Commit Graph

824 Commits

Author SHA1 Message Date
taku0
b16d72e61b flashplayer: 32.0.0.293 -> 32.0.0.303 2019-12-10 21:54:15 +09:00
Andrew Childs
6ec5e745dc chromium: fix aarch64 build
The skia patch no longer applies, and is no longer necessary.

The current version of chromium doesn't build with gcc. This has been
fixed upstream[1] and could be backported, but switching aarch64 to
clang/llvm and making the build the same on all platforms is simpler.

[1] 9662ec8440
2019-11-26 01:25:39 +01:00
John Ericson
4f1261134e Merge remote-tracking branch 'upstream/master' into staging 2019-11-24 18:33:54 +00:00
Herwig Hochleitner
a52d7674cc chromium: update vaapi patch
https://github.com/NixOS/nixpkgs/issues/73878
2019-11-24 19:07:59 +01:00
Frederik Rietdijk
10d0c68a9b Merge staging-next into staging 2019-11-20 10:02:21 +01:00
Frederik Rietdijk
5f8b0d7d99 Merge staging-next into staging 2019-11-19 14:53:29 +01:00
Ivan Kozik
0c8fc2e90e chromium: 78.0.3904.97 -> 78.0.3904.108
CVE-2019-13723 CVE-2019-13724

https://chromereleases.googleblog.com/2019/11/stable-channel-update-for-desktop_18.html
2019-11-19 05:15:47 +00:00
adisbladis
c9d8624ccd
treewide: Get rid of libGLU_combined 2019-11-18 20:10:43 +00:00
Herwig Hochleitner
8c997725a2 flashplayer: 32.0.0.270 -> 32.0.0.293 2019-11-16 17:24:53 +01:00
Ivan Kozik
c653c7ade3 chromium: 78.0.3904.87 -> 78.0.3904.97
4 security fixes, no CVEs.

https://chromereleases.googleblog.com/2019/11/stable-channel-update-for-desktop.html
2019-11-13 08:21:38 +01:00
Ivan Kozik
648b1c5b97 chromium: 78.0.3904.70 -> 78.0.3904.87
CVE-2019-13721 CVE-2019-13720

https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html
2019-11-01 23:14:55 +00:00
Ivan Kozik
b4f5dc2fb8 chromium: do not load .so files from current working directory
Fixes #67234.
2019-10-31 01:34:19 +00:00
Ivan Kozik
908b24ea04 chromium: 77.0.3865.120 -> 78.0.3904.70
CVE-2019-13699 CVE-2019-13700 CVE-2019-13701 CVE-2019-13702
CVE-2019-13703 CVE-2019-13704 CVE-2019-13705 CVE-2019-13706
CVE-2019-13707 CVE-2019-13708 CVE-2019-13709 CVE-2019-13710
CVE-2019-13711 CVE-2019-15903 CVE-2019-13713 CVE-2019-13714
CVE-2019-13715 CVE-2019-13716 CVE-2019-13717 CVE-2019-13718
CVE-2019-13719

https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_22.html
2019-10-23 03:54:39 +00:00
Renaud
e77a6ec5e4
Merge pull request #70853 from taku0/flashplayer-32.0.0.270
flashplayer: 32.0.0.255 -> 32.0.0.270 [Critical security fixes]
2019-10-15 19:55:56 +02:00
Herwig Hochleitner
13e3b03d1b chromium: restore versionRange utility
This partially reverts commit
f45798e544.

cc @ivan I'd like to have that left in, because it's very useful for
gcc compiles, when necessary patches often span multiple releases,
i.e. for aarch64 builds
2019-10-11 23:00:29 +02:00
Ivan Kozik
f45798e544 chromium: 77.0.3865.90 -> 77.0.3865.120
CVE-2019-13693 CVE-2019-13694 CVE-2019-13695 CVE-2019-13696
CVE-2019-13697

Disable jumbo mode because upstream dropped support for it.
(See chromium-dev "We're removing support for the jumbo build")

This makes builds take about 3x as long, but we have no alternative.
2019-10-11 22:32:18 +02:00
taku0
09ef6dc625 flashplayer: add maintainer 2019-10-09 21:13:14 +09:00
taku0
8948290cec flashplayer: 32.0.0.255 -> 32.0.0.270 2019-10-09 15:13:12 +09:00
Graham Christensen
8dbca5e3ca
Merge pull request #69054 from ivan/chromium-77.0.3865.90
chromium: 77.0.3865.75 -> 77.0.3865.90
2019-09-19 18:01:06 -04:00
Ivan Kozik
5456def6b3 chromiumDev: fix widevine support
Upstream moved libwidevinecdm.so from
./opt/google/chrome-unstable/libwidevinecdm.so
to
./opt/google/chrome-unstable/WidevineCdm/_platform_specific/linux_x64/libwidevinecdm.so
2019-09-19 00:05:30 +00:00
Ivan Kozik
44957a9f30 chromiumDev: fix build by disabling jumbo
This fixes:

FAILED: obj/chrome/browser/ui/ui/ui_jumbo_3.o
../../third_party/llvm-build/Release+Asserts/bin/clang++ -MMD -MF obj/chrome/browser/ui/ui/ui_jumbo_3.o.d -DUSE_DBUS -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_NSS_CERTS=1 -DUSE_X11=1 -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_GNU_SOURCE -DCR_CLANG_REVISION=\"371202-8455294f-1\" -D__STDC_CONSTANT_MACROS -D__STDC_FORMAT_MACROS -D_FORTIFY_SOURCE=2 -D_LIBCPP_ABI_UNSTABLE -D_LIBCPP_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCXXABI_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCPP_ENABLE_NODISCARD -DCR_LIBCXX_REVISION=361348 -DNDEBUG -DNVALGRIND -DDYNAMIC_ANNOTATIONS_ENABLED=0 -DUSE_CUPS -DGLIB_VERSION_MAX_ALLOWED=GLIB_VERSION_2_32 -DGLIB_VERSION_MIN_REQUIRED=GLIB_VERSION_2_26 -DENABLE_IPC_FUZZER -DTOOLKIT_VIEWS=1 -DVK_NO_PROTOTYPES -DGL_GLEXT_PROTOTYPES -DUSE_GLX -DUSE_EGL -DSYNC_PASSWORD_REUSE_DETECTION_ENABLED -DON_FOCUS_PING_ENABLED -DEXPAT_RELATIVE_PATH -DGOOGLE_PROTOBUF_NO_RTTI -DGOOGLE_PROTOBUF_NO_STATIC_INITIALIZER -DHAVE_PTHREAD -DLEVELDB_PLATFORM_CHROMIUM=1 -DLEVELDB_PLATFORM_CHROMIUM=1 -DU_USING_ICU_NAMESPACE=0 -DU_ENABLE_DYLOAD=0 -DUSE_CHROMIUM_ICU=1 -DU_STATIC_IMPLEMENTATION -DICU_UTIL_DATA_IMPL=ICU_UTIL_DATA_FILE -DUCHAR_TYPE=uint16_t -DWEBRTC_NON_STATIC_TRACE_EVENT_HANDLERS=0 -DWEBRTC_CHROMIUM_BUILD -DWEBRTC_POSIX -DWEBRTC_LINUX -DABSL_ALLOCATOR_NOTHROW=1 -DNO_MAIN_THREAD_WRAPPING -DV8_USE_EXTERNAL_STARTUP_DATA -DSK_GL -DSK_HAS_PNG_LIBRARY -DSK_HAS_WEBP_LIBRARY -DSK_USER_CONFIG_HEADER=\"../../skia/config/SkUserConfig.h\" -DSK_HAS_JPEG_LIBRARY -DSK_VULKAN_HEADER=\"../../skia/config/SkVulkanConfig.h\" -DSK_VULKAN=1 -DSK_SUPPORT_GPU=1 -DSK_GPU_WORKAROUNDS_HEADER=\"gpu/config/gpu_driver_bug_workaround_autogen.h\" -DVK_NO_PROTOTYPES -DV8_DEPRECATION_WARNINGS -DI18N_ADDRESS_VALIDATION_DATA_URL=\"https://chromium-i18n.appspot.com/ssl-aggregate-address/\" -DPERFETTO_IMPLEMENTATION -I. -I../.. -Igen -Igen/shim_headers/snappy_shim -I../../third_party/libyuv/include -Igen/shim_headers/libpng_shim -Igen/shim_headers/libwebp_shim -I../../third_party/khronos -I../../gpu -I../../third_party/vulkan/include -Igen/shim_headers/opus_shim -Igen/third_party/dawn -I../../third_party/dawn/src/include -Igen/shim_headers/flac_shim -I../../third_party/protobuf/src -Igen/protoc_out -I../../third_party/protobuf/src -I../../third_party/boringssl/src/include -I../../third_party/cacheinvalidation/overrides -I../../third_party/cacheinvalidation/src -Igen/third_party/metrics_proto -I../../third_party/leveldatabase -I../../third_party/leveldatabase/src -I../../third_party/leveldatabase/src/include -I../../third_party/ced/src -I../../third_party/icu/source/common -I../../third_party/icu/source/i18n -I../../third_party/webrtc_overrides -I../../third_party/webrtc -Igen/third_party/webrtc -I../../third_party/abseil-cpp -I../../third_party/skia -I../../third_party/vulkan/include -I../../third_party/skia/third_party/vulkanmemoryallocator -I../../third_party/vulkan/include -I../../third_party/libwebm/source -I../../v8/include -Igen/v8/include -I../../third_party/perfetto/include -Igen/third_party/perfetto/build_config -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -I../../third_party/re2/src -I../../third_party/mesa_headers -Igen -Igen -Igen -Igen -I../../third_party/libaddressinput/src/cpp/include -Igen/components/sync/protocol -I../../third_party/flatbuffers/src/include -I../../third_party/perfetto -I../../third_party/perfetto/include -Igen/third_party/perfetto/build_config -I../../third_party/brotli/include -I../../third_party/zlib -I../../third_party/fontconfig/src -Igen -Igen -Igen -Igen -Igen -fno-strict-aliasing --param=ssp-buffer-size=4 -fstack-protector -funwind-tables -fPIC -pthread -fcolor-diagnostics -fmerge-all-constants -fcrash-diagnostics-dir=../../tools/clang/crashreports -Xclang -mllvm -Xclang -instcombine-lower-dbg-declare=0 -fcomplete-member-pointers -m64 -march=x86-64 -Wno-builtin-macro-redefined -D__DATE__= -D__TIME__= -D__TIMESTAMP__= -no-canonical-prefixes -Wall -Wextra -Wimplicit-fallthrough -Wthread-safety -Wextra-semi -Wno-missing-field-initializers -Wno-unused-parameter -Wno-c++11-narrowing -Wno-unneeded-internal-declaration -Wno-undefined-var-template -Wno-ignored-pragma-optimize -Wno-implicit-int-float-conversion -Wno-xor-used-as-pow -Wno-c99-designator -Wno-reorder-init-list -Wno-final-dtor-non-final-class -O2 -fno-ident -fdata-sections -ffunction-sections -fno-omit-frame-pointer -g0 -fvisibility=hidden -Wheader-hygiene -Wstring-conversion -Wtautological-overlap-compare -Wexit-time-destructors -I/nix/store/fn0ag3ahbrjjjbsqb2846x321zj4jika-glib-2.60.7-dev/include -I/nix/store/fn0ag3ahbrjjjbsqb2846x321zj4jika-glib-2.60.7-dev/include/glib-2.0 -I/nix/store/ilk1606qj4pqzsplnnzycsxpzl6pjss8-glib-2.60.7/lib/glib-2.0/include -Wno-shorten-64-to-32 -Wno-header-guard -I/nix/store/c3i4il1c0n9mjhzm1dsvcw8h8d973s0b-nspr-4.21-dev/include -I/nix/store/qk3racv0a2967wsk0g9ps9wlbfn17faj-nss-3.46-dev/include/nss -I/nix/store/v85mz845m1hv2xlhp0zvxv36pmsfbc3q-dbus-1.12.16-dev/include/dbus-1.0 -I/nix/store/j3sv2g9s6dnlh672rwx0mmlkcm37v1k8-dbus-1.12.16-lib/lib/dbus-1.0/include -std=c++14 -fno-exceptions -fno-rtti -nostdinc++ -isystem../../buildtools/third_party/libc++/trunk/include -isystem../../buildtools/third_party/libc++abi/trunk/include -fvisibility-inlines-hidden -c gen/chrome/browser/ui/ui_jumbo_3.cc -o obj/chrome/browser/ui/ui/ui_jumbo_3.o
warning: unknown warning option '-Wno-implicit-int-float-conversion'; did you mean '-Wno-implicit-float-conversion'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-xor-used-as-pow'; did you mean '-Wno-unused-macros'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-c99-designator'; did you mean '-Wno-gnu-designator'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-reorder-init-list'; did you mean '-Wno-empty-init-stmt'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-final-dtor-non-final-class'; did you mean '-Wno-abstract-final-class'? [-Wunknown-warning-option]
In file included from gen/chrome/browser/ui/ui_jumbo_3.cc:24:
./../../chrome/browser/ui/views/profiles/profile_menu_view.cc:68:25: error: redefinition of 'GetProfileAttributesEntry'
ProfileAttributesEntry* GetProfileAttributesEntry(Profile* profile) {
                        ^
./../../chrome/browser/ui/views/profiles/avatar_toolbar_button.cc:49:25: note: previous definition is here
ProfileAttributesEntry* GetProfileAttributesEntry(Profile* profile) {
                        ^
5 warnings and 1 error generated.
2019-09-19 00:05:24 +00:00
Ivan Kozik
2e2a9ae22a chromium: 77.0.3865.75 -> 77.0.3865.90
CVE-2019-13685 CVE-2019-13688 CVE-2019-13687 CVE-2019-13686
2019-09-18 22:19:08 +00:00
Ivan Kozik
19d730df85 chromium: add patch to fix performance regression with fonts
This reverts a commit to fix a serious performance regression
introduced in Chromium 77:

https://bugs.chromium.org/p/chromium/issues/detail?id=1003997
2019-09-17 23:42:11 +00:00
Herwig Hochleitner
dd57bf928b
Merge pull request #60833 from jflanglois/chromium-widevine
chromium: fix widevine
2019-09-14 14:30:29 +02:00
Ivan Kozik
d66430be79 chromium: 76.0.3809.132 -> 77.0.3865.75
CVE-2019-5870 CVE-2019-5871 CVE-2019-5872 CVE-2019-5873
CVE-2019-5874 CVE-2019-5875 CVE-2019-5876 CVE-2019-5877
CVE-2019-5878 CVE-2019-5879 CVE-2019-5880 CVE-2019-5881
CVE-2019-13659 CVE-2019-13660 CVE-2019-13661 CVE-2019-13662
CVE-2019-13663 CVE-2019-13664 CVE-2019-13665 CVE-2019-13666
CVE-2019-13667 CVE-2019-13668 CVE-2019-13669 CVE-2019-13670
CVE-2019-13671 CVE-2019-13673 CVE-2019-13674 CVE-2019-13675
CVE-2019-13676 CVE-2019-13677 CVE-2019-13678 CVE-2019-13679
CVE-2019-13680 CVE-2019-13681 CVE-2019-13682 CVE-2019-13683
2019-09-14 14:29:35 +02:00
taku0
dac340737a flashplayer: 32.0.0.238 -> 32.0.0.255 2019-09-10 21:13:06 +09:00
Julien Langlois
7d9578819b
Comment about handling widevine in default.nix. 2019-09-06 15:19:49 -04:00
Julien Langlois
ea7c012e4b
Explicitly check for channels in widevine plugin unpack command. 2019-09-05 17:43:58 -04:00
Julien Langlois
c28eb26100
Set package to unfree when widevine is enabled. 2019-09-05 17:27:04 -04:00
Julien Langlois
aeeb67bfcb
Rework to avoid a full rebuild for widevine. 2019-09-05 17:20:09 -04:00
Julien Langlois
545d58a1ef
chromium: fix widevine
This change allows widevine to work in chromium (it was previously
broken due to a segfault). Newer versions of chromium do not use the
libwidevinecdmadapter.so. Instead, libwidevinecdm.so should be installed
in the chromium libExec directory.
2019-09-05 17:20:06 -04:00
Vladimír Čunát
f21211ebfe
Merge branch 'master' into staging 2019-09-02 23:25:24 +02:00
Ivan Kozik
0e703ce075 chromium: 76.0.3809.100 -> 76.0.3809.132 (#67610)
CVE-2019-5869
2019-08-31 22:22:58 -04:00
volth
08f68313a4 treewide: remove redundant rec 2019-08-28 11:07:32 +00:00
Frederik Rietdijk
5061fe0c2c Merge staging-next into staging 2019-08-28 08:26:42 +02:00
Frederik Rietdijk
98640fd482 Merge master into staging-next 2019-08-27 16:36:47 +02:00
Asad Saeeduddin
17775d538b flashplayer: 32.0.0.223 -> 32.0.0.238 2019-08-25 06:05:10 -04:00
Ben Wolsieffer
8b0a684d21 chromium: remove obsolete patches
One of these patches was causing a warning message, which broke ofborg
evaluation.
2019-08-19 18:54:48 -04:00
Frederik Rietdijk
fe9a3e3e63 Merge staging-next into staging 2019-08-17 09:39:23 +02:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Matthew Bauer
8281a67be0
Merge pull request #64809 from ambrop72/chromium-egl-fix
chromium: Fix running with --use-gl=egl.
2019-08-14 15:42:31 -04:00
Ivan Kozik
42521cb95b chromium: 76.0.3809.87 -> 76.0.3809.100
CVE-2019-5868 CVE-2019-5867
2019-08-09 16:07:37 +00:00
Ivan Kozik
a897743a13 chromiumDev: fix build
Fixes:

ERROR Unresolved dependencies.
//third_party/perfetto/gn:zlib(//build/toolchain/linux:clang_x64)
  needs //third_party/zlib:zlib_config(//build/toolchain/linux:clang_x64)

builder for '/nix/store/iqr4vn2by1yxa7f92jiymvgfsn9mdvwq-chromium-unwrapped-77.0.3860.5.drv' failed with exit code 1
2019-07-31 11:31:07 +00:00
Ivan Kozik
d18f4acdf1 chromium: 75.0.3770.90 -> 76.0.3809.87
Fixed in 75.0.3770.142:

CVE-2019-5847 CVE-2019-5848

Fixed in 76.0.3809.87:

CVE-2019-5850 CVE-2019-5860 CVE-2019-5853 CVE-2019-5851
CVE-2019-5859 CVE-2019-5856 CVE-2019-5863 CVE-2019-5855
CVE-2019-5865 CVE-2019-5858 CVE-2019-5864 CVE-2019-5862
CVE-2019-5861 CVE-2019-5857 CVE-2019-5854 CVE-2019-5852
2019-07-31 11:30:46 +00:00
Ambroz Bizjak
6a0a073187 chromium: Fix running with --use-gl=egl.
When Chromium is using EGL, it dlopen's libGLESv2. Before this fix, this failed
with a not-found error. Fix it by adding libGL to the RUNPATH of the binary.

This problem does not have a visible impact on typical desktop system because
Chromium uses GLX by default. It only matters when Chromium is started with
--use-gl=egl (which makes it use OpenGL ES via EGL instead of desktop OpenGL
via GLX), and probably on certain embedded systems which only support OpenGL
ES.

With this fix, Chromium runs fine for me with --use-gl=egl and the NVidia
driver, and the about:gpu page indicates that it is indeed using OpenGL ES and
EGL.
2019-07-15 17:03:56 +02:00
taku0
126c5d0be8 flashplayer: 32.0.0.207 -> 32.0.0.223 2019-07-11 09:51:49 +02:00
Andreas Rammhold
5a74f84536
Merge pull request #63136 from ivan/chromium-75.0.3770.90
chromium: 75.0.3770.80 -> 75.0.3770.90
2019-06-19 00:42:05 +02:00
volth
f3282c8d1e treewide: remove unused variables (#63177)
* treewide: remove unused variables

* making ofborg happy
2019-06-16 19:59:05 +00:00
Ivan Kozik
67ced10c23 chromium: 75.0.3770.80 -> 75.0.3770.90
CVE-2019-5842
2019-06-14 21:17:45 +00:00
taku0
1296f699e5 flashplayer: 32.0.0.192 -> 32.0.0.207 2019-06-11 15:13:34 +09:00
Ivan Kozik
8c78ae27f6 chromium: 74.0.3729.157 -> 75.0.3770.80
CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831
CVE-2019-5832 CVE-2019-5833 CVE-2019-5834 CVE-2019-5835
CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839
CVE-2019-5840

Update a patch for Python 3, fixes #62347.

Update a GN arg to fix this warning:

warning: The GN arg 'remove_webcore_debug_symbols' is deprecated and
warning: will be removed April 15, 2019. Please change your args.gn
warning: to use 'blink_symbol_level = 0'. https://crbug.com/943869
2019-06-05 09:27:52 +00:00
Ivan Kozik
4481a0150b chromium: use LLVM 8.0.0 to more closely match upstream 2019-06-05 09:27:52 +00:00
Silvan Mosberger
99b68ffbb0
chromium: Fix build
Since https://github.com/NixOS/nixpkgs/pull/60499, the unwrapped
chromium already contains the applications directory.
2019-05-28 02:33:00 +02:00
Silvan Mosberger
526a0b2277
Merge pull request #60499 from JohnAZoidberg/chromium-upstream-desktop-entry
chromium: Use upstream desktop entry
2019-05-27 18:28:20 +02:00
Daniel Schaefer
0f537a49e1 chromium: Use upstream desktop entry
Upstream provides a much more featureful desktop entry file. If we use
that we take advantage of all of those features and don't have to maintain it
ourselves.
2019-05-25 22:39:47 +02:00
Andreas Rammhold
333a2be17b
chromium: 74.0.3729.131 -> 74.0.3729.157 (#61533)
chromium: 74.0.3729.131 -> 74.0.3729.157
2019-05-16 19:27:12 +02:00
Ivan Kozik
2db1a06136 chromium: 74.0.3729.131 -> 74.0.3729.157
Fixes a security bug with no CVE at this time:
https://chromereleases.googleblog.com/2019/05/stable-channel-update-for-desktop.html
2019-05-15 05:41:40 +00:00
taku0
8be03860e4 flashplayer: 32.0.0.171 -> 32.0.0.192 2019-05-14 21:13:49 +09:00
Andreas Rammhold
0b7c602d55
chromium: 74.0.3729.108 -> 74.0.3729.131 (#60950)
chromium: 74.0.3729.108 -> 74.0.3729.131
2019-05-05 18:04:36 +02:00
Ivan Kozik
75d1439f8f chromium: add myself as maintainer (#60961) 2019-05-05 05:09:20 -04:00
Ivan Kozik
f15adc548f chromium: 74.0.3729.108 -> 74.0.3729.131
CVE-2019-5827 CVE-2019-5824
2019-05-04 22:46:24 +00:00
Herwig Hochleitner
d77256c604 chromium: 73.0.3683.103 -> 74.0.3729.108
CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809
CVE-2019-5810 CVE-2019-5811 CVE-2019-5812 CVE-2019-5813 CVE-2019-5814
CVE-2019-5815 CVE-2019-5816 CVE-2019-5817 CVE-2019-5818 CVE-2019-5819
CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 CVE-2019-5823
2019-04-24 22:01:45 +02:00
taku0
3eb4e958b4 flashplayer: 32.0.0.156 -> 32.0.0.171 2019-04-09 21:14:12 +09:00
Herwig Hochleitner
a5960f765a chromium: 73.0.3683.86 -> 73.0.3683.103 2019-04-05 16:53:36 +02:00
aszlig
ed8f3b5fa3
chromium/updater: Fix usage of insecure MD5 hashes
The title of https://github.com/NixOS/nix/issues/802 says it all:

    Is it time to deprecate md5?

Of course it is - we shouldn't use MD5 for our beautiful updater, but
switch to SHA1 instead. It's the future!

       .    .          .       .           .
  .              .        .          .               .
    .    .           .           .        .-.   .         .     .
           -------     ______             | `\                .
.   ______   .            '   ``-..-.-,.-.`.  `----._______
           .  -------   .   . `.`.-=,'='-===| SHA1  \______`--._
 --------------      ---   .  ..-.-.-=-.-===|   ____________.--"
               ---------  . . .- .,==-'`-'-./  /__----'^  `^  `^  `^
   ____   -----     --  ____   ' . _____   \______[=>  =>  =>  =>
         .                   .       .                .
   .          .     .     .              .        .          .

Signed-off-by: aszlig <aszlig@nix.build>
2019-03-31 22:41:44 +02:00
Herwig Hochleitner
233e551674 chromium: disable vaapi support
this fixes playback on radeon

see https://github.com/NixOS/nixpkgs/pull/57837#issuecomment-477906724
2019-03-31 01:04:49 +01:00
Cole Mickens
60e2d2ce2b chromium: enable mojo + vaapi + allow hw accel
fixes https://github.com/NixOS/nixpkgs/pull/57837
closes https://github.com/NixOS/nixpkgs/pull/56973
2019-03-25 02:02:05 +01:00
Herwig Hochleitner
ea34ad0e43 chromium: 73.0.3683.75 -> 73.0.3683.86 2019-03-22 19:33:30 +01:00
taku0
e933c7875b flashplayer: 32.0.0.142 -> 32.0.0.156 (#57571) 2019-03-13 23:30:50 +01:00
Herwig Hochleitner
006a699e69 chromium: 72.0.3626.121 -> 73.0.3683.75
CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791
CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796
CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5801
CVE-2019-5802 CVE-2019-5803 CVE-2019-5804
2019-03-13 16:19:29 +01:00
Herwig Hochleitner
4901dc4e74 Merge commit '9ae406c0749bbc7373d7422edeaf6b1b6caa0dae' of github.com:NixOS/nixpkgs into fix-chromium
fixes https://github.com/NixOS/nixpkgs/pull/49797
2019-03-07 20:50:13 +01:00
Ivan Kozik
2129c6ec05 chromium: fix sha256 for 72.0.3626.121
The sha256 was previously unchanged from 72.0.3626.119
2019-03-07 00:37:01 +00:00
Herwig Hochleitner
9a6e64691c chromium: 72.0.3626.119 -> 72.0.3626.121
CVE-2019-5786
2019-03-02 05:19:53 +01:00
Frederik Rietdijk
2fcb11a244 Merge staging-next into master 2019-03-01 09:06:20 +01:00
Herwig Hochleitner
338dc47d5f chromium: 72.0.3626.109 -> 72.0.3626.119 2019-02-25 02:01:30 +01:00
Frederik Rietdijk
c2eac6741b Merge master into staging-next 2019-02-24 09:19:12 +01:00
Florian Friesdorf
fbef5ab82f Remove myself as maintainer from packages
I'm currently not maintaining any packages.
2019-02-22 16:14:13 +01:00
Frederik Rietdijk
e2cd07b997 Merge staging-next into staging 2019-02-21 07:54:33 +01:00
Herwig Hochleitner
c414e5bd08 chromium: 72.0.3626.96 -> 72.0.3626.109 2019-02-19 04:44:37 +01:00
Frederik Rietdijk
fd48a94b62 Merge staging-next into staging 2019-02-16 09:30:46 +01:00
Samuel Dionne-Riel
f8eef26991
Merge pull request #55732 from oxij/tree/move-defaults-to-package-files-mostly-pulse
all-packages.nix: move defaults to package files continues
2019-02-15 17:49:01 -05:00
Jan Tojnar
606ceda352
gnome3: stop using aliases 2019-02-14 02:31:15 +01:00
Jan Malakhovski
f91e811e44 chromium: move defaults to package file
This one is a bit untrivial.
2019-02-13 23:11:29 +00:00
Florian Klink
516a9578e6
Merge pull request #55501 from ivan/chromium-72.0.3626.96
chromium: 72.0.3626.81 -> 72.0.3626.96
2019-02-13 11:04:05 +01:00
Averell Dalton
856a238e20 flashplayer: 32.0.0.114 -> 32.0.0.142 2019-02-12 23:01:44 +01:00
Ivan Kozik
0811bbcaa4 chromium: 72.0.3626.81 -> 72.0.3626.96
CVE-2019-5784
2019-02-10 02:38:22 +00:00
Ivan Kozik
03960a323d chromium: make the new audio sandbox NixOS-compatible
Deal with f2fc90bb74
which landed https://github.com/chromium/chromium/blob/master/services/audio/audio_sandbox_hook_linux.cc
containing /usr/share and /usr/lib/x86_64-linux-gnu paths.

closes https://github.com/NixOS/nixpkgs/pull/54960
2019-01-31 20:06:16 +01:00
Herwig Hochleitner
6b27008fb5 chromium: 71.0.3578.98 -> 72.0.3626.81
CVE-2019-5754 CVE-2019-5782 CVE-2019-5755 CVE-2019-5756 CVE-2019-5757
CVE-2019-5758 CVE-2019-5759 CVE-2019-5760 CVE-2019-5761 CVE-2019-5762
CVE-2019-5763 CVE-2019-5764 CVE-2019-5765 CVE-2019-5766 CVE-2019-5767
CVE-2019-5768 CVE-2019-5769 CVE-2019-5770 CVE-2019-5771 CVE-2019-5772
CVE-2019-5773 CVE-2019-5774 CVE-2019-5775 CVE-2019-5776 CVE-2019-5777
CVE-2019-5778 CVE-2019-5779 CVE-2019-5780 CVE-2019-5781
2019-01-31 01:20:23 +01:00
taku0
9f1ff9976f flashplayer: 32.0.0.101 -> 32.0.0.114 2019-01-08 21:12:29 +09:00
Jan Tojnar
ef935fa101
Merge branch 'master' into staging 2018-12-24 15:02:29 +01:00
Jörg Thalheim
1b146a8c6f
treewide: remove paxutils from stdenv
More then one year ago we removed grsecurity kernels from nixpkgs:
https://github.com/NixOS/nixpkgs/pull/25277

This removes now also paxutils from stdenv.
2018-12-22 12:55:05 +01:00
Herwig Hochleitner
327f7da260 chromium: 71.0.3578.80 -> 71.0.3578.98
CVE-2018-17481
2018-12-20 20:44:24 +01:00
Herwig Hochleitner
ccb93eb6b0 chromium: update conditionals and gcc patches for min version 71
(cherry picked from commit 604579e45f10ce5ccadd76c71f1bac648bd0971d)
2018-12-09 04:11:27 +01:00
Sarah Brofeldt
4065217c9a
Merge pull request #51623 from taku0/flashplayer-32.0.0.101
flashplayer: 31.0.0.153 -> 32.0.0.101 [Critical security fix]
2018-12-07 11:57:22 +01:00
taku0
f7a266d44a flashplayer: 31.0.0.153 -> 32.0.0.101 2018-12-06 23:27:45 +09:00
Herwig Hochleitner
8942a3e00c chromium: 70.0.3538.110 -> 71.0.3578.80
CVE-2018-17480 CVE-2018-17481 CVE-2018-18335 CVE-2018-18336
CVE-2018-18337 CVE-2018-18338 CVE-2018-18339 CVE-2018-18340
CVE-2018-18341 CVE-2018-18342 CVE-2018-18343 CVE-2018-18344
CVE-2018-18345 CVE-2018-18346 CVE-2018-18347 CVE-2018-18348
CVE-2018-18349 CVE-2018-18350 CVE-2018-18351 CVE-2018-18352
CVE-2018-18353 CVE-2018-18354 CVE-2018-18355 CVE-2018-18356
CVE-2018-18357 CVE-2018-18358 CVE-2018-18359
2018-12-06 00:36:33 +01:00
Alexander V. Nikolaev
9ae406c074 chromium: rename "unwrapped" package to chromium-unwrapped 2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev
d0351ad3b6 chromium: fail build, if SOURCE_DATE_EPOCH not set
Also fix spacing style to conform google style
2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev
7b49bd4894 chromium: avoid timestamp build
Use $SOURCE_DATE_EPOCH instead
2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev
254a16c42e chroimum: Improve jumbo reproducibility
A little patch to jumbo script, which should improve reproducibility
by sorting source files before merge.
2018-12-03 15:35:52 +02:00
Alexander V. Nikolaev
a70ab23409 chromium: remove gtk2 from build inputs (gtk3 should be enough) 2018-12-03 15:35:18 +02:00
taku0
76c23d904f flashplayer: 31.0.0.122 -> 31.0.0.153 2018-11-20 15:13:38 +09:00
Herwig Hochleitner
bac76e8a9e chromium: add jdk.jre to build dependencies for versions >= 72
thanks for finding out @volth
see 6fba9250aa
2018-11-20 01:01:51 +01:00
Herwig Hochleitner
7c79a0d4ac chromium: 70.0.3538.102 -> 70.0.3538.110
CVE-2018-17479
2018-11-19 23:52:22 +01:00
Jörg Thalheim
16ba91891d
Merge pull request #50396 from taku0/flashplayer-31.0.0.148
flashplayer: 31.0.0.122 -> 31.0.0.148 [Important security fix]
2018-11-15 14:19:43 +00:00
Herwig Hochleitner
4b5ffcb964 chromium: 70.0.3538.77 -> 70.0.3538.102 2018-11-14 02:51:13 +01:00
taku0
4c2d254a7f flashplayer: 31.0.0.122 -> 31.0.0.148 2018-11-13 21:13:48 +09:00
Domen Kožar
89ede978a0
chromium: use jumbo builds to speedup compilation
On Hetzner machine with 1 core: 4h40m
On Hetzner machine with 8 cores: 1h20m
2018-11-01 17:51:51 +00:00
Herwig Hochleitner
ed91407784 Revert "chromium: make gcc8 build available via buildWithGcc flag"
This partially reverts commit
b70ab5c405 (except for depending gnome2)

see #48922
2018-10-28 17:10:53 +01:00
Herwig Hochleitner
17585ff6d8 chromium: 70.0.3538.67 -> 70.0.3538.77 2018-10-28 16:00:46 +01:00
Herwig Hochleitner
b70ab5c405 chromium: make gcc8 build available via buildWithGcc flag 2018-10-28 16:00:46 +01:00
Herwig Hochleitner
7eea24db5d chromium/plugins: specify gcc instead of stdenv.cc 2018-10-28 16:00:46 +01:00
volth
d2daf0dd6f chromium: build with clang 2018-10-28 16:00:45 +01:00
Herwig Hochleitner
bb03fbc2c8 chromium: 69.0.3497.100 -> 70.0.3538.67 2018-10-24 19:38:51 +02:00
volth
337d140953 chromium: propagate stdenv for "chromium.override{ stdenv=gcc8Stdenv; }" (#48615) 2018-10-18 23:09:12 +02:00
volth
d767ba9996 chromium 71+: there is no more option 'use_gtk3' (#48595) 2018-10-17 23:04:15 +02:00
volth
d039722d0e chromium 71+: add at-spi2-core dependency (#48594) 2018-10-17 23:03:43 +02:00
volth
0c8cdb53f6 chromium: fix aarch64 build (#48586)
* chromium: fix aarch64 build

* chromium: use more stable urls
2018-10-17 01:21:29 +02:00
volth
2ad99a662d chromium plugins: add meta.platforms (#48495)
to prevent their installation on aarch64
2018-10-16 18:11:41 +02:00
Will Dietz
ce6db5e36e chromium: update to 69.0.3497.100 (and others), ran update.sh 2018-10-12 12:20:35 +02:00
Will Dietz
4b7de150a8 chromium/update.sh: don't use remote builders, lots of copying for work 2018-10-12 12:20:35 +02:00
xeji
bde4483d13
flashplayer: 31.0.0.108 -> 31.0.0.122 (#48126)
previous version was removed upstream (404)
2018-10-10 23:49:40 +02:00
taku0
417cbb9307 flashplayer: 30.0.0.154 -> 31.0.0.108 2018-09-14 08:12:12 +09:00
Yuriy Taraday
c098f143b4 chromium: 68.0.3440.106 -> 69.0.3497.81
Also update to build with external gn.
2018-09-07 23:34:47 +04:00
Daiderd Jordan
80aca28e34
harfbuzz: add harfbuzzFull and remove other variants 2018-08-21 21:04:15 +02:00
Herwig Hochleitner
d127b54a29 chromium: 68.0.3440.75 -> 68.0.3440.106
cc @aszlig @YorikSar
2018-08-17 12:48:59 +02:00
Wael M. Nasreddine
9f6b6bc52f
flash: 30.0.0.134 -> 30.0.0.154 2018-08-15 22:07:31 -07:00
Sarah Brofeldt
7679891e2b chromium: Increase build timout to two days 2018-07-30 12:29:58 +02:00
Yuriy Taraday
cd3283f921 chromium: 67.0.3396.99 -> 68.0.3440.75 2018-07-27 14:38:23 +02:00
Jörg Thalheim
218298b30f
Merge branch 'master' into unused5 2018-07-21 15:41:22 +01:00
volth
52f53c69ce pkgs/*: remove unreferenced function arguments 2018-07-21 02:48:04 +00:00
volth
6d2857a311 [bot] treewide: remove unused 'inherit' in let blocks 2018-07-20 19:38:19 +00:00
volth
87f5930c3f [bot]: remove unreferenced code 2018-07-20 18:48:37 +00:00
Yuriy Taraday
06ec2a9f19 chromium: fix 68 (beta) build
Also replace openh264 patch with one landed in upstream.
2018-07-14 23:07:46 +04:00
Yuriy Taraday
c283323c1e chromium: 67.0.3396.87 -> 67.0.3396.99 2018-07-14 01:38:41 +04:00
volth
2dee9d4a80 flash: 30.0.0.113 -> 30.0.0.134 2018-07-11 23:34:16 +00:00
Niklas Hambüchen
95358db956 chromium: Abort build on gn warnings. Fixes #42189.
Also fix such obsolete flags:

* `use_gconf` was already known to become obsolete with Chromium 65
* `enable_hotwording` has been removed in upstream commit d693f0c7ab
2018-06-19 02:56:27 +02:00
Yuriy Taraday
d23da8229b chromium: 67.0.3396.62 -> 67.0.3396.87
Contains fixes for CVE-2018-6148 [0] and CVE-2018-6149 [1].

Also add a patch to fix one problem with 68 (Beta) build. I'm still
working on fixing Beta.

[0] https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop.html
[1] https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop_12.html
2018-06-13 16:28:18 +04:00
Vladyslav Mykhailichenko
16ee92eba9 flashplayer: fix sha256 hash 2018-06-08 01:02:51 +03:00
Vladyslav Mykhailichenko
95aa3f4cc6 flashplayer: 29.0.0.171 -> 30.0.0.113 2018-06-07 22:16:42 +03:00
Yuriy Taraday
a3efa24da9 chromium: bump dev version 2018-05-31 02:50:27 +04:00
Yuriy Taraday
e4810965c0 chromium: fix build for 67 2018-05-31 00:33:42 +04:00
Yuriy Taraday
88007f819d chromium: remove outdated patches 2018-05-31 00:28:51 +04:00
Yuriy Taraday
7acec16226 chromium: 66.0.3359.181 -> 67.0.3396.62
New stable version, with 34 security fixes and site isolation. See
https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop_58.html
2018-05-31 00:27:36 +04:00
Yuriy Taraday
72d7b5ddb1 chromium: fix nix_plugin_paths for 68+ 2018-05-31 00:27:14 +04:00
Yuriy Taraday
584006a85e chromium: fix crashpad build 2018-05-31 00:27:14 +04:00
Yuriy Taraday
272987524a chromium: 66.0.3359.170 -> 66.0.3359.181 2018-05-15 23:58:50 +04:00
Yuriy Taraday
18370267ef chromium: 66.0.3359.139 -> 66.0.3359.170
Update includes 4 security fixes, including one critical (see [0]):

* [835887] Critical: Chain leading to sandbox escape. Reported by Anonymous on 2018-04-23:
* [836858] High CVE-2018-6121: Privilege Escalation in extensions.
* [836141] High CVE-2018-6122: Type confusion in V8.
* [$5000][833721] High CVE-2018-6120: Heap buffer overflow in PDFium.  Reported by Zhou Aiting(@zhouat1) of Qihoo 360 Vulcan Team on 2018-04-17

[0] https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop.html

PS: Didn't build Beta and Dev, verified only Stable for now

cc @bendlas @aszlig
2018-05-12 02:12:04 +04:00
taku0
219b1c1e1b flashplayer: 29.0.0.140 -> 29.0.0.171 2018-05-08 15:14:54 +09:00
Herwig Hochleitner
c07c23b914 chromium: 66.0.3359.117 -> 66.0.3359.139 2018-05-02 02:44:15 +02:00
Léo Gaspard
905b03bce2 chromium: fix build on aarch64
chromium build on aarch64 failed with:
```
FAILED: obj/skia/skia/convolver_neon.o
g++ -MMD -MF obj/skia/skia/convolver_neon.o.d -DV8_DEPRECATION_WARNINGS -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_NSS_CERTS=1 -DUSE_X11=1 -DNO_TCMALLOC -DFULL_SAFE_BROWSING -DSAFE_BROWSING_CSD -DSAFE_BROWSING_DB_LOCAL -DCHROMIUM_BUILD -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_LIBCPP_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCXXABI_DISABLE_VISIBILITY_ANNOTATIONS -DNDEBUG -DNVALGRIND -DDYNAMIC_ANNOTATIONS_ENABLED=0 -DSK_IGNORE_LINEONLY_AA_CONVEX_PATH_OPTS -DSK_HAS_PNG_LIBRARY -DSK_HAS_WEBP_LIBRARY -DSK_HAS_JPEG_LIBRARY -DSK_SUPPORT_GPU=1 -DSK_FREETYPE_MINIMUM_RUNTIME_VERSION=\(\(\(FREETYPE_MAJOR\)\ \*\ 0x01000000\)\ \|\ \(\(FREETYPE_MINOR\)\ \*\ 0x00010000\)\ \|\ \(\(FREETYPE_PATCH\)\ \*\ 0x00000100\)\) -DSK_GAMMA_EXPONENT=1.2 -DSK_GAMMA_CONTRAST=0.2 -DSK_DEFAULT_FONT_CACHE_LIMIT=20971520 -DGLIB_VERSION_MAX_ALLOWED=GLIB_VERSION_2_32 -DGLIB_VERSION_MIN_REQUIRED=GLIB_VERSION_2_26 -DFT_CONFIG_CONFIG_H=\"freetype-custom-config/ftconfig.h\" -DFT_CONFIG_MODULES_H=\"freetype-custom-config/ftmodule.h\" -DFT_CONFIG_OPTIONS_H=\"freetype-custom-config/ftoption.h\" -DPDFIUM_REQUIRED_MODULES -DCHROMIUM_RESTRICT_VISIBILITY -DUSE_LIBJPEG_TURBO=1 -DU_USING_ICU_NAMESPACE=0 -DU_ENABLE_DYLOAD=0 -DU_STATIC_IMPLEMENTATION -DICU_UTIL_DATA_IMPL=ICU_UTIL_DATA_FILE -DUCHAR_TYPE=uint16_t -DUSE_SYSTEM_ZLIB=1 -I../.. -Igen -I../../skia/config -I../../skia/ext -I../../third_party/skia/include/c -I../../third_party/skia/include/config -I../../third_party/skia/include/core -I../../third_party/skia/include/effects -I../../third_party/skia/include/encode -I../../third_party/skia/include/gpu -I../../third_party/skia/include/images -I../../third_party/skia/include/lazy -I../../third_party/skia/include/pathops -I../../third_party/skia/include/pdf -I../../third_party/skia/include/pipe -I../../third_party/skia/include/ports -I../../third_party/skia/include/utils -I../../third_party/skia/src/gpu -I../../third_party/skia/src/sksl -I../../third_party/skia/include/codec -I../../third_party/skia/include/private -I../../third_party/skia/include/client/android -I../../third_party/skia/src/codec -I../../third_party/skia/src/core -I../../third_party/skia/src/image -I../../third_party/skia/src/images -I../../third_party/skia/src/opts -I../../third_party/skia/src/pdf -I../../third_party/skia/src/ports -I../../third_party/skia/src/shaders -I../../third_party/skia/src/shaders/gradients -I../../third_party/skia/src/sfnt -I../../third_party/skia/src/utils -I../../third_party/skia/src/lazy -I../../third_party/skia/third_party/gif -I../../third_party/skia/src/effects/gradients -Igen/shim_headers/libpng_shim -Igen/shim_headers/zlib_shim -I../../third_party/freetype/include -I../../third_party/freetype/src/include -I../../third_party/harfbuzz-ng/src -I../../third_party/libjpeg_turbo -I../../third_party/fontconfig/src -I../../third_party/icu/source/common -I../../third_party/icu/source/i18n -I../../third_party/sfntly/src/cpp/src -fno-strict-aliasing --param=ssp-buffer-size=4 -fstack-protector -Wno-builtin-macro-redefined -D__DATE__= -D__TIME__= -D__TIMESTAMP__= -funwind-tables -fPIC -pipe -pthread -fno-omit-frame-pointer -g0 -fno-builtin-abs -fvisibility=hidden -Wno-unused-local-typedefs -Wno-maybe-uninitialized -Wno-deprecated-declarations -fno-delete-null-pointer-checks -Wno-missing-field-initializers -Wno-unused-parameter -O2 -fno-ident -fdata-sections -ffunction-sections -isystem/nix/store/smmxgfkqaqqh43d5gmv5p3abcq19hkzy-glib-2.56.0-dev/include/glib-2.0 -isystem/nix/store/yn3bbw1sxg19h07wzn16k0ja58wr9yiz-glib-2.56.0/lib/glib-2.0/include -isystem/nix/store/f82jgynysk9mvhyfavfzims41zkskb3c-libpng-apng-1.6.34-dev/include/libpng16 -isystem/nix/store/56i89kfi2nmjrv8hifsz6zikr6pq1avw-zlib-1.2.11-dev/include -std=gnu++14 -fno-exceptions -fno-rtti -nostdinc++ -isystem../../buildtools/third_party/libc++/trunk/include -isystem../../buildtools/third_party/libc++abi/trunk/include -fvisibility-inlines-hidden -Wno-narrowing -c ../../skia/ext/convolver_neon.cc -o obj/skia/skia/convolver_neon.o
../../skia/ext/convolver_neon.cc: In function 'int32x4_t skia::AccumRemainder(const unsigned char*, const Fixed*, int)':
../../skia/ext/convolver_neon.cc:26:65: error: cannot convert '<brace-enclosed initializer list>' to 'int32x4_t {aka __vector(4) int}' in return
   return {remainder[0], remainder[1], remainder[2], remainder[3]};
                                                                 ^
```

The following patch appears to fix this build issue.

Source: b84682f31d%5E%21/#F0
Suggested-by: @dezgeg
2018-04-29 18:38:38 +03:00
Léo Gaspard
a07881c8b8 chromium: skia patch appears to be still needed with 66 on aarch64
Cc @chaoflow @bendlas
Replaces #39628
2018-04-29 18:38:38 +03:00
Sarah Brofeldt
2248f98dea
Merge pull request #39570 from srhb/chromium-24h-timeout
chromium: See if Hydra obeys a 24h meta.timeout
2018-04-26 22:12:16 +02:00
Sarah Brofeldt
537d14f4e2 chromium: See if Hydra obeys a 24h meta.timeout 2018-04-26 21:59:33 +02:00
Herwig Hochleitner
2b29e40153 chromium: 65.0.3325.181 -> 66.0.3359.117
Critical CVE-2018-6085: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-28
Critical CVE-2018-6086: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-30
High CVE-2018-6087: Use after free in WebAssembly. Reported by Anonymous on 2018-02-20
High CVE-2018-6088: Use after free in PDFium. Reported by Anonymous on 2018-03-15
High CVE-2018-6089: Same origin policy bypass in Service Worker. Reported by Rob Wu on 2018-02-04
High CVE-2018-6090: Heap buffer overflow in Skia. Reported by ZhanJia Song on 2018-03-12
High CVE-2018-6091: Incorrect handling of plug-ins by Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-10-05
High CVE-2018-6092: Integer overflow in WebAssembly. Reported by Natalie Silvanovich of Google Project Zero on 2018-03-08
Medium CVE-2018-6093: Same origin bypass in Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-11-01
Medium CVE-2018-6094: Exploit hardening regression in Oilpan. Reported by Chris Rohlf on 2016-08-01
Medium CVE-2018-6095: Lack of meaningful user interaction requirement before file upload. Reported by Abdulrahman Alqabandi (@qab) on 2016-08-11
Medium CVE-2018-6096: Fullscreen UI spoof. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-10-19
Medium CVE-2018-6097: Fullscreen UI spoof. Reported by xisigr of Tencent's Xuanwu Lab on 2018-01-26
Medium CVE-2018-6098: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-03
Medium CVE-2018-6099: CORS bypass in ServiceWorker. Reported by Jun Kokatsu (@shhnjk) on 2018-02-03
Medium CVE-2018-6100: URL spoof in Omnibox. Reported by Lnyas Zhang on 2018-02-11
Medium CVE-2018-6101: Insufficient protection of remote debugging prototol in DevTools . Reported by Rob Wu on 2018-02-19
Medium CVE-2018-6102: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-20
Medium CVE-2018-6103: UI spoof in Permissions. Reported by Khalil Zhani on 2018-02-24
Medium CVE-2018-6104: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-03-08
Medium CVE-2018-6105: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-18
Medium CVE-2018-6106: Incorrect handling of promises in V8. Reported by lokihardt of Google Project Zero on 2018-01-25
Medium CVE-2018-6107: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-02
Medium CVE-2018-6108: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-27
Low CVE-2018-6109: Incorrect handling of files by FileAPI. Reported by Dominik Weber (@DoWeb_) on 2017-04-10
Low CVE-2018-6110: Incorrect handling of plaintext files via file:// . Reported by Wenxiang Qian (aka blastxiang) on 2017-10-24
Low CVE-2018-6111: Heap-use-after-free in DevTools. Reported by Khalil Zhani on 2017-11-02
Low CVE-2018-6112: Incorrect URL handling in DevTools. Reported by Rob Wu on 2017-12-29
Low CVE-2018-6113: URL spoof in Navigation. Reported by Khalil Zhani on 2018-01-25
Low CVE-2018-6114: CSP bypass. Reported by Lnyas Zhang on 2018-02-13
Low CVE-2018-6115: SmartScreen bypass in downloads. Reported by James Feher on 2018-03-07
Low CVE-2018-6116: Incorrect low memory handling in WebAssembly. Reported by Jin from Chengdu Security Response Center of Qihoo 360 Technology Co. Ltd. on 2018-03-15
Low CVE-2018-6117: Confusing autofill settings. Reported by Spencer Dailey on 2018-03-15
Low CVE-2018-6084: Incorrect use of Distributed Objects in Google Software Updater on MacOS. Reported by Ian Beer of Google Project Zero on 2018-03-15
2018-04-21 14:57:45 +02:00
taku0
f92dc58c71 flashplayer: 29.0.0.113 -> 29.0.0.140 2018-04-10 21:14:20 +09:00
Herwig Hochleitner
8cbf295b6c chromium: 65.0.3325.162 -> 65.0.3325.181
dev: 66 -> 67

cc @YorikSar @aszlig
2018-03-26 01:52:11 +02:00
Andrew Childs
3928fd9081 Chromium: fix skia build on aarch64
Patch imported from Arch Linux ARM
2018-03-20 00:20:42 +02:00
Yuriy Taraday
6b0732a956 chromium: 65.0.3325.146 -> 65.0.3325.162
Also bump dev branch to ensure that next beta will work.
2018-03-18 19:15:32 +02:00
taku0
864f4ceba4 flashplayer: 28.0.0.161 -> 29.0.0.113 2018-03-14 20:54:46 +09:00
Yuriy Taraday
ebce42146f chromium: fix GCC 7 related build issues
Also clean up unused patches.
2018-03-10 03:31:55 +04:00
Herwig Hochleitner
9b4ffd98a4 chromium: 64.0.3282.186 -> 65.0.3325.146
see https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.html

cc @aszlig @YorikSar

CVE-2017-11215
CVE-2017-11225
CVE-2018-6060
CVE-2018-6061
CVE-2018-6062
CVE-2018-6057
CVE-2018-6063
CVE-2018-6064
CVE-2018-6065
CVE-2018-6066
CVE-2018-6067
CVE-2018-6068
CVE-2018-6069
CVE-2018-6070
CVE-2018-6071
CVE-2018-6072
CVE-2018-6073
CVE-2018-6074
CVE-2018-6075
CVE-2018-6076
CVE-2018-6077
CVE-2018-6078
CVE-2018-6079
CVE-2018-6080
CVE-2018-6081
CVE-2018-6082
CVE-2018-6083
2018-03-09 03:02:49 +01:00
volth
96ebf614ad chromium, google-chrome: fix escaping of commandLineArgs 2018-03-06 14:56:07 +00:00
Vladimír Čunát
565bd805e6
Merge branch 'master' 2018-03-05 14:53:27 +01:00
Herwig Hochleitner
c2339ed75a chromium: replace ninja workaround with upstream patch
https://github.com/NixOS/nixpkgs/issues/35296

This reverts workaround commit e3cb6e7772.
2018-02-27 00:08:38 +01:00
Herwig Hochleitner
3bae30289c chromium: 64.0.3282.167 -> 64.0.3282.186 2018-02-25 23:56:58 +01:00
Herwig Hochleitner
e3cb6e7772 chromium: build mojo_platform_bindings before chrome
this is an attempt to prevent spurious errors due to parallel make

see https://github.com/NixOS/nixpkgs/issues/35296
2018-02-25 23:56:58 +01:00
Jan Tojnar
a31d98f312
tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
Alexander V. Nikolaev
0acec7e984 treewide: transition mesa to libGLU_combined 2018-02-24 17:06:49 +02:00
Herwig Hochleitner
0d20bf0287 chromium: 64.0.3282.140 -> 64.0.3282.167
[806388] High CVE-2018-6056: Incorrect derived class instantiation in V8. Reported by lokihardt of Google Project Zero on 2018-01-26
2018-02-15 01:22:46 +01:00
taku0
0ff2f9be67 flashplayer: 28.0.0.137 -> 28.0.0.161 2018-02-08 20:51:32 +09:00
Herwig Hochleitner
8c8e8823bb chromium: 64.0.3282.119 -> 64.0.3282.140
[security] https://crbug.com/808163
2018-02-04 17:47:51 +01:00
Herwig Hochleitner
7a2662569d chromium: 63.0.3239.132 -> 64.0.3282.119
CVE-2018-6031
CVE-2018-6032
CVE-2018-6033
CVE-2018-6034
CVE-2018-6035
CVE-2018-6036
CVE-2018-6037
CVE-2018-6038
CVE-2018-6039
CVE-2018-6040
CVE-2018-6041
CVE-2018-6042
CVE-2018-6043
CVE-2018-6045
CVE-2018-6046
CVE-2018-6047
CVE-2018-6048
CVE-2017-15420
CVE-2018-6049
CVE-2018-6050
CVE-2018-6051
CVE-2018-6052
CVE-2018-6053
CVE-2018-6054
2018-01-25 20:34:04 +01:00
Herwig Hochleitner
d585a3207b chromium: fix rpath-overwriting in WideVine plugin 2018-01-22 02:20:09 +01:00
Herwig Hochleitner
6b77189b80 chromium: hide enableWideVine behind a broken flag
ref https://github.com/NixOS/nixpkgs/issues/22333
ref https://github.com/NixOS/nixpkgs/pull/29640

cc @aszlig
2018-01-22 02:20:07 +01:00
Michal Rus
7b062dc57a chromium: Use patchelfUnstable for WideVine plugin
ref #22333
2018-01-22 02:20:03 +01:00
Tuomas Tynkkynen
a8d0b805b1 chromium: Attempt building on aarch64
This will probably go over the 10 hour limit, but we'll see.
2018-01-22 00:42:59 +02:00
Andrew Childs
e8926be6bf chromium: Configure aarch64 toolchain 2018-01-22 00:41:03 +02:00
John Ericson
e017a027d5
Merge pull request #33681 from obsidiansystems/fixed-output-deps
Fixed output deps
2018-01-10 14:28:10 -05:00
John Ericson
888404f11b treewide: Fix deps in a few other fixed output derivations 2018-01-10 11:18:44 -05:00
taku0
4780cc70bd flashplayer: 28.0.0.126 -> 28.0.0.137 2018-01-09 15:15:11 +09:00
Herwig Hochleitner
dbb774c5e1 chromium: update 63.0.3239.108 -> 63.0.3239.132
this introduces a standard approach to playing with patches from the
gentoo repository.

the patches for 64 are a first guess during a build in progress

cc @YorikSar @aszlig
2018-01-09 02:20:07 +01:00
Vladimír Čunát
0c5f5ba61d
Merge #32718: chromium: 63.0.3239.84 -> 63.0.3239.108 2017-12-16 09:04:21 +01:00
Yuriy Taraday
2733530a66 chromium: 63.0.3239.84 -> 63.0.3239.108
New stable release with 2 security fixes [0].

Version 64 has been promoted to Beta, build still doesn't work.

[0] https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop_14.html
2017-12-15 22:22:55 +04:00
taku0
774786b54d flashplayer: 27.0.0.187 -> 28.0.0.126 2017-12-13 20:08:07 +09:00
Yuriy Taraday
994a614ca3 chromium: 62.0.3202.94 -> 63.0.3239.84
New stable release with bunch of security fixes and other changes [0]

Also:
* remove patch for dev already landed upstream
* remove patches specific to version 62
* dev is broken again, need to investigate failures

[0] https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html
2017-12-09 01:12:32 +01:00
Samuel Leathers
8f75c783cd
Merge pull request #31660 from taku0/flashplayer-27.0.0.187
flashplayer: 27.0.0.183 -> 27.0.0.187
2017-11-15 08:27:39 -05:00
Yuriy Taraday
a472c57ffc chromium: 62.0.3202.89 -> 62.0.3202.94
Also bump beta version.
2017-11-15 01:18:01 +01:00
taku0
dd3d1cf6e1 flashplayer: 27.0.0.183 -> 27.0.0.187 2017-11-14 15:15:25 +09:00
Guillaume Maudoux
84fb41dd26 chromium: hardcode xdg_utils path in system calls
ref #23518
2017-11-10 01:26:35 +01:00
Guillaume Maudoux
c7f00e361e chromium: fix .desktop file name
The desktop file must be name "chromium-browser.desktop" because it is
used as-is when setting chromium as the default browser.

See https://cs.chromium.org/chromium/src/chrome/browser/shell_integration_linux.cc?l=657&rcl=34b92857a547538555be6a38e95f7e95ab9b6842

fixes #23518
2017-11-10 01:25:31 +01:00
Yuriy Taraday
7105bb68cc chromium: 62.0.3202.75 -> 62.0.3202.89
Includes security fixes for CVE-2017-15398 and CVE-2017-15399.

Also fixes builds for beta and dev branches:
- backport https://webrtc-review.googlesource.com/9384 to fix build for
  new webrtc revision
- for dev branch fix gn bootstrap, see
  https://chromium-review.googlesource.com/758584
- for 63+ manpage now is not generated during ninja build, it is
  processed with sed using packagers tools included in sources
2017-11-10 01:19:23 +01:00
Yuriy Taraday
da3c404e58 chromium: 62.0.3202.62 -> 62.0.3202.75
also fix beta/dev build - use harfbuzz from sources

Unfortunatelly after [0] chromium doesn't support using harfbuzz provided by
system while using vendored version of freetype.
Disabling usage of separate harfbuzz for now.

[0] https://chromium-review.googlesource.com/c/chromium/src/+/696241
2017-10-28 11:45:31 +02:00
taku0
9211249031 flashplayer: 27.0.0.170 -> 27.0.0.183 2017-10-25 22:43:23 +09:00
Yuriy Taraday
f0a0f02b22 chromium: 61.0.3163.100 -> 62.0.3202.62
Also updated most of patches according to their state in Gentoo
repository, deleted ones that are not applicable anymore.
2017-10-21 15:55:42 +02:00
taku0
a060b850f6 flashplayer: 27.0.0.159 -> 27.0.0.170 2017-10-17 13:59:54 +02:00
Herwig Hochleitner
30b3b5d85f announce myself as a maintainer
added maintainer entries for `cdemu` (which i've created), as well as
`wine` and `chromium` (which I regularly contribute to)
2017-10-14 11:11:49 +02:00
taku0
628c039326 flashplayer: 27.0.0.130 -> 27.0.0.159 2017-10-10 23:28:28 +09:00
Robin Gloster
c8a2265513
Revert "chromium: take into account new nss header layout"
This reverts commit df41edfe1c.
2017-10-09 20:50:02 +02:00
Michael Raskin
df41edfe1c chromium: take into account new nss header layout 2017-10-09 18:15:30 +02:00