Merge remote-tracking branch 'alma-origin/c8' into HEAD
This commit is contained in:
commit
702a50d837
@ -1,5 +1,5 @@
|
||||
c822547dbc12e2baebdfdfb38b665e23f0c2513a SOURCES/cbindgen-vendor.tar.xz
|
||||
7a15042e733a831ee519372eef5b50fdc0becdde SOURCES/firefox-91.5.0esr.processed-source.tar.xz
|
||||
4a72e79ba3d0861cad3e229ef54e66014f65447b SOURCES/firefox-langpacks-91.5.0esr-20220106.tar.xz
|
||||
986181f538d2a6951f95b4e1a754854b8e0048ff SOURCES/firefox-91.6.0esr.processed-source.tar.xz
|
||||
ea7fce0f4ee0101b6d9ef8b4d050fe8a16becff9 SOURCES/firefox-langpacks-91.6.0esr-20220202.tar.xz
|
||||
b5fd1332d8e0d37339ae170c7bebcb63a40b22e0 SOURCES/nspr-4.32.0-1.el8_1.src.rpm
|
||||
8fff814901e03c2518ede2f8992d898f5ba61ed9 SOURCES/nss-3.67.0-7.el8_1.src.rpm
|
||||
|
4
.gitignore
vendored
4
.gitignore
vendored
@ -1,5 +1,5 @@
|
||||
SOURCES/cbindgen-vendor.tar.xz
|
||||
SOURCES/firefox-91.5.0esr.processed-source.tar.xz
|
||||
SOURCES/firefox-langpacks-91.5.0esr-20220106.tar.xz
|
||||
SOURCES/firefox-91.6.0esr.processed-source.tar.xz
|
||||
SOURCES/firefox-langpacks-91.6.0esr-20220202.tar.xz
|
||||
SOURCES/nspr-4.32.0-1.el8_1.src.rpm
|
||||
SOURCES/nss-3.67.0-7.el8_1.src.rpm
|
||||
|
@ -12,7 +12,6 @@ ac_add_options --enable-chrome-format=omni
|
||||
ac_add_options --enable-pulseaudio
|
||||
ac_add_options --without-system-icu
|
||||
ac_add_options --enable-release
|
||||
ac_add_options --update-channel=release
|
||||
ac_add_options --allow-addon-sideload
|
||||
ac_add_options --with-system-jpeg
|
||||
ac_add_options --enable-js-shell
|
||||
|
19
SOURCES/firefox-nss-addon-hack.patch
Normal file
19
SOURCES/firefox-nss-addon-hack.patch
Normal file
@ -0,0 +1,19 @@
|
||||
diff -up firefox-84.0.2/security/certverifier/NSSCertDBTrustDomain.cpp.nss-hack firefox-84.0.2/security/certverifier/NSSCertDBTrustDomain.cpp
|
||||
--- firefox-84.0.2/security/certverifier/NSSCertDBTrustDomain.cpp.nss-hack 2021-01-11 12:12:02.585514543 +0100
|
||||
+++ firefox-84.0.2/security/certverifier/NSSCertDBTrustDomain.cpp 2021-01-11 12:47:50.345984582 +0100
|
||||
@@ -1619,6 +1619,15 @@ SECStatus InitializeNSS(const nsACString
|
||||
return srv;
|
||||
}
|
||||
|
||||
+ /* Sets the NSS_USE_ALG_IN_ANY_SIGNATURE bit.
|
||||
+ * does not change NSS_USE_ALG_IN_CERT_SIGNATURE,
|
||||
+ * so policy will still disable use of sha1 in
|
||||
+ * certificate related signature processing. */
|
||||
+ srv = NSS_SetAlgorithmPolicy(SEC_OID_SHA1, NSS_USE_ALG_IN_ANY_SIGNATURE, 0);
|
||||
+ if (srv != SECSuccess) {
|
||||
+ NS_WARNING("Unable to use SHA1 for Add-ons, expect broken/disabled Add-ons. See https://bugzilla.redhat.com/show_bug.cgi?id=1908018 for details.");
|
||||
+ }
|
||||
+
|
||||
if (nssDbConfig == NSSDBConfig::ReadWrite) {
|
||||
UniquePK11SlotInfo slot(PK11_GetInternalKeySlot());
|
||||
if (!slot) {
|
@ -130,7 +130,7 @@ end}
|
||||
|
||||
Summary: Mozilla Firefox Web browser
|
||||
Name: firefox
|
||||
Version: 91.5.0
|
||||
Version: 91.6.0
|
||||
Release: 1%{?dist}
|
||||
URL: https://www.mozilla.org/firefox/
|
||||
License: MPLv1.1 or GPLv2+ or LGPLv2+
|
||||
@ -155,7 +155,7 @@ ExcludeArch: aarch64 s390 ppc
|
||||
# Link to official tarball: https://hg.mozilla.org/releases/mozilla-release/archive/firefox-%%{version}%%{?pre_version}.source.tar.xz
|
||||
Source0: firefox-%{version}%{?pre_version}.processed-source.tar.xz
|
||||
%if %{build_langpacks}
|
||||
Source1: firefox-langpacks-%{version}%{?pre_version}-20220106.tar.xz
|
||||
Source1: firefox-langpacks-%{version}%{?pre_version}-20220202.tar.xz
|
||||
%endif
|
||||
Source2: cbindgen-vendor.tar.xz
|
||||
Source3: process-official-tarball
|
||||
@ -186,6 +186,7 @@ Patch6: build-nss-version.patch
|
||||
Patch215: firefox-enable-addons.patch
|
||||
Patch219: rhbz-1173156.patch
|
||||
Patch224: mozilla-1170092.patch
|
||||
Patch225: firefox-nss-addon-hack.patch
|
||||
|
||||
# Upstream patches
|
||||
|
||||
@ -427,6 +428,11 @@ echo "use_rustts %{?use_rustts}"
|
||||
%patch219 -p1 -b .rhbz-1173156
|
||||
%patch224 -p1 -b .1170092
|
||||
|
||||
# the nss changed in 8.6 and later, so addons are working in older releases
|
||||
%if 0%{?rhel_minor_version} >= 6
|
||||
%patch225 -p1 -b .firefox-nss-addon-hack
|
||||
%endif
|
||||
|
||||
# Patch for big endian platforms only
|
||||
%if 0%{?big_endian}
|
||||
%endif
|
||||
@ -1249,9 +1255,19 @@ gtk-update-icon-cache %{_datadir}/icons/hicolor &>/dev/null || :
|
||||
#---------------------------------------------------------------------
|
||||
|
||||
%changelog
|
||||
* Wed Feb 02 2022 Eike Rathke <erack@redhat.com> - 91.6.0-1
|
||||
- Update to 91.6.0 build1
|
||||
|
||||
* Wed Feb 02 2022 Jan Horak <jhorak@redhat.com> - 91.5.0-2
|
||||
- Use default update channel to fix non working enterprise policies:
|
||||
rhbz#2044667
|
||||
|
||||
* Thu Jan 06 2022 Eike Rathke <erack@redhat.com> - 91.5.0-1
|
||||
- Update to 91.5.0 build1
|
||||
|
||||
* Mon Dec 13 2021 Jan Horak <jhorak@redhat.com> - 91.4.0-2
|
||||
- Added fix for failing addons signatures.
|
||||
|
||||
* Wed Dec 01 2021 Eike Rathke <erack@redhat.com> - 91.4.0-1
|
||||
- Update to 91.4.0 build1
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user