Commit Graph

5905 Commits

Author SHA1 Message Date
Michael Weiss
ac10e9551d
chromium: 105.0.5195.52 -> 105.0.5195.102
https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop.html

This update includes 1 security fix. Google is aware of reports that an exploit
for CVE-2022-3075 exists in the wild.

CVEs:
CVE-2022-3075
2022-09-03 00:10:06 +02:00
Michael Weiss
b0e9b6d301
Merge pull request #189033 from primeos/chromium
chromium: 104.0.5112.101 -> 105.0.5195.52
2022-09-03 00:09:47 +02:00
Michael Weiss
83ada3da7a
chromiumBeta: 105.0.5195.52 -> 106.0.5249.21 2022-09-02 23:56:27 +02:00
Michael Weiss
f408eee926
chromiumDev: 106.0.5249.12 -> 106.0.5249.21 2022-09-02 23:55:10 +02:00
Michael Weiss
d932886d6e
chromium: Fix the build
The build was failing with the following error:
```
[18950/51180] SOLINK ./libvk_swiftshader.sotls_transport_interface/dtls_transport_interface.omputils.o[K.otch.oos.oKx/unbundle:default)fault)ault)
FAILED: libvk_swiftshader.so libvk_swiftshader.so.TOC
python3 "../../build/toolchain/gcc_solink_wrapper.py" --readelf="readelf" --nm="nm"  --sofile="./libvk_swiftshader.so" --tocfile="./libvk_swiftshader.so.TOC" --output="./libvk_swiftshader.so" -- clang++ -shared -Wl,-soname="libvk_swiftshader.so" -Wl,-Bsymbolic -Wl,--version-script=../../third_party/swiftshader/src/Vulkan/vk_swiftshader.lds -fuse-ld=lld -Wl,--fatal-warnings -Wl,--build-id=sha1 -fPIC -Wl,-z,noexecstack -Wl,-z,relro -Wl,-z,now -Wl,--icf=all -Wl,--color-diagnostics -Wl,-mllvm,-instcombine-lower-dbg-declare=0 -flto=thin -Wl,--thinlto-jobs=all -Wl,--thinlto-cache-dir=thinlto-cache -Wl,--thinlto-cache-policy=cache_size=10\%:cache_size_bytes=40g:cache_size_files=100000 -Wl,-mllvm,-import-instr-limit=30 -fwhole-program-vtables -Wl,--no-call-graph-profile-sort -m64 -no-canonical-prefixes -Wl,-O2 -Wl,--gc-sections -rdynamic -Wl,-z,defs -Wl,--as-needed -nostdlib++ -Wl,--lto-O0 -fsanitize=cfi-vcall -fsanitize=cfi-icall -o "./libvk_swiftshader.so" @"./libvk_swiftshader.so.rsp"
ld.lld: error: unable to find library -l:libffi_pic.a
clang++: error: linker command failed with exit code 1 (use -v to see invocation)
```

This turned out to be a regression from b6b51374fc. That change was
bad/undesirable in the first place and I only applied it to quickly fix
another build error caused by incompatible wayland-protocols header
files from a newer system version (Chromium bundles version 1.21 while
we already package 1.26).

The better fix for that wayland-protocols build issue is to pull in a
patch that is already used/tested by the Arch package [0] and seems to
originate from [1] (not sure if that patch was formally submitted yet).

Alternatives to that patch would be to (we should probably first try the
first approach if need be):
1) Build with wayland-protocols 1.21 from the system (by overriding the
   Nixpkgs package).
2) Dynamically link against libffi by patching [2] to use the other
   branch (`default_toolchain == "//build/toolchain/cros:target"`).

Some additional details can be found in the GitHub PR [3].
Huge thanks to Lorenz Brun for his great analysis that enabled me to fix
the build so that we can finally merge the update to Chromium M105
(which contains many important security fixes!).

[0]: a353833a5a
[1]: https://bugs.chromium.org/p/angleproject/issues/detail?id=7582#c1
[2]: https://source.chromium.org/chromium/chromium/src/+/refs/tags/105.0.5195.52:build/config/linux/libffi/BUILD.gn
[3]: https://github.com/NixOS/nixpkgs/pull/189033

Co-Authored-By: Lorenz Brun <lorenz@brun.one>
2022-09-02 23:34:18 +02:00
github-actions[bot]
83215d4fb2
Merge staging-next into staging 2022-09-02 00:02:43 +00:00
Stefan Radziuk
d32eae0f23
chromium: add commandLineArgs after wayland flags (#189371) 2022-09-02 01:38:22 +02:00
Martin Weinelt
ee01de29d2
Merge pull request #189360 from Atemu/firefox-ffmpeg_5 2022-09-02 01:11:08 +02:00
Stefan Radziuk
1be806f07f
google-chrome: add commandLineArgs after wayland flags (#189199) 2022-09-02 00:31:31 +02:00
Sandro
e114a41bf0
Merge pull request #186981 from JonaEnz/edge-update 2022-09-02 00:13:18 +02:00
Atemu
e661714656 firefox: use ffmpeg_5
Allows for AV1 VAAPI decoding
2022-09-02 00:12:41 +02:00
github-actions[bot]
a8a3bf5fc0
Merge staging-next into staging 2022-08-31 18:02:12 +00:00
Nicolas Benes
9895ba4b77 tor-browser-bundle-bin: 11.5.1 -> 11.5.2 2022-08-31 10:06:10 +02:00
github-actions[bot]
c13727fa82
Merge staging-next into staging 2022-08-31 00:03:14 +00:00
Michael Weiss
360844281a
chromium: 104.0.5112.101 -> 105.0.5195.52
https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html

This update includes 24 security fixes.

CVEs:
CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042
CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3047
CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052
CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057
CVE-2022-3058
2022-08-31 01:01:34 +02:00
Michael Weiss
50e7538f3e
chromiumDev: 106.0.5245.0 -> 106.0.5249.12 2022-08-31 00:59:51 +02:00
github-actions[bot]
118b5d13a1
Merge staging-next into staging 2022-08-30 12:02:12 +00:00
Martin Weinelt
27c45326b5
firefox-devedition-bin-unwrapped: 104.0b10 -> 105.0b4 2022-08-30 02:41:34 +02:00
Martin Weinelt
0437543dc5
firefox-beta-bin-unwrapped: 104.0b9 -> 105.0b4 2022-08-30 02:41:30 +02:00
Martin Weinelt
0955d646f5
firefox-bin-unwrapped: 104.0 -> 104.0.1
https://www.mozilla.org/en-US/firefox/104.0.1/releasenotes/
2022-08-30 02:39:20 +02:00
Martin Weinelt
66124effe6
firefox-unwrapped: 104.0 -> 104.0.1
https://www.mozilla.org/en-US/firefox/104.0.1/releasenotes/
2022-08-30 02:38:19 +02:00
github-actions[bot]
dcb2e8ee4c
Merge staging-next into staging 2022-08-29 12:02:06 +00:00
Christian Kögler
7d19aba308
Merge pull request #188227 from anthonyroussel/w3m-upgrade
w3m: 0.5.3+git20190105 -> 0.5.3+git20220429
2022-08-28 07:13:30 +02:00
squalus
eb3cea96da librewolf: 103.0.1-2 -> 104.0-1 2022-08-27 12:50:50 -07:00
Artturi
79c42aa06c
Merge pull request #186564 from Artturin/crossevalfixes
Fixes for cross-compilation
2022-08-27 17:49:00 +03:00
Michael Weiss
b6b51374fc
chromiumBeta: Fix errors due to incompatible Wayland headers
This "fixes" errors like these:
```
FAILED: obj/third_party/angle/angle_gpu_info_util/SystemInfo_vulkan.o
[...]
In file included from ../../third_party/wayland/src/src/wayland-client.h:40:
/nix/store/an42rhwn6ck2nix6caikrr4rvizknjhh-wayland-1.21.0-dev/include/wayland-client-protocol.h:1040:13: error: use of undeclared identifier 'wl_proxy_marshal_flags'
        callback = wl_proxy_marshal_flags((struct wl_proxy *) wl_display,
                   ^
[...]
/nix/store/an42rhwn6ck2nix6caikrr4rvizknjhh-wayland-1.21.0-dev/include/wayland-client-protocol.h:1392:87: error: use of undeclared identifier 'WL_MARSHAL_FLAG_DESTROY'
                         WL_SHM_POOL_DESTROY, NULL, wl_proxy_get_version((struct wl_proxy *) wl_shm_pool), WL_MARSHAL_FLAG_DESTROY);
                                                                                                           ^
[...]
fatal error: too many errors emitted, stopping now [-ferror-limit=]
```

At least for now (until Chromium updates their bundled Wayland version) it
seems best to use the bundled headers/versions to avoid version incompatibility
issues (we should hopefully be able to drop use_system_wayland_scanner though).
2022-08-27 00:04:41 +02:00
superherointj
ffa493b33b
Merge pull request #188325 from primeos/chromiumBeta
chromiumBeta: 105.0.5195.37 -> 105.0.5195.52
2022-08-25 23:14:32 -03:00
Michael Weiss
a5cb5ba44a
chromiumBeta: 105.0.5195.37 -> 105.0.5195.52 2022-08-25 23:38:02 +02:00
Michael Weiss
872ca61379
chromiumDev: 106.0.5231.2 -> 106.0.5245.0 2022-08-25 23:37:28 +02:00
Anthony Roussel
545e00fab7 w3m: add anthonyroussel to maintainers 2022-08-25 22:29:25 +02:00
Anthony Roussel
560604038a w3m: 0.5.3+git20190105 -> 0.5.3+git20220429
* Removed `no-x11.patch` patch in favor of `--without-x` flag

* Some clean up:
  * `? null` in the inputs is not required
  * `with lib` should be removed
  * functions from `lib` should be prefixed with `lib`
  * remove useless assert
2022-08-25 22:29:25 +02:00
Jonas Heinrich
a804ce36bd
Merge pull request #184417 from r-ryantm/auto-update/opera
opera: 84.0.4316.42 -> 90.0.4480.48
2022-08-25 10:08:52 +02:00
github-actions[bot]
8f206d92d9
Merge master into staging-next 2022-08-23 18:01:18 +00:00
Martin Weinelt
02cb054cf4
firefox-devedition-bin-unwrapped: 104.0b7 -> 104.b10 2022-08-23 17:51:33 +02:00
Martin Weinelt
e07f2519b9
firefox-beta-bin-unwrapped: 104.0b7 -> 104.b09 2022-08-23 17:51:33 +02:00
Martin Weinelt
1c98a4b64b
firefox-esr-102-unwrapped: 102.1.0esr -> 102.2.0esr
https://www.mozilla.org/en-US/firefox/102.2.0/releasenotes/

Fixes: CVE-2022-38472, CVE-2022-38473, CVE-2022-38476, CVE-2022-38477,
       CVE-2022-38478
2022-08-23 17:50:55 +02:00
Martin Weinelt
d50d54a0fe
firefox-esr-91-unwrapped: 91.12.0esr -> 91.13.0esr
https://www.mozilla.org/en-US/firefox/91.13.0/releasenotes/

Fixes: CVE-2022-38472, CVE-2022-38473, CVE-2022-38478
2022-08-23 17:50:26 +02:00
Martin Weinelt
77d59491fe
firefox-bin-unwrapped: 103.0.2 -> 104.0
https://www.mozilla.org/en-US/firefox/104.0/releasenotes/

Fixes: CVE-2022-38472, CVE-2022-38473, CVE-2022-38474, CVE-2022-38475,
       CVE-2022-38477, CVE-2022-38478
2022-08-23 17:50:14 +02:00
Martin Weinelt
097a473056
firefox-unwrapped: 103.0.2 -> 104.0
https://www.mozilla.org/en-US/firefox/104.0/releasenotes/

Fixes: CVE-2022-38472, CVE-2022-38473, CVE-2022-38474, CVE-2022-38475,
       CVE-2022-38477, CVE-2022-38478
2022-08-23 17:49:27 +02:00
R. Ryantm
13bec6b5b7 opera: 84.0.4316.42 -> 90.0.4480.48 2022-08-20 22:54:07 +00:00
github-actions[bot]
87810d89b4
Merge master into staging-next 2022-08-20 06:01:11 +00:00
Anderson Torres
674a334425
Merge pull request #187379 from AndersonTorres/dillo
dillo: 3.0.5 -> 2021-02-09
2022-08-19 22:29:34 -03:00
github-actions[bot]
318717f2e3
Merge master into staging-next 2022-08-20 00:02:22 +00:00
Sandro
d9a77384d2
Merge pull request #187145 from kouyk/update/vivaldi 2022-08-19 20:45:04 +02:00
Emery Hemingway
b5526585c2 treewide: inject xdg-open into wrappers as $PATH suffix
The xdg-open utility is only ever a runtime dependency and its
dependents only expect that it accept a URI as a command line
argument and do something with it that the user would expect.
For such as a trivial relationship it should be possible for
users to override xdg-open with something else in their PATH.
2022-08-19 13:11:27 -05:00
github-actions[bot]
949c5dc1a1
Merge master into staging-next 2022-08-19 18:01:13 +00:00
Sandro
fea8433edb
Merge pull request #159316 from georgyo/chromium_krb5 2022-08-19 15:10:29 +02:00
AndersonTorres
09efc9ceef dillo: 3.0.5 -> 2021-02-09
Mirrored, because the original site died.
2022-08-18 23:44:54 -03:00
github-actions[bot]
6406c43ce5
Merge master into staging-next 2022-08-18 18:01:17 +00:00
Michael Weiss
508de89d60
Merge pull request #187240 from primeos/chromiumBeta
chromiumBeta: 105.0.5195.28 -> 105.0.5195.37
2022-08-18 14:20:49 +02:00
Michael Weiss
42b2486158
Merge pull request #187239 from primeos/chromium
chromium: 104.0.5112.79 -> 104.0.5112.101
2022-08-18 14:20:28 +02:00
github-actions[bot]
28612f43c8
Merge master into staging-next 2022-08-18 12:01:28 +00:00
Michael Weiss
d0bbad1246
chromiumBeta: 105.0.5195.28 -> 105.0.5195.37 2022-08-18 10:39:20 +02:00
Michael Weiss
5369167b7d
chromium: 104.0.5112.79 -> 104.0.5112.101
https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html

This update includes 11 security fixes. Google is aware that an exploit
for CVE-2022-2856 exists in the wild.

CVEs:
CVE-2022-2852 CVE-2022-2854 CVE-2022-2855 CVE-2022-2857 CVE-2022-2858
CVE-2022-2853 CVE-2022-2856 CVE-2022-2859 CVE-2022-2860 CVE-2022-2861
2022-08-18 10:38:59 +02:00
Michael Adler
d2a0defa04 ungoogled-chromium: 104.0.5112.81 -> 104.0.5112.102 2022-08-18 08:18:30 +02:00
github-actions[bot]
87085e3d62
Merge master into staging-next 2022-08-18 00:02:31 +00:00
Sebastián Mancilla
8e36f0c4d1
Merge pull request #184564 from r-ryantm/auto-update/elinks
elinks: 0.15.0 -> 0.15.1
2022-08-17 17:58:06 -04:00
Steven Kou
665bef8266
vivaldi: 5.4.2753.33-1 -> 5.4.2753.37-1 2022-08-17 23:42:42 +08:00
Jona Enzinger
6f0138cc08 microsoft-edge: fix hardware acceleration 2022-08-17 08:23:42 +00:00
github-actions[bot]
6489cd2db3
Merge master into staging-next 2022-08-16 18:01:16 +00:00
Jona Enzinger
748f2f342c
microsoft-edge: 102.0.1245.44 -> 104.0.1293.54 2022-08-16 17:11:21 +02:00
Sandro
55c0985fb4
Merge pull request #186849 from primeos/chromiumBeta 2022-08-16 15:53:18 +02:00
Sandro
e54be90595
Merge pull request #186850 from primeos/chromiumDev 2022-08-16 15:43:04 +02:00
Sandro
6b48bf370f
Merge pull request #182432 from fgaz/ladybird/init 2022-08-16 14:16:42 +02:00
Artturin
c6568adb00 treewide: makeWrapper buildInputs to nativeBuildInputs
most found with https://github.com/siraben/nix-lint
2022-08-16 13:14:19 +03:00
Michael Weiss
0e03ad366a
chromiumDev: 106.0.5216.6 -> 106.0.5231.2 2022-08-15 23:07:33 +02:00
Michael Weiss
61063f3276
chromiumBeta: 105.0.5195.19 -> 105.0.5195.28 2022-08-15 23:07:14 +02:00
github-actions[bot]
79661ba7e2
Merge staging-next into staging 2022-08-15 18:02:00 +00:00
Martin Weinelt
eeb2bb2fef
Merge pull request #186498 from rhendric/rhendric/firefox-application-actions 2022-08-15 19:03:54 +02:00
Ryan Hendrickson
3b1f5eab31 firefox: add application actions to .desktop file 2022-08-15 12:47:27 -04:00
github-actions[bot]
842c52c5ba
Merge staging-next into staging 2022-08-15 00:03:15 +00:00
José Romildo Malaquias
901042d9c6
Merge pull request #186111 from kouyk/update/vivaldi
vivaldi: 5.3.2679.70-1 -> 5.4.2753.33-1
2022-08-14 20:20:10 -03:00
github-actions[bot]
7ef4d517f3
Merge staging-next into staging 2022-08-14 18:01:52 +00:00
Jonas Heinrich
33d07d5dff
Merge pull request #186410 from r-ryantm/auto-update/brave
brave: 1.41.100 -> 1.42.88
2022-08-14 16:22:31 +02:00
github-actions[bot]
f6054df3a1
Merge staging-next into staging 2022-08-14 00:03:17 +00:00
squalus
d5627b30e9 librewolf: 103.0-1 -> 103.0.2-1 2022-08-13 10:25:22 -07:00
github-actions[bot]
8b53ccc7ea
Merge staging-next into staging 2022-08-13 12:01:54 +00:00
Martin Weinelt
ce29c9f8eb
offpunk: don't use alias for testVersion 2022-08-13 12:29:46 +02:00
R. Ryantm
ce940123ec brave: 1.41.100 -> 1.42.88 2022-08-13 08:40:06 +00:00
Steven Kou
cfd88c2e74
vivaldi-ffmepg-codecs: 103.0.5060.53 -> 104.0.5112.79 2022-08-13 14:33:12 +08:00
Steven Kou
e611e6d598
vivaldi: 5.3.2679.70-1 -> 5.4.2753.33-1 2022-08-13 14:32:56 +08:00
Steven Kou
373743476c
vivaldi: fix ffmpeg version extraction 2022-08-11 21:58:51 +08:00
Sergei Trofimovich
3ceb8a59a6
Merge pull request #185537 from trofi/decouple-strip-and-separate-debug
setup-hooks/separate-debug-info.sh: don't inhibit strip hook
2022-08-11 08:53:24 +01:00
Michael Weiss
ce92261bcb
Merge pull request #185844 from primeos/chromiumDev
chromiumDev: 105.0.5195.19 -> 106.0.5216.6
2022-08-10 19:38:03 +02:00
Bernardo Meurer
8a11c92b8d
Merge pull request #185722 from mweinelt/mozilla
firefox{,-bin}-unwrapped: 103.0.1 -> 103.0.2; also firefox-beta-bin-unwrapped and firefox-devedition-bin-unwrapped updates
2022-08-09 15:47:29 -07:00
Michael Weiss
22eae24df0
chromiumDev: 105.0.5195.19 -> 106.0.5216.6 2022-08-09 23:36:59 +02:00
Janne Heß
587c265020
Merge pull request #185128 from DamienCassou/offpunk-1.5
Offpunk: 1.4 -> 1.5
2022-08-09 23:28:10 +02:00
Martin Weinelt
780343cc77
firefox-devedition-bin-unwrapped: 104.0b4 -> 104.0b7 2022-08-08 22:51:42 +02:00
Martin Weinelt
59b3d2738b
firefox-beta-bin-unwrapped: 104.0b4 -> 104.0b7 2022-08-08 22:50:34 +02:00
Martin Weinelt
39b4f0994e
firefox-bin-unwrapped: 103.0.1 -> 103.0.2
https://www.mozilla.org/en-US/firefox/103.0.2/releasenotes/
2022-08-08 22:49:02 +02:00
Martin Weinelt
52aef90bc6
firefox-unwrapped: 103.0.1 -> 103.0.2
https://www.mozilla.org/en-US/firefox/103.0.2/releasenotes/
2022-08-08 22:36:45 +02:00
Sergei Trofimovich
b3b672d5a1 setup-hooks/separate-debug-info.sh: don't inhibit strip hook
Before the change separate-debug-info.sh did the stripping itself.
This scheme has a few problems:
1. Stripping happens only on ELF files. *.a and *.o files are skipped.
   Derivations have to do it manually. Usually incorrectly
   as they don't run $RANLIB (true for `glibc` and `musl`).
2. Stripping happens on all paths. Ideally only `stripDebugList` paths
   should be considered.
3. Host strip is called on Target files.

This change offloads stripping logic to strip hook. This strips more
files for `glibc` and `musl`. Now we can remove most $STRIP calls
from individual derivations.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2022-08-07 12:49:37 +01:00
Martin Weinelt
a171b96ed8
Merge pull request #185323 from mweinelt/nss-nspr-passthru-tests 2022-08-07 12:15:03 +02:00
Martin Weinelt
46d5c7389f
firefox-esr-{91,102}-unwrapped: set proper pname 2022-08-06 11:36:37 +02:00
Michael Weiss
a43bf95ad0
chromiumBeta: 104.0.5112.79 -> 105.0.5195.19 2022-08-05 21:04:13 +02:00
Michael Adler
1ad5e92e8d ungoogled-chromium: 103.0.5060.134 -> 104.0.5112.81 2022-08-05 09:16:59 +02:00
Anderson Torres
acf5c72d6b
Merge pull request #185131 from OPNA2608/update/palemoon
palemoon: 31.1.1 -> 31.2.0.1
2022-08-04 20:03:54 -03:00
OPNA2608
f1b4bba5ac palemoon: 31.1.1 -> 31.2.0.1 2022-08-04 13:53:08 +02:00
Damien Cassou
ff6a0037d9
offpunk: Add passthru.tests.version 2022-08-04 13:45:36 +02:00
Damien Cassou
7b5cf21d2e
offpunk: 1.4 -> 1.5 2022-08-04 13:45:36 +02:00