Hello community, here is the log from the commit of package chromium for openSUSE:Factory checked in at 2017-09-12 19:54:24 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/chromium (Old) and /work/SRC/openSUSE:Factory/.chromium.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium" Tue Sep 12 19:54:24 2017 rev:164 rq:522997 version:61.0.3163.79 Changes: -------- --- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2017-08-30 16:22:37.206410975 +0200 +++ /work/SRC/openSUSE:Factory/.chromium.new/chromium.changes 2017-09-12 19:54:41.736976643 +0200 @@ -1,0 +2,26 @@ +Mon Sep 11 08:45:35 UTC 2017 - tchva...@suse.com + +- Update to 61.0.3163.79 bsc#1057364: + * CVE-2017-5111: Use after free in PDFium. + * CVE-2017-5112: Heap buffer overflow in WebGL. + * CVE-2017-5113: Heap buffer overflow in Skia. + * CVE-2017-5114: Memory lifecycle issue in PDFium. + * CVE-2017-5115: Type confusion in V8. + * CVE-2017-5116: Type confusion in V8. + * CVE-2017-5117: Use of uninitialized value in Skia. + * CVE-2017-5118: Bypass of Content Security Policy in Blink. + * CVE-2017-5119: Use of uninitialized value in Skia. + * CVE-2017-5120: Potential HTTPS downgrade during redirect navigation. +- Rebase patch: + * fix-gn-bootstrap.diff +- Remove patches: + * chromium-gcc7.patch + * chromium-override.patch +- Add new patches: + * chromium-atk.patch + * chromium-gcc5.patch + * chromium-mojo-dep.patch +- Gtk3 is hard required from now on +- Version some of the required dependencies + +------------------------------------------------------------------- Old: ---- chromium-60.0.3112.113.tar.xz chromium-gcc7.patch chromium-override.patch New: ---- chromium-61.0.3163.79.tar.xz chromium-atk.patch chromium-gcc5.patch chromium-mojo-dep.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ chromium.spec ++++++ --- /var/tmp/diff_new_pack.3IYBt2/_old 2017-09-12 19:55:03.037981582 +0200 +++ /var/tmp/diff_new_pack.3IYBt2/_new 2017-09-12 19:55:03.041981020 +0200 @@ -35,10 +35,10 @@ %bcond_with system_vpx %bcond_with clang Name: chromium -Version: 60.0.3112.113 +Version: 61.0.3163.79 Release: 0 Summary: Google's open source browser project -License: BSD-3-Clause and LGPL-2.1+ +License: BSD-3-Clause AND LGPL-2.1+ Group: Productivity/Networking/Web/Browsers Url: http://code.google.com/p/chromium/ Source0: http://commondatastorage.googleapis.com/chromium-browser-official/%{rname}-%{version}.tar.xz @@ -66,11 +66,12 @@ Patch7: fix_network_api_crash.patch # Gcc fix Patch10: gcc60-fixes.diff -Patch11: chromium-gcc7.patch Patch12: chromium-dma-buf.patch -Patch13: chromium-override.patch Patch14: chromium-buildname.patch -Patch15: chromium-60.0.3112.113-breakpad-ucontext.patch +Patch15: chromium-mojo-dep.patch +Patch16: chromium-atk.patch +Patch17: chromium-60.0.3112.113-breakpad-ucontext.patch +Patch18: chromium-gcc5.patch # archlinux arm enhancement patches Patch100: arm-webrtc-fix.patch Patch101: arm_use_right_compiler.patch @@ -98,8 +99,8 @@ BuildRequires: libpng-devel BuildRequires: libva-devel BuildRequires: ncurses-devel -BuildRequires: ninja -BuildRequires: nodejs +BuildRequires: ninja >= 1.7.2 +BuildRequires: nodejs >= 4.6.1 BuildRequires: pam-devel BuildRequires: pkgconfig BuildRequires: procps @@ -149,7 +150,7 @@ BuildRequires: pkgconfig(libwebp) BuildRequires: pkgconfig(libxslt) BuildRequires: pkgconfig(nspr) >= 4.9.5 -BuildRequires: pkgconfig(nss) >= 3.14 +BuildRequires: pkgconfig(nss) >= 3.26 BuildRequires: pkgconfig(ogg) BuildRequires: pkgconfig(openssl) BuildRequires: pkgconfig(opus) @@ -222,8 +223,15 @@ %if %{with clang} BuildRequires: clang >= 3.9.0 %else -BuildRequires: gcc >= 4.8 -BuildRequires: gcc-c++ >= 4.8 +%if %{?suse_version} >= 1330 +BuildRequires: gcc >= 6.0 +BuildRequires: gcc-c++ >= 6.0 +%else +BuildRequires: gcc +BuildRequires: gcc-c++ +BuildRequires: gcc6 +BuildRequires: gcc6-c++ +%endif %endif %description @@ -255,13 +263,14 @@ %patch6 -p1 %patch7 %if !%{with clang} -%patch10 -%patch11 -p1 +%patch10 -p1 %endif %patch12 -p1 -%patch13 -p1 %patch14 -p1 %patch15 -p1 +%patch16 -p1 +%patch17 -p1 +%patch18 -p1 # archlinux arm enhancements %patch100 @@ -294,10 +303,10 @@ third_party/WebKit third_party/analytics third_party/angle - third_party/angle/src/common/third_party/numerics + third_party/angle/src/common/third_party/base + third_party/angle/src/common/third_party/murmurhash third_party/angle/src/third_party/compiler third_party/angle/src/third_party/libXNVCtrl - third_party/angle/src/third_party/murmurhash third_party/angle/src/third_party/trace_event third_party/boringssl third_party/brotli @@ -446,6 +455,10 @@ export CXXFLAGS="${ARCH_FLAGS} -fpermissive" export CC=gcc export CXX=g++ +%if 0%{?suse_version} < 1330 +export CC=gcc-6 +export CXX=g++-6 +%endif %endif # do not eat all memory ninjaproc="%{?jobs:%{jobs}}" @@ -500,12 +513,12 @@ myconf_gn="" myconf_gn+=" custom_toolchain=\"./toolchain:default\"" myconf_gn+=" linux_use_bundled_binutils=false" +myconf_gn+=" use_custom_libcxx=false" myconf_gn+=" is_debug=false" myconf_gn+=" enable_nacl=false" myconf_gn+=" is_component_ffmpeg=true" myconf_gn+=" use_cups=true" myconf_gn+=" use_gconf=true" -myconf_gn+=" use_gtk3=true" myconf_gn+=" use_aura=true" myconf_gn+=" symbol_level=1" myconf_gn+=" remove_webcore_debug_symbols=true" ++++++ chromium-60.0.3112.113.tar.xz -> chromium-61.0.3163.79.tar.xz ++++++ /work/SRC/openSUSE:Factory/chromium/chromium-60.0.3112.113.tar.xz /work/SRC/openSUSE:Factory/.chromium.new/chromium-61.0.3163.79.tar.xz differ: char 26, line 1 ++++++ chromium-atk.patch ++++++ --- a/content/browser/accessibility/browser_accessibility_auralinux.cc.orig 2017-07-27 06:28:01.090257874 +0000 +++ b/content/browser/accessibility/browser_accessibility_auralinux.cc 2017-07-27 06:28:21.174653680 +0000 @@ -571,7 +571,7 @@ // it's best to leave this out rather than break people's builds: #if defined(ATK_CHECK_VERSION) #if ATK_CHECK_VERSION(2, 16, 0) - atk_state_set_add_state(atk_state_set, ATK_STATE_READ_ONLY); + atk_state_set_add_state(state_set, ATK_STATE_READ_ONLY); #endif #endif break; ++++++ chromium-gcc7.patch -> chromium-gcc5.patch ++++++ --- /work/SRC/openSUSE:Factory/chromium/chromium-gcc7.patch 2017-07-27 11:13:22.327911828 +0200 +++ /work/SRC/openSUSE:Factory/.chromium.new/chromium-gcc5.patch 2017-09-12 19:54:40.833103733 +0200 @@ -1,13 +1,83 @@ -Index: chromium-60.0.3112.10/v8/src/objects-body-descriptors.h +Index: chromium-61.0.3163.79/chrome/browser/devtools/devtools_file_system_indexer.cc =================================================================== ---- chromium-60.0.3112.10.orig/v8/src/objects-body-descriptors.h -+++ chromium-60.0.3112.10/v8/src/objects-body-descriptors.h -@@ -99,7 +99,7 @@ class FixedBodyDescriptor final : public - - template <typename StaticVisitor> - static inline void IterateBody(HeapObject* obj, int object_size) { -- IterateBody(obj); -+ IterateBody<StaticVisitor>(obj); +--- chromium-61.0.3163.79.orig/chrome/browser/devtools/devtools_file_system_indexer.cc ++++ chromium-61.0.3163.79/chrome/browser/devtools/devtools_file_system_indexer.cc +@@ -34,7 +34,6 @@ using base::TimeDelta; + using base::TimeTicks; + using content::BrowserThread; + using std::map; +-using std::set; + using std::string; + using std::vector; + +@@ -191,7 +190,7 @@ vector<FilePath> Index::Search(const str + if (trigram != kUndefinedTrigram) + trigrams.push_back(trigram); + } +- set<FileId> file_ids; ++ std::set<FileId> file_ids; + bool first = true; + vector<Trigram>::const_iterator it = trigrams.begin(); + for (; it != trigrams.end(); ++it) { +@@ -203,7 +202,7 @@ vector<FilePath> Index::Search(const str + first = false; + continue; + } +- set<FileId> intersection = base::STLSetIntersection<set<FileId> >( ++ std::set<FileId> intersection = base::STLSetIntersection<std::set<FileId> >( + file_ids, index_[trigram]); + file_ids.swap(intersection); } +Index: chromium-61.0.3163.79/third_party/WebKit/Source/platform/wtf/typed_arrays/ArrayBufferContents.h +=================================================================== +--- chromium-61.0.3163.79.orig/third_party/WebKit/Source/platform/wtf/typed_arrays/ArrayBufferContents.h ++++ chromium-61.0.3163.79/third_party/WebKit/Source/platform/wtf/typed_arrays/ArrayBufferContents.h +@@ -63,7 +63,7 @@ class WTF_EXPORT ArrayBufferContents { + allocation_length_(0), + data_(data), + data_length_(0), +- kind_(AllocationKind::kNormal), ++ kind_(WTF::ArrayBufferContents::AllocationKind::kNormal), + deleter_(deleter) {} + DataHandle(void* allocation_base, + size_t allocation_length, +@@ -94,11 +94,11 @@ class WTF_EXPORT ArrayBufferContents { + reinterpret_cast<uintptr_t>(allocation_base_) + + allocation_length_); + switch (kind_) { +- case AllocationKind::kNormal: ++ case WTF::ArrayBufferContents::AllocationKind::kNormal: + DCHECK(deleter_); + deleter_(data_); + return; +- case AllocationKind::kReservation: ++ case WTF::ArrayBufferContents::AllocationKind::kReservation: + ReleaseReservedMemory(allocation_base_, allocation_length_); + return; + } +Index: chromium-61.0.3163.79/third_party/webrtc/modules/audio_processing/aec3/aec_state.cc +=================================================================== +--- chromium-61.0.3163.79.orig/third_party/webrtc/modules/audio_processing/aec3/aec_state.cc ++++ chromium-61.0.3163.79/third_party/webrtc/modules/audio_processing/aec3/aec_state.cc +@@ -10,7 +10,7 @@ + + #include "webrtc/modules/audio_processing/aec3/aec_state.h" + +-#include <math.h> ++#include <cmath> + #include <numeric> + #include <vector> + +Index: chromium-61.0.3163.79/cc/paint/paint_op_buffer.cc +=================================================================== +--- chromium-61.0.3163.79.orig/cc/paint/paint_op_buffer.cc ++++ chromium-61.0.3163.79/cc/paint/paint_op_buffer.cc +@@ -207,7 +207,7 @@ TYPES(M); + #undef TYPES + + SkRect PaintOp::kUnsetRect = {SK_ScalarInfinity, 0, 0, 0}; +-const size_t PaintOp::kMaxSkip; ++constexpr size_t PaintOp::kMaxSkip; - static inline int SizeOf(Map* map, HeapObject* object) { return kSize; } + std::string PaintOpTypeToString(PaintOpType type) { + switch (type) { ++++++ chromium-mojo-dep.patch ++++++ >From f8e2c057ec6123b0a1d08294f41e78c427636b49 Mon Sep 17 00:00:00 2001 From: Mike Bjorge <mbjo...@chromium.org> Date: Mon, 7 Aug 2017 18:41:58 +0000 Subject: [PATCH] Add mojo_blink dep from WebKit loader/. Now that loader has a direct dependency on the generated mojom-blink headers (https://chromium-review.googlesource.com/c/577488), the loader/ target should have a dep on the mojo target that generates the headers, otherwise the build may fail depending on build order. All the other platform/ targets that depend on the mojom-blink headers are directly included in the platform target, which has the necessary dependency already. Bug: 746197 Bug: 750883 Change-Id: Ife1429ec649605aae3f7920560cec37f3a218154 Reviewed-on: https://chromium-review.googlesource.com/602869 Reviewed-by: Yutaka Hirano <yhir...@chromium.org> Reviewed-by: Matt Falkenhagen <fal...@chromium.org> Commit-Queue: Mike Bjorge <mbjo...@chromium.org> Cr-Commit-Position: refs/heads/master@{#492369} --- third_party/WebKit/Source/platform/loader/BUILD.gn | 1 + third_party/WebKit/public/BUILD.gn | 1 + 2 files changed, 2 insertions(+) diff --git a/third_party/WebKit/Source/platform/loader/BUILD.gn b/third_party/WebKit/Source/platform/loader/BUILD.gn index d483734b21cf..409befe884a8 100644 --- a/third_party/WebKit/Source/platform/loader/BUILD.gn +++ b/third_party/WebKit/Source/platform/loader/BUILD.gn @@ -99,6 +99,7 @@ source_set("loader") { "//components/link_header_util:link_header_util", "//mojo/public/cpp/system:system", "//storage/public/interfaces:interfaces_blink__generator", + "//third_party/WebKit/public:mojo_bindings_blink", ] public_deps = [ diff --git a/third_party/WebKit/public/BUILD.gn b/third_party/WebKit/public/BUILD.gn index 84ee3ca9136d..cc847663efc6 100644 --- a/third_party/WebKit/public/BUILD.gn +++ b/third_party/WebKit/public/BUILD.gn @@ -755,6 +755,7 @@ mojom("mojo_bindings") { visibility_blink = [ "//content/common:mojo_bindings_blink", "//third_party/WebKit/Source/platform", + "//third_party/WebKit/Source/platform/loader", ] sources = [ "platform/display_mode.mojom", -- 2.14.0 ++++++ fix-gn-bootstrap.diff ++++++ --- /var/tmp/diff_new_pack.3IYBt2/_old 2017-09-12 19:55:03.257950653 +0200 +++ /var/tmp/diff_new_pack.3IYBt2/_new 2017-09-12 19:55:03.261950091 +0200 @@ -1,13 +1,27 @@ -Index: tools/gn/bootstrap/bootstrap.py +commit 96c271f8ab2be7ea4199078ea65ac50c6ada4685 +Author: Pawel Hajdan, Jr <phajdan...@chromium.org> +Date: Wed Jul 26 21:51:54 2017 +0000 + + wip + diff --git a/tools/gn/bootstrap/bootstrap.py b/tools/gn/bootstrap/bootstrap.py -index 6f2f5b1264519ea38cc36fb0b7e2cc24c378ca7a..0b03d2626b358fb90ab39d737679ee47bd60303b 100755 +index 1390560f8e37..ff2ae57c46b0 100755 --- a/tools/gn/bootstrap/bootstrap.py +++ b/tools/gn/bootstrap/bootstrap.py -@@ -487,6 +487,7 @@ def write_gn_ninja(path, root_gen_dir, options): - 'base/sys_info.cc', - 'base/task_runner.cc', - 'base/task_scheduler/delayed_task_manager.cc', -+ 'base/task_scheduler/environment_config.cc', - 'base/task_scheduler/post_task.cc', - 'base/task_scheduler/priority_queue.cc', - 'base/task_scheduler/scheduler_lock_impl.cc', +@@ -449,6 +449,7 @@ def write_gn_ninja(path, root_gen_dir, options): + 'base/metrics/histogram_base.cc', + 'base/metrics/histogram_functions.cc', + 'base/metrics/histogram_samples.cc', ++ 'base/metrics/histogram_snapshot_manager.cc', + 'base/metrics/metrics_hashes.cc', + 'base/metrics/persistent_histogram_allocator.cc', + 'base/metrics/persistent_memory_allocator.cc', +@@ -534,7 +535,7 @@ def write_gn_ninja(path, root_gen_dir, options): + 'base/trace_event/heap_profiler_allocation_context_tracker.cc', + 'base/trace_event/heap_profiler_allocation_register.cc', + 'base/trace_event/heap_profiler_event_filter.cc', +- 'base/trace_event/heap_profiler_event_writer.cc', ++ 'base/trace_event/heap_profiler_heap_dump_writer.cc', + 'base/trace_event/heap_profiler_serialization_state.cc', + 'base/trace_event/heap_profiler_stack_frame_deduplicator.cc', + 'base/trace_event/heap_profiler_type_name_deduplicator.cc', ++++++ gcc60-fixes.diff ++++++ --- /var/tmp/diff_new_pack.3IYBt2/_old 2017-09-12 19:55:03.277947842 +0200 +++ /var/tmp/diff_new_pack.3IYBt2/_new 2017-09-12 19:55:03.277947842 +0200 @@ -1,5 +1,5 @@ ---- build/config/compiler/BUILD.gn 2016-08-14 09:59:05.527738286 +0200 -+++ build/config/compiler/BUILD.gn 2016-08-14 09:59:56.340463935 +0200 +--- a/build/config/compiler/BUILD.gn 2016-08-14 09:59:05.527738286 +0200 ++++ b/build/config/compiler/BUILD.gn 2016-08-14 09:59:56.340463935 +0200 @@ -389,6 +389,7 @@ # TODO(thakis): Eventually switch this to c++11 instead, # http://crbug.com/427584 @@ -9,3 +9,17 @@ # TODO(mcgrathr) - the NaCl GCC toolchain doesn't support either gnu++11 # or c++11; we technically don't need this toolchain any more, but there +diff --git a/base/numerics/safe_math_shared_impl.h b/base/numerics/safe_math_shared_impl.h +index 99f230ce7e9a..de2415d402f5 100644 +--- a/base/numerics/safe_math_shared_impl.h ++++ b/base/numerics/safe_math_shared_impl.h +@@ -21,8 +21,7 @@ + #if !defined(__native_client__) && \ + ((defined(__clang__) && \ + ((__clang_major__ > 3) || \ +- (__clang_major__ == 3 && __clang_minor__ >= 4))) || \ +- (defined(__GNUC__) && __GNUC__ >= 5)) ++ (__clang_major__ == 3 && __clang_minor__ >= 4)))) + #include "base/numerics/safe_math_clang_gcc_impl.h" + #define BASE_HAS_OPTIMIZED_SAFE_MATH (1) + #else
