CVS commit: pkgsrc/www/firefox

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www/firefox
From: "Ryo ONODERA" <ryoon%netbsd.org@localhost>
Date: Mon, 12 Aug 2024 14:03:33 +0000

Module Name:    pkgsrc
Committed By:   ryoon
Date:           Mon Aug 12 14:03:33 UTC 2024

Modified Files:
        pkgsrc/www/firefox: Makefile distinfo
        pkgsrc/www/firefox/files: node-wrapper.sh
Added Files:
        pkgsrc/www/firefox/patches:
            patch-python_mozbuild_mozbuild_backend_recursivemake.py
            patch-third__party_sqlite3_ext_moz.build

Log Message:
www/firefox: Update to 129.0

Changelog:
129.0:
New

  * Reader View now has an enhanced Text and Layout menu with new options for
    character spacing, word spacing, and text alignment. These changes offer a
    more accessible reading experience.

  * Reader View now has a Theme menu with additional Contrast and Gray options.
    You can also select custom colors for text, background, and links from the
    Custom tab.

  * A tab preview is now displayed when hovering the mouse over background
    tabs, making it easier to locate the desired tab without needing to switch
    tabs.

    This feature is part of a progressive roll out.

  * HTTPS is replacing HTTP as the default protocol in the address bar on
    non-local sites. If a site is not available via HTTPS, Firefox will fall
    back to HTTP.

  * HTTPS DNS records can now be resolved with the operating system's DNS
    resolver on specific platforms (Windows 11, Linux, Android 10+). Previously
    this required DNS over HTTPS to be enabled. This capability allows the use
    of HTTP/3 without needing to use the Alt-Svc header, upgrades requests to
    HTTPS when the DNS record is present, and enables wider use of ECH.

  * Added support for multiple languages in the same document spoken in macOS
    VoiceOver.

  * Address Autofill is now enabled for users in France and Germany.

Fixed

  * Various security fixes.

#

Enterprise

  * You can find information about policy updates and enterprise specific bug
    fixes in the Firefox for Enterprise 129 Release Notes.

Security fixes:
Mozilla Foundation Security Advisory 2024-33
#CVE-2024-7518: Fullscreen notification dialog can be obscured by document
 content
#CVE-2024-7519: Out of bounds memory access in graphics shared memory handling
#CVE-2024-7520: Type confusion in WebAssembly
#CVE-2024-7521: Incomplete WebAssembly exception handing
#CVE-2024-7522: Out of bounds read in editor component
#CVE-2024-7523: Document content could partially obscure security prompts
#CVE-2024-7524: CSP strict-dynamic bypass using web-compatibility shims
#CVE-2024-7525: Missing permission check when creating a StreamFilter
#CVE-2024-7526: Uninitialized memory used by WebGL
#CVE-2024-7527: Use-after-free in JavaScript garbage collection
#CVE-2024-7528: Use-after-free in IndexedDB
#CVE-2024-7529: Document content could partially obscure security prompts
#CVE-2024-7530: Use-after-free in JavaScript code coverage collection
#CVE-2024-7531: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel
 Sandy Bridge machines


To generate a diff of this commit:
cvs rdiff -u -r1.605 -r1.606 pkgsrc/www/firefox/Makefile
cvs rdiff -u -r1.536 -r1.537 pkgsrc/www/firefox/distinfo
cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/firefox/files/node-wrapper.sh
cvs rdiff -u -r0 -r1.1 \
    pkgsrc/www/firefox/patches/patch-python_mozbuild_mozbuild_backend_recursivemake.py \
    pkgsrc/www/firefox/patches/patch-third__party_sqlite3_ext_moz.build

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/www/firefox/Makefile
diff -u pkgsrc/www/firefox/Makefile:1.605 pkgsrc/www/firefox/Makefile:1.606
--- pkgsrc/www/firefox/Makefile:1.605   Thu Aug  1 15:41:09 2024
+++ pkgsrc/www/firefox/Makefile Mon Aug 12 14:03:32 2024
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.605 2024/08/01 15:41:09 ryoon Exp $
+# $NetBSD: Makefile,v 1.606 2024/08/12 14:03:32 ryoon Exp $
 
 FIREFOX_VER=           ${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
-MOZ_BRANCH=            128.0
-MOZ_BRANCH_MINOR=      .3
+MOZ_BRANCH=            129.0
+MOZ_BRANCH_MINOR=      
 
 DISTNAME=      firefox-${FIREFOX_VER}.source
 PKGNAME=       ${DISTNAME:S/.source//:S/b/beta/:S/esr//}
@@ -11,7 +11,7 @@ MASTER_SITES+=        ${MASTER_SITE_MOZILLA:=fi
 MASTER_SITES+= ${MASTER_SITE_MOZILLA_ALL:=firefox/releases/${FIREFOX_VER}/source/}
 EXTRACT_SUFX=  .tar.xz
 
-NODEJSKIT=             nodejs-output-128.0.tgz
+NODEJSKIT=             nodejs-output-129.0.tgz
 DISTFILES=             ${DEFAULT_DISTFILES} ${NODEJSKIT}
 SITES.${NODEJSKIT}=    ${MASTER_SITE_LOCAL}
 

Index: pkgsrc/www/firefox/distinfo
diff -u pkgsrc/www/firefox/distinfo:1.536 pkgsrc/www/firefox/distinfo:1.537
--- pkgsrc/www/firefox/distinfo:1.536   Sat Aug  3 02:06:31 2024
+++ pkgsrc/www/firefox/distinfo Mon Aug 12 14:03:32 2024
@@ -1,11 +1,11 @@
-$NetBSD: distinfo,v 1.536 2024/08/03 02:06:31 tsutsui Exp $
+$NetBSD: distinfo,v 1.537 2024/08/12 14:03:32 ryoon Exp $
 
-BLAKE2s (firefox-128.0.3.source.tar.xz) = 7e30e975b8627c54df7df00dd68afe64cbc8afdf0376f490ea27da52888e0c1f
-SHA512 (firefox-128.0.3.source.tar.xz) = 52a0a1a6fa653f5a621a9e16e1937760c05a5ebc81a058ecc16b2c3d29d09d418dc5129deabed86ad2f82abdb3100969478a67f48b11616dc3b3e3698a1acf51
-Size (firefox-128.0.3.source.tar.xz) = 563698520 bytes
-BLAKE2s (nodejs-output-128.0.tgz) = a55b907ebe308948b99b9150d2530204c8fe2a5fda5ac371dd1163a6db43bcbc
-SHA512 (nodejs-output-128.0.tgz) = fba59ec14c43556749cac7a9233278e8dcd7779d5ba530ede67009bf1887c5d72dd31e3f440164b646738b465d852b882522caf7ed9aa4f81f53e588bdd3adec
-Size (nodejs-output-128.0.tgz) = 227482 bytes
+BLAKE2s (firefox-129.0.source.tar.xz) = 6c1d2ac7d11cac87cab61cb7a24990fd0ee0f0661beea097329f3532b4f3a74d
+SHA512 (firefox-129.0.source.tar.xz) = e406d00dc53c66a1ee6b56e7001efcdd8b323caa3676d66d874d39a99f44ac7cebf4c60d76b5d239ebcf834a75cecabf801a74a1d08a97a66ea5e8ec6c8f7c5b
+Size (firefox-129.0.source.tar.xz) = 568302640 bytes
+BLAKE2s (nodejs-output-129.0.tgz) = 79553f02d008686292c9bda2a2f3ec091e80ec757d746c21a705af2c93812504
+SHA512 (nodejs-output-129.0.tgz) = cf7e4833e3dc8da7ac0184bb6db108c33790708b0ba77659c5c097469f1322a95cfdb61347deb67b531551ddcde8593c14ced2bb5f89ec3854eea22defd33695
+Size (nodejs-output-129.0.tgz) = 228598 bytes
 SHA1 (patch-browser_app_profile_firefox.js) = bc719edef37d18655ba79b030270438ee166fdaf
 SHA1 (patch-build_moz.configure_init.configure) = 65deb3c233df0aab81eb1fca05d708e5a4ed169a
 SHA1 (patch-build_moz.configure_rust.configure) = 25ddfacd29cebbc6db005dbe61a2a7446d480678
@@ -32,6 +32,7 @@ SHA1 (patch-media_libtheora_lib_info.c) 
 SHA1 (patch-modules_fdlibm_src_math__private.h) = e20b6c23011d7123cbbd64a500eb8ce8c426620e
 SHA1 (patch-netwerk_protocol_http_nsHttpHandler.cpp) = 8e1d9a0746b637f5f4259e448e72172cfb08b23f
 SHA1 (patch-nsprpub_pr_src_pthreads_ptsynch.c) = b0d1f6a6e0eb852b0fd0238ad3f8ed3166c60a50
+SHA1 (patch-python_mozbuild_mozbuild_backend_recursivemake.py) = d95a09c2e7a25888d6009dfe169ba459783dead4
 SHA1 (patch-security_nss_lib_freebl_mpi_mpi.c) = a7cd867916524770609d1c307a65b315b88456f4
 SHA1 (patch-third__party_js_cfworker_build.sh) = 46cdf97b99cf01080f290ae8d9a33b5f869fc3e4
 SHA1 (patch-third__party_libwebrtc_modules_desktop__capture_desktop__capture__gn_moz.build) = d0454784eb72be49162f619579e060a0de3c480f
@@ -40,6 +41,7 @@ SHA1 (patch-third__party_libwebrtc_modul
 SHA1 (patch-third__party_libwebrtc_modules_video__capture_linux_video__capture__v4l2.cc) = 8111952a107eb2cd665525ddd0e27c79eee3c1cd
 SHA1 (patch-third__party_libwebrtc_rtc__base_physical__socket__server.cc) = 6909c4da9e7b3785252e5bce9be0ff47ebb87e01
 SHA1 (patch-third__party_libwebrtc_system__wrappers_source_cpu__features__linux.cc) = b90e22b50879f7adcc1da3a993f52c0701b720f8
+SHA1 (patch-third__party_sqlite3_ext_moz.build) = 2df374daa1c974b52db602613508e4fc965a7bcd
 SHA1 (patch-third__party_sqlite3_src_moz.build) = b26856a4b87aa12211575d9982f62dc899474b52
 SHA1 (patch-third__party_wasm2c_src_prebuilt_wasm2c__source__includes.cc) = 99d0db944f0c2d0c623460991efd423d9127c988
 SHA1 (patch-toolkit_components_terminator_nsTerminator.cpp) = e905e38ef1b88d764c695c019f15609350c1c43b

Index: pkgsrc/www/firefox/files/node-wrapper.sh
diff -u pkgsrc/www/firefox/files/node-wrapper.sh:1.20 pkgsrc/www/firefox/files/node-wrapper.sh:1.21
--- pkgsrc/www/firefox/files/node-wrapper.sh:1.20       Thu Aug  1 15:41:09 2024
+++ pkgsrc/www/firefox/files/node-wrapper.sh    Mon Aug 12 14:03:32 2024
@@ -1,6 +1,6 @@
 #! /bin/sh
 
-VERS=v22.4.1
+VERS=v22.5.1
 
 if [ "$1" = "-v" ] || [ "$1" = "--version" ]; then
        printf "${VERS}\n"

Added files:

Index: pkgsrc/www/firefox/patches/patch-python_mozbuild_mozbuild_backend_recursivemake.py
diff -u /dev/null pkgsrc/www/firefox/patches/patch-python_mozbuild_mozbuild_backend_recursivemake.py:1.1
--- /dev/null   Mon Aug 12 14:03:33 2024
+++ pkgsrc/www/firefox/patches/patch-python_mozbuild_mozbuild_backend_recursivemake.py  Mon Aug 12 14:03:32 2024
@@ -0,0 +1,27 @@
+$NetBSD: patch-python_mozbuild_mozbuild_backend_recursivemake.py,v 1.1 2024/08/12 14:03:32 ryoon Exp $
+
+* As of 129.0, libxul.so is built with -Wl,-z,defs (no undefined references).
+  Supply memalign() from fallback.cpp (Unified_cpp_memory_build0) for NetBSD.
+  This approach is completely incorrect, however I do not find the correct
+  way to include Unified_cpp_memory_build0.o to objs yet.
+
+--- python/mozbuild/mozbuild/backend/recursivemake.py.orig     2024-08-01 17:32:03.000000000 +0000
++++ python/mozbuild/mozbuild/backend/recursivemake.py
+@@ -73,6 +73,8 @@ from ..util import FileAvoidWrite, ensur
+ from .common import CommonBackend
+ from .make import MakeBackend
+ 
++import buildconfig
++
+ # To protect against accidentally adding logic to Makefiles that belong in moz.build,
+ # we check if moz.build-like variables are defined in Makefiles. If they are, we throw
+ # an error to encourage the usage of moz.build instead.
+@@ -1427,6 +1429,8 @@ class RecursiveMakeBackend(MakeBackend):
+             return os.path.normpath(mozpath.relpath(path, obj.objdir))
+ 
+         objs, shared_libs, os_libs, static_libs = self._expand_libs(obj)
++        if buildconfig.substs["OS_ARCH"] == "NetBSD" and obj.name == "libxul.so":
++            objs.append("memory/build/Unified_cpp_memory_build0.o")
+ 
+         obj_target = obj.name
+         if isinstance(obj, (Program, SharedLibrary)):
Index: pkgsrc/www/firefox/patches/patch-third__party_sqlite3_ext_moz.build
diff -u /dev/null pkgsrc/www/firefox/patches/patch-third__party_sqlite3_ext_moz.build:1.1
--- /dev/null   Mon Aug 12 14:03:33 2024
+++ pkgsrc/www/firefox/patches/patch-third__party_sqlite3_ext_moz.build Mon Aug 12 14:03:32 2024
@@ -0,0 +1,13 @@
+$NetBSD: patch-third__party_sqlite3_ext_moz.build,v 1.1 2024/08/12 14:03:32 ryoon Exp $
+
+--- third_party/sqlite3/ext/moz.build.orig     2024-08-06 01:06:04.545236415 +0000
++++ third_party/sqlite3/ext/moz.build
+@@ -20,7 +20,7 @@ SOURCES += [
+     "fts5.c",
+ ]
+ 
+-if CONFIG["OS_TARGET"] == "Linux" or CONFIG["OS_TARGET"] == "Android":
++if CONFIG["OS_TARGET"] == "Linux" or CONFIG["OS_TARGET"] == "Android" or CONFIG["OS_TARGET"] == "FreeBSD" or CONFIG["OS_TARGET"] == "NetBSD" or CONFIG["OS_TARGET"] == "OpenBSD":
+     OS_LIBS += [
+         "m",
+     ]

Prev by Date: CVS commit: pkgsrc/math/QXlsx
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/math/QXlsx
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index