The package rpms/chromium.git has added or updated architecture specific content in its spec file (ExclusiveArch/ExcludeArch or %ifarch/%ifnarch) in commit(s): https://src.fedoraproject.org/cgit/rpms/chromium.git/commit/?id=73838bc519bd....
Change: -%ifarch x86_64 aarch64 ppc64le
Thanks.
Full change: ============
commit e89a0949b300fb862a58bdf69435adc64c98e43f Author: Than Ngo than@redhat.com Date: Thu May 15 11:48:45 2025 +0200
Fix typo
diff --git a/chromium.spec b/chromium.spec index 601052c..ca799cc 100644 --- a/chromium.spec +++ b/chromium.spec @@ -1513,7 +1513,7 @@ system_libs=() %if 0%{?noopenh264} system_libs+=(openh264) %endif -%if ! {bundlesimdutf} +%if ! %{bundlesimdutf} system_libs+=(simdutf) %endif
commit 90322e2621052af8adb2e1281ab1addb23d99ccc Author: Than Ngo than@redhat.com Date: Thu May 15 11:46:44 2025 +0200
Enable system simdutf for Fedora
diff --git a/chromium.spec b/chromium.spec index 5da81c0..601052c 100644 --- a/chromium.spec +++ b/chromium.spec @@ -190,6 +190,7 @@ %global bundlelibsecret 0 %global bundleopus 0 %global bundlelcms2 0 +%global bundlesimdutf 1
# workaround for build error # disable bundleminizip for Fedora > 39 due to switch to minizip-ng @@ -206,6 +207,7 @@ %global bundleffmpegfree 0 %global bundlefreetype 0 %global bundlelibxml 0 +%global bundlesimdutf 0 # need libtiff-4.6.1 or newer, error: use of undeclared identifier 'TIFFOpenOptionsSetMaxCumulatedMemAlloc' %if 0%{?fedora} > 41 %global bundlelibtiff 0 @@ -781,6 +783,10 @@ BuildRequires: java-openjdk-headless
BuildRequires: libevdev-devel
+%if ! %{bundlesimdutf} +BuildRequires: simdutf-devel +%endif + # There is a hardcoded check for nss 3.26 in the chromium code (crypto/nss_util.cc) Requires: nss%{_isa} >= 3.26 Requires: nss-mdns%{_isa} @@ -812,7 +818,9 @@ Provides: bundled(boringssl) %if %{bundlebrotli} Provides: bundled(brotli) = 222564a95d9ab58865a096b8d9f7324ea5f2e03e %endif - +%if %{bundlesimdutf} +Provides: bundled(simdutf) = 6.4.0 +%endif Provides: bundled(bspatch) Provides: bundled(cacheinvalidation) = 20150720 Provides: bundled(colorama) = 799604a104 @@ -1505,6 +1513,9 @@ system_libs=() %if 0%{?noopenh264} system_libs+=(openh264) %endif +%if ! {bundlesimdutf} + system_libs+=(simdutf) +%endif
build/linux/unbundle/replace_gn_files.py --system-libraries ${system_libs[@]}
commit aeb3513d149d488ac2dcbb30e334bbc5ea781281 Author: Than Ngo than@redhat.com Date: Thu May 15 10:43:20 2025 +0200
- Update to 136.0.7103.113 * CVE-2025-4664: Insufficient policy enforcement in Loader * CVE-2025-4609: Incorrect handle provided in unspecified circumstances in Mojo
diff --git a/chromium.spec b/chromium.spec index 9d17442..5da81c0 100644 --- a/chromium.spec +++ b/chromium.spec @@ -255,7 +255,7 @@ %endif
Name: chromium -Version: 136.0.7103.92 +Version: 136.0.7103.113 Release: 1%{?dist} Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Url: http://www.chromium.org/Home @@ -1777,6 +1777,11 @@ fi %endif
%changelog +* Wed May 14 2025 Than Ngo than@redhat.com - 136.0.7103.113-1 +- Update to 136.0.7103.113 + * CVE-2025-4664: Insufficient policy enforcement in Loader + * CVE-2025-4609: Incorrect handle provided in unspecified circumstances in Mojo + * Wed May 07 2025 Than Ngo than@redhat.com - 136.0.7103.92-1 - Update to 136.0.7103.92 * CVE-2025-4372: Use after free in WebAudio diff --git a/sources b/sources index d5bf3c6..9628776 100644 --- a/sources +++ b/sources @@ -1,2 +1,2 @@ SHA512 (node-v22.14.0-stripped.tar.gz) = affddb541009c6d378049c2d7845b981335d9e7aa387efcc472e5efb621c345cd58ca69778a394f7e4ebbb5e4b1a115a389838ef1b6458ef5e98f2071b166e15 -SHA512 (chromium-136.0.7103.92-clean.tar.xz) = d1ee6d35eb6f21a3bd3c83fdd2b320ce26f241341fdb74004c518ee7916f72e3ac84c59e577cdd1fde7f1e1e3feecde7b55f1f2f5c132ab62f586834805c4afd +SHA512 (chromium-136.0.7103.113-clean.tar.xz) = a9a6d3dcd8d26e06a95e5caef29eee002ed538b04126a69d78600c08ef50d47811e29ad16625686033c10847a632c827d6b19032f90d872041ac00bb8848a908
commit 73838bc519bd6b71014b924c899b8e1920ec1694 Author: Than Ngo than@redhat.com Date: Wed May 14 11:55:12 2025 +0200
Fix Error loading V8 startup snapshot file
diff --git a/chromium.spec b/chromium.spec index 044efac..9d17442 100644 --- a/chromium.spec +++ b/chromium.spec @@ -1663,7 +1663,6 @@ fi %config %{_sysconfdir}/%{name}/master_preferences %config %{_sysconfdir}/%{name}/policies/ %{_bindir}/chromium-browser -%{chromium_path}/*.bin %{chromium_path}/chrome_*.pak %{chromium_path}/chrome_crashpad_handler %{chromium_path}/resources.pak @@ -1687,13 +1686,12 @@ fi %endif
%files common -%ifarch x86_64 aarch64 ppc64le %{chromium_path}/libvk_swiftshader.so* %{chromium_path}/libvulkan.so* %{chromium_path}/vk_swiftshader_icd.json %{chromium_path}/libEGL.so* %{chromium_path}/libGLESv2.so* -%endif +%{chromium_path}/*.bin %if %{bundleicu} %{chromium_path}/icudtl.dat %endif
commit 2275a819c82d798252de8f538f532f0c390d008b Author: Than Ngo than@redhat.com Date: Thu May 8 15:07:53 2025 +0200
Fix FTBFS caused by bindgen-cli-0.71, rust-1.79.0 on EL9
diff --git a/chromium-136-el9-bindgen-cli-build-error.patch b/chromium-136-el9-bindgen-cli-build-error.patch new file mode 100644 index 0000000..caa196e --- /dev/null +++ b/chromium-136-el9-bindgen-cli-build-error.patch @@ -0,0 +1,22 @@ +bindgen generates rust codes that cannot be compiled with rust-1.79.0 on EPEL9 + https://github.com/rust-lang/rust-bindgen/issues/3052 + +Add Workaround for this build error on el9 + +error: extern block cannot be declared unsafe + --> ../../third_party/crabbyavif/src/sys/dav1d-sys/src/../../../../../../out/Release/gen/third_party/crabbyavif/crabbyavif_dav1d_sys/dav1d_bindgen.rs:3:18605 + +Signed-off-by: Than Ngo than@redhat.com + +diff -up chromium-136.0.7103.92/build/rust/run_bindgen.py.than chromium-136.0.7103.92/build/rust/run_bindgen.py +--- chromium-136.0.7103.92/build/rust/run_bindgen.py.than 2025-05-08 14:09:50.268246973 +0200 ++++ chromium-136.0.7103.92/build/rust/run_bindgen.py 2025-05-08 14:46:22.421719175 +0200 +@@ -68,7 +68,7 @@ def main(): + # TODO(danakj): We need to point bindgen to + # //third_party/rust-toolchain/bin/rustfmt. + genargs.append('--no-rustfmt-bindings') +- genargs += ['--rust-target', 'nightly'] ++ genargs += ['--rust-target', '1.79'] + + if args.depfile: + depfile = stack.enter_context(action_helpers.atomic_output(args.depfile)) diff --git a/chromium.spec b/chromium.spec index 3bf55ce..044efac 100644 --- a/chromium.spec +++ b/chromium.spec @@ -288,6 +288,9 @@ Patch91: chromium-108-system-opus.patch # patch for Failed NodeJS version check Patch92: chromium-136-checkversion-nodejs.patch
+# Fix FTBFS caused by bindgen-cli-0.71, rust-1.79.0 on EL9 +Patch93: chromium-136-el9-bindgen-cli-build-error.patch + # system ffmpeg # need for old ffmpeg 5.x on epel9 Patch129: chromium-125-ffmpeg-5.x-reordered_opaque.patch @@ -1000,7 +1003,8 @@ Qt6 UI for chromium. %patch -P91 -p1 -b .system-opus %endif
-%patch -P92 -p1 -b .chromium-136-nodejs-checkversion +%patch -P92 -p1 -b .nodejs-checkversion +%patch -P93 -p1 -b .bindgen-cli-build-error
%if ! %{bundleffmpegfree} %if 0%{?rhel} == 9
commit e86d6fcf7b81833d4842b9f07cf2826821321c95 Author: Than Ngo than@redhat.com Date: Wed May 7 19:50:24 2025 +0200
Fix incorrect clang_base_path which caused FTBFS in EL10.
diff --git a/chromium.spec b/chromium.spec index 41d2b83..3bf55ce 100644 --- a/chromium.spec +++ b/chromium.spec @@ -1246,7 +1246,7 @@ rust_sysroot_absolute="$(rustc --print sysroot)"
# set clang version clang_version="$(clang --version | sed -n 's/clang version //p' | cut -d. -f1)" -%if 0%{?fedora} > 41 +%if 0%{?fedora} > 41 || 0%{?rhel} > 9 clang_base_path="$(PATH=/usr/bin:/usr/sbin which clang | sed 's#/bin/.*##')" %else clang_base_path="$(clang --version | grep InstalledDir | cut -d' ' -f2 | sed 's#/bin##')"
arch-excludes@lists.fedoraproject.org
-
githook-noreply@fedoraproject.org