SLFO-pool/webkit2gtk3
SHA256
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: SLFO-pool:main
Branches Tags
SLFO-pool:main SLFO-pool:1.1
..
compare: SLFO-pool:1.1
Branches Tags
SLFO-pool:main SLFO-pool:1.1

1 Commits
main ... 1.1

Author SHA256 Message Date
Adrian Schröter
84bb5d6560 Sync from SUSE:SLFO:1.1 webkit2gtk3 revision 3d49c13505e60ef63c3cb2585041411e 2025-04-16 04:53:59 +02:00
8 changed files with 158 additions and 464 deletions
Expand all files Collapse all files

4
baselibs.conf Normal file
View File

@@ -0,0 +1,4 @@
libjavascriptcoregtk-4_0-18
libjavascriptcoregtk-4_1-0
libwebkit2gtk-4_0-37
libwebkit2gtk-4_1-0

65
webkit2gtk3-disable-dmabuf-nvidia.patch Normal file
View File

@@ -0,0 +1,65 @@
From: Carlos Garcia Campos <cgarcia@igalia.com>
Subject: Disable DMABuf renderer for NVIDIA proprietary drivers
Bug: https://bugs.webkit.org/show_bug.cgi?id=262607
Bug-Debian: https://bugs.debian.org/1039720
Origin: https://github.com/WebKit/WebKit/pull/18614
Index: webkitgtk-2.44.0/Source/WebKit/UIProcess/gtk/AcceleratedBackingStoreDMABuf.cpp
===================================================================
--- webkitgtk-2.44.0.orig/Source/WebKit/UIProcess/gtk/AcceleratedBackingStoreDMABuf.cpp
+++ webkitgtk-2.44.0/Source/WebKit/UIProcess/gtk/AcceleratedBackingStoreDMABuf.cpp
@@ -37,6 +37,7 @@
#include <WebCore/GLContext.h>
#include <WebCore/IntRect.h>
#include <WebCore/PlatformDisplay.h>
+#include <WebCore/PlatformDisplaySurfaceless.h>
#include <WebCore/ShareableBitmap.h>
#include <WebCore/SharedMemory.h>
#include <epoxy/egl.h>
@@ -45,6 +46,7 @@
#if USE(GBM)
#include <drm_fourcc.h>
+#include <WebCore/PlatformDisplayGBM.h>
#include <gbm.h>
static constexpr uint64_t s_dmabufInvalidModifier = DRM_FORMAT_MOD_INVALID;
@@ -58,6 +60,29 @@ static constexpr uint64_t s_dmabufInvali
namespace WebKit {
+static bool isNVIDIA()
+{
+ const char* forceDMABuf = getenv("WEBKIT_FORCE_DMABUF_RENDERER");
+ if (forceDMABuf && strcmp(forceDMABuf, "0"))
+ return false;
+
+ std::unique_ptr<WebCore::PlatformDisplay> platformDisplay;
+#if USE(GBM)
+ const char* disableGBM = getenv("WEBKIT_DMABUF_RENDERER_DISABLE_GBM");
+ if (!disableGBM || !strcmp(disableGBM, "0")) {
+ if (auto* device = WebCore::PlatformDisplay::sharedDisplay().gbmDevice())
+ platformDisplay = WebCore::PlatformDisplayGBM::create(device);
+ }
+#endif
+ if (!platformDisplay)
+ platformDisplay = WebCore::PlatformDisplaySurfaceless::create();
+
+ WebCore::GLContext::ScopedGLContext glContext(WebCore::GLContext::createOffscreen(platformDisplay ? *platformDisplay : WebCore::PlatformDisplay::sharedDisplay()));
+ if (strstr(reinterpret_cast<const char*>(glGetString(GL_VENDOR)), "NVIDIA"))
+ return true;
+ return false;
+}
+
OptionSet<DMABufRendererBufferMode> AcceleratedBackingStoreDMABuf::rendererBufferMode()
{
static OptionSet<DMABufRendererBufferMode> mode;
@@ -73,6 +98,9 @@ OptionSet<DMABufRendererBufferMode> Acce
return;
}
+ if (isNVIDIA())
+ return;
+
mode.add(DMABufRendererBufferMode::SharedMemory);
const char* forceSHM = getenv("WEBKIT_DMABUF_RENDERER_FORCE_SHM");

435
webkit2gtk3.changes
View File

@@ -1,323 +1,7 @@
-------------------------------------------------------------------
Tue Aug 5 00:25:23 UTC 2025 - Michael Gorse <mgorse@suse.com>
Mon Aug 19 18:47:09 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.48.5 (boo#1247562 boo#1247563 boo#1247564
boo#1247595 boo#1247596 boo#1247597 boo#1247598 boo#1247599
boo#1247600):
+ Fix several crashes.
+ Security fixes: CVE-2025-31273, CVE-2025-31278, CVE-2025-43211,
CVE-2025-43212, CVE-2025-43216, CVE-2025-43227, CVE-2025-43228,
CVE-2025-43240, CVE-2025-43265, CVE-2025-6558.
-------------------------------------------------------------------
Wed Jul 30 18:52:46 UTC 2025 - Michael Gorse <mgorse@suse.com>
- Update to version 2.48.4:
+ Improve emoji font selection with USE_SKIA=ON.
+ Improve playback of multimedia streams from blob URLs.
+ Fix the build with USE_SKIA_OPENTYPE_SVG=ON and
USE_SYSPROF_CAPTURE=ON.
+ Fix the build on LoongArch with USE_SKIA=ON.
+ Fix crash when using a WebKitWebView widget in an offscreen
window.
+ Fix several crashes and rendering issues.
-------------------------------------------------------------------
Sun Jun 8 05:33:09 UTC 2025 - Bernhard Wiedemann <bwiedemann@suse.com>
- Replace usage of %jobs for reproducible builds (boo#1237231)
-------------------------------------------------------------------
Wed May 28 17:29:27 UTC 2025 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.48.3:
+ Fix a crash introduced by the new threaded rendering
implementation using Skia API.
+ Improve rendering performance by recording layers once and
replaying every dirty region in different worker threads.
+ Fix a crash when setting WEBKIT_SKIA_GPU_PAINTING_THREADS=0.
+ Fix a reference cycle in webkitmediastreamsrc preventing its
disposal.
-------------------------------------------------------------------
Sun May 18 12:05:40 UTC 2025 - Michael Gorse <mgorse@suse.com>
- Update to version 2.48.2 (boo#1243282 boo#1243286 boo#1243288
boo#1243289 boo#1243424 boo#1243596):
+ Enable CSS Overscroll Behavior by default.
+ Change threaded rendering implementation to use Skia API
instead of WebCore display list that is not thread safe.
+ Fix rendering when device scale factor change comes before the
web view geometry update.
+ Fix network process crash on exit.
+ Fix the build with ENABLE_RESOURCE_USAGE=OFF.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2025-24223, CVE-2025-31204, CVE-2025-31205,
CVE-2025-31206, CVE-2025-31215, CVE-2025-31257.
- Drop 8bee9eb9.patch: fixed upstream.
-------------------------------------------------------------------
Wed Apr 9 18:11:08 UTC 2025 - Michael Gorse <mgorse@suse.com>
- Remove conditionals related to SLE 15. It is unlikely that we
will sync to SLE 15 again, and this simplifies the spec.
-------------------------------------------------------------------
Sat Apr 5 22:05:02 UTC 2025 - Michael Gorse <mgorse@suse.com>
- Update to version 2.48.1 (boo#1240958 boo#1240961 boo#1240962
boo#1240963 boo#1240964 boo#1240986 boo#1240987):
+ Limit the data stored in session state.
+ Remove the empty area below the title bar in Web Inspector when
not docked.
+ Fix the build with GST_DISABLE_GST_DEBUG.
+ Fix the build with GStreamer < 1.20.
+ Fix the build with video disabled.
+ Fix the build with clang 20.
+ Security fixes: CVE-2024-54551, CVE-2025-24208, CVE-2025-24209,
CVE-2025-24213, CVE-2025-24216, CVE-2025-24264, CVE-2025-30427.
- Add 8bee9eb9.patch: fix the build on non-x86 architectures.
-------------------------------------------------------------------
Mon Mar 17 10:50:24 UTC 2025 - Dominique Leuenberger <dimstar@opensuse.org>
- Drop baselibs.conf: no longer build bi-arch flavors of
libjavascriptcoregtk-4_0-18 and libwebkit2gtk-4_0-37: in
openSUSE:Factory, the gtk3-soup2 flavor is not built at all,
which means outside of 3rd-party projects, this change has no
impact.
-------------------------------------------------------------------
Fri Mar 14 17:37:34 UTC 2025 - Michael Gorse <mgorse@suse.com>
- Use spiel for speech synthesis, rather than flite. Spiel supports
multiple back ends and might become the upstream default once it
is more widely available in Linux distributions.
- Up some version requirements to match the cmake checks in 2.48.0.
- Drop dependency on atk. It is no longer used.
-------------------------------------------------------------------
Fri Mar 14 13:05:01 UTC 2025 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.48.0 (boo#1239863 boo#1239864):
+ Move tiles rendering to worker threads when rendering with the
GPU.
+ Fix preserve-3D intersection rendering.
+ Added new function for creating Promise objects to
JavaScripotCore GLib API.
+ The MediaRecorder backend gained WebM support (requires at
least GStreamer 1.24.9) and audio bitrate configuration
support.
+ Fix invalid DPI-aware font size conversion.
+ Bring back support for OpenType-SVG fonts using Skia SVG
module.
+ Add metadata (title and creation/modification date) to the PDF
document generated for printing.
+ Propagate the fonts computed locale to HarfBuzz.
+ The GPU process build is now enabled for WebGL, but the web
process is still used by default. The runtime flag
UseGPUProcessForWebGL can be used to use the GPU process for
WebGL.
+ Security fixes: CVE-2024-44192, CVE-2024-54467, CVE-2025-24201,
CVE-2025-24189.
- Drop 7d784721.patch: Fixed upstream.
- Add flite-devel BuildRequires: New dependency.
-------------------------------------------------------------------
Thu Mar 13 14:06:27 UTC 2025 - Michael Gorse <mgorse@suse.com>
- Add 7d784721.patch: WebGL context primitive restart can be
toggled from WebContent process (boo#1239547 CVE-2025-24201).
-------------------------------------------------------------------
Fri Feb 7 18:41:40 UTC 2025 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.46.6 (boo#1236946):
+ Fix a crash when enabling Skia CPU rendering.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2025-24143, CVE-2025-24150, CVE-2025-24158,
CVE-2025-24162.
- Drop 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch: Fixed
upstream.
-------------------------------------------------------------------
Fri Dec 27 16:35:15 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.46.5 (boo#1234851):
+ Fix the build with GBM and release logs disabled.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2024-54479, CVE-2024-54502, CVE-2024-54505,
CVE-2024-54508, CVE-2024-54543.
-------------------------------------------------------------------
Wed Nov 27 21:34:14 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.46.4:
+ Improve memory consumption and performance of Canvas
getImageData.
+ Fix preserve-3D intersection rendering.
+ Fix video dimensions since GStreamer 1.24.9.
+ Fix the HTTP-based remote Web Inspector not loading in
Chromium.
+ Fix content filters not working on about:blank iframes.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2024-44308, CVE-2024-44309.
- Drop patches fixed upstream:
+ 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch
+ webkit2gtk3-CVE-2024-44308.patch
+ webkit2gtk3-CVE-2024-44309.patch
-------------------------------------------------------------------
Mon Nov 25 19:25:44 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Add webkit2gtk3-CVE-2024-44308.patch: don't allocate DFG register
after a slow path (boo#1233631 CVE-2024-44308).
- Add webkit2gtk3-CVE-2024-44309.patch: fix a cookie management
issue (boo#1233632 CVE-2024-44309).
-------------------------------------------------------------------
Thu Nov 14 10:18:18 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
- Add 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch: Fix build
using ICU 76.1.
-------------------------------------------------------------------
Tue Nov 12 17:24:48 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
- Add 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch: Fix aspect
ratio in videos with gststreamer-1.24.9.
-------------------------------------------------------------------
Mon Nov 4 16:08:38 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.46.3 (boo#1232747):
+ Flatten layers to a plane when preseve-3d style is set.
+ Fix DuckDuckGo links by adding a user agent quirk.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2024-44244, CVE-2024-44296.
- Drop bug281492.patch: fixed upstream.
-------------------------------------------------------------------
Mon Oct 21 15:09:18 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.46.2:
+ Own well-known bus name on a11y bus.
+ Improve memory consumption when putImageData is used repeatedly
on accelerated canvas.
+ Disable cached web process suspension for now to prevent leaks.
+ Improve text kerning with different combinations of antialias
and hinting settings.
+ Destroy all network sessions on process exit.
+ Fix visible rectangle calculation when there are animations.
+ Fix the build with ENABLE_NOTIFICATIONS=OFF.
+ Fix the build with ENABLE_FULLSCREEN_API=OFF.
+ Fix the build with ENABLE_WEB_AUDIO=OFF.
+ Fix the build on ppc64le.
+ Fix several crashes and rendering issues.
- Drop bug281495.patch: fixed upstream.
-------------------------------------------------------------------
Wed Oct 16 21:49:23 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Add bug281492.patch: fix crash in
AccessibilityAtspi::textAttributes.
- Add bug281495.patch: fix crash in ProcessLauncher socket
monitor callback.
-------------------------------------------------------------------
Fri Oct 4 11:19:52 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
- Update to version 2.46.1:
+ Fix login QR code not shown in WhatsApp web.
+ Disable PSON by default again in GTK 3 API versions.
+ Disable DMABuf video sink by default to prevent file descriptor
leaks.
+ Fix the build with GCC 13.
+ Fix several crashes and rendering issues.
-------------------------------------------------------------------
Tue Sep 17 19:04:26 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.46.0 (boo#1231039):
+ Use Skia instead of cairo for 2D rendering and enable GPU
rendering by default.
+ Enable offscreen canvas by default.
+ Add support for system tracing with Sysprof.
+ Implement printing using the Print portal.
+ Add new API to load settings from a config file.
+ Add a new setting to enable or disable the 2D canvas
acceleration (enabled by default).
+ Undeprecate console messages API and make it available in 6.0
API.
+ Security fixes: CVE-2024-40866, CVE-2024-44187, CVE-2024-44185,
CVE-2024-54534, CVE-2024-27856.
-------------------------------------------------------------------
Wed Sep 11 16:53:03 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.45.92:
+ Add webkit://gpu/stdout to dump the information from
webkit://gpu to stdout.
+ Undeprecate injected bundle frame access interfaces.
+ Fix drag and drop.
+ Fix connection to a11y bus under flatpak.
+ Fix the build with Wayland and GBM disabled.
+ Fix linker relocation errors on Debug/RelWithDebInfo builds.
+ Fix several crashes and rendering issues.
-------------------------------------------------------------------
Tue Sep 10 21:35:51 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Up gcc requirement to match cmake check.
Remove wpe and wpebackend-fdo from BuildRequires: no longer used.
-------------------------------------------------------------------
Mon Sep 9 21:12:42 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.45.91:
+ Add new API to WebKitAutomationSession to be notified when the
session is about to be closed.
+ Fix WebGL with accelerated compositing disabled.
+ Fix image filtering not being applied in some cases.
+ Fix the build on 32 bits systems.
+ Fix the build with -DUSE_TEXTURE_MAPPER_DMABUF=OFF
+ Fix several crashes and rendering issues.
+ Updated translations.
- Rebase patch with quilt.
- Drop webkit2gtk3-disable-dmabuf-nvidia.patch: Should not be
needed anymore.
- Pass USE_SYSTEM_SYSPROF_CAPTURE=NO to cmake, avoid building
sysprof capture for now.
- Disable LTO on x86 and ppc64le.
-------------------------------------------------------------------
Mon Sep 9 20:12:42 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.44.4:
+ Add quirk to allow totale.rosettastone.com to load properly.
+ Fix webkit_web_resource_get_data() not working properly in some
sites.
+ Fix not being able to jump-to-source in Web Inspector canvas
traces.
+ Fix not being able to scroll list of WebGL shader programs in
the Web Inspector.
+ Fix linker relocation errors on Debug/RelWithDebInfo builds.
+ Fix crashes when built with Clang with Link-Time Optimization
(LTO).
+ Fix several crashes and rendering issues.
- Drop revert-271175.patch: Fixed upstream.
- Enable LTO again, pass define _lto_cflags for only select targets
-------------------------------------------------------------------
Sun Sep 1 16:30:22 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
- Add revert-271175.patch: This reverts commit 279c9d7, it broke
wasm.
-------------------------------------------------------------------
Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.44.3 (boo#1228697):
- Update to version 2.44.3 (boo#1228696 boo#1228697 boo#1228698):
+ Fix web process cache suspend/resume when sandbox is enabled.
+ Fix accelerated images dissapearing after scrolling.
+ Fix video flickering with DMA-BUF sink.
@@ -327,17 +11,16 @@ Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com>
API.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780,
CVE-2024-40782, CVE-2024-40789, CVE-2024-4558, CVE-2024-27838,
CVE-2024-27851.
CVE-2023-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794,
CVE-2024-4558.
- Drop patches now upstream:
9d5844679af8f84036f1b800307e799bd7ab73ba.patch
webkit2gtk3-CVE-2024-40776.patch
webkit2gtk3-CVE-2024-40779.patch
webkit2gtk3-CVE-2024-40780.patch
webkit2gtk3-CVE-2024-40782.patch
-------------------------------------------------------------------
Thu Aug 1 20:25:14 UTC 2024 - Michael Gorse <mgorse@suse.com>
Thu Aug 8 17:07:18 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Add CVE fixes:
+ webkit2gtk3-CVE-2024-40776.patch (boo#1228613 CVE-2024-40776)
@@ -346,13 +29,7 @@ Thu Aug 1 20:25:14 UTC 2024 - Michael Gorse <mgorse@suse.com>
+ webkit2gtk3-CVE-2024-40782.patch (boo#1228695 CVE-2024-40782)
-------------------------------------------------------------------
Tue Jul 2 21:39:04 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
- Add 9d5844679af8f84036f1b800307e799bd7ab73ba.patch VA+DMABuf
videos flicker
-------------------------------------------------------------------
Fri May 17 20:40:00 UTC 2024 - Michael Gorse <mgorse@suse.com>
Fri May 24 21:46:11 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.44.2 (boo#1225071):
+ Make gamepads visible on axis movements, and not only on
@@ -370,42 +47,15 @@ Fri May 17 20:40:00 UTC 2024 - Michael Gorse <mgorse@suse.com>
+ Consider keycode when activating application accelerators.
+ Fix the build with ENABLE_WEBAUDIO disabled.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2024-27834, CVE-2024-27808, CVE-2024-27820,
CVE-2024-27833.
- Update keyring (taken from rawhide).
-------------------------------------------------------------------
Tue Apr 16 16:42:31 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Update to version 2.44.1:
+ Security fixes: CVE-2024-27834.
- Changes in version 2.44.1:
+ Fix handling of lifetime of web view child dialogs in GTK4.
+ Do not schedule layer flushes when drawing area size is empty.
+ Fix videos with alpha when using the DMA-BUF sink.
+ Fix the build with USE_GBM=OFF.
+ Fix the build in 32bit platforms
+ Fix several crashes and rendering issues.
- Drop webkit2gtk3-271108.patch: fixed upstream.
-------------------------------------------------------------------
Wed Mar 20 12:19:12 UTC 2024 - Michael Gorse <mgorse@suse.com>
- Use WebAssembly on aarch64. It is the upstream default and no
longer makes the build fail. Stop passing -DENABLE_C_LOOP=ON,
-DENABLE_WEBASSEMBLY=OFF and -DENABLE_SAMPLING_PROFILER=OFF for
the same reason.
- Drop webkit2gtk3-llint-build-fix.patch: no longer needed.
- Update some version requirements to match cmake checks.
-------------------------------------------------------------------
Mon Mar 18 12:15:24 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
- Add webkit2gtk3-271108.patch: Fix build on 32bit archs
(https://bugs.webkit.org/show_bug.cgi?id=271108).
-------------------------------------------------------------------
Sat Mar 16 09:36:58 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
- Update to version 2.44.0 (boo#1222010):
- Changes in version 2.44.0 (boo#1222010):
+ Make the DOM accessibility tree reachable from UI process with
GTK4.
+ Removed the X11 and WPE renderers in favor of DMA-BUF.
@@ -416,56 +66,16 @@ Sat Mar 16 09:36:58 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
GTK4.
+ Security fixes: CVE-2024-23252, CVE-2024-23254, CVE-2024-23263,
CVE-2024-23280, CVE-2024-23284, CVE-2023-42950, CVE-2023-42956,
CVE-2023-42843, CVE-2024-54658.
- Rebase webkit2gtk3-disable-dmabuf-nvidia.patch.
-------------------------------------------------------------------
Tue Mar 5 16:20:56 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
- baselibs.conf: Do not build libjavascriptcoregtk-4_1-0-32bit and
libwebkit2gtk-4_1-0-32bit: they are not used, and in fact not
built in Factory (build excluded).
-------------------------------------------------------------------
Thu Feb 29 13:15:27 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
- Update to version 2.43.4:
+ Remove key event reinjection in GTK4 to make keyboard shortcuts
work in web sites.
+ Use the new GTK API to create a GdkTexture from a DMA-BUF
buffer when available.
+ Fix rendering when GTK is using the vulkan renderer.
+ Fix gamepads detection by correctly handling focused window in
GTK4.
+ Fix rendering after history navigation.
+ Write bwrapinfo.json to disk for xdg-desktop-portal.
+ Fixed several memory leaks in media backend.
+ Fix several crashes and rendering issues.
- Changes from version 2.43.3:
+ Show vblank monitor information in webkit://gpu.
+ Fallback to timer based vblank monitor if drmWaitVBlank fails.
+ Fix several memory leaks in media backend.
+ Fix several crashes and rendering issues.
- Changes from version 2.43.2?
+ Remove the X11 and WPE renderers.
+ Release unused buffers when the view is hidden.
+ Fix flickering while playing videos with DMA-BUF sink.
+ Do not special case the "sans" font family name.
+ Fix webkit_web_context_allow_tls_certificate_for_host() for
IPv6 URIs produced by SoupURI.
+ Fix several crashes and rendering issues.
- Changes from version WebKitGTK 2.43.1?
+ Improve vblank synchronization when rendering.
+ Improve DMA-BUF buffers handling for video frames.
+ Use the buffer format preferred by the driver in DMA-BUF
renderer.
+ Do not block the compositing thread waiting for rendering
threads.
+ Improve performance when scaling images in a canvas.
+ Fix several crashes and rendering issues.
+ Updated translations.
CVE-2023-42843.
- Drop webkit2gtk3-create-destroy-egl-image.patch: fixed upstream.
- Add libbacktrace-devel BuildRequires (for gtk4 flavor).
- Rebase webkit2gtk3-disable-dmabuf-nvidia.patch.
- Use WebAssembly on aarch64. It is the upstream default and no
longer makes the build fail. Stop passing -DENABLE_C_LOOP=ON,
and -DENABLE_SAMPLING_PROFILER=OFF for the same reason.
- Drop webkit2gtk3-llint-build-fix.patch: no longer needed.
- Disable libbacktrace: we don't have it in SLE.
- Adjust spec for gtk4 now being enabled by default.
- Update keyring (taken from rawhide).
-------------------------------------------------------------------
Fri Feb 16 15:33:11 UTC 2024 - Michael Gorse <mgorse@suse.com>
@@ -502,8 +112,7 @@ Mon Feb 5 16:58:41 UTC 2024 - Michael Gorse <mgorse@suse.com>
+ Fix gamepads detection by correctly handling focused window in
GTK4.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213,
CVE-2024-23271.
+ Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213.
- Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream.
- Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86
architectures.
@@ -592,7 +201,7 @@ Thu Sep 28 08:47:58 UTC 2023 - Marcus Meissner <meissner@suse.com>
-------------------------------------------------------------------
Fri Sep 15 19:04:16 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 2.42.0 (boo#1218033 boo#1222905):
- Update to version 2.42.0 (boo#1218033):
+ New renderer based on DMA-BUF shared buffers.
+ Add new permission request to handle DOM paste access requests.
+ Add API to configure experimental features at runtime.
@@ -600,8 +209,7 @@ Fri Sep 15 19:04:16 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>
for data storage.
+ GBM is no longer required for WebGL implementation.
+ Security fixes: CVE-2023-39928, CVE-2023-41074, CVE-2023-32359,
CVE-2023-42890, CVE-2014-1745, CVE-2024-23226, CVE-2023-42875,
CVE-2023-42970.
CVE-2023-42890, CVE-2014-1745.
-------------------------------------------------------------------
Mon Sep 11 15:02:19 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>
@@ -658,6 +266,7 @@ Sun Aug 13 09:33:40 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>
+ Add support for P010 video format.
+ Fix non-accelerated rendering that broke web inspector.
+ Fix several crashes and rendering issue
- Temp disable LTO during build via define.
-------------------------------------------------------------------
Wed Aug 2 18:25:13 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>

80
webkit2gtk3.spec
View File

@@ -1,7 +1,7 @@
#
# spec file for package webkit2gtk3
#
# Copyright (c) 2025 SUSE LLC
# Copyright (c) 2024 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -25,6 +25,9 @@
ExclusiveArch: do-not-build
%endif
%define usegcc11 0%{?sle_version} && 0%{?sle_version} < 160000
%define use_jxl !(0%{?sle_version} && 0%{?sle_version} < 160000)
%if "%{flavor}" == "gtk3"
%define _gtknamesuffix gtk3
%define _pkgname_no_slpp libwebkit2gtk3
@@ -67,16 +70,12 @@ ExclusiveArch: do-not-build
%define _usesoup2 0
%define _wk2sover6api -6_0-4
%define _soverlj6api -6_0-1
%define _with_backtrace 1
%endif
# Disable LTO on select targets
%ifarch %{ix86} ppc64le
%global _lto_cflags %{nil}
%endif
Name: webkit2%{_gtknamesuffix}
Version: 2.48.5
### FIXME ### Drop the disabling of LTO on next release/versionbump
%define _lto_cflags %{nil}
Version: 2.44.3
Release: 0
Summary: Library for rendering web content, GTK+ Port
License: BSD-3-Clause AND LGPL-2.0-or-later
@@ -84,10 +83,13 @@ Group: Development/Libraries/C and C++
URL: https://webkitgtk.org
Source0: %{url}/releases/%{_name}-%{version}.tar.xz
Source1: %{url}/releases/%{_name}-%{version}.tar.xz.asc
Source98: baselibs.conf
Source99: webkit2gtk3.keyring
# PATCH-FEATURE-OPENSUSE reproducibility.patch -- Make build reproducible
Patch0: reproducibility.patch
# PATCH-FIX-UPSTREAM webkit2gtk3-disable-dmabuf-nvidia.patch boo#1216778 mgorse@suse.com -- disable the DMABuf renderer for NVIDIA proprietary drivers.
Patch2: webkit2gtk3-disable-dmabuf-nvidia.patch
BuildRequires: Mesa-libEGL-devel
BuildRequires: Mesa-libGL-devel
@@ -99,10 +101,11 @@ BuildRequires: bubblewrap
BuildRequires: cmake
BuildRequires: enchant-devel
BuildRequires: flex
%if 0%{?_with_backtrace}
BuildRequires: libbacktrace-devel
%if %usegcc11
BuildRequires: gcc11-c++
%else
BuildRequires: gcc-c++ >= 10.2
%endif
BuildRequires: gcc-c++ >= 11.2
BuildRequires: gobject-introspection-devel
BuildRequires: gperf >= 3.0.1
BuildRequires: hyphen-devel
@@ -113,17 +116,22 @@ BuildRequires: openjpeg2-devel
BuildRequires: perl >= 5.10.0
BuildRequires: pkgconfig
BuildRequires: python3
BuildRequires: ruby >= 2.5
BuildRequires: ruby >= 1.9
BuildRequires: unifdef
BuildRequires: xdg-dbus-proxy
BuildRequires: pkgconfig(atk)
BuildRequires: pkgconfig(atspi-2) >= 2.5.3
BuildRequires: pkgconfig(cairo) >= 1.16.0
BuildRequires: pkgconfig(cairo) >= 1.14.0
BuildRequires: pkgconfig(epoxy)
BuildRequires: pkgconfig(fontconfig) >= 2.13.0
BuildRequires: pkgconfig(freetype2) >= 2.9.0
BuildRequires: pkgconfig(glib-2.0) >= 2.70.0
BuildRequires: pkgconfig(fontconfig) >= 2.8.0
BuildRequires: pkgconfig(freetype2) >= 2.4.2
BuildRequires: pkgconfig(glib-2.0) >= 2.56.4
BuildRequires: pkgconfig(icu-i18n)
%if %usegcc11
BuildRequires: pkgconfig(glproto)
%endif
BuildRequires: pkgconfig(gnutls) >= 3.0.0
BuildRequires: pkgconfig(gstreamer-1.0) >= 1.18.4
BuildRequires: pkgconfig(gstreamer-1.0) >= 1.14.0
BuildRequires: pkgconfig(gstreamer-app-1.0)
BuildRequires: pkgconfig(gstreamer-audio-1.0)
BuildRequires: pkgconfig(gstreamer-codecparsers-1.0)
@@ -135,19 +143,20 @@ BuildRequires: pkgconfig(gstreamer-plugins-base-1.0)
BuildRequires: pkgconfig(gstreamer-tag-1.0)
BuildRequires: pkgconfig(gstreamer-transcoder-1.0)
BuildRequires: pkgconfig(gstreamer-video-1.0)
BuildRequires: pkgconfig(icu-i18n)
%if "%{flavor}" == "gtk3" || "%{flavor}" == "gtk3-soup2"
BuildRequires: pkgconfig(gtk+-3.0) >= 3.22.0
%endif
%if "%{flavor}" == "gtk4"
BuildRequires: pkgconfig(gtk4) >= 4.6.0
BuildRequires: pkgconfig(gtk4) >= 3.98.50
BuildRequires: pkgconfig(xcomposite)
%endif
BuildRequires: pkgconfig(gudev-1.0)
BuildRequires: pkgconfig(harfbuzz) >= 2.7.4
BuildRequires: pkgconfig(harfbuzz) >= 0.9.18
BuildRequires: pkgconfig(lcms2)
BuildRequires: pkgconfig(libavif) >= 0.9.0
%if %{use_jxl}
BuildRequires: pkgconfig(libjxl)
%endif
BuildRequires: pkgconfig(libpng)
BuildRequires: pkgconfig(libseccomp)
BuildRequires: pkgconfig(libsecret-1)
@@ -159,14 +168,15 @@ BuildRequires: pkgconfig(libsoup-3.0) >= 3.0.0
BuildRequires: pkgconfig(libsystemd)
BuildRequires: pkgconfig(libwebp)
BuildRequires: pkgconfig(libwoff2dec)
BuildRequires: pkgconfig(libxml-2.0) >= 2.9.13
BuildRequires: pkgconfig(libxml-2.0) >= 2.8.0
BuildRequires: pkgconfig(libxslt) >= 1.1.7
BuildRequires: pkgconfig(manette-0.2)
BuildRequires: pkgconfig(openssl)
BuildRequires: pkgconfig(spiel-1.0)
BuildRequires: pkgconfig(sqlite3)
BuildRequires: pkgconfig(upower-glib)
BuildRequires: pkgconfig(wayland-protocols)
BuildRequires: pkgconfig(wpe-1.0) >= 1.3.0
BuildRequires: pkgconfig(wpebackend-fdo-1.0) >= 1.6.0
BuildRequires: pkgconfig(xdamage)
BuildRequires: pkgconfig(xt)
BuildRequires: pkgconfig(zlib)
@@ -423,7 +433,10 @@ Group: Development/Tools/Other
%description minibrowser
A small test browswer from webkit, useful for testing features.
%dnl Expand %%lang_package to Obsoletes its older-name counterpart
# Expand %%lang_package to Obsoletes its older-name counterpart
%package -n WebKitGTK-%{_apiver}-lang
Summary: Translations for package %{name}
@@ -444,13 +457,8 @@ sed -i 's|/gst-plugin-scanner|/gst-plugin-scanner-%{_target_cpu}|' ./Source/WebK
%build
# Here we must muzzle our dog so it doesn't eat all the memory
%if 0%{?suse_version} >= 1600
max_link_jobs="${RPM_BUILD_NCPUS:-1}"
max_compile_jobs="${RPM_BUILD_NCPUS:-4}"
%else
max_link_jobs="%{?jobs}%{!?jobs:1}"
max_compile_jobs="%{?jobs}%{!?jobs:4}"
%endif
echo "Available memory:"
cat /proc/meminfo
echo "System limits:"
@@ -470,7 +478,10 @@ export PYTHON=%{_bindir}/python3
-GNinja \
-DCMAKE_BUILD_TYPE=Release \
-DENABLE_DOCUMENTATION=OFF \
-DUSE_LIBBACKTRACE=%[ %{defined _with_backtrace} ? "ON" : "OFF" ] \
%if %usegcc11
-DCMAKE_C_COMPILER=gcc-11 \
-DCMAKE_CXX_COMPILER=g++-11 \
%endif
-DPORT=GTK \
%if "%{flavor}" == "gtk4"
-DLIBEXEC_INSTALL_DIR=%{_libexecdir}/libwebkitgtk%{_wk2sover} \
@@ -493,10 +504,15 @@ export PYTHON=%{_bindir}/python3
%ifarch aarch64
-DENABLE_JIT=OFF \
-DUSE_SYSTEM_MALLOC=ON \
%else
%if 0%{?sle_version} && 0%{?sle_version} < 160000
-DUSE_SYSTEM_MALLOC=ON \
%endif
%endif
-DUSE_LIBBACKTRACE=OFF \
%if !%{use_jxl}
-DUSE_JPEGXL=OFF \
%endif
-DUSE_SYSTEM_SYSPROF_CAPTURE=NO \
-DUSE_FLITE=OFF \
-DUSE_SPIEL=ON
%ninja_build -j $max_link_jobs

BIN
webkitgtk-2.44.3.tar.xz (Stored with Git LFS) Normal file
View File

Binary file not shown.

16
webkitgtk-2.44.3.tar.xz.asc Normal file
View File

@@ -0,0 +1,16 @@
-----BEGIN PGP SIGNATURE-----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=jHOh
-----END PGP SIGNATURE-----

BIN
webkitgtk-2.48.5.tar.xz (Stored with Git LFS)
View File

Binary file not shown.

16
webkitgtk-2.48.5.tar.xz.asc
View File

@@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEEAToBJ6ycZbNP+mJSbBAJtpOXU5MFAmiMe7UACgkQbBAJtpOX
U5MrwA//TJ0W7S9Nbs2p4OIs6lQv+ntLrTVZAKFu+AUYJ/r3sUp9awGGivS37ZC8
gh33JDqzt9pm1sVXGNTB8NmEcRUu9QfsEsJUUEnk7n6dLmQr8Cb7aXK8b4ma8Mgo
zLpuU5rHPtZ5Cx7Y3wXw0mNBf2ZcvHrFfVhDrrgziIMUu9dcuOVI3inEvfh8CKcO
a+j+j1qNvxLGgPOfkXZH/cvGckCLxJuQ+/aX0k/3Top6mSHJTeMxtU7K2bSkgQmC
GoSoRqOFLPBp2UxAKWYcgr8kh7wjt5mov3NtNyMmCC6bjwtwX3ClLjgQfHekS5Iu
niPm9Q/FoF1JSbiXrpPf8KZVTUg9D1lzQFvJYHl9w5gWGE6wgjxX7TM1ooYvW0Gr
v9FBDIXGlXid+hBx8j0igRQW/V6sH5uSt690m5ElZj4KkJ6+uhLkIMcSGc6HYWhI
vtCNytTGd9wsAB97bYvcJv/qEW94hnGSdE0HvarAcdZbO52oljOAtqzaYi7Hw111
expNG3FU98UTWX0LHsv1c5/z9ph7x5EFyipkBML5J9LT8KV/+IrXPBkXQ45yaf3D
s+KpRlkxFGj9uFhRgl4OLR4UrSfgEkrAPnVud2zrIik+A4mHgX9y8FKmktFioJhU
faiEXzPzrHgMeEtlJW8vvWVoO9ZgIsYKma9sOn8aU/f7yjFak4I=
=KRFp
-----END PGP SIGNATURE-----