pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/www/firefox firefox: Update to 95.0



details:   https://anonhg.NetBSD.org/pkgsrc/rev/74430019fc68
branches:  trunk
changeset: 770917:74430019fc68
user:      ryoon <ryoon%pkgsrc.org@localhost>
date:      Sat Dec 11 14:10:01 2021 +0000

description:
firefox: Update to 95.0

Changelog:
New

  * RLBox --- a new technology that hardens Firefox against potential security
    vulnerabilities in third-party libraries --- is now enabled on all
    platforms.

  * Good news! You can now download Firefox from the Microsoft Store on Windows
    10 and Windows 11 platforms.

  * We've reduced CPU usage on macOS in Firefox and WindowServer during event
    processing.

  * We've also reduced the power usage of software decoded video on macOS,
    especially in fullscreen. This includes streaming sites such as Netflix and
    Amazon Prime Video.

  * You can now move the Picture-in-Picture toggle button to the opposite side
    of the video. Simply look for the new context menu option Move
    Picture-in-Picture Toggle to Left (Right) Side.

  * To better protect Firefox users against side-channel attacks such as
    Spectre, Site Isolation is now enabled for all Firefox 95 users.

Fixed

  * After starting Firefox, users of the JAWS screen reader and ZoomText
    magnifier will no longer need to switch applications in order to access
    Firefox.

  * You'll find the state of controls using the ARIA switch role is now
    correctly reported by Mac OS VoiceOver.

  * You'll see a faster content process startup on macOS.

  * We've also made memory allocator improvements.

  * And we've improved page load performance by speculatively compiling
    JavaScript ahead of time.

  * Various security fixes

Changed

  * We've added a User Agent override for Slack.com, which allows Firefox
    users to use more Call features and have access to Huddles.

Security fixes:
Mozilla Foundation Security Advisory 2021-52

#CVE-2021-43536: URL leakage when navigating while executing asynchronous
 function
#CVE-2021-43537: Heap buffer overflow when using structured clone
#CVE-2021-43538: Missing fullscreen and pointer lock notification when
 requesting both
#CVE-2021-43539: GC rooting failure when calling wasm instance methods
#MOZ-2021-0010: Use-after-free in fullscreen objects on MacOS
#CVE-2021-43540: WebExtensions could have installed persistent ServiceWorkers
#CVE-2021-43541: External protocol handler parameters were unescaped
#CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of
 an external protocol handler
#CVE-2021-43543: Bypass of CSP sandbox directive when embedding
#CVE-2021-43544: Receiving a malicious URL as text through a SEND intent could
 have led to XSS
#CVE-2021-43545: Denial of Service when using the Location API in a loop
#CVE-2021-43546: Cursor spoofing could overlay user interface when native
 cursor is zoomed
#MOZ-2021-0009: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

diffstat:

 www/firefox/Makefile                                          |  12 +++---
 www/firefox/distinfo                                          |  18 ++++----
 www/firefox/mozilla-common.mk                                 |   4 +-
 www/firefox/patches/patch-config_makefiles_rust.mk            |   8 ++--
 www/firefox/patches/patch-gfx_thebes_gfxPlatform.cpp          |  22 -----------
 www/firefox/patches/patch-layout_style_extra-bindgen-flags.in |  10 +++++
 6 files changed, 32 insertions(+), 42 deletions(-)

diffs (150 lines):

diff -r 695e997d1739 -r 74430019fc68 www/firefox/Makefile
--- a/www/firefox/Makefile      Sat Dec 11 14:08:47 2021 +0000
+++ b/www/firefox/Makefile      Sat Dec 11 14:10:01 2021 +0000
@@ -1,18 +1,18 @@
-# $NetBSD: Makefile,v 1.502 2021/12/08 16:06:55 adam Exp $
+# $NetBSD: Makefile,v 1.503 2021/12/11 14:10:01 ryoon Exp $
 
 FIREFOX_VER=           ${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
-MOZ_BRANCH=            94.0
-MOZ_BRANCH_MINOR=      .2
+MOZ_BRANCH=            95.0
+MOZ_BRANCH_MINOR=      
 
 DISTNAME=      firefox-${FIREFOX_VER}.source
 PKGNAME=       ${DISTNAME:S/.source//:S/b/beta/:S/esr//}
-PKGREVISION=   1
 CATEGORIES=    www
 MASTER_SITES+= ${MASTER_SITE_MOZILLA:=firefox/releases/${FIREFOX_VER}/source/}
 EXTRACT_SUFX=  .tar.xz
 
-DISTFILES=     ${DEFAULT_DISTFILES} nodejs-output-94.0.tgz
-SITES.nodejs-output-94.0.tgz=  ${MASTER_SITE_LOCAL}
+NODEJSKIT=     nodejs-output-95.0.tgz
+DISTFILES=     ${DEFAULT_DISTFILES} ${NODEJSKIT}
+SITES.${NODEJSKIT}=    ${MASTER_SITE_LOCAL}
 
 MAINTAINER=    ryoon%NetBSD.org@localhost
 HOMEPAGE=      https://www.mozilla.org/en-US/firefox/
diff -r 695e997d1739 -r 74430019fc68 www/firefox/distinfo
--- a/www/firefox/distinfo      Sat Dec 11 14:08:47 2021 +0000
+++ b/www/firefox/distinfo      Sat Dec 11 14:10:01 2021 +0000
@@ -1,21 +1,20 @@
-$NetBSD: distinfo,v 1.454 2021/11/25 14:33:41 ryoon Exp $
+$NetBSD: distinfo,v 1.455 2021/12/11 14:10:01 ryoon Exp $
 
-BLAKE2s (firefox-94.0.2.source.tar.xz) = e447c494a13a9cab76843bd5976e46756bd5369d2ceec32781b59156473f5436
-SHA512 (firefox-94.0.2.source.tar.xz) = 00ce4f6be711e1f309828e030163e61bbd9fe3364a8e852e644177c93832078877dea1a516719b106a52c0d8462193ed52c1d3cc7ae34ea021eb1dd0f5b685e2
-Size (firefox-94.0.2.source.tar.xz) = 382896780 bytes
-BLAKE2s (nodejs-output-94.0.tgz) = c763e334427a0a861e1667e34b361d19474659cc045b7ed3ebfe8864d632c7cb
-SHA512 (nodejs-output-94.0.tgz) = 31aac9132a830877f4bf38575160d60f150a847e8c6c070db5fad4a83ad54cad4e7701c598d4808d89413e7d9ca40e10d751203a2f162e96c47fedd60de1dc9e
-Size (nodejs-output-94.0.tgz) = 200548 bytes
+BLAKE2s (firefox-95.0.source.tar.xz) = 2cf104a9e2c7161ef19617214307aa8eacfa9527cde3ed0152211e448dff2ccb
+SHA512 (firefox-95.0.source.tar.xz) = 350672a2cd99195c67dafc0e71c6eaf1e23e85a5fe92775697119a054f17c34a736035e23d7f2bb404b544f0f144efef3843cfc293596a6e61d1ea36efc3a724
+Size (firefox-95.0.source.tar.xz) = 382853940 bytes
+BLAKE2s (nodejs-output-95.0.tgz) = c44b37d3605524a49157002f01c29f568f04194b0e635bc312de7ffdeb9a74c9
+SHA512 (nodejs-output-95.0.tgz) = 2faf326f4e100b66f8597c365cc2eb5d0eee26aae92a7e2446891f2178041aa71ba16eae37000acacd43a657025ec11c18db73b112f5c49cc21cdb882da6d798
+Size (nodejs-output-95.0.tgz) = 200627 bytes
 SHA1 (patch-aa) = 15b8567cee2af9853f6949c80345ffcb1fd3852a
 SHA1 (patch-browser_app_profile_firefox.js) = 89cea0a66457c96ad0b94aaa524aa5942ad781d0
 SHA1 (patch-build_moz.configure_rust.configure) = 25ddfacd29cebbc6db005dbe61a2a7446d480678
 SHA1 (patch-config_gcc-stl-wrapper.template.h) = 9d1f15ff487efa9202114d19ed5668b4e7aa032a
-SHA1 (patch-config_makefiles_rust.mk) = 9a49c534707100c27c1fac06c82ec9245d17898b
+SHA1 (patch-config_makefiles_rust.mk) = fa9f0f59a179cae2562a76110fada49039490fb8
 SHA1 (patch-dom_base_nsAttrName.h) = ac7ba441a3b27df2855cf2673eea36b1cb44ad49
 SHA1 (patch-gfx_angle_checkout_src_common_third__party_smhasher_src_PMurHash.cpp) = e458c9c8dc66edc69c1874734af28a77fc5e3993
 SHA1 (patch-gfx_angle_checkout_src_compiler_translator_InfoSink.h) = b2adce9e65662283a11b6dcff40e95523e940045
 SHA1 (patch-gfx_skia_skia_src_core_SkCpu.cpp) = 36218819254f3681b9c717d652ea78c9f20d49ad
-SHA1 (patch-gfx_thebes_gfxPlatform.cpp) = 76c244e4e9f947c027feaf516c9b435dfb92ab2b
 SHA1 (patch-gfx_wr_swgl_build.rs) = df6ebfaabb4d27994e59a9d0eaf12c7cf08415fb
 SHA1 (patch-ipc_chromium_src_base_message__pump__libevent.cc) = 4a6606da590cfb8d855bde58b9c6f90e98d0870c
 SHA1 (patch-ipc_chromium_src_base_platform__thread__posix.cc) = 35d20981d33ccdb1d8ffb8039e48798777f11658
@@ -24,6 +23,7 @@
 SHA1 (patch-js_src_jit_arm64_vixl_MozCpu-vixl.cpp) = fdc522e3fb626b1b8a2ebf19ad60bfc25dfa4183
 SHA1 (patch-js_src_util_NativeStack.cpp) = a0a16d8d8d78d3cc3f4d2a508586f1a7821f7dba
 SHA1 (patch-js_src_vm_ArrayBufferObject.cpp) = 0501fdcae11568ae4ea78e0d2f6b3750b7a67d47
+SHA1 (patch-layout_style_extra-bindgen-flags.in) = e6c3b68d887c112dacf6c2782e776dc55723eaec
 SHA1 (patch-media_ffvpx_libavutil_arm_bswap.h) = de58daa0fd23d4fec50426602b65c9ea5862558a
 SHA1 (patch-media_libcubeb_src_cubeb__alsa.c) = 2ef11da83c90c41490db4c0d9809c3e1826b488a
 SHA1 (patch-media_libcubeb_src_moz.build) = e4e64a1135cf4157ae5b6f7c1710ebd076953479
diff -r 695e997d1739 -r 74430019fc68 www/firefox/mozilla-common.mk
--- a/www/firefox/mozilla-common.mk     Sat Dec 11 14:08:47 2021 +0000
+++ b/www/firefox/mozilla-common.mk     Sat Dec 11 14:10:01 2021 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: mozilla-common.mk,v 1.211 2021/11/12 20:14:31 gutteridge Exp $
+# $NetBSD: mozilla-common.mk,v 1.212 2021/12/11 14:10:01 ryoon Exp $
 #
 # common Makefile fragment for mozilla packages based on gecko 2.0.
 #
@@ -104,6 +104,8 @@
 
 #CONFIGURE_ARGS+=      --with-libclang-path=${PREFIX}/lib
 
+CONFIGURE_ARGS+=       --without-wasm-sandboxed-libraries
+
 SUBST_CLASSES+=                        fix-paths
 SUBST_STAGE.fix-paths=         pre-configure
 SUBST_MESSAGE.fix-paths=       Fixing absolute paths.
diff -r 695e997d1739 -r 74430019fc68 www/firefox/patches/patch-config_makefiles_rust.mk
--- a/www/firefox/patches/patch-config_makefiles_rust.mk        Sat Dec 11 14:08:47 2021 +0000
+++ b/www/firefox/patches/patch-config_makefiles_rust.mk        Sat Dec 11 14:10:01 2021 +0000
@@ -1,9 +1,9 @@
-$NetBSD: patch-config_makefiles_rust.mk,v 1.8 2021/11/11 16:48:04 ryoon Exp $
+$NetBSD: patch-config_makefiles_rust.mk,v 1.9 2021/12/11 14:10:01 ryoon Exp $
 
 NetBSD doesn't get along with parallel rust builds (it causes issues
 with ld.so) which are the default. Force -j1.
 
---- config/makefiles/rust.mk.orig      2021-10-28 18:58:50.000000000 +0000
+--- config/makefiles/rust.mk.orig      2021-11-25 21:18:06.000000000 +0000
 +++ config/makefiles/rust.mk
 @@ -58,6 +58,9 @@ ifdef MOZ_TSAN
  cargo_build_flags += -Zbuild-std=std,panic_abort
@@ -13,5 +13,5 @@
 +cargo_build_flags += -j1
 +endif
  
- # These flags are passed via `cargo rustc` and only apply to the final rustc
- # invocation (i.e., only the top-level crate, not its dependencies).
+ rustflags_sancov =
+ ifdef LIBFUZZER
diff -r 695e997d1739 -r 74430019fc68 www/firefox/patches/patch-gfx_thebes_gfxPlatform.cpp
--- a/www/firefox/patches/patch-gfx_thebes_gfxPlatform.cpp      Sat Dec 11 14:08:47 2021 +0000
+++ /dev/null   Thu Jan 01 00:00:00 1970 +0000
@@ -1,22 +0,0 @@
-$NetBSD: patch-gfx_thebes_gfxPlatform.cpp,v 1.8 2021/10/15 13:00:05 ryoon Exp $
-
-Don't rely on CrossProcessSemaphore on NetBSD. It has some implementation
-issues that cause issues (kern/55386, not available on NetBSD<9)
-
-This idea is borrowed from macOS which has the same limitation.
-
---- gfx/thebes/gfxPlatform.cpp.orig    2021-09-23 21:25:31.000000000 +0000
-+++ gfx/thebes/gfxPlatform.cpp
-@@ -2793,7 +2793,12 @@ bool gfxPlatform::UsesOffMainThreadCompo
- }
- 
- bool gfxPlatform::UsesTiling() const {
-+#ifdef __NetBSD__
-+  // Avoid relying on CrossProcessSemaphore
-+  return true;
-+#else
-   return StaticPrefs::layers_enable_tiles_AtStartup();
-+#endif
- }
- 
- /***
diff -r 695e997d1739 -r 74430019fc68 www/firefox/patches/patch-layout_style_extra-bindgen-flags.in
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/www/firefox/patches/patch-layout_style_extra-bindgen-flags.in     Sat Dec 11 14:10:01 2021 +0000
@@ -0,0 +1,10 @@
+$NetBSD: patch-layout_style_extra-bindgen-flags.in,v 1.1 2021/12/11 14:10:01 ryoon Exp $
+
+Fix build failure, unicode/uenum.h not found error.
+https://hg.mozilla.org/integration/autoland/rev/b6be0f1bccf7
+
+--- layout/style/extra-bindgen-flags.in.orig   2021-11-25 21:18:46.000000000 +0000
++++ layout/style/extra-bindgen-flags.in
+@@ -1 +1 @@
+-@BINDGEN_SYSTEM_FLAGS@ @NSPR_CFLAGS@ @MOZ_PIXMAN_CFLAGS@
++@BINDGEN_SYSTEM_FLAGS@ @NSPR_CFLAGS@ @MOZ_PIXMAN_CFLAGS@ @MOZ_ICU_CFLAGS@



Home | Main Index | Thread Index | Old Index