Sophie: chromium-browser-stable-15.0.874.120-0.1.mga1 src

chromium-browser-stable-15.0.874.120-0.1.mga1.src.rpm

%define revision 108895
%define crname chromium-browser
%define _crdir %{_libdir}/%{crname}
%define basever 15.0.865.0
%define patchver() ([ -f %{_sourcedir}/patch-%1-%2.diff.xz ] || exit 1; xz -dc %{_sourcedir}/patch-%1-%2.diff.xz|patch -p1);

%define subrel 1

Name: chromium-browser-stable
Version: 15.0.874.120
Release: %mkrel 0
Summary: A fast webkit-based web browser
Group: Networking/WWW
License: BSD, LGPL
Source0: chromium-%{basever}.tar.xz
Source1: chromium-wrapper
Source2: chromium-browser.desktop
Source3: attributed_string_coder.h
Source1000: patch-15.0.865.0-15.0.874.1.diff.xz
Source1001: binary-15.0.865.0-15.0.874.1.tar.xz
Source1002: script-15.0.865.0-15.0.874.1.sh
Source1003: patch-15.0.874.1-15.0.874.12.diff.xz
Source1004: patch-15.0.874.12-15.0.874.15.diff.xz
Source1005: patch-15.0.874.15-15.0.874.21.diff.xz
Source1006: patch-15.0.874.21-15.0.874.51.diff.xz
Source1007: binary-15.0.874.21-15.0.874.51.tar.xz
Source1008: patch-15.0.874.51-15.0.874.54.diff.xz
Source1009: patch-15.0.874.54-15.0.874.81.diff.xz
Source1010: binary-15.0.874.54-15.0.874.81.tar.xz
Source1011: patch-15.0.874.81-15.0.874.92.diff.xz
Source1012: patch-15.0.874.92-15.0.874.100.diff.xz
Source1013: patch-15.0.874.100-15.0.874.102.diff.xz
Source1014: patch-15.0.874.102-15.0.874.106.diff.xz
Source1015: patch-15.0.874.106-15.0.874.120.diff.xz
Patch0: chromium-15.0.874.1-skip-builder-tests.patch
Patch1: chromium-14.0.835.0-gcc46.patch
Provides: %{crname}
Obsoletes: chromium-browser-unstable < 13.0.761.1
Obsoletes: chromium-browser-beta < 12.0.742.54
Obsoletes: chromium-browser < 1:9.0.597.94
BuildRequires: bison, flex, gtk2-devel, atk-devel, libexpat-devel, gperf
BuildRequires: libnspr-devel, libnss-devel, libalsa-devel
BuildRequires: libglib2-devel, libbzip2-devel, libz-devel, libpng-devel
BuildRequires: libjpeg-devel, libmesagl-devel, libmesaglu-devel
BuildRequires: libxscrnsaver-devel, libdbus-glib-devel, libcups-devel
BuildRequires: libgnome-keyring-devel libvpx-devel libxtst-devel
BuildRequires: libxslt-devel libxml2-devel libxt-devel libpam-devel
BuildRequires: libevent-devel libflac-devel libpulseaudio-devel
BuildRequires: perl-Switch, libgnutls-devel
BuildRequires: libelfutils-devel
ExclusiveArch: i586 x86_64 armel

%description
Chromium is a browser that combines a minimal design with sophisticated
technology to make the web faster, safer, and easier.

This is the stable channel Chromium browser. It offers a rock solid
browser which is updated with features and fixes once they have been
thoroughly tested. If you want the latest features, install the
chromium-browser-unstable package instead.

Note: If you are reverting from unstable to stable or beta channel, you may
experience tab crashes on startup. This crash only affects tabs restored
during the first launch due to a change in how tab state is stored.
See http://bugs.chromium.org/34688. It's always a good idea to back up
your profile before changing channels.

%package -n chromium-browser
Summary: A fast webkit-based web browser (transition package)
Epoch: 1
Group: Networking/WWW
Requires: %{name} = %{version}-%{release}

%description -n chromium-browser
Chromium is a browser that combines a minimal design with sophisticated
technology to make the web faster, safer, and easier.

This is a transition package that installs the stable channel Chromium
browser. If you prefer the dev channel browser, install the
chromium-browser-unstable package instead.


%prep
%setup -q -n chromium-%{basever}
install -D %{_sourcedir}/attributed_string_coder.h \
	chrome/common/mac/attributed_string_coder.h
%patchver 15.0.865.0 15.0.874.1
tar xvf %{_sourcedir}/binary-15.0.865.0-15.0.874.1.tar.xz
sh -x %{_sourcedir}/script-15.0.865.0-15.0.874.1.sh
%patchver 15.0.874.1 15.0.874.12
rm net/data/ssl/certificates/unosoft_hu_cert.der
%patchver 15.0.874.12 15.0.874.15
%patchver 15.0.874.15 15.0.874.21
%patchver 15.0.874.21 15.0.874.51
tar xvf %{_sourcedir}/binary-15.0.874.21-15.0.874.51.tar.xz
%patchver 15.0.874.51 15.0.874.54
%patchver 15.0.874.54 15.0.874.81
tar xvf %{_sourcedir}/binary-15.0.874.54-15.0.874.81.tar.xz
%patchver 15.0.874.81 15.0.874.92
%patchver 15.0.874.92 15.0.874.100
%patchver 15.0.874.100 15.0.874.102
%patchver 15.0.874.102 15.0.874.106
%patchver 15.0.874.106 15.0.874.120

%patch0 -p1 -b .skip-builder-tests
%patch1 -p1 -b .gcc46
echo "%{revision}" > build/LASTCHANGE.in

sed -i -e '/test_support_common/s/^/#/' \
	chrome/browser/sync/tools/sync_tools.gyp

# Hard code extra version
FILE=chrome/common/chrome_version_info_linux.cc
sed -i.orig -e 's/getenv("CHROME_VERSION_EXTRA")/"%{product_vendor} %{product_version}"/' $FILE
cmp $FILE $FILE.orig && exit 1


%build
export GYP_GENERATORS=make
build/gyp_chromium --depth=. \
	-D linux_sandbox_path=%{_crdir}/chrome-sandbox \
	-D linux_sandbox_chrome_path=%{_crdir}/chrome \
	-D linux_link_gnome_keyring=0 \
	-D use_gconf=0 \
	-D werror='' \
	-D use_system_sqlite=0 \
	-D use_system_libxml=1 \
	-D use_system_zlib=1 \
	-D use_system_bzip2=1 \
	-D use_system_libpng=1 \
	-D use_system_libjpeg=1 \
	-D use_system_libevent=1 \
	-D use_system_flac=1 \
	-D use_system_vpx=0 \
	-D use_system_icu=0 \
%ifarch i586
	-D disable_sse2=1 \
	-D release_extra_cflags="-march=i586"
%endif

# Note: DON'T use system sqlite (3.7.3) -- it breaks history search

%make chrome chrome_sandbox BUILDTYPE=Release

%install
rm -rf %{buildroot}
mkdir -p %{buildroot}%{_bindir}
mkdir -p %{buildroot}%{_crdir}/locales
mkdir -p %{buildroot}%{_crdir}/themes
mkdir -p %{buildroot}%{_mandir}/man1
install -m 755 %{_sourcedir}/chromium-wrapper %{buildroot}%{_crdir}/
install -m 755 out/Release/chrome %{buildroot}%{_crdir}/
install -m 4755 out/Release/chrome_sandbox %{buildroot}%{_crdir}/chrome-sandbox
install -m 644 out/Release/chrome.1 %{buildroot}%{_mandir}/man1/%{crname}.1
install -m 644 out/Release/chrome.pak %{buildroot}%{_crdir}/
install -m 755 out/Release/libffmpegsumo.so %{buildroot}%{_crdir}/
install -m 755 out/Release/libppGoogleNaClPluginChrome.so %{buildroot}%{_crdir}/
install -m 755 out/Release/nacl_helper_bootstrap %{buildroot}%{_crdir}/
install -m 755 out/Release/nacl_helper %{buildroot}%{_crdir}/
install -m 644 out/Release/nacl_irt_*.nexe %{buildroot}%{_crdir}/
install -m 644 out/Release/locales/*.pak %{buildroot}%{_crdir}/locales/
install -m 755 out/Release/xdg-mime %{buildroot}%{_crdir}/
install -m 755 out/Release/xdg-settings %{buildroot}%{_crdir}/
install -m 644 out/Release/resources.pak %{buildroot}%{_crdir}/
ln -s %{_crdir}/chromium-wrapper %{buildroot}%{_bindir}/%{crname}

find out/Release/resources/ -name "*.d" -exec rm {} \;
cp -r out/Release/resources %{buildroot}%{_crdir}

# desktop file
mkdir -p %{buildroot}%{_datadir}/applications
install -m 644 %{_sourcedir}/%{crname}.desktop %{buildroot}%{_datadir}/applications/

# icon
for i in 16 22 24 32 48 64 128 256; do
	mkdir -p %{buildroot}%{_iconsdir}/hicolor/${i}x${i}/apps
	install -m 644 chrome/app/theme/chromium/product_logo_$i.png \
		%{buildroot}%{_iconsdir}/hicolor/${i}x${i}/apps/%{crname}.png
done

%files -n chromium-browser

%files
%{_bindir}/%{crname}
%{_crdir}/chromium-wrapper
%{_crdir}/chrome
%{_crdir}/chrome-sandbox
%{_crdir}/chrome.pak
%{_crdir}/libffmpegsumo.so
%{_crdir}/libppGoogleNaClPluginChrome.so
%{_crdir}/nacl_helper_bootstrap
%{_crdir}/nacl_helper
%{_crdir}/nacl_irt_*.nexe
%{_crdir}/locales
%{_crdir}/resources.pak
%{_crdir}/resources
%{_crdir}/themes
%{_crdir}/xdg-mime
%{_crdir}/xdg-settings
%{_mandir}/man1/%{crname}*
%{_datadir}/applications/*.desktop
%{_iconsdir}/hicolor/*/apps/%{crname}.png


%changelog

* Tue Nov 15 2011 dmorgan <dmorgan> 15.0.874.120-0.1.mga1
+ Revision: 167936
- New version 15.0.874.120
- new upstream release 15.0.874.102 (106587)
 * [86758] High CVE-2011-2845: URL bar spoof in history handling.
 * [88949] Medium CVE-2011-3875: URL bar spoof with drag+drop of URLs.
 * [90217] Low CVE-2011-3876: Avoid stripping whitespace at the end of
   download filenames.
 * [91218] Low CVE-2011-3877: XSS in appcache internals page.
 * [94487] Medium CVE-2011-3878: Race condition in worker process
   initialization.
 * [95374] Low CVE-2011-3879: Avoid redirect to chrome scheme URIs.
 * [95992] Low CVE-2011-3880: Don't permit as a HTTP header delimiter.
 * [96047][96885][98053][99512][99750] High CVE-2011-3881: Cross-origin
   policy violations.
 * [96292] High CVE-2011-3882: Use-after-free in media buffer handling.
 * [96902] High CVE-2011-3883: Use-after-free in counter handling.
 * [97148] High CVE-2011-3884: Timing issues in DOM traversal.
 * [97599][98064][98556][99294][99880][100059] High CVE-2011-3885: Stale
   style bugs leading to use-after-free.
 * [98773][99167] High CVE-2011-3886: Out of bounds writes in v8.
 * [98407] Medium CVE-2011-3887: Cookie theft with javascript URIs.
 * [99138] High CVE-2011-3888: Use-after-free with plug-in and editing.
 * [99211] High CVE-2011-3889: Heap overflow in Web Audio.
 * [99553] High CVE-2011-3890: Use-after-free in video source handling.
 * [100332] High CVE-2011-3891: Exposure of internal v8 functions.
- Obsolete beta and unstable versions
- Fix buildrequires
- Use %%subrel
- new upstream release 14.0.835.163 (101024)
- security fixes:
 * [49377] High CVE-2011-2835: Race condition in the certificate cache
 * [57908] Low CVE-2011-2837: Use PIC / pie compiler flags
 * [75070] Low CVE-2011-2838: Treat MIME type more authoritatively when
   loading plug-ins
 * [76771] High CVE-2011-2839: Crash in v8 script object wrappers
 * [78427] [83031] Low CVE-2011-2840: Possible URL bar spoofs with unusual
   user interaction
 * [78639] High CVE-2011-2841: Garbage collection error in PDF
 * [82438] Medium CVE-2011-2843: Out-of-bounds read with media buffers
 * [85041] Medium CVE-2011-2844: Out-of-bounds read with mp3 files
 * [$1000] [89219] High CVE-2011-2846: Use-after-free in unload event handling
 * [$1000] [89330] High CVE-2011-2847: Use-after-free in document loader
 * [89564] Medium CVE-2011-2848: URL bar spoof with forward button
 * [89795] Low CVE-2011-2849: Browser NULL pointer crash with WebSockets
 * [89991] Medium CVE-2011-3234: Out-of-bounds read in box handling
 * [90134] Medium CVE-2011-2850: Out-of-bounds read with Khmer characters
 * [90173] Medium CVE-2011-2851: Out-of-bounds read in video handling
 * [91120] High CVE-2011-2852: Off-by-one in v8
 * [91197] High CVE-2011-2853: Use-after-free in plug-in handling
 * [92651] [94800] High CVE-2011-2854: Use-after-free in ruby / table style
   handing
 * [92959] High CVE-2011-2855: Stale node in stylesheet handling
 * [93416] High CVE-2011-2856: Cross-origin bypass in v8
 * [93420] High CVE-2011-2857: Use-after-free in focus controller
 * [93472] High CVE-2011-2834: Double free in libxml XPath handling
 * [93497] Medium CVE-2011-2859: Incorrect permissions assigned to
   non-gallery pages
 * [93587] High CVE-2011-2860: Use-after-free in table style handling
 * [93596] Medium CVE-2011-2861: Bad string read in PDF
 * [93906] High CVE-2011-2862: Unintended access to v8 built-in objects
 * [95563] Medium CVE-2011-2864: Out-of-bounds read with Tibetan characters
 * [95625] Medium CVE-2011-2858: Out-of-bounds read with triangle arrays
 * [95917] Low CVE-2011-2874: Failure to pin a self-signed cert for a session
 * [95920] High CVE-2011-2875: Type confusion in v8 object sealing
- detailed changelog at http://goo.gl/6B1kT
- BuildRequires gnutls-devel, otherwise cups-config fails ( from tvignaud )
- Do not apply P3: Fix build
- new upstream release 13.0.782.220 (99552)
 * revoking trust for SSL certificates issued by DigiNotar-controlled
   intermediate CAs used by the Dutch PKIoverheid program
  	( mga # 2581 )

* Wed May 18 2011 tv <tv> 11.0.696.68-1.mga1
+ Revision: 99600
- new upstream release 11.0.696.68 (stable)
- security fixes
  * [64046] High CVE-2011-1799: Bad casts in Chromium WebKit glue.
  * [80608] High CVE-2011-1800: Integer overflows in SVG filters.

* Sat May 07 2011 tv <tv> 11.0.696.65-1.mga1
+ Revision: 95741
- new upstream release 11.0.696.65 (stable)

* Fri Apr 29 2011 tv <tv> 11.0.696.57-1.mga1
+ Revision: 93388
- new upstream release 11.0.696.57 (stable)
  (detailed changelog at http://goo.gl/arI9m)

* Fri Apr 15 2011 tv <tv> 10.0.648.205-1.mga1
+ Revision: 85803
- new upstream release 10.0.648.205 (stable)
  (detailed changelog at http://goo.gl/wJg8b)

* Wed Apr 06 2011 tv <tv> 10.0.648.204-1.mga1
+ Revision: 80981
- new upstream release 10.0.648.204 (stable)
- BuildRequires: libevent-devel speex-devel
- fix a group

* Tue Mar 22 2011 tv <tv> 10.0.648.151-1.mga1
+ Revision: 75407
- new upstream release 10.0.648.151 (stable)
  * blacklist a small number of HTTPS certificates

* Wed Mar 16 2011 tv <tv> 10.0.648.133-1.mga1
+ Revision: 72787
- imported package chromium-browser-stable


* Sat Mar 12 2011 Claudio Matsuoka <claudio@mandriva.com> 10.0.648.133-1mdv2011.0
+ Revision: 644042
- new upstream release 10.0.648.133 (stable)
  * [CVE-2011-1290] fix memory corruption in style handling
- check presence of patch files

* Fri Mar 11 2011 Claudio Matsuoka <claudio@mandriva.com> 10.0.648.127-2
+ Revision: 643848
- apply patches correctly

* Wed Mar 09 2011 Claudio Matsuoka <claudio@mandriva.com> 10.0.648.127-1
+ Revision: 643105
- new upstream release 10.0.648.127 (stable)
  * New version of V8 which greatly improves javascript performance
  * New settings pages that open in a tab, rather than a dialog box
  * Improved security with malware reporting and disabling outdated plugins
    by default
  * Password sync as part of Chrome Sync now enabled by default
  * GPU Accelerated Video
  * Background WebApps
  * webNavigation extension API
- annoucement and security fix list: http://goo.gl/PWdBi
- move chromium patch 10.0.648.114 from beta channel to stable
- move chromium patch 10.0.648.82 from beta channel to stable
- move chromium patch 10.0.648.127 from beta channel to stable
- move chromium patch 10.0.648.126 from beta channel to stable
- move chromium 10.0.648.45 from beta channel to stable
- move patch from beta channel to stable
- move patch from beta channel to stable

* Tue Mar 01 2011 Claudio Matsuoka <claudio@mandriva.com> 9.0.597.107-1
+ Revision: 641075
- new upstream release 9.0.597.107 (stable)
- contains security fixes, see detais at http://goo.gl/rkTSm
- add beta browser to the downgrade notice in spec description

* Sat Feb 12 2011 Claudio Matsuoka <claudio@mandriva.com> 9.0.597.98-1
+ Revision: 637364
- new upstream version 9.0.597.98
- add conflicts to beta channel browser
- add obsoletes entry for old (canary) chromium-browser package

* Thu Feb 10 2011 Claudio Matsuoka <claudio@mandriva.com> 9.0.597.94-1
+ Revision: 637082
- imported package chromium-browser-stable