New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
firefox: 55.0.3 -> 56.0.1, firefox-esr: 52.3.0esr -> 52.4.0esr [Critical security fixes] #30143
Conversation
Is the icu upgrade necessary for Firefox? Because we may not want to cherry-pick that on the stable branch. |
Yes, Firefox requires icu-i18n 59.1.
|
Made 58.2 coexists with 59.1. Please tweak |
I tried running both firefox versions only for a while, and I could see nothing wrong. I kept icu version to 58 by default for now, saving ~1400 rebuilds on x86_64-linux: a7159d3. |
@vcunat can you backport to 17.09 as well? |
Yes, I'm just building atop 17.09. Also 17.03 is still supported for security, I guess? |
17.03 is receiving some patches, yeah, so I reckon it can't hurt -- but perhaps harder to backport. |
I'll see how hard 17.03 is. 17.09 still tends to be easy, as it's forked only several weeks ago. |
(cherry picked from commit 84952fc)
(cherry picked from commit 84952fc)
It needs rustc-1.17, and I don't see how to port it ATM. /cc #30143
Hmm, hard I guess. It 56.x needs rustc-1.17 and I didn't manage to port that one straightaway, so I picked all but 55.x -> 56.x. I have no longer enough motivation to continue on that for 17.03, so feel free to pick it up! |
This broke thunderbird build (it's the latest release). It now fails with:
|
The update to |
Hm, true. d66a340 (re: |
Hm, |
|
I picked it to 17.09 and 17.03 after some testing in there. /cc @globin. |
On i686-linux we're getting
so I omitted those options on i686: e067d26 |
Broken since #30143. I can't say I understand why this combination is apparently unsupported. i686-linux is a second-tier platform now, but firefox is still kept a channel blocker...
Motivation for this change
https://www.mozilla.org/en-US/security/advisories/mfsa2017-21/
https://www.mozilla.org/en-US/firefox/56.0/releasenotes/
Firefox now uses more Rust code. It generates bindings with Clang, but it fails if
cstddef
or other headers are in non-standard directories. So I added-cxx-isystem
and-isystem
toServoBindings.toml
.pkg-config
script for NSS was provided as a patch, but NSS now have an official one. It still requires somepostInstall
script.Things done
build-use-sandbox
innix.conf
on non-NixOS)nix-shell -p nox --run "nox-review wip"
./result/bin/
)