upgrade libuv to 1.15.0
+ * fs: Add support for fs.write/fs.writeSync(fd, buffer, cb) and
+fs.write/fs.writeSync(fd, buffer, offset, cb) as documented
+ * inspector: enable --inspect-brk
+ * process: add --redirect-warnings command line argument
+ * src:
++ allow CLI args in env with NODE_OPTIONS
++ --abort-on-uncaught-exception in NODE_OPTIONS
++ allow --tls-cipher-list in NODE_OPTIONS
++ use SafeGetenv() for NODE_REDIRECT_WARNINGS
+ * test: remove common.fail()
+- 0f3e69db.patch, icu59.patch: removed empty patches
+- nodejs-libpath.patch: refreshed
+
+---
@@ -14,5 +42,0 @@
-- Make sure npm program remains executable
-
-Fri Oct 13 11:04:51 UTC 2017 - adam.ma...@suse.de
-
@@ -20,0 +45,2 @@
+- Make sure npm program remains executable
+
Old:
0f3e69db.patch
icu59.patch
node-v6.11.5.tar.xz
New:
node-v6.12.0.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.mYC6Fn/_old 2017-11-17 11:00:06.964476211 +0100
+++ /var/tmp/diff_new_pack.mYC6Fn/_new 2017-11-17 11:00:06.964476211 +0100
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.11.5
+Version:6.12.0
Release:0
%define node_version_number 6
@@ -91,8 +91,6 @@
## UPSTREAM PATCHES HERE, if any
Patch1: 8334.diff
-Patch2: 0f3e69db.patch
-Patch3: icu59.patch
## Our patches
# PATCH-FIX-OPENSUSE -- set correct path for dtrace if it is built
@@ -243,12 +241,6 @@
%if %node_version_number < 6
%patch1 -p1
%endif
-%if %node_version_number < 6
-%patch2 -p1
-%endif
-%if %node_version_number < 6
-%patch3 -p1
-%endif
%patch101 -p1
%patch102 -p1
# Add check_output to configure script (not part of Python 2.6 in SLE11).
@@ -312,6 +304,9 @@
rm -f %{buildroot}%{_datadir}/doc/node/lldbinit
rm -f %{buildroot}%{_datadir}/doc/node/lldb_commands.py
+# remove .bak files, if any
+find %{buildroot} -name \*.bak -print -delete
+
# npm man page
install -D -m 644 deps/npm/man/man1/npm.1
%{buildroot}%{_mandir}/man1/npm%{node_version_number}.1
@@ -343,6 +338,7 @@
# fix permissions
find %{buildroot}%{_libdir}/node_modules -type f -exec chmod -x {} +
chmod 0755
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/bin/np*-cli.js
+chmod 0755
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/bin/node-gyp-bin/node-gyp
# browser.js is useless for npm cli
find %{buildroot}%{_libdir}/node_modules/npm%{node_version_number} -name
"browser.js" -delete
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.mYC6Fn/_old 2017-11-17 11:00:07.004474747 +0100
+++ /var/tmp/diff_new_pack.mYC6Fn/_new 2017-11-17 11:00:07.004474747 +0100
@@ -1,42 +1,42 @@
-907cc72126bfcfed2040ded546649ee1023d8839fc898447bf8435f8b204b654
node-v6.11.5-aix-ppc64.tar.gz
-fc0a3ba17e0be7ffe86f9941212dd00905524d6d48dd8cafb63da6adca20a4fc
node-v6.11.5-darwin-x64.tar.gz
-daedeac624d5a1c177254fa080de7f0ee5426fce57e7bcad554b354c81a69cbc
node-v6.11.5-darwin-x64.tar.xz
-9e5ab2412d1f2d0a0dc30592e2b2f707e20203ef3d2f7472f0b3ad5d5c8d5e83
node-v6.11.5-headers.tar.gz
-90c65a66f2538bade1b470d0bf9deaeef1652f39aadb0d5b2e1d2e218828462d
node-v6.11.5-headers.tar.xz
-b879b852c3588f3ce7d748273ede959306268e5b2ca199d76b4592c2fb4a0d43
node-v6.11.5-linux-arm64.tar.gz
-7f073097e0016aaa1abac8a4e554dd1e534339540be12fbd582670c45436ddca
node-v6.11.5-linux-arm64.tar.xz
-d25348044b63bc1546951a2b05f7c4f48d74bc3519fd911f9006e979c4511b0f
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-10-26 18:44:20
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Thu Oct 26 18:44:20 2017 rev:15 rq:536528 version:6.11.5
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-10-05
12:07:20.308380144 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-10-26
18:44:22.143993381 +0200
@@ -1,0 +2,20 @@
+Wed Oct 25 05:19:03 UTC 2017 - qantas94he...@gmail.com
+
+- New upstream LTS release 6.11.5:
+ * zlib: (CVE-2017-14919: only affects TW) In zlib v1.2.9, a
+change was made that causes an exception to be thrown when a
+raw deflate stream is initialized with windowBits set to 8.
+Node.js will now gracefully set windowBits to 9 (replicating
+the legacy behavior) to avoid a DOS vector.
+
+---
+Thu Oct 19 08:07:05 UTC 2017 - adam.ma...@suse.de
+
+- Make sure npm program remains executable
+
+---
+Fri Oct 13 11:04:51 UTC 2017 - adam.ma...@suse.de
+
+- Replace {{node_version_major}} with RPM define %node_version_number
+ for simpler spec file review.
+---
Old:
node-v6.11.4.tar.xz
New:
node-v6.11.5.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.ihXaZA/_old 2017-10-26 18:44:23.159945966 +0200
+++ /var/tmp/diff_new_pack.ihXaZA/_new 2017-10-26 18:44:23.159945966 +0200
@@ -26,9 +26,11 @@
###
Name: nodejs6
-Version:6.11.4
+Version:6.11.5
Release:0
+%define node_version_number 6
+
%if 0%{?sles_version} == 11
%define _libexecdir %{_exec_prefix}/lib
%endif
@@ -121,7 +123,7 @@
# version available.
%if 0%{?sles_version} == 11
# GCC 5 is only available in the SUSE:SLE-11:SP4:Update repository (SDK).
-%if 6 >= 8
+%if %node_version_number >= 8
BuildRequires: gcc5-c++
%define cc_exec gcc-5
%define cpp_exec g++-5
@@ -134,7 +136,7 @@
# SLE 12 and Leap 42
%if 0%{?suse_version} == 1315
-%if 6 >= 8
+%if %node_version_number >= 8
BuildRequires: gcc6-c++
%define cc_exec gcc-6
%define cpp_exec g++-6
@@ -238,13 +240,13 @@
%prep
echo "`grep node-v%{version}.tar.xz %{S:1} | head -n1 | cut -c1-64` %{S:0}" |
sha256sum -c
%setup -q -n node-v%{version}
-%if 6 < 6
+%if %node_version_number < 6
%patch1 -p1
%endif
-%if 6 < 6
+%if %node_version_number < 6
%patch2 -p1
%endif
-%if 6 < 6
+%if %node_version_number < 6
%patch3 -p1
%endif
%patch101 -p1
@@ -311,59 +313,42 @@
rm -f %{buildroot}%{_datadir}/doc/node/lldb_commands.py
# npm man page
-install -D -m 644 deps/npm/man/man1/npm.1 %{buildroot}%{_mandir}/man1/npm6.1
+install -D -m 644 deps/npm/man/man1/npm.1
%{buildroot}%{_mandir}/man1/npm%{node_version_number}.1
#node-gyp needs common.gypi too
install -D -m 644 common.gypi \
-
%{buildroot}%{_libdir}/node_modules/npm6/node_modules/node-gyp/common.gypi
+
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/node_modules/node-gyp/common.gypi
# %%{buildroot}%%{_datadir}/node/common.gypi
# install addon-rpm.gypi
install -D -m 644 addon-rpm.gypi \
-
%{buildroot}%{_libdir}/node_modules/npm6/node_modules/node-gyp/addon-rpm.gypi
+
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/node_modules/node-gyp/addon-rpm.gypi
# clean
# hidden files and directories
-find %{buildroot}%{_libdir}/node_modules/npm6 -name ".*" -print0 | xargs -r0
-0 rm -rf --
+find %{buildroot}%{_libdir}/node_modules/npm%{node_version_number} -name ".*"
-print0 | xargs -r0 -0 rm -rf --
# windows stuff
-find %{buildroot}%{_libdir}/node_modules/npm6 -name "*.bat" -delete
-find %{buildroot}%{_libdir}/node_modules/npm6 -name "*.cmd" -delete
+find %{buildroot}%{_libdir}/node_modules/npm%{node_version_number} -name
"*.bat" -delete
+find %{buildroot}%{_libdir}/node_modules/npm%{node_version_number} -name
"*.cmd" -delete
# build stuff
-find %{buildroot}%{_libdir}/node_modules/npm6 -name "Makefile" -delete
-rm -rf %{buildroot}%{_libdir}/node_modules/npm6/{test,scripts}
-find %{buildroot}%{_libdir}/node_modules/npm6/node_modules -name "*.sh" -delete
-rm -rf %{buildroot}%{_libdir}/node_modules/npm6/node_modules/node-gyp/src
+find %{buildroot}%{_libdir}/node_modules/npm%{node_version_number} -name
"Makefile" -delete
+rm -rf
%{buildroot}%{_libdir}/node_modules/npm%{node_version_number}/{test,scripts}
+find
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-10-05 12:03:42
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Thu Oct 5 12:03:42 2017 rev:14 rq:531397 version:6.11.4
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-09-12
19:56:30.985615495 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-10-05
12:07:20.308380144 +0200
@@ -1,0 +2,7 @@
+Wed Oct 4 16:38:26 UTC 2017 - adam.ma...@suse.de
+
+- New upstream LTS release 6.11.4:
+ * net: support passing undefined to listen() to match behavior in
+ v4.x and v8.x
+
+---
Old:
node-v6.11.3.tar.xz
New:
node-v6.11.4.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.hFmHzz/_old 2017-10-05 12:07:22.160119320 +0200
+++ /var/tmp/diff_new_pack.hFmHzz/_new 2017-10-05 12:07:22.164118756 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.11.3
+Version:6.11.4
Release:0
%if 0%{?sles_version} == 11
@@ -113,15 +113,36 @@
%endif
# Node.js 4/6/7 requires GCC 4.8.5+.
-# Upstream asks for GCC 4.9.4+ with 8.x, but that is more for
-# maintenance reasons and potential C++11 issues rather than
-# a failure to compile with GCC 4.8. (GH: nodejs/node, d13a65ad)
-# Only SLE 11 has a default compiler version older than necessary.
+#
+# For Node.js 8.x, upstream requires GCC 4.9.4+, as GCC 4.8 may have
+# slightly buggy C++11 support: https://github.com/nodejs/node/pull/13466
+#
+# If the default compiler is not supported, use the most recent compiler
+# version available.
%if 0%{?sles_version} == 11
+# GCC 5 is only available in the SUSE:SLE-11:SP4:Update repository (SDK).
+%if 6 >= 8
+BuildRequires: gcc5-c++
+%define cc_exec gcc-5
+%define cpp_exec g++-5
+%else
BuildRequires: gcc48-c++
%define cc_exec gcc-4.8
%define cpp_exec g++-4.8
-%else
+%endif # node >= 8
+%endif # sles == 11
+
+# SLE 12 and Leap 42
+%if 0%{?suse_version} == 1315
+%if 6 >= 8
+BuildRequires: gcc6-c++
+%define cc_exec gcc-6
+%define cpp_exec g++-6
+%endif
+%endif
+
+# No special version defined, use default.
+%if ! 0%{?cc_exec:1}
BuildRequires: gcc-c++
%endif
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.hFmHzz/_old 2017-10-05 12:07:22.204113123 +0200
+++ /var/tmp/diff_new_pack.hFmHzz/_new 2017-10-05 12:07:22.208112560 +0200
@@ -1,42 +1,42 @@
-7f344d29a6feb0fd77529dc30ce2badd881d8fa382e6bbee97dee45a31b1e322
node-v6.11.3-aix-ppc64.tar.gz
-be80751e600b37f2228170fe5eeb04d6f0febb6076f586310685ea2a34e558fb
node-v6.11.3-darwin-x64.tar.gz
-c86f6508b4e9ff856d566e1d845f3822a3375936faddd8089dc70dfad1b0656b
node-v6.11.3-darwin-x64.tar.xz
-a1deca4c444295bd4e477849104d20c15d0f30bda4387f3fab23b543b1125410
node-v6.11.3-headers.tar.gz
-a6c5a6ce2c0693a7fa8cc1457f68c3214b8bd7dd03f6fdc41027ea1247f2549d
node-v6.11.3-headers.tar.xz
-1a7712fa64989809a6949b08d449af00f93116ccc44e10789ea1615df806ca96
node-v6.11.3-linux-arm64.tar.gz
-9bbb2d3a7b1530885a93324421031cfc4409f58b61c0963e779cb4ef0573885c
node-v6.11.3-linux-arm64.tar.xz
-4e13c00a1a94ade809b7478db98f7664a80b64bd8256eae9bd15b8ca39343ad5
node-v6.11.3-linux-armv6l.tar.gz
-8d1b8d80b21b27ceb82255a1563356d4ce5a3d0213985be43285f3cfd76bed78
node-v6.11.3-linux-armv6l.tar.xz
-7588ee46820af77a6ee286bd51799f403810dd20a688cece227e241a37ec863c
node-v6.11.3-linux-armv7l.tar.gz
-31ddf7b326ca9f02bcd9bafc401889c39e651c854262a3ffdbbfdc1fcd594728
node-v6.11.3-linux-armv7l.tar.xz
-ef6b281b37412f239a0b7ba0b081e5ce49e875e79de6af62e4afd98dc3db9ffd
node-v6.11.3-linux-ppc64le.tar.gz
-e0a38534de88323b630df29dd4731f6701b6fee66382f1d1ef80ec757adde9d9
node-v6.11.3-linux-ppc64le.tar.xz
-b0800910c26cd7804748925ff61d20d8ec7d26be8b3f7a41b0c6e1499cb2212b
node-v6.11.3-linux-ppc64.tar.gz
-4b420d632977dae87baf6f71d53ca463966bcd99f7dcc443d736517d0f52c5c0
node-v6.11.3-linux-ppc64.tar.xz
-95ac7ca0842ff3ec5fd6e423adf924d69442a6dac2f718a225432d1c99cb18c3
node-v6.11.3-linux-s390x.tar.gz
-75776ce338c1ee66a51b0317d9493c772423e689a9d22bc717c311d3b675220a
node-v6.11.3-linux-s390x.tar.xz
-610705d45eb2846a9e10690678a078d9159e5f941487aca20c6f53b33104358c
node-v6.11.3-linux-x64.tar.gz
-c8e1ad4b731e15e1318465a616f2283055e145e0b17a3a04d5591ec264cd30d3
node-v6.11.3-linux-x64.tar.xz
-9c82c884cbe971f5e69303077aacedd76cc76ff684d5c4ab3daa7e8881a15c95
node-v6.11.3-linux-x86.tar.gz
-9afabd3b547bc96345898242cf81553738bf4e4f63a7e40de852a46ab109e390
node-v6.11.3-linux-x86.tar.xz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-09-12 19:56:25
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Tue Sep 12 19:56:25 2017 rev:13 rq:523470 version:6.11.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-08-24
18:54:14.797810357 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-09-12
19:56:30.985615495 +0200
@@ -1,0 +2,10 @@
+Mon Sep 11 13:58:26 UTC 2017 - qantas94he...@gmail.com
+
+- New upstream LTS release 6.11.3:
+ * deps: Snapshots are turned back on!!! (#14385)
+ * path: win32 volume-relative paths are working again! (#14440)
+ * tools: v6.x can now build with ICU 59 (#12078)
+- Drop icu59.patch: merged upstream.
+- Refresh versioned.patch
+
+---
@@ -15 +24,0 @@
-- Modify versioned.patch: use correct "node6" directory
Old:
node-v6.11.2.tar.xz
New:
node-v6.11.3.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.ojAJCd/_old 2017-09-12 19:56:31.993473782 +0200
+++ /var/tmp/diff_new_pack.ojAJCd/_new 2017-09-12 19:56:31.997473220 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.11.2
+Version:6.11.3
Release:0
%if 0%{?sles_version} == 11
@@ -112,23 +112,18 @@
BuildRequires: binutils-gold
%endif
-%if 6 >= 8
-%if 0%{?sles_version} == 11
-BuildRequires: gcc5-c++
-%define cc_exec gcc-5
-%define cpp_exec g++-5
-%else
-BuildRequires: gcc6-c++
-%define cc_exec gcc-6
-%define cpp_exec g++-6
-%endif # node8+ GCC requirements
-%else # older than node8
+# Node.js 4/6/7 requires GCC 4.8.5+.
+# Upstream asks for GCC 4.9.4+ with 8.x, but that is more for
+# maintenance reasons and potential C++11 issues rather than
+# a failure to compile with GCC 4.8. (GH: nodejs/node, d13a65ad)
+# Only SLE 11 has a default compiler version older than necessary.
%if 0%{?sles_version} == 11
BuildRequires: gcc48-c++
+%define cc_exec gcc-4.8
+%define cpp_exec g++-4.8
%else
BuildRequires: gcc-c++
%endif
-%endif # node7,6,5
BuildRequires: curl
BuildRequires: fdupes
@@ -228,7 +223,7 @@
%if 6 < 6
%patch2 -p1
%endif
-%if 6 < 8
+%if 6 < 6
%patch3 -p1
%endif
%patch101 -p1
@@ -262,10 +257,6 @@
# script, so we'll do it thus:
export CFLAGS="%{optflags}"
export CXXFLAGS="%{optflags}"
-# It seems that GCC 4.8 is needed to compile on SLE 11 SP4.
-%if 0%{?sles_version} == 11
-export CXX="g++-4.8"
-%endif
%if 0%{?cc_exec:1}
export CC=%{?cc_exec}
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.ojAJCd/_old 2017-09-12 19:56:32.073462535 +0200
+++ /var/tmp/diff_new_pack.ojAJCd/_new 2017-09-12 19:56:32.073462535 +0200
@@ -1,42 +1,42 @@
-79ead2addfa70ea471406f48917530822e9214acd2351d1f02401b3c4dd7a34a
node-v6.11.2-aix-ppc64.tar.gz
-810669aa5f812d02679c121c123a2b200e55abaa5a27aacf00b571f3cf3727d1
node-v6.11.2-darwin-x64.tar.gz
-a2e81b5f60bd8a6de90e37c70d024fe61b1caa54dbe2f076a10abe673f490073
node-v6.11.2-darwin-x64.tar.xz
-781273b2ae4dd489a04b16c58a4a10d30a5697e7e8bff90832a07208e3d31237
node-v6.11.2-headers.tar.gz
-86d677881976c49cb80c6449564b027b3fe577c9f63c6f5111c648018f2aa6cf
node-v6.11.2-headers.tar.xz
-914465dd907d2d785a6cb2e166ada7ce1e070f212267ce88ba7a326fe549a076
node-v6.11.2-linux-arm64.tar.gz
-c94e2cf7a68c34b2c93af2388b57f71e730a0736cec80b37ad8700210835f7a4
node-v6.11.2-linux-arm64.tar.xz
-bc44d3110f9c810a3018abd23627ddd1acfcbb83e8916647ee1435a4e7aa4fa2
node-v6.11.2-linux-armv6l.tar.gz
-67e559617317aa85f0dfe3d8b95bc1461946f9835cebea4c1486807a87ef7b80
node-v6.11.2-linux-armv6l.tar.xz
-0e758f5a87eb64bfb623d431cc31a50d1800158d83ab1a5d2f4c6b0d4140e850
node-v6.11.2-linux-armv7l.tar.gz
-bc5d8f54c68ef1b7596dac4c793a30c44da747a1c41c99edcdbfb3f17be465ff
node-v6.11.2-linux-armv7l.tar.xz
-095d0411667b00518f2ff0ea5eb17e01bfe17fe58b8eb8648e0be87bb89d8fb9
node-v6.11.2-linux-ppc64le.tar.gz
-166ac9725a1e66cb79a21c42845b3c2ab55c7980fe5e21c3a95d5abce8f28a6c
node-v6.11.2-linux-ppc64le.tar.xz
-e2a6501f8af6fcf8446d61084baf06a00c8ae728a012aef6d31fe9e16a39a8e2
node-v6.11.2-linux-ppc64.tar.gz
-c25682fdb0749724659763a04dff1abe3182379cc2c05584bf7190497036e097
node-v6.11.2-linux-ppc64.tar.xz
-a6a5a6cdcc03fc45467c8bda99b0932776495065dd8b096b680ba17ec0dd478d
node-v6.11.2-linux-s390x.tar.gz
-8e566c2345618ec1acd982a7743968038ee0db16303e0f2af77bf8f2f7bc16eb
node-v6.11.2-linux-s390x.tar.xz
-1ca74833ff79e6a3a713a88bba8e7f5f5cda5d4008a6ffeb2293a1bf98f83e04
node-v6.11.2-linux-x64.tar.gz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-08-24 18:54:06
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Thu Aug 24 18:54:06 2017 rev:12 rq:517635 version:6.11.2
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-08-13
14:57:17.816730660 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-08-24
18:54:14.797810357 +0200
@@ -1,0 +2,16 @@
+Thu Aug 17 08:57:20 UTC 2017 - qantas94he...@gmail.com
+
+- New upstream LTS release 6.11.2
+ * configure: add mips64el to valid_arch (#13620)
+ * crypto: updated root certificates based on NSS 3.30
+(#13279, #12402)
+ * deps: upgrade OpenSSL to version 1.0.2.l (#12913)
+ * http:
++ parse errors are now reported when NODE_DEBUG=http (#13206)
++ Agent constructor can now be invoked without new (#12927)
+ * zlib: node will now throw an Error when zlib rejects the value
+of windowBits, instead of crashing (#13098)
+- Drop 0f3e69db.patch: fixed upstream
+- Modify versioned.patch: use correct "node6" directory
+
+---
Old:
node-v6.11.1.tar.xz
New:
node-v6.11.2.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.CbAD9s/_old 2017-08-24 18:54:17.613413903 +0200
+++ /var/tmp/diff_new_pack.CbAD9s/_new 2017-08-24 18:54:17.621412776 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.11.1
+Version:6.11.2
Release:0
%if 0%{?sles_version} == 11
@@ -225,7 +225,7 @@
%if 6 < 6
%patch1 -p1
%endif
-%if 6 < 7
+%if 6 < 6
%patch2 -p1
%endif
%if 6 < 8
++ 0f3e69db.patch ++
--- /var/tmp/diff_new_pack.CbAD9s/_old 2017-08-24 18:54:17.713399824 +0200
+++ /var/tmp/diff_new_pack.CbAD9s/_new 2017-08-24 18:54:17.717399261 +0200
@@ -1,90 +1,2 @@
-commit 0f3e69db41c2b6a1863f2454b028f3b3b28a9613
-Author: Zuzana Svetlikova
-Date: Wed Apr 26 18:04:40 2017 +0200
-
-v8: fix gcc 7 build errors
-
-Porting https://github.com/nodejs/node/pull/12392 to master
-
-Ref: https://github.com/nodejs/node/pull/12392
-Fixes: https://github.com/nodejs/node/issues/10388
-PR-URL: https://github.com/nodejs/node/pull/12676
-Reviewed-By: Ben Noordhuis
-Reviewed-By: Anna Henningsen
-
-Index: node-v6.10.3/deps/v8/src/objects-inl.h
-===
node-v6.10.3.orig/deps/v8/src/objects-inl.h
-+++ node-v6.10.3/deps/v8/src/objects-inl.h
-@@ -36,6 +36,27 @@
- namespace v8 {
- namespace internal {
-
-+template
-+uint32_t HashTable::Hash(Key key) {
-+ if (Shape::UsesSeed) {
-+return Shape::SeededHash(key, GetHeap()->HashSeed());
-+ } else {
-+return Shape::Hash(key);
-+ }
-+}
-+
-+
-+template
-+uint32_t HashTable::HashForObject(Key key,
-+ Object* object) {
-+ if (Shape::UsesSeed) {
-+return Shape::SeededHashForObject(key, GetHeap()->HashSeed(), object);
-+ } else {
-+return Shape::HashForObject(key, object);
-+ }
-+}
-+
-+
- PropertyDetails::PropertyDetails(Smi* smi) {
- value_ = smi->value();
- }
-Index: node-v6.10.3/deps/v8/src/objects.h
-===
node-v6.10.3.orig/deps/v8/src/objects.h
-+++ node-v6.10.3/deps/v8/src/objects.h
-@@ -3261,22 +3261,10 @@ class HashTableBase : public FixedArray
- template
- class HashTable : public HashTableBase {
- public:
-- // Wrapper methods
-- inline uint32_t Hash(Key key) {
--if (Shape::UsesSeed) {
-- return Shape::SeededHash(key, GetHeap()->HashSeed());
--} else {
-- return Shape::Hash(key);
--}
-- }
--
-- inline uint32_t HashForObject(Key key, Object* object) {
--if (Shape::UsesSeed) {
-- return Shape::SeededHashForObject(key, GetHeap()->HashSeed(), object);
--} else {
-- return Shape::HashForObject(key, object);
--}
-- }
-+ // Wrapper methods. Defined in src/objects-inl.h
-+ // to break a cycle with src/heap/heap.h.
-+ inline uint32_t Hash(Key key);
-+ inline uint32_t HashForObject(Key key, Object* object);
-
- // Returns a new HashTable object.
- MUST_USE_RESULT static Handle New(
-Index: node-v6.10.3/deps/v8/src/objects-body-descriptors.h
-===
node-v6.10.3.orig/deps/v8/src/objects-body-descriptors.h
-+++ node-v6.10.3/deps/v8/src/objects-body-descriptors.h
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-08-13 14:57:12
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Sun Aug 13 14:57:12 2017 rev:11 rq:515764 version:6.11.1
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-07-19
12:21:49.633432091 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-08-13
14:57:17.816730660 +0200
@@ -1,0 +2,6 @@
+Wed Aug 2 15:16:57 UTC 2017 - adam.ma...@suse.de
+
+- Fix update-alternative handling in %postun - don't remove
+ links on upgrades.
+
+---
@@ -9 +15 @@
-robust solution is found. (bnc#1048299)
+robust solution is found. (bnc#1048299, CVE-2017-11499)
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.QiA2dX/_old 2017-08-13 14:57:19.144544324 +0200
+++ /var/tmp/diff_new_pack.QiA2dX/_new 2017-08-13 14:57:19.192537589 +0200
@@ -112,11 +112,23 @@
BuildRequires: binutils-gold
%endif
+%if 6 >= 8
+%if 0%{?sles_version} == 11
+BuildRequires: gcc5-c++
+%define cc_exec gcc-5
+%define cpp_exec g++-5
+%else
+BuildRequires: gcc6-c++
+%define cc_exec gcc-6
+%define cpp_exec g++-6
+%endif # node8+ GCC requirements
+%else # older than node8
%if 0%{?sles_version} == 11
BuildRequires: gcc48-c++
%else
BuildRequires: gcc-c++
%endif
+%endif # node7,6,5
BuildRequires: curl
BuildRequires: fdupes
@@ -255,6 +267,11 @@
export CXX="g++-4.8"
%endif
+%if 0%{?cc_exec:1}
+export CC=%{?cc_exec}
+export CXX=%{?cpp_exec}
+%endif
+
./configure \
--prefix=%{_prefix} \
%if ! %{with intree_openssl}
@@ -346,6 +363,12 @@
ln -s %{_sysconfdir}/alternatives/node.1%{ext_man}
%{buildroot}%{_mandir}/man1/node.1%{ext_man}
ln -s %{_sysconfdir}/alternatives/npm-default
%{buildroot}%{_bindir}/npm-default
ln -s %{_sysconfdir}/alternatives/npm.1%{ext_man}
%{buildroot}%{_mandir}/man1/npm.1%{ext_man}
+%if 6 >= 8
+ln -s -f npx-default %{buildroot}%{_sysconfdir}/alternatives/npx-default
+ln -s -f npx.1%{ext_man}
%{buildroot}%{_sysconfdir}/alternatives/npx.1%{ext_man}
+ln -s %{_sysconfdir}/alternatives/npx-default
%{buildroot}%{_bindir}/npx-default
+ln -s %{_sysconfdir}/alternatives/npx.1%{ext_man}
%{buildroot}%{_mandir}/man1/npx.1%{ext_man}
+%endif
# Check that Node.js isn't completely broken.
%check
@@ -374,6 +397,14 @@
%ghost %{_sysconfdir}/alternatives/npm-default
%ghost %{_sysconfdir}/alternatives/npm.1%{ext_man}
+%if 6 >= 8
+%{_bindir}/npx6
+%ghost %{_bindir}/npx-default
+%ghost %{_mandir}/man1/npx.1%{ext_man}
+%ghost %{_sysconfdir}/alternatives/npx-default
+%ghost %{_sysconfdir}/alternatives/npx.1%{ext_man}
+%endif
+
%files devel
%defattr(-, root, root)
%{_includedir}/node6
@@ -391,14 +422,28 @@
--slave %{_mandir}/man1/node.1%{ext_man} node.1%{ext_man}
%{_mandir}/man1/node6.1%{ext_man}
%postun
-update-alternatives --remove node-default %{_bindir}/node6
+if [ ! -f %{_bindir}/node6 ] ; then
+update-alternatives --remove node-default %{_bindir}/node6
+fi
%post -n npm6
update-alternatives \
--install %{_bindir}/npm-default npm-default %{_bindir}/npm6 6 \
--slave %{_mandir}/man1/npm.1%{ext_man} npm.1%{ext_man}
%{_mandir}/man1/npm6.1%{ext_man}
+%if 6 >= 8
+update-alternatives \
+--install %{_bindir}/npx-default npx-default %{_bindir}/npx6 6 \
+--slave %{_mandir}/man1/npx.1%{ext_man} npx.1%{ext_man}
%{_mandir}/man1/npx6.1%{ext_man}
+%endif
%postun -n npm6
-update-alternatives --remove npm-default %{_bindir}/npm6
+if [ ! -f %{_bindir}/npm6 ] ; then
+update-alternatives --remove npm-default %{_bindir}/npm6
+fi
+%if 6 >= 8
+if [ ! -f %{_bindir}/npx6 ] ; then
+update-alternatives --remove npx-default %{_bindir}/npx6
+fi
+%endif
%changelog
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-07-19 11:20:53
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Jul 19 11:20:53 2017 rev:10 rq:509753 version:6.11.1
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-06-21
13:57:54.305331911 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-07-19
12:21:49.633432091 +0200
@@ -1,0 +2,35 @@
+Wed Jul 12 08:24:32 UTC 2017 - adam.ma...@suse.de
+
+- New upstream LTS release 6.11.1
+ * v8: disable V8 snapshots. The hashseed embedded in the snapshot
+is currently the same for all runs of the binary. This opens
+node up to collision attacks which could result in a Denial
+of Service. We have temporarily disabled snapshots until a more
+robust solution is found. (bnc#1048299)
+ * The c-ares function ares_parse_naptr_reply(), which is used for
+parsing NAPTR responses, could be triggered to read memory
+outside of the given input buffer if the passed in DNS response
+packet was crafted in a particular way.
+(CVE-2017-1000381, bnc#1044946)
+
+---
+Fri Jul 7 14:05:05 UTC 2017 - adam.ma...@suse.de
+
+- Depend on nodejs-common that is then used to pick correctly
+ versioned node or npm binary. This is required since 3rd party
+ modules use `/usr/bin/env node` which breaks if multiple versions
+ of NodeJS are installed at the same time and non-default version
+ is used (for example, to compile a native module)
+
+---
+Thu Jul 6 12:08:26 UTC 2017 - adam.ma...@suse.de
+
+- npm_search_paths.patch: Since concurrent installations are now
+ possible, node manual pages are moved once again back under npm
+ searcheable locations only.
+- versioned.patch: All files are now under versioned directoies
+ and names. node and npm symlinks are now managed by
+ update-alternatives
+- node-gyp-addon-gypi.patch: Reference versioned directories only
+
+---
Old:
node-v6.11.0.tar.xz
New:
node-v6.11.1.tar.xz
versioned.patch
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.6C11Cm/_old 2017-07-19 12:21:50.849260524 +0200
+++ /var/tmp/diff_new_pack.6C11Cm/_new 2017-07-19 12:21:50.853259959 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.11.0
+Version:6.11.1
Release:0
%if 0%{?sles_version} == 11
@@ -105,6 +105,9 @@
# instead of /usr
Patch104: npm_search_paths.patch
+# Use versioned binaries and paths
+Patch200: versioned.patch
+
%if %{with binutils_gold}
BuildRequires: binutils-gold
%endif
@@ -135,6 +138,8 @@
BuildRequires: pkgconfig(icu-i18n) >= 52
%endif
+Requires(post): update-alternatives
+Requires(postun): update-alternatives
Recommends: npm(npm) = 3.10.10
#we need ABI virtual provides where SONAMEs aren't enough/not present so deps
@@ -145,9 +150,12 @@
#this corresponds to the "engine" requirement in package.json
Provides: nodejs(engine) = %{version}
-# Only one nodejs installed at a time
+# Multiple versions of NodeJS can be installed at a time, but
+# to properly allow correct version execution from 3rd party
+# npm software, `env node` requires further help than only
+# update-alternatives can provide.
Provides: nodejs = %{version}
-Conflicts: otherproviders(nodejs)
+Requires: nodejs-common
# For SLE11, to be able to use the certificate store we need to have properly
# symlinked certificates. The compatability symlinks are provided by the
@@ -171,7 +179,6 @@
Group: Development/Languages/NodeJS
Provides: nodejs-devel = %{version}
Requires: %{name} = %{version}
-Conflicts: otherproviders(nodejs-devel)
%description devel
This package provides development headers for Node.js.
@@ -181,10 +188,9 @@
Group: Development/Languages/NodeJS
Requires: %{name}-devel = %{version}
Provides: nodejs-npm = %{version}
-Obsoletes: nodejs-npm < 5.3.1
+Obsoletes: nodejs-npm < 4.0.0
Provides: npm = %{version}
Provides: npm(npm) = 3.10.10
-Conflicts: otherproviders(npm)
%description -n npm6
A package manager for Node.js that allows developers to install and
@@ -220,6 +226,8 @@
%patch103 -p1
%endif
%patch104 -p1
+%patch200 -p1
+
# Make sure nothing gets included from bundled deps:
# We only delete the source and header files, because
# the
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-06-21 13:57:43
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Wed Jun 21 13:57:43 2017 rev:9 rq:505082 version:6.11.0
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-06-01
16:34:17.513939243 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-06-21
13:57:54.305331911 +0200
@@ -1,0 +2,31 @@
+Tue Jun 13 09:13:23 UTC 2017 - adam.ma...@suse.de
+
+- New upstream LTS release 6.11.0
+ * added support for building mips64el
+ * cluster:
++ disconnect() now returns a reference to the disconnected
+ worker.
+ * crypto:
++ ability to select cert store at runtime
++ Use system CAs instead of using bundled ones
+ (obsoletes 8334.diff)
++ The Decipher methods setAuthTag() and setAAD now return this
++ adding support for OPENSSL_CONF again
++ make LazyTransform compabile with Streams1
+ * deps:
++ upgrade libuv to 1.11.0
+ * dns:
++ Implemented {ttl: true} for resolve4() and resolve6().
+ * process:
++ add NODE_NO_WARNINGS environment variable
+ * readline:
++ add option to stop duplicates in history
+ * src:
++ support "--" after "-e" as end-of-options
+ * tls:
++ new tls.TLSSocket() supports sec ctx options
++ Allow obvious key/passphrase combinations.
+- Fix typo in node-gyp-addon-gypi.patch patch
+- Refresh icu59.patch
+
+---
Old:
node-v6.10.3.tar.xz
New:
node-v6.11.0.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.Uqx2D8/_old 2017-06-21 13:57:55.181208361 +0200
+++ /var/tmp/diff_new_pack.Uqx2D8/_new 2017-06-21 13:57:55.193206669 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.10.3
+Version:6.11.0
Release:0
%if 0%{?sles_version} == 11
@@ -204,8 +204,10 @@
%prep
echo "`grep node-v%{version}.tar.xz %{S:1} | head -n1 | cut -c1-64` %{S:0}" |
sha256sum -c
%setup -q -n node-v%{version}
-%if 6 < 7
+%if 6 < 6
%patch1 -p1
+%endif
+%if 6 < 7
%patch2 -p1
%endif
%if 6 < 8
@@ -298,7 +300,7 @@
find %{buildroot}%{_libdir}/node_modules/npm -name "Makefile" -delete
rm -rf %{buildroot}%{_libdir}/node_modules/npm/{test,scripts}
find %{buildroot}%{_libdir}/node_modules/npm/node_modules -name "*.sh" -delete
-find %{buildroot}%{_libdir}/node_modules/npm -name "src" -print0 | xargs -0 rm
-rf --
+rm -rf %{buildroot}%{_libdir}/node_modules/npm/node_modules/node-gyp/src
# remove examples/tests/benchmark stuff
find %{buildroot}%{_libdir}/node_modules/npm/node_modules -name "example*"
-print0 | xargs -0 rm -rf --
find %{buildroot}%{_libdir}/node_modules/npm/node_modules -name "test*"
-print0 | xargs -0 rm -rf --
++ 8334.diff ++
--- /var/tmp/diff_new_pack.Uqx2D8/_old 2017-06-21 13:57:55.233201027 +0200
+++ /var/tmp/diff_new_pack.Uqx2D8/_new 2017-06-21 13:57:55.233201027 +0200
@@ -1,48 +1,3 @@
-Source: https://github.com/nodejs/node/pull/8334
-Author: Adam Majer
-Summary: add option to use system CA store
+Empty patch. Placeholder must exist as long as same patch
+for older Node codestreams exist.
-Index: node-v6.10.0/configure
-===
node-v6.10.0.orig/configure
-+++ node-v6.10.0/configure
-@@ -139,6 +139,11 @@ parser.add_option("--openssl-no-asm",
- dest="openssl_no_asm",
- help="Do not build optimized assembly for OpenSSL")
-
-+parser.add_option('--openssl-use-def-ca-store',
-+action='store_true',
-+dest='use_openssl_ca_store',
-+help='Use OpenSSL supplied CA store instead of compiled-in Mozilla CA
copy.')
-+
- parser.add_option('--openssl-fips',
- action='store',
- dest='openssl_fips',
-@@ -939,6 +944,8 @@ def configure_openssl(o):
- o['variables']['node_use_openssl'] = b(not options.without_ssl)
- o['variables']['node_shared_openssl'] = b(options.shared_openssl)
- o['variables']['openssl_no_asm'] = 1 if options.openssl_no_asm else 0
-+ if options.use_openssl_ca_store:
-+o['defines'] += ['NODE_OPENSSL_CERT_STORE']
- if options.openssl_fips:
- o['variables']['openssl_fips'] = options.openssl_fips
- fips_dir = os.path.join(root_dir, 'deps', 'openssl', 'fips')
-Index: node-v6.10.0/src/node_crypto.cc
-===
node-v6.10.0.orig/src/node_crypto.cc
-+++ node-v6.10.0/src/node_crypto.cc
-@@ -709,10 +709,14 @@ static X509_STORE* NewRootCertStore() {
- }
-
-
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-06-01 16:34:16
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Thu Jun 1 16:34:16 2017 rev:8 rq:500160 version:6.10.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-05-27
13:16:59.791113407 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-06-01
16:34:17.513939243 +0200
@@ -1,0 +2,6 @@
+Tue May 30 12:45:42 UTC 2017 - adam.ma...@suse.de
+
+- 0f3e69db.patch, icu59.patch: backported GCC 7 compilation fixes
+ for v8 backported and add missing ICU59 includes (bnc#1041282)
+
+---
New:
0f3e69db.patch
icu59.patch
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.Ma16yv/_old 2017-06-01 16:34:19.645638539 +0200
+++ /var/tmp/diff_new_pack.Ma16yv/_new 2017-06-01 16:34:19.649637974 +0200
@@ -89,6 +89,8 @@
## UPSTREAM PATCHES HERE, if any
Patch1: 8334.diff
+Patch2: 0f3e69db.patch
+Patch3: icu59.patch
## Our patches
# PATCH-FIX-OPENSUSE -- set correct path for dtrace if it is built
@@ -202,8 +204,12 @@
%prep
echo "`grep node-v%{version}.tar.xz %{S:1} | head -n1 | cut -c1-64` %{S:0}" |
sha256sum -c
%setup -q -n node-v%{version}
-%if 6 != 7
+%if 6 < 7
%patch1 -p1
+%patch2 -p1
+%endif
+%if 6 < 8
+%patch3 -p1
%endif
%patch101 -p1
%patch102 -p1
@@ -346,7 +352,7 @@
%{_bindir}/npm
%{_libdir}/node_modules/npm
%{_mandir}/man*/*npm*%{ext_man}
-%{_mandir}/man5/package.json.5%{ext_man}
+%{_mandir}/man5/package*.json.5%{ext_man}
%{_mandir}/man7/semver.7%{ext_man}
%files devel
++ 0f3e69db.patch ++
commit 0f3e69db41c2b6a1863f2454b028f3b3b28a9613
Author: Zuzana Svetlikova
Date: Wed Apr 26 18:04:40 2017 +0200
v8: fix gcc 7 build errors
Porting https://github.com/nodejs/node/pull/12392 to master
Ref: https://github.com/nodejs/node/pull/12392
Fixes: https://github.com/nodejs/node/issues/10388
PR-URL: https://github.com/nodejs/node/pull/12676
Reviewed-By: Ben Noordhuis
Reviewed-By: Anna Henningsen
Index: node-v6.10.3/deps/v8/src/objects-inl.h
===
--- node-v6.10.3.orig/deps/v8/src/objects-inl.h
+++ node-v6.10.3/deps/v8/src/objects-inl.h
@@ -36,6 +36,27 @@
namespace v8 {
namespace internal {
+template
+uint32_t HashTable::Hash(Key key) {
+ if (Shape::UsesSeed) {
+return Shape::SeededHash(key, GetHeap()->HashSeed());
+ } else {
+return Shape::Hash(key);
+ }
+}
+
+
+template
+uint32_t HashTable::HashForObject(Key key,
+ Object* object) {
+ if (Shape::UsesSeed) {
+return Shape::SeededHashForObject(key, GetHeap()->HashSeed(), object);
+ } else {
+return Shape::HashForObject(key, object);
+ }
+}
+
+
PropertyDetails::PropertyDetails(Smi* smi) {
value_ = smi->value();
}
Index: node-v6.10.3/deps/v8/src/objects.h
===
--- node-v6.10.3.orig/deps/v8/src/objects.h
+++ node-v6.10.3/deps/v8/src/objects.h
@@ -3261,22 +3261,10 @@ class HashTableBase : public FixedArray
template
class HashTable : public HashTableBase {
public:
- // Wrapper methods
- inline uint32_t Hash(Key key) {
-if (Shape::UsesSeed) {
- return Shape::SeededHash(key, GetHeap()->HashSeed());
-} else {
- return Shape::Hash(key);
-}
- }
-
- inline uint32_t HashForObject(Key key, Object* object) {
-if (Shape::UsesSeed) {
- return Shape::SeededHashForObject(key, GetHeap()->HashSeed(), object);
-} else {
- return Shape::HashForObject(key, object);
-}
- }
+ // Wrapper methods. Defined in src/objects-inl.h
+ // to break a cycle with src/heap/heap.h.
+ inline uint32_t Hash(Key key);
+ inline uint32_t HashForObject(Key key, Object* object);
// Returns a new HashTable object.
MUST_USE_RESULT static Handle New(
Index: node-v6.10.3/deps/v8/src/objects-body-descriptors.h
===
--- node-v6.10.3.orig/deps/v8/src/objects-body-descriptors.h
+++ node-v6.10.3/deps/v8/src/objects-body-descriptors.h
@@ -99,7 +99,7 @@ class FixedBodyDescriptor final : public
template
static inline void IterateBody(HeapObject* obj, int object_size) {
-IterateBody(obj);
+IterateBody(obj);
}
};
++ icu59.patch ++
Index: node-v6.10.3/deps/v8/src/runtime/runtime-i18n.cc
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-05-27 13:16:49
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Sat May 27 13:16:49 2017 rev:7 rq:497914 version:6.10.3
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-04-11
09:46:25.486388073 +0200
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-05-27
13:16:59.791113407 +0200
@@ -1,0 +2,15 @@
+Tue May 23 09:52:00 UTC 2017 - adam.ma...@suse.de
+
+- New upstream LTS release 6.10.3
+ * b8:
++ Trigger OOM crash on memory allcation errors
++ Don't treat catch scopes as possibly-shadowing for sloppy eval
+ * lib: fix event race condition with -e
+ * src: fix base64 decoding in rare edgecase
+ * tls:
++ fix segfault on destroy after partial read
++ keep track of stream that is closed
++ fix macro to check NPN feature
+- nodejs-libpath.patch: updated
+
+---
Old:
node-v6.10.2.tar.xz
New:
node-v6.10.3.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.jZ7OMv/_old 2017-05-27 13:17:01.102927949 +0200
+++ /var/tmp/diff_new_pack.jZ7OMv/_new 2017-05-27 13:17:01.102927949 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.10.2
+Version:6.10.3
Release:0
%if 0%{?sles_version} == 11
@@ -262,6 +262,8 @@
%install
make install DESTDIR=%{buildroot} %{?_smp_mflags}
rm %{buildroot}%{_datadir}/doc/node/gdbinit
+rm -f %{buildroot}%{_datadir}/doc/node/lldbinit
+rm -f %{buildroot}%{_datadir}/doc/node/lldb_commands.py
# npm man page
rm -rf %{buildroot}%{_libdir}/node_modules/npm/man
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.jZ7OMv/_old 2017-05-27 13:17:01.138922860 +0200
+++ /var/tmp/diff_new_pack.jZ7OMv/_new 2017-05-27 13:17:01.138922860 +0200
@@ -1,42 +1,42 @@
-625947ad107156105f0b1ee05cde078f0175793ea59022e831bab85b7c19d6be
node-v6.10.2-aix-ppc64.tar.gz
-63383d322612777b38cdb81b66a7f4748a9c803d60ab710a79375204cb033129
node-v6.10.2-darwin-x64.tar.gz
-360b887361b2597613f18968e3fc0e920079a363d0535fc4e40532e3426fc6eb
node-v6.10.2-darwin-x64.tar.xz
-5b446d065c86e6567da3ee84f7930b70a0edf5d0ddc90bf1e246320ac72eea08
node-v6.10.2-headers.tar.gz
-716d403769bd218ed33fd1ed0f55054a1544adc9b3f67c6b5a8fbd61327c1909
node-v6.10.2-headers.tar.xz
-97de0340b6dbf38e3d995df880a94c58d403c3054676d8fc9192b83a3735f0b8
node-v6.10.2-linux-arm64.tar.gz
-87b7c2c7c9335a8c01fd702caa6463ed6cf40e0c3be533f6fe33e61d8254f787
node-v6.10.2-linux-arm64.tar.xz
-ef7ebad44c97e117994ac743f37798efaab7c0846c5476992ceac304cec5be41
node-v6.10.2-linux-armv6l.tar.gz
-2ea5938bd50ea1f7e9ed18f70adbde6f08f2ceed703ffdb425969b06c1f1a3d3
node-v6.10.2-linux-armv6l.tar.xz
-9f87b4e1cb96140b37c4421308b6f914f9e5832c285dea735dc0c427451126c1
node-v6.10.2-linux-armv7l.tar.gz
-a2087c8e37f66677f0bcdb7ce6da8e5489972db6a921dad8c1fd406f4ce19338
node-v6.10.2-linux-armv7l.tar.xz
-527f90e40c6dd966d6025319f8bc6935e80e81250b7446613a93c528885ee418
node-v6.10.2-linux-ppc64le.tar.gz
-35caa0b91ebfe35d897f13adacbfc0bf0da4db15498ac64eb1f0da272f69d223
node-v6.10.2-linux-ppc64le.tar.xz
-27bfa1e70c82fb6c910d8208bdb0af92386a98f6d8e85ef981a90a9703562af5
node-v6.10.2-linux-ppc64.tar.gz
-f48b02523da44404c7c7e10c61854a048d3989abbd5b4052bc2bb3178c1418f0
node-v6.10.2-linux-ppc64.tar.xz
-f1163d323b0f0c2b8533382a2a84888b2080e4b42a9192e91e489b5a0613fcbb
node-v6.10.2-linux-s390x.tar.gz
-949e4d8a511dc9c9f7a8048af0251bcaace3fda12dffe6bda4e08467acfd1c75
node-v6.10.2-linux-s390x.tar.xz
-35accd2d9ccac747eff0f236e2843bc2198ba7765e2340441d6230861bae4e1b
node-v6.10.2-linux-x64.tar.gz
-b519cd616b0671ab789d2645c5c026deb7e016d73a867ab4b1b8c9ceba9c3503
node-v6.10.2-linux-x64.tar.xz
-6721221fab4e3b3a1be6573900b9e368c7a74ac1c1c3ae982e49c5583e8962e3
node-v6.10.2-linux-x86.tar.gz
-d2179b2d14a399973298c1f4598871058f4cca23c77ea3aca098fa6ff809d55c
node-v6.10.2-linux-x86.tar.xz
-6a6fb245648236dfd80f50b5d35b54584ad666207b41decfa965581b96d68cd9
node-v6.10.2.pkg
-aa3de2a247de9cebbe0a8712fb0eba4c66f82e004bbf5b57c8583fbfb6a01ab7
node-v6.10.2-sunos-x64.tar.gz
-f2c61aad222fbfad383e8c6a92520b610d2e5711c764724627d5103536d8c9e9
node-v6.10.2-sunos-x64.tar.xz
-b07246e9da31e3a762469d609d03558318bd160cd2a04a822bd6725291f10999
node-v6.10.2-sunos-x86.tar.gz
-4c1e3afe305fb586a6fe68c814e61e501dca573419751edabea975386cbde64f
node-v6.10.2-sunos-x86.tar.xz
-9b897dd6604d50ae5fff25fd14b1c4035462d0598735799e0cfb4f17cb6e0d19
node-v6.10.2.tar.gz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-04-11 09:46:22
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Tue Apr 11 09:46:22 2017 rev:6 rq:486387 version:6.10.2
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-03-12
20:00:59.203339756 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-04-11
09:46:25.486388073 +0200
@@ -1,0 +2,35 @@
+Wed Apr 5 01:30:39 UTC 2017 - qantas94he...@gmail.com
+
+- New upstream LTS release 6.10.2
+ * crypto: fix memory leak if certificate is revoked (#12089)
+ * deps: backport V8 fixes for spread syntax regression
+causing segfaults (#12037)
+
+- Changes not applicable to openSUSE in 6.10.2:
+ * deps: upgrade zlib to 1.2.11 (#10980)
+ * repl: revert commit that broke REPL display on Windows (#12123)
+
+- Changes in LTS release 6.10.1
+ * performance: The performance of several APIs has been improved.
++ Buffer.compare() is up to 35% faster on average.
++ buffer.toJSON() is up to 2859% faster on average.
++ fs.*statSync() functions are now up to 9% faster on average.
++ os.loadavg is up to 151% faster.
++ process.memoryUsage() is up to 34% faster.
++ querystring.unescape() for Buffers is 15% faster on average.
++ querystring.stringify() is up to 7.8% faster on average.
++ querystring.parse() is up to 21% faster on average.
+ * IPC: Batched writes have been enabled for process IPC on
+platforms that support Unix Domain Sockets. Performance gains
+may be up to 40% for some workloads.
+ * child_process: spawnSync now returns a null status when child
+is terminated by a signal. This fixes the behavior to act like
+spawn() does.
+ * http: Control characters are now always rejected when using
+http.request(). Debug messages have been added for cases when
+headers contain invalid values.
+ * node: Heap statistics now support values larger than 4GB.
+ * timers: Timer callbacks now always maintain order when
+interacting with domain error handling.
+
+---
Old:
node-v6.10.0.tar.xz
New:
node-v6.10.2.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.kV0tVF/_old 2017-04-11 09:46:26.330268864 +0200
+++ /var/tmp/diff_new_pack.kV0tVF/_new 2017-04-11 09:46:26.334268299 +0200
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.10.0
+Version:6.10.2
Release:0
%if 0%{?sles_version} == 11
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.kV0tVF/_old 2017-04-11 09:46:26.378262084 +0200
+++ /var/tmp/diff_new_pack.kV0tVF/_new 2017-04-11 09:46:26.378262084 +0200
@@ -1,42 +1,42 @@
-28ec25cbe3b1f4000a2a9f3bb565c36ff89745db35d5db07b99d223eb52941c8
node-v6.10.0-aix-ppc64.tar.gz
-ff0c23dad9202c8a70049aa73582eff6d5324100d8db810e9553576817aa59eb
node-v6.10.0-darwin-x64.tar.gz
-d522ab3cda6b66ab23535f4aaf1d2c6a9ab049074bf75a598249b95d52933b05
node-v6.10.0-darwin-x64.tar.xz
-c00c9cb2a90b59c5d7d6960729a28dca03c04521ec8386710d48fe5676eccf11
node-v6.10.0-headers.tar.gz
-12b4dc83ffdf149d9a38351b9bf22c167faa196c632d0a2047d5d06aacddf427
node-v6.10.0-headers.tar.xz
-5f4024d2df1708ef80c5e7b1606d972e8f9779b350df832932174ce651e7795f
node-v6.10.0-linux-arm64.tar.gz
-fc020ac1c3e6d3148ff353dd3b2b11017e556cabf405e385392f599ce34cdf16
node-v6.10.0-linux-arm64.tar.xz
-dc529455b6f85a5c9ba2e6709ca90d580ac297cb39a8444a90e2d579761f211f
node-v6.10.0-linux-armv6l.tar.gz
-41f5c6c106e8f3da4e139364739fcbbbc21012984533e2b6b33a61b234a40b3f
node-v6.10.0-linux-armv6l.tar.xz
-7b068e6a1090ca0765455f35f99a2c090690ac8312d4a410ef481960f79216d8
node-v6.10.0-linux-armv7l.tar.gz
-95efb476886df15cc6586dd26ecc50834a768e347cf95e861461853cfb40fc78
node-v6.10.0-linux-armv7l.tar.xz
-44a9fbd5870d7fa45a50fcb1c14864b3c9d7500d2e42e611e5ad71d9c99e176b
node-v6.10.0-linux-ppc64le.tar.gz
-2909cd33e7706cad999c0a424a8598c48be5894582a0d5afbc1051d3bb5a7347
node-v6.10.0-linux-ppc64le.tar.xz
-182aa9ab11daa9dbb14a724c64a3cff52feaf010aae4bd27fab3a86644578126
node-v6.10.0-linux-ppc64.tar.gz
-7ae1a65f4d62f899840cacd2017af4062e4167426b5d4ac56e186d91c2d8f4f8
node-v6.10.0-linux-ppc64.tar.xz
-29ca73aec6d2adf33c9dfed20e62d7bea77ec5dc9b54001a1698c23d8bb815b7
node-v6.10.0-linux-s390x.tar.gz
-e4dcd6cc4fccaa12fc9077e652a435090641391954853ecb718293fcbb9bd508
node-v6.10.0-linux-s390x.tar.xz
-20b144da9bc3c314abfb760e90580a94091037257fc0b2c32871bc29257f7545
node-v6.10.0-linux-x64.tar.gz
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-03-12 20:00:57
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Sun Mar 12 20:00:57 2017 rev:5 rq:477000 version:6.10.0
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-02-25
00:52:38.600896861 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-03-12
20:00:59.203339756 +0100
@@ -1,0 +2,14 @@
+Sun Feb 26 03:01:09 UTC 2017 - qantas94he...@gmail.com
+
+- New upstream LTS release 6.10.0
+ * crypto: allow adding extra certs to well-known CAs
+ * deps: upgrade INTL ICU to version 58
+ * fs: cache non-symlinks in realpathSync
+ * process: add process.memoryUsage().external
+ * repl: allow autocompletion for scoped packages
+ * src: add wrapper for process.emitWarning()
+- Modify 8334.diff:
+ * Remove merged reference counting code (#9409)
+ * Bring patch in line with upstream changes (#8334)
+
+---
Old:
node-v6.9.5.tar.xz
New:
node-v6.10.0.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.7tMeqQ/_old 2017-03-12 20:01:00.187200541 +0100
+++ /var/tmp/diff_new_pack.7tMeqQ/_new 2017-03-12 20:01:00.195199409 +0100
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.9.5
+Version:6.10.0
Release:0
%if 0%{?sles_version} == 11
++ 8334.diff ++
--- /var/tmp/diff_new_pack.7tMeqQ/_old 2017-03-12 20:01:00.227194882 +0100
+++ /var/tmp/diff_new_pack.7tMeqQ/_new 2017-03-12 20:01:00.227194882 +0100
@@ -2,87 +2,47 @@
Author: Adam Majer
Summary: add option to use system CA store
-Index: node-v6.9.0/configure
+Index: node-v6.10.0/configure
===
node-v6.9.0.orig/configure
-+++ node-v6.9.0/configure
-@@ -187,6 +187,11 @@ shared_optgroup.add_option('--shared-ope
- dest='shared_openssl_libpath',
- help='a directory to search for the shared OpenSSL DLLs')
+--- node-v6.10.0.orig/configure
node-v6.10.0/configure
+@@ -139,6 +139,11 @@ parser.add_option("--openssl-no-asm",
+ dest="openssl_no_asm",
+ help="Do not build optimized assembly for OpenSSL")
-+shared_optgroup.add_option('--openssl-use-def-ca-store',
++parser.add_option('--openssl-use-def-ca-store',
+action='store_true',
-+dest='use_system_ca_store',
-+help='use system supplied Root CA store instead of bundled copy')
++dest='use_openssl_ca_store',
++help='Use OpenSSL supplied CA store instead of compiled-in Mozilla CA
copy.')
+
- shared_optgroup.add_option('--shared-zlib',
- action='store_true',
- dest='shared_zlib',
-@@ -905,6 +910,8 @@ def configure_openssl(o):
+ parser.add_option('--openssl-fips',
+ action='store',
+ dest='openssl_fips',
+@@ -939,6 +944,8 @@ def configure_openssl(o):
o['variables']['node_use_openssl'] = b(not options.without_ssl)
o['variables']['node_shared_openssl'] = b(options.shared_openssl)
o['variables']['openssl_no_asm'] = 1 if options.openssl_no_asm else 0
-+ if options.use_system_ca_store:
-+o['defines'] += ['NODE_SYSTEM_CERT_STORE']
++ if options.use_openssl_ca_store:
++o['defines'] += ['NODE_OPENSSL_CERT_STORE']
if options.openssl_fips:
o['variables']['openssl_fips'] = options.openssl_fips
fips_dir = os.path.join(root_dir, 'deps', 'openssl', 'fips')
-Index: node-v6.9.0/src/node_crypto.cc
+Index: node-v6.10.0/src/node_crypto.cc
===
node-v6.9.0.orig/src/node_crypto.cc
-+++ node-v6.9.0/src/node_crypto.cc
-@@ -751,6 +751,23 @@ void SecureContext::AddRootCerts(const F
- CHECK_EQ(sc->ca_store_, nullptr);
-
- if (!root_cert_store) {
-+#if defined(NODE_SYSTEM_CERT_STORE)
-+// *Assume* OpenSSL is setup correctly, which is the case
-+// for distribution supplied versions.
-+//
-+// If this does not work, define SSL_CERT_DIR environment
-+if (SSL_CTX_set_default_verify_paths(sc->ctx_)) {
-+ root_cert_store = SSL_CTX_get_cert_store(sc->ctx_);
-+ // root_cert_store created here is already assigned to the SSL_CTX
-+ // so when it is assigned again below, the reference is dropped by 1
-+ // and then we will delete root store with the SSL_CTX deletion.
-+ // Increase references to 2 to avoid this scenario.
-+ CRYPTO_add(_cert_store->references, 1, CRYPTO_LOCK_X509_STORE);
-+} else {
-+ // failed to load, default to nothing
-+ root_cert_store =
commit nodejs6 for openSUSE:Factory
Hello community,
here is the log from the commit of package nodejs6 for openSUSE:Factory checked
in at 2017-02-25 00:52:36
Comparing /work/SRC/openSUSE:Factory/nodejs6 (Old)
and /work/SRC/openSUSE:Factory/.nodejs6.new (New)
Package is "nodejs6"
Changes:
--- /work/SRC/openSUSE:Factory/nodejs6/nodejs6.changes 2017-01-10
10:47:35.092665317 +0100
+++ /work/SRC/openSUSE:Factory/.nodejs6.new/nodejs6.changes 2017-02-25
00:52:38.600896861 +0100
@@ -1,0 +2,15 @@
+Fri Feb 3 12:21:10 UTC 2017 - adam.ma...@suse.de
+
+- New upstream LTS release 6.9.5
+ * deps: upgrade openssl sources to 1.0.2k
+(CVE-2017-3731, CVE-2017-3732, CVE-2016-7055,
+ bnc#1022085, bnc#1022086, bnc#1009528)
+- No changes in LTS release 6.9.4
+- Adjusted 8334.diff to be inline with accepted changes
+
+---
+Fri Jan 6 08:25:14 UTC 2017 - qantas94he...@gmail.com
+
+- Add basic check that Node.js loads successfully to spec file
+
+---
Old:
node-v6.9.3.tar.xz
New:
node-v6.9.5.tar.xz
Other differences:
--
++ nodejs6.spec ++
--- /var/tmp/diff_new_pack.vYRI9P/_old 2017-02-25 00:52:39.860703539 +0100
+++ /var/tmp/diff_new_pack.vYRI9P/_new 2017-02-25 00:52:39.868702312 +0100
@@ -26,7 +26,7 @@
###
Name: nodejs6
-Version:6.9.3
+Version:6.9.5
Release:0
%if 0%{?sles_version} == 11
@@ -88,7 +88,8 @@
Source3:nodejs.keyring
## UPSTREAM PATCHES HERE, if any
-Patch1:
https://patch-diff.githubusercontent.com/raw/nodejs/node/pull/8334.diff
+Patch1: 8334.diff
+
## Our patches
# PATCH-FIX-OPENSUSE -- set correct path for dtrace if it is built
Patch101: nodejs-libpath.patch
@@ -201,7 +202,9 @@
%prep
echo "`grep node-v%{version}.tar.xz %{S:1} | head -n1 | cut -c1-64` %{S:0}" |
sha256sum -c
%setup -q -n node-v%{version}
+%if 6 != 7
%patch1 -p1
+%endif
%patch101 -p1
%patch102 -p1
# Add check_output to configure script (not part of Python 2.6 in SLE11).
@@ -252,7 +255,7 @@
--gdb \
%endif
--without-dtrace \
---use-def-ca-store
+--openssl-use-def-ca-store
make %{?_smp_mflags}
@@ -322,6 +325,10 @@
%fdupes %{buildroot}%{_includedir}/node
%fdupes %{buildroot}%{_mandir}/man5
+# Check that Node.js isn't completely broken.
+%check
+%{buildroot}%{_bindir}/node -e
'require("assert").strictEqual(process.versions.node, "%{version}");'
+
%files
%defattr(-, root, root)
%doc AUTHORS LICENSE *.md
++ 8334.diff ++
--- /var/tmp/diff_new_pack.vYRI9P/_old 2017-02-25 00:52:39.900697402 +0100
+++ /var/tmp/diff_new_pack.vYRI9P/_new 2017-02-25 00:52:39.900697402 +0100
@@ -10,7 +10,7 @@
dest='shared_openssl_libpath',
help='a directory to search for the shared OpenSSL DLLs')
-+shared_optgroup.add_option('--use-def-ca-store',
++shared_optgroup.add_option('--openssl-use-def-ca-store',
+action='store_true',
+dest='use_system_ca_store',
+help='use system supplied Root CA store instead of bundled copy')
++ SHASUMS256.txt ++
--- /var/tmp/diff_new_pack.vYRI9P/_old 2017-02-25 00:52:39.936691878 +0100
+++ /var/tmp/diff_new_pack.vYRI9P/_new 2017-02-25 00:52:39.936691878 +0100
@@ -1,40 +1,42 @@
-c55e35ccf71f868d6b7075f20c14b9d0c2c8a3ca98db823b0c5a83ba09e5a984
node-v6.9.3-aix-ppc64.tar.gz
-ae79277f15b8b2f173b97e44e2d4c65a8de4254c2c7da0dcd754b4e39658a779
node-v6.9.3-darwin-x64.tar.gz
-239c196ab56ee875ad300159cfc3f5bd0a87ce457961046ce9518868a983d618
node-v6.9.3-darwin-x64.tar.xz
-43764ddd3829cd3ad22b1e6870fd7d058e2f9a2cf3fd3ea21a25772a18fe0a88
node-v6.9.3-headers.tar.gz
-d0cd948b6d585f64e6ef9ba61c1ee6b3c703670f0bad04e613ad6914b011151f
node-v6.9.3-headers.tar.xz
-f9eaf8dbd926770795ec5a5670a824bab25ec5b19c9803584c342777daef272c
node-v6.9.3-linux-arm64.tar.gz
-fc461a64ef0d2f6267436e95f966df8673276a6344c9389d41cfa06da07ab878
node-v6.9.3-linux-arm64.tar.xz
-5247665cac023be266cdff06abff0f784f0b5d737edff7dcabb12ceb115cdb36
node-v6.9.3-linux-armv6l.tar.gz
-27941dcafa8d9cb0529f1b88831fc40837118a6471410cfca77fa42c5d57415e
node-v6.9.3-linux-armv6l.tar.xz
-01793465bd7ddd6cdb798799c5e4ee107fd6dc77e013bfb602d9f677395d9465
node-v6.9.3-linux-armv7l.tar.gz
-30fa10c799db76732998913a2195f45041f5c2417800740c43cee9b7dcaf7b33
node-v6.9.3-linux-armv7l.tar.xz
-15fceb4cac03ea4cfa54e202d39ac260aec21575057029a0b5b21463ee88c683
node-v6.9.3-linux-ppc64le.tar.gz
-0dc6cf753cc25f14f2f310d22d40dbc8c273dce38a9776b430bac319cb27ac6b
node-v6.9.3-linux-ppc64le.tar.xz
-3ccf0fa6543714e1a745648fea9ab86e0566599e3618d578e9009835bfcc79a3
node-v6.9.3-linux-ppc64.tar.gz
