|
|
|
@ -6,8 +6,28 @@
|
|
|
|
|
%global with_debug 0
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
# bundle dependencies that are not available as Fedora modules
|
|
|
|
|
# The following macros control the usage of dependencies bundled from upstream.
|
|
|
|
|
#
|
|
|
|
|
# When to use what:
|
|
|
|
|
# - Regular (presumably non-modular) build: use neither (the default in Fedora)
|
|
|
|
|
# - Early bootstrapping build that is not intended to be shipped:
|
|
|
|
|
# use --with=bootstrap; this will bundle deps and add `~bootstrap` release suffix
|
|
|
|
|
# - Build with some dependencies not avalaible in necessary versions (i.e. module build):
|
|
|
|
|
# use --with=bundled; will bundle deps, but do not add the suffix
|
|
|
|
|
#
|
|
|
|
|
# create bootstrapping build with bundled deps and extra release suffix
|
|
|
|
|
%bcond_with bootstrap
|
|
|
|
|
# bundle dependencies that are not available in CentOS
|
|
|
|
|
%if %{with bootstrap}
|
|
|
|
|
%bcond_without bundled
|
|
|
|
|
%else
|
|
|
|
|
%bcond_with bundled
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
%bcond_without python3_fixup
|
|
|
|
|
|
|
|
|
|
# This macro serves to provide corepack, which is not provided for now, but might be in the future
|
|
|
|
|
%bcond_with corepack
|
|
|
|
|
|
|
|
|
|
# == Master Relase ==
|
|
|
|
|
# This is used by both the nodejs package and the npm subpackage that
|
|
|
|
@ -23,12 +43,12 @@
|
|
|
|
|
# feature releases that are only supported for nine months, which is shorter
|
|
|
|
|
# than a Fedora release lifecycle.
|
|
|
|
|
%global nodejs_epoch 1
|
|
|
|
|
%global nodejs_major 10
|
|
|
|
|
%global nodejs_minor 24
|
|
|
|
|
%global nodejs_patch 0
|
|
|
|
|
%global nodejs_major 20
|
|
|
|
|
%global nodejs_minor 8
|
|
|
|
|
%global nodejs_patch 1
|
|
|
|
|
%global nodejs_abi %{nodejs_major}.%{nodejs_minor}
|
|
|
|
|
# nodejs_soversion - from NODE_MODULE_VERSION in src/node_version.h
|
|
|
|
|
%global nodejs_soversion 64
|
|
|
|
|
%global nodejs_soversion 115
|
|
|
|
|
%global nodejs_version %{nodejs_major}.%{nodejs_minor}.%{nodejs_patch}
|
|
|
|
|
%global nodejs_release %{baserelease}
|
|
|
|
|
|
|
|
|
@ -37,11 +57,11 @@
|
|
|
|
|
# == Bundled Dependency Versions ==
|
|
|
|
|
# v8 - from deps/v8/include/v8-version.h
|
|
|
|
|
# Epoch is set to ensure clean upgrades from the old v8 package
|
|
|
|
|
%global v8_epoch 1
|
|
|
|
|
%global v8_major 6
|
|
|
|
|
%global v8_minor 8
|
|
|
|
|
%global v8_build 275
|
|
|
|
|
%global v8_patch 32
|
|
|
|
|
%global v8_epoch 2
|
|
|
|
|
%global v8_major 11
|
|
|
|
|
%global v8_minor 3
|
|
|
|
|
%global v8_build 244
|
|
|
|
|
%global v8_patch 8
|
|
|
|
|
# V8 presently breaks ABI at least every x.y release while never bumping SONAME
|
|
|
|
|
%global v8_abi %{v8_major}.%{v8_minor}
|
|
|
|
|
%global v8_version %{v8_major}.%{v8_minor}.%{v8_build}.%{v8_patch}
|
|
|
|
@ -49,31 +69,25 @@
|
|
|
|
|
|
|
|
|
|
# c-ares - from deps/cares/include/ares_version.h
|
|
|
|
|
# https://github.com/nodejs/node/pull/9332
|
|
|
|
|
%global c_ares_major 1
|
|
|
|
|
%global c_ares_minor 15
|
|
|
|
|
%global c_ares_patch 0
|
|
|
|
|
%global c_ares_version %{c_ares_major}.%{c_ares_minor}.%{c_ares_patch}
|
|
|
|
|
%global c_ares_version 1.19.1
|
|
|
|
|
|
|
|
|
|
# http-parser - from deps/http_parser/http_parser.h
|
|
|
|
|
%global http_parser_major 2
|
|
|
|
|
%global http_parser_minor 9
|
|
|
|
|
%global http_parser_patch 4
|
|
|
|
|
%global http_parser_version %{http_parser_major}.%{http_parser_minor}.%{http_parser_patch}
|
|
|
|
|
# llhttp - from deps/llhttp/include/llhttp.h
|
|
|
|
|
%global llhttp_version 8.1.1
|
|
|
|
|
|
|
|
|
|
# libuv - from deps/uv/include/uv/version.h
|
|
|
|
|
%global libuv_major 1
|
|
|
|
|
%global libuv_minor 34
|
|
|
|
|
%global libuv_patch 2
|
|
|
|
|
%global libuv_version %{libuv_major}.%{libuv_minor}.%{libuv_patch}
|
|
|
|
|
%global libuv_version 1.46.0
|
|
|
|
|
|
|
|
|
|
# nghttp2 - from deps/nghttp2/lib/includes/nghttp2/nghttp2ver.h
|
|
|
|
|
%global nghttp2_major 1
|
|
|
|
|
%global nghttp2_minor 41
|
|
|
|
|
%global nghttp2_patch 0
|
|
|
|
|
%global nghttp2_version %{nghttp2_major}.%{nghttp2_minor}.%{nghttp2_patch}
|
|
|
|
|
%global nghttp2_version 1.57.0
|
|
|
|
|
|
|
|
|
|
# nghttp3 - from deps/ngtcp2/nghttp3/lib/includes/nghttp3/version.h
|
|
|
|
|
%global nghttp3_version 0.7.0
|
|
|
|
|
|
|
|
|
|
# ngtcp2 from deps/ngtcp2/ngtcp2/lib/includes/ngtcp2/version.h
|
|
|
|
|
%global ngtcp2_version 0.8.1
|
|
|
|
|
|
|
|
|
|
# ICU - from tools/icu/current_ver.dep
|
|
|
|
|
%global icu_major 64
|
|
|
|
|
%global icu_major 73
|
|
|
|
|
%global icu_minor 2
|
|
|
|
|
%global icu_version %{icu_major}.%{icu_minor}
|
|
|
|
|
|
|
|
|
@ -81,21 +95,34 @@
|
|
|
|
|
%{!?little_endian: %global little_endian %(%{__python3} -c "import sys;print (0 if sys.byteorder=='big' else 1)")}
|
|
|
|
|
# " this line just fixes syntax highlighting for vim that is confused by the above and continues literal
|
|
|
|
|
|
|
|
|
|
%global sys_icu_version %(/usr/bin/icu-config --version)
|
|
|
|
|
|
|
|
|
|
%if "%{sys_icu_version}" >= "%{icu_version}"
|
|
|
|
|
%global bundled_icu 0
|
|
|
|
|
%global icu_flag system-icu
|
|
|
|
|
%else
|
|
|
|
|
%global bundled_icu 1
|
|
|
|
|
%global icu_flag full-icu
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
# simduft from deps/simdutf/simdutf.h
|
|
|
|
|
%global simduft_version 3.2.17
|
|
|
|
|
|
|
|
|
|
# ada from deps/ada/ada.h
|
|
|
|
|
%global ada_version 2.6.0
|
|
|
|
|
|
|
|
|
|
# OpenSSL minimum version
|
|
|
|
|
%global openssl_minimum 1:1.1.1
|
|
|
|
|
|
|
|
|
|
# punycode - from lib/punycode.js
|
|
|
|
|
# Note: this was merged into the mainline since 0.6.x
|
|
|
|
|
# Note: this will be unmerged in an upcoming major release
|
|
|
|
|
%global punycode_major 2
|
|
|
|
|
%global punycode_minor 1
|
|
|
|
|
%global punycode_patch 0
|
|
|
|
|
%global punycode_version %{punycode_major}.%{punycode_minor}.%{punycode_patch}
|
|
|
|
|
# Note: Marked as pending deprecation since 18.16.0
|
|
|
|
|
%global punycode_version 2.1.0
|
|
|
|
|
|
|
|
|
|
# npm - from deps/npm/package.json
|
|
|
|
|
%global npm_epoch 1
|
|
|
|
|
%global npm_major 6
|
|
|
|
|
%global npm_minor 14
|
|
|
|
|
%global npm_patch 11
|
|
|
|
|
%global npm_version %{npm_major}.%{npm_minor}.%{npm_patch}
|
|
|
|
|
%global npm_version 10.1.0
|
|
|
|
|
|
|
|
|
|
# In order to avoid needing to keep incrementing the release version for the
|
|
|
|
|
# main package forever, we will just construct one for npm that is guaranteed
|
|
|
|
@ -103,12 +130,15 @@
|
|
|
|
|
# base npm version number is increasing.
|
|
|
|
|
%global npm_release %{nodejs_epoch}.%{nodejs_major}.%{nodejs_minor}.%{nodejs_patch}.%{nodejs_release}
|
|
|
|
|
|
|
|
|
|
# brotli - from deps/brotli/c/common/version.h
|
|
|
|
|
# v10.x doesn't have --shared-brotli configure option, so we have to bundle it
|
|
|
|
|
%global brotli_major 1
|
|
|
|
|
%global brotli_minor 0
|
|
|
|
|
%global brotli_patch 7
|
|
|
|
|
%global brotli_version %{brotli_major}.%{brotli_minor}.%{brotli_patch}
|
|
|
|
|
# Node.js 16.9.1 and later comes with an experimental package management tool
|
|
|
|
|
# corepack - from deps/corepack/package.json
|
|
|
|
|
%global corepack_version 0.20.0
|
|
|
|
|
|
|
|
|
|
# uvwasi - from deps/uvwasi/include/uvwasi.h
|
|
|
|
|
%global uvwasi_version 0.0.18
|
|
|
|
|
|
|
|
|
|
# histogram_c - from deps/histogram/include/hdr/hdr_histogram_version.h
|
|
|
|
|
%global histogram_version 0.11.8
|
|
|
|
|
|
|
|
|
|
Name: nodejs
|
|
|
|
|
Epoch: %{nodejs_epoch}
|
|
|
|
@ -135,26 +165,45 @@ Source100: %{name}-tarball.sh
|
|
|
|
|
# nodejs-packaging SRPM.
|
|
|
|
|
Source7: nodejs_native.attr
|
|
|
|
|
|
|
|
|
|
# Configure npm to look into /etc for configuration
|
|
|
|
|
Source8: npmrc.builtin.in
|
|
|
|
|
|
|
|
|
|
# These are full sources for dependencies included as WASM blobs in the source of Node itself.
|
|
|
|
|
# Note: These sources would also include pre-compiled WASM blobs… so they are adjusted not to.
|
|
|
|
|
# Recipes for creating these blobs are included in the sources.
|
|
|
|
|
|
|
|
|
|
# Version: jq '.version' deps/cjs-module-lexer/package.json
|
|
|
|
|
# Original: https://github.com/nodejs/cjs-module-lexer/archive/refs/tags/1.2.2.tar.gz
|
|
|
|
|
# Adjustments: rm -f cjs-module-lexer-1.2.2/lib/lexer.wasm
|
|
|
|
|
Source101: cjs-module-lexer-1.2.2.tar.gz
|
|
|
|
|
# The WASM blob was made using wasi-sdk v11; compiler libraries are linked in.
|
|
|
|
|
# Version source: Makefile
|
|
|
|
|
Source102: https://github.com/WebAssembly/wasi-sdk/archive/wasi-sdk-11/wasi-sdk-wasi-sdk-11.tar.gz
|
|
|
|
|
|
|
|
|
|
# Version: jq '.version' deps/undici/src/package.json
|
|
|
|
|
# Original: https://github.com/nodejs/undici/archive/refs/tags/v5.22.1.tar.gz
|
|
|
|
|
# Adjustments: rm -f undici-5.21.0/lib/llhttp/llhttp*.wasm*
|
|
|
|
|
Source111: undici-5.26.3.tar.gz
|
|
|
|
|
# The WASM blob was made using wasi-sdk v14; compiler libraries are linked in.
|
|
|
|
|
# Version source: build/Dockerfile
|
|
|
|
|
Source112: https://github.com/WebAssembly/wasi-sdk/archive/wasi-sdk-14/wasi-sdk-wasi-sdk-14.tar.gz
|
|
|
|
|
|
|
|
|
|
# Disable running gyp on bundled deps we don't use
|
|
|
|
|
Patch1: 0001-Disable-running-gyp-on-shared-deps.patch
|
|
|
|
|
|
|
|
|
|
# Suppress the message from npm to run `npm -g update npm`
|
|
|
|
|
# This does bad things on an RPM-managed npm.
|
|
|
|
|
Patch2: 0002-Suppress-NPM-message-to-run-global-update.patch
|
|
|
|
|
|
|
|
|
|
# Upstream patch to enable auto-detection of full ICU data
|
|
|
|
|
# https://github.com/nodejs/node/pull/30825
|
|
|
|
|
Patch3: 0003-build-auto-load-ICU-data-from-with-icu-default-data-.patch
|
|
|
|
|
|
|
|
|
|
# CVE-2020-7774
|
|
|
|
|
Patch4: 0004-CVE-2020-7774-nodejs-y18n-prototype-pollution-vulnerability.patch
|
|
|
|
|
Patch3: nodejs-fips-disable-options.patch
|
|
|
|
|
|
|
|
|
|
BuildRequires: make
|
|
|
|
|
BuildRequires: python2-devel
|
|
|
|
|
BuildRequires: python3-devel
|
|
|
|
|
BuildRequires: python3-setuptools
|
|
|
|
|
BuildRequires: python3-jinja2
|
|
|
|
|
%if !%{with python3_fixup}
|
|
|
|
|
BuildRequires: python-unversioned-command
|
|
|
|
|
%endif
|
|
|
|
|
BuildRequires: zlib-devel
|
|
|
|
|
BuildRequires: gcc >= 6.3.0
|
|
|
|
|
BuildRequires: gcc-c++ >= 6.3.0
|
|
|
|
|
BuildRequires: brotli-devel
|
|
|
|
|
BuildRequires: gcc >= 8.3.0
|
|
|
|
|
BuildRequires: gcc-c++ >= 8.3.0
|
|
|
|
|
BuildRequires: jq
|
|
|
|
|
# needed to generate bundled provides for npm dependencies
|
|
|
|
|
# https://src.fedoraproject.org/rpms/nodejs/pull-request/2
|
|
|
|
|
# https://pagure.io/nodejs-packaging/pull-request/10
|
|
|
|
@ -162,22 +211,28 @@ BuildRequires: nodejs-packaging
|
|
|
|
|
BuildRequires: chrpath
|
|
|
|
|
BuildRequires: libatomic
|
|
|
|
|
|
|
|
|
|
%if %{with bootstrap}
|
|
|
|
|
Provides: bundled(http-parser) = %{http_parser_version}
|
|
|
|
|
Provides: bundled(libuv) = %{libuv_version}
|
|
|
|
|
Provides: bundled(nghttp2) = %{nghttp2_version}
|
|
|
|
|
%if %{with bundled}
|
|
|
|
|
Provides: bundled(libuv) = %{libuv_version}
|
|
|
|
|
%else
|
|
|
|
|
BuildRequires: systemtap-sdt-devel
|
|
|
|
|
BuildRequires: libuv-devel >= 1:%{libuv_version}
|
|
|
|
|
Requires: libuv >= 1:%{libuv_version}
|
|
|
|
|
BuildRequires: libnghttp2-devel >= %{nghttp2_version}
|
|
|
|
|
Requires: libnghttp2 >= %{nghttp2_version}
|
|
|
|
|
BuildRequires: http-parser-devel >= %{http_parser_version}
|
|
|
|
|
Requires: http-parser >= %{http_parser_version}
|
|
|
|
|
|
|
|
|
|
Requires: libuv >= 1:%{libuv_version}
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
BuildRequires: openssl-devel
|
|
|
|
|
%if %{with bundled}
|
|
|
|
|
Provides: bundled(nghttp2) = %{nghttp2_version}
|
|
|
|
|
%else
|
|
|
|
|
BuildRequires: libnghttp2-devel >= %{nghttp2_version}
|
|
|
|
|
Requires: libnghttp2 >= %{nghttp2_version}
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
# Temporarily bundle llhttp because the upstream doesn't
|
|
|
|
|
# provide releases for it.
|
|
|
|
|
Provides: bundled(llhttp) = %{llhttp_version}
|
|
|
|
|
Provides: bundled(nghttp3) = %{nghttp3_version}
|
|
|
|
|
Provides: bundled(ngtcp2) = %{ngtcp2_version}
|
|
|
|
|
|
|
|
|
|
BuildRequires: openssl-devel >= %{openssl_minimum}
|
|
|
|
|
Requires: openssl >= %{openssl_minimum}
|
|
|
|
|
|
|
|
|
|
# we need the system certificate store
|
|
|
|
|
Requires: ca-certificates
|
|
|
|
@ -229,16 +284,23 @@ Provides: bundled(v8) = %{v8_version}
|
|
|
|
|
# an ABI-break, so we'll use the bundled copy.
|
|
|
|
|
Provides: bundled(icu) = %{icu_version}
|
|
|
|
|
|
|
|
|
|
# Make sure we keep NPM up to date when we update Node.js
|
|
|
|
|
%if 0%{?rhel}
|
|
|
|
|
# EPEL doesn't support Recommends, so make it strict
|
|
|
|
|
Requires: npm = %{npm_epoch}:%{npm_version}-%{npm_release}%{?dist}
|
|
|
|
|
%else
|
|
|
|
|
Recommends: npm = %{npm_epoch}:%{npm_version}-%{npm_release}%{?dist}
|
|
|
|
|
# Upstream added new dependencies, but so far they are not available in Fedora
|
|
|
|
|
# or there's no option to built it as a shared dependency, so we bundle them
|
|
|
|
|
Provides: bundled(uvwasi) = %{uvwasi_version}
|
|
|
|
|
Provides: bundled(histogram) = %{histogram_version}
|
|
|
|
|
%if %{with corepack}
|
|
|
|
|
Provides: bundled(corepack) = %{corepack_version}
|
|
|
|
|
%endif
|
|
|
|
|
Provides: bundled(simduft) = %{simduft_version}
|
|
|
|
|
Provides: bundled(ada) = %{ada_version}
|
|
|
|
|
|
|
|
|
|
# Provide bundled brotli until we can build it with system package
|
|
|
|
|
Provides: bundled(brotli) = %{brotli_version}
|
|
|
|
|
# Make sure we keep NPM up to date when we update Node.js
|
|
|
|
|
%if 0%{?rhel} < 8
|
|
|
|
|
# EPEL doesn't support Recommends, so make it strict
|
|
|
|
|
Requires: npm >= %{npm_epoch}:%{npm_version}-%{npm_release}%{?dist}
|
|
|
|
|
%else
|
|
|
|
|
Recommends: npm >= %{npm_epoch}:%{npm_version}-%{npm_release}%{?dist}
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
%description
|
|
|
|
|
Node.js is a platform built on Chrome's JavaScript runtime
|
|
|
|
@ -254,12 +316,10 @@ Group: Development/Languages
|
|
|
|
|
Requires: %{name}%{?_isa} = %{epoch}:%{nodejs_version}-%{nodejs_release}%{?dist}
|
|
|
|
|
Requires: openssl-devel%{?_isa}
|
|
|
|
|
Requires: zlib-devel%{?_isa}
|
|
|
|
|
Requires: brotli-devel%{?_isa}
|
|
|
|
|
Requires: nodejs-packaging
|
|
|
|
|
|
|
|
|
|
%if %{with bootstrap}
|
|
|
|
|
# deps are bundled
|
|
|
|
|
%else
|
|
|
|
|
Requires: http-parser-devel%{?_isa}
|
|
|
|
|
%if %{without bundled}
|
|
|
|
|
Requires: libuv-devel%{?_isa}
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
@ -288,6 +348,9 @@ Release: %{npm_release}%{?dist}
|
|
|
|
|
Obsoletes: npm < 0:3.5.4-6
|
|
|
|
|
Provides: npm = %{npm_epoch}:%{npm_version}
|
|
|
|
|
Requires: nodejs = %{nodejs_epoch}:%{nodejs_version}-%{nodejs_release}%{?dist}
|
|
|
|
|
%if 0%{?fedora} || 0%{?rhel} >= 8
|
|
|
|
|
Recommends: nodejs-docs = %{nodejs_epoch}:%{nodejs_version}-%{nodejs_release}%{?dist}
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
# Do not add epoch to the virtual NPM provides or it will break
|
|
|
|
|
# the automatic dependency-generation script.
|
|
|
|
@ -318,68 +381,68 @@ The API documentation for the Node.js JavaScript runtime.
|
|
|
|
|
|
|
|
|
|
# remove bundled dependencies that we aren't building
|
|
|
|
|
rm -rf deps/zlib
|
|
|
|
|
rm -rf deps/brotli
|
|
|
|
|
rm -rf deps/v8/third_party/jinja2
|
|
|
|
|
rm -rf tools/inspector_protocol/jinja2
|
|
|
|
|
|
|
|
|
|
# Replace any instances of unversioned python' with python2
|
|
|
|
|
pathfix.py -i %{__python2} -pn $(find -type f ! -name "*.js")
|
|
|
|
|
find . -type f -exec sed -i "s~/usr\/bin\/env python~/usr/bin/python2~" {} \;
|
|
|
|
|
find . -type f -exec sed -i "s~/usr\/bin\/python\W~/usr/bin/python2~" {} \;
|
|
|
|
|
sed -i "s~python~python2~" $(find . -type f | grep "gyp$")
|
|
|
|
|
# Replace any instances of unversioned python' with python3
|
|
|
|
|
# check for correct versions of dependencies we are bundling
|
|
|
|
|
check_wasm_dep() {
|
|
|
|
|
local -r name="$1" source="$2" packagejson="$3"
|
|
|
|
|
local -r expected_version="$(jq -r '.version' "${packagejson}")"
|
|
|
|
|
|
|
|
|
|
if ls "${source}"|grep -q --fixed-strings "${expected_version}"; then
|
|
|
|
|
printf '%s version matches\n' "${name}" >&2
|
|
|
|
|
else
|
|
|
|
|
printf '%s version MISMATCH: %s !~ %s\n' "${name}" "${expected_version}" "${source}" >&2
|
|
|
|
|
return 1
|
|
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
check_wasm_dep cjs-module-lexer '%{SOURCE101}' deps/cjs-module-lexer/package.json
|
|
|
|
|
check_wasm_dep undici '%{SOURCE111}' deps/undici/src/package.json
|
|
|
|
|
|
|
|
|
|
%if %{with python3_fixup}
|
|
|
|
|
pathfix.py -i %{__python3} -pn $(find -type f ! -name "*.js")
|
|
|
|
|
find . -type f -exec sed -i "s~/usr\/bin\/env python~/usr/bin/python3~" {} \;
|
|
|
|
|
find . -type f -exec sed -i "s~/usr\/bin\/python\W~/usr/bin/python3~" {} \;
|
|
|
|
|
sed -i "s~usr\/bin\/python2~usr\/bin\/python3~" ./deps/v8/tools/gen-inlining-tests.py
|
|
|
|
|
sed -i "s~usr\/bin\/python.*$~usr\/bin\/python2~" ./deps/v8/tools/mb/mb_unittest.py
|
|
|
|
|
find . -type f -exec sed -i "s~python -c~python2 -c~" {} \;
|
|
|
|
|
sed -i "s~which('python')~which('python2')~" configure
|
|
|
|
|
sed -i "s~usr\/bin\/python.*$~usr\/bin\/python3~" ./deps/v8/tools/mb/mb_test.py
|
|
|
|
|
find . -type f -exec sed -i "s~python -c~python3 -c~" {} \;
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
%build
|
|
|
|
|
|
|
|
|
|
%ifarch s390 s390x %{arm} %ix86
|
|
|
|
|
# Decrease debuginfo verbosity to reduce memory consumption during final
|
|
|
|
|
# library linking
|
|
|
|
|
%global optflags %(echo %{optflags} | sed 's/-g /-g1 /')
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
export RHEL_ALLOW_PYTHON2_FOR_BUILD=1
|
|
|
|
|
export CC='%{__cc}'
|
|
|
|
|
export CXX='%{__cxx}'
|
|
|
|
|
export CC='gcc'
|
|
|
|
|
export CXX='g++'
|
|
|
|
|
%{?with_python3_fixup:export NODE_GYP_FORCE_PYTHON=%{__python3}}
|
|
|
|
|
|
|
|
|
|
# build with debugging symbols and add defines from libuv (#892601)
|
|
|
|
|
# Node's v8 breaks with GCC 6 because of incorrect usage of methods on
|
|
|
|
|
# NULL objects. We need to pass -fno-delete-null-pointer-checks
|
|
|
|
|
export CFLAGS='%{optflags} \
|
|
|
|
|
-D_LARGEFILE_SOURCE \
|
|
|
|
|
-D_FILE_OFFSET_BITS=64 \
|
|
|
|
|
-DZLIB_CONST \
|
|
|
|
|
-fno-delete-null-pointer-checks'
|
|
|
|
|
export CXXFLAGS='%{optflags} \
|
|
|
|
|
-D_LARGEFILE_SOURCE \
|
|
|
|
|
-D_FILE_OFFSET_BITS=64 \
|
|
|
|
|
-DZLIB_CONST \
|
|
|
|
|
-fno-delete-null-pointer-checks'
|
|
|
|
|
|
|
|
|
|
# Explicit new lines in C(XX)FLAGS can break naive build scripts
|
|
|
|
|
export CFLAGS="$(echo ${CFLAGS} | tr '\n\\' ' ')"
|
|
|
|
|
export CXXFLAGS="$(echo ${CXXFLAGS} | tr '\n\\' ' ')"
|
|
|
|
|
|
|
|
|
|
extra_cflags=(
|
|
|
|
|
-D_LARGEFILE_SOURCE
|
|
|
|
|
-D_FILE_OFFSET_BITS=64
|
|
|
|
|
-DZLIB_CONST
|
|
|
|
|
-fno-delete-null-pointer-checks
|
|
|
|
|
)
|
|
|
|
|
export CFLAGS="%{optflags} ${extra_cflags[*]}" CXXFLAGS="%{optflags} ${extra_cflags[*]}"
|
|
|
|
|
export LDFLAGS="%{build_ldflags}"
|
|
|
|
|
|
|
|
|
|
%if %{with bootstrap}
|
|
|
|
|
./configure --prefix=%{_prefix} \
|
|
|
|
|
%{__python3} configure.py --prefix=%{_prefix} --verbose \
|
|
|
|
|
--shared-openssl \
|
|
|
|
|
--shared-zlib \
|
|
|
|
|
--without-dtrace \
|
|
|
|
|
--with-intl=small-icu \
|
|
|
|
|
--openssl-use-def-ca-store
|
|
|
|
|
%else
|
|
|
|
|
./configure --prefix=%{_prefix} \
|
|
|
|
|
--shared-openssl \
|
|
|
|
|
--shared-zlib \
|
|
|
|
|
--shared-libuv \
|
|
|
|
|
--shared-http-parser \
|
|
|
|
|
--shared-nghttp2 \
|
|
|
|
|
--with-dtrace \
|
|
|
|
|
--shared-brotli \
|
|
|
|
|
%{!?with_bundled:--shared-libuv} \
|
|
|
|
|
%{!?with_bundled:--shared-nghttp2} \
|
|
|
|
|
--with-intl=small-icu \
|
|
|
|
|
--with-icu-default-data-dir=%{icudatadir} \
|
|
|
|
|
--openssl-use-def-ca-store
|
|
|
|
|
%endif
|
|
|
|
|
%{!?with_corepack:--without-corepack} \
|
|
|
|
|
--openssl-use-def-ca-store \
|
|
|
|
|
--openssl-default-cipher-list=PROFILE=SYSTEM
|
|
|
|
|
|
|
|
|
|
%if %{?with_debug} == 1
|
|
|
|
|
# Setting BUILDTYPE=Debug builds both release and debug binaries
|
|
|
|
@ -390,7 +453,7 @@ make BUILDTYPE=Release %{?_smp_mflags}
|
|
|
|
|
|
|
|
|
|
# Extract the ICU data and convert it to the appropriate endianness
|
|
|
|
|
pushd deps/
|
|
|
|
|
tar xfz %SOURCE3
|
|
|
|
|
tar xfz %{SOURCE3}
|
|
|
|
|
|
|
|
|
|
pushd icu/source
|
|
|
|
|
|
|
|
|
@ -419,8 +482,6 @@ popd # deps
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%install
|
|
|
|
|
export RHEL_ALLOW_PYTHON2_FOR_BUILD=1
|
|
|
|
|
|
|
|
|
|
rm -rf %{buildroot}
|
|
|
|
|
|
|
|
|
|
./tools/install.py install %{buildroot} %{_prefix}
|
|
|
|
@ -467,9 +528,10 @@ cp -pr deps/npm/man/* %{buildroot}%{_mandir}/
|
|
|
|
|
rm -rf %{buildroot}%{_prefix}/lib/node_modules/npm/man
|
|
|
|
|
ln -sf %{_mandir} %{buildroot}%{_prefix}/lib/node_modules/npm/man
|
|
|
|
|
|
|
|
|
|
# Install Gatsby HTML documentation to %{_pkgdocdir}
|
|
|
|
|
# Install Gatsby HTML documentation to %%{_pkgdocdir}
|
|
|
|
|
cp -pr deps/npm/docs %{buildroot}%{_pkgdocdir}/npm/
|
|
|
|
|
rm -rf %{buildroot}%{_prefix}/lib/node_modules/npm/docs
|
|
|
|
|
|
|
|
|
|
ln -sf %{_pkgdocdir}/npm %{buildroot}%{_prefix}/lib/node_modules/npm/docs
|
|
|
|
|
|
|
|
|
|
# Node tries to install some python files into a documentation directory
|
|
|
|
@ -487,18 +549,24 @@ find %{buildroot}%{_prefix}/lib/node_modules/npm \
|
|
|
|
|
-exec chmod -x {} \;
|
|
|
|
|
|
|
|
|
|
# The above command is a little overzealous. Add a few permissions back.
|
|
|
|
|
chmod 0755 %{buildroot}%{_prefix}/lib/node_modules/npm/node_modules/npm-lifecycle/node-gyp-bin/node-gyp
|
|
|
|
|
chmod 0755 %{buildroot}%{_prefix}/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin/node-gyp
|
|
|
|
|
chmod 0755 %{buildroot}%{_prefix}/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
|
|
|
|
|
|
|
|
|
|
%if %{with corepack}
|
|
|
|
|
# Corepack contains a number of executable"shims", including some for Windows
|
|
|
|
|
# PowerShell. Drop the executable bit for those so we don't pick up an
|
|
|
|
|
# automatic dependency on /usr/bin/pwsh that we cannot satisfy.
|
|
|
|
|
chmod -x %{buildroot}%{_prefix}/lib/node_modules/corepack/shims/*.ps1
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
# Drop the NPM builtin configuration in place
|
|
|
|
|
sed -e 's#@SYSCONFDIR@#%{_sysconfdir}#g' \
|
|
|
|
|
%{SOURCE8} > %{buildroot}%{_prefix}/lib/node_modules/npm/npmrc
|
|
|
|
|
|
|
|
|
|
# Drop the NPM default configuration in place
|
|
|
|
|
mkdir -p %{buildroot}%{_sysconfdir}
|
|
|
|
|
cp %{SOURCE1} %{buildroot}%{_sysconfdir}/npmrc
|
|
|
|
|
|
|
|
|
|
# NPM upstream expects it to be in /usr/etc/npmrc, so we'll put a symlink here
|
|
|
|
|
# This is done in the interests of keeping /usr read-only.
|
|
|
|
|
mkdir -p %{buildroot}%{_prefix}/etc
|
|
|
|
|
ln -s %{_sysconfdir}/npmrc %{buildroot}%{_prefix}/etc/npmrc
|
|
|
|
|
|
|
|
|
|
# Install the full-icu data files
|
|
|
|
|
install -Dpm0644 -t %{buildroot}%{icudatadir} deps/icu/source/converted/*
|
|
|
|
|
|
|
|
|
@ -513,10 +581,11 @@ install -Dpm0644 -t %{buildroot}%{icudatadir} deps/icu/source/converted/*
|
|
|
|
|
%{buildroot}/%{_bindir}/node -e "require(\"assert\").equal(require(\"punycode\").version, '%{punycode_version}')"
|
|
|
|
|
|
|
|
|
|
# Ensure we have npm and that the version matches
|
|
|
|
|
NODE_PATH=%{buildroot}%{_prefix}/lib/node_modules:%{buildroot}%{_prefix}/lib/node_modules/npm/node_modules %{buildroot}/%{_bindir}/node -e "require(\"assert\").equal(require(\"npm\").version, '%{npm_version}')"
|
|
|
|
|
# NODE_PATH=%{buildroot}%{_prefix}/lib/node_modules:%{buildroot}%{_prefix}/lib/node_modules/npm/node_modules %{buildroot}/%{_bindir}/node -e "require(\"assert\").equal(require(\"npm\").version, '%{npm_version}')"
|
|
|
|
|
NODE_PATH=%{buildroot}%{_prefix}/lib/node_modules:%{buildroot}%{_prefix}/lib/node_modules/npm/node_modules %{buildroot}/%{_bindir}/node -e "require(\"assert\").equal(JSON.parse(require(\"fs\").readFileSync(\"%{buildroot}%{_prefix}/lib/node_modules/npm/package.json\")).version, '%{npm_version}')"
|
|
|
|
|
|
|
|
|
|
# Make sure i18n support is working
|
|
|
|
|
NODE_PATH=%{buildroot}%{_prefix}/lib/node_modules:%{buildroot}%{_prefix}/lib/node_modules/npm/node_modules %{buildroot}/%{_bindir}/node --icu-data-dir=%{buildroot}%{icudatadir} %{SOURCE2}
|
|
|
|
|
NODE_PATH=%{buildroot}%{_prefix}/lib/node_modules:%{buildroot}%{_prefix}/lib/node_modules/npm/node_modules LD_LIBRARY_PATH=%{buildroot}%{_libdir} %{buildroot}/%{_bindir}/node --icu-data-dir=%{buildroot}%{icudatadir} %{SOURCE2}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%pretrans -n npm -p <lua>
|
|
|
|
@ -534,6 +603,38 @@ if d_st then
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
-- Replace the npm docs directory with a symlink
|
|
|
|
|
-- Drop this scriptlet when F31 is EOL
|
|
|
|
|
path = "%{_prefix}/lib/node_modules/npm/doc"
|
|
|
|
|
st = posix.stat(path)
|
|
|
|
|
if st and st.type == "directory" then
|
|
|
|
|
status = os.rename(path, path .. ".rpmmoved")
|
|
|
|
|
if not status then
|
|
|
|
|
suffix = 0
|
|
|
|
|
while not status do
|
|
|
|
|
suffix = suffix + 1
|
|
|
|
|
status = os.rename(path .. ".rpmmoved", path .. ".rpmmoved." .. suffix)
|
|
|
|
|
end
|
|
|
|
|
os.rename(path, path .. ".rpmmoved")
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
-- Replace the npm docs directory with a symlink
|
|
|
|
|
-- Drop this scriptlet when F31 is EOL
|
|
|
|
|
path = "%{_prefix}/lib/node_modules/npm/html"
|
|
|
|
|
st = posix.stat(path)
|
|
|
|
|
if st and st.type == "directory" then
|
|
|
|
|
status = os.rename(path, path .. ".rpmmoved")
|
|
|
|
|
if not status then
|
|
|
|
|
suffix = 0
|
|
|
|
|
while not status do
|
|
|
|
|
suffix = suffix + 1
|
|
|
|
|
status = os.rename(path .. ".rpmmoved", path .. ".rpmmoved." .. suffix)
|
|
|
|
|
end
|
|
|
|
|
os.rename(path, path .. ".rpmmoved")
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
-- Replace the npm man directory with a symlink
|
|
|
|
|
-- Drop this scriptlet when F31 is EOL
|
|
|
|
|
path = "%{_prefix}/lib/node_modules/npm/man"
|
|
|
|
@ -555,21 +656,17 @@ end
|
|
|
|
|
%{_bindir}/node
|
|
|
|
|
%dir %{_prefix}/lib/node_modules
|
|
|
|
|
%dir %{_datadir}/node
|
|
|
|
|
%dir %{_datadir}/systemtap
|
|
|
|
|
%dir %{_datadir}/systemtap/tapset
|
|
|
|
|
%{_datadir}/systemtap/tapset/node.stp
|
|
|
|
|
|
|
|
|
|
%if %{with bootstrap}
|
|
|
|
|
# no dtrace
|
|
|
|
|
%else
|
|
|
|
|
%dir %{_usr}/lib/dtrace
|
|
|
|
|
%{_usr}/lib/dtrace/node.d
|
|
|
|
|
%if %{with corepack}
|
|
|
|
|
# corepack
|
|
|
|
|
%{_bindir}/corepack
|
|
|
|
|
%{_prefix}/lib/node_modules/corepack
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
%{_rpmconfigdir}/fileattrs/nodejs_native.attr
|
|
|
|
|
%{_rpmconfigdir}/nodejs_native.req
|
|
|
|
|
%license LICENSE
|
|
|
|
|
%doc AUTHORS CHANGELOG.md COLLABORATOR_GUIDE.md GOVERNANCE.md README.md
|
|
|
|
|
%doc CHANGELOG.md onboarding.md GOVERNANCE.md README.md
|
|
|
|
|
%doc %{_mandir}/man1/node.1*
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@ -592,7 +689,6 @@ end
|
|
|
|
|
%{_bindir}/npx
|
|
|
|
|
%{_prefix}/lib/node_modules/npm
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/npmrc
|
|
|
|
|
%{_prefix}/etc/npmrc
|
|
|
|
|
%ghost %{_sysconfdir}/npmignore
|
|
|
|
|
%doc %{_mandir}/man1/npm*.1*
|
|
|
|
|
%doc %{_mandir}/man1/npx.1*
|
|
|
|
@ -601,73 +697,215 @@ end
|
|
|
|
|
%doc %{_mandir}/man5/npmrc.5*
|
|
|
|
|
%doc %{_mandir}/man5/package-json.5*
|
|
|
|
|
%doc %{_mandir}/man5/package-lock-json.5*
|
|
|
|
|
%doc %{_mandir}/man5/package-locks.5*
|
|
|
|
|
%doc %{_mandir}/man5/shrinkwrap-json.5*
|
|
|
|
|
%doc %{_mandir}/man5/npm-shrinkwrap-json.5*
|
|
|
|
|
%doc %{_mandir}/man5/npm-global.5.*
|
|
|
|
|
%doc %{_mandir}/man5/npm-json.5.*
|
|
|
|
|
%doc %{_mandir}/man7/config.7*
|
|
|
|
|
%doc %{_mandir}/man7/dependency-selectors.7*
|
|
|
|
|
%doc %{_mandir}/man7/developers.7*
|
|
|
|
|
%doc %{_mandir}/man7/disputes.7*
|
|
|
|
|
%doc %{_mandir}/man7/logging.7*
|
|
|
|
|
%doc %{_mandir}/man7/orgs.7*
|
|
|
|
|
%doc %{_mandir}/man7/package-spec.7*
|
|
|
|
|
%doc %{_mandir}/man7/registry.7*
|
|
|
|
|
%doc %{_mandir}/man7/removal.7*
|
|
|
|
|
%doc %{_mandir}/man7/scope.7*
|
|
|
|
|
%doc %{_mandir}/man7/scripts.7*
|
|
|
|
|
%doc %{_mandir}/man7/semver.7*
|
|
|
|
|
%doc %{_mandir}/man7/workspaces.7*
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%files docs
|
|
|
|
|
%doc doc
|
|
|
|
|
%dir %{_pkgdocdir}
|
|
|
|
|
%{_pkgdocdir}/html
|
|
|
|
|
%{_pkgdocdir}/npm/docs
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%changelog
|
|
|
|
|
* Wed Feb 24 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.24.0-1
|
|
|
|
|
- Resolves: RHBZ#1932373, RHBZ#1932426
|
|
|
|
|
- Resolves CVE-2021-22883 and CVE-2021-22884
|
|
|
|
|
- remove -debug-nghttp2 flag (1930775)
|
|
|
|
|
- remove ini patch merged upstream
|
|
|
|
|
* Wed Oct 18 2023 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:20.8.1-1
|
|
|
|
|
- Update node and nghttp
|
|
|
|
|
- Add fips patch
|
|
|
|
|
- Fixes CVE-2023-44487 (nghttp)
|
|
|
|
|
- Fixes CVE-2023-45143, CVE-2023-39331, CVE-2023-39332, CVE-2023-38552, CVE-2023-39333
|
|
|
|
|
|
|
|
|
|
* Mon Jan 18 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.23.1-1
|
|
|
|
|
- January Security release
|
|
|
|
|
* Thu Aug 10 2023 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:20.5.1-1
|
|
|
|
|
- Rebase to new security release
|
|
|
|
|
- Address CVE-2023-32002, CVE-2023-32004, CVE-2023-32558 (high)
|
|
|
|
|
- Address CVE-2023-32006, CVE-2023-32559 (medium)
|
|
|
|
|
- Address CVE-2023-32005, CVE-2023-32003 (low)
|
|
|
|
|
- Resolves: #2186718
|
|
|
|
|
- Resolves RHELPLAN-155624
|
|
|
|
|
|
|
|
|
|
* Thu Jul 27 2023 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:20.5.0-1
|
|
|
|
|
- Update to v20.5.0
|
|
|
|
|
- Remove dtrace support
|
|
|
|
|
- bcond corepack, so we don't provide it by default
|
|
|
|
|
- Decrease debuginfo verbosity for all arches
|
|
|
|
|
- Resolves: #2186718
|
|
|
|
|
- Resolves RHELPLAN-155624
|
|
|
|
|
|
|
|
|
|
* Wed Jul 12 2023 Jan Staněk <jstanek@redhat.com> - 1:18.16.1-1
|
|
|
|
|
- Rebase to 18.16.1
|
|
|
|
|
Resolves: rhbz#2188290 rhbz#2166926
|
|
|
|
|
Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590
|
|
|
|
|
- Replace /usr/etc/npmrc symlink with builtin configuration
|
|
|
|
|
Resolves: rhbz#2222287
|
|
|
|
|
|
|
|
|
|
* Tue May 30 2023 Jan Staněk <jstanek@redhat.com> - 1:18.14.2-3
|
|
|
|
|
- Update bundled c-ares to 1.19.1
|
|
|
|
|
Resolves: CVE-2022-4904
|
|
|
|
|
Resolves: CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 CVE-2023-32067
|
|
|
|
|
|
|
|
|
|
* Tue Mar 21 2023 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:18.14.2-2
|
|
|
|
|
- Provide simduft
|
|
|
|
|
|
|
|
|
|
* Tue Mar 21 2023 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:18.14.2-1
|
|
|
|
|
- Rebase to 18.14.2
|
|
|
|
|
- Resolves: #2178086
|
|
|
|
|
- Resolves: CVE-2022-25881, CVE-2023-23936, CVE-2023-24807
|
|
|
|
|
- Resolves: CVE-2023-23918, CVE-2023-23919, CVE-2023-23920
|
|
|
|
|
|
|
|
|
|
* Fri Nov 18 2022 Jan Staněk <jstanek@redhat.com> - 1:18.12.1-2
|
|
|
|
|
- Update version of bundled histogram
|
|
|
|
|
|
|
|
|
|
* Wed Nov 09 2022 Jan Staněk <jstanek@redhat.com> - 1:18.12.1-1
|
|
|
|
|
- Rebase to version 18.12.1
|
|
|
|
|
Resolves: rhbz#2125580 CVE-2022-43548 CVE-2022-3517
|
|
|
|
|
|
|
|
|
|
* Tue Sep 27 2022 Jan Staněk <jstanek@redhat.com> - 1:18.9.1-1
|
|
|
|
|
- Rebase to version 18.9.1
|
|
|
|
|
Resolves: CVE-2022-35255 CVE-2022-35256
|
|
|
|
|
|
|
|
|
|
* Fri Aug 26 2022 Jan Staněk <jstanek@redhat.com> - 1:18.8.0-1
|
|
|
|
|
- Rebase to version 18.8.0
|
|
|
|
|
- Include sources for WASM blobs
|
|
|
|
|
|
|
|
|
|
* Fri Jul 15 2022 Jan Staněk <jstanek@redhat.com> - 1:18.6.0-1
|
|
|
|
|
- Rebase to version 18.6.0
|
|
|
|
|
Resolves: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215
|
|
|
|
|
Resolves: CVE-2022-29244
|
|
|
|
|
|
|
|
|
|
* Tue May 31 2022 Jan Staněk <jstanek@redhat.com> - 1:18.2.0-1
|
|
|
|
|
- Rebase to version 18.2.0
|
|
|
|
|
|
|
|
|
|
* Mon Apr 25 2022 Jan Staněk <jstanek@redhat.com> - 1:16.14.0-5
|
|
|
|
|
- Unify configure calls into single command
|
|
|
|
|
- Refactor bootstrap-related parts
|
|
|
|
|
- Decouple dependency bundling from bootstrapping
|
|
|
|
|
|
|
|
|
|
* Mon Apr 11 2022 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.14.0-4
|
|
|
|
|
- Apply lock file validation fixes
|
|
|
|
|
- Resolves: CVE-2021-43616
|
|
|
|
|
- Resolves: RHBZ#2070013
|
|
|
|
|
|
|
|
|
|
* Mon Dec 06 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.13.1-3
|
|
|
|
|
- Resolves: RHBZ#2026329
|
|
|
|
|
- Add corepack to spec
|
|
|
|
|
|
|
|
|
|
* Mon Dec 06 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.13.1-2
|
|
|
|
|
- Resolves: RHBZ#2026329
|
|
|
|
|
- Update npm version test
|
|
|
|
|
|
|
|
|
|
* Thu Dec 02 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.13.1-1
|
|
|
|
|
- Resolves: RHBZ#2014132, RHBZ#2014126, RHBZ#2013828, RHBZ#2024920
|
|
|
|
|
- Resolves: RHBZ#2026329
|
|
|
|
|
- Rebase to LTS release and to fix multiple low and medium CVEs
|
|
|
|
|
|
|
|
|
|
* Mon Sep 13 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.8.0-1
|
|
|
|
|
- Resolves CVE-2021-32803, CVE-2021-32804, CVE-2021-37701, CVE-2021-37712
|
|
|
|
|
- Resolves: RHBZ#1993948, RHBZ#1993941, RHBZ#2000151, RHBZ#2002176
|
|
|
|
|
|
|
|
|
|
* Mon Aug 30 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.7.0-2
|
|
|
|
|
- Resolves CVE-2021-22930, CVE-2021-22931, CVE-2021-22939,
|
|
|
|
|
- CVE-2021-22940, CVE-2021-32803, CVE-2021-32804, CVE-2021-3672
|
|
|
|
|
- Resolves: RHBZ#1988608, RHBZ#1993816, RHBZ#1993810
|
|
|
|
|
- Resolves: RHBZ#1993097, RHBZ#1993948, RHBZ#1993941, RHBZ#1994963
|
|
|
|
|
- fix python3 in gyp
|
|
|
|
|
|
|
|
|
|
* Wed Aug 18 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.7.0-1
|
|
|
|
|
- Resolves CVE-2021-22930, CVE-2021-22931, CVE-2021-22939,
|
|
|
|
|
- CVE-2021-22940, CVE-2021-32803, CVE-2021-32804, CVE-2021-3672
|
|
|
|
|
- Resolves: RHBZ#1988608, RHBZ#1993816, RHBZ#1993810
|
|
|
|
|
- Resolves: RHBZ#1993097, RHBZ#1993948, RHBZ#1993941, RHBZ#1994963
|
|
|
|
|
|
|
|
|
|
* Fri Jul 09 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.4.2-1
|
|
|
|
|
- Resolves: RHBZ#1979847
|
|
|
|
|
- Resolves CVE-2021-22918(libuv)
|
|
|
|
|
- Use system cipher list(1842826, 1952915)
|
|
|
|
|
|
|
|
|
|
* Tue May 11 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:16.1.0-1
|
|
|
|
|
- Resolves: RHBZ#1953991
|
|
|
|
|
- Rebase to v16.x
|
|
|
|
|
- Update version of gcc and gcc-c++ needed
|
|
|
|
|
- Remove libs conditionals
|
|
|
|
|
- Remove unused patches
|
|
|
|
|
- Bundle nghttp3 and ngtcp2
|
|
|
|
|
|
|
|
|
|
* Mon Mar 01 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.16.0-2
|
|
|
|
|
- Resolves RHBZ#1930775
|
|
|
|
|
- remove --debug-nghttp2 option
|
|
|
|
|
|
|
|
|
|
* Mon Mar 01 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.16.0-1
|
|
|
|
|
- Resolves CVE-2021-22883 CVE-2021-22884
|
|
|
|
|
- Resolves: RHBZ#1934566, RHBZ#1934599
|
|
|
|
|
- Rebase, remove ini patch
|
|
|
|
|
|
|
|
|
|
* Tue Jan 26 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.15.4-2
|
|
|
|
|
- Add patch for yarn crash
|
|
|
|
|
- Resolves: RHBZ#1915296
|
|
|
|
|
|
|
|
|
|
* Tue Jan 19 2021 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.15.4-1
|
|
|
|
|
- Security rebase to 14.15.4
|
|
|
|
|
- https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
|
|
|
|
|
- Rebase to 10.23.1
|
|
|
|
|
- Resolves: RHBZ#1916461, RHBZ#1914789
|
|
|
|
|
- Resolves: RHBZ#1914783, RHBZ#1916462, RHBZ#1916395, RHBZ#1916459
|
|
|
|
|
- Resolves: RHBZ#1916691, RHBZ#1916689, RHBZ#1916388
|
|
|
|
|
- Remove dot-prop patch, as it is fixed by npm rebase
|
|
|
|
|
- Resolves: RHBZ#1913001, RHBZ#1912953
|
|
|
|
|
- Resolves: RHBZ#1912636, RHBZ#1898602, RHBZ#1898768, RHBZ#1893987, RHBZ#1893184
|
|
|
|
|
|
|
|
|
|
* Tue Sep 22 2020 Jan Staněk <jstanek@redhat.com> - 1:10.22.1-1
|
|
|
|
|
- Security rebase to 10.22.1
|
|
|
|
|
* Thu Oct 29 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.15.0-1
|
|
|
|
|
- Resolves: RHBZ#1858864
|
|
|
|
|
- Update to LTS release
|
|
|
|
|
|
|
|
|
|
* Wed Jun 17 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.21.0-3
|
|
|
|
|
- Resolves: RHBZ#1845307
|
|
|
|
|
- Remove brotli-devel requires from nodejs-devel
|
|
|
|
|
* Mon Sep 21 2020 Jan Staněk <jstanek@redhat.com> - 1:14.11.0-1
|
|
|
|
|
- Security update to 14.11.0
|
|
|
|
|
|
|
|
|
|
* Tue Jun 16 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.21.0-2
|
|
|
|
|
- Resolves: RHBZ#1845307
|
|
|
|
|
- Turn off debug builds
|
|
|
|
|
* Wed Jun 03 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.4.0-1
|
|
|
|
|
- Security update to 14.4.0
|
|
|
|
|
- Resolves: RHBZ#1815402
|
|
|
|
|
|
|
|
|
|
* Mon Jun 15 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.21.0-1
|
|
|
|
|
- Security update to 10.21.0
|
|
|
|
|
- Resolves: RHBZ#1845307
|
|
|
|
|
- Fixes CVE-2020-11080, CVE-2020-8174, CVE-2020-10531
|
|
|
|
|
- Bundle brotli, because --shared-brotli configure option is missing
|
|
|
|
|
- Add i18n subpackage
|
|
|
|
|
* Thu May 21 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.3.0-1
|
|
|
|
|
- Update to 14.3.0
|
|
|
|
|
- Fix optflags to save memory
|
|
|
|
|
- Resolves: RHBZ#1815402
|
|
|
|
|
|
|
|
|
|
* Wed Mar 18 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.19.0-2
|
|
|
|
|
- Resolves: RHBZ#1811499
|
|
|
|
|
* Wed May 06 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:14.2.0-1
|
|
|
|
|
- Update to 14.2.0
|
|
|
|
|
- build with python3 only
|
|
|
|
|
- some clean up
|
|
|
|
|
|
|
|
|
|
* Mon Feb 10 2020 Jan Staněk <jstanek@redhat.com> - 1:10.19.0-1
|
|
|
|
|
- Rebase to 10.19.0 to fix CVE-2019-15604 to CVE-2019-15606
|
|
|
|
|
* Tue Mar 17 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:12.16.1-2
|
|
|
|
|
- Fix CVE-2020-10531
|
|
|
|
|
|
|
|
|
|
* Tue Sep 10 2019 Jan Staněk <jstanek@redhat.com> - 1:10.16.3-1
|
|
|
|
|
- Rebase to 10.16.3 to fix CVE-2019-9511 to CVE-2019-9518
|
|
|
|
|
* Thu Feb 20 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:12.16.1-1
|
|
|
|
|
- Rebase to 12.16.1
|
|
|
|
|
|
|
|
|
|
* Wed Jan 15 2020 Jan Staněk <jstanek@redhat.com> - 1:12.14.1-1
|
|
|
|
|
- Rebase to 12.14.1
|
|
|
|
|
|
|
|
|
|
* Fri Nov 29 2019 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:12.13.1-1
|
|
|
|
|
- Resolves: RHBZ# 1773503, update to 12.13.1
|
|
|
|
|
- minor clean up and sync with Fedora spec
|
|
|
|
|
- turn off debug builds
|
|
|
|
|
|
|
|
|
|
* Thu Aug 01 2019 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:12.4.0-2
|
|
|
|
|
- Add condition to libs
|
|
|
|
|
|
|
|
|
|
* Wed Jun 12 2019 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:12.4.0-1
|
|
|
|
|
- Update to v12.x
|
|
|
|
|
- Add v8-devel and libs subpackages from fedora
|
|
|
|
|
|
|
|
|
|
* Thu Mar 14 2019 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.14.1-2
|
|
|
|
|
- move nodejs-packaging BR out of conditional
|
|
|
|
|
|
|
|
|
|
* Tue Dec 11 2018 Zuzana Svetlikova <zsvetlik@redhat.com> - 1:10.14.1-1
|
|
|
|
|
- Resolves: RHBZ#1644207
|
|
|
|
|
- Resolves RHBZ#1644207
|
|
|
|
|
- fixes node-gyp permissions
|
|
|
|
|
- rebase
|
|
|
|
|
|
|
|
|
|